Debian Bug report logs - #1068197
debian-installer: accesses the internet during build

Package: src:debian-installer; Maintainer for src:debian-installer is Debian Install System Team <[email protected]>;

Affects: buildd.debian.org

Reported by: Aurelien Jarno <[email protected]>

Date: Mon, 1 Apr 2024 16:57:04 UTC

Severity: serious

Tags: ftbfs

Reply or subscribe to this bug.

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to [email protected], [email protected], [email protected], Debian Install System Team <[email protected]>:
Bug#1068197; Package src:debian-installer. (Mon, 01 Apr 2024 16:57:05 GMT) (full text, mbox, link).

Acknowledgement sent to Aurelien Jarno <[email protected]>:
New Bug report received and forwarded. Copy sent to [email protected], [email protected], Debian Install System Team <[email protected]>. (Mon, 01 Apr 2024 16:57:05 GMT) (full text, mbox, link).

Message #5 received at [email protected] (full text, mbox, reply):

From: Aurelien Jarno <[email protected]>
To: Debian Bug Tracking System <[email protected]>
Subject: debian-installer: accesses the internet during build
Date: Mon, 01 Apr 2024 18:55:43 +0200
Source: debian-installer
Severity: serious
Justification: Policy 4.9
X-Debbugs-Cc: [email protected], [email protected]
Control: affects -1 buildd.debian.org

Hi,

debian-installer attemps network access during build, although only to
the mirrors listed in /etc/apt/sources.list and in a secure way. This is
forbidden by Policy 4.9:

  For packages in the main archive, required targets must not attempt
  network access, except, via the loopback interface, to services on the
  build host that have been started by the build.

In addition this brings constraints to the build daemons infrastructure.

Regards,
Aurelien

Added indication that 1068197 affects buildd.debian.org Request was from Aurelien Jarno <[email protected]> to [email protected]. (Mon, 01 Apr 2024 16:57:06 GMT) (full text, mbox, link).

Information forwarded to [email protected], Debian Install System Team <[email protected]>:
Bug#1068197; Package src:debian-installer. (Mon, 01 Apr 2024 18:36:04 GMT) (full text, mbox, link).

Acknowledgement sent to Cyril Brulebois <[email protected]>:
Extra info received and forwarded to list. Copy sent to Debian Install System Team <[email protected]>. (Mon, 01 Apr 2024 18:36:04 GMT) (full text, mbox, link).

Message #12 received at [email protected] (full text, mbox, reply):

From: Cyril Brulebois <[email protected]>
To: Jonathan Carter <[email protected]>
Cc: [email protected]
Subject: Re: Bug#1068197: debian-installer: accesses the internet during build
Date: Mon, 1 Apr 2024 20:32:39 +0200
[Message part 1 (text/plain, inline)]
[ Switching from ML to bug. ]

Hi Jonathan,

Jonathan Carter <[email protected]> (2024-04-01):
> On 2024/04/01 18:55, Aurelien Jarno wrote:
> > debian-installer attemps network access during build, although only to
> > the mirrors listed in /etc/apt/sources.list and in a secure way. This is
> > forbidden by Policy 4.9:
> > 
> >    For packages in the main archive, required targets must not attempt
> >    network access, except, via the loopback interface, to services on the
> >    build host that have been started by the build.
> > 
> > In addition this brings constraints to the build daemons infrastructure.
> 
> As far as I know, this doesn't happen until after d-i asked the question "Do
> you want to use a network mirror?" and the user answered "Yes", in which
> case I think that would count as informed consent.

This isn't about d-i runtime, this is about src:debian-installer's
*build* requiring network access, which is a very well known problem
(even though there are no obvious solutions, at least that I'm aware
of), and that's now getting in the way of changes being considered 
regarding the buildd network.


Cheers,
-- 
Cyril Brulebois ([email protected])            <https://debamax.com/>
D-I release manager -- Release team member -- Freelance Consultant

[signature.asc (application/pgp-signature, inline)]

Added tag(s) ftbfs. Request was from Santiago Vila <[email protected]> to [email protected]. (Sun, 06 Oct 2024 23:21:01 GMT) (full text, mbox, link).

Send a report that this bug log contains spam.

Debian bug tracking system administrator <[email protected]>. Last modified: Tue May 13 05:21:12 2025; Machine Name: buxtehude

Debian Bug tracking system

Debbugs is free software and licensed under the terms of the GNU General Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.