Your message dated Tue, 19 Jan 2021 15:33:24 +0000
with message-id <[email protected]>
and subject line Bug#948309: fixed in guice 4.2.3-2
has caused the Debian Bug report #948309,
regarding guice: Package the no_aop jar
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
948309: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=948309
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: guice
Version: 4.2.1-1
Severity: normal
The 'no_aop' variant of guice (without the embedded cglib) isn't installed
by the libguice-java package, instead a symlink to the 'aop' jar is
installed. This was mostly done to reduce the size of the package. Since the
aop variant is a superset of the no_aop one [1], that was fine.
Unfortunately the modules introduced in Java 9 don't play well with cglib [2],
and using the aop variant triggers a warning on the console. This is especially
annoying with Maven, the following warning is displayed on each invocation:
WARNING: An illegal reflective access operation has occurred
WARNING: Illegal reflective access by
com.google.inject.internal.cglib.core.$ReflectUtils$1
(file:/usr/share/maven/lib/guice.jar) to method
java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int,java.security.ProtectionDomain)
WARNING: Please consider reporting this to the maintainers of
com.google.inject.internal.cglib.core.$ReflectUtils$1
WARNING: Use --illegal-access=warn to enable warnings of further illegal
reflective
Maven upstream depends on the 'no_aop' variant and isn't affected by this
warning.
Packaging the 'no_aop' variant could address this issue. It could be placed
into it's own libguice-noaop-java package, this would save ~400KB when
installing Maven.
Emmanuel Bourg
[1] https://github.com/google/guice/wiki/OptionalAOP
[2] https://github.com/cglib/cglib/issues/129
--- End Message ---
--- Begin Message ---
Source: guice
Source-Version: 4.2.3-2
Done: Emmanuel Bourg <[email protected]>
We believe that the bug you reported is fixed in the latest version of
guice, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Emmanuel Bourg <[email protected]> (supplier of updated guice package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 19 Jan 2021 16:16:47 +0100
Source: guice
Architecture: source
Version: 4.2.3-2
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers
<[email protected]>
Changed-By: Emmanuel Bourg <[email protected]>
Closes: 948309
Changes:
guice (4.2.3-2) unstable; urgency=medium
.
* Build and install the no_aop artifact (Closes: #948309)
* Build depend on libservlet-api-java instead of libservlet3.1-java
* No longer use the 3.x Spring artifact
* Removed the -java-doc package
* Standards-Version updated to 4.5.1
* No longer track the release candidates
Checksums-Sha1:
86b8b2f272a00f54496c0a73ee69f742b8db5423 2253 guice_4.2.3-2.dsc
46116cac19e483c79c9917d3d3b5e5f12d5b266c 4520 guice_4.2.3-2.debian.tar.xz
534966130c343bb0ba55eb424a93243e2dda34ba 15444 guice_4.2.3-2_source.buildinfo
Checksums-Sha256:
94884d125077c91856094c66a58230d183503793d405bca1204b5964575c62e9 2253
guice_4.2.3-2.dsc
a2d36494cfa9b096785f9f09174b617b9bf9df75df1b48324cc280ad337cfd50 4520
guice_4.2.3-2.debian.tar.xz
c078ba03253b2b50f381dd60af19c80a014b527961ba1a722ff8c894a0a2631e 15444
guice_4.2.3-2_source.buildinfo
Files:
1fd386d4a96b1f27e9adeb096ff9abc4 2253 java optional guice_4.2.3-2.dsc
230f046c8147ef53c01b43dc371aab21 4520 java optional guice_4.2.3-2.debian.tar.xz
cc7342de7d238f1e0c35c39bdc2fe550 15444 java optional
guice_4.2.3-2_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=hvfJ
-----END PGP SIGNATURE-----
--- End Message ---
__
This is the maintainer address of Debian's Java team
<https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-java-maintainers>.
Please use
[email protected] for discussions and questions.
