The Developer Certificate of Origin (DCO) checks
As per section 12.a of the Hyperledger Charter all code submitted to the Hyperledger Foundation needs to have a Developer Certificate of Origin (DCO) sign-off.
This certifies that you are able to submit your contribution to our repository under the license of the repository, and for the contribution to be redistributed under that same license.
You can "sign" this certificate by including a line in the git commit of "Signed-off-by: Legal Name <email-address>", using the email address associated with your GitHub account.
How to work with DCO
When Committing
You need to ensure that every commit message has a line "Signed-off-by: Your Legal Name <your-email@address>", and while you could add that manually every time, here are the steps to follow so the computer can add it for you:
- Set your legal name in the git configuration:
git config user.name "Legal Name" - Set your email in the git configuration:
git config user.email "email@address" - Add the
-sor--signoffto allgit commitinvocations.- Add a git alias:
git config --global alias.c 'commit --signoff'and then run "git c" instead of "git commit" - In IntelliJ
- Add a git alias:
When Merging
The merge or a PR must also have a DCO so we can know the entire repository is under the associated license.
- When Merging a Pull Request through "squash and merge", include the
Signed-off-bylines from every contributor, and add one for you as the person merging.
When you have a DCO failure on your PR from DCO Bot
'
Click on that "Details" link and follow the instructions.
When you have a DCO failure on your PR from CI
On Circle CI you will see:
In the full Console Output you will see DCO is checked on ALL branches:
Checking commits in branch origin/main for commits missing DCO... Checking commits in branch origin/merge for commits missing DCO... 11b5f95dd5ef51af398f8b343b266debadd6f0b9 is missing Signed-off-by line. Checking commits in branch origin/pull/2497 for commits missing DCO... Checking commits in branch origin/release-21.10.x for commits missing DCO... Checking commits in branch origin/release-22.1.0 for commits missing DCO... Exited with code exit status 1
If the commit missing the signoff is on main branch, you will need to contact a Besu Maintainer Admin (main rebase required).
If the commit missing the signoff is on a non-main branch (eg merge in the example above), and you are a Besu maintainer, you should be able to force-push to that branch (eg rollback the most recent commit).
Feel free to check out this tutorial for more help.
As per section 12.a of the Hyperledger Charter all code submitted to the Hyperledger Foundation needs to have a Developer Certificate of Origin (DCO) sign-off.
The sign off needs to be using your legal name, not a pseudonym. Git has a built-in mechanism to allow this with the -s or --signoff argument to git commit command, providing your user.name and user.email have been setup correctly.
If you have any questions, you can reach us on Besu chat.
2 Comments
Peter Somogyvari
Sally MacFarlane Felipe Faraggi Thanks for this page, I'll refer to it when reviewing Cactus PRs too!
FYI: The link is dead at the end at the sentence "Feel free to check out this tutorial for more help."
Sally MacFarlane
Thanks Peter Somogyvari- I found an archive version of that article so have updated the link. Glad you find it useful!