Your message dated Wed, 21 Aug 2013 21:03:24 +0000 with message-id <[email protected]> and subject line Bug#671726: fixed in apt 0.9.11 has caused the Debian Bug report #671726, regarding apt: should be able to provide hook information through a named pipe to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [email protected] immediately.) -- 671726: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=671726 Debian Bug Tracking System Contact [email protected] with problems
--- Begin Message ---Package: apt Version: 0.8.15.10 Severity: wishlist Dear APT deity team, I am one of the co-maintainers of the apt-listbugs package. Currently, apt-listbugs is automatically invoked by apt-get and aptitude (and other compatible package managers) thanks to the following Pre-Install-Pkgs hook: $ cat /etc/apt/apt.conf.d/10apt-listbugs // Check all packages whether they has critical bugs before they are installed. // If you don't like it, comment it out. DPkg::Pre-Install-Pkgs {"/usr/sbin/apt-listbugs apt || exit 10";}; DPkg::Tools::Options::/usr/sbin/apt-listbugs ""; DPkg::Tools::Options::/usr/sbin/apt-listbugs::Version "2"; // AptListbugs::IgnoreRegexp "FTBFS"; apt-listbugs reads the input provided by apt(itude) through the Pre-Install-Pkgs hook info protocol version 2; this input is provided to apt-listbugs on its stdin, as through a pipe. This has recently become problematic, due to a security fix in package login, version 1:4.1.5-1 . See bug #662983 for more details on this issue. I have implemented a temporary work around for bug #662983, but it's rather unsatisfactory, frankly speaking... In order to implement a more radical fix for this issue, I would need a new feature in apt(itude): the hook protocol version 2 information should be sent through a dedicated named pipe, rather than to the stdin of the invoked command. This named pipe should be created in a safe way (as done by mktemp, for instance), fed with the hook information which will be read by the command invoked by the hook, and then (after the command exited), destroyed properly. It would be ideal, if the name of the FIFO were made available on the commandline as a variable $HOOKPIPE . This behavior should be enabled by an appropriate option. That way, I could modify apt-listbugs so that it could read the hook information from a file the name of which would be passed as a commandline argument: $ cat /etc/apt/apt.conf.d/10apt-listbugs // Check all packages whether they has critical bugs before they are installed. // If you don't like it, comment it out. DPkg::Pre-Install-Pkgs {"/usr/sbin/apt-listbugs apt $HOOKPIPE || exit 10";}; DPkg::Tools::Options::/usr/sbin/apt-listbugs ""; DPkg::Tools::Options::/usr/sbin/apt-listbugs::Version "2"; DPkg::Tools::Options::/usr/sbin/apt-listbugs::Hookpipe "yes"; // AptListbugs::IgnoreRegexp "FTBFS"; I hope this may be implemented soon. Thanks for your time and for maintaining one of the most crucial packages in Debian! -- Package-specific info: -- (/etc/apt/preferences present, but not submitted) -- -- (/etc/apt/sources.list present, but not submitted) -- -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (800, 'testing'), (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-2-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages apt depends on: ii debian-archive-keyring 2010.08.28 ii gnupg 1.4.12-4 ii libc6 2.13-32 ii libgcc1 1:4.7.0-3 ii libstdc++6 4.7.0-3 ii zlib1g 1:1.2.6.dfsg-2 apt recommends no packages. Versions of packages apt suggests: ii apt-doc <none> ii aptitude 0.6.6-1 ii bzip2 1.0.6-1 ii dpkg-dev 1.16.2 ii lzma 9.22-2 ii python-apt 0.8.3+nmu1 -- no debconf information
--- End Message ---
--- Begin Message ---Source: apt Source-Version: 0.9.11 We believe that the bug you reported is fixed in the latest version of apt, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [email protected], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Michael Vogt <[email protected]> (supplier of updated apt package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [email protected]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Wed, 21 Aug 2013 17:51:09 +0200 Source: apt Binary: apt libapt-pkg4.12 libapt-inst1.5 apt-doc libapt-pkg-dev libapt-pkg-doc apt-utils apt-transport-https Architecture: source all amd64 Version: 0.9.11 Distribution: unstable Urgency: low Maintainer: APT Development Team <[email protected]> Changed-By: Michael Vogt <[email protected]> Description: apt - commandline package manager apt-doc - documentation for APT apt-transport-https - https download transport for APT apt-utils - package management related utility programs libapt-inst1.5 - deb package format runtime library libapt-pkg-dev - development files for APT's libapt-pkg and libapt-inst libapt-pkg-doc - documentation for APT development libapt-pkg4.12 - package management runtime library Closes: 671726 705445 705510 719629 Changes: apt (0.9.11) unstable; urgency=low . [ Daniel Hartwig ] * Clarify units of Acquire::http::Dl-Limit (closes: #705445) * Show a error message if {,dist-}upgrade is used with additional arguments (closes: #705510) . [ Michael Vogt ] * lp:~mvo/apt/config-clear: - support Configuration.Clear() for a clear of the entire configuration * lp:~mvo/apt/add-glob-function: - add Glob() to fileutl.{cc,h} * feature/apt-binary2 - refactor large chunks of cmdline/*.cc into a new libapt-private library that is shared between the internal apt cmdline tools - install libapt-private* into the apt binary - add PACKAGE_MATCHER_ABI_COMPAT define so that this branch can be merged without breaking ABI - add lintian override for no-shlibs-control-file so that the internal libapt-private.so.0.0.0 can be shipped - adjust apt.install.in to only install libapt-private.so.* . [ David Kalnischkies ] * ensure that pkgTagFile isn't writing past Buffer length (Closes: 719629) * allow Pre-Install-Pkgs hooks to get info over an FD != stdin (Closes: #671726) . [ Christian PERRIER ] * French translation update. Checksums-Sha1: 4b28be6b00dc228d33446fd70ff14ba609643281 1684 apt_0.9.11.dsc 151001aa30ce495535b33ad8ab58147397bd4293 3404972 apt_0.9.11.tar.gz 80cb76509a95dbfbb358847d3d92678c2039dc3d 265092 apt-doc_0.9.11_all.deb 9e8cbb433fcefe3715323298a29757b898e0c992 552536 libapt-pkg-doc_0.9.11_all.deb ed0562633d11c7420fe35ac739ed2deb50950152 714938 libapt-pkg4.12_0.9.11_amd64.deb b5d91600d2693c34bd81b2d2db4409bf3e7b1d9c 156700 libapt-inst1.5_0.9.11_amd64.deb 54a21e794e3937d7f678b668f869ee209caf4230 1037470 apt_0.9.11_amd64.deb 2214a0aed194b5fba2cbde25ecef09ae5f9b9b48 177478 libapt-pkg-dev_0.9.11_amd64.deb e2189ad42c42ffac7ee528ddae337f2007559867 343788 apt-utils_0.9.11_amd64.deb 8aa72bb6591620ed06dafa4a302e58e93e38fc46 111970 apt-transport-https_0.9.11_amd64.deb Checksums-Sha256: bd799834c6f7508d2cd0bcf6c32b92708dbb2d7523906c4044f6f980d99061f3 1684 apt_0.9.11.dsc 85b50b5f49d33cdad55a6e9a2b5148212326e3906fcabc74dc418c58598f615b 3404972 apt_0.9.11.tar.gz 3d90e82e51c70cd7439377506302f61335523f59f93c2f60c1d77ff266d18cbf 265092 apt-doc_0.9.11_all.deb 8673e045ffe92fa0a32304fe5e07c26dd543a9103710b099bc7c2a70f9d41ec3 552536 libapt-pkg-doc_0.9.11_all.deb 8982a23334ae487e54f72fa8e3d16883e1a4a4a0087b280f483f30a42f3d9fea 714938 libapt-pkg4.12_0.9.11_amd64.deb 82e5275ecbc037bba83e87eb73b2b70c13c2e1d62124c1222ff8335081457810 156700 libapt-inst1.5_0.9.11_amd64.deb ab026dbe1c26b6f41b39eb0dcb286d0a1007e6b34cbf19129a1154439a6bb791 1037470 apt_0.9.11_amd64.deb 7af960ca121b4540db5b1abad564cc96436f8d6f49c0a481c43459e9cc7b163d 177478 libapt-pkg-dev_0.9.11_amd64.deb 7b1d2952a066df69044b66990d04935baf39fef72c994278bbb732cac8213cee 343788 apt-utils_0.9.11_amd64.deb de84b508f24285b79b60af4d0ab28d532c2f67cf629a87ebf461ff86f567d8e8 111970 apt-transport-https_0.9.11_amd64.deb Files: 3af7a2066dbc5a46406f90f40f6c32a2 1684 admin important apt_0.9.11.dsc dab539fc0260e95e21d8099833d75925 3404972 admin important apt_0.9.11.tar.gz 70d7c73036d27f3d1eea80306e11d2e9 265092 doc optional apt-doc_0.9.11_all.deb cbe929fe3ce4f1dfcb16b1bbb6f59989 552536 doc optional libapt-pkg-doc_0.9.11_all.deb 02400ac5a3ecd5061b918a1c30bd79e4 714938 libs important libapt-pkg4.12_0.9.11_amd64.deb 0ce58d757e3f954e9c9f9e540a108b03 156700 libs important libapt-inst1.5_0.9.11_amd64.deb 88797907b34d8f2c4d0e13e8109f3d1e 1037470 admin important apt_0.9.11_amd64.deb 4fd7f50cbc82ee10673ea449c0f0f186 177478 libdevel optional libapt-pkg-dev_0.9.11_amd64.deb af8ac21950b46bae9a8e15c59ce7176b 343788 admin important apt-utils_0.9.11_amd64.deb a24176e9e25575361659ee01d038918c 111970 admin optional apt-transport-https_0.9.11_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (GNU/Linux) iEYEARECAAYFAlIU/48ACgkQliSD4VZixzSmJwCeKAUlyXd/YzmSDi1k5rFvMfn0 L5AAn2GMxt3nIAZw64c4/LUNpmjhV3uI =f0E/ -----END PGP SIGNATURE-----
--- End Message ---

