Bug#1110378: RFS: kafel/0~20231004-2 [ITP] -- seccomp-bpf language parser for nsjail

To: 1110378-quiet@bugs.debian.org
Subject: Bug#1110378: RFS: kafel/0~20231004-2 [ITP] -- seccomp-bpf language parser for nsjail
From: Stephen Crosby <stevecrozz@gmail.com>
Date: Mon, 11 Aug 2025 10:34:58 -0700
Message-id: <[🔎] CAAsGfSD+1+23GhM7CaKg1N1oW=W8Jjz0oT-4oUyxi6d2F6a-vg@mail.gmail.com>
Reply-to: Stephen Crosby <stevecrozz@gmail.com>, 1110378-quiet@bugs.debian.org
In-reply-to: <[🔎] 89b62271-edc7-4285-be71-b5df6392932f@sulfrian.net>
References: <[🔎] 9e0d2d984500dff204628282bfdca07537dd9037.camel@kathenas.org> <[🔎] CAAsGfSCv5ZymuFXvkqimBDPVLN0CxnGrBfL0V43ZH5pNMiH_AA@mail.gmail.com> <[🔎] CAAsGfSCbuiL+6PVeu-dfV=zQy+f40N3TxRHwU5_Gv=s_4Wnd3w@mail.gmail.com> <[🔎] 89b62271-edc7-4285-be71-b5df6392932f@sulfrian.net> <[🔎] CAAsGfSCv5ZymuFXvkqimBDPVLN0CxnGrBfL0V43ZH5pNMiH_AA@mail.gmail.com>

Control: tags -1 -moreinfo

nsjail is next!

Regarding the sponsorship request, I'm not sure if I made this clear in the first message, but this package is useful because it unblocks packaging for nsjail which I intend to package next. Nsjail is an extremely useful process isolation tool that is currently not available in Debian. You can use nsjail to limit the system calls available to a program, which reduces the surface area of system calls available to attackers or those who would exploit vulnerabilities in a program in an attempt to make system calls that should not be available.

Appreciate the reviews so far. I have corrected v1 and it passes all lintian checks, including pedantic ones as far as I can tell.

The updated package is available here:
https://mentors.debian.net/package/kafel

Let me know if I can do anything else to get this package in shape.

Best regards,
Stephen

On Mon, Aug 11, 2025 at 1:48 AM Alexander Sulfrian <alexander@sulfrian.net> wrote:

Hi,

On 8/11/25 00:46, Stephen Crosby wrote:
> Does that mean I should remove 0~20231004-2 and reuse version
> 0~20231004-1? If I do that, when I build the package, it will produce
> files with the same version number as files that I have already
> uploaded. I had thought that would not be allowed. Is it allowed?
as long as the package is only uploaded to mentors, you can reuse the same
version. Only once the package is uploaded to the archive, you have to
increment the revision for any new upload.

Alex

Reply to:

References:
- Bug#1110378: RFS: kafel/0~20231004-2 [ITP] -- seccomp-bpf language parser for nsjail
  - From: Phil Wyett <philip.wyett@kathenas.org>
- Bug#1110378: RFS: kafel/20231004 [ITP] -- seccomp-bpf language parser for nsjail
  - From: Stephen Crosby <stevecrozz@gmail.com>
- Bug#1110378: RFS: kafel/0~20231004-2 [ITP] -- seccomp-bpf language parser for nsjail
  - From: Stephen Crosby <stevecrozz@gmail.com>
- Bug#1110378: RFS: kafel/0~20231004-2 [ITP] -- seccomp-bpf language parser for nsjail
  - From: Alexander Sulfrian <alexander@sulfrian.net>

Prev by Date: Bug#1110081: RFS: dualword-rt/0.2.5-1 [ITP] -- program for measuring bimanual simple visual reaction time
Next by Date: Re: Bug#974209: RFS: human-theme-gtk/2.6.0-1 [ITP] -- Human theme for GTK
Previous by thread: Bug#1110378: RFS: kafel/0~20231004-2 [ITP] -- seccomp-bpf language parser for nsjail
Next by thread: Bug#1110378: RFS: kafel/0~20231004-1 [ITP] -- seccomp-bpf language parser for nsjail
Index(es):
- Date
- Thread