Re: Notice of mailing list closure: pkg-multimedia-maintainers

[James Cowgill]

Hi,

On 11/04/18 15:19, Reinhard Tartler wrote:
> Hi Mattia,
> 
> I am around, but am unsure what to do. Reading through the past mails on
> this topic on the pkg-multimedia-maintainers mailing list, I thought the
> plan was to move all packages to use "debian-multime...@lists.debian.org
> " as maintainer, and we could
> safely let go of the alioth list. I may have misunderstood something.

Yes that is the plan, but unfortunately we only have 3 days to do that
before the alioth list is turned off, so I think it's better to have the
list migrated for the time being and let the list go once enough stuff
has been migrated.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: Notice of mailing list closure: pkg-multimedia-maintainers

[James Cowgill]

Hi,

On 02/04/18 16:21, alioth lists migration team wrote:
> Dear list subscribers,
> 
> As per the announcement on debian-devel-announce[1] and as part of
> the shutdown of the alioth service, the migration of
> lists.alioth.debian.org mailing lists to alioth-lists.debian.net is now
> underway.
> 
> We tried to contact the designated list owner via
> pkg-multimedia-maintainers-ow...@lists.alioth.debian.org but got either no 
> reply,
> or a bounce message. Accordingly, this list will not be migrated to the
> new system and will stop working on 14th April.

Given that the vast majority of packages are still on the old
lists.alioth.debian.org maintainer address, I think we will need the
list migrated otherwise the team will be screwed. Have I missed something?

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#895154: ffmpeg: FTBFS - make[2]: write error: stdout

[James Cowgill]

Control: tags -1 pending

Hi,

On 08/04/18 11:18, Niels Thykier wrote:
> On Sat, 7 Apr 2018 21:38:53 +0100 James Cowgill <jcowg...@debian.org> wrote:
>> Source: ffmpeg
>> Version: 7:3.4.1-1
>> Severity: serious
>> Tags: sid buster
>>
>> For some reason ffmpeg has started FTBFS with this error:
>>> TESTvsynth2-zlib
>>> /<>/tests/fate-run.sh fate-vsynth2-zlib "" "" 
>>> "/<>/debian/standard" 'enc_dec "rawvideo -s 352x288 -pix_fmt 
>>> yuv420p " tests/data/vsynth2.yuv avi "-c zlib " rawvideo "-s 352x288 
>>> -pix_fmt yuv420p -vsync 0 " -keep ""' '' 
>>> '/<>/tests/ref/vsynth/vsynth2-zlib' '' '1' '' '' '' '' '' '1' 
>>> '' '' ''
>>>  /<>/debian/standard/ffmpeg -nostdin -nostats -cpuflags all -f 
>>> rawvideo -s 352x288 -pix_fmt yuv420p -threads 1 -idct simple -flags 
>>> +bitexact -sws_flags +accurate_rnd+bitexact -fflags +bitexact -hwaccel none 
>>> -threads 1 -thread_type frame+slice -i 
>>> /<>/debian/standard/tests/data/vsynth2.yuv -threads 1 -idct 
>>> simple -dct fastint -c zlib -flags +bitexact -sws_flags 
>>> +accurate_rnd+bitexact -fflags +bitexact -f avi -y 
>>> /<>/debian/standard/tests/data/fate/vsynth2-zlib.avi
>>>  /<>/debian/standard/ffmpeg -nostdin -nostats -cpuflags all 
>>> -threads 1 -idct simple -flags +bitexact -sws_flags +accurate_rnd+bitexact 
>>> -fflags +bitexact -hwaccel none -threads 1 -thread_type frame+slice -i 
>>> /<>/debian/standard/tests/data/fate/vsynth2-zlib.avi -threads 
>>> 1 -idct simple -dct fastint -s 352x288 -pix_fmt yuv420p -vsync 0 -flags 
>>> +bitexact -sws_flags +accurate_rnd+bitexact -fflags +bitexact -f rawvideo 
>>> -y 
>>> /<>/debian/standard/tests/data/fate/vsynth2-zlib.out.rawvideo
>>> make[2]: Leaving directory '/<>/debian/standard'
>>> make[2]: write error: stdout
>>> dh_auto_test: cd debian/standard && make -j4 -O check -k returned exit code 
>>> 1
>>> make[1]: *** [debian/rules:231: override_dh_auto_test-arch] Error 25
>>> make[1]: Leaving directory '/<>'
>>> make: *** [debian/rules:192: binary] Error 2
>>> dpkg-buildpackage: error: debian/rules binary subprocess returned exit 
>>> status 2
>>
>> This can be seen on the reproducible builds first seen 2018-03-15
>> affecting 3.4 and 3.5 in experimental.
>>
>> I'm guessing this has something to do with "make -O" which was enabled
>> recently in debhelper, but I haven't checked.
>>
>> James
> 
> Hi James,
> 
> In a recent upload, debhelper started using -Oline instead of -O.  Does
> that solve this problem for you?  (It was done unrelated to this bug,
> but looking at the documentation for -O, I suspect it might help here as
> well)

As me and Adrian said on IRC, it does not. The problem was nodejs
leaving stderr in non-blocking mode and I've committed this to fix it.
So no bugs in debhelper here.

https://salsa.debian.org/multimedia-team/ffmpeg/commit/71b483f31e5a411a02717278e0a30323965c2c88

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#895151: Guitarix update 35.2-2 (stretch) -> 36.1-1 (buster) improvement

[James Cowgill]

Hi,

On 07/04/18 20:41, treb...@tuxfamily.org wrote:
> Package: guitarix
> Version: 36.1-1
> 
> While upgrading from the Stretch package (35.2-2) to the sid/buster one
> (36.1-1), it doesn't update the libgxw0 and libgxwmm0 packages which are
> needed by the Guitarix application.
> 
> Then, the application isn't fully functional since it requires those
> libs to work with, and doesn't have those in the right version, then
> missing the right versionned functions. Hence there are some errors
> while using guitarix.

What are the errors? This bug might be RC but I can't tell if I don't
know what the underlying issue is.

> In d/control, adding to the binary "Package: guitarix" 's "Depends" '
> field the following seems to fix the issue :
> libgxw0 (>= ${source:Version}),
> libgxwmm0 (>= ${source:Version}),
> 
> Please double check before applying.

The correct fix is to generate versioned shlibs files for the libraries
so that the correct dependencies are automatically generated. Overriding
dh_makeshlibs with "dh_makeshlibs -V" is the quick conservative way of
doing this.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#895154: ffmpeg: FTBFS - make[2]: write error: stdout

[James Cowgill]

Source: ffmpeg
Version: 7:3.4.1-1
Severity: serious
Tags: sid buster

For some reason ffmpeg has started FTBFS with this error:
> TESTvsynth2-zlib
> /<>/tests/fate-run.sh fate-vsynth2-zlib "" "" 
> "/<>/debian/standard" 'enc_dec "rawvideo -s 352x288 -pix_fmt 
> yuv420p " tests/data/vsynth2.yuv avi "-c zlib " rawvideo "-s 352x288 -pix_fmt 
> yuv420p -vsync 0 " -keep ""' '' 
> '/<>/tests/ref/vsynth/vsynth2-zlib' '' '1' '' '' '' '' '' '1' '' 
> '' ''
>  /<>/debian/standard/ffmpeg -nostdin -nostats -cpuflags all -f 
> rawvideo -s 352x288 -pix_fmt yuv420p -threads 1 -idct simple -flags +bitexact 
> -sws_flags +accurate_rnd+bitexact -fflags +bitexact -hwaccel none -threads 1 
> -thread_type frame+slice -i 
> /<>/debian/standard/tests/data/vsynth2.yuv -threads 1 -idct 
> simple -dct fastint -c zlib -flags +bitexact -sws_flags 
> +accurate_rnd+bitexact -fflags +bitexact -f avi -y 
> /<>/debian/standard/tests/data/fate/vsynth2-zlib.avi
>  /<>/debian/standard/ffmpeg -nostdin -nostats -cpuflags all 
> -threads 1 -idct simple -flags +bitexact -sws_flags +accurate_rnd+bitexact 
> -fflags +bitexact -hwaccel none -threads 1 -thread_type frame+slice -i 
> /<>/debian/standard/tests/data/fate/vsynth2-zlib.avi -threads 1 
> -idct simple -dct fastint -s 352x288 -pix_fmt yuv420p -vsync 0 -flags 
> +bitexact -sws_flags +accurate_rnd+bitexact -fflags +bitexact -f rawvideo -y 
> /<>/debian/standard/tests/data/fate/vsynth2-zlib.out.rawvideo
> make[2]: Leaving directory '/<>/debian/standard'
> make[2]: write error: stdout
> dh_auto_test: cd debian/standard && make -j4 -O check -k returned exit code 1
> make[1]: *** [debian/rules:231: override_dh_auto_test-arch] Error 25
> make[1]: Leaving directory '/<>'
> make: *** [debian/rules:192: binary] Error 2
> dpkg-buildpackage: error: debian/rules binary subprocess returned exit status 
> 2

This can be seen on the reproducible builds first seen 2018-03-15
affecting 3.4 and 3.5 in experimental.

I'm guessing this has something to do with "make -O" which was enabled
recently in debhelper, but I haven't checked.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#895125: Soundconverter mp3 issue

[James Cowgill]

Control: reassign -1 gstreamer1.0-plugins-ugly 1.14.0-1
Control: retitle -1 gstreamer1.0-plugins-ugly: should have breaks 
gstreamer1.0-plugins-good (<< 1.13.1)

Hi,

On 07/04/18 11:01, Rob Oosterling wrote:
> Package: soundconverter
> Version: 3.0.0~beta1-2
> 
> Dear maintainer,
> 
> I installed this version, including all dependencies and recommended
> options (including gstreams-ugly),
[...]
> but the lame (mp3) option appears not to be seen by Soundconverter:
> 
> SoundConverter 3.0.0-beta1
>   using GTK version: 3.0
>   using Gstreamer version: 1.14.0.0
>   using 4 thread(s)
>   using gio
>   "lamemp3enc" gstreamer element not found, disabling MP3 output.
> 
> Running Debian Testing updated until today:
[...]
> Versions of packages soundconverter depends on:
> ii  gstreamer1.0-plugins-base  1.14.0-2
> ii  gstreamer1.0-plugins-good  1.12.4-1+b1
> 
> Versions of packages soundconverter recommends:
> ii  gstreamer1.0-libav 1.14.0-1
> ii  gstreamer1.0-plugins-ugly  1.14.0-1

The lame plugin was moved from -ugly to -good in 1.14 and because -good
1.14 has not yet migrated to testing, you have managed to lose the
entire plugin.

Upgrading gstreamer1.0-plugins-good to 1.14 in unstable should work, but
I am wondering whether it's a good idea to add a Breaks to -ugly to
prevent this from happening? This is the recommended way according to
#9 on this page:
 https://wiki.debian.org/PackageTransition

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#895016: soundconverter: Soundconverter AssertionError

[James Cowgill]

Control: tags -1 moreinfo

Hi,

On 06/04/18 11:06, jesusda wrote:
> Package: soundconverter
> Version: 3.0.0-1
> Severity: important
> 
> Dear Maintainer,
> 
> Soundconverter does not load, showing an AssertionError and crashing.
> 
> I've tested the stable, testing and sid versions and all them chrashed. Maybe
> the error was caused by any dependency I'm not able to find.
[...]
> Versions of packages soundconverter depends on:
> ii  dconf-gsettings-backend [gsettings-backend]  0.26.1-3
> ii  gir1.2-glib-2.0  1.56.0-2
> ii  gir1.2-gstreamer-1.0 1.12.4-1
> ii  gir1.2-gtk-3.0   3.22.29-2
> ii  gstreamer1.0-plugins-base1.14.0-dmo1

Try installing all gstreamer related packages from the official Debian
repositories instead of from deb-multimedia.org.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#886046: marked as done (soundconverter: Depends on gconf)

[James Cowgill]

Control: reopen -1

Hi,

On 05/04/18 00:54, Debian Bug Tracking System wrote:
> Changes:
>  soundconverter (3.0.0-1) unstable; urgency=medium
>  .
>[ Ondřej Nový ]
>* d/control: Set Vcs-* to salsa.debian.org
>* d/changelog: Remove trailing whitespaces
>  .
>[ Sebastian Ramacher ]
>* New upstream release.
>  - Replace gconf with gsettings. (Closes: #886046)
>* debian/control:
>  - Bump Standards-Version.
>  - Drop now no longer needed dependency on gir1.2-gconf-2.0.

If I uninstall gir1.2-gconf-2.0, I get this error when trying to start
soundconverter 3.0.0-1:

$ soundconverter
SoundConverter 3.0.0
SoundConverter needs GTK >= 3.0 (Error: "Namespace GConf not available")

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#894191: ffmpeg: silence when copying AAC (LC) from MKV to AVI

[James Cowgill]

Hi,

On 28/03/18 05:42, Рома Тенцер wrote:
> Here's a part of it (all file is too big).
> 
> I find a warning in ffmpeg/ffprobe output:
> 
> "[aac @ 0x169bc80] This stream seems to incorrectly report its last
> channel as LFE[3], mapping to LFE[0]"
> 
> I can't reproduce this bug with other files, so i think it can be a
> problem.
> 
> And i was wrong, it's not a silence. It's a low volume level in avi.
> 
> I use this command:
> 
> "ffmpeg -i sample.mkv -c:v mpeg4 -q:v 1 -c:a copy sample.avi"

I can't seem to reproduce any audio issues with that command. After
running that, both sample.mkv and sample.avi play fine in ffplay and
mpv. I don't think there is any audio within the first 3 seconds of the
sample you gave me. I get the warning you mention, but the LFE channel
appears to be silent throughout the sample so I'm not sure if that is
the issue.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#894240: vlc: Application binaries should be in the main package

[James Cowgill]

Hi,

On 27/03/18 18:08, asciiw...@seznam.cz wrote:
> Package: vlc
> Version: 3.0.1-3
> 
> According to the AppStream specification, the application binary should be 
> included in the same package as the .desktop and the AppStream metadata. 
> Unfortunately, VLC in Debian has the binaries in vlc-bin package. This causes 
> issues with GNOME Software and other modern package managers. Please, 
> consider dropping the vlc-bin package and moving its content to the vlc 
> package.

What is the actual problem you are seeing? Installing vlc works fine for
me with GNOME Software.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#894191: ffmpeg: silence when copying AAC (LC) from MKV to AVI

[James Cowgill]

Control: severity -1 normal

On 27/03/18 08:01, Рома Тенцер wrote:
> Package: ffmpeg
> Version: 7:3.4.2-1
> Severity: minor
> 
> I have a .mkv file with avc for video and aac (lc) for audio. When i
> copy audio stream to .avi (i recode avc to mpeg4, so i think it's a
> better container) in the result file audio get silent after a first one
> or two second. When i copy the audio to .mkv it works fine so i think
> it's a muxer problem. I don't really sure if avi supports aac, but if it
> isn't i think ffmpeg should warn user.

I think putting AAC audio in an AVI container should work properly. Can
you upload the input file (just attach it to the bug report) and the
exact ffmpeg commands you are using?

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Accepted easytag 2.4.3-4 (source) into unstable

[James Cowgill]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Sun, 25 Mar 2018 12:48:14 +0100
Source: easytag
Binary: easytag easytag-nautilus
Architecture: source
Version: 2.4.3-4
Distribution: unstable
Urgency: medium
Maintainer: Debian Multimedia Maintainers 
<pkg-multimedia-maintainers@lists.alioth.debian.org>
Changed-By: James Cowgill <jcowg...@debian.org>
Description:
 easytag- GTK+ editor for audio file tags
 easytag-nautilus - Nautilus extension for easytag
Closes: 886272
Changes:
 easytag (2.4.3-4) unstable; urgency=medium
 .
   * debian/control:
 - Revert OGG support removal in package description.
   * debian/patches:
 - Add patch to revert upstream commit which causes OGG corruption.
   (Closes: #886272)
   * debian/rules:
 - Re-enable OGG, OPUS and Speex support.
Checksums-Sha1:
 24b27cee03fbd4dc714df566a9c84467357ab943 2454 easytag_2.4.3-4.dsc
 7072a7326f59c419e551d2f1a44a469fd2789128 14212 easytag_2.4.3-4.debian.tar.xz
 7fbfb0b767c336a3d2b9fb8571948440b979071c 16555 easytag_2.4.3-4_source.buildinfo
Checksums-Sha256:
 fe6a50d7c1e714e0108720e90d7b313f9a5529b00bcd1ecd8701ef2609e706bc 2454 
easytag_2.4.3-4.dsc
 4c4928d7399830a3938bdb5044a88ec19dc8d9f10aa8236212dbb6fdc4428bd7 14212 
easytag_2.4.3-4.debian.tar.xz
 b8bfa5ae70acd92856115a37ca56a7dee0aadfa1e99ccabbd4640bc3d476b954 16555 
easytag_2.4.3-4_source.buildinfo
Files:
 f755815f04ba61c7e8de9c394442eaa4 2454 sound optional easytag_2.4.3-4.dsc
 a8f19ed2ed32d28612ab0d59a12dd4d4 14212 sound optional 
easytag_2.4.3-4.debian.tar.xz
 3949aa9fb66e9e8424d7c1c280c237aa 16555 sound optional 
easytag_2.4.3-4_source.buildinfo

-BEGIN PGP SIGNATURE-
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=lgvp
-END PGP SIGNATURE-


___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#855251: easytag corrupt ogg files

[James Cowgill]

Hi,

On 03/01/18 16:50, James Cowgill wrote:
> On 16/02/17 01:02, Samuele Battarra wrote:
>> Package: easytag
>> Version: 2.4.3-1
>> Severity: normal
>>
>> Dear Maintainer,
>> I have a ogg file encoded from a live cd, I split it to single tracks with 
>> oggsplt and then tag the tracks with easytag.
>> When I play the files I hear a click at file change.
>> The click is not present in files before the tagging and if I tag with kid3.
> 
> As you might have noticed, I have decided that the best way to fix this
> is to disable support for OGG and related media types in easytag for the
> time being. Solving this bug is apparently quite complex and while the
> upstream bug has been open for over a year, there has not been much
> progress on it. I think it is better to have some version in buster
> (which does not mangle your media files) than nothing at all.

I have just uploaded easytag 2.4.3-4 which reverts an upstream commit
which I think will fix this (you will need to wait a few hours before it
appears on the mirrors). It would be very useful if people could test it
for me before I upload the fix to stable.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#886105: klystrack: please make the build reproducible with respect to timestamps

[James Cowgill]

Hi Gürkan,

On 02/01/18 10:30, Chris Lamb wrote:
> Source: klystrack
> Version: 0.20171212-1
> Severity: wishlist
> Tags: patch
> User: reproducible-bui...@lists.alioth.debian.org
> Usertags: timestamps
> X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org
> 
> Hi,
> 
> Whilst working on the Reproducible Builds effort [0], we noticed
> that klystrack could not be built reproducibly.
> 
> Patch attached, although the resource files are still not reproducible
> as they iterate over the filesystem in a non-determistic order. This
> will require a match to makebundle.c.

You marked this bug with the "help" tag. What help do you need?

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#882224: bs1770gain: enable dh-autoreconf

[James Cowgill]

Hi,

On 21/03/18 19:28, Petter Reinholdtsen wrote:
> [James Cowgill]
>> bs1770gain contains a build-dependency on dh-autoreconf, but since it
>> uses compat 9 and does not enable it manually, it is never used. This
>> looks like an oversight to me.
> 
> It is, but it is harder to fix than expected.  I tried to enable it by
> raising the compat level from 9 to 10, but the build fail.

You can workaround this by disabling automake's -Werror which at least
allows you to build the package. The warnings are things that would be
good to fix though.

--- a/configure.ac
+++ b/configure.ac
@@ -27,7 +27,7 @@
 # AC_CHECK_LIB (library, function, [action-if-found], [action-if-not-found], 
[other-libraries])
 
 AC_INIT([bs1770gain], [0.4.11-beta-2], [pbelk...@users.sf.net], [], 
[http://bs1770gain.sourceforge.net/])
-AM_INIT_AUTOMAKE([-Wall -Werror foreign])
+AM_INIT_AUTOMAKE([-Wall foreign])
 AC_PROG_CC
 AC_PROG_RANLIB
 
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#892582: mixxx: Build-Depend on scour

[James Cowgill]

Hi,

On 11/03/18 10:31, Matteo F. Vescovi wrote:
> On 2018-03-10 at 18:49 (-0500), Jeremy Bicha wrote:
>> Source: mixxx
>> Version: 2.0.0~dfsg-8
>>
>> Please Build-Depend on scour instead of python-scour and python3-scour.
> 
> Lintian complains on the source package with:
> 
> E: mixxx source: missing-build-dependency-for-dh-addon scour => python3-scour
> N: 
> N:The source package appears to be using a dh addon but doesn't build
> N:depend on the package that actually provides it. If it uses it, it must
> N:build depend on it.
> 
> So?

I think it's a lintian bug. I've reopened #889016 for it.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Accepted easytag 2.4.3-3 (source) into unstable

[James Cowgill]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Thu, 08 Mar 2018 21:42:15 +
Source: easytag
Binary: easytag easytag-nautilus
Architecture: source
Version: 2.4.3-3
Distribution: unstable
Urgency: medium
Maintainer: Debian Multimedia Maintainers 
<pkg-multimedia-maintainers@lists.alioth.debian.org>
Changed-By: James Cowgill <jcowg...@debian.org>
Description:
 easytag- GTK+ editor for audio file tags
 easytag-nautilus - Nautilus extension for easytag
Closes: 886369 892385
Changes:
 easytag (2.4.3-3) unstable; urgency=medium
 .
   [ Ondřej Nový ]
   * d/copyright: Use https protocol in Format field.
   * d/control: Set Vcs-* to salsa.debian.org.
 .
   [ Jeremy Bicha ]
   * Move easytag-nautilus appstream metadata to easytag-nautilus.
 (Closes: #892385)
   * Use dh_missing --fail-missing.
   * Drop Pre-Depends from easytag-nautilus.
 .
   [ Bruno Kleinert ]
   * Do not mention OGG support in package description. (Closes: #886369)
 .
   [ James Cowgill ]
   * debian/changelog:
 - Remove trailing whitespace.
 - Remove emacs mode settings.
Checksums-Sha1:
 8cf0eaf3d10142e740f835f8e52f3a9e96e535a4 2454 easytag_2.4.3-3.dsc
 bf83bba6f1b3f1fbe587e2c6b952d8561da32f15 12428 easytag_2.4.3-3.debian.tar.xz
 ee076ce197ac51edf98bbbc1067627781ee75035 15724 easytag_2.4.3-3_source.buildinfo
Checksums-Sha256:
 b0256be1b31ddb128b63b3342a39cb99da0edc8c0090c216c5c071044662cdab 2454 
easytag_2.4.3-3.dsc
 916cf0d2081c37b16b41349e529a63e15033a49e988da476f13129d1c43a9599 12428 
easytag_2.4.3-3.debian.tar.xz
 091986edad6a2792c1694fa6b6d7ad9d6e0d058fe780763ff778d4b8d0994026 15724 
easytag_2.4.3-3_source.buildinfo
Files:
 a90efdc089ee5c03233a8572ada12b1b 2454 sound optional easytag_2.4.3-3.dsc
 1931d0f7961df313bfaffcb69b0ce9e1 12428 sound optional 
easytag_2.4.3-3.debian.tar.xz
 2da5f6362268ebd47b36fd40b737eed5 15724 sound optional 
easytag_2.4.3-3_source.buildinfo

-BEGIN PGP SIGNATURE-
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=qZt0
-END PGP SIGNATURE-


___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: rtkit package dependencies

[James Cowgill]

Hi,

On 01/03/18 21:46, Adam Lambert wrote:
> Hello,
> 
> On my debian testing system, I see in the recent change between version
> 0.11-5 and 0.11-6 that the dependencies of rtkit package were changed to
> move policykit-1 from 'recommends' to 'depends'.   Prior to this, I had
> (well, still have,  just with the old version of rtkit) a SystemD free
> environment, and I was really hoping to keep it that way (actually, I will
> keep it that way, even if I have to depart the Debian universe after 20
> years of using it, which would be a shame).
> 
> I am requesting (strongly) that the 'depends' be reverted back to
> 'recommends'.

You realise that rtkit is totally useless without policykit (it will
refuse all operations unless it is running)?

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: Proposed multimedia team migration to salsa.d.o

[James Cowgill]

Hi,

On 26/02/18 08:50, Mattia Rizzolo wrote:
> On Mon, Feb 26, 2018 at 12:22:35AM +, Reinhard Tartler wrote:
>> I just got an email as one of the "list owners" of
>> pkg-multimedia-maintainers@lists.alioth.debian.org - the basic question is
>> whether we want to continue using the list (on the new migration host) or
>> whether we abandon it in favor of debian-multime...@lists.debian.org
>>
>> In the past, we used both lists with different emphasis. From the
>> discussion of this thread, I believe the answer the latter, but I wanted to
>> check for other opinions and thoughts on this.
> 
> yes, please confirm them that they should leave it behind.

I think we should ask for the pkg-multimedia-maintainers list to be kept
until we have finished changing the Maintainer field on all the
packages. Otherwise the unmigrated packages will all become instantly RC
buggy when alioth is turned off.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#888332: audacity: FTBFS with FFmpeg 3.5

[James Cowgill]

Control: tags -1 fixed-upstream
Control: forwarded -1 https://github.com/audacity/audacity/pull/249

On Wed, 24 Jan 2018 22:26:50 + jcowg...@debian.org wrote:
> Source: audacity
> Version: 2.2.1-1
> Severity: important
> User: debian-multime...@lists.debian.org
> Usertags: ffmpeg-3.5-transition
> 
> Hi,
> 
> Your package FTBFS with the upcoming version 3.5 of FFmpeg.

This is fixed upstream in audacity 2.2.2.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Accepted milkytracker 1.01.00+dfsg-2 (source) into unstable

[James Cowgill]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Thu, 22 Feb 2018 23:47:13 +
Source: milkytracker
Binary: milkytracker
Architecture: source
Version: 1.01.00+dfsg-2
Distribution: unstable
Urgency: high
Maintainer: Debian Multimedia Team <debian-multime...@lists.debian.org>
Changed-By: James Cowgill <jcowg...@debian.org>
Description:
 milkytracker - music creation tool inspired by Fast Tracker 2
Closes: 890407
Changes:
 milkytracker (1.01.00+dfsg-2) unstable; urgency=high
 .
   [ Ondřej Nový ]
   * d/copyright: Use https protocol in Format field
   * d/control: Set Vcs-* to salsa.debian.org
 .
   [ James Cowgill ]
   * debian/compat:
 - Use debhelper compat 11.
   * debian/control:
 - Set maintainer to debian-multimedia@l.d.o.
 - Set Rules-Requires-Root: no.
 - Bump standards to 4.1.3.
   * debian/patches:
 - Apply upstream patches to fix various buffer overflows.
   Thanks to Johannes Schultz (Closes: #890407)
Checksums-Sha1:
 dd9bb78ddd9bd4538b46e474338e64726fccafb7 2210 milkytracker_1.01.00+dfsg-2.dsc
 a6f1326fd49131fbafb576a0861bdc3edeb23d62 10804 
milkytracker_1.01.00+dfsg-2.debian.tar.xz
 98792c89894562a3aab9874efa513804806462ca 12261 
milkytracker_1.01.00+dfsg-2_source.buildinfo
Checksums-Sha256:
 4184d05a3c50ab99a0f16dceb29e5e125ff94706e27451625b76b29fc82c2301 2210 
milkytracker_1.01.00+dfsg-2.dsc
 6c1186ace963acfa9d78e03c3bb55a5ba2a7d03e45f1e6ad644a30da60f28547 10804 
milkytracker_1.01.00+dfsg-2.debian.tar.xz
 a868874a2c57d83df51f62e1c3075af5fb6cfbcb098438ffec85d71670ea51b2 12261 
milkytracker_1.01.00+dfsg-2_source.buildinfo
Files:
 727990a7ca507937ffe022c830928b0e 2210 sound optional 
milkytracker_1.01.00+dfsg-2.dsc
 1d649ff6700022da9b101adbf0d49455 10804 sound optional 
milkytracker_1.01.00+dfsg-2.debian.tar.xz
 c4be414371267f9abe7383df31c65437 12261 sound optional 
milkytracker_1.01.00+dfsg-2_source.buildinfo

-BEGIN PGP SIGNATURE-

iQJIBAEBCgAyFiEE+Ixt5DaZ6POztUwQx/FnbeotAe8FAlqPVwoUHGpjb3dnaWxs
QGRlYmlhbi5vcmcACgkQx/FnbeotAe9fFQ/9EK7W7M+Q2V6iDqDE/rxu5EqmcB1h
LhSTsnoPW2PjlDVZLYQCiKK+VEV+DwgPOYbjinMgrNR9NevSEkUkqPZGP8PpErvN
O3EYmExN1YFB07PTJ1QYkbeeJWZ4eYjUFyuo9nLJgwPuoMPd0ZwTnQvva0fNoGhw
C2mXgZlhrRQscAr5zw7dg88+UNvs3hRulxGwCGJycPWG9YzVRqlPGp3GJ4SP8ydV
VCnQETzX5asG1NkBS1SsdQiJLgK7x/HszcZcxw/9+G6pLvxmj1FAwAkGP/qUYwld
/6yLax5cDa8J7PN2K+w3S4ovq5mDRTz/ipvID+S03s19NPg+YVj5D5L6EHLrcqsL
BKqlTMKui/DvFssjVp41VEk+kbmutpC1ggeU2/DfLcewYAYlntWLg4k7uszSQMCc
QBuHFfARypBp2PZBNeZdc3TO8Ioold1Mp5Qk3ov1XNw50AWR/7hfWr4IoIY/Jbe5
x8aO9NoiUXRcfDLaxJAJJmaSyKk4SOXNCxQtutU/OKesnQM68aBk5kS12nAC/DUS
WCytPKAhCPPUU0CW6A8NZkBEYfsD1oPiBg9XFaZClZF3G06ZL0ujswfG1OQA7gFr
mLcTyX+ElUt5C13O7DBfWdWGXGK9WfWa67sDEa7iwx5X90C0fFzSKsczgfidSmnM
ZYFhZ4S00/Q67tA=
=1YoZ
-END PGP SIGNATURE-


___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Accepted ffdiaporama 2.1+dfsg-1 (source) into unstable

[James Cowgill]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Thu, 22 Feb 2018 21:40:49 +
Source: ffdiaporama
Binary: ffdiaporama ffdiaporama-data
Architecture: source
Version: 2.1+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Multimedia Maintainers <debian-multime...@lists.debian.org>
Changed-By: James Cowgill <jcowg...@debian.org>
Description:
 ffdiaporama - Movie creator from photos and video clips
 ffdiaporama-data - Data files for ffDiaporama
Closes: 731777 873191 874874 888354
Changes:
 ffdiaporama (2.1+dfsg-1) unstable; urgency=medium
 .
   * Team upload.
 .
   [ James Cowgill ]
   * New upstream release. (Closes: #731777)
   * Remove background resources. These resources are not released under a DFSG
 free license.
 .
   * debian/compat:
 - Use debhelper compat 11.
   * debian/control
 - Set maintainer to debian-multimedia@l.d.o.
 - Build depend on qtbase5-dev instead of qt5-default.
 - Drop dependency on ffmpeg.
 - Drop shlibs:Depends from ffdiaporama-data.
 - Bump standards version to 4.1.3.
 - Set Rules-Requires-Root: no.
 - Mark ffdiaporama-data as Multi-Arch foreign.
   * debian/copyright:
 - Update for 2.1.
   * debian/ffdiaporama-data.links:
 - Add a dummy background to prevent segfaults.
   * debian/patches:
 - Rename and refresh 01_fix-hardening-flags.patch.
 - Update and split up ffmpeg patches.
 - Add patch to fix uninitialized variable valgrind warnings.
 - Add patch to make LibAvLogCallback thread safe.
 - Add patch to enable rsc subproject.
 - Add patch to fix 64-bit architecture detection.
 - Add patch to prevent phoning home for updates.
 - Add patch to fix FTBFS with FFmpeg 4.0. (Closes: #888354)
   * debian/rules:
 - Remove DH_VERBOSE comment from debian/rules.
 - Install upstream changelog.
 - Export QT_SELECT in debian/rules.
   * debian/watch:
 - Update debian/watch to new source location.
 .
   [ Rico Tzschichholz ]
   * Update fix_hardening_flags.patch
   * Add ffmpeg_2.8.patch for ffmpeg 2.8+ support.
   * Install application icon. (LP: #1280820)
   * Use ffmpeg >= 2.8 and QT5. (Closes: #873191, #874874)
 .
   [ Ondřej Nový ]
   * d/copyright: Use https protocol in Format field
   * d/control: Deprecating priority extra as per policy 4.0.1
   * d/control: Set Vcs-* to salsa.debian.org
Checksums-Sha1:
 74aec22f5bc84a6e4f6a80afd37207a0d659597c 2674 ffdiaporama_2.1+dfsg-1.dsc
 6620e077ad91b4b3ec421b911198d458d8c453d4 9806678 
ffdiaporama_2.1+dfsg.orig-rsc.tar.gz
 eb2f3f64e89b7480801fa21b2e6e410977b22695 16063604 
ffdiaporama_2.1+dfsg.orig.tar.gz
 458c0b83587f49c2b8b3bb5874f9810b95b5191f 18328 
ffdiaporama_2.1+dfsg-1.debian.tar.xz
 8d877092fbf5abf5ebb64b93f92df8b0809f5fb5 16682 
ffdiaporama_2.1+dfsg-1_source.buildinfo
Checksums-Sha256:
 48eb85afcd359fe8cf4a72634727b1be7808d42828e75f9dc9aa73db4f2d1818 2674 
ffdiaporama_2.1+dfsg-1.dsc
 e4fda2a2eba8d0b297fcb074fcc3974a31ee447c8b0fd4d7f364513a667666e3 9806678 
ffdiaporama_2.1+dfsg.orig-rsc.tar.gz
 a1f55367a3d915045a5f4ce5db20419c2e8ea26a8cd4d56bef2e3d525e55acaa 16063604 
ffdiaporama_2.1+dfsg.orig.tar.gz
 87262042b8a6bc793ae5e2a07c8de248d51d12133f60598813f7a85bf54da774 18328 
ffdiaporama_2.1+dfsg-1.debian.tar.xz
 98c5f250b064465f57ab41e602a3fe9f3c2cb7c0dcb5ce9039aa4d0c0d5d9e26 16682 
ffdiaporama_2.1+dfsg-1_source.buildinfo
Files:
 792a2e5d93567c101ca2181a9e0fdf48 2674 graphics optional 
ffdiaporama_2.1+dfsg-1.dsc
 a57e0757afeab6aea1bf92d4f6438116 9806678 graphics optional 
ffdiaporama_2.1+dfsg.orig-rsc.tar.gz
 f9f46277153cf49f6947973778516adb 16063604 graphics optional 
ffdiaporama_2.1+dfsg.orig.tar.gz
 24e2c3c3586f1e6672d86e7d7b0985fe 18328 graphics optional 
ffdiaporama_2.1+dfsg-1.debian.tar.xz
 b71d073e23eadef3b1ac0091473da736 16682 graphics optional 
ffdiaporama_2.1+dfsg-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=71iO
-END PGP SIGNATURE-


___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#881342: rtkit: should depend on dbus and polkit

[James Cowgill]

Control: severity -1 serious
Control: retitle -1 rtkit: should depend on dbus and polkit

Hi,

On 05/02/18 15:18, Алексей Шилин wrote:
> reassign 881342 rtkit 0.11-4
> thanks
> 
> After a bit of investigation, I've found that the source of the issue is 
> actually
> the rtkit package.
> 
> rtkit postinst script contains the following lines added by debhelper:
> 
> # Automatically added by dh_systemd_start
> if [ -d /run/systemd/system ]; then
> systemctl --system daemon-reload >/dev/null || true
> deb-systemd-invoke start rtkit-daemon.service >/dev/null || true
> fi
> # End automatically added section
> 
> Here rtkit-daemon service, which is of Type=dbus, is being started at package
> configuration phase.
> 
> systemd.service(5) says [1]:
> 
> The following dependencies are implicitly added:
> 
> * Services with Type=dbus set automatically acquire dependencies of 
> type 
>   Requires= and After= on dbus.socket.
> 
> So starting rtkit-daemon.service activates dbus.socket which in turn leads to
> dbus.service activation when the rtkit daemon tries to connect to the bus.
> The issue here is that rtkit currently only recommends dbus, which doesn't
> guarantee proper ordering i.e. rtkit may be scheduled to be configured 
> *before*
> dbus and thus start the latter before its configuration (which includes the 
> system
> user creation) is complete, leading to the reported issue.

As I said on IRC, I can't think of any scenario where rtkit is useful
without dbus and polkit. Without dbus, rtkit won't start at all.
Withouut polkit, rtkit will start but will refuse to make any processes
realtime and is therefore a bit useless.

In my opinion, this bug is RC because rtkit needs to depend on these
packages to function. If someone can think of a way to use rtkit without
these packages then I may change my mind :)

> This issue should affect only stretch because according to its changelog 
> rtkit is
> no longer started by default since 0.11-5. Whether the version in stable 
> should
> be fixed is up to its maintainer. I've attached a patch which moves dbus from
> Recommends to Depends, fixing the issue.

While the installation issue only affects stretch, starting rtkit
manually without dbus installed is still broken in unstable so it should
also be fixed there.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#890586: rtkit: Homepage URL is dead

[James Cowgill]

Source: rtkit
Version: 0.11-5
Severity: minor

Hi,

The homepage URL listed in the rtkit package is dead:
> $ wget http://0pointer.de/public/
> --2018-02-16 10:32:12--  http://0pointer.de/public/
> Resolving 0pointer.de (0pointer.de)... 85.214.157.71, 
> 2a01:238:43ed:c300:10c3:bcf3:3266:da74
> Connecting to 0pointer.de (0pointer.de)|85.214.157.71|:80... connected.
> HTTP request sent, awaiting response... 403 Forbidden
> 2018-02-16 10:32:12 ERROR 403: Forbidden.

It might be better to set it to the upstream git repo:
http://git.0pointer.net/rtkit.git/

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Accepted ffmpeg 7:3.2.10-1~deb9u1~bpo8+1 (source all) into jessie-backports->backports-policy, jessie-backports

[James Cowgill]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Sat, 10 Feb 2018 00:45:48 +
Source: ffmpeg
Binary: ffmpeg ffmpeg-doc libavcodec57 libavcodec-extra57 libavcodec-extra 
libavcodec-dev libavdevice57 libavdevice-dev libavfilter6 libavfilter-extra6 
libavfilter-extra libavfilter-dev libavformat57 libavformat-dev libavresample3 
libavresample-dev libavutil55 libavutil-dev libpostproc54 libpostproc-dev 
libswresample2 libswresample-dev libswscale4 libswscale-dev libav-tools
Architecture: source all
Version: 7:3.2.10-1~deb9u1~bpo8+1
Distribution: jessie-backports
Urgency: high
Maintainer: Debian Multimedia Maintainers 
<pkg-multimedia-maintainers@lists.alioth.debian.org>
Changed-By: James Cowgill <jcowg...@debian.org>
Description:
 ffmpeg - Tools for transcoding, streaming and playing of multimedia files
 ffmpeg-doc - Documentation of the FFmpeg multimedia framework
 libav-tools - Compatibility links for libav-tools (transitional package)
 libavcodec-dev - FFmpeg library with de/encoders for audio/video codecs - 
developm
 libavcodec-extra - FFmpeg library with extra codecs (metapackage)
 libavcodec-extra57 - FFmpeg library with additional de/encoders for 
audio/video codecs
 libavcodec57 - FFmpeg library with de/encoders for audio/video codecs - runtime
 libavdevice-dev - FFmpeg library for handling input and output devices - 
developmen
 libavdevice57 - FFmpeg library for handling input and output devices - runtime 
fi
 libavfilter-dev - FFmpeg library containing media filters - development files
 libavfilter-extra - FFmpeg library with extra filters (metapackage)
 libavfilter-extra6 - FFmpeg library with extra media filters - runtime files
 libavfilter6 - FFmpeg library containing media filters - runtime files
 libavformat-dev - FFmpeg library with (de)muxers for multimedia containers - 
develo
 libavformat57 - FFmpeg library with (de)muxers for multimedia containers - 
runtim
 libavresample-dev - FFmpeg compatibility library for resampling - development 
files
 libavresample3 - FFmpeg compatibility library for resampling - runtime files
 libavutil-dev - FFmpeg library with functions for simplifying programming - 
devel
 libavutil55 - FFmpeg library with functions for simplifying programming - runti
 libpostproc-dev - FFmpeg library for post processing - development files
 libpostproc54 - FFmpeg library for post processing - runtime files
 libswresample-dev - FFmpeg library for audio resampling, rematrixing etc. - 
developme
 libswresample2 - FFmpeg library for audio resampling, rematrixing etc. - 
runtime f
 libswscale-dev - FFmpeg library for image scaling and various conversions - 
develo
 libswscale4 - FFmpeg library for image scaling and various conversions - runtim
Closes: 886912
Changes:
 ffmpeg (7:3.2.10-1~deb9u1~bpo8+1) jessie-backports; urgency=medium
 .
   * Rebuild for jessie-backports.
   * Merge jessie specific changes:
 - Build-depend on yasm to work around nasm issues in jessie.
 - Disable building with libebur128 because jessie's version breaks the
   build.
 - Build-depend on libchromaprint-dev from jessie-backports.
 - Disable OCR with Tesseract because it is missing the pkg-config file on
   jessie.
 - Omit -fstack-protector-strong from used CFLAGS, FFmpeg already sets
   -fstack-protector-all.
 - Use GCC 4.8 on i386 instead of disabling PIE.
 - Revert switch from libmodplug to libopenmpt because libopenmpt is not
   available in jessie-backports yet.
 .
 ffmpeg (7:3.2.10-1~deb9u1) stretch-security; urgency=medium
 .
   * New upstream release.
 - avcodec/x86/mpegvideodsp: Fix signedness bug in need_emu.
   (CVE-2017-17081)
 - avformat/libssh: check the user provided a password before trying to
   use it. (Closes: #886912)
   * debian/patches:
 - Drop CVE-2017-16840 patch - applied upstream.
 .
 ffmpeg (7:3.2.9-1~deb9u1) stretch-security; urgency=medium
 .
   * New upstream release.
 - avcodec/x86/lossless_videoencdsp: Fix out of array access.
   (CVE-2017-15186)
 - avcodec/ffv1dec: Fix out of array read in slice counting.
   (CVE-2017-15672)
   * debian/patches: avcodec/vc2enc_dwt: Fix out of bounds read.
 (CVE-2017-16840)
 .
 ffmpeg (7:3.2.8-1~deb9u1) stretch-security; urgency=high
 .
   * New upstream release.
 - avformat/rmdec: Fix DoS due to lack of eof check. (CVE-2017-14054)
 - avformat/mvdec: Fix DoS due to lack of eof check. (CVE-2017-14055)
 - avformat/rl2: Fix DoS due to lack of eof check. (CVE-2017-14056)
 - avformat/asfdec: Fix DoS due to lack of eof check. (CVE-2017-14057)
 - avformat/hls: Fix DoS due to infinite loop. (CVE-2017-14058)
 - avformat/cinedec: Fix DoS due to lack of eof check. (CVE-2017-14059)
 - avformat/mxfdec: Fix Sign error. (CVE-2017-14169)
 - avformat/mxfdec: Fix DoS issues. (CVE-2017-14170)
 - avformat/nsvdec: Fix DoS due to lack of eof check. (CVE-2017-14171)
 - avformat/mov: Fix DoS. (CV

Accepted ffmpeg 7:3.2.10-1~deb9u1 (source) into proposed-updates->stable-new, proposed-updates

[James Cowgill]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Fri, 26 Jan 2018 09:45:14 +
Source: ffmpeg
Binary: ffmpeg ffmpeg-doc libavcodec57 libavcodec-extra57 libavcodec-extra 
libavcodec-dev libavdevice57 libavdevice-dev libavfilter6 libavfilter-extra6 
libavfilter-extra libavfilter-dev libavformat57 libavformat-dev libavresample3 
libavresample-dev libavutil55 libavutil-dev libpostproc54 libpostproc-dev 
libswresample2 libswresample-dev libswscale4 libswscale-dev libav-tools
Architecture: source
Version: 7:3.2.10-1~deb9u1
Distribution: stretch-security
Urgency: medium
Maintainer: Debian Multimedia Maintainers 
<pkg-multimedia-maintainers@lists.alioth.debian.org>
Changed-By: James Cowgill <jcowg...@debian.org>
Description:
 ffmpeg - Tools for transcoding, streaming and playing of multimedia files
 ffmpeg-doc - Documentation of the FFmpeg multimedia framework
 libav-tools - Compatibility links for libav-tools (transitional package)
 libavcodec-dev - FFmpeg library with de/encoders for audio/video codecs - 
developm
 libavcodec-extra - FFmpeg library with extra codecs (metapackage)
 libavcodec-extra57 - FFmpeg library with additional de/encoders for 
audio/video codecs
 libavcodec57 - FFmpeg library with de/encoders for audio/video codecs - runtime
 libavdevice-dev - FFmpeg library for handling input and output devices - 
developmen
 libavdevice57 - FFmpeg library for handling input and output devices - runtime 
fi
 libavfilter-dev - FFmpeg library containing media filters - development files
 libavfilter-extra - FFmpeg library with extra filters (metapackage)
 libavfilter-extra6 - FFmpeg library with extra media filters - runtime files
 libavfilter6 - FFmpeg library containing media filters - runtime files
 libavformat-dev - FFmpeg library with (de)muxers for multimedia containers - 
develo
 libavformat57 - FFmpeg library with (de)muxers for multimedia containers - 
runtim
 libavresample-dev - FFmpeg compatibility library for resampling - development 
files
 libavresample3 - FFmpeg compatibility library for resampling - runtime files
 libavutil-dev - FFmpeg library with functions for simplifying programming - 
devel
 libavutil55 - FFmpeg library with functions for simplifying programming - runti
 libpostproc-dev - FFmpeg library for post processing - development files
 libpostproc54 - FFmpeg library for post processing - runtime files
 libswresample-dev - FFmpeg library for audio resampling, rematrixing etc. - 
developme
 libswresample2 - FFmpeg library for audio resampling, rematrixing etc. - 
runtime f
 libswscale-dev - FFmpeg library for image scaling and various conversions - 
develo
 libswscale4 - FFmpeg library for image scaling and various conversions - runtim
Closes: 886912
Changes:
 ffmpeg (7:3.2.10-1~deb9u1) stretch-security; urgency=medium
 .
   * New upstream release.
 - avcodec/x86/mpegvideodsp: Fix signedness bug in need_emu.
   (CVE-2017-17081)
 - avformat/libssh: check the user provided a password before trying to
   use it. (Closes: #886912)
   * debian/patches:
 - Drop CVE-2017-16840 patch - applied upstream.
Checksums-Sha1:
 a4fa87191b3f2c2904e9f3d27fd5422ba0743873 5187 ffmpeg_3.2.10-1~deb9u1.dsc
 e90b423252a0e338e725f0781c6d31a16c97531f 8036940 ffmpeg_3.2.10.orig.tar.xz
 449ebbbc1eaafcb4c013f7c00a1ad67d4e0f8254 473 ffmpeg_3.2.10.orig.tar.xz.asc
 3c66390fc12639119691b387819a7ef8f135a25b 39188 
ffmpeg_3.2.10-1~deb9u1.debian.tar.xz
 3b70ea2d328c5afc8c43015a693dff4d4be28a27 8911 
ffmpeg_3.2.10-1~deb9u1_source.buildinfo
Checksums-Sha256:
 47fdf3ba8d440cbdfee18fb19cb1c68bf0956ac2a177b8062f2e12b5d28fb336 5187 
ffmpeg_3.2.10-1~deb9u1.dsc
 3c1626220c7b68ff6be7312559f77f3c65ff6809daf645d4470ac0189926bdbc 8036940 
ffmpeg_3.2.10.orig.tar.xz
 215defff760480ea1cb8ac5b7b02a121610d40c4cff07a040ec40f6ac5551694 473 
ffmpeg_3.2.10.orig.tar.xz.asc
 a907b22f375340c20017b08dd6656dcb3ec1341d937933b8bdec8a3e1786401f 39188 
ffmpeg_3.2.10-1~deb9u1.debian.tar.xz
 ddc83ce0c68d032460aad536bb05c5cf179c908e9a1bbd325cb978c8ff82b756 8911 
ffmpeg_3.2.10-1~deb9u1_source.buildinfo
Files:
 17e275331c27cfade816ea9a7af21422 5187 video optional ffmpeg_3.2.10-1~deb9u1.dsc
 ec747925e19aa77adbec17e98e24a72e 8036940 video optional 
ffmpeg_3.2.10.orig.tar.xz
 0985ac62e9bc13e371c4ccbfc4979a74 473 video optional 
ffmpeg_3.2.10.orig.tar.xz.asc
 53a742437cb1106c871f728d0cc0b415 39188 video optional 
ffmpeg_3.2.10-1~deb9u1.debian.tar.xz
 099b558c92cfdc1c498111a545a8cb5d 8911 video optional 
ffmpeg_3.2.10-1~deb9u1_source.buildinfo

-BEGIN PGP SIGNATURE-

iQJIBAEBCgAyFiEE+Ixt5DaZ6POztUwQx/FnbeotAe8FAlpsRsQUHGpjb3dnaWxs
QGRlYmlhbi5vcmcACgkQx/FnbeotAe9CIg//bTQ/h0HFY3/q03JIXd7ibyObrqz6
iRLI0p17yuGkUZ2BwLlHnqnBGAlhlloD5ujagfS06EseGtYTG/LPABmkSknx4W2m
x1O/0cxiU2MejN8zPQ7Ln3rOM0pi+IKPjU7xcQZEiMJf0TvO+h7AZfoDO37fMF+p
wSnYaBqVojmyH4/JPewbaf2MrSx1Em2fmjKZI/KDa5KrfTexn/CxH6kQZ20c7Qf5
cpINytOXmsCJUqB5iOQTjHjyaRY89C+e5/Ygr8ipZoSzi7znPS0m

Bug#890407: milkytracker: various buffer overflows possibly leading to remote code execution

[James Cowgill]

Package: milkytracker
Severity: grave
Tags: security upstream

Forwarding this bug sent to me by Johannes Schultz. It sounds bad. I
have not investigated it (and I don't know if it affects the pre-1.0
version in stable or not)

 Forwarded Message 
Subject: MilkyTracker - critical patches
Date: Wed, 14 Feb 2018 13:39:45 +0100
From: Johannes Schultz 
To: jcowg...@debian.org

Hi James,
I have recently fixed a bunch of very obvious and at the same time very
dangerous bugs in various module loaders in MilkyTracker, most of them
leading to out-of-bond writes both on the heap and stack. I think most
of them would be suitable for remote code execution.
You can find them here:
https://github.com/milkytracker/MilkyTracker/commit/6f7922616f31e5ceddd6f346cfc7f5d61a2f7683
You will also see the individual commits in the commit timeline around
October 2017.
I don't know if there is any immediate release planned by Deltafire, so
I recommend you to update the Debian packages based on those patches ASAP.
The individual diffs can also be found here:
https://sagagames.de/stuff/mt-patches.zip
They should apply to all MilkyTracker versions supported by the various
Debian releases, not just 1.01.00.

Best regards,
Johannes / OpenMPT Dev (and occasionall MilkyTracker bugfixer ;)



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Accepted ffmpeg 7:3.4.2-1 (source) into unstable

[James Cowgill]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 12 Feb 2018 20:08:34 +
Source: ffmpeg
Binary: ffmpeg ffmpeg-doc libavcodec57 libavcodec-extra57 libavcodec-extra 
libavcodec-dev libavdevice57 libavdevice-dev libavfilter6 libavfilter-extra6 
libavfilter-extra libavfilter-dev libavformat57 libavformat-dev libavresample3 
libavresample-dev libavutil55 libavutil-dev libpostproc54 libpostproc-dev 
libswresample2 libswresample-dev libswscale4 libswscale-dev libav-tools
Architecture: source
Version: 7:3.4.2-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Multimedia Maintainers 
<pkg-multimedia-maintainers@lists.alioth.debian.org>
Changed-By: James Cowgill <jcowg...@debian.org>
Description:
 ffmpeg - Tools for transcoding, streaming and playing of multimedia files
 ffmpeg-doc - Documentation of the FFmpeg multimedia framework
 libav-tools - Compatibility links for libav-tools (transitional package)
 libavcodec-dev - FFmpeg library with de/encoders for audio/video codecs - 
developm
 libavcodec-extra - FFmpeg library with extra codecs (metapackage)
 libavcodec-extra57 - FFmpeg library with additional de/encoders for 
audio/video codecs
 libavcodec57 - FFmpeg library with de/encoders for audio/video codecs - runtime
 libavdevice-dev - FFmpeg library for handling input and output devices - 
developmen
 libavdevice57 - FFmpeg library for handling input and output devices - runtime 
fi
 libavfilter-dev - FFmpeg library containing media filters - development files
 libavfilter-extra - FFmpeg library with extra filters (metapackage)
 libavfilter-extra6 - FFmpeg library with extra media filters - runtime files
 libavfilter6 - FFmpeg library containing media filters - runtime files
 libavformat-dev - FFmpeg library with (de)muxers for multimedia containers - 
develo
 libavformat57 - FFmpeg library with (de)muxers for multimedia containers - 
runtim
 libavresample-dev - FFmpeg compatibility library for resampling - development 
files
 libavresample3 - FFmpeg compatibility library for resampling - runtime files
 libavutil-dev - FFmpeg library with functions for simplifying programming - 
devel
 libavutil55 - FFmpeg library with functions for simplifying programming - runti
 libpostproc-dev - FFmpeg library for post processing - development files
 libpostproc54 - FFmpeg library for post processing - runtime files
 libswresample-dev - FFmpeg library for audio resampling, rematrixing etc. - 
developme
 libswresample2 - FFmpeg library for audio resampling, rematrixing etc. - 
runtime f
 libswscale-dev - FFmpeg library for image scaling and various conversions - 
develo
 libswscale4 - FFmpeg library for image scaling and various conversions - runtim
Changes:
 ffmpeg (7:3.4.2-1) unstable; urgency=medium
 .
   * New upstream release.
 - Fixes CVE-2018-6392, CVE-2018-6621.
Checksums-Sha1:
 42a269d6b2be5fc18b255b6e9f4c0978451c8c27 5222 ffmpeg_3.4.2-1.dsc
 baef74d93683c6b2029ac36b900732795216e066 8478376 ffmpeg_3.4.2.orig.tar.xz
 ebc60368a3073a4ed4c4fd784727c6953eedba05 473 ffmpeg_3.4.2.orig.tar.xz.asc
 8c8c395bee720cc8a420d41a46298e172a2b695d 41748 ffmpeg_3.4.2-1.debian.tar.xz
 8e0754a19644acff64ef4177c0b7eb642cb02756 17837 ffmpeg_3.4.2-1_source.buildinfo
Checksums-Sha256:
 8adaa4e58e577d25ca808ccd1aa8ac0cb8bea97d7b7c93a47e671651118c6c0e 5222 
ffmpeg_3.4.2-1.dsc
 2b92e9578ef8b3e49eeab229e69305f5f4cbc1fdaa22e927fc7fca18acccd740 8478376 
ffmpeg_3.4.2.orig.tar.xz
 a338afec7933d716210019193f7e8927a4c2e826c874e6ff509057ef59922171 473 
ffmpeg_3.4.2.orig.tar.xz.asc
 7837c54a6dba454872630b22ab6d2b57df5ef7f05e67eec97a6efbc9d85f2abb 41748 
ffmpeg_3.4.2-1.debian.tar.xz
 c78badcf2ec6861f1dc90d9af94fe53edc28b2fc1c3666440e30dc8623f8468d 17837 
ffmpeg_3.4.2-1_source.buildinfo
Files:
 7c71348e4fd0b5d46965d01389c4b929 5222 video optional ffmpeg_3.4.2-1.dsc
 cbf4ead227fcedddf54c86013705a988 8478376 video optional 
ffmpeg_3.4.2.orig.tar.xz
 d54d6817e3ac9809a20b052cab9e9d38 473 video optional 
ffmpeg_3.4.2.orig.tar.xz.asc
 67c96f0e72896a05f1549e51b61baf67 41748 video optional 
ffmpeg_3.4.2-1.debian.tar.xz
 c270325ca0fc0e1197b0e3fadfe30dcf 17837 video optional 
ffmpeg_3.4.2-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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Bug#888348: lives: FTBFS with FFmpeg 3.5

[James Cowgill]

Control: tags -1 fixed-upstream

Hi,

On 12/02/18 00:51, salsaman wrote:
> Sorry,  my bad: I forgot to update the constants in the .h files. I was
> looking in the .c files by mistake.
> 
> Also, I think it should be AV_CODEC_ID_* in the headers (although
> AV_CODEC_* seemed to work too).

Thanks. All the errors are fixed now.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#888348: lives: FTBFS with FFmpeg 3.5

[James Cowgill]

On 11/02/18 23:49, salsaman wrote:
> Please check that you are compiling with the current versions of those
> files. There are no instances of CODEC_* any more in those files.
> 

I see them here, am I looking at the wrong place?
https://sourceforge.net/p/lives/code/HEAD/tree/trunk/lives-plugins/plugins/decoders/mkv_decoder.h#l883

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#888348: lives: FTBFS with FFmpeg 3.5

[James Cowgill]

Hi,

On 04/02/18 18:10, salsaman wrote:
> I believe all the issues noted should be fixed now. You will need to
> replace the follwoing files:
> configure.ac
> libweed/weed-compat.h
> libweed/weed-compat.pc
> plugins/decoders/*
> 
> (the weed-compat changes are unrelated, but you will need to update them to
> compile the current decoder plugins).

Sorry for the delay in replying. I tried compiling trunk again but there
are still some errors. Thankfully these are just the CODEC_ to AV_CODEC_
constant renames. Running the following fixes these for me:

sed -i 's/CODEC_/AV_CODEC_/g' lives-plugins/plugins/decoders/mkv_decoder.h
sed -i 's/CODEC_/AV_CODEC_/g' lives-plugins/plugins/decoders/mpegts_decoder.h

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#889915: libfaad2 in Wheezy contains patches for some security bugs. They were not backported to Jessie.

[James Cowgill]

On 09/02/18 09:31, Fabian Greffrath wrote:
> Hi Salvatore,
> 
> Salvatore Bonaccorso wrote:
>> The current issues which were fixed in DLA-1077-1 are all no-dsa, so
>> thei did not warrant a DSA via security.d.o. Can you fix those issues
>> via upcoming point releases?
> 
> yes, probably. But I guess that's not Mikulas' point:
> 
> Both wheezy and jessie had package version 2.7-8. While wheezy got a fixed
> package with 2.7-8+deb7u1, jessie didn't. The fix should be as straight as
> uploading the same (source) package to jessie that got uploaded to wheezy.

... with changelog and version number adjustments (it can never be
exactly the same).

Also, the security tracker claims this affects stretch as well which
would need a separate update.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#889528: mpv: Reading bluray using mpv fails

[James Cowgill]

Control: tags -1 - confirmed
Control: reassign -1 libbluray-dev 1:1.0.2-1
Control: retitle -1 libbluray-dev: missing dependencies on libxml, freetype, 
and fontconfig
Control: severity -1 serious
Control: affects -1 src:mpv

Hi,

On 04/02/18 20:29, James Cowgill wrote:
> On 04/02/18 19:32, mahashakti89 wrote:
>> On Sun, Feb 04, 2018 at 04:53:24PM +0100, James Cowgill wrote:
>>> On 04/02/18 16:46, James Cowgill wrote:
>>>> Hi,
>>>>
>>>> On 04/02/18 09:38, mahashakti89 wrote:
>>>>> Package: mpv
>>>>> Version: 0.27.0-3
>>>>> Severity: important
>>>>>
>>>>> Dear Maintainer,
>>>>>
>>>>> I am using smplayer to read blurays - choosen multimedia engine is
>>>>> mpv - but it
>>>>> fails with following message :
>>>>>
>>>>> Playing: br:media/toto/cdrom0
>>>>> No protocol handler found to open URL br:media/toto/cdrom0
>>>>> The protocol is either unsupported, or was disabled at compile-time.
>>>>
>>>> mpv uses a slightly different "bd" protocol instead of "br". Try this:
>>>>  mpv br:// --bluray-device=/media/toto/cdrom0
>>>
>>> Err this of course should be:
>>> mpv bd:// --bluray-device=/media/toto/cdrom0
>>
>> Hi,
>> mpv bd:// --bluray-device=/media/cdrom0
>> Error parsing option bluray-device (option not found)
>> Setting commandline option --bluray-device=/media/cdrom0 failedi.
>>
>> Extract of the mount command
>>
>> gvfsd-fuse on /run/user/1000/gvfs type fuse.gvfsd-fuse
>> (rw,nosuid,nodev,relatime,user_id=1000,group_id=1000)
>> fusectl on /sys/fs/fuse/connections type fusectl (rw,relatime)
>> /dev/sdg1 on /media/toto/PATRIOT2 type fuseblk
>> (rw,nosuid,nodev,relatime,user_id=0,group_id=0,default_permissions,allow_other,blksize=4096,uhelper=udisks2)
>>
>> /dev/sr0 on /media/cdrom0 type udf
>> (ro,nosuid,nodev,noexec,relatime,utf8,user)
>>
>> Till then mpv worked fairly well with playing blurays.
> 
> After looking a bit more closely, mpv isn't pulling in libbluray at all.
> The build log contains:> Checking for Bluray support
>   : no ('libbluray >= 0.3.0' not found)
> 
> I'll try and see why it's not detecting the library.

This is due to pkg-config failing to run on libbluray:
> $ pkg-config --cflags libbluray
> Package libxml-2.0 was not found in the pkg-config search path.
> Perhaps you should add the directory containing `libxml-2.0.pc'
> to the PKG_CONFIG_PATH environment variable
> Package 'libxml-2.0', required by 'libbluray', not found

Probably libbluray-dev needs to build-depend on libfreetype6-dev,
libfontconfig-dev and libxml2-dev to fix this.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#889528: mpv: Reading bluray using mpv fails

[James Cowgill]

Control: tags -1 confirmed

Hi,

On 04/02/18 19:32, mahashakti89 wrote:
> On Sun, Feb 04, 2018 at 04:53:24PM +0100, James Cowgill wrote:
>> On 04/02/18 16:46, James Cowgill wrote:
>>> Hi,
>>>
>>> On 04/02/18 09:38, mahashakti89 wrote:
>>>> Package: mpv
>>>> Version: 0.27.0-3
>>>> Severity: important
>>>>
>>>> Dear Maintainer,
>>>>
>>>> I am using smplayer to read blurays - choosen multimedia engine is
>>>> mpv - but it
>>>> fails with following message :
>>>>
>>>> Playing: br:media/toto/cdrom0
>>>> No protocol handler found to open URL br:media/toto/cdrom0
>>>> The protocol is either unsupported, or was disabled at compile-time.
>>>
>>> mpv uses a slightly different "bd" protocol instead of "br". Try this:
>>>  mpv br:// --bluray-device=/media/toto/cdrom0
>>
>> Err this of course should be:
>> mpv bd:// --bluray-device=/media/toto/cdrom0
> 
> Hi,
> mpv bd:// --bluray-device=/media/cdrom0
> Error parsing option bluray-device (option not found)
> Setting commandline option --bluray-device=/media/cdrom0 failedi.
> 
> Extract of the mount command
> 
> gvfsd-fuse on /run/user/1000/gvfs type fuse.gvfsd-fuse
> (rw,nosuid,nodev,relatime,user_id=1000,group_id=1000)
> fusectl on /sys/fs/fuse/connections type fusectl (rw,relatime)
> /dev/sdg1 on /media/toto/PATRIOT2 type fuseblk
> (rw,nosuid,nodev,relatime,user_id=0,group_id=0,default_permissions,allow_other,blksize=4096,uhelper=udisks2)
> 
> /dev/sr0 on /media/cdrom0 type udf
> (ro,nosuid,nodev,noexec,relatime,utf8,user)
> 
> Till then mpv worked fairly well with playing blurays.

After looking a bit more closely, mpv isn't pulling in libbluray at all.
The build log contains:> Checking for Bluray support
  : no ('libbluray >= 0.3.0' not found)

I'll try and see why it's not detecting the library.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#889528: mpv: Reading bluray using mpv fails

[James Cowgill]

On 04/02/18 16:46, James Cowgill wrote:
> Hi,
> 
> On 04/02/18 09:38, mahashakti89 wrote:
>> Package: mpv
>> Version: 0.27.0-3
>> Severity: important
>>
>> Dear Maintainer,
>>
>> I am using smplayer to read blurays - choosen multimedia engine is mpv - but 
>> it
>> fails with following message :
>>
>> Playing: br:media/toto/cdrom0
>> No protocol handler found to open URL br:media/toto/cdrom0
>> The protocol is either unsupported, or was disabled at compile-time.
> 
> mpv uses a slightly different "bd" protocol instead of "br". Try this:
>  mpv br:// --bluray-device=/media/toto/cdrom0

Err this of course should be:
 mpv bd:// --bluray-device=/media/toto/cdrom0

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#889528: mpv: Reading bluray using mpv fails

[James Cowgill]

Hi,

On 04/02/18 09:38, mahashakti89 wrote:
> Package: mpv
> Version: 0.27.0-3
> Severity: important
> 
> Dear Maintainer,
> 
> I am using smplayer to read blurays - choosen multimedia engine is mpv - but 
> it
> fails with following message :
> 
> Playing: br:media/toto/cdrom0
> No protocol handler found to open URL br:media/toto/cdrom0
> The protocol is either unsupported, or was disabled at compile-time.

mpv uses a slightly different "bd" protocol instead of "br". Try this:
 mpv br:// --bluray-device=/media/toto/cdrom0

See the mpv manual page.

Unfortunately I do not have a bluray reader do I can't test this.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#889545: libopenmpt0: possible out-of-bounds memory read with malformed STP files

[James Cowgill]

Control: retitle -1 libopenmpt0: CVE-2018-6611

On 04/02/18 12:26, James Cowgill wrote:
> Package: libopenmpt0
> Version: 0.3.1-1
> Severity: grave
> Tags: security
> 
> This security update was published for libopenmpt:
> https://lib.openmpt.org/libopenmpt/2018/02/03/security-update-0.3.6/
> 
>> The OpenMPT/libopenmpt project released the latest stable libopenmpt version:
>>
>> libopenmpt 0.3.6 (2018-02-03)
>> [Sec] Possible out-of-bounds memory read with malformed STP files. (r9576)
> 
> The bug only affects 0.3.x so it will not require any updates to stable.
> 
> I have requested a CVE for this bug.

... and it was allocated CVE-2018-6611.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#889545: libopenmpt0: possible out-of-bounds memory read with malformed STP files

[James Cowgill]

Package: libopenmpt0
Version: 0.3.1-1
Severity: grave
Tags: security

This security update was published for libopenmpt:
https://lib.openmpt.org/libopenmpt/2018/02/03/security-update-0.3.6/

> The OpenMPT/libopenmpt project released the latest stable libopenmpt version:
> 
> libopenmpt 0.3.6 (2018-02-03)
> [Sec] Possible out-of-bounds memory read with malformed STP files. (r9576)

The bug only affects 0.3.x so it will not require any updates to stable.

I have requested a CVE for this bug.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Accepted mpv 0.27.0-3 (source) into unstable

[James Cowgill]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Sat, 03 Feb 2018 14:59:20 +0100
Source: mpv
Binary: mpv libmpv1 libmpv-dev
Architecture: source
Version: 0.27.0-3
Distribution: unstable
Urgency: high
Maintainer: Debian Multimedia Maintainers 
<pkg-multimedia-maintainers@lists.alioth.debian.org>
Changed-By: James Cowgill <jcowg...@debian.org>
Description:
 libmpv-dev - video player based on MPlayer/mplayer2 (client library dev files)
 libmpv1- video player based on MPlayer/mplayer2 (client library)
 mpv- video player based on MPlayer/mplayer2
Closes: 888654
Changes:
 mpv (0.27.0-3) unstable; urgency=high
 .
   * debian/patches/09_ytdl-hook-whitelist-protocols.patch:
 - Add patch which whitelists protocols received from youtube-dl.
   Fixes CVE-2018-6360. (Closes: #888654)
Checksums-Sha1:
 ade3cfeb669a5fa9b62a52bd58d43f5b2a791219 2862 mpv_0.27.0-3.dsc
 dacc52a468909f6369d7a3e2b0346e50db4c82f3 106516 mpv_0.27.0-3.debian.tar.xz
 a5e9df2cc13b162f8f365d6b9e332aef2d27b2a1 8273 mpv_0.27.0-3_source.buildinfo
Checksums-Sha256:
 ae67a4dceb9f9c4e33cd918a5b253e76583ca88c872f1fafd1ef78a5345dd36e 2862 
mpv_0.27.0-3.dsc
 d37995a0ca22027eca5559dbcfc37592335eb70360e68f0307d840af4ef898fe 106516 
mpv_0.27.0-3.debian.tar.xz
 a8b093454a689860b59f6919d1b3f56488ab323d33e13a81f26f3d08d5ed7470 8273 
mpv_0.27.0-3_source.buildinfo
Files:
 1826816c4d4874115ec5a38dcdae3c16 2862 video optional mpv_0.27.0-3.dsc
 357795b9b31f2d36a022452550a97fe3 106516 video optional 
mpv_0.27.0-3.debian.tar.xz
 1138f4c38afc17996b41571fe33b0318 8273 video optional 
mpv_0.27.0-3_source.buildinfo

-BEGIN PGP SIGNATURE-

iQJIBAEBCgAyFiEE+Ixt5DaZ6POztUwQx/FnbeotAe8FAlp1wKYUHGpjb3dnaWxs
QGRlYmlhbi5vcmcACgkQx/FnbeotAe/60hAAnmAerysoI2v/jcW0spJZnq53lZxq
GguuOV1lGxh4Q8q+5lwk4dp989a9nZFW0+F3AI3AdosocHXGhdx9fIfk4Ih6RLed
0D6FTMpdHAZadMgcapWKHZpKUlJ2XkW/2P0EL1oB0YCSQja9ET8SGEGPXQo4/bch
dSTeas1wTp/6cw4mPgRnNM4sgqScwb958oe6InV7ThO2RNP9a1dVJewuqv2YvIrq
T0i1TtsmZn8NcHxUaSh2AhBFjRsr5V8/1hQC7Z6CxOuSySYE6THfpLeq3Gsq5XkH
Gu4RHHD9WRmGTaYSUbCpJDmJemKCNXp/+g5PGMIr4bf46rQh1QVGWp0dJUj5UvLY
PcW3Wh2DYbj/8RMovxvDCZ+opRZt3tXFrt3RRnqZVmM9rwYq9gtoxNQNNwL6sFrO
ckLqLXXE5aRuV7HlpQlxpsvG6pIbKavPgLXhssYL39JAfwwo/TgZ/LGJTmS1Fm21
ibgfxP7CpFRMSB6wYb55+ZtDrV8lFPvfD3O75LFnYFoUZPK+71n4vaRtV5C3P7FN
yzGSv1/QuxxbvsIWvc/RBomltRmf49sSDnbAd8+q1UjlnjVTVstay+xBNfULTlVi
uqwQ89780+lDsAyaTnBQF4UZZYuCYroJVBoAwPUC+A8N9rdsNJkHnDeGkOg06eMU
OZQ0MkrwnLCMKY0=
=yNpu
-END PGP SIGNATURE-


___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#888654: mpv: CVE-2018-6360

[James Cowgill]

Hi,

On 28/01/18 14:17, Salvatore Bonaccorso wrote:
> Source: mpv
> Version: 0.23.0-1
> Severity: grave
> Tags: security upstream
> Forwarded: https://github.com/mpv-player/mpv/issues/5456
> 
> Hi,
> 
> the following vulnerability was published for mpv.
> 
> CVE-2018-6360[0]:
> | mpv through 0.28.0 allows remote attackers to execute arbitrary code
> | via a crafted web site, because it reads HTML documents containing
> | VIDEO elements, and accepts arbitrary URLs in a src attribute without a
> | protocol whitelist in player/lua/ytdl_hook.lua. For example, an
> | av://lavfi:ladspa=file= URL signifies that the product should call
> | dlopen on a shared object file located at an arbitrary local pathname.
> | The issue exists because the product does not consider that youtube-dl
> | can provide a potentially unsafe URL.
> 
> If you fix the vulnerability please also make sure to include the
> CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

I have attempted to backport the upstream patch to fix this and
committed it to the mpv repository on salsa. The diff is here:

https://salsa.debian.org/multimedia-team/mpv/compare/debian%2F0.23.0-2...debian%2Fstretch

Unlike the backport for 0.27 which was fairly straightforward, the
backport for 0.23 required significant changes and I ended up rewriting
half of it. This means I am less confident about catching all the cases
to fix this bug. It would be good if anyone could check it over.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: salsa commits ML

[James Cowgill]

Hi,

On 31/01/18 11:02, Mattia Rizzolo wrote:
> On Wed, Jan 31, 2018 at 09:32:09AM +0000, James Cowgill wrote:
>> pkg-multimedia-commits is dead now that things have been migrated to salsa.
>>
>> For salsa you can:
>> - Join #debian-multimedia - all commits are sent there.
>> - Subscribe to a package on tracker.d.o and enable the "vcs" keyword.
>   - join the multimedia team on tracker: 
> https://tracker.debian.org/teams/debian-multimedia/
> 
> Then you won't need subscribe to single packages.

I remember trying this before, but tracker won't let me join the team
(or any teams at all it seems).

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: Proposed multimedia team migration to salsa.d.o

[James Cowgill]

Hi,

On 28/01/18 16:56, Mattia Rizzolo wrote:
> On Sun, Jan 28, 2018 at 04:37:36PM +0000, James Cowgill wrote:
>> Now that salsa is stable, I am going to start migrating things over. I
> 
> Thank you for doing the work!
> 
>> One other change from the proposed plan is the addition of the
>> "tagpending" webhook described here:
>> https://wiki.debian.org/Salsa/Doc#Dealing_with_Debian_BTS_from_commit_messages
> 
> Yes please.
> Thank you for adding that.  (btw, you didn't push that change into the
> git repo of your script)

Should be pushed now (along with some other stuff).

>> I am also taking this opportunity to trim the repositories on alioth.
>> The repositories below will be omitted from the initial import (but will
>> still all be made read only).
> 
> Can you please *move* the repositories that have been moved, instead of
> just making them read-only?  moving them to a MOVED_TO_SALSA directory
> should make the situation pretty clear.  I'm assuming we are going to
> remove them at some point (if nothing because I'd like to help avoid
> forcing the alioth admins to keep a huge snapshot once the host goes
> down).
> Of course, I'm assuming you are also going to open a MR to add http
> redirects from anonscm to salsa.

That seems reasonable. I'll move the repositories after the redirector
MR is merged.

>> # Incorrect Package Naming
>> My script requires repo name = source package name at the moment so
>> these will be omitted. The pd-* repositories are special because they
>> need to be put in a separate group. Should they intentionally not have
>> the correct name - ie should "pd-lua" become "pd/lua" or "pd/pd-lua"?
> 
> Please, let's keep repo name = source package name.  So the package
> 'pd-lua' should have a repo 'pd-lua', wherever group it is in.

I think so, but I'll wait to see what umlaeute says because he pretty
much owns all the pd-* packages.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: Proposed multimedia team migration to salsa.d.o

[James Cowgill]

Hi,

On 01/01/18 17:43, James Cowgill wrote:
> Migration
> ===
> Migration of the maintainer email address can start immediately. New
> packages can also immediately start hosting their VCS on salsa.debian.org.
> 
> For existing packages, I propose:
> - Wait until salsa.debian.org is declared stable (expected at the end of
> January)
> - Announce to the lists before migration starts
> - Set all repositories on alioth read-only (eg using a git pre-receive hook)
> - Migrate everything to salsa using Christoph Berg's import script:
> http://www.df7cb.de/blog/2017/Salsa_batch_import.html

Now that salsa is stable, I am going to start migrating things over. I
wrote a separate script which also handles various integrations which I
am going to use instead of the one above:
https://salsa.debian.org/jcowgill/multimedia-cli

One other change from the proposed plan is the addition of the
"tagpending" webhook described here:
https://wiki.debian.org/Salsa/Doc#Dealing_with_Debian_BTS_from_commit_messages

I am also taking this opportunity to trim the repositories on alioth.
The repositories below will be omitted from the initial import (but will
still all be made read only). If I have screwed up and omitted a
repository incorrectly, I can import them on a case-by-case basis or you
can import them yourself.

I have attached the final list of repositories I will attempt to import
now (should be everything except the repos below).

# Incorrect Package Naming
My script requires repo name = source package name at the moment so
these will be omitted. The pd-* repositories are special because they
need to be put in a separate group. Should they intentionally not have
the correct name - ie should "pd-lua" become "pd/lua" or "pd/pd-lua"?

pd-*

ffado
invada-ladspa
invada-lv2
jconv
libdvdcss-pkg
libmusicbrainz
lv2-tools
multimedia-blends
pd-iem_ambi
qutecsound
synfig-etl
synfig-synfig
synfig-synfigstudio

# Dead repositories
These repositories are not referenced in the Vcs-* fields of any
package. I have tried to go through the list and remove some which
simply omitted the Vcs- fields.

2mandvd
adplug
aften
avidemux
avldrums.lv2
baka-mplayer
bdsup2sub++
beast
bombono-dvd
cadence
cinelerra-cv
clam-chordata
clam-networkeditor
collada2gltf
creox
deadbeef
debimedia-archive-keyring
divxenc
dmedia
dvbcut
dvd95
dvdrip
dvdstyler
dvdwizard
earcandy
ezstream
ffmpegthumbnailer
ffprobe
flam3
flumotion
freecycle
fst
goattracker
h264enc
jack-rack
jcgui
jokosher
kodi-addon-webinterface-chorus2
kodiplatform
lash
libav-extra
libcmrt
libdvb
libdvbpsi5
libdvdcss
libdvdcss-installer
libfreebob
libmkv
libtunepimp
libvisual
libvisual-plugins
linuxband
linuxsampler
lv2-extensions-good
lv2fil
madfuload
morituri
ntk
ocp
oomidi
openmovieeditor
openni-sensor-avin2-sensorkinect
osceleton
pd-extended
pd-jmmmp
permafrost
phat
plotmm
portaudio
portmidi
redlandmm
sayonara
scenic
specimen
toonloop
vgmstream
vmpk
whysynth
xvidenc
yafaray
yafaray-exporter
zita-dpl1
zynjacku

# Orphaned packages no longer maintained by multimedia team
aj-snapshot
gscanbus
ino-headers
libdv
m2vrequantiser
meterec
mididings
naspro-core
pugl
silan
volti

# Packages not maintained by multimedia team
libcmrt
# - Timo Aaltonen <tjaal...@debian.org>
libmediainfo
# - Chow Loong Jin <hyper...@debian.org>
libzen
# - Chow Loong Jin <hyper...@debian.org>
madfuload
# - Free Ekanayaka <fr...@debian.org>
mediaconch
# - Chow Loong Jin <hyper...@debian.org>
mediainfo
# - Chow Loong Jin <hyper...@debian.org>

# Packages already existing on salsa
collada2gltf
ffmpeg
gsequencer
libplacebo
rem
smplayer
vlc

James
a2jmidid
a52dec
abgate
ableton-link
advene
aeolus
aliki
alsaequal
amb-plugins
ambdec
ams
amsynth
ardour
ardour3
aribb24
atomicparsley
audacious
audacious-plugins
audacity
audiofile
autotalent
avw.lv2
azr3-jack
bitmeter
bitstream
blender
blepvco
bristol
brp-pacu
brutefir
bs1770gain
calf
camorama
cantata
caps
cecilia
chromaprint
clalsadrv
clam
clthreads
clxclient
cmt
cmus
composite
create-resources
crtmpserver
crystalhd
csound
csound-manual
csoundqt
das-watchdog
dataquay
deken
devede
dgedit
din
dino
dirac
directfb
drc
drumgizmo
drumkv1
dssi
dvblast
dvd-slideshow
easytag
ebumeter
ecasound
eq10q
faac
faad2
faust
faustworks
fdk-aac
ffdiaporama
ffmpeg2theora
ffms2
fil-plugins
flac
flactag
flake
flowblade
fluidsynth
fluidsynth-dssi
fomp
foo-yc20
forked-daapd
freetuxtv
frei0r
gavl
gecko-mediaplayer
gerbera
ghostess
giada
gigedit
gjacktransport
glyr
gmerlin
gmerlin-avdecoder
gmerlin-encoders
gmidimonitor
gmtk
gmusicbrowser
gnome-mplayer
gnome-mpv
gpac
groovebasin
gtklick
guayadeque
guitarix
gwc
gxtuner
handbrake
harvid
hexter
horgand
hydrogen
hydrogen-drumkits
iannix
icecast2
ices2
idjc
iem-plugin-suite
inkscape
intel-vaapi-driver
intel-vaapi-driver-shaders
ir.lv2
isrcsubmit
jaaa
jack-audio-connection-kit
jack-capture
jack-delay
jack-keyboard
jack-midi-clock
jack-mixer
jack-stdio
jack-tool

Bug#888657: ladish: should this package be removed?

[James Cowgill]

Hi,

On 28/01/18 14:16, treb...@tuxfamily.org wrote:
> Le 2018-01-28 14:38, Simon McVittie a écrit :
>> Source: flowcanvas
>> Severity: important
>> User: debian...@lists.debian.org
>> Usertags: proposed-removal
>> Control: clone -1 -2
>> Control: reassign -2 ladish
>> Control: retitle -2 ladish: should this package be removed?
>>
>> flowcanvas depends on numerous obsolete GNOME 2-era libraries
>> (e.g. #885095) and hasn't had a maintainer upload since 2009. Its
>> upstream
>> website says:
>>
>>     **Note**: FlowCanvas is dead, long live Ganv!
>>
>> ganv is also in Debian as src:ganv; it's orphaned in Debian, but appears
>> to have commit activity upstream.
>>
>> flowcanvas has one reverse-dependency in Debian, gladish (src:ladish),
>> whose most recent maintainer upload was in 2014. web.archive.org says
>> the ladish.org website has been down since mid 2014.
> 
> ladish looks to be maintained by alessio (last commit 20 Apr 2017) here :
> https://github.com/alessio/ladish/
> (the same goes laditools as well)

You failed to mention that there has only been one non-merge commit to
that repository since 2014.

The truth is unless someone is willing to do the porting work, these
packages are not going to survive whether they are "maintained" or not.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#888664: collada2gltf: missing Vcs-* fields

[James Cowgill]

Hi,

On 28/01/18 14:45, Rene Engelhard wrote:
> Hi,
> 
> On Sun, Jan 28, 2018 at 02:34:33PM +0000, James Cowgill wrote:
>> In my analysis of the multimedia team repositories on alioth I noticed
>> that this repository does not have any Vcs-* fields, but does have a
>> repository on both alioth and salsa.
> 
> I consider that a bug when that one was migrated to salsa. The alioth
> one should have been gone.

The alioth repositories are not being removed (at least I am not
planning on doing that). Before moving everything to salsa, I am
trimming down the list of repositories to migrate. The ones left will be
made readonly and presumably archived when alioth is turned off.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#888667: o3dgc: missing Vcs-* fields

[James Cowgill]

Source: o3dgc
Version: 0~20131011-3
Severity: minor

Hi,

In my analysis of the multimedia team repositories on alioth I noticed
that this repository does not have any Vcs-* fields, but does have a
repository on alioth.

Probably these fields should be added.

Thanks,
James





signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#888668: pd-purepd: missing Vcs-* fields

[James Cowgill]

Source: pd-purepd
Version: 0.1.1-1
Severity: minor

Hi,

In my analysis of the multimedia team repositories on alioth I noticed
that this repository does not have any Vcs-* fields, but does have a
repository on alioth.

Probably these fields should be added.

Thanks,
James







signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#888666: libshairport: incorrect Vcs-* fields

[James Cowgill]

Source: libshairport
Version: 1.2.1~git20120510.cbed0c1-3
Severity: minor

Hi,

The Vcs-* fields for libshairport point to a repository on collab-maint,
but it appears that the real packaging is hosted with the multimedia
team on alioth.

Please update these fields.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#888665: libsamplerate: missing Vcs-* fields

[James Cowgill]

Source: libsamplerate
Version: 0.1.9-1
Severity: minor

Hi,

In my analysis of the multimedia team repositories on alioth I noticed
that this repository does not have any Vcs-* fields, but does have a
repository on alioth.

Probably these fields should be added.

Thanks,
James





signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#888664: collada2gltf: missing Vcs-* fields

[James Cowgill]

Source: collada2gltf
Version: 20140924-4
Severity: minor

Hi,

In my analysis of the multimedia team repositories on alioth I noticed
that this repository does not have any Vcs-* fields, but does have a
repository on both alioth and salsa.

Probably these fields should be added.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: [Audacity-devel] Bug#888332: audacity: FTBFS with FFmpeg 3.5

[James Cowgill]

Hi,

On 27/01/18 18:30, Paul Licameli wrote:
> On Sat, Jan 27, 2018 at 1:18 PM, Jaromír Mikeš  wrote:
>> 2018-01-26 21:00 GMT+01:00 Paul Licameli :
>>> On Fri, Jan 26, 2018 at 2:51 PM, Darrell Walisser <
>>> darrell.walis...@gmail.com> wrote:
 On Thu, Jan 25, 2018 at 1:19 AM, Jaromír Mikeš 
 wrote:
> Hello audacity developers,
>
> current audacity release doesn't build with upcoming ffmpeg 3.5.
> As we in debian build audacity against system-wide ffmpeg it can be
> serious problem in near future
> and audacity might be removed from debian archive.
>
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=888332
>
> best regards
>
> mira
>
 ​I have a fix for this in progress. Hope this note avoids any
 duplication of effort.​
>>>
>>> That will be most welcome.
>>>
>>> Our intention is to release 2.2.2 beta very soon.  I hope Debian will
>>> allow us one more release to include Darrell's fixes.
>>>
>>> PRL
>>
>> ​Hi James,
>>
>> audacity devs already are working on ffmpep 3.5 support ​... but it will
>> not probably go to upcoming release.
>> When do you plan ffmpeg transition ?

It will definitely not happen before 3.5 is released upstream. After
that I would like to get the majority of the FTBFS bugs fixed before
starting the transition. My current guess is sometime in March or April.

> James, let me update that:
> 
> One of our contributors has already offered fixes for this, which was much
> less code than I feared.  It has not yet been merged into our master
> branch, but it is probable that it will be for version 2.2.2.  It should be
> compilable either with FFmpeg version 3.5 header files or earlier.  Please
> fetch this commit from his fork and see if it's good enough for your
> purposes.
> 
> https://github.com/audacity/audacity/pull/249/commits/3d173ccef08fe353d9c73ecdf897e7634803a2b4

Thanks. I made one comment on the pull request about handling older
FFmpeg versions correctly. Apart from that I think the PR is fine.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: ffmpeg 3.2.10 update

[James Cowgill]

Hi,

On 27/01/18 12:09, Salvatore Bonaccorso wrote:
> On Sat, Jan 27, 2018 at 10:19:19AM +0000, James Cowgill wrote:
>> On 26/01/18 17:53, Moritz Mühlenhoff wrote:
>>> On Fri, Jan 26, 2018 at 05:13:54PM +0000, James Cowgill wrote:
>>>> I've pushed ffmpeg 3.2.10 here:
>>>> https://salsa.debian.org/multimedia-team/ffmpeg/tree/debian/stretch
>>>>
>>>> Since I've not been doing these updates before, what is the correct
>>>> procedure. Do I just upload it to security-master, or should I contact
>>>> the security team first?
>>>
>>> For ffmpeg (since it's following the 3.2.x series) uploading to
>>> security-master is fine (unless some update happens to provide
>>> changes in debian/ beyond the changelog, then please send us a
>>> debdiff).
>>
>> I've uploaded it and attached the debdiff. There are some minor
>> modifications to debian/ outside the changelog, but I don't think
>> they'll be controversial.
> 
> Something whent wrong, presumably the upload interupted?
> 
> The upload is missing the orig.tar.xz:
> 
> [...]
> Jan 27 10:20:39 processing /ffmpeg_3.2.10-1~deb9u1_source.changes
> Jan 27 10:20:39 ffmpeg_3.2.10.orig.tar.xz doesn't exist (ignored for now)
> Jan 27 10:25:39 processing /ffmpeg_3.2.10-1~deb9u1_source.changes
> Jan 27 10:25:39 ffmpeg_3.2.10.orig.tar.xz doesn't exist (ignored for now)
> [...]
> 
> You should be able to just push ffmpeg_3.2.10.orig.tar.xz in the next
> few hours, and the upload beeing processed.

Yeah I tried to do a manual upload because I was on a crap internet
connection and screwed it up, but I see everything is sorted now.

Thanks!
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: ffmpeg 3.2.10 update

[James Cowgill]

Hi,

On 26/01/18 17:53, Moritz Mühlenhoff wrote:
> On Fri, Jan 26, 2018 at 05:13:54PM +0000, James Cowgill wrote:
>> Hi,
>>
>> I've pushed ffmpeg 3.2.10 here:
>> https://salsa.debian.org/multimedia-team/ffmpeg/tree/debian/stretch
>>
>> Since I've not been doing these updates before, what is the correct
>> procedure. Do I just upload it to security-master, or should I contact
>> the security team first?
> 
> For ffmpeg (since it's following the 3.2.x series) uploading to
> security-master is fine (unless some update happens to provide
> changes in debian/ beyond the changelog, then please send us a
> debdiff).

I've uploaded it and attached the debdiff. There are some minor
modifications to debian/ outside the changelog, but I don't think
they'll be controversial.

d/gbp.conf - changed the git packaging branch names to dep14 style.

d/patches - dropped patch added in 3.2.9 but has now been applied upstream.

Thanks,
James
diff -Nru ffmpeg-3.2.9/Changelog ffmpeg-3.2.10/Changelog
--- ffmpeg-3.2.9/Changelog  2017-10-26 21:48:27.0 +0100
+++ ffmpeg-3.2.10/Changelog 2018-01-13 02:33:15.0 +
@@ -1,6 +1,77 @@
 Entries are sorted chronologically from oldest to youngest within each release,
 releases are sorted from youngest to oldest.
 
+version 3.2.10:
+- avcodec/utils: Avoid hardcoding duplicated types in sizeof()
+- avcodec/arm/sbrdsp_neon: Use a free register instead of putting 2 things in 
one
+- avformat/libssh: check the user provided a password before trying to use it
+- avcodec/h264addpx_template: Fixes integer overflows
+- avcodec/dirac_dwt: Fix overflows in COMPOSE_HAARiH0/COMPOSE_HAARiL0
+- avcodec/diracdec: Fix integer overflow with quant
+- avcodec/opus_parser: Check payload_len in parse_opus_ts_header()
+- avcodec/jpeg2000dsp: Fix integer overflows in ict_int()
+- avcodec/h264_slice: Do not attempt to render into frames already output
+- avcodec/dnxhddec: Check dc vlc
+- x264: Support version 153
+- avcodec/exr: Check buf_size more completely
+- avcodec/flacdec: Fix overflow in multiplication in decode_subframe_fixed()
+- avcodec/hevcdsp_template: Fix Invalid shifts in put_hevc_qpel_bi_w_h() and 
put_hevc_qpel_bi_w_w()
+- avcodec/flacdec: avoid undefined shift
+- avcodec/hevcdsp_template.c: Fix undefined shift in FUNC(dequant)
+- avcodec/dirac_dwt: Fix integer overflow in COMPOSE_DD97iH0() and 
COMPOSE_DD137iL0()
+- avcodec/hevc_cabac: Fix integer overflow in ff_hevc_cu_qp_delta_abs()
+- tests/audiomatch: Add missing return code at the end of main()
+- avcodec/hevc_sei: Fix integer overflows in decode_nal_sei_message()
+- avcodec/hevcdsp_template: Fix undefined shift in put_hevc_qpel_bi_w_hv()
+- libavfilter/af_dcshift.c: Fixed repeated spelling error
+- avfilter/formats: fix wrong function name in error message
+- avcodec/amrwbdec: Fix division by 0 in voice_factor()
+- avcodec/diracdsp: Fix integer overflow in PUT_SIGNED_RECT_CLAMPED()
+- avcodec/dirac_dwt: Fix integer overflows in COMPOSE_DAUB97*
+- avcodec/vorbis: Fix another 1 << 31 > int32_t::max() with 1u.
+- Don't manipulate duration when it's AV_NOPTS_VALUE.
+- avcodec/vorbis: 1 << 31 > int32_t::max(), so use 1u << 31 instead.
+- avformat/utils: Prevent undefined shift with wrap_bits > 64.
+- avcodec/j2kenc: Fix out of array access in encode_cblk()
+- avcodec/hevcdsp_template: Fix undefined shift in put_hevc_epel_bi_w_h()
+- avcodec/mlpdsp: Fix signed integer overflow, 2nd try
+- avcodec/kgv1dec: Check that there is enough input for maximum RLE compression
+- avcodec/dirac_dwt: Fix integer overflow in COMPOSE_FIDELITYi*
+- avcodec/mpeg4videodec: Check also for negative versions in the validity check
+- Close ogg stream upon error when using AV_EF_EXPLODE.
+- Fix undefined shift on assumed 8-bit input.
+- Use ff_thread_once for fixed, float table init.
+- avformat/mov: Propagate errors in mov_switch_root.
+- avcodec/hevcdsp_template: Fix invalid shift in put_hevc_epel_bi_w_v()
+- avcodec/mlpdsp: Fix undefined shift ff_mlp_pack_output()
+- avcodec/zmbv: Check that the buffer is large enough for mvec
+- avcodec/dirac_dwt: Fix integer overflow in COMPOSE_DD137iL0()
+- avcodec/wmv2dec: Check end of bitstream in parse_mb_skip() and 
ff_wmv2_decode_mb()
+- avcodec/snowdec: Check for remaining bitstream in decode_blocks()
+- avcodec/snowdec: Check intra block dc differences.
+- avformat/mov: Check size of STSC allocation
+- avcodec/vc2enc: Clear coef_buf on allocation
+- avcodec/h264dec: Fix potential array overread
+- avcodec/x86/mpegvideodsp: Fix signedness bug in need_emu
+- avcodec/aacpsdsp_template: Fix integer overflows in ps_decorrelate_c()
+- avcodec/aacdec_fixed: Fix undefined shift
+- avcodec/mdct_*: Fix integer overflow in addition in RESCALE()
+- avcodec/snowdec: Fix integer overflow in header parsing
+- avcodec/cngdec: Fix integer clipping
+- avcodec/sbrdsp_fixed: Fix integer overflow in shift in sbr_hf_g_filt_

ffmpeg 3.2.10 update

[James Cowgill]

Hi,

I've pushed ffmpeg 3.2.10 here:
https://salsa.debian.org/multimedia-team/ffmpeg/tree/debian/stretch

Since I've not been doing these updates before, what is the correct
procedure. Do I just upload it to security-master, or should I contact
the security team first?

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: Proposed multimedia team migration to salsa.d.o

[James Cowgill]

Hi,

On 26/01/18 09:25, IOhannes m zmölnig (Debian/GNU) wrote:
> On 01/01/2018 06:43 PM, James Cowgill wrote:
>> we need to migrate things over to salsa
> 
> thanks for taking the initiative!
>>
>> New Vcs-* URLs:
>>
> 
> formorer has setup a redirection system, which would allow us to keep
> the old anonscm URLs, which i think should be preferred over re-setting
> the Vcs-* stanzas again.
> 
>https://salsa.debian.org/salsa/AliothRewriter

From the README of that project:
> The existance of this list should not mean that VCS control fields shouldn't 
> get updated with the next upload. This map is just a workaround - after your 
> upload please create another pull request that deletes the unneeded entries.

So it looks like it's just a workaround which may not exist forever. I
think we should change the VCS URLs (yet again). If we're going to
change the maintainer address anyway, I don't think it will be a huge
burden.
>> New maintainer address
>> ===
>> There is not going to be a replacement for alioth mailing lists, so we
>> are going to switch back to using "debian-multime...@lists.debian.org"
> 
> i haven't followed the discussion why d-m@l.d.o was deprecated in the
> first place.
> so for me, this sounds like a very good idea.
> 
>>
>> Commit notifications
>> ===
> 
> 
> there's also a webhook for closing/pending bugs which we probably want
> to enable.
> 
>   https://webhook.salsa.debian.org/tagpending/${pkgname}

Thanks I did not know about this..

>> Automation
>> ---
>> Enabling these should probably be automated and checked using the GitLab
>> API because inevitably someone will forget to enable it in a repository.
> 
> +1
> 
> has somebody started to work on that already?

I've had a go at writing a script in python which does some of this.
I've put it here:
 https://salsa.debian.org/jcowgill/multimedia-cli

I'll see if I can add the pending bugs webhook to it.

>> Migration
>> ===
>> - Migrate everything to salsa using Christoph Berg's import script:
>> http://www.df7cb.de/blog/2017/Salsa_batch_import.html
> 
> sounds good.
> the import script is quite rough though, has anybody worked on cleaning
> it up?

The above tool has an import script as well.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#888348: lives: FTBFS with FFmpeg 3.5

[James Cowgill]

Hi,

On 25/01/18 10:55, salsaman wrote:
> If you have a moment, perhaps you could pull the newly updated files from
> lives/lives-plugins/plugins/decoders in subversion (
> http://svn.code.sf.net/p/lives/code/trunk) and recompile. It should fix the
> FTBFS.

Thanks. The errors in the original build log have now been fixed, but
there are some more further on (build was done with make -k):

> libav_stream.c: In function 'set_palette':
> libav_stream.c:251:15: error: 'PIX_FMT_YUV420P' undeclared (first use in this 
> function); did you mean 'AV_PIX_FMT_YUV420P'?
>avpalette = 
> PIX_FMT_YUV420P;//weed_palette_to_avi_pix_fmt(WEED_PALETTE_YUV420P, );
>^~~
>AV_PIX_FMT_YUV420P
> libav_stream.c:251:15: note: each undeclared identifier is reported only once 
> for each function it appears in
> libav_stream.c: In function 'add_stream':
> libav_stream.c:459:17: error: 'CODEC_FLAG_GLOBAL_HEADER' undeclared (first 
> use in this function); did you mean 'AV_CODEC_FLAG_GLOBAL_HEADER'?
>  c->flags |= CODEC_FLAG_GLOBAL_HEADER;
>  ^~~~
>  AV_CODEC_FLAG_GLOBAL_HEADER
> Makefile:852: recipe for target 'libav_stream_la-libav_stream.lo' failed
[...]
> avformat_decoder.c: In function 'attach_stream':
> avformat_decoder.c:360:44: error: 'AVCodecContext {aka struct 
> AVCodecContext}' has no member named 'codec_name'; did you mean 'codec_type'?
>sprintf(cdata->audio_name, "%s", cc->codec_name);
> ^~
> codec_type
> avformat_decoder.c:400:44: error: 'AVCodecContext {aka struct 
> AVCodecContext}' has no member named 'codec_name'; did you mean 'codec_type'?
>sprintf(cdata->video_name, "%s", cc->codec_name);
> ^~
> codec_type
> Makefile:862: recipe for target 'zzavformat_decoder_la-avformat_decoder.lo' 
> failed
[...]
> mpegts_decoder.c: In function 'attach_stream':
> mpegts_decoder.c:3144:29: error: 'CODEC_CAP_TRUNCATED' undeclared (first use 
> in this function); did you mean 'AV_CODEC_CAP_TRUNCATED'?
>if (codec->capabilities & CODEC_CAP_TRUNCATED)
>  ^~~
>  AV_CODEC_CAP_TRUNCATED
> mpegts_decoder.c:3144:29: note: each undeclared identifier is reported only 
> once for each function it appears in
> mpegts_decoder.c:3145:19: error: 'CODEC_FLAG_TRUNCATED' undeclared (first use 
> in this function); did you mean 'CODEC_CAP_TRUNCATED'?
>  ctx->flags |= CODEC_FLAG_TRUNCATED;
>^~~~
>CODEC_CAP_TRUNCATED
> At top level:
> mpegts_decoder.c:340:23: warning: 'options' defined but not used 
> [-Wunused-const-variable=]
>  static const AVOption options[] = {
>^~~
> Makefile:841: recipe for target 'mpegts_decoder_la-mpegts_decoder.lo' failed

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#888348: lives: FTBFS with FFmpeg 3.5

[James Cowgill]

Hi,

On 25/01/18 04:05, salsaman wrote:
> Thanks. Will take a look.
> 
> What is the recommended compile time check for this version ?
> LIBAVCODE_VERSION_MAJOR > ? ?

For libavcodec from FFmpeg 3.5 / Libav 12 you can use:
  LIBAVCODEC_VERSION_MAJOR >= 58

However, there should be no reason to do this because all the removed
APIs have been deprecated for years now. You should instead check the
version at the time the feature was removed.

In this case you want the version that AV_INPUT_BUFFER_PADDING_SIZE was
added. This can be found in doc/APIchanges:
> 2015-07-27 - lavc 56.56.100 / 56.35.0 - avcodec.h
>   94d68a4 / 7c6eb0a1 - Rename CODEC_FLAG* defines to AV_CODEC_FLAG*.
>   444e987 / def97856 - Rename CODEC_CAP_* defines to AV_CODEC_CAP_*.
>   29d147c / 059a9348 - Rename FF_INPUT_BUFFER_PADDING_SIZE and 
> FF_MIN_BUFFER_SIZE
>   to AV_INPUT_BUFFER_PADDING_SIZE and AV_INPUT_BUFFER_MIN_SIZE.

The first version is for FFmpeg, the second is for Libav (sigh).

So I think you want:
 #if LIBAVCODEC_VERSION_INT >= AV_VERSION_INT(56, 56, 0)

Alternatively since FFmpeg 3.0 bumped the major version, you could be
more strict and check on:
 #if LIBAVCODEC_VERSION_MAJOR >= 57

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: giada - new release

[James Cowgill]

Hi,

On 17/01/18 15:42, Jaromír Mikeš wrote:
> ​Hi,
> 
> giada unfortunately fail to build on some archs ... I already informed
> upstream but not answer yet.
> Can someone look if fixing this is rather trivial or complicated.
> 
> https://buildd.debian.org/status/package.php?p=giada

The entire function for reference:
> std::string gu_format(const char* format, ...)
> {
>   va_list args;
> 
>   /* Compute the size of the new expanded string (i.e. with replacement 
> taken
>   into account). */
> 
>   size_t size = vsnprintf(nullptr, 0, format, args);
> 
>   /* Create a new temporary char array to hold the new expanded string. */
> 
>   std::unique_ptr tmp(new char[size]);
> 
>   /* Fill the temporary string with the formatted data. */
> 
>   va_start(args, format);
>   vsprintf(tmp.get(), format, args);
>   va_end(args);
>   
>   return string(tmp.get(), tmp.get() + size - 1); 
> }

This line (the one the error complains about) reads the uninitialized
args and invokes undefined behavior:
> size_t size = vsnprintf(nullptr, 0, format, args);

It needs to be surrounded in va_start, va_end block.

The second subtle error is that vsnprintf returns the size _excluding
the null byte_. This will cause the vsprintf call to overflow the buffer
by 1 byte.

This might work (untested):
 va_start(args, format);
 size_t size = vsnprintf(nullptr, 0, format, args) + 1;
 va_end(args);

Some alternative implementations. The varardic template solution (the
third one) is similar to this code (and the one I like the most):
https://stackoverflow.com/questions/2342162/stdstring-formatting-like-sprintf

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: giada - new release

[James Cowgill]

Hi,

On 16/01/18 18:53, Jaromír Mikeš wrote:
> Hi,
> 
> in giada package 02-rtmidi-pkgconfig.patch is not applying anymore.
> I am not sure if this patch can be dropped or it should be updated?
> Can someone have a look please? James maybe you as as author of this patch.

Here's a refreshed patch.

It looks like upstream has changed the headers to 
which is a hack and against the intentions of upstream rtmidi, but it
will work without my patch (for now). I think using pkg-config is still
more correct though.

James
From: James Cowgill <jcowg...@debian.org>
Date: Wed, 25 Oct 2017 14:25:50 +0200
Subject: build with new rtmidi lib.

--- a/Makefile.am
+++ b/Makefile.am
@@ -70,13 +70,13 @@ endif
 if LINUX
 
 # Add preprocessor flags to enable ALSA, Pulse and JACK in RtAudio.
-cppFlags += -D__LINUX_ALSA__ -D__LINUX_PULSE__ -D__UNIX_JACK__
+cppFlags += $(RTMIDI_CFLAGS)
 
 # Don't stop on JUCE's unused functions.
 cxxFlags += -Wno-error=unused-function
 
 ldAdd += -lsndfile -lfltk -lXext -lX11 -lXft -lXpm -lm -ljack -lasound \
-  -lpthread -ldl -lpulse-simple -lpulse -lsamplerate -lrtmidi -ljansson \
+  -lpthread -ldl -lpulse-simple -lpulse -lsamplerate $(RTMIDI_LIBS) -ljansson \
   -lfreetype
 
 endif
--- a/configure.ac
+++ b/configure.ac
@@ -118,23 +118,7 @@ AC_CHECK_HEADER(
 )
 AC_LANG_POP
 
-if test "x$os" = "xosx"; then
-	AC_LANG_PUSH([C++])
-	AC_CHECK_HEADER(
-		[RtMidi.h],
-		[],
-		[AC_MSG_ERROR([library 'rtMidi' not found!])]
-	)
-	AC_LANG_POP
-else
-	AC_LANG_PUSH([C++])
-	AC_CHECK_HEADER(
-		[rtmidi/RtMidi.h],
-		[],
-		[AC_MSG_ERROR([library 'rtMidi' not found!])]
-	)
-	AC_LANG_POP
-fi
+PKG_CHECK_MODULES([RTMIDI], [rtmidi])
 
 
 AC_LANG_PUSH([C++])


signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#886912: ffmpeg segfaults when using sftp

[James Cowgill]

Control: forwarded -1 https://trac.ffmpeg.org/ticket/6413
Control: fixed -1 7:3.4.1-1

Hi,

On 11/01/18 08:55, Scott Cohen wrote:
> Package: ffmpeg
> Version: 7:3.2.9-1~deb9u1
> Severity: important
> 
> Dear Maintainer,
> 
> To reproduce:
> 1. Open a file with the -i option and supply it with the sftp:// protocol 
> with an ip and path to the desired file.
> 
> The following log displays that using the sftp in at least my configuration 
> will cause a segfault and the ip used was 127.0.1.1:
> 
> yetoo@debian:~/Videos$ ffmpeg -loglevel debug -i sftp://127.0.1.1/midlife.mp4
> ffmpeg version 3.2.9-1~deb9u1 Copyright (c) 2000-2017 the FFmpeg developers
>   built with gcc 6.3.0 (Debian 6.3.0-18) 20170516
>   configuration: --prefix=/usr --extra-version='1~deb9u1' 
> --toolchain=hardened --libdir=/usr/lib/x86_64-linux-gnu 
> --incdir=/usr/include/x86_64-linux-gnu --enable-gpl --disable-stripping 
> --enable-avresample --enable-avisynth --enable-gnutls --enable-ladspa 
> --enable-libass --enable-libbluray --enable-libbs2b --enable-libcaca 
> --enable-libcdio --enable-libebur128 --enable-libflite --enable-libfontconfig 
> --enable-libfreetype --enable-libfribidi --enable-libgme --enable-libgsm 
> --enable-libmp3lame --enable-libopenjpeg --enable-libopenmpt --enable-libopus 
> --enable-libpulse --enable-librubberband --enable-libshine --enable-libsnappy 
> --enable-libsoxr --enable-libspeex --enable-libssh --enable-libtheora 
> --enable-libtwolame --enable-libvorbis --enable-libvpx --enable-libwavpack 
> --enable-libwebp --enable-libx265 --enable-libxvid --enable-libzmq 
> --enable-libzvbi --enable-omx --enable-openal --enable-opengl --enable-sdl2 
> --enable-libdc1394 --enable-libiec61883 --enable-chromaprint --enable-frei0r 
> --enable-libopencv --enable-libx264 --enable-shared
>   libavutil  55. 34.101 / 55. 34.101
>   libavcodec 57. 64.101 / 57. 64.101
>   libavformat57. 56.101 / 57. 56.101
>   libavdevice57.  1.100 / 57.  1.100
>   libavfilter 6. 65.100 /  6. 65.100
>   libavresample   3.  1.  0 /  3.  1.  0
>   libswscale  4.  2.100 /  4.  2.100
>   libswresample   2.  3.100 /  2.  3.100
>   libpostproc54.  1.100 / 54.  1.100
> Splitting the commandline.
> Reading option '-loglevel' ... matched as option 'loglevel' (set logging 
> level) with argument 'debug'.
> Reading option '-i' ... matched as input url with argument 
> 'sftp://127.0.1.1/midlife.mp4'.
> Finished splitting the commandline.
> Parsing a group of options: global .
> Applying option loglevel (set logging level) with argument debug.
> Successfully parsed a group of options.
> Parsing a group of options: input url sftp://127.0.1.1/midlife.mp4.
> Successfully parsed a group of options.
> Opening an input file: sftp://127.0.1.1/midlife.mp4.
> [NULL @ 0x5609c5fa0d60] Opening 'sftp://127.0.1.1/midlife.mp4' for reading
> [sftp @ 0x5609c5fa15c0] No default whitelist set
> Segmentation fault

I think this is this upstream bug (which was fixed in 3.4):
https://trac.ffmpeg.org/ticket/6413
https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=8ddb6820bd52df6ed616abc3d8be200b126aa8c1

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: How to handle translation bug?

[James Cowgill]

Hi,

On 09/01/18 04:19, Jaromír Mikeš wrote:
> Hi,
> 
> I got translation bug against aeolus package:
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886672
> 
> How to deal with this bug correctly? I found this thread:
> https://lists.debian.org/debian-devel/2016/07/msg00351.html
> 
> But I am not still sure about correct workflow.

I'm not sure exactly what the procedure is, but I guess someone on
debian-i18n@l.d.o can help you.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#886369: easytag: remove mentioned OGG support from package description

[James Cowgill]

Package: easytag
Version: 2.4.3-2
Severity: minor
Tags: patch
X-Debbugs-CC: Bruno Kleinert <fu...@debian.org>
Control: submitter -1 Bruno Kleinert <fu...@debian.org>

Hi,

On 04/01/18 12:02, Bruno Kleinert wrote:
> Am Mittwoch, den 03.01.2018, 16:50 +0000 schrieb James Cowgill:
>> Control: clone -1 -2
>> Control: notfound -2 2.4.3-1
>> Control: found -2 2.4.3-2
>> Control: severity -2 normal
>> Control: tags -2 - pending
>> Control: retitle -2 easytag: re-enable ogg after corruption bug is
>> fixed
>>
>> Hi,
>>
>> On 16/02/17 01:02, Samuele Battarra wrote:
>>> Package: easytag
>>> Version: 2.4.3-1
>>> Severity: normal
>>>
>>> Dear Maintainer,
>>> I have a ogg file encoded from a live cd, I split it to single
>>> tracks with oggsplt and then tag the tracks with easytag.
>>> When I play the files I hear a click at file change.
>>> The click is not present in files before the tagging and if I tag
>>> with kid3.
>>
>> As you might have noticed, I have decided that the best way to fix
>> this
>> is to disable support for OGG and related media types in easytag for
>> the
>> time being. Solving this bug is apparently quite complex and while
>> the
>> upstream bug has been open for over a year, there has not been much
>> progress on it. I think it is better to have some version in buster
>> (which does not mangle your media files) than nothing at all.
>>
>> I have cloned this bug to remind me to re-enable ogg support once the
>> corruption bug is fixed.
>>
>> Thanks,
>> James
> 
> Hi James,
> 
> I suggest to remove the mentioned OGG support from the description of
> the package for the time being, and suggest alternative packages to
> users instead. Feel free to use and adapt the attached patch!

Yes I overlooked altering the package description to remove mentions of
ogg. I'm not sure the description is the right place to be suggesting
alternative packages though.

James
diff --git a/debian/changelog b/debian/changelog
index a8df5e1..4cae9d8 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,11 @@
+easytag (2.4.3-2.1) UNRELEASED; urgency=medium
+
+  * Non-maintainer upload.
+  * Do not mention OGG support in package description. Instead, suggest
+alternative packages to edit OGG file tags.
+
+ -- Bruno "Fuddl" Kleinert <fu...@debian.org>  Thu, 04 Jan 2018 12:52:46 +0100
+
 easytag (2.4.3-2) unstable; urgency=medium
 
   * debian/control:
diff --git a/debian/control b/debian/control
index 6e53796..36cabb6 100644
--- a/debian/control
+++ b/debian/control
@@ -49,9 +49,8 @@ Description: GTK+ editor for audio file tags
  .
  Currently EasyTAG supports the following:
   - View, edit, write tags of MP3, MP2 files (ID3 tag), FLAC files (FLAC Vorbis
-tag), Ogg Opus, Ogg Speex and Ogg Vorbis files (Ogg Vorbis tag),
-MP4/M4A/AAC files (MPEG-4 Part 10 tag), and MusePack, Monkey's Audio files
-(APE tag);
+tag), MP4/M4A/AAC files (MPEG-4 Part 10 tag), and MusePack, Monkey's Audio
+files (APE tag);
   - Auto tagging: parse file and directory names using masks to automatically
 fill in tag fields;
   - Cover art support for all formats;
@@ -71,6 +70,10 @@ Description: GTK+ editor for audio file tags
   - A playlist generator window;
   - A file searching window;
   - Simple and explicit interface.
+ .
+ OGG support is currently disabled in this package because of a data corruption
+ bug. To edit tags in OGG files you may consider one of these packages: exfalso,
+ puddletag, kid3-qt, entagged.
 
 Package: easytag-nautilus
 Architecture: any


signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: Removing rumor

[James Cowgill]

Hi,

On 04/01/18 22:34, Ryan Kavanagh wrote:
> Hi all,
> 
> The rumor package converts MIDI keyboard input to Lilypond sheet music 
> notation.
> We initially introduced this package back in 2009 because Frescobaldi (a
> Lilypond IDE) interfaced with it, but Frescobaldi now does its own MIDI to
> Lilypond conversion. Rumor hasn't been maintained upstream since 2010 and it
> needs to be updated for every new guile release.
> 
> Given it's abandoned upstream, its main use case (Frescobaldi) no longer
> applies, and it requires regular patching, I propose removing it from the
> archive.
> 
> Are there any objections? (Alternatively, would anybody like to add themselves
> to the uploaders field and take over keeping an eye on it for me?)

Not an objection, but an observation that upstream did claim to commit
some fixes in September 2017:
https://bugs.launchpad.net/rumor/+bug/782750
https://bugs.launchpad.net/rumor/+bug/1413108

I can't find the repo though.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: libgig compat 10 vs 11

[James Cowgill]

Hi,

On 03/01/18 20:09, Jaromír Mikeš wrote:
> 2018-01-03 20:07 GMT+01:00 Jonas Smedegaard :
> 
>> Quoting Jaromír Mikeš (2018-01-03 19:29:36)
>>> When bumped compat dh to 11 I am getting this errors ... files are
>>> installed same in doc package with dh 10 and 11
>>>
>>> E: libgig-doc: doc-base-file-references-missing-file libgig-doc:8
>>> /usr/share/doc/libgig-doc/html/index.html
>>> E: libgig-doc: doc-base-file-references-missing-file libgig-doc:9
>>> /usr/share/doc/libgig-doc/html/*
>>>
>>> Any idea how to fix this?
>>
>> What did debhelper documentation say about that change in compatibility
>> level?
> 
> ​I was checking before documentation there is quite a lot of about doc ...
> but I didn't found something related to this issue
> But I might be wrong :(

From debhelper(7) compat 11 section:
>-   The dh_installdocs and dh_installexamples tools will now
>attempt to guess the "main package" for a given
>documentation package (e.g. pkg-doc will have pkg as main
>package if the latter exists).  If a main package is
>found, most of the documentation will be installed into
>/usr/share/doc/main-pkg by default as recommended by
>Debian policy §12.3 since version 3.9.7.  Notable
>exceptions include the copyright file and changelog files.
> 
>The --doc-main-package option can be used when the auto-
>detection is insufficient.

It isn't stated there, but for packages named "libX-doc", the main
package becomes "libX-dev", so if you run debdiff on the old and new
libgig-doc, you should find the documentation has moved to
/usr/share/doc/libgig-dev.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#886272: easytag: re-enable ogg support after corruption bug is fixed

[James Cowgill]

Package: easytag
Version: 2.4.3-2
Severity: normal
Tags: upstream
Forwarded: https://bugzilla.gnome.org/show_bug.cgi?id=776110

This bug was going to be cloned from #855251 but apparently you can't
clone merged bugs.

In 2.4.3-2, OGG, OPUS and Speex support was disabled due to a corruption
bug described in #855251. This bug is pending an upstream fix. Once the
fix is available, support should be re-enabled.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#855251: easytag corrupt ogg files

[James Cowgill]

Control: clone -1 -2
Control: notfound -2 2.4.3-1
Control: found -2 2.4.3-2
Control: severity -2 normal
Control: tags -2 - pending
Control: retitle -2 easytag: re-enable ogg after corruption bug is fixed

Hi,

On 16/02/17 01:02, Samuele Battarra wrote:
> Package: easytag
> Version: 2.4.3-1
> Severity: normal
> 
> Dear Maintainer,
> I have a ogg file encoded from a live cd, I split it to single tracks with 
> oggsplt and then tag the tracks with easytag.
> When I play the files I hear a click at file change.
> The click is not present in files before the tagging and if I tag with kid3.

As you might have noticed, I have decided that the best way to fix this
is to disable support for OGG and related media types in easytag for the
time being. Solving this bug is apparently quite complex and while the
upstream bug has been open for over a year, there has not been much
progress on it. I think it is better to have some version in buster
(which does not mangle your media files) than nothing at all.

I have cloned this bug to remind me to re-enable ogg support once the
corruption bug is fixed.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: Bug#886237: transition: libgig

[James Cowgill]

Hi Mattia,

On 03/01/18 13:18, Mattia Rizzolo wrote:
> Control: tag -1 moreinfo
> 
> On Wed, Jan 03, 2018 at 12:55:40PM +0100, Jaromír Mikeš wrote:
>> Can I upload new upstream version of gigedit now to experimental? ...
>> I am not DD just having DM flag for qsampler
> 
> Usually uploading to experimental comes *before* opening a transition
> bug.
> Please upload to experimental and ping this bug once it passed new (and
> the reverse-depends still builds fine).

I think you have misunderstood. libgig is the library undergoing a
transition and is already in experimental. gigedit is a reverse
dependency of libgig which currently FTBFS but a fix is ready to be
uploaded.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#883636: showq: does not start

[James Cowgill]

Control: retitle -1 showq: does not start
Control: severity -1 grave
Control: tags -1 confirmed

Hi,

On 06/12/17 00:12, treb...@tuxfamily.org wrote:
> Package: showq
> Version: 0.4.1+git20161215~dfsg0-2
> 
> Dear debian maintainers,
> 
> trying to launch showq (debian stretch here) doesn't work at all.
> When ran from a terminal, it tells:
> $ showq
> ShowQ:out_1 # system:playback_1
> ShowQ:out_2 # system:playback_2
> ShowQ:out_3 # PulseAudio JACK Source:front-left
> ShowQ:out_4 # PulseAudio JACK Source:front-right
> 
> Then a pop up windows appears telling:
>> Show Q encountered an unknown error.
>> Please report this error to the developers of the program.
> 
> Pushing the "OK" button, and it stops.
> 
> I've already reported this to upstream :
> https://github.com/evandelisle/showq/issues/29

Indeed I cannot start showq either.

Running it in strace shows that it fails to open the app.ui file:
> open("/usrshare/showq/ui/app.ui", O_RDONLY) = -1 ENOENT (No such file or 
> directory)

This path is derived from UI_DIR which is defined in wscript:
> def configure(conf):
> conf.recurse('src ui')
> conf.define('GETTEXT_PACKAGE', 'showq')
> conf.define('PROGRAMNAME_LOCALEDIR', conf.options.prefix + 'share/showq')
> conf.define('UI_DIR', conf.options.prefix + 'share/showq/ui/')
> conf.define('VERSIONSTRING', VERSION)
> conf.write_config_header('config.h')

Note that the prefix does *not* have a trailing slash in debian/rules:
> override_dh_auto_configure:
>   $(WAF) configure   --prefix=/usr

So the simple fix is to use "--prefix=/usr/", but arguably this is an
upstream bug as well since it should work with prefixes without trailing
slashes.

This all does seem to suggest the package was never tested before being
uploaded...

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: libgig upload to experimental

[James Cowgill]

Hi,

On 08/12/17 12:36, Jaromír Mikeš wrote:
> 2017-11-29 22:36 GMT+01:00 Jaromír Mikeš :
>> 2017-11-27 13:49 GMT+01:00 Jaromír Mikeš :
>>
>>> libgig bumped soname so it should go trough transition.
>>> Can someone upload libgig to experimental please?
>>>
>>
>> ​ping ;)​
>>
> 
> ​Hi,
> 
> I would be great if someone in this Xmas rush will find a time to upload
> libgig and gigedit to experimental for me ;)

Uploaded. Sorry for the delay.

I haven't uploaded gigedit, but you should be able to do that yourself.

I notice gigedit FTBFS with the testsuite enabled with the error:
> The following files contain translations and are currently not in use. Please
> consider adding these to the POTFILES.in file, located in the po/ directory.
> 
> src/gigedit/MacroEditor.cpp
> src/gigedit/MacrosSetup.cpp
> 
> If some of these files are left out on purpose then please add them to
> POTFILES.skip instead of POTFILES.in. A file 'missing' containing this list
> of left out files has been written in the current directory.

This is a programming error and should be reported upstream.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: phasex – request for review

[James Cowgill]

Hi,

On 29/12/17 13:42, Jaromír Mikeš wrote:
> 2017-12-29 13:46 GMT+01:00 Gabor Karsay :
> 
> ​Hi Gabor,
> 
> 
>> I fixed the watch file for phasex and I'm asking for a review/upload.
>> Maybe mira? You have listed yourself as uploader.
>>
>> Amongst other thing I also migrated to automatic debug packages following
>> this guide: https://wiki.debian.org/AutomaticDebugPackages
> 
> 
> ​Lintian says:
> $ lintian -IE --pedantic --no-tag-display-limit
> ../phasex_0.14.97-3_amd64.changes
> P: phasex source: package-uses-old-debhelper-compat-version 10
> W: phasex source: newer-standards-version 4.1.3 (current is 4.1.2)
> I: phasex source: testsuite-autopkgtest-missing
> P: phasex source: debian-watch-may-check-gpg-signature
> I: phasex: spelling-error-in-binary usr/bin/phasex GNU Public License GNU
> General Public License
> I: phasex: arch-dep-package-has-big-usr-share 10320kB 95%
> W: phasex: binary-without-manpage usr/bin/phasex
> W: phasex: binary-without-manpage usr/bin/phasex-convert-patch
> I: phasex: desktop-entry-lacks-keywords-entry
> usr/share/applications/phasex.desktop
> ​
> ​So I would go with dh compat 11 now and keep standards version 4.1.2 until
> lintian will recognize 4.1.3

Lintian is clearly wrong here so I think you should ignore it.

> Also I would fix desktop file ... we are shipping our one in debian dir.
> 
> d/rules
> override_dh_strip:
> dh_strip --dbgsym-migration='phasex-dbg (<< 0.14.97-3~)'
> 
> This seems to be redundant I believe with compat 10 and higher.

Whether the --dbgsym-migration option is redundant depends on the
package. The purpose of that option is to prevent dpkg failing to
install the new dbgsym package if the old dbg package is installed (file
conflicts). Usually if all the binaries in your package have changed,
the debug files in /usr/lib/debug/.build-id will also change names and
the option isn't needed.

In this case no new upstream has been imported, so you probably do need
the option (until the next upstream version is imported).

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Proposed multimedia team migration to salsa.d.o

[James Cowgill]

Hi,

As you've probably seen, the Debian Gitlab instance salsa.debian.org is
up and running (in beta). Since alioth.debian.org is deprecated and
might be disabled soon, we need to migrate things over to salsa.

This is what I propose. I posted it on IRC, but for more discussion I'm
posting it to the mailing lists now.

salsa.debian.org team
===
A group on salsa.debian.org has been created here:
https://salsa.debian.org/multimedia-team

Existing members of the alioth team have not been migrated over which
should help prune inactive members. Anyone who was a member of the
alioth team can click the "Request Access" button and an someone will
approve you.

Usually, team members who are DDs are given "Owner" permissions in the
group and other members are given "Master" permissions.

When creating a new project:
* The project name should be the same as the source package name.
* "Issues" should be disabled (use the BTS instead).
* A commit notification hooks should be setup (see below).

New Vcs-* URLs:

```
Vcs-Git: https://salsa.debian.org/multimedia-team/package.git
Vcs-Browser: https://salsa.debian.org/multimedia-team/package
```

https://lists.debian.org/debian-devel-announce/2017/12/msg3.html
https://wiki.debian.org/Salsa/Doc

New maintainer address
===
There is not going to be a replacement for alioth mailing lists, so we
are going to switch back to using "debian-multime...@lists.debian.org"
as the mailing list used in the Maintainer field of all packages.

https://lists.debian.org/debian-devel-announce/2017/09/msg4.html

Commit notifications
===
The commit mailing list is also on alioth and will soon be disabled.
This is replaced by the "Emails on push" integration on salsa which
sends emails to tracker.debian.org which you can subscribe to. This
needs to be enabled manually per project.

See: https://wiki.debian.org/Salsa/Doc#Email_notifications

IRC notifications can be enabled using Irker. Again this needs to be
enabled manually per project.

See: https://wiki.debian.org/Salsa/Doc#IRC_notifications

Automation
---
Enabling these should probably be automated and checked using the GitLab
API because inevitably someone will forget to enable it in a repository.

Eg for "Emails on push":

https://docs.gitlab.com/ee/api/services.html#emails-on-push
```
curl -X PUT -H "Private-Token: $GITLAB_API_PRIVATE_TOKEN" -F
"recipients=dispatch+${package}_...@tracker.debian.org"
https://salsa.debian.org/api/v4/projects/multimedia-team%2F${package}/services/emails-on-push
```

Migration
===
Migration of the maintainer email address can start immediately. New
packages can also immediately start hosting their VCS on salsa.debian.org.

For existing packages, I propose:
- Wait until salsa.debian.org is declared stable (expected at the end of
January)
- Announce to the lists before migration starts
- Set all repositories on alioth read-only (eg using a git pre-receive hook)
- Migrate everything to salsa using Christoph Berg's import script:
http://www.df7cb.de/blog/2017/Salsa_batch_import.html

At this point we should attempt to upload all packages at least once
before the mailing list on alioth is disabled. Unfortunately this is a
lot of work, so I am quietly hoping there will be an alternative
solution for this so we don't loose bug reports sent to the old
maintainer address.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: Request for review of soundtouch (security)

[James Cowgill]

Hi,

On 30/11/17 14:24, Gabor Karsay wrote:
> soundtouch has 3 low urgency security issues[0]. There is an upstream
> commit[1] that apparently fixes them, however without mentioning the
> issues or any bug references in the commit.
> 
> The full disclosure[2] of the CVEs provides 3 crafted wav files that can
> be run with soundstretch, the main consumer of libsoundtouch. 1 of the
> files causes an infinite loop (CVE-2017-9258), the others cause 2
> different crashes (CVE-2017-9259, CVE-2017-9260).
> 
> I stripped not directly related changes, applied the patch in sid and
> soundstretch returns for all 3 files with "Error: Excessive samplerate"
> (no loop, no crash).
> 
> I tested it only in unstable. I guess it should be also applied to
> wheezy, jessie, stretch, but I don't know how. Source and patch have
> Windows-style CRLF so that patch doesn't complain about line endings.

Sorry for the delay.

The patch you committed looked fine and I've uploaded it to unstable
along with some packaging updates.

I prepared uploads for stretch and jessie here:
https://anonscm.debian.org/cgit/pkg-multimedia/soundtouch.git/log/?h=debian/stretch
https://anonscm.debian.org/cgit/pkg-multimedia/soundtouch.git/log/?h=debian/jessie

These need to be approved by the release team before being uploaded:
https://bugs.debian.org/885531
https://bugs.debian.org/885533

Thanks!
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#885025: gerbera: FTBFS against upnp 1.8.3

[James Cowgill]

Source: gerbera
Version: 1.1.0+dfsg-2
Severity: important
Tags: sid buster fixed-upstream
Forwarded: https://github.com/gerbera/gerbera/issues/192
Control: block 884635 by -1

Hi,

Gerbera FTBFS with pupnp 1.8.3 in experimental as described in the
upstream bug report.

Fixed in this commit (unfortunately quite large):
https://github.com/gerbera/gerbera/commit/55396b59027f12a8da09e81a83c7565051466159

In addition, when the libupnp 1.8 transition begins, gerbera should
switch back to build-depending on libupnp-dev (instead of
libupnp1.8-dev).

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#885022: mpv: apt remove mpv removes mpv but installs mplayer at the same time, like apt install mplayer would

[James Cowgill]

Control: tags -1 moreinfo

Hi,

On 22/12/17 22:46, soverysour wrote:
> Package: mpv
> Severity: normal
> 
> Dear Maintainer,
> 
> Removing the mpv package (installed by default in lxde) removes it like
> expected but also installs mplayer exactly like `apt install mplayer` would.

I think this is the correct behavior.

LXDE does not depend on mpv directly - it depends on smplayer. smplayer
requires a copy of either mpv or mplayer to be installed. To ensure this
dependency remains satisfied, apt will install mplayer if you manually
remove mpv. If you want to remove both mpv and mplayer, you must also
remove smplayer.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#885005: vlc: VLC fails to start after upgrade to 3.0.0

[James Cowgill]

Control: tags -1 moreinfo

Hi,

On 22/12/17 19:57, KTown Knerd wrote:
> Package: src:vlc
> Version: 3.0.0~rc2-2
> Severity: important
> 
> Dear Maintainer,
> 
> *** Reporter, please consider answering these questions, where appropriate ***
> 
>* What led up to the situation? Upgrade to 3.0.0
>* What exactly did you do (or not do) that was effective (or
>  ineffective)? console executed vlc. Removed using apt-get remove --purge
> and re-installed. Rebooted machine. All resulted in the same error message
>* What was the outcome of this action? received error message:VLC media
> player 2.2.1 Terry Pratchett (Weatherwax) (revision 2.2.1-0-ga425c42)
> vlc: unknown option or missing mandatory argument `--dbus'
> Try `vlc --help' for more information.
>* What outcome did you expect instead? vlc to load
[...]
> Versions of packages libvlc-bin depends on:
[...]
> ii  libvlc5  1:2.2.1-dmo10
> 
> Versions of packages vlc-bin depends on:
[...]
> ii  libvlc5 1:2.2.1-dmo10
> 
> Versions of packages vlc-plugin-base depends on:
[...]
> ii  libdca0  0.0.5-dmo2
[...]
> ii  libx264-148  3:0.148.2597+gite86f3a1-dmo1

There is no support for configurations involving third party packages
from deb-multimedia.org. Try replacing the versions of the above
packages with official copies from the Debian repositories.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#884138: ffmpeg: scientific notation used for speed in progress bar

[James Cowgill]

Hi,

On 11/12/17 21:24, Thorsten Glaser wrote:
> Package: ffmpeg
> Version: 7:3.4-4+b2
> Severity: wishlist
> 
> size=   71457kB time=01:10:25.91 bitrate= 138.5kbits/s speed=1.4e+03x 
> 
> I guess my computer is just too fast for that task ☺ Command was:
> for x in *.mp4; do ffmpeg -i "$x" -vn -sn -c:a copy ./"${x%.mp4}.wma"; done
> So basically just switching containers (WMA is the only one that is
> streamable by “ssh otherbox cat foo | mplayer -”, neither M4A nor
> MPEG-TS are) and ditching all but the audio track.

I can also get this by piping silence into the null sink. It goes really
fast if you sent the sample rate stupidly low :)
$ ffmpeg -f lavfi -i anullsrc -f null -
size=N/A time=00:32:47.49 bitrate=N/A speed=1.34e+03x
$ ffmpeg -f lavfi -i anullsrc=r=1 -f null -
size=N/A time=18250:48:32.00 bitrate=N/A speed=5.45e+07x

The speed output is controlled by a printf format specifier here:
https://anonscm.debian.org/cgit/pkg-multimedia/ffmpeg.git/tree/fftools/ffmpeg.c?h=debian/7%253.4.1-1#n1806

I guess you want to change it to "%5.4gx" or something else? The point
where we change from normal to scientific notation is fairly arbitrary.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: libgig upload to experimental

[James Cowgill]

Hi,

On 27/11/17 12:49, Jaromír Mikeš wrote:
> Hi,
> 
> libgig bumped soname so it should go trough transition.
> Can someone upload libgig to experimental please?

The tarball in pristine-tar does not match the one downloaded by uscan.
Do you know why?

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: calf package failed build

[James Cowgill]

Hi,

On 27/11/17 13:28, Jonas Smedegaard wrote:
> NB! I notice you bumped debhelper compatibility but did not mention why 
> - please consider reverting that change unless you know of a concrete 
> need for more modern debhelper version that is available in oldstable, 
> as tightening makes backporting more complex.

Isn't debhelper 10 in oldstable-backports?

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#875192: [simplescreenrecorder] Future Qt4 removal from Buster

[James Cowgill]

Hi,

On 26/11/17 13:27, Lisandro Damián Nicanor Pérez Meyer wrote:
> El 26 nov. 2017 10:24 a.m., "Lisandro Damián Nicanor Pérez Meyer" <
> perezme...@gmail.com> escribió:
> 
> El 26 nov. 2017 10:22 a.m., "James Cowgill" <jcowg...@debian.org> escribió:
> 
> Hi,
> [...]
> 
>> The only minor thing I noted is that QPainter is included twince in
> 0003*, but
>> definitely nothing to worry too much.
> 
> I have applied the patches with some slight modifications:
> - Remove the duplicate QPainter include.
> - Use DEB_CXXFLAGS_MAINT_APPEND instead of overriding QT5_CFLAGS.
> 
> 
> It might be worth to note that that
> 
> My son little G came and pressed the right key to send the mail ;-)

Not to worry :)

> I was about to write that that flag should be already present if the
> project is using cmake or qmake. I have not checked the build system.

The build system is autotools and it uses pkg-config to discover all the
Qt libs and cflags etc. I did do some Google searching and I did notice
that CMake would fix this up for you, but I couldn't find anything about
this with autotools. I think adding -fPIC is fine for the moment, even
if it's only a workaround.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#875192: [simplescreenrecorder] Future Qt4 removal from Buster

[James Cowgill]

Hi,

On 25/11/17 17:22, Lisandro Damián Nicanor Pérez Meyer wrote:
> On sábado, 25 de noviembre de 2017 05:37:36 -03 gregor herrmann wrote:
>> Control: tag -1 + patch
> [snip]
>> simplescreenrecorder bascially has Qt5 support upstream.
>> With a bit of trial I managed to build the package, and the
>> binary also seems to work afterwards :)
>>
>> Find attached my changes
>> - as one diff
>> - as 3 git patches against HEAD of the packaging repo
> 
> Thanks gregor!!!
> 
> The only minor thing I noted is that QPainter is included twince in 0003*, 
> but 
> definitely nothing to worry too much.

I have applied the patches with some slight modifications:
- Remove the duplicate QPainter include.
- Use DEB_CXXFLAGS_MAINT_APPEND instead of overriding QT5_CFLAGS.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#881732: soundconverter: required gstreamer element 'fakesink' not found.

[James Cowgill]

Hi,

On 14/11/17 15:43, jEsuSdA wrote:
> Package: soundconverter
> Version: 3.0.0~beta1-2
> Severity: important
> 
> Dear Maintainer,
> 
> Soundconverter is unable to start with regular user. It starts and works with
> root user.
> 
> $ → soundconverter
> SoundConverter 3.0.0-beta1
>   using GTK version: 3.0
>   using Gstreamer version: 1.12.3.0
>   using 4 thread(s)
> required gstreamer element 'fakesink' not found.
> 
> 
> Any idea about the problem?

I'm not too sure. Can you try running some commands from
gstreamer1.0-tools as a test.

Eg does this work (should print lots of info):
 gst-inspect-1.0 fakesink

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: [SCM] audacity/master: Build without sbsms to fix FTBFS on non-x86 archs. (Closes: #882173)

[James Cowgill]

Hi,

On 24/11/17 17:39, Jaromír Mikeš wrote:
> 2017-11-24 14:37 GMT+01:00 James Cowgill <jcowg...@debian.org>:
>> On 24/11/17 11:08, Jaromír Mikeš wrote:
>>> 2017-11-20 21:08 GMT+01:00 <mira-gu...@users.alioth.debian.org>:
>>>
>>>> The following commit has been merged in the master branch:
>>>> commit fa79381b2f34c2af651c05a2b433ae20e4ec9007
>>>> Author: Jaromír Mikeš <mira.mi...@seznam.cz>
>>>> Date:   Mon Nov 20 21:08:12 2017 +0100
>>>>
>>>> Build without sbsms to fix FTBFS on non-x86 archs. (Closes: #882173)
>>>>
>>>> diff --git a/debian/rules b/debian/rules
>>>> index 34d3389..6970493 100755
>>>> --- a/debian/rules
>>>> +++ b/debian/rules
>>>> @@ -21,10 +21,9 @@ configure_flags := \
>>>> --with-midi=system \
>>>> --with-portaudio=system \
>>>> --with-portsmf=system \
>>>> -#  --with-sbsms=system \
>>>> --with-soundtouch=system \
>>>> +   --without-sbsms \
>>>> $(NULL)
>>>> -
>>>>  %:
>>>> dh $@
>>>
>>>
>>> ​Hi,
>>>
>>> maybe even better would be build without sbsms conditionally on all archs
>>> except amd64? ​
>>> https://buildd.debian.org/status/package.php?p=audacity=sid
>>>
>>> Can someone implement such a condition in d/rules?
>>
>> Your patch doesn't actually fix the bug (use of sse on non-amd64). The
>> attached patch allows sbsms to work on all architectures while disabling
>> sse on all non-amd64 architectures.
>>
>> Also note that this line of your original code was wrong:
>>  #  --with-sbsms=system \
>>
>> Because there is a line continuation, this will also comment out the
>> "--with-soundtouch=system" on the next line. I've fixed that by using
>> "--with-sbsms=local" instead.
>>
> 
> ​Thank you James for fixing this.
> Can you provide DM flag for me to I can upload audacity do unstable now?

Should be done now.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#882384: ffmpeg: Gratuitous valgrind log

[James Cowgill]

Hi,

On 25/11/17 04:41, Kingsley G. Morse Jr. wrote:
> Hi Carl,
> 
>> Nearly all messages seem to relate to melt, not FFmpeg.
> 
> Thanks for your informed thoughts.
> 
>> Can you reproduce any issues with ffmpeg (the executable)?
>>
>> The crc issue surprises me a little: Can you produce different
>> output files if you use the valgrind option --malloc-fill?
> 
> Sure.
> 
> A script is attached.
> 
> It uses ffmpeg, without melt.
> 
> I also attached two log files from valgrind.
> 
> One ran it with --malloc-fill.
> 
> The other didn't.

None of the valgrind errors in your log are from ffmpeg. They all seem
to be caused by either glib or gobject.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#882598: libavutil55: segfault after upgrade

[James Cowgill]

Hi,

On 24/11/17 15:40, James Cowgill wrote:
> Control: severity -1 grave
> Control: retitle -1 libavutil55: ABI broken by "add vector_dmac_scalar()"
> Control: forwarded -1 https://trac.ffmpeg.org/ticket/6861
> Control: tag -1 - moreinfo
> Control: found -1 7:3.4-1
> 
> On 24/11/17 14:46, Carl Eugen Hoyos wrote:
>> Hi!
>>
>> I created FFmpeg ticket #6861, thank you for the report!
>> https://trac.ffmpeg.org/ticket/6861
> 
> That is not a nice bug.
> 
> I'll have to think about the best way to handle this. I guess we will
> have to revert the ABI breaking commit, identify the packages which are
> broken (including ffmpeg itself like in this bug), add some Breaks for
> them, and finally binNMU them. Alternatively we could force an ABI
> transition and rebuild everything, but I'm not sure if I want to do
> that (especially since we'll have to do another in a few months anyway).

On closer inspection (and reading the upstream bug), the ABI break
occurs in the private float_dsp.h header and the only consumers are
libavcodec and libavfilter. This makes things much easier than I
originally thought since the breakage is internal to ffmpeg.

I think this can be fixed by keeping the new ABI and use package
dependencies to enforce that it's used only with 3.4.

We need to ensure 3.4 libavcodec/libavfilter uses 3.4 libavutil, but
this is already guaranteed through the existing symbols system. We then
need to prevent 3.4 libavutil from being used with pre-3.4
libavcodec/libavfilter by adding this to libavutil55:

Breaks:
 libavcodec57 (<< 7:3.4),
 libavcodec-extra57 (<< 7:3.4),
 libavfilter6 (<< 7:3.4),
 libavfilter-extra6 (<< 7:3.4)

I think that will fix the bug. Can anyone see anything I've missed?

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: [SCM] gsequencer/master: fix missing build dependencies in debian/tests/control

[James Cowgill]

On 24/11/17 17:35, Jonas Smedegaard wrote:
> Quoting James Cowgill (2017-11-24 17:18:25)
>> On 24/11/17 16:15, jkraehemann-gu...@users.alioth.debian.org wrote:
>>> The following commit has been merged in the master branch:
>>> commit 99483a11ecdd167d4e87ed74fffd31ca53ff998a
>>> Author: Joël Krähemann <jkraehem...@gmail.com>
>>> Date:   Fri Nov 24 17:13:13 2017 +0100
>>>
>>> fix missing build dependencies in debian/tests/control
>>>
>>> diff --git a/debian/tests/control b/debian/tests/control
>>> index a830078..1dfbb57 100644
>>> --- a/debian/tests/control
>>> +++ b/debian/tests/control
>>> @@ -16,4 +16,24 @@ Depends:
>>>   xvfb,
>>>   fakeroot,
>>>   libgtk2.0-dev,
>>> + debhelper,
>>> + gettext,
>>> + libcunit1-dev,
>>> + xauth,
>>> + libinstpatch-dev,
>>> + libsndfile1-dev,
>>> + libsamplerate-dev,
>>> + libxml2-dev,
>>> + ladspa-sdk,
>>> + dssi-dev,
>>> + lv2-dev,
>>> + libgmp-dev,
>>> + libasound2-dev,
>>> + libjack-dev,
>>> + libpulse-dev,
>>> + uuid-dev,
>>> + docbook-xsl,
>>> + docbook-xml,
>>> + gtk-doc-tools,
>>> + xsltproc
>>
>> Probably best to get rid of all of those and use '@builddeps@' instead.
> 
> Please elborate, I don't know that trick.

https://anonscm.debian.org/cgit/autopkgtest/autopkgtest.git/tree/doc/README.package-tests.rst#n115

"
``@builddeps@`` will be replaced by the package's
``Build-Depends:``, ``Build-Depends-Indep:``, and
``build-essential``. This is useful if you have many build
dependencies which are only necessary for running the test suite and
you don't want to replicate them in the test ``Depends:``. However,
please use this sparingly, as this can easily lead to missing binary
package dependencies being overlooked if they get pulled in via
build dependencies.
"

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: [SCM] gsequencer/master: fix missing build dependencies in debian/tests/control

[James Cowgill]

Hi,

On 24/11/17 16:15, jkraehemann-gu...@users.alioth.debian.org wrote:
> The following commit has been merged in the master branch:
> commit 99483a11ecdd167d4e87ed74fffd31ca53ff998a
> Author: Joël Krähemann 
> Date:   Fri Nov 24 17:13:13 2017 +0100
> 
> fix missing build dependencies in debian/tests/control
> 
> diff --git a/debian/tests/control b/debian/tests/control
> index a830078..1dfbb57 100644
> --- a/debian/tests/control
> +++ b/debian/tests/control
> @@ -16,4 +16,24 @@ Depends:
>   xvfb,
>   fakeroot,
>   libgtk2.0-dev,
> + debhelper,
> + gettext,
> + libcunit1-dev,
> + xauth,
> + libinstpatch-dev,
> + libsndfile1-dev,
> + libsamplerate-dev,
> + libxml2-dev,
> + ladspa-sdk,
> + dssi-dev,
> + lv2-dev,
> + libgmp-dev,
> + libasound2-dev,
> + libjack-dev,
> + libpulse-dev,
> + uuid-dev,
> + docbook-xsl,
> + docbook-xml,
> + gtk-doc-tools,
> + xsltproc

Probably best to get rid of all of those and use '@builddeps@' instead.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#882598: libavutil55: segfault after upgrade

[James Cowgill]

Control: severity -1 grave
Control: retitle -1 libavutil55: ABI broken by "add vector_dmac_scalar()"
Control: forwarded -1 https://trac.ffmpeg.org/ticket/6861
Control: tag -1 - moreinfo
Control: found -1 7:3.4-1

On 24/11/17 14:46, Carl Eugen Hoyos wrote:
> Hi!
> 
> I created FFmpeg ticket #6861, thank you for the report!
> https://trac.ffmpeg.org/ticket/6861

That is not a nice bug.

I'll have to think about the best way to handle this. I guess we will
have to revert the ABI breaking commit, identify the packages which are
broken (including ffmpeg itself like in this bug), add some Breaks for
them, and finally binNMU them. Alternatively we could force an ABI
transition and rebuild everything, but I'm not sure if I want to do
that (especially since we'll have to do another in a few months anyway).

Antoni, you should be able to fix your specific problem by upgrading all
the ffmpeg related packages (libav* etc) to 3.4.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: [SCM] gsequencer/master: try to determine host by gcc -v

[James Cowgill]

Hi,

On 24/11/17 15:33, jkraehemann-gu...@users.alioth.debian.org wrote:
> The following commit has been merged in the master branch:
> commit a2b6e5cf9fbdc567e24b607ae9dbdd6ad66c42c0
> Author: Joël Krähemann 
> Date:   Fri Nov 24 16:32:49 2017 +0100
> 
> try to determine host by gcc -v
> 
> diff --git a/debian/tests/ags-integration-test 
> b/debian/tests/ags-integration-test
> index a40d00e..7710498 100644
> --- a/debian/tests/ags-integration-test
> +++ b/debian/tests/ags-integration-test
> @@ -3,5 +3,6 @@ set -e
>  
>  dpkg-source --before-build `pwd`
>  dpkg-buildpackage -rfakeroot --target=pre-integration-test
> -export LD_LIBRARY_PATH=/usr/lib/x86_64-linux-gnu/gsequencer:$LD_LIBRARY_PATH
> +export HOST=`gcc -v - 2>&1 | awk 'match($0, /--host=([a-z0-9_-]+)/,m) { 
> print m[1]; }'`
> +export LD_LIBRARY_PATH=/usr/lib/$HOST/gsequencer:$LD_LIBRARY_PATH
>  xvfb-run --server-args="-screen 0 1920x1080x24" make ags-integration-test

This is broken in so many ways.

Use $(dpkg-architecture -qDEB_HOST_MULTIARCH)

James




signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#882601: sox: bug-presubj contains ill formed english

[James Cowgill]

Package: sox
Version: 14.4.2-2
Severity: normal

Hi,

Currently bug-presubj contains this:
> If the bug you gonna report is rather upstream
> please consider to report it to upstream developers.
> sox-de...@lists.sourceforge.net

This is not grammatically correct English. I think this better:

"
If the bug you are about to report is not Debian specific, please
consider reporting it to the upstream developers at:
 sox-de...@lists.sourceforge.net
"



As a side note (since I guess this is a maintainer decision), I think
that telling users in general to report bugs upstream is a bad idea.
Often it is difficult to tell if a bug is Debian specific. I does depend
on how accepting an upstream is - I know quite a few upstreams which do
not like bugs reported for older versions which Debian often uses.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#882598: libavutil55: segfault after upgrade

[James Cowgill]

Control: tags -1 moreinfo

Hi,

On 24/11/17 13:38, Antoni Villalonga wrote:
> Package: libavutil55
> Version: 7:3.4-3
> Severity: normal
> 
> Dear Maintainer,
> 
> After upgrade to sid ffmpeg tools start to segfault like this:
> [370710.121304] read_thread[9924]: segfault at 7feff8051ce0 ip 
> 7fef350b7943 sp 7fef07386ea8 error 4 in 
> libavutil.so.55.78.100[7fef35069000+67000]
> 
> After downgrading libavutil55 to 7:3.3.4-2+b3 ffmpeg tools starts working
> again.

Please can you provide the full ffmpeg command and any input files you
are using.

What is "read_thread"?

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#882599: sox: dpkg-source complains about 0005-CVE-2017-15371.patch

[James Cowgill]

Source: sox
Version: 14.4.2-2
Severity: minor

Hi,

dpkg-source complains when unpacking sox 14.4.2-2:
> dpkg-source: info: extracting sox in sox-14.4.2
> dpkg-source: info: unpacking sox_14.4.2.orig.tar.bz2
> dpkg-source: info: unpacking sox_14.4.2-2.debian.tar.xz
> dpkg-source: info: applying 0001-fix-build.patch
> dpkg-source: info: applying 0003-spelling.patch
> dpkg-source: info: applying 0005-CVE-2017-15371.patch
> dpkg-source: warning: unexpected end of diff 
> 'sox-14.4.2/debian/patches/0005-CVE-2017-15371.patch'
> dpkg-source: info: applying 0006-CVE-2017-11358.patch
> dpkg-source: info: applying 0007-CVE-2017-15370.patch
> dpkg-source: info: applying 0008-CVE-2017-11332.patch
> dpkg-source: info: applying 0009-CVE-2017-11359.patch
> dpkg-source: info: applying 0010-wavpack_check_errors.patch
> dpkg-source: info: applying 0011-lintian-man-sox.patch
> dpkg-source: info: applying 0012-xa-validate-channel-count.patch
> dpkg-source: info: applying 0013-CVE-2017-15372.patch
> dpkg-source: info: applying 0014-CVE-2017-15642.patch
> dpkg-source: info: applying 0015-Handle-vorbis_analysis_headerout-errors.patch

The patch does apply though, so this is only a minor bug.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Re: [SCM] audacity/master: Build without sbsms to fix FTBFS on non-x86 archs. (Closes: #882173)

[James Cowgill]

Hi,

On 24/11/17 11:08, Jaromír Mikeš wrote:
> 2017-11-20 21:08 GMT+01:00 :
> 
>> The following commit has been merged in the master branch:
>> commit fa79381b2f34c2af651c05a2b433ae20e4ec9007
>> Author: Jaromír Mikeš 
>> Date:   Mon Nov 20 21:08:12 2017 +0100
>>
>> Build without sbsms to fix FTBFS on non-x86 archs. (Closes: #882173)
>>
>> diff --git a/debian/rules b/debian/rules
>> index 34d3389..6970493 100755
>> --- a/debian/rules
>> +++ b/debian/rules
>> @@ -21,10 +21,9 @@ configure_flags := \
>> --with-midi=system \
>> --with-portaudio=system \
>> --with-portsmf=system \
>> -#  --with-sbsms=system \
>> --with-soundtouch=system \
>> +   --without-sbsms \
>> $(NULL)
>> -
>>  %:
>> dh $@
> 
> 
> ​Hi,
> 
> maybe even better would be build without sbsms conditionally on all archs
> except amd64? ​
> https://buildd.debian.org/status/package.php?p=audacity=sid
> 
> Can someone implement such a condition in d/rules?

Your patch doesn't actually fix the bug (use of sse on non-amd64). The
attached patch allows sbsms to work on all architectures while disabling
sse on all non-amd64 architectures.

Also note that this line of your original code was wrong:
 #  --with-sbsms=system \

Because there is a line continuation, this will also comment out the
"--with-soundtouch=system" on the next line. I've fixed that by using
"--with-sbsms=local" instead.

James
diff --git a/debian/rules b/debian/rules
index 69704937..16108db4 100755
--- a/debian/rules
+++ b/debian/rules
@@ -1,5 +1,7 @@
 #!/usr/bin/make -f
 
+include /usr/share/dpkg/architecture.mk
+
 export DEB_LDFLAGS_MAINT_APPEND=-Wl,-z,defs -Wl,--as-needed
 
 export DEB_BUILD_MAINT_OPTIONS = hardening=+all
@@ -21,9 +23,16 @@ configure_flags := \
--with-midi=system \
--with-portaudio=system \
--with-portsmf=system \
+   --with-sbsms=local \
--with-soundtouch=system \
-   --without-sbsms \
$(NULL)
+
+ifeq ($(DEB_HOST_ARCH_CPU),amd64)
+configure_flags += --enable-sse=yes
+else
+configure_flags += --enable-sse=no
+endif
+
 %:
dh $@
 


signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#882454: gerbera: FTBFS on hurd-i386: Gerbera was unable to deterimine the host OS.

[James Cowgill]

Control: tags -1 fixed-upstream

Hi,

On 23/11/17 03:53, Aaron M. Ucko wrote:
> Source: gerbera
> Version: 1.1.0+dfsg-2
> Severity: important
> Tags: upstream
> Justification: fails to build from source
> User: debian-h...@lists.debian.org
> Usertags: hurd-i386
> 
> Builds of gerbera for hurd-i386 (admittedly not a release
> architecture) have been failing per the below excerpt from
> https://buildd.debian.org/status/fetch.php?pkg=gerbera=hurd-i386=1.1.0%2Bdfsg-2=1511312309=0:
> 
>   CMake Error at CMakeLists.txt:314 (message):
> Gerbera was unable to deterimine the host OS.  Please report this.  Value
> of CMAKE_SYSTEM_NAME: GNU
> 
> Could you please take a look?  With any luck, the Linux settings will
> make a decent starting point.

Should be fixed upstream in:
https://github.com/gerbera/gerbera/commit/29149374c3684659f73f19cb8c1486ab4258c1be

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#882384: ffmpeg: Gratuitous valgrind log

[James Cowgill]

Hi,

On 22/11/17 00:10, Kingsley G. Morse Jr. wrote:
> Package: ffmpeg
> Version: 7:3.4-3
> Severity: normal
> 
> Hey guys,
> 
> Thank you very much for maintaining Debian's
> ffmpeg package.
> 
> It's been an enormous source of fun.
> 
> In the course of chasing down a different bug, I
> had the opportunity to run "melt" with valgrind.
> 
> Valgrind reported more ffmpeg problems than I
> expected.
> 
> It's log is attached.

I think you forgot to attach the log?

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#845874: fixed in gerbera

[James Cowgill]

Source: gerbera
Source-Version: 1.0.0-1

This is fixed in gerbera 1.0.0. It is not fixed in mediatomb, but
mediatomb is due to be removed anyway.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#841224: fixed in gerbera

[James Cowgill]

Source: gerbera
Source-Version: 1.0.0-1

This is now fixed in gerbera 1.0.0 which uses the system copy of libupnp
1.8. Mediatomb is not shipped in stable or oldstable, so the security
bugs don't appear there.

Thanks,
James




signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#870936: mediatomb: should mediatomb be removed from unstable?

[James Cowgill]

Control: reassign -1 ftp.debain.org
Control: retitle -1 RM: mediatomb -- RoM; dead upstream, obsoleted by gerbera

Hi,

On 06/08/17 19:00, James Cowgill wrote:
> On 06/08/17 09:50, Lucas Nussbaum wrote:
>> Source: mediatomb
>> User: debian...@lists.debian.org
>> Usertags: qa-removals-post-stretch
>>
>> Hi,
>>
>> Following a discussion[1] on the debian-qa@ mailing list on packages that
>> missed both jessie and stretch, I am proposing the removal of this package 
>> from
>> unstable, because:
>>
>>   it was in unstable at the time of the stretch freeze
>> but wasn't part of stretch
>> AND
>>   it was in unstable at the time of the jessie freeze
>> but it wasn't part of jessie
>> AND
>>   it is still not in testing
>> AND
>>   it was not uploaded since the beginning of 2017.
> 
> The answer is: yes it definitely should be removed.
> 
> However, there is a replacement fork called gerbera (which I haven't
> finished packaging yet) and I don't want to lose all the open bugs
> against mediatomb which may also apply to gerbera. I'm going to try and
> finish it some time during DebConf so hopefully this won't be an issue...

gerbera is now in unstable, and I've reassigned all of mediatomb's bugs
to it. I therefore think mediatomb can be removed now.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#882224: bs1770gain: enable dh-autoreconf

[James Cowgill]

Source: bs1770gain
Version: 0.4.12-2
Severity: wishlist

Hi,

bs1770gain contains a build-dependency on dh-autoreconf, but since it
uses compat 9 and does not enable it manually, it is never used. This
looks like an oversight to me.

Thanks,
James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#882204: bs1770gain: FTBFS

[James Cowgill]

Hi,

On 20/11/17 12:11, Jaromír Mikeš wrote:
> ​I am build outside from chroot to test build with new libsox.

You should be using sbuild or pbuilder for test builds.

> it builds fine inside of chroot with old libsox.
> 
> ​Can you try please
> $ dpkg-buildpackage -us -uc
> 
> with orig tar.ball obtained from here:
> http://cdn-fastly.deb.debian.org/debian/pool/main/b/bs1770gain/bs1770gain_0.4.12.orig.tar.gz

I did an "apt-get source bs1770gain" and built it outside of a chroot
and it still builds ok.

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#882204: bs1770gain: FTBFS

[James Cowgill]

Control: severity -1 serious
Control: tags -1 moreinfo
Control: block 882200 by -1

Hi,

On 20/11/17 08:17, Jaromír Mikeš wrote:
> Package: bs1770gain
> Version: 0.4.12-2
> Severity: important
> 
> Dear Maintainer,
> 
> your package fails to build with following error:
> /missing: line 81: aclocal-1.14: command not found
> WARNING: 'aclocal-1.14' is missing on your system.
>  You should only need it if you modified 'acinclude.m4' or
>  'configure.ac' or m4 files included by 'configure.ac'.
>  The 'aclocal' program is part of the GNU Automake package:
>  
>  It also requires GNU Autoconf, GNU m4 and Perl in order to run:
>  
>  
>  
> Makefile:330: recipe for target 'aclocal.m4' failed

I cannot reproduce this failure, although I notice the package doesn't
use dh-autoreconf which would prevent a bug such as this. Maybe you
touched some file which caused automake to try to regenerate everything?
Do you have the full build log?

James



signature.asc
Description: OpenPGP digital signature
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers