Hi Steve,

I would not bother too much, actually I'm winding why ceph was not yet removed from the 32bit architectures. It's just not supported by upstream and although it builds, I would not trust it to work correctly.


Bernd

31.01.2024 10:03:28 Steve Langasek <vorlon@debian.org>:

Source: ceph
Version: 16.2.11+ds-5
Severity: serious
Tags: patch pending
Justification: library ABI skew on upgrade
User: debian-arm@lists.debian.org
Usertags: time-t

Dear maintainer,

As part of the 64-bit time_t transition required to support 32-bit architectures in 2038 and beyond (https://wiki.debian.org/ReleaseGoals/64bit-time), we have identified
ceph as a source package shipping runtime libraries whose ABI
either is affected by the change in size of time_t, or could not be
analyzed via abi-compliance-checker (and therefore to be on the safe
side we assume is affected).

To ensure that inconsistent combinations of libraries with their reverse-dependencies are never installed together, it is necessary to
have a library transition, which is most easily done by renaming the
runtime library package.

Since turning on 64-bit time_t is being handled centrally through a change
to the default dpkg-buildflags (https://bugs.debian.org/1037136), it is important that libraries affected by this ABI change all be uploaded close together in time.  Therefore I have prepared a 0-day NMU for ceph
which will initially be uploaded to experimental if possible, then to unstable after packages have cleared binary NEW.

Please find the patch for this NMU attached.

If you have any concerns about this patch, please reach out ASAP.  Although this package will be uploaded to experimental immediately, there will be a period of several days before we begin uploads to unstable; so if information becomes available that your package should not be included in the transition, there is time for us to amend the planned uploads.

-- System Information:
Debian Release: trixie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 6.5.0-14-generic (SMP w/12 CPU threads; PREEMPT)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE
Locale: LANG=C, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Wed, Feb 28, 2024 at 12:50:16AM +0100, Thomas Goirand wrote:

Hi Steve,

The time_t transition was only for 32 bits arch support, right? It needs nothing in 64 bits arch.

If that's the case, then you can remove Ceph from your list. The
Experimental package of Ceph, already lost support for 32 bits, and I asked all reverse dependency maintainers to remove Ceph support on 32 bits arch (this includes various packages like Samba, Qemu, etc.).

When I'll have time to work on Ceph again, then I'll upload Ceph 18.2.x from Experimental, and that will mean no 32 bits support for Ceph in Debian anymore.

Can you please confirm that I'm right above, so that on my next upload of Ceph 18.2.x to unstable, I can close this bug?

Yes, if you are dropping 32-bit support then you can close the bug then.

In the short term, this is still on the list of packages to NMU for
transition. Even if it will be dropped on armhf before release, we don't
want to risk problems with ABI skew of the existing reverse-dependencies clogging up buildability or migratability so it's safest to just make sure
we rebuild with the new name. But once 32-bit is dropped you should feel
free to ignore the rename (except perhaps that you should then add Provides/Breaks/Replaces back the other direction for t64).

--
Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. Ubuntu Developer https://www.debian.org/ slangasek@ubuntu.com vorlon@debian.org

-----BEGIN PGP SIGNATURE-----

iQIzBAABCgAdFiEErEg/aN5yj0PyIC/KVo0w8yGyEz0FAmXeePUACgkQVo0w8yGy Ez0IxhAAljVQsbQMoLKAsHlzfxJym6GpKI/fE8RnEx6kKyqco3+WFcKkCA84tZ28 eS9uELKV4M7eXNUu75+yT7X1e3xkYIh1uOylkCaVEIr9FZibqlXr2SQelOQs7tb6 mrziFHkCuIt99fdjP6ygVQVtMSqHAt+CL5rVgyFl2EY5JjzXIRoHqaHdM1ykwQrR VEBNDZGa2FjVSopQtiFoYbmY5wltMPnCOBjKo2S+XCZ+GL2dyGjxicMLb3VpmBlv PaUh3G3Vvcn04lzrp5xlcJx/3oON3buWqZvkyv2JWMP/xj7TryZ+nKo7L7FgU7Eu sj6tuAGToIflt+Y4zhYPCXbek765NlgvmLvi/BHG8rnAQoaXGW5WzdetyhhRZ6Ah jlR3yxRKrVmTaoQlyPKpztIFrJoFx9dJ7i4C6L5v1u5E0Hq593hTAwyYubSvB+CF QM+HluBsHxqTRTUf85xaEwqvuF87c7wqA1vQ51iN3PFU+IKw4K+XPYbFnCoALeLX GXbjfUkOSBr2zoCgS0QoRYDWlHrdz4jzsMBCOR5elU5qL8D2etaEaAqQ8ox1pMh/ yWjwK7NfhE5VYj6Ah3+X

This is a multi-part MIME message sent by reportbug.


Dear maintainer,

Please find attached a final version of this patch for the time_t
transition. This patch is being uploaded to unstable.

Note that this adds a versioned build-dependency on dpkg-dev, to guard
against accidental backports with a wrong ABI.

Thanks!


-- System Information:
Debian Release: trixie/sid
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 6.5.0-14-generic (SMP w/12 CPU threads; PREEMPT)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE
Locale: LANG=C, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

diff -Nru ceph-16.2.11+ds/debian/changelog ceph-16.2.11+ds/debian/changelog
--- ceph-16.2.11+ds/debian/changelog 2023-10-09 06:53:31.000000000 +0000
+++ ceph-16.2.11+ds/debian/changelog 2024-02-28 18:21:22.000000000 +0000
@@ -1,3 +1,10 @@
+ceph (16.2.11+ds-5.1) unstable; urgency=medium
+
+ * Non-maintainer upload.
+ * Rename libraries for 64-bit time_t transition. Closes: #1062065
+
+ -- Steve Langasek <vorlon@debian.org> Wed, 28 Feb 2024 18:21:22 +0000
+
ceph (16.2.11+ds-5) unstable; urgency=high

* CVE-2023-43040: security issue with RGW with improperly verified POST keys.
diff -Nru ceph-16.2.11+ds/debian/control ceph-16.2.11+ds/debian/control
--- ceph-16.2.11+ds/debian/control 2023-10-09 06:53:31.000000000 +0000
+++ ceph-16.2.11+ds/debian/control 2024-02-28 18:21:22.000000000 +0000
@@ -7,7 +7,7 @@
Gaudenz Steinlin <gaudenz@debian.org>,
Bernd Zeimetz <bzed@debian.org>,
Thomas Goirand <zigo@debian.org>,
-Build-Depends:
+Build-Depends: dpkg-dev (>= 1.22.5),
cmake,
cython3,
debhelper-compat (= 11),
@@ -142,9 +142,9 @@
btrfs-tools,
cep