[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#953759: debootstrap: mandatory security support breaks too many things

On Fri, Mar 13, 2020 at 02:26:04AM +0100, Cyril Brulebois wrote:
>Package: debootstrap
>Version: 1.0.120
>Severity: serious
>Justification: RoM
>
>Hi,
>
>It seems my comments in [1] were ignored, so filing an RC bug to make
>sure this is tracked at least by the BTS and britney.
>
> 1. https://lists.debian.org/debian-boot/2020/03/msg00103.html
>
>The latest batch of bug reports filed by Johannes 'josch' Schauer seems
>to confirm my initial assessment: this will break (too) many use cases
>(#953404, #953588, #953593, #953594, #953617).
>
>Right now, my current plan would be:
> - creating a branch called “mandatory-security-support” (or something
>   similar) at 1.0.121, so that people wanting to turn that into something
>   suitable can try to do so, but I'm still unconvinced even having that as
>   an option (disabled by default) would be appropriate, for all the
>   problems that can come up when trying to drive apt.
> - remove support in master entirely, for the time being.
>
>Rationale for plain removal is: we need to be able to upload debootstrap
>with bugfixes, without having to suffer from all the side effects coming
>from that recent change.

Sounds sensible enough to me...

-- 
Steve McIntyre, Cambridge, UK.                                steve@einval.com
We don't need no education.
We don't need no thought control.
Reply to: