Bug#1064838: New package names break APT safety features, ability to co-install different ABIs

2024-02-26 Thread Bastian Blank
On Mon, Feb 26, 2024 at 02:20:41PM +0100, Julian Andres Klode wrote:
> After we had discussed the new proposal a couple months ago and were
> left with severe open questions and concerns it seems that these have
> been ignored and the packages uploaded anyway, breaking APT's algorithm
> that ensures the currently booted kernel is not offered for removal, as
> well as possibly others.

The change for that is not even in.  Where do you see it?

| $ dpkg -l linux-image-$(uname -r)
| Desired=Unknown/Install/Remove/Purge/Hold
| | Status=Not/Inst/Conf-files/Unpacked/halF-conf/Half-inst/trig-aWait/Trig-pend
| |/ Err?=(none)/Reinst-required (Status,Err: uppercase=bad)
| ||/ NameVersion  Architecture Description
| 
+++-===---===
| ii  linux-image-6.7-cloud-amd64 6.7.4-1~exp1 amd64Linux 6.7 for 
x86-64 cloud (signed)

Also #1060109 is still unanswered.

> In addition, this means that the ABI changes within the same package
> names, causing different ABIs to no longer be co-installable, which can
> have drastic effect on thef function of systems:

I asked you several times now: please show a problem.  And I also told
you this does not work within the confines of Debian.  And neither did
the kernel team provide this guarantee in the past.

So I only see a way forward by preserving modules outside of the normal
package lifecycle.  Something that is ephemeral and so cleaned up
automatically on shutdown.

Bastian

-- 
Spock: The odds of surviving another attack are 13562190123 to 1, Captain.



Processed: Re: Processed: Re: Bug#1064838: New package names break APT safety features, ability to co-install different ABIs

2024-02-26 Thread Debian Bug Tracking System
Processing control commands:

> reassign -1 linux
Bug #1064838 [linux] New package names break APT safety features, ability to 
co-install different ABIs
Ignoring request to reassign bug #1064838 to the same package

-- 
1064838: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064838
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems



Re: Processed: Re: Bug#1064838: New package names break APT safety features, ability to co-install different ABIs

2024-02-26 Thread Christoph Berg
Control: reassign -1 linux

Re: Debian Bug Tracking System
> Processing control commands:
> 
> > reassign -1 tech-ctte
> Bug #1064838 [src:linux] New package names break APT safety features, ability 
> to co-install different ABIs

Please only reassign to tech-ctte after the actual discussion has
finished with an open dispute. I see you have open questions to Julian
in the bug.

Christoph



Processed: Re: Bug#1064838: New package names break APT safety features, ability to co-install different ABIs

2024-02-26 Thread Debian Bug Tracking System
Processing control commands:

> reassign -1 tech-ctte
Bug #1064838 [src:linux] New package names break APT safety features, ability 
to co-install different ABIs
Bug reassigned from package 'src:linux' to 'tech-ctte'.
Ignoring request to alter found versions of bug #1064838 to the same values 
previously set
Ignoring request to alter fixed versions of bug #1064838 to the same values 
previously set
> severity -1 normal
Bug #1064838 [tech-ctte] New package names break APT safety features, ability 
to co-install different ABIs
Severity set to 'normal' from 'serious'

-- 
1064838: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064838
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems



Bug#1064838: New package names break APT safety features, ability to co-install different ABIs

2024-02-26 Thread Bastian Blank
Control: reassign -1 tech-ctte
Control: severity -1 normal

On Mon, Feb 26, 2024 at 02:20:41PM +0100, Julian Andres Klode wrote:
> In addition, this means that the ABI changes within the same package
> names, causing different ABIs to no longer be co-installable, which can
> have drastic effect on thef function of systems:

This is documented.  Unstable and experimental don't need hand holding.

> - modules will fail to load until you reboot

Yes.  That's why I wanted to rename the ABI of the kernel away from the
package name.

> - modules needed to reboot will fail to load until you reboot (if any)

Please provide an example.  Sorry.

Bastian

-- 
The man on tops walks a lonely street; the "chain" of command is often a noose.



Bug#1064838: New package names break APT safety features, ability to co-install different ABIs

2024-02-26 Thread Julian Andres Klode
On Mon, Feb 26, 2024 at 02:20:41PM +0100, Julian Andres Klode wrote:
> Source: linux
> Severity: serious
> X-Debbugs-Cc: j...@debian.org
> 
> After we had discussed the new proposal a couple months ago and were
> left with severe open questions and concerns it seems that these have
> been ignored and the packages uploaded anyway, breaking APT's algorithm
> that ensures the currently booted kernel is not offered for removal, as
> well as possibly others.
> 
> In addition, this means that the ABI changes within the same package
> names, causing different ABIs to no longer be co-installable, which can
> have drastic effect on thef function of systems:
> 
> - modules will fail to load until you reboot
> - modules needed to reboot will fail to load until you reboot (if any)
> 
> I do not believe fucking up our users for convenience of the maintainers
> and lacking of tools on the ftpmaster side to automatically approve new
> ABI renames is the right call here.
> 
> As such if this change is not reverted, I intend to reassign this to
> the technical committee for deliberation.

This is a followup to the discussion in
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1040901

which we discussed all this in October all these concerns were already
raised in, and lots of open questions remained that we were nowhere near
ready to do this even if we all agreed that was the right move.

-- 
debian developer - deb.li/jak | jak-linux.org - free software dev
ubuntu core developer  i speak de, en



Bug#1064838: New package names break APT safety features, ability to co-install different ABIs

2024-02-26 Thread Julian Andres Klode
Source: linux
Severity: serious
X-Debbugs-Cc: j...@debian.org

After we had discussed the new proposal a couple months ago and were
left with severe open questions and concerns it seems that these have
been ignored and the packages uploaded anyway, breaking APT's algorithm
that ensures the currently booted kernel is not offered for removal, as
well as possibly others.

In addition, this means that the ABI changes within the same package
names, causing different ABIs to no longer be co-installable, which can
have drastic effect on thef function of systems:

- modules will fail to load until you reboot
- modules needed to reboot will fail to load until you reboot (if any)

I do not believe fucking up our users for convenience of the maintainers
and lacking of tools on the ftpmaster side to automatically approve new
ABI renames is the right call here.

As such if this change is not reverted, I intend to reassign this to
the technical committee for deliberation.

-- System Information:
Debian Release: trixie/sid
  APT prefers noble
  APT policy: (500, 'noble'), (500, 'mantic-security')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 6.8.0-11-generic (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to 
C.UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

-- 
debian developer - deb.li/jak | jak-linux.org - free software dev
ubuntu core developer  i speak de, en