Your message dated Wed, 18 Apr 2018 05:49:51 +0000
with message-id <e1f8fyz-000dyw...@fasolo.debian.org>
and subject line Bug#895811: fixed in inotify-tools 3.14-5
has caused the Debian Bug report #895811,
regarding inotify-tools: do not enable sanitizers in production
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
895811: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=895811
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: inotify-tools
Version: 3.14-4
Severity: grave
Hi,
In inotify-tools 3.14-4, all the qa sanitizers were enabled in
DEB_BUILD_MAINT_OPTIONS. This should not be done in production.
* Many architectures do not support sanitizers. Your package FTBFS on
mips* due to this. While clang supports ASan on mips, gcc does not.
* The man page for dpkg-buildflags explicitly states these options
should not be used in production builds and are for debugging only.
* Enabling sanitizers causes an approx 2x performance penalty.
* Enabling ASan changes the behavior of a program in some circumstances
(mainly relating to memory management and things like LD_PRELOAD no
longer work without hacks). Enabling ASan in a library package is even
worse because you will impose these behavior changes on all users of
your library who may not be expecting them.
* ASan complains about memory leaks and these are easy to reproduce with
inotify-tools. While this is very useful during development, I do not
think users should be subjected to these types of bugs which are mostly
harmless. Eg run inotifywait without any arguments are ASan will
complain loudly.
* Users of libinotifytools0 must now enable ASan themselves or use the
LD_PRELOAD hack otherwise they will not start. For example, the attached
simple test program fails to run with:
==19349==ASan runtime does not come first in initial library list; you
should either link runtime to your application or manually preload it
with LD_PRELOAD.
Thanks,
James
#include <inotifytools/inotifytools.h>
int main(void)
{
inotifytools_initialize();
return 0;
}
signature.asc
Description: OpenPGP digital signature
--- End Message ---
--- Begin Message ---
Source: inotify-tools
Source-Version: 3.14-5
We believe that the bug you reported is fixed in the latest version of
inotify-tools, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 895...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Dmitry Bogatov <kact...@gnu.org> (supplier of updated inotify-tools package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 17 Apr 2018 22:22:55 +0300
Source: inotify-tools
Binary: libinotifytools0 libinotifytools0-dev inotify-tools
Architecture: source
Version: 3.14-5
Distribution: unstable
Urgency: medium
Maintainer: Dmitry Bogatov <kact...@gnu.org>
Changed-By: Dmitry Bogatov <kact...@gnu.org>
Description:
inotify-tools - command-line programs providing a simple interface to inotify
libinotifytools0 - utility wrapper around inotify
libinotifytools0-dev - Development library and header files for
libinotifytools0
Closes: 895811
Changes:
inotify-tools (3.14-5) unstable; urgency=medium
.
* Disable sanitize build flags (Closes: #895811)
* Remove sanitize symbols from symbols file
Checksums-Sha1:
3770863da28cfd2b2ddf4d430a31a72cdb7006c0 2194 inotify-tools_3.14-5.dsc
9205cbcf4f73d61c655c896fb8e347958e51bf01 6832 inotify-tools_3.14-5.diff.gz
Checksums-Sha256:
7318692288a7d17621ba9c599962aba60e569a5bff7098d6145b25e526ed8528 2194
inotify-tools_3.14-5.dsc
05c837ee4e66d57f9c7538145327de82d1ee2a8f28315689d8931024945f3ab9 6832
inotify-tools_3.14-5.diff.gz
Files:
b18782f7d24957de71476a62f000219f 2194 misc optional inotify-tools_3.14-5.dsc
d82f8f7981dd5f4246a7db2de31aceec 6832 misc optional
inotify-tools_3.14-5.diff.gz
-----BEGIN PGP SIGNATURE-----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=4aIx
-----END PGP SIGNATURE-----
--- End Message ---
