Package: sbox-dtc Version: 1.11.2-2 Severity: serious User: debian...@lists.debian.org Usertags: piuparts piuparts.d.o
Hi, during a test with piuparts I noticed your package left unowned files on the system after purge, which is a violation of policy 6.8: http://www.debian.org/doc/debian-policy/ch-maintainerscripts.html#s-removedetails From the attached log (scroll to the bottom...): 0m10.9s ERROR: FAIL: Package purging left files on system: /home/dtc not owned /home/dtc/.bash_logout not owned /home/dtc/.bashrc not owned /home/dtc/.profile not owned /var/log/sbox.log not owned If your package had only left files in /var/log after purge, I would have filed this as important. But as your package created /home/dtc (WTF?!), I'm filing this as it is. cheers, Holger
Start: 2010-12-04 15:02:32 UTC Package: sbox-dtc Priority: optional Section: web Installed-Size: 732 Maintainer: Thomas Goirand <z...@debian.org> Architecture: amd64 Version: 1.11.2-2 Depends: debconf (>= 0.5) | debconf-2.0, debconf, libdotconf1.0, passwd, libc6 (>= 2.2.5) Recommends: apache2 | httpd-cgi Filename: pool/main/s/sbox-dtc/sbox-dtc_1.11.2-2_amd64.deb Size: 290964 MD5sum: 75f5603dd0fa23be342460fcf1e6908f SHA1: 90e4fd24c4e728fc8a668f648409e1c5515b9269 SHA256: 49465e907f9bf5f887830470510520a27450086d418b9c33292a69cdc55240cb Description: A CGI wrapper script for chrooted environment for hosting Sbox is a CGI wrapper script that allows Web site hosting services to safely grant CGI authoring privileges to untrusted clients. In addition to changing the process privileges of client scripts to match their owners, it goes beyond other wrappers by placing configurable ceilings on script resource usage, avoiding unintentional (as well as intentional) denial of service attacks. It also optionally allows the Webmaster to place client's CGI scripts in a chroot'ed shell restricted to the author's home directories. Homepage: http://www.gplhost.com/software-sbox.html Executing: sudo /org/piuparts.debian.org/sbin/piuparts --warn-symlinks --warn-on-others --skip-logrotatefiles-test --scriptsdir /etc/piuparts/scripts/ --tmpdir /org/piuparts.debian.org/tmp -ad sid -b sid.tar.gz --mirror http://piatti.debian.org/debian/ sbox-dtc Guessed: debian 0m0.0s INFO: ------------------------------------------------------------------------------ 0m0.0s INFO: To quickly glance what went wrong, scroll down to the bottom of this logfile. 0m0.0s INFO: FAQ available at http://wiki.debian.org/piuparts/FAQ 0m0.0s INFO: ------------------------------------------------------------------------------ 0m0.0s INFO: piuparts version 0.39~201011281218 starting up. 0m0.0s INFO: Command line arguments: /org/piuparts.debian.org/sbin/piuparts --warn-symlinks --warn-on-others --skip-logrotatefiles-test --scriptsdir /etc/piuparts/scripts/ --tmpdir /org/piuparts.debian.org/tmp -ad sid -b sid.tar.gz --mirror http://piatti.debian.org/debian/ sbox-dtc 0m0.0s INFO: Running on: Linux piatti 2.6.32.26-dsa-amd64 #1 SMP Mon Nov 22 22:12:25 UTC 2010 x86_64 0m0.0s DEBUG: Created temporary directory /org/piuparts.debian.org/tmp/tmpo-guVg 0m0.0s DEBUG: Unpacking sid.tar.gz into /org/piuparts.debian.org/tmp/tmpo-guVg 0m0.0s DEBUG: Starting command: ['tar', '-C', '/org/piuparts.debian.org/tmp/tmpo-guVg', '-zxf', 'sid.tar.gz'] 0m2.1s DEBUG: Command ok: ['tar', '-C', '/org/piuparts.debian.org/tmp/tmpo-guVg', '-zxf', 'sid.tar.gz'] 0m2.1s DEBUG: Created policy-rc.d and chmodded it. 0m2.1s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'apt-get', 'update'] 0m4.7s DUMP: Get:1 http://piatti.debian.org sid Release.gpg [835 B] Ign http://piatti.debian.org/debian/ sid/contrib Translation-en Ign http://piatti.debian.org/debian/ sid/main Translation-en Ign http://piatti.debian.org/debian/ sid/non-free Translation-en Get:2 http://piatti.debian.org sid Release [104 kB] Ign http://piatti.debian.org sid/main amd64 Packages/DiffIndex Ign http://piatti.debian.org sid/contrib amd64 Packages/DiffIndex Ign http://piatti.debian.org sid/non-free amd64 Packages/DiffIndex Get:3 http://piatti.debian.org sid/main amd64 Packages [9100 kB] Get:4 http://piatti.debian.org sid/contrib amd64 Packages [72.0 kB] Get:5 http://piatti.debian.org sid/non-free amd64 Packages [146 kB] Fetched 9423 kB in 1s (6846 kB/s) Reading package lists... 0m4.7s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'apt-get', 'update'] 0m4.7s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'mount', '-t', 'proc', 'proc', '/proc'] 0m4.8s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'mount', '-t', 'proc', 'proc', '/proc'] 0m4.8s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'apt-get', '-yf', 'upgrade'] 0m5.1s DUMP: Reading package lists... Building dependency tree... 0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded. 0m5.1s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'apt-get', '-yf', 'upgrade'] 0m5.1s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'apt-get', 'clean'] 0m5.1s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'apt-get', 'clean'] 0m5.1s DEBUG: Copying scriptsdir to /org/piuparts.debian.org/tmp/tmpo-guVg/tmp/scripts/ 0m5.1s INFO: Running scripts post_setup 0m5.8s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--get-selections', '*'] 0m5.8s DUMP: apt install base-files install base-passwd install bash install bsdutils install coreutils install dash install debconf install debconf-i18n install debian-archive-keyring install debianutils install diffutils install dpkg install e2fslibs install e2fsprogs install findutils install gcc-4.4-base install gnupg install gpgv install grep install gzip install hostname install initscripts install insserv install libacl1 install libattr1 install libblkid1 install libbz2-1.0 install libc-bin install libc6 install libcomerr2 install libdb4.8 install libgcc1 install liblocale-gettext-perl install liblzma2 install libncurses5 install libpam-modules install libpam-runtime install libpam0g install libreadline6 install libselinux1 install libsepol1 install libslang2 install libss2 install libstdc++6 install libtext-charwidth-perl install libtext-iconv-perl install libtext-wrapi18n-perl install libusb-0.1-4 install libuuid1 install login install lsb-base install mawk install mount install ncurses-base install ncurses-bin install passwd install perl-base install readline-common install sed install sensible-utils install sysv-rc install sysvinit install sysvinit-utils install tar install tzdata install util-linux install xz-utils install zlib1g install 0m5.8s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--get-selections', '*'] 0m5.8s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'apt-cache', 'show', 'sbox-dtc'] 0m5.8s DUMP: Package: sbox-dtc Priority: optional Section: web Installed-Size: 732 Maintainer: Thomas Goirand <z...@debian.org> Architecture: amd64 Version: 1.11.2-2 Depends: debconf (>= 0.5) | debconf-2.0, debconf, libdotconf1.0, passwd, libc6 (>= 2.2.5) Recommends: apache2 | httpd-cgi Filename: pool/main/s/sbox-dtc/sbox-dtc_1.11.2-2_amd64.deb Size: 290964 MD5sum: 75f5603dd0fa23be342460fcf1e6908f SHA1: 90e4fd24c4e728fc8a668f648409e1c5515b9269 SHA256: 49465e907f9bf5f887830470510520a27450086d418b9c33292a69cdc55240cb Description: A CGI wrapper script for chrooted environment for hosting Sbox is a CGI wrapper script that allows Web site hosting services to safely grant CGI authoring privileges to untrusted clients. In addition to changing the process privileges of client scripts to match their owners, it goes beyond other wrappers by placing configurable ceilings on script resource usage, avoiding unintentional (as well as intentional) denial of service attacks. It also optionally allows the Webmaster to place client's CGI scripts in a chroot'ed shell restricted to the author's home directories. Homepage: http://www.gplhost.com/software-sbox.html 0m5.8s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'apt-cache', 'show', 'sbox-dtc'] 0m5.8s DEBUG: Starting command: ['dpkg-deb', '-b', '/org/piuparts.debian.org/tmp/tmplokUex/piuparts-depends-dummy'] 0m5.9s DUMP: dpkg-deb: building package `piuparts-depends-dummy' in `/org/piuparts.debian.org/tmp/tmplokUex/piuparts-depends-dummy.deb'. 0m5.9s DEBUG: Command ok: ['dpkg-deb', '-b', '/org/piuparts.debian.org/tmp/tmplokUex/piuparts-depends-dummy'] 0m5.9s DEBUG: Copying /org/piuparts.debian.org/tmp/tmplokUex/piuparts-depends-dummy.deb to /org/piuparts.debian.org/tmp/tmpo-guVg/tmp 0m5.9s INFO: Running scripts pre_install 0m5.9s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'tmp/scripts/pre_install_exceptions'] 0m5.9s DUMP: Debug: running script tmp/scripts/pre_install_exceptions Enter new UNIX password: Retype new UNIX password: passwd: password updated successfully yes: standard output: Broken pipe yes: write error 0m5.9s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'tmp/scripts/pre_install_exceptions'] 0m5.9s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '-i', 'tmp/piuparts-depends-dummy.deb'] 0m5.9s DUMP: Selecting previously deselected package piuparts-depends-dummy. (Reading database ... 6141 files and directories currently installed.) Unpacking piuparts-depends-dummy (from tmp/piuparts-depends-dummy.deb) ... dpkg: dependency problems prevent configuration of piuparts-depends-dummy: piuparts-depends-dummy depends on libdotconf1.0; however: Package libdotconf1.0 is not installed. dpkg: error processing piuparts-depends-dummy (--install): dependency problems - leaving unconfigured Errors were encountered while processing: piuparts-depends-dummy 0m5.9s DEBUG: Command failed (status=1), but ignoring error: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '-i', 'tmp/piuparts-depends-dummy.deb'] 0m5.9s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'apt-get', '-yf', 'install'] 0m6.8s DUMP: Reading package lists... Building dependency tree... Correcting dependencies... Done The following extra packages will be installed: libdotconf1.0 The following NEW packages will be installed: libdotconf1.0 0 upgraded, 1 newly installed, 0 to remove and 0 not upgraded. 1 not fully installed or removed. Need to get 17.9 kB of archives. After this operation, 81.9 kB of additional disk space will be used. Get:1 http://piatti.debian.org/debian/ sid/main libdotconf1.0 amd64 1.0.13-3 [17.9 kB] debconf: delaying package configuration, since apt-utils is not installed Fetched 17.9 kB in 0s (691 kB/s) Selecting previously deselected package libdotconf1.0. (Reading database ... 6141 files and directories currently installed.) Unpacking libdotconf1.0 (from .../libdotconf1.0_1.0.13-3_amd64.deb) ... Setting up libdotconf1.0 (1.0.13-3) ... Setting up piuparts-depends-dummy (0.invalid.0) ... 0m6.8s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'apt-get', '-yf', 'install'] 0m6.8s INFO: Installation of ['tmp/piuparts-depends-dummy.deb'] ok 0m6.8s INFO: Running scripts post_install 0m6.8s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'apt-get', 'clean'] 0m6.8s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'apt-get', 'clean'] 0m6.8s DEBUG: Removing /org/piuparts.debian.org/tmp/tmpo-guVg/tmp/piuparts-depends-dummy.deb 0m6.8s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--purge', 'piuparts-depends-dummy'] 0m6.8s DUMP: (Reading database ... 6147 files and directories currently installed.) Removing piuparts-depends-dummy ... 0m6.8s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--purge', 'piuparts-depends-dummy'] 0m6.8s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--remove', '--pending'] 0m6.8s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--remove', '--pending'] 0m7.5s INFO: Running scripts pre_install 0m7.5s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'tmp/scripts/pre_install_exceptions'] 0m7.5s DUMP: Debug: running script tmp/scripts/pre_install_exceptions Enter new UNIX password: Retype new UNIX password: passwd: password updated successfully yes: standard output: Broken pipe yes: write error 0m7.5s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'tmp/scripts/pre_install_exceptions'] 0m7.5s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'apt-get', '-y', 'install', 'sbox-dtc'] 0m8.4s DUMP: Reading package lists... Building dependency tree... Reading state information... Recommended packages: apache2 httpd-cgi The following NEW packages will be installed: sbox-dtc 0 upgraded, 1 newly installed, 0 to remove and 0 not upgraded. Need to get 291 kB of archives. After this operation, 750 kB of additional disk space will be used. Get:1 http://piatti.debian.org/debian/ sid/main sbox-dtc amd64 1.11.2-2 [291 kB] debconf: delaying package configuration, since apt-utils is not installed Fetched 291 kB in 0s (0 B/s) Selecting previously deselected package sbox-dtc. (Reading database ... 6147 files and directories currently installed.) Unpacking sbox-dtc (from .../sbox-dtc_1.11.2-2_amd64.deb) ... Setting up sbox-dtc (1.11.2-2) ... 0m8.4s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'apt-get', '-y', 'install', 'sbox-dtc'] 0m8.4s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'apt-get', 'clean'] 0m8.4s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'apt-get', 'clean'] 0m8.4s DEBUG: Starting command: ['lsof', '-w', '+D', '/org/piuparts.debian.org/tmp/tmpo-guVg'] 0m8.7s DEBUG: Command failed (status=1), but ignoring error: ['lsof', '-w', '+D', '/org/piuparts.debian.org/tmp/tmpo-guVg'] 0m8.9s DEBUG: No broken symlinks as far as we can find. 0m8.9s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--get-selections', '*'] 0m8.9s DUMP: apt install base-files install base-passwd install bash install bsdutils install coreutils install dash install debconf install debconf-i18n install debian-archive-keyring install debianutils install diffutils install dpkg install e2fslibs install e2fsprogs install findutils install gcc-4.4-base install gnupg install gpgv install grep install gzip install hostname install initscripts install insserv install libacl1 install libattr1 install libblkid1 install libbz2-1.0 install libc-bin install libc6 install libcomerr2 install libdb4.8 install libdotconf1.0 install libgcc1 install liblocale-gettext-perl install liblzma2 install libncurses5 install libpam-modules install libpam-runtime install libpam0g install libreadline6 install libselinux1 install libsepol1 install libslang2 install libss2 install libstdc++6 install libtext-charwidth-perl install libtext-iconv-perl install libtext-wrapi18n-perl install libusb-0.1-4 install libuuid1 install login install lsb-base install mawk install mount install ncurses-base install ncurses-bin install passwd install perl-base install readline-common install sbox-dtc install sed install sensible-utils install sysv-rc install sysvinit install sysvinit-utils install tar install tzdata install util-linux install xz-utils install zlib1g install 0m8.9s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--get-selections', '*'] 0m9.0s INFO: Running scripts pre_remove 0m9.0s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'tmp/scripts/pre_remove_exceptions'] 0m9.0s DUMP: Debug: running script tmp/scripts/pre_remove_exceptions 0m9.0s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'tmp/scripts/pre_remove_exceptions'] 0m9.0s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--remove', 'libdotconf1.0'] 0m9.0s DUMP: dpkg: dependency problems prevent removal of libdotconf1.0: sbox-dtc depends on libdotconf1.0. dpkg: error processing libdotconf1.0 (--remove): dependency problems - not removing Errors were encountered while processing: libdotconf1.0 0m9.0s DEBUG: Command failed (status=1), but ignoring error: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--remove', 'libdotconf1.0'] 0m9.0s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--remove', 'sbox-dtc'] 0m9.0s DUMP: (Reading database ... 6157 files and directories currently installed.) Removing sbox-dtc ... 0m9.0s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--remove', 'sbox-dtc'] 0m9.0s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--remove', '--pending'] 0m9.0s DUMP: (Reading database ... 6148 files and directories currently installed.) Removing libdotconf1.0 ... 0m9.0s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--remove', '--pending'] 0m9.0s INFO: Running scripts post_remove 0m9.0s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--purge', 'libdotconf1.0'] 0m9.1s DUMP: (Reading database ... 6142 files and directories currently installed.) Removing libdotconf1.0 ... Purging configuration files for libdotconf1.0 ... 0m9.1s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--purge', 'libdotconf1.0'] 0m9.1s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--remove', '--pending'] 0m9.1s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--remove', '--pending'] 0m9.1s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--purge', 'sbox-dtc'] 0m9.2s DUMP: (Reading database ... 6142 files and directories currently installed.) Removing sbox-dtc ... Purging configuration files for sbox-dtc ... 0m9.3s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--purge', 'sbox-dtc'] 0m9.3s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--remove', '--pending'] 0m9.3s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--remove', '--pending'] 0m9.3s INFO: Running scripts post_purge 0m9.3s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'tmp/scripts/post_purge_exceptions'] 0m9.3s DUMP: Debug: running script tmp/scripts/post_purge_exceptions 0m9.3s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'tmp/scripts/post_purge_exceptions'] 0m9.3s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--purge', '--pending'] 0m9.3s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--purge', '--pending'] 0m9.3s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--remove', '--pending'] 0m9.3s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'dpkg', '--remove', '--pending'] 0m9.5s DEBUG: No broken symlinks as far as we can find. 0m10.9s ERROR: FAIL: Package purging left files on system: /home/dtc not owned /home/dtc/.bash_logout not owned /home/dtc/.bashrc not owned /home/dtc/.profile not owned /var/log/sbox.log not owned 0m10.9s ERROR: FAIL: Installation and purging test. 0m10.9s DEBUG: Starting command: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'umount', '/proc'] 0m10.9s DEBUG: Command ok: ['chroot', '/org/piuparts.debian.org/tmp/tmpo-guVg', 'umount', '/proc'] 0m11.3s DEBUG: Removed directory tree at /org/piuparts.debian.org/tmp/tmpo-guVg End: 2010-12-04 15:02:44 UTC
signature.asc
Description: This is a digitally signed message part.
