On Sat, Feb 01, 2025 at 10:31:02PM -0600, David Wright wrote: > On Sat 01 Feb 2025 at 15:29:13 (+0000), Andrew M.A. Cater wrote: > > On Fri, Jan 31, 2025 at 11:00:25PM -0600, David Wright wrote: > > > On Fri 31 Jan 2025 at 23:30:52 (+0000), Andrew M.A. Cater wrote: > > > > > > > Right: I've just run through three installs of Debian 11.11.0 from DVD1: > > > > The medium was retrieved from cdimage.debian.org/archive at > > http://cdimage.debian.org/cdimage/archive/11.11.0/amd64/iso-dvd/ as > > http://cdimage.debian.org/cdimage/archive/11.11.0/amd64/iso-dvd/debian-11.11.0-amd64-DVD-1.iso > > > > I made three attempts to install, as follows: > > > > 1. One text mode install, network connected > >
This fails with the error previously described that an installation step has failed and a red screen background. > > 2. One text mode expert install, network connected This fails with the error previously described that an installation step has failed. It does allow selection of additional security repo and unattended updates. > > > > 3. One text mode install, network disconnected. > > This succeeds and runs to completion. > > > > In each case, the install was done without selecting a network mirror. > > > > I can reproduce the problem when the network is connected. > > > > The expert install shows a little more detail - I can see the install > > running through installing the base install then through tasksel where > > I leave GNOME selected and then it fails as software is installed. > > > > On 3 - no network - it works perfectly, so my supposition that if there is > > no network connection then the install proceeds entirely from the DVD and > > runs to completion is probably correct. > > > > (Presumably you mean attempt 3.) > This is attempt 3. No network connected, no network configuration in place. > > # deb cdrom:[Debian GNU/Linux 11.11.0 _Bullseye_ - Official amd64 DVD > > Binary-1 20240831-14:01]/ bullseye contrib main > > > > deb cdrom:[Debian GNU/Linux 11.11.0 _Bullseye_ - Official amd64 DVD > > Binary-1 20240831-14:01]/ bullseye contrib main > > > > # Line commented out by installer because it failed to verify: > > #deb http://security.debian.org/debian-security bullseye-security main > > contrib > > # Line commented out by installer because it failed to verify: > > #deb-src http://security.debian.org/debian-security bullseye-security main > > contrib > > > > # bullseye-updates, to get updates before a point release is made; > > # see > > https://www.debian.org/doc/manuals/debian-reference/ch02.en.html#_updates_and_backports > > # A network mirror was not selected during install. The following entries > > # are provided as examples, but you should amend them as appropriate > > # for your mirror of choice. > > # > > # deb http://deb.debian.org/debian/ bullseye-updates main contrib > > # deb-src http://deb.debian.org/debian/ bullseye-updates main contrib > > > > So the only source that remains uncommented is the DVD and the other entries > > are there and commented out, ready for use if the hash signs are deleted. > > > > I'm not sure this is a bug per se: if what you want is a fully offline > > install, then you have to make sure that the machine is fully offline. > > What interests me is what the sources list was after run 2, particularly > this line: > #deb http://security.debian.org/debian-security bullseye-security main > contrib > If commented out, how did the installer manage (in the OP) to log: > Jan 31 05:35:42 in-target: Get:1 http://security.debian.org/debian-security > bullseye-security InRelease [27.2 kB] > If not commented, then I would call that a bug: it allows the > installer to use a mirror when told not to. > At that point, you're network connected: it may be a connectivity check The default is for debian-security to be enabled - the general assumption is that you want security updates to be generally available quickly. > > If you want a networked install, then the assumptions made in the > > installer are probably that you will want to install using the available > > network for all appropriate updates. > > If you're connected to a network, but you tell a program not to use > it, then going ahead and using it is as bad as other programs that > "call home" without permission. And we all condemn that. > There's a difference here between using a specific network (country) mirror - ftp.uk.debian.org - which is your local mirror having the whole of Debian, say, and the general security updates available to the world from a central place. "Don't use a network mirror" == I don't want/don't have a mirror available to pull the rest of the software from. Security updates coming from security.d.o are enabled by default. There are two different use cases. > As I said, I can't replicate the problem on bookworm, but I've only > tested the netinst. I'll leave the DVD for you. :) > There's a distinct difference between the DVD and the netinst. The netinst is predicated on there being a network. If you install using only the DVD on Bookworm, then the sole entries you get reference the DVD (see below). > > > > Since bookworm is now the subject of LTS from Freexian, maybe address any > ↑↑↑↑↑↑↑↑ bullseye. Bullseye - 11.11.0 is now LTS - you're correct, thanks for picking this up. > > request for changes to them. It's almost certain that the bug won't be > > fixed by addressing any fault in the medium - the debian-cd crew wouldn't > > address this for a release that's now out of main Debian security support. > > > > I'll now go and see if I can reproduce this in Bookworm. If I can, then I'll > > suggest it as a problem for a possible fix in the next point release though > > I can't promise anything. > /etc/apt/sources.list: deb cdrom:[Debian GNU/Linux 12.9.0 _Bookworm_ - Official amd64 DVD Binary-1 with firmware - 20250111 - 1055]/ bookworm main contrib non-free-firmware And that's the case whether you install with a network connected or without. > Cheers, > David. > All the very best, as ever, Andrew Cater (amaca...@debian.org)
