-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Mon, 30 Sep 2019 11:51:00 +0100
Source: dbus
Architecture: source
Version: 1.13.12-2
Distribution: experimental
Urgency: medium
Maintainer: Utopia Maintenance Team
<pkg-utopia-maintain...@lists.alioth.debian.org>
Changed-By: Simon McVittie <s...@debian.org>
Closes: 867263 897607 908092 928877 930375
Changes:
dbus (1.13.12-2) experimental; urgency=medium
.
* Add bug number to 1.13.12-1 changelog entry
* Merge packaging changes from unstable
* d/p/tests-Skip-system-bus-test-if-we-are-root-but-messagebus-.patch,
d/p/tests-Skip-if-unable-to-launch-uninstalled-dbus-daemon-as.patch,
d/p/auth-Clear-GUID-from-server-if-out-of-memory.patch,
d/p/bus-Make-audit-initialization-idempotent.patch,
d/p/bus-tests-Shut-down-audit-socket.patch:
Fix test failures when build-time tests are run as root (in
particular this happens when the CI pipeline runs reprotest)
.
dbus (1.12.16-2) unstable; urgency=medium
.
* Add bug number to previous changelog entry
* Standards-Version: 4.4.1 (no changes required)
- Note that dbus-user-session still has its previous dependencies,
and has deliberately not been switched to the new default-logind
virtual package. dbus-user-session relies on systemd --user: it
is not enough to have systemd-logind or a compatible replacement
like elogind.
* d/dbus.init: Work around #940971 in libnss-systemd.
If we are booting with a non-systemd init but libnss-systemd is still
installed, tell libnss-systemd not to try to connect to dbus-daemon,
which is never going to work well from inside dbus-daemon.
* dbus.postinst: Append dbus to /run/reboot-required.pkgs on upgrade
(Closes: #867263)
.
dbus (1.12.16-1) unstable; urgency=medium
.
* New upstream stable release
- CVE-2019-12749: Do not attempt to carry out DBUS_COOKIE_SHA1
authentication for identities that differ from the user running the
DBusServer. Previously, a local attacker could manipulate symbolic
links in their own home directory to bypass authentication and
connect to a DBusServer with elevated privileges. The standard
system and session dbus-daemons in their default configuration were
immune to this attack because they did not allow DBUS_COOKIE_SHA1,
but third-party users of DBusServer such as Upstart could be
vulnerable. (Closes: #930375)
.
dbus (1.12.14-1) unstable; urgency=medium
.
* New upstream release
- Improve fd limit handling so that system services launched by
traditional activation get the intended limit (Closes: #928877)
* d/rules, d/tests: Run automated tests with DBUS_TEST_MALLOC_FAILURES=0.
Testing the code paths for memory allocation failures is too slow
to do routinely as a downstream.
* d/tests/system-bus: Add a smoke-test for traditional activation,
and a smoke-test for systemd activation on systems booted with systemd.
.
dbus (1.12.12-1) unstable; urgency=medium
.
[ Ritesh Raj Sarraf ]
* Explicitly set session and test socket directory to /tmp, instead
of using a (possibly non-standard) TMPDIR
.
[ Simon McVittie ]
* New upstream stable release
* d/tests/build: Mark as superficial (see #904979)
* d/tests/build: Comment why we don't test or support static linking
here (it's because libsystemd doesn't)
* Standards-Version: 4.2.1 (no changes required)
* d/p/dbus-daemon-test-Don-t-test-fd-limits-if-in-an-unprivileg.patch:
Add proposed patch to skip fd limit tests if we are uid 0 but do not
have CAP_SYS_RESOURCE (Closes: #908092)
* dbus: Drop dependency on lsb-base. It is only needed when booting
with sysvinit and initscripts, but initscripts already Depends on
lsb-base (see #864999).
* dbus: Add Provides: dbus-system-bus and Provides: dbus-bin.
This provides a way to split the package in a later Debian version
or in derivatives. dbus-system-bus represents the well-known system
bus facility (/lib/systemd/system/dbus.service and /etc/init.d/dbus),
while dbus-bin represents the availability of executables like
dbus-daemon and dbus-send.
* d/tests/system-bus: Add a smoke-test for the system bus
.
dbus (1.12.10-1) unstable; urgency=medium
.
* New upstream release
- Drop patches that were applied upstream
* Standards-Version: 4.1.5 (no changes required)
* Don't run the build-time tests for the debug build in parallel.
Some of the tests added by the debug build start many processes,
and the debug build's tests have intermittently been timing out on
reproducible-builds infrastructure, possibly because these machines
run with a high "make -j" value and more than one multi-processing
test gets run at the same time.
.
dbus (1.12.8-3) unstable; urgency=medium
.
* d/rules: If tests fail, continue to run all tests before reporting
failure
* d/rules: On success or failure, output all test logs for comparison
(in particular this lets us see how close we are to arbitrary
timeouts on slower architectures)
* d/p/debian/tests-Multiply-timeouts-by-20-on-riscv64.patch:
Compensate for the riscv64 port being bootstrapped on
qemu-system-riscv64 by multiplying arbitrary timeouts by 20
(Closes: #897607)
* d/rules: Use nss_wrapper to ensure that 127.0.0.1 and localhost
can be resolved successfully, fixing build-time tests in pbuilder
with the network namespace unshared (see #897662)
* d/rules: Make sure the X11 DISPLAY (if any) doesn't leak into the
test environment, fixing build-time tests if /tmp is unshared
* d/p/sysdeps-unix-Handle-errors-from-getaddrinfo-correctly.patch:
Add patch from upstream dbus-1.12 branch to fix getaddrinfo error
reporting for tcp: and nonce-tcp: transports
* d/p/server-oom-test-Parse-the-address-instead-of-going-direct.patch,
d/p/test-Test-the-same-things-with-unix-that-we-do-with-tcp.patch,
d/p/server-oom-test-Don-t-assume-localhost-is-resolvable.patch,
test-Skip-TCP-tests-if-getaddrinfo-doesn-t-work.patch:
Add patches from upstream dbus-1.12 branch to improve test robustness
and coverage when getaddrinfo doesn't work
.
dbus (1.12.8-2) unstable; urgency=medium
.
* Remove debian/dbus-tests.shlibs.local. It was useful before 1.11.10-2
to make dbus-tests depend on the debug build in dbus-1-dbg, but now
that the debug build is itself in dbus-tests, making dbus-tests
depend on itself is not useful. It also suppressed the generated
dependency on libdbus-1-3 (= ${binary:Version}), causing autopkgtest
failures when only dbus-tests was upgraded.
.
dbus (1.12.8-1) unstable; urgency=medium
.
* New upstream stable release
* Standards-Version: 4.1.4 (no changes required)
* tests: Use AUTOPKGTEST_TMP in preference to deprecated ADTTMP
* tests: Make sure $HOME is set to somewhere we can write (workaround for
#897170)
* Build ducktype documentation, unless building with nodoc
- Build-depend on ducktype and yelp-tools
.
dbus (1.12.6-2) unstable; urgency=medium
.
* New upstream stable release 1.12.6
* d/tests/root: Re-run test-dbus-daemon as root, since it now contains
tests that are skipped as non-root
* There was no 1.12.6-1 due to a mistake with `git tag`
Checksums-Sha1:
be70a6180a922c2db3b96df6129983aaa925f1f3 3911 dbus_1.13.12-2.dsc
4a8f0dc8cf396be7cd516a16c330f249f21b3d0c 67424 dbus_1.13.12-2.debian.tar.xz
f6919d325787a130e488f63929fa230c2cda2f0a 7376 dbus_1.13.12-2_source.buildinfo
Checksums-Sha256:
688c2be305a3d81671840ae1bcbeae39c5be50fdc707fd093dffb412ee464ad1 3911
dbus_1.13.12-2.dsc
592027053b5624a397c168faf507d132389820a1e9fc5ebbadb23ebe93a6ac14 67424
dbus_1.13.12-2.debian.tar.xz
6bda56d31e1fa329b8c732f16ef3aa1981d2459602995547fcad5fcd7562b5fe 7376
dbus_1.13.12-2_source.buildinfo
Files:
53ee1252030638a1f263939b7454872c 3911 admin optional dbus_1.13.12-2.dsc
22fd7c46c92850dcbee61e911c22de3a 67424 admin optional
dbus_1.13.12-2.debian.tar.xz
544fed06ad2cd727a861adeb39077128 7376 admin optional
dbus_1.13.12-2_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iQJEBAEBCAAuFiEENuxaZEik9e95vv6Y4FrhR4+BTE8FAl2SBdoQHHNtY3ZAZGVi
aWFuLm9yZwAKCRDgWuFHj4FMT746D/4rEYo7W35JKO4kXqGBBeq3RT/nzbG7uKXk
XoOXJuXT6hGe9zyC1O1rV6uhYhXA4ovWQXa5bmYeZM0/WjOlnC1+UJ+Z0GHa60dZ
ozSSBL8jHM957ucvcYXNgv57fQ0crLXiPZsa3q9jR4g9Czrg8r1V9TDjLFtfd1LJ
/gl8YpILo7MD+xUGich42B5QSh2V680Rx0cUzOeDDBjfDgeE6eq2hHgs6AmGuu5P
qsR9SlChrT4LwPoB3RiIR9d84/840PdshMNQxiITJWIjkOUAMC1jEs7bx1TjpmpM
e+v9OnjNa/IMaQjOL74nq0JbEeo0LdrNQpMNs5M69FjEAPUjR9UMdo8Udrmtq/FZ
34B9XRQCJRruQEq9UMLnmdRFCymqGVuv1kl3f9YR/XiPQzH7PN9DkSVJviCmJ54j
hlR5DmlTjPaDoiU+DPq3DWVj7QdsQrIVshcqzenmPh5bq4FSbcz5QU0XIn9bC1O+
kcwagYW5JkZv/6DZSrD/7zz6j1vjjTwl/q4uYGo7LGCUV7fQB/zh9pQL2VIJOTll
D049Dn/Bc5QQfCh4vRZMBBQagpEKETz5aPRoEWV17qdLJnOMFG1XoWiXG11ZWEBF
fcsKiDKSsS/HEhWs9HISPXC9vzsuRhMNxXy15dswFMXmbAVNcc6H1pIwtdq5UXSW
M3/Bwj3xGQ==
=48gV
-----END PGP SIGNATURE-----
