Bug#1071007: Bug#1072733: sherlock: Must not ship /usr/lib/python3/dist-packages/__init__.py
On 6/9/24 18:47, Samuel Henrique wrote: Zigo, I just saw that sherlock (the social networks package) moved its python files to /usr/share, instead of /usr/lib/python3/dist-packages . This was the sensible thing to do, as it doesn't really need to expose itself as Python module. Not really, that was done by accident when Nilson was trying to remove the system-wide init file (#1071007) and was reverted already. Upstream has mentioned (to me) that their intention is to provide a library for sherlock, as we've had since the package was introduced. Well, sherlock is an app, and therefore, it's the sensible thing to do to push it's Python code in /usr/share. IMO, it shouldn't have been reverted. Normally, the one that owns the PyPi name such as: https://pypi.org/project/sherlock/ also get to have the python module name. Clearly, sherlock (the social media package) didn't do that. Now, if you know upstream, then probably you can convince them to rename their lib to something that doesn't clash? And also, maybe, add its software on PyPi? Therefore, this bug can be closed, and there's IMO nothing more to do in the python-sherlock (the cluster lock package), as the conflict is now solved. I'll reopen 1072733 since the clash still exists. :( Cheers, Thomas Goirand (zigo)
Bug#1071628: python-pymysql: CVE-2024-36039
On 5/22/24 17:08, Moritz Mühlenhoff wrote:
The following vulnerability was published for python-pymysql.
We should also fix this in a DSA, could you prepare debdiffs for
bookworm-security and bullseye-security?
CVE-2024-36039[0]:
| PyMySQL through 1.1.0 allows SQL injection if used with untrusted
| JSON input because keys are not escaped by escape_dict.
https://github.com/advisories/GHSA-v9hf-5j83-6xpp
https://github.com/PyMySQL/PyMySQL/commit/521e40050cb386a499f68f483fefd144c493053c
(v1.1.1)
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2024-36039
https://www.cve.org/CVERecord?id=CVE-2024-36039
Please adjust the affected versions in the BTS as needed.
Hi,
Please find attached to this message, the fixes I would like to upload
to bullseye and bookworm. Please allow these uploads.
Note that I have uploaded latest upstream version 1.1.1-1 to unstable,
that includes the patch in these debdiffs.
Cheers,
Thomas Goirand (zigo)
diff -Nru python-pymysql-0.9.3/debian/changelog
python-pymysql-0.9.3/debian/changelog
--- python-pymysql-0.9.3/debian/changelog 2019-09-05 08:07:35.0
+0200
+++ python-pymysql-0.9.3/debian/changelog 2024-05-28 08:56:57.0
+0200
@@ -1,3 +1,11 @@
+python-pymysql (0.9.3-2+deb11u1) bullseye-security; urgency=medium
+
+ * CVE-2024-36039: PyMySQL through 1.1.0 allows SQL injection if used with
+untrusted JSON input because keys are not escaped by escape_dict. Applied
+upstream patch: forbid_dict_parameter.patch (Closes: #1071628).
+
+ -- Thomas Goirand Tue, 28 May 2024 08:56:57 +0200
+
python-pymysql (0.9.3-2) unstable; urgency=medium
* Team upload.
diff -Nru
python-pymysql-0.9.3/debian/patches/CVE-2024-36039_forbid_dict_parameter.patch
python-pymysql-0.9.3/debian/patches/CVE-2024-36039_forbid_dict_parameter.patch
---
python-pymysql-0.9.3/debian/patches/CVE-2024-36039_forbid_dict_parameter.patch
1970-01-01 01:00:00.0 +0100
+++
python-pymysql-0.9.3/debian/patches/CVE-2024-36039_forbid_dict_parameter.patch
2024-05-28 08:56:57.0 +0200
@@ -0,0 +1,47 @@
+Description: CVE-2024-36039: forbid dict parameter
+Author: Inada Naoki
+Date: Sat, 18 May 2024 11:33:30 +0900
+Origin:
https://github.com/PyMySQL/PyMySQL/commit/521e40050cb386a499f68f483fefd144c493053c.patch
+Bug-Debian: https://bugs.debian.org/1071628
+Last-Update: 2024-05-28
+
+Index: python-pymysql/pymysql/converters.py
+===
+--- python-pymysql.orig/pymysql/converters.py
python-pymysql/pymysql/converters.py
+@@ -28,11 +28,7 @@ def escape_item(val, charset, mapping=No
+ return val
+
+ def escape_dict(val, charset, mapping=None):
+-n = {}
+-for k, v in val.items():
+-quoted = escape_item(v, charset, mapping)
+-n[k] = quoted
+-return n
++raise TypeError("dict can not be used as parameter")
+
+ def escape_sequence(val, charset, mapping=None):
+ n = []
+Index: python-pymysql/pymysql/tests/test_connection.py
+===
+--- python-pymysql.orig/pymysql/tests/test_connection.py
python-pymysql/pymysql/tests/test_connection.py
+@@ -553,13 +553,16 @@ class TestEscape(base.PyMySQLTestCase):
+
+ self.assertRaises(TypeError, con.escape, 42, {})
+
+-def test_escape_dict_value(self):
++def test_escape_dict_raise_typeerror(self):
++"""con.escape(dict) should raise TypeError"""
+ con = self.connect()
+ cur = con.cursor()
+
+ mapping = con.encoders.copy()
+ mapping[Foo] = escape_foo
+-self.assertEqual(con.escape({'foo': Foo()}, mapping), {'foo': "bar"})
++#self.assertEqual(con.escape({'foo': Foo()}, mapping), {'foo': "bar"})
++with self.assertRaises(TypeError):
++con.escape({"foo": Foo()})
+
+ def test_escape_list_item(self):
+ con = self.connect()
diff -Nru python-pymysql-0.9.3/debian/patches/series
python-pymysql-0.9.3/debian/patches/series
--- python-pymysql-0.9.3/debian/patches/series 2019-09-05 08:07:35.0
+0200
+++ python-pymysql-0.9.3/debian/patches/series 2024-05-28 08:56:57.0
+0200
@@ -1,2 +1,3 @@
0001-Disabling-not-working-unit-tests.patch
0002-remove_intersphinx.patch
+CVE-2024-36039_forbid_dict_parameter.patch
diff -Nru python-pymysql-1.0.2/debian/changelog
python-pymysql-1.0.2/debian/changelog
--- python-pymysql-1.0.2/debian/changelog 2021-08-16 19:11:00.0
+0200
+++ python-pymysql-1.0.2/debian/changelog 2024-05-28 08:15:32.0
+0200
@@ -1,3 +1,11 @@
+python-pymysql (1.0.2-2+deb12u1) bookworm-security; urgency=medium
+
+ * CVE-2024-36039: PyMySQL through 1.1.0 allows SQL inj
Bug#1071300: marked as pending in ceph
Control: tag -1 pending Hello, Bug #1071300 in ceph reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/ceph-team/ceph/-/commit/e668eec9d3babfc9922ef39954b74011082b41a2 Add fix-ftbfs-with-newer-snappy.patch (Closes: #1071300). (this message was generated automatically) -- Greetings https://bugs.debian.org/1071300
Bug#1040186: NMU for fixing this bug in Bookworm
Hi, Since there's been very low activity in this bug, and that I cannot see if the current maintainer is willing to fix the bug, I have opened a bug against the Stable release team to fix this issue in Bookworm: https://bugs.debian.org/1071264 You'll find the package debdiff over there. Please let me know if you prefer to fix this yourself, or if it's ok for me to upload the fixed package in Bookworm. Cheers, Thomas Goirand (zigo)
Bug#1071264: autopkgtest fails with networkx 3.2.1
Source: seirsplus Version: 1.0.9-1 Severity: serious Hi, Your package fails autopkgtest with the current version of networkx in Unstable. Please fix it. Cheers, Thomas Goirand (zigo)
Bug#1069406: marked as pending in openvswitch
Control: tag -1 pending Hello, Bug #1069406 in openvswitch reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/third-party/openvswitch/-/commit/2ffb373c11bd059e3e64ece23f45146a8756280d Add fix-in-ssl-handshake-failure-test.patch (Closes: #1069406). (this message was generated automatically) -- Greetings https://bugs.debian.org/1069406
Bug#1069646: marked as pending in python-glance-store
Control: tag -1 pending Hello, Bug #1069646 in python-glance-store reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/libs/python-glance-store/-/commit/a07d7150bbbc8141cb975847ddd1377e23a4d297 Remove build-depends on python3-boto (Closes: #1069646). (this message was generated automatically) -- Greetings https://bugs.debian.org/1069646
Bug#1068963: marked as pending in python-falcon
Control: tag -1 pending Hello, Bug #1068963 in python-falcon reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/python/python-falcon/-/commit/608aa7872ff45cf501f546a7cb696116d9219e6d * Exclude tests/asgi/test_asgi_servers.py when running tests, as teardown appears broken. Note that I tried running uvicorn manually, and it seems working as expected (Closes: #1068963). (this message was generated automatically) -- Greetings https://bugs.debian.org/1068963
Bug#1068963: marked as pending in python-falcon
Control: tag -1 pending Hello, Bug #1068963 in python-falcon reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/python/python-falcon/-/commit/608aa7872ff45cf501f546a7cb696116d9219e6d * Exclude tests/asgi/test_asgi_servers.py when running tests, as teardown appears broken. Note that I tried running uvicorn manually, and it seems working as expected (Closes: #1068963). (this message was generated automatically) -- Greetings https://bugs.debian.org/1068963
Bug#1068457: marked as pending in azure-uamqp-python
Control: tag -1 pending Hello, Bug #1068457 in azure-uamqp-python reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/python-team/packages/azure-uamqp-python/-/commit/f4f79087f50551619f9659594ecf7f08f6acb952 * CVE-2024-29195: An attacker can cause an integer wraparound or under- allocation or heap buffer overflow due to vulnerabilities in parameter checking mechanism, by exploiting the buffer length parameter in Azure C SDK, which may lead to remote code execution. Applied upstream patch: CVE-2024-29195_Add-malloc-size-checks.patch (Closes: #1068457). (this message was generated automatically) -- Greetings https://bugs.debian.org/1068457
Bug#1064815: marked as pending in python-os-vif
Control: tag -1 pending Hello, Bug #1064815 in python-os-vif reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/libs/python-os-vif/-/commit/3ea0c1af8b771b55bccb61e1931530871f9acd26 Uploading to unstable, fixing FTBFS (Closes: #1064815). (this message was generated automatically) -- Greetings https://bugs.debian.org/1064815
Bug#1064814: marked as pending in ironic-inspector
Control: tag -1 pending Hello, Bug #1064814 in ironic-inspector reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/ironic-inspector/-/commit/82aa1a8fc60828e5b08dcc1240f31a9163ab2b71 Uploading to unstable, fixing FTBFS (Closes: #1064814). (this message was generated automatically) -- Greetings https://bugs.debian.org/1064814
Bug#1067260: marked as pending in python-wsme
Control: tag -1 pending Hello, Bug #1067260 in python-wsme reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/python/python-wsme/-/commit/b5e347a7567b2a6e22d7328795b5604b63545434 Uploading to unstable, fixing FTBFS (Closes: #1067260). (this message was generated automatically) -- Greetings https://bugs.debian.org/1067260
Bug#1067333: Further investigation
Hi,
I tried rebuilding autosuspend in Sid, and the build lead to this
traceback in Java:
Traceback (most recent call last):
File "/usr/lib/python3/dist-packages/sphinxcontrib/plantuml.py", line
223, in html_visit_plantuml
fnames = dict((e, render_plantuml(self, node, e))
File "/usr/lib/python3/dist-packages/sphinxcontrib/plantuml.py", line
223, in
fnames = dict((e, render_plantuml(self, node, e))
^^
File "/usr/lib/python3/dist-packages/sphinxcontrib/plantuml.py", line
116, in render_plantuml
raise PlantUmlError('error while running plantuml\n\n' +
serr.decode('utf-8'))
sphinxcontrib.plantuml.PlantUmlError: error while running plantuml
Exception in thread "main" java.lang.InternalError:
java.lang.reflect.InvocationTargetException
at
java.desktop/sun.font.FontManagerFactory$1.run(FontManagerFactory.java:87)
at
java.base/java.security.AccessController.doPrivileged(AccessController.java:318)
at
java.desktop/sun.font.FontManagerFactory.getInstance(FontManagerFactory.java:75)
at
java.desktop/sun.font.SunFontManager.getInstance(SunFontManager.java:248)
at
java.desktop/sun.font.FontDesignMetrics.getMetrics(FontDesignMetrics.java:266)
at
java.desktop/sun.java2d.SunGraphics2D.getFontMetrics(SunGraphics2D.java:871)
at net.sourceforge.plantuml.Run.forceOpenJdkResourceLoad(Run.java:230)
at net.sourceforge.plantuml.Run.main(Run.java:137)
Caused by: java.lang.reflect.InvocationTargetException
at
java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance0(Native
Method)
at
java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:77)
at
java.base/jdk.internal.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
at
java.base/java.lang.reflect.Constructor.newInstanceWithCaller(Constructor.java:499)
at
java.base/java.lang.reflect.Constructor.newInstance(Constructor.java:480)
at
java.desktop/sun.font.FontManagerFactory$1.run(FontManagerFactory.java:85)
... 7 more
Caused by: java.lang.RuntimeException: Fontconfig head is null, check
your fonts or fonts configuration
at
java.desktop/sun.awt.FontConfiguration.getVersion(FontConfiguration.java:1271)
at
java.desktop/sun.awt.FontConfiguration.readFontConfigFile(FontConfiguration.java:224)
at
java.desktop/sun.awt.FontConfiguration.init(FontConfiguration.java:106)
at
java.desktop/sun.awt.X11FontManager.createFontConfiguration(X11FontManager.java:706)
at java.desktop/sun.font.SunFontManager$2.run(SunFontManager.java:358)
at java.desktop/sun.font.SunFontManager$2.run(SunFontManager.java:315)
at
java.base/java.security.AccessController.doPrivileged(AccessController.java:318)
at java.desktop/sun.font.SunFontManager.(SunFontManager.java:315)
at java.desktop/sun.awt.FcFontManager.(FcFontManager.java:35)
at java.desktop/sun.awt.X11FontManager.(X11FontManager.java:56)
... 13 more
so the issue seems to be in PlantUML rather than its sphinxcontrib
wrapper in Python.
Please note that the part that raised the error in Python is probably
broken, but when there's no error when starting PlantUML, the module
should still be ok.
I'm reassigning the bug to PlantUML. Please deal between autosuspend and
PlantUML.
Cheers,
Thomas Goirand (zigo)
Bug#1067330: marked as pending in websockify
Control: tag -1 pending Hello, Bug #1067330 in websockify reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/python/websockify/-/commit/a274160903e388a5951a92b5a890e94fc8725791 * Fix d/control build-depends from python3-dev to python3-all-dev (Closes: #1067330). (this message was generated automatically) -- Greetings https://bugs.debian.org/1067330
Bug#1066798: marked as pending in python-pysaml2
Control: tag -1 pending Hello, Bug #1066798 in python-pysaml2 reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/python/python-pysaml2/-/commit/c1d074447eaf36234d55229952479afc4d496a1b Correctly use export when setting PYBUILD_NAME (Closes: #1066798). (this message was generated automatically) -- Greetings https://bugs.debian.org/1066798
Bug#1067063: Fix in experimental
Hi, OpenStack Carcal is about to be released, and the fix must be in the package in Experimental already. Cheers, Thomas Goirand (zigo)
Bug#1064812: marked as pending in barbican
Control: tag -1 pending Hello, Bug #1064812 in barbican reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/barbican/-/commit/5c102450f064f7754a79161a948fd4a44ba0960b Add Replace_deprecated_pyOpenSSL_API.patch (Closes: #1064812). (this message was generated automatically) -- Greetings https://bugs.debian.org/1064812
Bug#1042169: marked as pending in python-netaddr
Control: tag -1 pending Hello, Bug #1042169 in python-netaddr reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/python-team/packages/python-netaddr/-/commit/a20c519b3a59420f997479fb39cdc79fa2c516c2 d/rules: fixed the way to run tests (Closes: #1042169). (this message was generated automatically) -- Greetings https://bugs.debian.org/1042169
Bug#1063492: marked as pending in openvswitch
Control: tag -1 pending Hello, Bug #1063492 in openvswitch reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/third-party/openvswitch/-/commit/90a5aef3bdd4c210839b4de1f8bbfcdb5e855265 * CVE-2023-5366: A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow a local attacker to create specially crafted packets with a modified or spoofed target IP address field that can redirect ICMPv6 traffic to arbitrary IP addresses. Added upstream patch: "Fix missing masks on a final stage with ports trie". * CVE-2023-3966: Invalid memory access in Geneve with HW offload. Add upstream patches (Closes: #1063492): - Fix the mask for tunnel metadata length - Check geneve metadata length (this message was generated automatically) -- Greetings https://bugs.debian.org/1063492
Bug#1058223: marked as pending in swift
Control: tag -1 pending Hello, Bug #1058223 in swift reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/swift/-/commit/883c2ba176b0f0dfc1a7f7e34bf6c930c2fc89ec Add fix-unit-testing-under-python-3.12.patch (Closes: #1058223). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058223
Bug#1058223: marked as pending in swift
Control: tag -1 pending Hello, Bug #1058223 in swift reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/swift/-/commit/8c7b13740eb0749d8bcf53cafdc5d8ee995c57c9 * Blacklist failing patches and fix others (Closes: #1058223): - Blacklist test_perfect_four_zone_four_replica_bad_placement - Blacklist common.test_wsgi.TestWSGI.* - Blacklist TestObjectExpirer.test_delete_actual_object - Add fix-unit-testing-under-python-3.12.patch. - Add Be_more_explicit_about_closes_in_string_along.patch. (this message was generated automatically) -- Greetings https://bugs.debian.org/1058223
Bug#1064275: autopkgtest failure with python-jsonschema 4.19.2
Source: asdf-standard Version: 1.0.3-1 Severity: serious Hi, as per this: https://qa.debian.org/excuses.php?experimental=1=python-jsonschema your package has autopkgtest regressions. Since python-jsonschema was staged in Experimental for so long, I'm uploading it to unstable, making this bug severity serious. Cheers, Thomas Goirand (zigo)
Bug#1061441: marked as pending in python-glanceclient
Control: tag -1 pending Hello, Bug #1061441 in python-glanceclient reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/clients/python-glanceclient/-/commit/d7c88e1fb184d37cb2f22a032298baf19b10e6c2 Also apply unit test blacklist in autopkgtest (Closes: #1061441). (this message was generated automatically) -- Greetings https://bugs.debian.org/1061441
Bug#1060964: marked as pending in python-pure-sasl
Control: tag -1 pending Hello, Bug #1060964 in python-pure-sasl reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/python/python-pure-sasl/-/commit/456914a3af1b0ea7563b15a05cb3da3ec6dfd447 Added missing dependency on python3-six (Closes: #1060964). (this message was generated automatically) -- Greetings https://bugs.debian.org/1060964
Bug#1058182: marked as pending in mistral
Control: tag -1 pending Hello, Bug #1058182 in mistral reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/mistral/-/commit/be6d8cebca2f199ffdcbb52be82af45008cef044 * Add Python 3.12 patches (Closes: #1058182): - py3.12-assertDictContainsSubset-is-removed.patch - py3.12-cast-random-delay-as-int.patch (this message was generated automatically) -- Greetings https://bugs.debian.org/1058182
Bug#1058223: marked as pending in swift
Control: tag -1 pending Hello, Bug #1058223 in swift reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/swift/-/commit/883c2ba176b0f0dfc1a7f7e34bf6c930c2fc89ec Add fix-unit-testing-under-python-3.12.patch (Closes: #1058223). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058223
Bug#1058223: marked as pending in swift
Control: tag -1 pending Hello, Bug #1058223 in swift reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/swift/-/commit/8c7b13740eb0749d8bcf53cafdc5d8ee995c57c9 * Blacklist failing patches and fix others (Closes: #1058223): - Blacklist test_perfect_four_zone_four_replica_bad_placement - Blacklist common.test_wsgi.TestWSGI.* - Blacklist TestObjectExpirer.test_delete_actual_object - Add fix-unit-testing-under-python-3.12.patch. - Add Be_more_explicit_about_closes_in_string_along.patch. (this message was generated automatically) -- Greetings https://bugs.debian.org/1058223
Bug#1058131: marked as pending in python-pythonjsonlogger
Control: tag -1 pending Hello, Bug #1058131 in python-pythonjsonlogger reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/python-team/packages/python-pythonjsonlogger/-/commit/a08aef46c24ee8dce283278f0459d09c98d6ac04 Add py3.12-repair-unit-test.patch (Closes: #1058131). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058131
Bug#1058155: marked as pending in keystone
Control: tag -1 pending Hello, Bug #1058155 in keystone reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/keystone/-/commit/0ae2d51b43b10a7f424ec228b10ea23fc8069e44 * Add Python 3.12 fixes (Closes: #1058155): - py3.12-use-raw-string-to-avoid-warning.patch. - do-not-set-chartset-in-flask-responce.patch. - py3.12-fix-datetime-usage.patch (this message was generated automatically) -- Greetings https://bugs.debian.org/1058155
Bug#1058097: marked as pending in python-openstackclient
Control: tag -1 pending Hello, Bug #1058097 in python-openstackclient reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/clients/python-openstackclient/-/commit/88f9b4d6b973e611289eb55e303384bccbb86cdc Blacklist tests.unit.common.test_module.TestModuleList (Closes: #1058097). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058097
Bug#1058099: pyro4: FTBFS: AttributeError: 'CoreTests' object has no attribute 'assertEquals'. Did you mean: 'assertEqual'? debdiff for NMU
Hi Laszlo,
Please see attached diff to fix the issue. It's kind of trivial to fix,
as you may see... Could you please upload it to unstable ASAP, or allow
me to NMU this fix?
Cheers,
Thomas Goirand (zigo)diff -Nru pyro4-4.82/debian/changelog pyro4-4.82/debian/changelog
--- pyro4-4.82/debian/changelog 2023-11-06 17:31:51.0 +0100
+++ pyro4-4.82/debian/changelog 2024-01-11 16:43:48.0 +0100
@@ -1,3 +1,11 @@
+pyro4 (4.82-3.1) unstable; urgency=medium
+
+ * Non-maintainer upload.
+ * Fix FTBFS by adding a patch:
+- use-self.assertEqual-not-self.assertEquals.patch (Closes: #1058099).
+
+ -- Thomas Goirand Thu, 11 Jan 2024 16:43:48 +0100
+
pyro4 (4.82-3) unstable; urgency=medium
* Fix FTBFS with Sphinx 7.1 (closes: #1042648).
diff -Nru pyro4-4.82/debian/patches/series pyro4-4.82/debian/patches/series
--- pyro4-4.82/debian/patches/series2023-01-02 21:48:48.0 +0100
+++ pyro4-4.82/debian/patches/series2024-01-11 16:36:09.0 +0100
@@ -1,2 +1,3 @@
skip_networked_tests.patch
fix-ftbfs-python3.11.patch
+use-self.assertEqual-not-self.assertEquals.patch
diff -Nru
pyro4-4.82/debian/patches/use-self.assertEqual-not-self.assertEquals.patch
pyro4-4.82/debian/patches/use-self.assertEqual-not-self.assertEquals.patch
--- pyro4-4.82/debian/patches/use-self.assertEqual-not-self.assertEquals.patch
1970-01-01 01:00:00.0 +0100
+++ pyro4-4.82/debian/patches/use-self.assertEqual-not-self.assertEquals.patch
2024-01-11 16:39:05.0 +0100
@@ -0,0 +1,17 @@
+Description: Use self.assertEqual not self.assertEquals
+Author: Thomas Goirand
+Bug-Debian: https://bugs.debian.org/1058099
+Forwarded: no
+Last-Update: 2024-01-11
+
+--- pyro4-4.82.orig/tests/PyroTests/test_core.py
pyro4-4.82/tests/PyroTests/test_core.py
+@@ -359,7 +359,7 @@ class CoreTests(unittest.TestCase):
+ with self.assertRaises(Pyro4.errors.PyroError):
+ Pyro4.Proxy("test")
+ with Pyro4.Proxy("test", connected_socket=s1) as p:
+-self.assertEquals("<>:0",
p._pyroUri.location)
++self.assertEqual("<>:0",
p._pyroUri.location)
+ self.assertIsNotNone(p._pyroConnection)
+ p._pyroRelease()
+ self.assertIsNotNone(p._pyroConnection)
Bug#1059663: marked as pending in python-editor
Control: tag -1 pending Hello, Bug #1059663 in python-editor reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/python/python-editor/-/commit/1c8fd781f286c7c889ab080424fc518658b5b34a Added python3-setuptools as runtime depends (Closes: #1059663). (this message was generated automatically) -- Greetings https://bugs.debian.org/1059663
Bug#1058449: marked as pending in rally
Control: tag -1 pending Hello, Bug #1058449 in rally reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/rally/-/commit/0813a42d42c964982ac09dba4873c8fc8248fe77 * Blacklist test_add_point_and_get_zipped_graph_2 that isn't working on Python 3.12 (Closes: #1058449). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058449
Bug#1058007: marked as pending in python-wsaccel
Control: tag -1 pending Hello, Bug #1058007 in python-wsaccel reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/python/python-wsaccel/-/commit/95655ef1e81f06309191615738498ef216ebbc05 Do not runtime depends on cython3 (Closes: #1058007). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058007
Bug#1058378: marked as pending in python-wsgi-intercept
Control: tag -1 pending Hello, Bug #1058378 in python-wsgi-intercept reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/python/python-wsgi-intercept/-/commit/039da06619d89d494f3d85801e092933306b4ac6 Add Support_Python_3.12.patch (Closes: #1058378). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058378
Bug#1058378: marked as pending in python-wsgi-intercept
Control: tag -1 pending Hello, Bug #1058378 in python-wsgi-intercept reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/python/python-wsgi-intercept/-/commit/af7c6810ec7c165b580bc0ac019b1baf8123da4b Add Support_Python_3.12.patch (Closes: #1058378). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058378
Bug#1058248: marked as pending in python-diskimage-builder
Control: tag -1 pending Hello, Bug #1058248 in python-diskimage-builder reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/libs/python-diskimage-builder/-/commit/a6c89726a375bd7d2c0f0e508150e679a17bd278 Add stop-using-the-imp-module.patch (Closes: #1058248). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058248
Bug#1058162: marked as pending in manila
Control: tag -1 pending Hello, Bug #1058162 in manila reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/manila/-/commit/aa910c7db086cd96e8330762d7b50d1ebfc95b0a The above fixes FTBFS (Closes: #1058162). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058162
Bug#1058318: flask-login: FTBFS: dh_auto_test: error: pybuild --test --test-pytest -i python{version} -p "3.12 3.11" returned exit code 13
On 1/3/24 22:22, Julian Gilbey wrote: On Fri, Dec 22, 2023 at 12:04:48AM +0100, Gregor Riepl wrote: Hi Carsten, [...] My point was that if, for whatever reason, werkzeug 3.0.1 is not yet fit for release, it should be enough to upgrade to 2.3.5 to address these unit test failures. [...] That doesn't make any sense to me. These deprecations are obviously in werkzeug and not flask-login. Why would changes in flask-login fix them? Not saying flask-login shouldn't be updated, but that's not the right scope for this bug report. Just to throw in: these werkzeug failures are also causing a similar FTBFS in debugpy; I've temporarily addressed it by skipping these unit tests, but that's not a great solution. I just took a quick look at upgrading the unstable/testing version of werkzeug to 2.3.8 in the meantime. It was pretty quick, and the package tests all pass. Shall I upload it to unstable? On salsa, I would push to debian/2.x for the Debian branch and to upstream-2.x for the upstream, so as not to prevent merging the experimental branch into debian/master later. Actually, it is probably OK to use the upstream branch for this update without causing problems, but might be better to be safe. (Incidentally, while doing this, I spotted one bug with the current experimental version: it is missing a Build-Depends on python3-markupsafe.) Best wishes, Julian Hi Julian, I do not agree with Casten here. Please do upload 2.3.8 to unstable if it fixes things, so we have time to address all the Python 3.12 issues right now. Please hold on uploading 3.x (as well as werkzeug) if this can wait, because we need to address all the Python 3.12 issues first, and now is not a good time to transition any other components. Upgrading flask+werkzeug is *NOT* urgent. Fixing all 3.12 issues must be our current priority. Cheers, Thomas Goirand (zigo)
Bug#1058258: marked as pending in networking-sfc
Control: tag -1 pending Hello, Bug #1058258 in networking-sfc reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/neutron-plugins/networking-sfc/-/commit/e215d2325a490376b3cb19c8678e8b2492f8292e Add do-not-use-assertDictContainsSubset.patch (Closes: #1058258). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058258
Bug#1058531: marked as pending in heat
Control: tag -1 pending Hello, Bug #1058531 in heat reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/heat/-/commit/8a0a2d4c8dcf6dd78b63ec3a186bf4774c7a6a43 * Add patches for Python 3.12 fixes (Closes: #1058531): - find_spec-not-find_module.patch - py3.12-deprecated-importlib-apis.patch - py3.12-use-assert_has_calls.patch (this message was generated automatically) -- Greetings https://bugs.debian.org/1058531
Bug#1058373: marked as pending in python-oslotest
Control: tag -1 pending Hello, Bug #1058373 in python-oslotest reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/oslo/python-oslotest/-/commit/956daf69a0b5de63bb3c7905dee3324657ff65bf Add py3.12-fix-modules-fixture.patch (Closes: #1058373). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058373
Bug#1058411: marked as pending in python-pykmip
Control: tag -1 pending Hello, Bug #1058411 in python-pykmip reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/python/python-pykmip/-/commit/f0aed9d083ea82f906beb449516e237dfe0d0851 Add py3.12-ssl_wrap_socket.patch (Closes: #1058411). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058411
Bug#1058269: marked as pending in python-pylxd
Control: tag -1 pending Hello, Bug #1058269 in python-pylxd reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/python/python-pylxd/-/commit/bee2ce42bfb70d0476ead7b0b4f83a38bd2e408d Add py3.12-ssl_wrap_socket.patch (Closes: #1058269). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058269
Bug#1058219: Fix pending
Hi, The "slice(0, -1, None)" failed unit tests are due to #1058895 in SQLAlchemy, and for the has_calls -> assert_has_calls I have a patch locally, but can't upload unless SQLAlchemy is fixed. Cheers, Thomas Goirand (zigo)
Bug#1058162: Fixed, but waiting on sqlalchemy
Hi, There's a bunch of tests failing because of #1058895 in SQLAlchemy, the remaining 2 unit test failures, I have a patch for them, but this needs for SQLAlchemy to be fixed before I can upload. Cheers, Thomas Goirand (zigo)
Bug#1058895: python 3.12 slices are hashable, affects one area of Row for 1.4 only
Package: python3-sqlalchemy Version: 1.4.46+ds1-1 Severity: serious Hi, SQLAlchemy 1.4.47+ds1-1 in unstable is affected by this upstream bug: https://github.com/sqlalchemy/sqlalchemy/issues/9819 Latest upstream release for 1.4.x (ie: 1.4.50). I tried building it locally, and rebuild affected packages (for OpenStack), and this fixes these bugs (or at least, it's part of solving these bugs as there are also other issues unrelated): https://bugs.debian.org/1058183 (barbican) https://bugs.debian.org/1058123 (neutron-vpnaas) (FTBFS reported fixed by eventlet, but package affected by this bug) https://bugs.debian.org/1058219 (senlin) https://bugs.debian.org/1058233 (sahara) https://bugs.debian.org/1058531 (heat) (some other failures, but also affected) There's probably more (I didn't attempt to rebuild all affected packages yet), but these are 5 examples of packages that FTBFS because of this problem. It'd be nice if we could have the patch in Unstable with this series 1.4.x before uploading 2.x, so that I have a chance to fix all Python 3.12 bugs and not mix SQLA 2.x and Py 3.12 problems. Cheers, Thomas Goirand (zigo)
Bug#1058186: marked as pending in python-swiftclient
Control: tag -1 pending Hello, Bug #1058186 in python-swiftclient reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/clients/python-swiftclient/-/commit/874d95bab6ecbd8398fdb7a5cfef0917599d133e Add py3.12-Fix_call_assertion.patch (Closes: #1058186). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058186
Bug#1058323: marked as pending in python-magnumclient
Control: tag -1 pending Hello, Bug #1058323 in python-magnumclient reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/clients/python-magnumclient/-/commit/4df7db233712e77e73fd1fd0bf07b4ef5fc4b9ec * Add py3.12-key_file-and-cert_file-must-use-context.patch (Closes: #1058323). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058323
Bug#1058097: python-openstackclient: FTBFS: AttributeError: module 'sys' has no attribute 'builtin_module_names'
I'm not getting what's been reported, but this now: File "", line 1360, in _find_and_load File "", line 1331, in _find_and_load_unlocked File "", line 935, in _load_unlocked File "", line 1176, in exec_module File "", line 58, in AttributeError: module 'sys' has no attribute 'byteorder' Working on it... Though is it possible that this is a bug in the interpreter itself? Cheers, Thomas Goirand (zigo)
Bug#1058241: marked as pending in python-dracclient
Control: tag -1 pending Hello, Bug #1058241 in python-dracclient reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/clients/python-dracclient/-/commit/4becfa2b99c1a47f89ffb9d5c3b324411b5ed026 * Add py3.12-assertRaisesRegexp-becomes-assertRaisesRegex.patch (Closes: #1058241). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058241
Bug#1058315: python3-nose: from nose.tools import assert_equals, assert_raises FAILS
Hi, As you may see by the reassigned bug, doing this: from nose.tools import assert_equals, assert_raises fails under Python 3.12, when it works under 3.11. Cheers, Thomas Goirand (zigo)
Bug#1058439: marked as pending in python-os-api-ref
Control: tag -1 pending Hello, Bug #1058439 in python-os-api-ref reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/libs/python-os-api-ref/-/commit/6005e4d73fbf0436b961810927b3df45c56097a6 * Add python 3.12 patches (Closes: #1058439): - py3.12-use-assertRegex-not-assertRegexpMatches.patch (this message was generated automatically) -- Greetings https://bugs.debian.org/1058439
Bug#1058254: marked as pending in python-keystonemiddleware
Control: tag -1 pending Hello, Bug #1058254 in python-keystonemiddleware reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/libs/python-keystonemiddleware/-/commit/a40753ecf611ace3557ded3315f4bf5ef6d82b74 Add do-not-use-utcnow.patch (Closes: #1058254). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058254
Bug#1058536: marked as pending in ironic-inspector
Control: tag -1 pending Hello, Bug #1058536 in ironic-inspector reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/ironic-inspector/-/commit/83b30760e1934b14b274eb46cbf575c804d1fa62 * Blacklist TestManagerDelHost.test_del_host_with_coordinator (Closes: #1058536). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058536
Bug#1058171: marked as pending in python-logutils
Control: tag -1 pending Hello, Bug #1058171 in python-logutils reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/python/python-logutils/-/commit/ec0cc3fd2454dee8bf02b6758cf7bcb3b0a5ab0a Add use-assertEqual-not-assertEquals.patch (Closes: #1058171). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058171
Bug#1058086: marked as pending in python-monasca-statsd
Control: tag -1 pending Hello, Bug #1058086 in python-monasca-statsd reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/libs/python-monasca-statsd/-/commit/f741a8c783c6870049b7e0692f77f0640e791651 * Fix FTBFS by adding patch (Closes: #1058086): - do-not-use-assertRegexpMatches-but-assertRegex.patch (this message was generated automatically) -- Greetings https://bugs.debian.org/1058086
Bug#1058247: marked as pending in git-review
Control: tag -1 pending Hello, Bug #1058247 in git-review reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/third-party/git-review/-/commit/312652a657953e84563254f3ae3db1a67e488d9c Add fix-unit-test-for-python-3.12.patch (Closes: #1058247). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058247
Bug#1058151: marked as pending in python-nose-timer
Control: tag -1 pending Hello, Bug #1058151 in python-nose-timer reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/python/python-nose-timer/-/commit/79652c46be4facbf8e44d2f402de5d3b72721330 Add python3.12.patch (Closes: #1058151). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058151
Bug#1056233: marked as pending in cinder
Control: tag -1 pending Hello, Bug #1056233 in cinder reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/cinder/-/commit/9b7f398b1d03a0696aa69150f10fc3f5d8d30714 Add Fix_invalid_assert_calls.patch. (Closes: #1056233). (this message was generated automatically) -- Greetings https://bugs.debian.org/1056233
Bug#1056233: Issue isn't what's described
Hi, The issue described in this bug report is invalid, however, there was another one which I just fixed (adding Fix_invalid_assert_calls.patch). I'll use the same bug report then. Cheers, Thomas Goirand (zigo)
Bug#1058145: marked as pending in python-proliantutils
Control: tag -1 pending Hello, Bug #1058145 in python-proliantutils reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/libs/python-proliantutils/-/commit/f62d53376161f296fff129e242205408e04c7326 Added python3-pyasyncore as (build-)depends (Closes: #1058145). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058145
Bug#1058117: marked as pending in python-oslo.log
Control: tag -1 pending Hello, Bug #1058117 in python-oslo.log reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/oslo/python-oslo.log/-/commit/f7a7d04d6b930085487350366cafe79c12db16aa Added python3-pyasyncore as (build-)depends (Closes: #1058117). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058117
Bug#1058184: marked as pending in python-taskflow
Control: tag -1 pending Hello, Bug #1058184 in python-taskflow reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/libs/python-taskflow/-/commit/1cd1129f430046465e04302b24d6e22c6a21c801 * Added python3-pyasyncore as (build-)depends, so this package can work with Python 3.12 (Closes: #1058184). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058184
Bug#1058186: Issue likely to be in python3-future
Hi, According to the trace, I can see: > File "/usr/lib/python3/dist-packages/future/standard_library/__init__.py", line 65, in > import imp > ModuleNotFoundError: No module named 'imp' This comes from the python3-future package, not from swiftclient. I tried fixing python3-future for Python 3.12, however, there are other issues that needs to be fixed in that package, so it's harder than just fixing a bad import. I wont be able to tell for sure if swiftclient can build with Python 3.12 until future is fixed. Cheers, Thomas Goirand (zigo)
Bug#1058180: marked as pending in python-os-ken
Control: tag -1 pending Hello, Bug #1058180 in python-os-ken reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/libs/python-os-ken/-/commit/69c59a6f6bd0ff77c0a14e9e709ff555db13bd0e Add use-importlib-not-imp.patch (Closes: #1058180). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058180
Bug#1058140: marked as pending in python-pbr
Control: tag -1 pending Hello, Bug #1058140 in python-pbr reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/libs/python-pbr/-/commit/16cc76d61b66db1b36982fdbffcfeac1edb56c1c Add Replace-imp-with-importlib.machinery.patch (Closes: #1058140). (this message was generated automatically) -- Greetings https://bugs.debian.org/1058140
Bug#1057615: marked as pending in python-oslo.policy
Control: tag -1 pending Hello, Bug #1057615 in python-oslo.policy reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/oslo/python-oslo.policy/-/commit/8b02dd9d67fcd8b012c0c9cc4433fb224e1fecf8 Add fix-external-link-broken.patch (Closes: #1057615). (this message was generated automatically) -- Greetings https://bugs.debian.org/1057615
Bug#1055514: opensysusers: ineffective diversion of /bin/systemd-sysusers due to /usr-merge and DEP17
Hi Helmut, Thanks for following-up in this bug, and thanks for your patience. Helmut Grohne : > The diversion setup bears a significant downside: While the API > existing API of the sysusers interface is relatively stable, systemd > keeps adding features and when systemd calls systemd-sysusers it wants > to be able to rely on its latest features. A diverted systemd-sysusers > may not provide what is needed here. I've read this argument countless times. Here's my remarks. If the API of this systemd component changes all the time, when it's supposed to be used by our packages, then we'd better avoid systemd-sysusers at all costs, and declare it as not useable in the long run, because constantly changing. This would be a strong case for using only opensysusers. Lucky, that's as much as I know, *NOT* the case, and what you're describing is hopefully just FUD. If that's not, please be explicit explaining which part of the API of systemd-sysusers changed, or what feature was added: I'd be very curious to know, and it'd be nice to be able to add the missing feature in opensysusers. If you cannot explain what's not stable in this API, or what feature was added recently that is missing from opensysusers, then I would strongly suggest stopping spreading this kind of fake news, and let other people re-implement parts of systemd if they feel like it. If this is only a theoretical point, that systemd-sysusers *MAY* one day implement a new feature, then the thing that counts is if opensysusers is able to implement it as well, in a timely manner, to be able to stay compatible. If that's the case, then there's nothing to be afraid of. So please care to explain... That being said, I agree (and always did) that dpkg-divert was, and is (still) wrong, and should be replaced by a better solution. That was my point of view in the first place, and what I wrote to the tech-committee a few years ago. > A possible compromise could be that opensysusers stops diverting > systemd-sysusers and installs the symbolic link without diversion such > that systemd becomes the preferred provider when coinstalled. I don't understand why we're not then using update-alternatives. It has always been my idea to do so, and have systemd-sysuser having a higher priority over opensysusers... What's the blocker? You wrote it has issues with /usr-merge, why would it be the case, if we only do stuff in /usr/bin? Andrea Pappacoda : > since the upstream developers (i.e. the Artix Linux maintainers) > stopped development in favour of systemd-standalone-sysusers[ I wouldn't be scared of upstream being gone in the case of opensysusers, as this is a quite simple component to maintain. Though it's entirely your call. Cheers, Thomas Goirand (zigo)
Bug#1054754: marked as pending in networking-l2gw
Control: tag -1 pending Hello, Bug #1054754 in networking-l2gw reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/neutron-plugins/networking-l2gw/-/commit/a8feae08189deca0e133e08029f38d051ae5d9f9 Now packaging 20.0.0, fixing FTBFS (Closes: #1054754). (this message was generated automatically) -- Greetings https://bugs.debian.org/1054754
Bug#1054751: marked as pending in neutron-taas
Control: tag -1 pending Hello, Bug #1054751 in neutron-taas reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/neutron-taas/-/commit/98011132b1d2b6380f816ea5f1d7e48e04f9fea5 Now packaging 12.0.0 (Closes: #1054751). (this message was generated automatically) -- Greetings https://bugs.debian.org/1054751
Bug#1042648: pyro4: FTBFS with Sphinx 7.1, docutils 0.20: rm: cannot remove '/<>/debian/pyro4-doc/usr/share/doc/pyro4-doc//html/_static/underscore.js': No such file or directory
Hi, FYI, simply removing from d/rules: override_dh_installdocs: [...] rm $(DOCDIR)/html/_static/underscore.js fixes the build. Can this be done and uploaded ASAP please? Or alternatively, is this OK for an NMU? Cheers, Thomas Goirand (zigo)
Bug#1042597: marked as pending in sphinx-celery
Control: tag -1 pending Hello, Bug #1042597 in sphinx-celery reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/python-team/packages/sphinx-celery/-/commit/0dd2c4957e329b875133c4fc852d941f0d5e9ba4 * Add add_placeholder_to_each_extlinks_caption.patch to fix issues with FTBFS with Sphinx 7.1, docutils 0.20 of reverse depends (Closes: #1042597). (this message was generated automatically) -- Greetings https://bugs.debian.org/1042597
Bug#1053841: marked as pending in ironic
Control: tag -1 pending Hello, Bug #1053841 in ironic reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/ironic/-/commit/3b1afed4a5a98d35ee21c457524fdccfffb73daf * Removed python3-sphinxcontrib.seqdiag from build-depends (Closes: #1053841). (this message was generated automatically) -- Greetings https://bugs.debian.org/1053841
Bug#1053841: marked as pending in ironic
Control: tag -1 pending Hello, Bug #1053841 in ironic reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/ironic/-/commit/1075b0c651c45e423e6ac25d9328feed669d7138 * Removed python3-sphinxcontrib.seqdiag from build-depends and add remove-the-use-of-seqdiag.patch (Closes: #1053841). (this message was generated automatically) -- Greetings https://bugs.debian.org/1053841
Bug#1052898: marked as pending in python-typepy
Control: tag -1 pending Hello, Bug #1052898 in python-typepy reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/third-party/python-typepy/-/commit/614322bcb1fb47f167b1e008295e91b98bd4ee53 Add do-not-use-Canada_Atlantic-gz.patch (Closes: #1052898). (this message was generated automatically) -- Greetings https://bugs.debian.org/1052898
Bug#1052907: marked as pending in cloudkitty
Control: tag -1 pending Hello, Bug #1052907 in cloudkitty reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/cloudkitty/-/commit/34feac7c1c06bb5752de365d2835f36d045c9068 * New upstream release 19.0.0: - Fixes FTBFS (Closes: #1052907) * Uploading to unstable. (this message was generated automatically) -- Greetings https://bugs.debian.org/1052907
Bug#1051933: marked as pending in python-pysmi-lextudio
Control: tag -1 pending Hello, Bug #1051933 in python-pysmi-lextudio reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/third-party/python-pysmi-lextudio/-/commit/18223c08fe361302757b596eca2fcd899502600e Added Conflicts: python3-pysmi (Closes: #1051933). (this message was generated automatically) -- Greetings https://bugs.debian.org/1051933
Bug#1052762: marked as pending in ceph
Control: tag -1 pending Hello, Bug #1052762 in ceph reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/ceph-team/ceph/-/commit/ee65aa1ab4229b0dabbe9399419cdd189612ed3c reaks: + Replaces: radosgw (<< 18) (Closes: #1052762). (this message was generated automatically) -- Greetings https://bugs.debian.org/1052762
Bug#1037602: ceph: ftbfs with GCC-13
On 9/19/23 17:02, Bo YU wrote: hmm, I try the patch again, but it seems it works on amd64. `apt source ceph` to get ceph_16.2.11+ds-2 and debdiff-apply the patch. I guess maybe you apply the patch on salsa repo. Yes, I did. Also, you might have missed that I prepared the next version in the debian/experimental branch. The debian/unstable only has the merge of upstream tarball, nothing more, so don't use that one. It builds a lot more stuff, but then it also FTBFS. Note that the upstream package prepared for Ubuntu also FTBFS. yes, I notice it. I am trying to `git clone` the ceph source code from salsa in order to rebase the patch on your commit as you mention. But I am stuck in how to get rid of upstream tarball(18.1.2) on debian/unstable and apply my patch. Or could you tell me what your context hot to apply my patch and I can reproduct the FTBFS on my local machines? I've "git push origin debian/unstable -f" to get a working branch. Please clone again from scratch (I know, it's a huge repo... :/). I really would love to receive help here, packaging version 18, because even reading the failing cmake logs is hard for me... Thanks for your hard work here. I am not sure I can help here, but i will do my best if possbile. Let's first get 16.2.11 fixed in unstable, then maybe your patch can apply on top of 18.2.x too... Thanks for your help, Cheers, Thomas Goirand (zigo)
Bug#1037602: marked as pending in ceph
Control: tag -1 pending Hello, Bug #1037602 in ceph reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/ceph-team/ceph/-/commit/48dc08622e70877aba2095b497aece099a16cc2f * Fix gcc-13 FTBFS. (Closes: #1037602): - fix-gcc-13-issue.patch (thanks to Bo YU). (this message was generated automatically) -- Greetings https://bugs.debian.org/1037602
Bug#1037602: ceph: ftbfs with GCC-13
On 9/18/23 13:03, Bo YU wrote: Source: ceph Followup-For: Bug #1037602 Tags: patch User: debian-ri...@lists.debian.org Usertags: riscv64 X-Debbugs-Cc: debian-ri...@lists.debian.org Dear Maintainer, I found these commits that was trying to fix the issue but it looks like they not done yet. I can confrim the attached patch can fix the issue. https://salsa.debian.org/ceph-team/ceph/-/commit/9104dcb08ce6e86f4b2f33286938c6a90f659471 https://salsa.debian.org/ceph-team/ceph/-/commit/9cc4c414c1729b6a5b101c46cdfea4ab32f179f3 Or upgrade to 18.1.2 as you have done on salsa, but this maybe cost more time to finish. The reason I am ccing riscv mail list is that the ceph package is a very key package and now it was a blocker for riscv64 official rebootstrap from my view. https://buildd.debian.org/status/package.php?p=ceph So could you apply it or upgrade to new version at your next upload? Hi, I tried your patch, and it's not enough, the package continues to FTBFS. Should it be applied on top of my commits that you linked above? Also, you might have missed that I prepared the next version in the debian/experimental branch. The debian/unstable only has the merge of upstream tarball, nothing more, so don't use that one. It builds a lot more stuff, but then it also FTBFS. Note that the upstream package prepared for Ubuntu also FTBFS. I really would love to receive help here, packaging version 18, because even reading the failing cmake logs is hard for me... Cheers, Thomas Goirand (zigo)
Bug#1051934: marked as pending in python-pyasn1-modules-lextudio
Control: tag -1 pending Hello, Bug #1051934 in python-pyasn1-modules-lextudio reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/third-party/python-pyasn1-modules-lextudio/-/commit/336c08d3f25b4447361a65ba88e4b499db6c7f66 Added Conflicts: python3-pyasn1-modules (Closes: #1051934). (this message was generated automatically) -- Greetings https://bugs.debian.org/1051934
Bug#1039472: works
My bad, it worked.
Bug#1039472: Doesn't work
Hi, I tried installing ca-certificates-java 20230620~deb12u1 from bookworm proposed-updates, and I still have the same issue described in this bug. Can we have this fixed ?!? Cheers, Thomas Goirand (zigo)
Bug#1042306: marked as pending in keystone
Control: tag -1 pending Hello, Bug #1042306 in keystone reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/keystone/-/commit/9ecf4f9de01aa23dc231b80eb2884c3c77a9f2ef Add remove-blockdiag-schema-to-avoid-ftbfs.patch (Closes: #1042306). (this message was generated automatically) -- Greetings https://bugs.debian.org/1042306
Bug#1042187: marked as pending in gnocchi
Control: tag -1 pending Hello, Bug #1042187 in gnocchi reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/gnocchi/-/commit/80be08a7bd6838fa256ce8829ce63e3599a6d0c7 * Add setup-fix-usage-of-deprecated-get_script_header.patch (Closes: #1042187). (this message was generated automatically) -- Greetings https://bugs.debian.org/1042187
Bug#1042128: marked as pending in designate
Control: tag -1 pending Hello, Bug #1042128 in designate reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/designate/-/commit/2a9d81436b4e640474cb4c60f4c61d459f79d692 Add remove-blockdiag-from-admin-ha-doc.patch (Closes: #1042128). (this message was generated automatically) -- Greetings https://bugs.debian.org/1042128
Bug#1042358: openvswitch: FTBFS: make[3]: *** [Makefile:6743: manpage-check] Error 1
On 8/7/23 16:57, Colin Watson wrote: On Mon, Aug 07, 2023 at 04:45:30PM +0200, Thomas Goirand wrote: Ok, so if there's only 5 patches, not 6, then I should be able to manage (even though it's not the best convenient way). Thanks for your patches. I think I possibly understand what you meant now. Is this more convenient? I managed to upload the package with your fixes yesterday. Thanks a lot for your help, I probably would have spend a lot of time not knowing how to patch. Cheers, Thomas Goirand (zigo)
Bug#1042161: marked as pending in python-pytest-xprocess
Control: tag -1 pending Hello, Bug #1042161 in python-pytest-xprocess reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/python-team/packages/python-pytest-xprocess/-/commit/d2c897b03286a6e6da07f5eb7c059dcd2275d52f Add missing python3-py (build-)depends (Closes: #1042161). (this message was generated automatically) -- Greetings https://bugs.debian.org/1042161
Bug#1042358: marked as pending in openvswitch
Control: tag -1 pending Hello, Bug #1042358 in openvswitch reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/third-party/openvswitch/-/commit/51628d292653ff5712b705f156e86f23d121b57f * Add patches from Colin Watson to repair the docs (Closes: #1042358): - docs-1-Wrap_more_table_entries_in_text_blocks.patch - docs-2-Shorten_overly-wide_table_heading.patch - docs-3-Tweak_width_of_name_column_in_field_property.patch - docs-4-Fix_rendering_of_VLAN_Comparison_Chart.patch - docs-5-Run_tbl_preprocessor_in_manpage-check_rule.patch (this message was generated automatically) -- Greetings https://bugs.debian.org/1042358
Bug#1042358: openvswitch: FTBFS: make[3]: *** [Makefile:6743: manpage-check] Error 1
On 8/7/23 12:10, Colin Watson wrote: On Mon, Aug 07, 2023 at 10:54:52AM +0200, Thomas Goirand wrote: I very much appreciate that you've sent patches for this bug, thanks for this. However, it is difficult to apply your patches because they are sent inline, and therefore hard to save on disk. Also, I would have done the work by hand to avoid annoying you, but your "Message part 2" doesn't contain the patch at all, only a diffstat. Could you send me the 6 patches as separate files, so I could more easily add them to debian/patches? Or at least send the first patch that's completely missing... I don't mind sending you patches in a different format if it's helpful, but I'm confused; I _did_ send them as separate files, MIME-encapsulated. How else would I have sent them as separate files? The "PATCH v2 0/5" message is a cover letter for the patch set. It's not supposed to contain a patch itself. Cheers, Hi, Ok, so if there's only 5 patches, not 6, then I should be able to manage (even though it's not the best convenient way). Thanks for your patches. Cheers, Thomas Goirand (zigo)
Bug#1042358: openvswitch: FTBFS: make[3]: *** [Makefile:6743: manpage-check] Error 1
Hi Colin, I very much appreciate that you've sent patches for this bug, thanks for this. However, it is difficult to apply your patches because they are sent inline, and therefore hard to save on disk. Also, I would have done the work by hand to avoid annoying you, but your "Message part 2" doesn't contain the patch at all, only a diffstat. Could you send me the 6 patches as separate files, so I could more easily add them to debian/patches? Or at least send the first patch that's completely missing... Cheers, Thomas Goirand (zigo)
Bug#1042349: marked as pending in python-wsgi-intercept
Control: tag -1 pending Hello, Bug #1042349 in python-wsgi-intercept reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/python/python-wsgi-intercept/-/commit/7a68fcb59966319b0bfc6dfd59a67cbf7cadc387 Add refer_to_pytest_not_py.test_in_tests.patch (Closes: #1042349). (this message was generated automatically) -- Greetings https://bugs.debian.org/1042349
Bug#1037554: marked as pending in kombu
Control: tag -1 pending Hello, Bug #1037554 in kombu reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/python-team/packages/kombu/-/commit/395d6c268ee2b3be0be67144557a4d27cf6d39e9 Remove /usr/lib/python3/dist-packages/control (Closes: #1037554). (this message was generated automatically) -- Greetings https://bugs.debian.org/1037554
Bug#1038031: marked as pending in migrate
Control: tag -1 pending Hello, Bug #1038031 in migrate reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/libs/migrate/-/commit/57997d1f8bb0c653f7a162ca6fb7aead49b04af3 Add use-getfullargspec-instead-of-getargspec.patch (Closes: #1038031). (this message was generated automatically) -- Greetings https://bugs.debian.org/1038031
Bug#1026139: marked as pending in golang-google-grpc
Control: tag -1 pending Hello, Bug #1026139 in golang-google-grpc reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/go-team/packages/golang-google-grpc/-/commit/dc108bde8666ed5e8e1c1939147346863f4aec7d * Use golang-github-golang-protobuf-1-5-dev instead of golang-goprotobuf-dev in runtime depends as well (Closes: #1026139). (this message was generated automatically) -- Greetings https://bugs.debian.org/1026139
Bug#1035720: marked as pending in python-django-compressor
Control: tag -1 pending Hello, Bug #1035720 in python-django-compressor reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/python/python-django-compressor/-/commit/7dbd0fe49afddff258731122c5d4dd9ce87945b1 * Fix Command.requires_system_checks to make it work under Django 4.x. (Closes: #1035720). (this message was generated automatically) -- Greetings https://bugs.debian.org/1035720
Bug#1035720: Issue is in python3-django-compressor
Looking at: /usr/lib/python3/dist-packages/compressor/management/commands/compress.py at the end, we can see: Command.requires_system_checks = false If I change this from "false" to just "[]", then everything works. So the issue really is in python3-django-compressor. I'll fix this after this week-end, after Bookworm is released. Cheers, Thomas Goirand (zigo)
