Re: Policy: should libraries depend on services (daemons) that they can speak to?

To: Simon McVittie <smcv@debian.org>
Cc: debian-devel@lists.debian.org
Subject: Re: Policy: should libraries depend on services (daemons) that they can speak to?
From: "Theodore Ts'o" <tytso@mit.edu>
Date: Mon, 15 Jan 2024 11:15:32 -0500
Message-id: <[🔎] 20240115161532.GA1213842@mit.edu>
In-reply-to: <[🔎] ZZvZ8R7LEUKheVZu@tautology.pseudorandom.co.uk>
References: <[🔎] da70d4ba9cae7261698718b2d50303be50d074c2.camel@43-1.org> <[🔎] ungb9k$b0d$1@ciao.gmane.io> <[🔎] ZZvZ8R7LEUKheVZu@tautology.pseudorandom.co.uk>

On Mon, Jan 08, 2024 at 11:18:09AM +0000, Simon McVittie wrote:
> On Mon, 08 Jan 2024 at 08:21:08 -0000, Sune Vuorela wrote:
> > Maybe the question is also a bit .. "it depends".
> ...
> > So that users actually likely get a system that works?
> 
> I think the fact that we argue about this every few years, with no simple
> conclusion, is adequate evidence that the answer is "it depends". We're
> balancing two competing factors: "make the system work by default" implies
> that *something* needs to be responsible for pulling in required services
> at least some of the time, while "make the system flexible" implies that
> we should not be pulling in all of the services all of the time.

I'll argue that best practice is that upstream show make the shared
library useful *without* the daemon, but if the daemon is present,
perhaps the shared library can do a better job.

For example, when I implemented libuuid, if you want to create a huge
number of UUID's very quickly, because you're a large enterprise
resource planning application, the the uuidd daemon will allow
multiple processes to request "chunks" of UUID space, and create
unique UUID's without having to having to go through some kind of
locking protocol using a single shared state file.

So libuuid works just fine without uuidd, but if you are populating a
large ERP system, then you very much will want uuidd to be installed.
So in that case, you can make the dependency relationship be either
suggests or recommends, instead of a hard dependency.

Of course, that's an upstream design consideration, and not all
upstreams are so.... forward looking... in their design.

> 
> Meanwhile, some distributions are more opinionated than Debian,
> have chosen a distro-wide preferred implementation for each swappable
> component, and make it quite difficult to exclude those components or
> swap them for alternatives. We probably don't want to do that either.

Well, right.  And if the distribution's primary market is enterprise
customers, such that using an Enterprise Resource Planning system is
highly likely (even if said ERP is proprietary softare sold by a very
large German company), you might decide that it's worthwhile to
install uuidd by default, especially since it's a relativelty small
daemon.  But if you're a distribution that thinks that every last
kilobyte matters, because you might be used in a docker context (for
example), then you mnight want to make different choices.

Cheers,

						- Ted

Reply to:

Follow-Ups:
- Re: Policy: should libraries depend on services (daemons) that they can speak to?
  - From: Russ Allbery <rra@debian.org>

References:
- Policy: should libraries depend on services (daemons) that they can speak to?
  - From: Ansgar <ansgar@43-1.org>
- Re: Policy: should libraries depend on services (daemons) that they can speak to?
  - From: Sune Vuorela <nospam@vuorela.dk>
- Re: Policy: should libraries depend on services (daemons) that they can speak to?
  - From: Simon McVittie <smcv@debian.org>

Prev by Date: Bug#1060842: ITP: trillian -- A transparent, highly scalable and cryptographically verifiable data store
Next by Date: Bug#1060852: ITP: golang-bitbucket-creachadair-shell -- implements basic shell command-line splitting for Go (library)
Previous by thread: Re: Policy: should libraries depend on services (daemons) that they can speak to?
Next by thread: Re: Policy: should libraries depend on services (daemons) that they can speak to?
Index(es):
- Date
- Thread