Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6

To: Shengjing Zhu <zhsj@debian.org>
Cc: 990825@bugs.debian.org
Subject: Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6
From: Sebastian Ramacher <sramacher@debian.org>
Date: Sat, 17 Jul 2021 20:59:57 +0200
Message-id: <[🔎] YPMorYwnCI8yYSIc@ramacher.at>
Reply-to: Sebastian Ramacher <sramacher@debian.org>, 990825@bugs.debian.org
In-reply-to: <[🔎] CAFyCLW9dak+qFzJDEN9N08TOVR_b+CRG2N1L_HpeZEuQaOT-6g@mail.gmail.com>
References: <[🔎] CAKTje6F3ru3gnjsoXbJ=wY5=x0MkXFd2XVFs5g12TfGyTZP-wQ@mail.gmail.com> <[🔎] YO7Vtd1N7qEKdQI8@local.zhsj.me> <[🔎] fae8ab846e9cdb6e1f91001c8b8a19da2c24f4b2.camel@debian.org> <[🔎] CAFyCLW_fFqWtiJakEWDe0uQ_-tMONb0xF=NHvdQY1BS7TB0fiQ@mail.gmail.com> <YOcd12b/OMPuuSPR@local.zhsj.me> <[🔎] CAFyCLW-qzeKm=yusWUHrrdOzfyKmGY-YSDy68nfVUKw=jP1z+A@mail.gmail.com> <YPMhhN+jz/Zd4mkm@ramacher.at> <[🔎] CAFyCLW_vWBZTLNSEP-6yvb+7Uh=OamU1h=9ffApBu_gOaRJUoQ@mail.gmail.com> <YPMnCD77Vq/r9o2n@ramacher.at> <[🔎] CAFyCLW9dak+qFzJDEN9N08TOVR_b+CRG2N1L_HpeZEuQaOT-6g@mail.gmail.com> <YOcd12b/OMPuuSPR@local.zhsj.me>

On 2021-07-18 02:54:31 +0800, Shengjing Zhu wrote:
> On Sun, Jul 18, 2021 at 2:52 AM Sebastian Ramacher <sramacher@debian.org> wrote:
> >
> > On 2021-07-18 02:49:26 +0800, Shengjing Zhu wrote:
> > > On Sun, Jul 18, 2021 at 2:29 AM Sebastian Ramacher <sramacher@debian.org> wrote:
> > > >
> > > > On 2021-07-15 02:03:19 +0800, Shengjing Zhu wrote:
> > > > > On Thu, Jul 15, 2021 at 2:02 AM Shengjing Zhu <zhsj@debian.org> wrote:
> > > > > >
> > > > > > On Thu, Jul 15, 2021 at 1:54 AM Paul Wise <pabs@debian.org> wrote:
> > > > > > >
> > > > > > > On Wed, 2021-07-14 at 20:16 +0800, Shengjing Zhu wrote:
> > > > > > >
> > > > > > > > That feels over-engineering/energy-wasting.
> > > > > > >
> > > > > > > Another option would be to search the source code, and these findings
> > > > > > > would need to be confirmed using grep, but looking at codesearch:
> > > > > > >
> > > > > > >    https://codesearch.debian.net/search?q=%5C.generateClientKeyExchange&literal=0
> > > > > > >
> > > > > >
> > > > > > generateClientKeyExchange is not an exported function, which is
> > > > > > expected to be called by other library/softwares.
> > > > >
> > > > > oops, it should be "which is not expected..."
> > > >
> > > > What's the status? If we cannot reduce the number of packages to binNMU,
> > > > then this needs to happen soon. Otherwise there won't be enough time to
> > > > chase all the rebuilds.
> > > >
> > >
> > > From my perspertive, for std library security fix in Go compiler, it's
> > > better to rebuild all Go packages.
> > >
> > > It's not possible to figure out the affected packages at sub-lib(eg
> > > the crypto/tls package in std lib) level by source package.
> > > Only possible with binary packages, either by
> > > + disassemble
> > > + or rebuild at local first to see if the result binary changes.
> > >
> > > PS, the embedded version of Go std libary is tracked at all Go
> > > packages' Built-Using field. And it's only tracked at source package
> > > level, not every sub-lib level.
> > > So for other Go lib packages security updates, we don't need to
> > > rebuild the world.
> >
> > Sorry, I meant: what's the status of the golang-1.15 upload?
> >
> 
> Not uploaded yet. But I have sent the debdiff, and wait for the ACK.
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990825#17

Ah, I missed the debdiff due to the other discussion. Please go ahead.

Cheers

> 
> -- 
> Shengjing Zhu

-- 
Sebastian Ramacher

Attachment: signature.asc
Description: PGP signature

Reply to:

Follow-Ups:
- Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6
  - From: Shengjing Zhu <zhsj@debian.org>

References:
- Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6
  - From: Paul Wise <pabs@debian.org>
- Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6
  - From: Shengjing Zhu <zhsj@debian.org>
- Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6
  - From: Paul Wise <pabs@debian.org>
- Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6
  - From: Shengjing Zhu <zhsj@debian.org>
- Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6
  - From: Shengjing Zhu <zhsj@debian.org>
- Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6
  - From: Shengjing Zhu <zhsj@debian.org>
- Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6
  - From: Sebastian Ramacher <sramacher@debian.org>
- Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6
  - From: Shengjing Zhu <zhsj@debian.org>
- Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6
  - From: Sebastian Ramacher <sramacher@debian.org>
- Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6
  - From: Shengjing Zhu <zhsj@debian.org>

Prev by Date: Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6
Next by Date: Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6
Previous by thread: Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6
Next by thread: Bug#990825: [pre-approval] unblock: golang-1.15/1.15.9-6
Index(es):
- Date
- Thread