Hi Christian,

On Sat, Jan 18, 2025 at 04:55:55PM GMT, Christian Kastner wrote:

Hi Tiago,

On 2025-01-17 14:51, Tiago Bortoletto Vaz wrote:

It is very much appreciated that you were diligent and consulted documentation (and this list) before trying to sponsor packages as a DM. Technically, it's not possible. See:

https://wiki.debian.org/DebianMaintainer#Granting_Permissions

I think there might be a misunderstanding here: the above article is
about granting someone else upload privileges. Whereas here, we have a
DM who already has upload privileges, who would upload a version of a team-maintained package that was prepared by another team member who themselves aren't a DM yet.

Thanks for pointing out. What I understood is that a DD hasn't given
upload privilegies for those packages (because the DM isn't the
maintainer of those packages), but still proposed him to sponsor them.
I assumed that the DD wasn't aware that it wouldn't be possible, but it
seems I was the one who didn't quite understand the question :-)

This obviously cannot be a problem if contributions to the new version
were split 50/50 or even 80/20 between the DM and non-DM, as that is the nature of a team-maintained package.

I posit that it shouldn't be a problem for the DM to upload even in the
0/100 case. If the DM is given trust do to uploads, that implies trust
that the DM will review the uploads, and has the necessary skills to
identify and correct any defects, including those caused by other team members (DD or not).

Yes, that makes sense.

This is just the "formal" view. On a technical level, I don't see what
could stop a DM for going ahead with this regardless, as the only
obstacle could possibly be the Changes line, and the DM could simply
change that before upload.

I don't know how dak works on that level, but yes, worst scenario
changing the Changes would do it (so something like a team-upload in the
end).

Bests,

--
Tiago


-----BEGIN PGP SIGNATURE-----

iQIzBAABCgAdFiEEOAYLMZqeqHbTW+jfgVxjVIQAXyEFAmeL+/4ACgkQgVxjVIQA XyHETRAAuZpnIMOLauq08rFL6wZvf2wu9QHg2/9PClbvprXe/AQf1r30itL2H+q+ on2kgF/NlGMoJ4ol63DJH5WMxU3w641m9Md8r5tz8bjC/u7pD1lcCOTYhiBbyX6G s1EVti4Sjp3mGiyIOPd2aN36jPWqYgymOD7GKAvtomjlsh5NBwWveYKdJ9ph7Qop Orh6/iUD/86mRgfRlCyemM71uZhicLyzfbqRu5vOjGos2rP7TqmGvyTp5aNnpVym I8EcJVQp23gdr9BzH0ZIb/wbRAWqINderIIidksqPk7S5NeoZNNyVZC/OykcE4EO JWkLxArR+qbkTa+Wls1EWL8KI09zd9774cDMfZQWVaoBIAhl9oO7+jH/H6MmOBzW edRg+CUAqAT48zHPggAc5AwhwoC0jjsNQ6QGDdWA1+XOSTZALddCNaZMz+pUYO/j o+/FY/eIeNQiBkAtinpZdkL75997cnZCyCGxzbyhui+rdl0gwOmzbfgi7/bpfZ03 q14LqN6Ei4iISZkToAeK8T9pK/Gm8pU3idmDI47lJuZnGvJ6NPm0+XyCmOQik3Zk Dt4Va9gYFdjukahEtNOuGF/meuzN4CfjLoB5iPKCr7lLRihhLkFUJpUQLfhMKQ41 MOY0X7o4dzCTz/8L0PBldZt/YRUTp5oMvSYQ4SSG8lafX0iUDZ0=
=3SgH
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Sat, Jan 18, 2025 at 02:07:43PM -0500, Tiago Bortoletto Vaz wrote:

It is very much appreciated that you were diligent and consulted documentation (and this list) before trying to sponsor packages as a DM. Technically, it's not possible. See:

https://wiki.debian.org/DebianMaintainer#Granting_Permissions

I think there might be a misunderstanding here: the above article is
about granting someone else upload privileges. Whereas here, we have a
DM who already has upload privileges, who would upload a version of a team-maintained package that was prepared by another team member who themselves aren't a DM yet.

Thanks for pointing out. What I understood is that a DD hasn't given
upload privilegies for those packages (because the DM isn't the
maintainer of those packages), but still proposed him to sponsor them.

"even if I have permission to independently upload my own changes for that package"

--
WBR, wRAR

-----BEGIN PGP SIGNATURE-----

iQJhBAABCgBLFiEEolIP6gqGcKZh3YxVM2L3AxpJkuEFAmeL/YEtFIAAAAAAFQAP cGthLWFkZHJlc3NAZ251cGcub3Jnd3JhckBkZWJpYW4ub3JnAAoJEDNi9wMaSZLh 9SsQAI3pBiKwzg9Fh/BODjYGQ70Xv41yRNE+NuO4L7ufQ0OcC9SKAvxuUSTlizJ4 pIeOxO2lXYs7IB+JNcXxS+fx3r/Uv3kkvOo+aVfh/0AI9Z1umeYv1OV5YXqt6ryA 1JShG75BoJh/Du5czMPk5mRsOUigqHTXMbI4FNdD5IL7RsvrRHD6WoBj78xlcY0x LtwyfiFUQ0DyXSCb/nLjCI1tveSA9Djz6xXXxWcFNGdbDc3JrKwd/AAedWlipbKe KO2QxoSL9at+MVI5HFq52vd6E1CeSpqlQL12DKkQb4OeXoWyYtHjjpFdFTJl/cdc m05QAPA3k0y2AdZ9QSMh67bTSuudTm4/VpjWbZAXoAyJ0JlPXrOlwdSfnEirINtb 45h2DQtn5K8QcGQ4KjSOo4n1jk+/eDKiTSQ4c76oROzFUbjvSsZLqluzJpz2CdgE hskQ90nX9hZ7hfXjLQYY/TJpXboSGm5IkNKqYzzHYCN2i2gwFiomb2fIDzaec1Bq 2+1E0oE+R30nPfehyXT4JbXFxjgMSZEzxereYVLXaNPD3ML7MrMcVHtBySc592eV wD+AMZYxPjAZd5v6nkI2vlOuLbYbjEPZqSJik+23BbSCMTmAOctSC9HOUlQ6YdEZ vFcwus1+zzOrpTDJ8OuQ0uqT3tIojmMtc6JXj3JGV3kEdPM3
=QQP6
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Hello,

I'm a Debian Maintainer with upload permissions for various packages in
the ROCm GPU compute stack. The Debian ROCm Team has a few Sponsored Maintainers contributing to our packages, but is short on Debian
Developers to review them. One of the DDs that I work with has suggested
that I should be reviewing and sponsoring uploads, but I'm not sure that
would be appropriate. The sponsoring process page [1] states:

Remember: Only Debian Developer are allowed to sponsor packages.

The glossary on the wiki [2] also states that a Sponsor is:

A Debian Member with upload privileges

and states that a Debian Member refers to:

Full members of the Debian Project

The entry for Debian Maintainers notes that:

DMs aren't yet members of the Debian Project

This all seems consistent with the theory that it would be inappropriate
for me as a Debian Maintainer to sponsor an upload from a Sponsored
Maintainer, even if I have permission to independently upload my own
changes for that package.

Can anyone confirm one way or another?

Sincerely,
Cory Bloor

[1]: https://mentors.debian.net/sponsors/
[2]: https://wiki.debian.org/Glossary

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Thu, Jan 16, 2025 at 03:36:15PM -0700, Cordell Bloor wrote:

Hello,

Hi there,

I'm a Debian Maintainer with upload permissions for various packages in the ROCm GPU compute stack. The Debian ROCm Team has a few Sponsored Maintainers contributing to our packages, but is short on Debian Developers to review them. One of the DDs that I work with has suggested that I should be reviewing and sponsoring uploads, but I'm not sure that would be
appropriate. The sponsoring process page [1] states:

Remember: Only Debian Developer are allowed to sponsor packages.

The glossary on the wiki [2] also states that a Sponsor is:

A Debian Member with upload privileges

and states that a Debian Member refers to:

Full members of the Debian Project

The entry for Debian Maintainers notes that:

DMs aren't yet members of the Debian Project

This all seems consistent with the theory that it would be inappropriate for me as a Debian Maintainer to sponsor an upload from a Sponsored Maintainer, even if I have permission to independently upload my own changes for that package.

Can anyone confirm one way or another?

Yes and that anyone will be you.

Just try it and report back.


Upon reporting back: Tell about the package you have in mind. Like RFS.

Sincerely,
Cory Bloor

Groeten
Geert Stappers



[1]: https://mentors.debian.net/sponsors/
[2]: https://wiki.debian.org/Glossary
--
Silence is hard to parse

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Fri, Jan 17, 2025 at 07:23:51AM +0100, Geert Stappers wrote:

This all seems consistent with the theory that it would be inappropriate for
me as a Debian Maintainer to sponsor an upload from a Sponsored Maintainer, even if I have permission to independently upload my own changes for that package.

Can anyone confirm one way or another?

Yes and that anyone will be you.

Just try it and report back.

(The question, of course, was not about the technical possibility.)

--
WBR, wRAR

-----BEGIN PGP SIGNATURE-----

iQJhBAABCgBLFiEEolIP6gqGcKZh3YxVM2L3AxpJkuEFAmeKCpctFIAAAAAAFQAP cGthLWFkZHJlc3NAZ251cGcub3Jnd3JhckBkZWJpYW4ub3JnAAoJEDNi9wMaSZLh S+kQAIfDp7YxhHAEO3kfARO1/F4uMdZjbDPQmcspgHnslqp/Pg4AAiFz2ZDJRLFO QZ3bDnBPiZynhmZEQTLmtyTkkjmPoBL/aaUNglz99l8T1t+96BloWFeWIhOgoUT5 F0jJQHkHz/V2g42/83Wt3v1bAS+TQ6y0QPwWq3VCKzO7EbU6qFuRtljAOx3uD3ws MWhpnkicWI6x5DCHDanDf2wXoPCqi9hn6W6ZQ69nXnJk/Ji7N+Rr07v5+of3xR3S Zxr+KcYEMJDcJC2I15Ct8cLc41lFgrZ8g7PwdwKE9797sRpYDjZe3yw7kxq9oYj6 +Ir61mmI24SCVXW92B5+kszpG+JhmFpDRO2kRIglR+2/wHs+NXN4c+nfTzyLqtu9 WJ+hp7q+fK95i4SiWJQQ5y13bdm7U35nmXOVDbmk6FRCqNV40lN7pGH1+p/CrSgQ 2V4sPiUCUH/1UyzRoMueQvK7fpH2/ylLv9D9ICedsjd3uvwuLHJxJI57VVxvAQ7a QrRG6uH1Gr+qN2p22HZHKUWooy6Iu+YpIfw6McjidTG8oUEErkMAemFdpmlFuiLx HRPeW7pC98yFkf1gPQnWIrF6hIt6CLOjl+pheBLUXI1O0NgTJNOFSymFHP+mGtUI e4wUvGNdH3Qj+Qrmbm3I99tvUIwSqx4js4FPuVn9BChEwH+z
=JFtp
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Hi Cordell,

On Thu, Jan 16, 2025 at 03:36:15PM GMT, Cordell Bloor wrote:

Hello,

I'm a Debian Maintainer with upload permissions for various packages in the ROCm GPU compute stack. The Debian ROCm Team has a few Sponsored Maintainers contributing to our packages, but is short on Debian Developers to review them. One of the DDs that I work with has suggested that I should be reviewing and sponsoring uploads, but I'm not sure that would be
appropriate. The sponsoring process page [1] states:

Remember: Only Debian Developer are allowed to sponsor packages.

The glossary on the wiki [2] also states that a Sponsor is:

A Debian Member with upload privileges

and states that a Debian Member refers to:

Full members of the Debian Project

The entry for Debian Maintainers notes that:

DMs aren't yet members of the Debian Project

This all seems consistent with the theory that it would be inappropriate for me as a Debian Maintainer to sponsor an upload from a Sponsored Maintainer, even if I have permission to independently upload my own changes for that package.

Can anyone confirm one way or another?

It is very much appreciated that you were diligent and consulted
documentation (and this list) before trying to sponsor packages as a DM. Technically, it's not possible. See:

https://wiki.debian.org/DebianMaintainer#Granting_Permissions

You can check which packages you have permission to upload here:

https://ftp-master.debian.org/dm.txt

For now, I'd suggest you to become co-maintainer for the packages that
you will be reviewing, ask a DD to give you upload rights for these
packages, and then, as you're in a team, do a team-upload.

https://wiki.debian.org/TeamUpload

Also, if other DDs who work with you think that you are capable of
reviewing and sponsoring packages, you could check what they think about advocating you to become a DD. If you're interested and feel ready for
that too, of course.

Thanks for contributing to Debian.

Bests,

--
Tiago




-----BEGIN PGP SIGNATURE-----

iQIzBAABCgAdFiEEOAYLMZqeqHbTW+jfgVxjVIQAXyEFAmeKYHYACgkQgVxjVIQA XyHzlBAAjmjZ/S9qWsjBUx5uhcTNKcdsvnExhOfOAGl2lErYL0ohWcnguFOuB64L +9qHWQFgXigx0pJcT4asywT8jwxXvFGKbSDFADpxkQafg4dcGr11bYUuNK5D1knU 59JZOEIg3v9jqL+J7l3P37OKKBG6XXvq2QXyjCh12sEaWVCq9zGNAavmd53IZtoB 02EUJ8qEoMs63tusGsRjvQOwLK59DvMeF3JJ8XHjpwkfk1fmBpvrOjIvTJJEeNx0 +b9CXfpmNbVHOeSUnMdO+nIfTFjfbTAALNXGQpWG5VTB2vjLLAAezauSqJiJqNOe SNFqfl0+MVT/oXQuTxsObfXQldU4ubhsvSS3sOFTuLvgCs1nZfRWJ8UrpNtBnX4W 2zIDHxurfqyMmgkw1vh8JFGdTvdcSdp7M6uZjLxDWiq7BkhgkuUzLL28AA4woGmn 6Xlfy85Qn/+4xQ7R1axieQdpvNFOfP/uODxTt+ukVj90xHCli0PX3O9OFLl2y2SE o6E9pv4LWd86SvSo7fneucElLI9CcOUtGYuqdAUHx1v1U2ueRwWER0nFO4oG9j28 mM+ydZ992iJP5IoPCUR4FaJn0rhqrkUOOYC/lTVgRsysiunYnxUAobJiqtDy/Q31 yADEL6qqMLbIvgARhrSvS+a2xxYmw2TJKAuIBkDBL0CqrRNq0aA=
=ovbH
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)