[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#143537: marked as done (apt: APT should restart daemons as soon as possible.)



Your message dated Fri, 14 Aug 2015 21:04:24 +0200
with message-id <20150814190424.GA7237@crossbow>
and subject line Re: apt-get upgrade could configure packages earlier
has caused the Debian Bug report #22550,
regarding apt: APT should restart daemons as soon as possible.
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
22550: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=22550
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
Package: apt
Version: 0.5.4
Severity: wishlist

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

When upgrading a package containing a daemon of some kind, the preinst
script typically stops the daemon, and the postinst script typically
starts it again. Because APT unpacks a large number of packages in one
phase and then configures them in another phase, it may be a relatively
long time between when the daemon is stopped and when it is restarted.

Most daemons (if not all of them) provide a service of some kind; the
disruption of this service should be kept to a minimum, to minimize
the possibility that there will be an attempt to use the service when
the daemon is not running. Besides the obvious case of Web and mail
servers becoming unavailable, this also means that intrusion-detection
systems which run as daemons (such as network intrusion-detection
systems, which continuously monitor network activity) will become
inactive, giving attackers a window of opportunity to act without being
noticed.

I suggest that packages containing daemons be somehow marked as such
(perhaps with a control field), and that APT insure that the delay
between unpacking and configuration for thusly marked packages is as
short as possible.

To do this, I suggest that upgrade of daemon packages be postponed
until all non-daemon packages have been fully upgraded. Then, each
daemon package should be unpacked and configured separately. The most
obvious way to do this is to use 'dpkg --install', rather than
'dpkg --unpack' and subsequent 'dpkg --configure'.

- -- System Information
Debian Release: 3.0
Architecture: i386
Kernel: Linux cornerstone 2.4.17 #2 Wed Dec 26 02:15:03 PST 2001 i686
Locale: LANG=en_US, LC_CTYPE=en_US

Versions of packages apt depends on:
ii  libc6                         2.2.5-4    GNU C Library: Shared libraries an
ii  libstdc++2.10-glibc2.2        1:2.95.4-7 The GNU stdc++ library

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE8v16vtHQW4HWNftkRAgNVAJsGbPT6106BnX0WJ2uSAcStu7KfUQCgkdb7
fd0Fg6d4GoWqmbyQIYyBeXM=
=NRjy
-----END PGP SIGNATURE-----


--- End Message ---
--- Begin Message ---
Version: 0.9.0

Hi,

On Sun, May 17, 1998 at 09:06:19PM +0200, Peter Maydell wrote:
> It would be nice if apt-get tried to minimise the number of packages
> that are in the unpacked but not configured state, so that the
> machine is generally usable whilst an upgrade is in progress.

I am bugtriaging at DebConf15 and beside all the old cruft I am "happy"
I stumble about such an old bugreport… because I can actually close it!

You see, it is as noted in the buglog already kinda against the design
of APT to do this as this leads to upgrades taking a LOT longer.  And
even if you do it, you can never be sure that everything will always
work as however small, there is always a window in which it doesn't
work. Also, thanks do 'dependency hell' a minimised number can still be
hundreds of packages, so I wouldn't expect miracles.

All that said we actually have an option nowadays which tries to do what
you want with the wonderful name:  APT::Immediate-Configure-All.

So, closing a feature request from apt year one as done. :D


Best regards

David Kalnischkies

Attachment: signature.asc
Description: Digital signature


--- End Message ---

Reply to: