Closed Bug 1152457 Opened 10 years ago Closed 10 years ago

Which add-ons should we sign at first?

Categories

(addons.mozilla.org Graveyard :: Administration, defect, P1)

Product:
addons.mozilla.org Graveyard
Component:
Administration
Type:
defect

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: clouserw, Assigned: kmag)

References

Details

Attachments

(3 files, 3 obsolete files)

Add-on IDs for initial run
12.44 KB, text/tab-separated-values
Details
auto-sign-ids.txt
2.63 KB, text/plain
Details
test_versions.txt
24.11 KB, text/plain
Details
We talked about all the Mozilla and Reviewer ones. Can we get a list of URLs or IDs or whatever so we can sign a bunch and make sure things work? Thanks!
I've made a list of all add-ons owned by reviewers or users @mozilla.com email addresses. I'll email these people today to give them a chance to opt out, and post IDs of those who haven't replied by Monday.
Here's the final list of add-on IDs. No-one opted out, but I did exclude any user accounts whose email bounced.
Status: NEW → RESOLVED
Closed: 10 years ago
Resolution: --- → FIXED
Attached file signme.sql (obsolete) —
converted to SQL
Jlaz: can you run this on production and give us the output so we have the IDs and not the GUIDs? I think this would work: mysql < signme.sql > output.txt
Flags: needinfo?(jlaz)
Summary: What add-ons should we sign at first? → Which add-ons should we sign at first?
Attached file output.txt (obsolete) —
Results from sql
Flags: needinfo?(jlaz)
Attached file List of IDs (obsolete) —
It seems I forgot to exclude the hotfix from my list. Attaching a new list in a slightly more convenient format (bare ID numbers, one per line) with that corrected.
Attachment #8592414 - Attachment is obsolete: true
Attachment #8592440 - Attachment is obsolete: true
Attached file auto-sign-ids.txt
Removed Thunderbird Hotfix (which should be automatically skipped in any case)
Attachment #8594045 - Attachment is obsolete: true
Attached file test_versions.txt
I've started checking manually the first few dozens and it seems everything went as expected. I've made a list of the corresponding versions pages for each addon (that exists on stage), attached to the bug. There's one specific addon I see has been signed twice (but not for all its versions), which is odd, and I'll be investigating this a bit more using the logs.
The addon that got some of its versions signed twice: https://addons.allizom.org/fr/firefox/addon/about-addons-memory/versions/ (addon id 424070)
I found (and hopefully fixed) the issue for this addon in bug 1156768 Here's a summary of what I saw in the logs following our first attempt at signing all the addons on stage: - it took roughly two hours to run for 4497 files - 3076 files were signed - 954 files were not signed because not reviewed (unreviewed or beta) - 6 failed signing - 1 bad zipfile: empty XPI on the filesystem for the "google-plus-new-tab" addon - 5 failures because of lxml while parsing invalid/garbled install.rdf file for the "noscript" addon - 594 files were not signed because not present on the filesystem The numbers don't add up because of bug 1156768: some files where not signed nor logged.
Hmm... That's a lot of runtime... Can we skip signing files that aren't compatible with with Firefox 39+?
Product: addons.mozilla.org → addons.mozilla.org Graveyard
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: