Bug#845715: Required targets must not write outside of the source package tree

To: Sean Whitton <spwhitton@spwhitton.name>
Cc: Bill Allombert <ballombe@debian.org>, 845715@bugs.debian.org, Johannes Schauer <josch@debian.org>, Russ Allbery <rra@debian.org>, Mattia Rizzolo <mattia@debian.org>, Niels Thykier <niels@thykier.net>, Holger Levsen <holger@layer-acht.org>
Subject: Bug#845715: Required targets must not write outside of the source package tree
From: Bill Allombert <ballombe@debian.org>
Date: Sun, 11 Nov 2018 21:10:02 +0100
Message-id: <[🔎] 20181111201002.zawvgbxhe6txutfx@yellowpig>
Reply-to: Bill Allombert <ballombe@debian.org>, 845715@bugs.debian.org
In-reply-to: <[🔎] 87zhufa2tl.fsf@iris.silentflame.com>
References: <[🔎] 87woptdiwa.fsf@hope.eyrie.org> <148013126214.5727.2833489398483306064.reportbug@localhost> <[🔎] 20181103224251.b346wwggiykr4xmx@yellowpig> <[🔎] 87r2fs5lgc.fsf@hephaestus.silentflame.com> <148013126214.5727.2833489398483306064.reportbug@localhost> <[🔎] 20181111104134.deyb6zuziclilrch@yellowpig> <[🔎] 877ehj65h4.fsf@hephaestus.silentflame.com> <148013126214.5727.2833489398483306064.reportbug@localhost> <[🔎] 20181111150449.dehkpqypkaqlfvz5@yellowpig> <[🔎] 87zhufa2tl.fsf@iris.silentflame.com> <148013126214.5727.2833489398483306064.reportbug@localhost>

On Sun, Nov 11, 2018 at 11:25:58AM -0700, Sean Whitton wrote:
> Hello,
> 
> === Addressing the participants in this thread more generally,
> especially those who seconded my most recent patch: ===
> 
> Bill has raised several scenarios in which this new requirement could be
> interpreted as making a package RC-buggy, where that might be considered
> unreasonable.  Building in wording to avoid each of the cases would make
> the whole patch a lot more complex, but it could be done.
> 
> An alternative would be for us to weaken the main requirement of the
> patch from 'must' to 'should'.  That way, this patch would not be in the
> business of making any packages RC-buggy.  I don't think Bill thinks his
> cases are not bugs, just that they are not of RC severity.

More accurately: I am not sure the Debian archive is ready for these
bugs to be RC, especially since they are usually upstream bugs.

I can be convinced otherwise with data, though.

Other corner cases are /var/tmp and builds leading to files in /run or
/var to be created or modified. 

Package support for TMPDIR can be introduced as a general requirement,
outside of the build process.

> Concerns about (2): it seems to me that this would not reflect the
> project's consensus that source package builds really should not be
> writing to places outside of TMPDIR and their own trees, aside from the
> final generated binary packages.

Note that you used "should" :)

Maybe the proposal could be rewritten in a way that does not need to
cover the detail of temporaries files.

How about:

+Required targets must not attempt to write outside of the unpacked
+source package tree.  There are two exceptions.  Firstly, the binary
+targets may write the binary packages to the parent directory of the
+unpacked source package tree.  Secondly, required targets may write to
+/tmp, /var/tmp and to the directory specified by the ``TMPDIR`` environment
+ variable, but must not depend on the content of either.
+
+This restriction is intended to prevent source package builds creating
+and depending on state outside of themselves, thus affecting multiple
+independent rebuilds.  In particular, the required targets must not
+attempt to write into ``HOME``.

As far as RC bug are concerned, Policy need to reflect current practice
before the Project's consensus. If a change causes a lot of packages to
be RC buggy, then there is a need for a transition period during which
the bug is not RC and the maintainers are notified of the bugs and given
the opportunity to fix them. The alternative is that the policy
requirement is ignored.

Cheers,
-- 
Bill. <ballombe@debian.org>

Imagine a large red swirl here.

Reply to:

Follow-Ups:
- Bug#845715: Required targets must not write outside of the source package tree
  - From: Holger Levsen <holger@layer-acht.org>
- Bug#845715: Required targets must not write outside of the source package tree
  - From: Sean Whitton <spwhitton@spwhitton.name>

References:
- Bug#845715: Required targets must not write outside of the source package tree
  - From: Russ Allbery <rra@debian.org>
- Bug#845715: Required targets must not write outside of the source package tree
  - From: Bill Allombert <ballombe@debian.org>
- Bug#845715: Required targets must not write outside of the source package tree
  - From: Sean Whitton <spwhitton@spwhitton.name>
- Bug#845715: Required targets must not write outside of the source package tree
  - From: Bill Allombert <ballombe@debian.org>
- Bug#845715: Required targets must not write outside of the source package tree
  - From: Sean Whitton <spwhitton@spwhitton.name>
- Bug#845715: Required targets must not write outside of the source package tree
  - From: Bill Allombert <ballombe@debian.org>
- Bug#845715: Required targets must not write outside of the source package tree
  - From: Sean Whitton <spwhitton@spwhitton.name>

Prev by Date: Bug#845715: Required targets must not write outside of the source package tree
Next by Date: Bug#913295: debian-policy: Update location of example init.d script
Previous by thread: Bug#845715: Required targets must not write outside of the source package tree
Next by thread: Bug#845715: Required targets must not write outside of the source package tree
Index(es):
- Date
- Thread