Re: Re: usrmerge -- plan B?

To: debian-devel@lists.debian.org
Subject: Re: Re: usrmerge -- plan B?
From: Andrey Rahmatullin <wrar@debian.org>
Date: Wed, 28 Nov 2018 14:53:25 +0500
Message-id: <[🔎] 20181128095325.GE1611@belkar.wrar.name>
In-reply-to: <[🔎] 2d3113fc-e79b-babe-4981-b1bc24fadfd7@gmail.com>
References: <[🔎] 878t1esau1.fsf@hope.eyrie.org> <[🔎] 2d3113fc-e79b-babe-4981-b1bc24fadfd7@gmail.com>

On Wed, Nov 28, 2018 at 07:52:08AM +0500, Alexander E. Patrakov wrote:
> As long as there is one Debian Developer (or any other person who has the
> right to upload binary packages) who has a merged /usr on his system used
> for building packages, there is a risk of reintroducing the bug through his
> package. Maybe we should somehow, in the short term, modify dpkg to add
> something like "Tainted-By: usr-merge" control field to all binary packages
> produced, if a package is built on a system with merged /usr (detected via
> /bin being a symlink). And a corresponding automatic check that would
> auto-reject binary packages with any Tainted-By control field from being
> uploaded to the Debian archive.
Tainted-By: built-not-on-buildd please.
At the very least Tainted-By: built-not-in-clean-uptodate-sid-chroot.

-- 
WBR, wRAR

Attachment: signature.asc
Description: PGP signature

Reply to:

References:
- Re: usrmerge -- plan B?
  - From: Russ Allbery <rra@debian.org>
- Re: Re: usrmerge -- plan B?
  - From: "Alexander E. Patrakov" <patrakov@gmail.com>

Prev by Date: Re: Re: usrmerge -- plan B?
Next by Date: Re: Re: usrmerge -- plan B?
Previous by thread: Re: Re: usrmerge -- plan B?
Next by thread: Tainted builds (was Re: usrmerge -- plan B?)
Index(es):
- Date
- Thread