Bug#953759: marked as done (debootstrap: mandatory security support breaks too many things)
Your message dated Fri, 13 Mar 2020 05:04:08 +0000
with message-id <E1jCcUS-0004HI-Er@fasolo.debian.org>
and subject line Bug#953759: fixed in debootstrap 1.0.122
has caused the Debian Bug report #953759,
regarding debootstrap: mandatory security support breaks too many things
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)
--
953759: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=953759
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
Package: debootstrap
Version: 1.0.120
Severity: serious
Justification: RoM
Hi,
It seems my comments in [1] were ignored, so filing an RC bug to make
sure this is tracked at least by the BTS and britney.
1. https://lists.debian.org/debian-boot/2020/03/msg00103.html
The latest batch of bug reports filed by Johannes 'josch' Schauer seems
to confirm my initial assessment: this will break (too) many use cases
(#953404, #953588, #953593, #953594, #953617).
Right now, my current plan would be:
- creating a branch called “mandatory-security-support” (or something
similar) at 1.0.121, so that people wanting to turn that into something
suitable can try to do so, but I'm still unconvinced even having that as
an option (disabled by default) would be appropriate, for all the
problems that can come up when trying to drive apt.
- remove support in master entirely, for the time being.
Rationale for plain removal is: we need to be able to upload debootstrap
with bugfixes, without having to suffer from all the side effects coming
from that recent change.
Cheers,
--
Cyril Brulebois (kibi@debian.org) <https://debamax.com/>
D-I release manager -- Release team member -- Freelance Consultant
--- End Message ---
--- Begin Message ---
Source: debootstrap
Source-Version: 1.0.122
Done: Cyril Brulebois <kibi@debian.org>
We believe that the bug you reported is fixed in the latest version of
debootstrap, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 953759@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Cyril Brulebois <kibi@debian.org> (supplier of updated debootstrap package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 13 Mar 2020 05:43:24 +0100
Source: debootstrap
Architecture: source
Version: 1.0.122
Distribution: unstable
Urgency: medium
Maintainer: Debian Install System Team <debian-boot@lists.debian.org>
Changed-By: Cyril Brulebois <kibi@debian.org>
Closes: 953588 953593 953594 953617 953759
Changes:
debootstrap (1.0.122) unstable; urgency=medium
.
* Revert the addition of (mandatory) security support as debootstrap's
goal is to provide with a basic Debian system that many provisioning
systems are built upon. Changing behaviour now seems to be doing a
disservice to all those tools that would need adapting. In addition to
not seeming to be a good idea, that triggers regressions for a number
of use cases (Closes: #953759, #953588, #953593, #953594, #953617).
Checksums-Sha1:
ff3186a084c91b776423003cba2b20343f58ed81 1919 debootstrap_1.0.122.dsc
31ec8dddceb54dde4272d01a5dea8bd17ad195b8 77405 debootstrap_1.0.122.tar.gz
66fa1b72d250953bf01529483bd36befc9473f20 6704 debootstrap_1.0.122_source.buildinfo
Checksums-Sha256:
88f92b2651d7884584a2739f2fe4b2a9cdc4e21ab2b306ccaafd96e009d542d1 1919 debootstrap_1.0.122.dsc
30711aa32868a1a7000da225b4abd71b32ef924c290619a443ac7ec2cf6c1f12 77405 debootstrap_1.0.122.tar.gz
6e3352b93fafe2f2bbc3ced4bff8f57e9fee3cd8708c45bc27266a65f075bf96 6704 debootstrap_1.0.122_source.buildinfo
Files:
63239e8f6874c545437be5c44b4e1f0a 1919 admin optional debootstrap_1.0.122.dsc
30b4b8d3698f58f31c0e203b399dd9aa 77405 admin optional debootstrap_1.0.122.tar.gz
cd2fa15b0de39a42e32a6f12750945f3 6704 admin optional debootstrap_1.0.122_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEEtg6/KYRFPHDXTPR4/5FK8MKzVSAFAl5rECQACgkQ/5FK8MKz
VSC0Pg//YtBs9dYRiCYDnBPGxjh47aHvjQc3kzO6cib0CSH6L+MK5VLeWhI2z8bf
IZAEANqgETY/pWTPXsjmkr8WLIPNxvK6BOTtpyuxzWQDEbejSpCJ49XEF54ebCen
uzlBh3dbUygKlmJcYqV6Gk7F3fkkdUfWRRoigPeVE3qXNiIlhR8CKhiuPkGQWOrJ
Ole7HyoWboyGd8dKKlkl98jn1CSuK1fJXXGIZUJeUFJVtLkkN6kv9PbvE9Pcmgv7
g39CYehBddxp5Uwu/YqiwjIUhuJtej53cNEgqfFDlvVIsmwRXiGCi9TIwELFaTFI
HMTva8GgJ5xqBAN74lTKx+yQK2QYhvUvpsn4xZ5cHdo5gvC4HkmIr65a5T9cUrdP
KTrkBS5Il9sXt+ylneV2wsi2+X8KgeZ9WB1JEG9m+kZda6V3yg6g82+D9bCdwm8q
0Aioi8fV5Lu9ti+GZUOpTmUOjsiB7mgcPVxb7uqMtKGNFT4tKZuGX7uiO0X1U/mb
YQvBBkKSNAGDAaDW/k1EmZ5a49oUxWtkEmaG4Ye5CbAT3bEcb6NvN9+YEw8Ub5DN
h74llfupR6eHYtWVKnyh78ZJ0VJu6+PjQVO0nmqMPlqxBG7wmW3YnB781Ay7ivNC
PUEUBvpgEmLyCNifhVTtJVp3lIH+wx013i/QdsgMiINt1DwGeDE=
=ix01
-----END PGP SIGNATURE-----
--- End Message ---
Reply to: