GNU bug report logs - #56444
Gitolite home directory permissions

Previous Next

Full log

View this message in rfc822 format

From: help-debbugs <at> gnu.org (GNU bug Tracking System)
To: "Thompson, David" <dthompson2 <at> worcester.edu>
Cc: tracker <at> debbugs.gnu.org
Subject: bug#56444: closed (Gitolite home directory permissions)
Date: Tue, 30 Aug 2022 16:41:02 +0000

[Message part 1 (text/plain, inline)]

Your message dated Tue, 30 Aug 2022 12:39:47 -0400
with message-id <CAJ=Rwfa4Yskk=gzV2HepozfKWRBCE9MVzhhOwVqZ3NrEqFm+Fw <at> mail.gmail.com>
and subject line Re: [EXT] Re: bug#56444: Gitolite home directory permissions
has caused the debbugs.gnu.org bug report #56444,
regarding Gitolite home directory permissions
to be marked as done.

(If you believe you have received this mail in error, please contact
help-debbugs <at> gnu.org.)


-- 
56444: https://debbugs.gnu.org/cgi/bugreport.cgi?bug=56444
GNU Bug Tracking System
Contact help-debbugs <at> gnu.org with problems

[Message part 2 (message/rfc822, inline)]

From: Evgeny Pisemsky <evgeny <at> pisemsky.com>
To: bug-guix <at> gnu.org
Subject: Gitolite home directory permissions
Date: Fri, 08 Jul 2022 00:35:10 +0300

  Hello!

  I wanted to serve public repositories from gitolite using git-daemon.

  I tried the following configuration of services:

  ┌────
  │ (define git-daemon
  │   (git-daemon-service
  │    #:config (git-daemon-configuration
  │              (base-path "/var/lib/gitolite/repositories"))))
  │ 
  │ (define gitolite
  │   (service gitolite-service-type
  │            (gitolite-configuration
  │             (admin-pubkey user-key)
  │             (group "git-daemon")
  │             (rc-file (gitolite-rc-file
  │                       (umask #o0027))))))
  └────

  However despite setting the umask the `/var/lib/gitolite' directory
  gets the `drwx------' permissions that makes it inaccessible for the
  git-daemon.

  If I set the group permissions manually and restart the git-daemon
  everything works fine until the next system reboot, which resets the
  permissions to the above value.

[Message part 3 (message/rfc822, inline)]

From: "Thompson, David" <dthompson2 <at> worcester.edu>
To: Ludovic Courtès <ludo <at> gnu.org>
Cc: 56444 <at> debbugs.gnu.org, 56444-done <at> debbugs.gnu.org,
 Maxime Devos <maximedevos <at> telenet.be>
Subject: Re: [EXT] Re: bug#56444: Gitolite home directory permissions
Date: Tue, 30 Aug 2022 12:39:47 -0400

[Message part 4 (text/plain, inline)]

Hi Ludo,

On Tue, Aug 30, 2022 at 11:20 AM Ludovic Courtès <ludo <at> gnu.org> wrote:

> Hi there!
>
> Please let’s avoid guessing each other’s willingness to do one thing or
> another.
>
> I agree with David that we should accept simple local fixes like this
> one, while keeping the “better solution” in sight.  It’s a tradeoff, and
> the goal is to make sure we can all move forward.
>
> So I’m all for merging this Gitolite activation patch that David posted
> right away; I think you can go ahead, David.
>
> Adding ‘home-permission’ to <user-account> as Maxime suggested also
> sounds like a welcome improvement to me, but I think it’s fine to do
> that separately.
>

Patch pushed.

I will follow up with a new bug report (and a patch later when I have some
time to actually write code) to capture the improvements to <user-account>
so we can discuss any potential issues or gotchas that might come as a
result.

Thanks,

- Dave

[Message part 5 (text/html, inline)]

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.