Bug#776144: unblock: dbus/1.8.14-1

To: 776144@bugs.debian.org
Cc: kibi@debian.org
Subject: Bug#776144: unblock: dbus/1.8.14-1
From: Simon McVittie <smcv@debian.org>
Date: Tue, 3 Feb 2015 21:47:44 +0000
Message-id: <[🔎] 20150203214736.GA22437@perpetual.pseudorandom.co.uk>
Reply-to: Simon McVittie <smcv@debian.org>, 776144@bugs.debian.org
In-reply-to: <20150131113819.GA11226@lupin.home.powdarrmonkey.net>
References: <20150124132221.GA14895@reptile.pseudorandom.co.uk> <20150131113819.GA11226@lupin.home.powdarrmonkey.net>

Control: retitle 776144 unblock: dbus/1.8.14-2
Control: tags 776144 - d-i

On Sat, 31 Jan 2015 at 12:38:19 +0100, Jonathan Wiltshire wrote:
> On Sat, Jan 24, 2015 at 01:22:30PM +0000, Simon McVittie wrote:
> > Please consider unblocking dbus/1.8.14-1, a minimal upstream release
> > adding some security hardening to mitigate incorrect third-party <allow/>
> > rules in /etc/dbus-1/system.d.
> 
> Unblocked, but needs a d-i ack.

While I'm waiting for the d-i ack anyway, I've uploaded dbus/1.8.14-2 to
avoid the bad dbus/systemd trigger interactions in upgrades. No changes except
for changing the interest to interest-noawait, which I'm told is sufficient;
diff (relative to the one that was already unblocked) below.

You might want to reduce the migration delay for this, since fixing this
trigger stuff has dragged on and on. Up to you.

Regards,
    S

diffstat for dbus-1.8.14 dbus-1.8.14

 changelog     |   15 +++++++++++++++
 dbus.triggers |    4 ++--
 2 files changed, 17 insertions(+), 2 deletions(-)

diff -Nru dbus-1.8.14/debian/changelog dbus-1.8.14/debian/changelog
--- dbus-1.8.14/debian/changelog	2015-01-02 11:07:15.000000000 +0000
+++ dbus-1.8.14/debian/changelog	2015-02-03 17:28:46.000000000 +0000
@@ -1,3 +1,18 @@
+dbus (1.8.14-2) unstable; urgency=high
+
+  * Relax the triggers from interest to interest-noawait (Closes: #771989;
+    mitigates: #776063; partially reopens: #740139).
+
+    This is not strictly correct, because the purpose of the triggers
+    is to set up the .conf, .service files for system services before those
+    services satisfy dependencies. However, it mitigates #776063
+    (apt getting into a stuck state during upgrades), and should in
+    principle be redundant anyway, because dbus-daemon is meant to use
+    inotify to keep up with configuration changes. See #771989, #776063
+    for details.
+
+ -- Simon McVittie <smcv@debian.org>  Tue, 03 Feb 2015 17:28:12 +0000
+
 dbus (1.8.14-1) unstable; urgency=medium
 
   * New upstream release to harden dbus-daemon against packages that install
diff -Nru dbus-1.8.14/debian/dbus.triggers dbus-1.8.14/debian/dbus.triggers
--- dbus-1.8.14/debian/dbus.triggers	2015-01-02 11:07:15.000000000 +0000
+++ dbus-1.8.14/debian/dbus.triggers	2015-02-03 17:28:46.000000000 +0000
@@ -1,2 +1,2 @@
-interest /etc/dbus-1/system.d
-interest /usr/share/dbus-1/system-services
+interest-noawait /etc/dbus-1/system.d
+interest-noawait /usr/share/dbus-1/system-services

Reply to:

Follow-Ups:
- Bug#776144: unblock: dbus/1.8.16-1
  - From: Simon McVittie <smcv@debian.org>

Prev by Date: NEW changes in stable-new
Next by Date: Processed: Re: Bug#776144: unblock: dbus/1.8.14-1
Previous by thread: Bug#776989: marked as done (unblock: util-linux/2.25.2-5)
Next by thread: Processed: Re: Bug#776144: unblock: dbus/1.8.14-1
Index(es):
- Date
- Thread