Tests allowed to access network in builds on Jenkins
Bug #1262863 reported by
dobey
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Ubuntu CI Services |
New
|
Undecided
|
Unassigned |
Bug Description
The pbuilder chroots which the are used for testing package builds in PS Jenkins do not block network access to the child processes of dpkg-buildpackage (or debian/rules). This means that the tests can pass and allow branches to be merged, even when they should be blocked. This results in FTFBS issues when the packages are then pushed into the daily-build PPA for testing prior to release into the archive, as Launchpad builders do block network access in sbuild.
To post a comment you must log in.
One possible solution is to use an Apparmor profile to run the package build contained and disallow network access.