4 [NB: I use this as a thought record/scribble, not everything on here
5 makes sense and/or is actually ever going to get done, so IIWY I
6 wouldn't use it as gospel for the future of katie or as a TODO
7 list for random hacking.]
9 ================================================================================
14 o What to do with multi-suite uploads? Presumably hold in unapproved
15 and warn? Or what? Can't accept just for unstable or reject just
18 o Whenever we check for anything in accepted we also need to check in
21 o non-sourceful uploads should go straight through if they have
22 source in accepted or the archive.
24 o security uploads on auric should be pre-approved.
30 o by default hamstring katie's mail sending so that she won't send
31 anything until someone edits a script; she's been used far too
32 much to send spam atm :(
34 o $ftpdir/indices isn't created by rose because it's not in katie.conf
36 o sanity check depends/recommends/suggests too? in fact for any
39 [minor] kelly's copychanges, copykatie handling sucks, the per-suite
40 thing is static for all packages, so work out in advance dummy.
42 [madison] # filenames ?
43 [madison] # maintainer, component, install date (source only?), fingerprint?
45 o UrgencyLog stuff should minimize it's bombing out(?)
46 o Log stuff should open the log file
48 o [melanie] bomb out if a) no '[rene]' in the -m/--message, and b)
49 no other -d/--done or -C/--carbon-copy
51 o helena should footnote the actual notes, and also * the versions
52 with notes so we can see new versions since being noted...
54 o helena should have alternative sorting options, including reverse
55 and without or without differentiaion.
57 o julia should sync debadmin and ftpmaster (?)
59 o <drow> Can't read file.:
60 /org/security.debian.org/queue/accepted/accepted/apache-perl_1.3.9-14.1-1.21.20000309-1_sparc.katie.
61 You assume that the filenames are relative to accepted/, might want
64 o <neuro> the orig was in NEW, the changes that caused it to be NEW
65 were pulled out in -2, and we end up with no orig in the archive
68 o SecurityAcceptedAutoBuild doesn't handle the case of foo_3.3woody1
69 with a new .orig.tar.gz followed by a foo_3.3potato1 with the same
70 .orig.tar.gz; jennifer sees it and copes, but the AA code doesn't
71 and can't really easily know so the potato AA dir is left with no
72 .orig.tar.gz copy. doh.
74 o orig.tar.gz in accepted not handled properly (?)
76 o amber doesn't include .orig.tar.gz but it should
78 o permissions (paranoia, group write, etc.) configurability and overhaul
80 o remember duplicate copyrights in lisaand skip them, per package
82 o <M>ove option for lisa byhand proecessing
84 o rene could do with overrides
86 o db_access.get_location_id should handle the lack of archive_id properly
88 o the whole versioncmp thing should be documented
90 o lisa doesn't do the right thing with -2 and -1 uploads, as you can
91 end up with the .orig.tar.gz not in the pool
93 o lisa exits if you check twice (aj)
95 o lisa doesn't trap signals from fernanda properly
97 o queued and/or perl on sparc stable sucks - reimplement it.
99 o aj's bin nmu changes
102 * priority >> optional
104 * build-depends wrong (via andrea)
107 * notification/stats to admin daily
108 o trap fernanda exiting
109 o distinguish binary only versus others (neuro)
111 o cache changes parsed from ordering (careful tho: would be caching
112 .changes from world writable incoming, not holding)
114 o katie doesn't recognise binonlyNMUs correctly in terms of telling
115 who their source is; source-must-exist does, but the info is not
118 o Fix BTS vs. katie sync issues by queueing(via BSMTP) BTS mail so
119 that it can be released on deman (e.g. ETRN to exim).
121 o write our own locking module or in some other way fix things so we
122 don't require a patch to python since upstream refuse to fix it.
124 o maintainers file needs overrides
126 [ change override.maintainer to override.maintainer-from +
127 override.maintainer-to and have them reference the maintainers
128 table. Then fix charisma to use them and write some scripting
129 to handle the Santiago situation. ]
131 o Validate Depends (et al.) [it should match \(\s*(<<|<|<=|=|>=|>|>>)\s*<VERSIONREGEXP>\)]
133 o Clean up DONE; archive to tar file every 2 weeks, update tar tvzf INDEX file.
135 o testing-updates suite: if binary-only and version << version in
136 unstable and source-ver ~= source-ver in testing; then map
137 unstable -> testing-updates ?
139 o hooks or configurability for debian specific checks (e.g. check_urgency, auto-building support)
141 o morgue needs auto-cleaning (?)
143 ================================================================================
148 o Accept "," as a seperator in -a, -s etc. args
150 o change utils.copy to try rename() first
152 o [hard, long term] unchecked -> accepted should go into the db, not
153 a suite, but similar. this would allow katie to get even faster,
154 make madison more useful, decomplexify specialacceptedautobuild
155 and generally be more sane. may even be helpful to have e.g. new
156 in the DB, so that we avoid corner cases like the .orig.tar.gz
157 disappearing 'cos the package has been entirely removed but was
158 still on stayofexecution when it entered new.
160 o Logging [mostly done] (todo: rhona (hard), .. ?)
162 o jennifer is leaking file descriptors..
164 o the tar extractor class doesn't need to be redone for each package
166 o reverse of source-must-exist; i.e. binary-for-source-must-not-exist
167 o REJECT reminders in shania.
168 o fernanda should check for conflicts and warn about them visavis priority [rmurray]
169 o store a list of removed/files versions; also compare against them.
170 [but be careful about scalability]
172 o fernanda: print_copyright should be a lot more intelligent
173 @ handle copyright.gz
174 @ handle copyright.ja and copyright
175 @ handle (detect at least) symlinks to another package's doc directory
176 @ handle and/or fall back on source files (?)
178 o To incorporate from utils:
181 o auto-purge out-of-date stuff from non-free/contrib so that testing and stuff works
182 o doogie's binary -> source index
183 o jt's web stuff, matt's changelog stuff (overlap)
185 o [Hard] Need to merge non-non-US and non-US DBs.
187 o experimental needs to auto clean (relative to unstable) [partial: rene warns about this]
189 o Do a checkpc(1)-a-like which sanitizes a config files.
190 o fix parse_changes()/build_file_list() to sanity check filenames
191 o saftey check and/or rename debs so they match what they should be
194 o Need to optimize all the queries by using EXAMINE and building some INDEXs.
195 [postgresql 7.2 will help here]
196 o Need to enclose all the setting SQL stuff in transactions (mostly done).
197 o Need to finish alyson (a way to sync katie.conf and the DB)
198 o Need the ability to rebuild all other tables from dists _or_ pools (in the event of disaster) (?)
199 o Make the --help and --version options do stuff for all scripts
201 o charisma can't handle whitespace-only lines (for the moment, this is feature)
203 o generic way of saying isabinary and isadsc. (?)
205 o s/distribution/suite/g
208 @ weekly postins to d-c (?)
209 @ backup of report (?)
210 @ backup of changes.tgz (?)
214 o interrupting of stracing jennifer causes exceptions errors from apt_inst calls
215 o dependency checking (esp. stable) (partially done)
216 o override checks sucks; it needs to track changes made by the
217 maintainer and pass them onto ftpmaster instead of warning the
219 o need to do proper rfc822 escaping of from lines (as opposed to s/\.//g)
220 o Revisit linking of binary->source in install() in katie.
221 o Fix component handling in overrides (aj)
222 o Fix lack of entires in source overrides (aj)
223 o direport misreports things as section 'devel' (? we don't use direport)
224 o vrfy check of every Maintainer+Changed-By address; valid for 3 months.
225 o binary-all should be done on a per-source, per-architecture package
226 basis to avoid, e.g. the perl-modules problem.
227 o a source-missing-diff check: if the version has a - in it, and it
228 is sourceful, it needs orig and diff, e.g. if someone uploads
229 esound_0.2.22-6, and it is sourceful, and there is no diff ->
230 REJECT (version has a dash, therefore not debian native.)
231 o check linking of .tar.gz's to .dsc's.. see proftpd 1.2.1 as an example
232 o archive needs md5sum'ed regularly, but takes too long to do all
233 in one go; make progressive or weekly.
234 o katie/jenna/rhona/whatever needs to clear out .changes
235 files from p-u when removing stuff superseded by newer versions.
236 [but for now we have halle]
237 o test sig checking stuff in test/ (stupid thing is not modularized due to global abuse)
238 o when encountering suspicous things (e.g. file tainting) do something more drastic
242 o suite mapping and component mapping are parsed per changes file,
243 they should probably be stored in a dictionary created at startup.
244 o don't stat/md5sum files you have entries for in the DB, moron
245 boy (Katie.check_source_blah_blah)
246 o promote changes["changes"] to mandatory in katie.py(dump_vars)
247 after a month or so (or all .katie files contain in the queue
249 o melanie should behave better with -a and without -b; see
250 gcc-defaults removal for an example.
251 o Reject on misconfigured kernel-package uploads
252 o utils.extract_component_from_section: main/utils -> main/utils, main rather than utils, main
253 o Fix jennier to warn if run when not in incoming or p-u
254 o katie should validate multi-suite uploads; only possible valid one
256 o cron.daily* should change umask (aj sucks)
257 o Rene doesn't look at debian-installer but should.
258 o Rene needs to check for binary-less source packages.
259 o Rene could accept a suite argument (?)
260 o byhand stuff should send notification
261 o catherine should udpate db; move files, not the other way around [neuro]
262 o melanie should update the stable changelog [joey]
267 o drop rather dubious currval stuff (?)
268 o rationalize os.path.join() usage
269 o Rene also doesn't seem to warn about missing binary packages (??)
270 o logging: hostname + pid ?
271 o ANAIS should be done in katie (?)
272 o Add an 'add' ability to melanie (? separate prog maybe)
273 o Replicate old dinstall report stuff (? needed ?)
274 o Handle the case of 1:1.1 which would overwrite 1.1 (?)
275 o maybe drop -r/--regex in madison, make it the default and
276 implement -e/--exact (a la joey's "elmo")
277 o dsc files are not checked for existence/perms (only an issue if
278 they're in the .dsc, but not the .changes.. possible?)
282 o db_access' get_files needs to use exceptions not this None, > 0, < 0 return val BS (?)
283 o The untouchable flag doesn't stop new packages being added to ``untouchable'' suites
285 ================================================================================
290 o Fix stuff to look in sensible places for libs and config file in debian package (?)
292 ================================================================================