Bug#1035854: Bookworm netboot image fails in VM
On Wed, May 10, 2023 at 11:35:14AM +0200, Cyril Brulebois wrote: > Hallo Moritz, > > And thanks for the report… > > Moritz Mühlenhoff (2023-05-10): > > Moritz Muehlenhoff wrote: > > > call. $MENU is set to '/usr/bin/main-menu' and in fact running > > > > > > "debconf -o d-i /usr/bin/main-menu" tries to emit some output (I can see > > > the cursor > > > moving), but drops back to the shell right away. > > > > > > I'm not familiar with cdebconf, if there's some suggested steps to narrow > > > down the > > > failure further, I'm happy to try them. > > > > Looking at dmesg, there's actually a log entry about steal-ctty segfaulting: > > > > [1.945968] steal-ctty[139]: segfault at 0 ip 7f3c073b9fa0 sp > > 7fff38 0)b70 error 4 in libc.so.6[7f3c0730b000+155000] likely on CPU 0 > > (core 0, socket > > [1.946977] Code: 2e 04 00 0f 1f 80 00 00 00 00 55 48 89 e5 41 57 41 56 > > 41 5f 84 47 01 00 00 49 89 f4 be 2f 00 00 00 48 89 fb 49 89 45 c8 31 c0 > > <80> 3f 00 0f > > … and that follow-up. For those not following IRC, I'm wondering whether > this could be a redux of #932149; that'd be consistent with PXE-booting > being successful on baremetal, but not with a 1G VM. Moritz will try > bumping that and will let us know later on. This turned out to be redux of #932149: Bumping the memory of the netboot-installed VM to 1536M RAM fixed it. There was anectotal evidence of non-netboot installations still succeeding with 1024M, so should we reassign to installation-guide to bump the documented minimum RAM at least for netboot? When debugging the issue is also noticed that rootskel/src/lib/debian-installer/menu currently checks how much RAM is present and if it's less than 250M it exports DEBCONF_DROP_TRANSLATIONS=1 to cdebconf. Given that we already document 780MB as the minimum requirement for Bullseye that seems obsolete, happy to create MRs to remove it from rootskel and cdebconf to clean this up. Cheers, Moritz
Bug#1035854: Bookworm netboot image fails in VM
Package: installation-reports Severity: normal Boot method: network Image version: netboot daily from 2023-05-09 Date: 2023-05-10 I've successfully tested the Bookworm installer on a few Dell PowerEdge servers (with rc1, rc2 and dailies) and it's working fine on baremetal using the netboot image. As an additional test I also created a VM on a Ganeti cluster based on Ganeti 3.0.2 cluster (as provided by Bookworm) using KVM/qemu. This setup has no issues installing Bullseye with the same d-i config. The system emulated by qemu is a pretty standard pc-i440fx "hardware" model: --- /usr/bin/qemu-system-x86_64 -name testvm2005.codfw.wmnet -m 1024 -smp 1 -pidfile /var/run/ganeti/kvm-hypervisor/pid/testvm2005.codfw.wmnet -device virtio-balloon -daemonize -D /var/log/ganeti/kvm/testvm2005.codfw.wmnet.log -machine pc-i440fx-2.8,accel=kvm -boot n -monitor unix:/var/run/ganeti/kvm-hypervisor/ctrl/testvm2005.codfw.wmnet.monitor,server,nowait -serial unix:/var/run/ganeti/kvm-hypervisor/ctrl/testvm2005.codfw.wmnet.serial,server,nowait -usb -display none -cpu IvyBridge,+pcid,+invpcid,+spec-ctrl,+ssbd,+md-clear -uuid 3386590c-84b6-4e89-8717-2aa5e05b0d4a -netdev type=tap,id=nic-f510f85e-6c55-4c4e,fd=10 -device virtio-net-pci,id=nic-f510f85e-6c55-4c4e,bus=pci.0,addr=0xd,netdev=nic-f510f85e-6c55-4c4e,mac=aa:00:00:f2:45:f8 -qmp unix:/var/run/ganeti/kvm-hypervisor/ctrl/testvm2005.codfw.wmnet.qmp,server,nowait -qmp unix:/var/run/ganeti/kvm-hypervisor/ctrl/testvm2005.codfw.wmnet.kvmd,server,nowait -device virtio-blk-pci,id=disk-d1dd7417-4f71-421e,bus=pci.0,addr=0xc,drive=disk-d1dd7417-4f71-421e -drive file=/var/run/ganeti/instance-disks/testvm2005.codfw.wmnet:0,format=raw,if=none,aio=threads,id=disk-d1dd7417-4f71-421e,auto-read-only=off -S --- After retrieval and bootup of the TFTPed image, the installer crashes very early on and drops into a busybox shell with the following userspace processes running: --- 147 root 2800 S{debian-installe} /bin/sh /sbin/debian-installer 154 root 3396 S/usr/bin/screen sh -c printf "\033k%s\033\\" install 155 root 4268 R{screen} /usr/bin/SCREEN sh -c printf "\033k%s\033\\ --- Poking at /proc/$PID/cmdline it's running /usr/bin/SCREEN sh -c printf "\033k%s\033\\" installer ; /lib/debian-installer/menu Looking at /lib/debian-installer/menu I checked that it's not running into any memory shenanigans and it seems it's ultimately failing in the final exec debconf -o d-i $MENU call. $MENU is set to '/usr/bin/main-menu' and in fact running "debconf -o d-i /usr/bin/main-menu" tries to emit some output (I can see the cursor moving), but drops back to the shell right away. I'm not familiar with cdebconf, if there's some suggested steps to narrow down the failure further, I'm happy to try them. Cheers, Moritz
Bug#1010264: CVE-2022-28391
On Wed, Apr 27, 2022 at 11:29:00PM -0400, Theodore Ts'o wrote: > Neither seems to be security related. Are you sure this was correctly > filed against e2fsprogs? Apologies, I reported multiple incoming new issues from the CVE feed and I must have mis-pasted the wrong Emacs buffer into the report. The correct references are https://bugzilla.redhat.com/show_bug.cgi?id=2069726 https://bugzilla.redhat.com/show_bug.cgi?id=2068113 And the proposed patch was already posted at: https://lore.kernel.org/linux-ext4/20220421173148.20193-1-lczer...@redhat.com/T/#u Cheers, Moritz
Bug#985674: CVE-2021-28831
Package: busybox Version: 1:1.30.1-6+b1 Severity: important Tags: security X-Debbugs-Cc: Debian Security Team This was assigned CVE-2021-28831: https://git.busybox.net/busybox/commit/?id=f25d254dfd4243698c31a4f3153d4ac72aa9e9bd Cheers, Moritz
Bug#979317: Create list of packages installed by d-i?
Package: finish-install Severity: wishlist It would be useful if finish-install would create a final list of all packages installed during d-i (like /var/log/installer/packages.txt). When using a configuration layer like Puppet or Ansible this would allow to differentiate packages pulled in by d-i and configuration management. Cheers, Moritz
Bug#950192: Please remove build dep on aboot
Package: debian-installer Severity: important aboot has a open RC bug (#949955), but d-i still build depends on it. alpha isn't a release arch for a long time anyway. Cheers, Moritz
Bug#942270: task-spanish depends on removed manpages-es
Source: tasksel Severity: grave task-spanish depends on manpages-es, which has been removed from the archive. Cheers, Moritz
Bug#851774: fixed in apt-setup 1:0.151
On Fri, Aug 16, 2019 at 09:10:50AM +0200, Moritz Muehlenhoff wrote: > > Many thanks, I'll be submitting a buster-pu bug accordingly. I wouldn't > > mind an extra confirmation after it's been published in a point release > > (peace of mind and all that). > > Sure, I'll drop the "base-installer/includes string gnupg" workaround from our > Puppet tree once 10.1 is out and will confirm back. I've just done that and a subsequent installation went all fine. Cheers, Moritz
Bug#851774: fixed in apt-setup 1:0.151
On Thu, Aug 15, 2019 at 04:25:53PM +0200, Cyril Brulebois wrote: > Hi, > > Moritz Muehlenhoff (2019-07-17): > > On Fri, Jul 12, 2019 at 09:07:45AM +, Cyril Brulebois wrote: > > > apt-setup (1:0.151) unstable; urgency=medium > > > . > > >[ Moritz Mühlenhoff ] > > >* When preseeding a local repository via apt-setup/localX/repository, > > > the repository key for Secure Apt needs to be configured with > > > apt-setup/localX/key. This key used to be set up with apt-key, but > > > its use is deprecated and apt's former dependency on gnupg has been > > > demoted to a Suggests, rendering apt-key non-functional in d-i. > > > Apply a patch by Lars Kollstedt (thanks!) which adds the repository > > > key(s) to /etc/apt/trusted.gpg.d, following the approach used by > > > pbuilder (Closes: #851774, #928931): > > > - .asc suffix if the key file seems to be armoured ASCII (i.e. it > > > contains a “-BEGIN PGP PUBLIC KEY BLOCK-” line); > > > - .gpg suffix otherwise. Please note that only “GPG key public ring” > > > are supported by APT, newer “keybox database” format isn't at the > > > moment. > > > > Hi Cyril, > > as discussed on #debian-boot last week: I've tested a Buster installation > > with > > "d-i mirror/udeb/suite string unstable" and our previous > > "d-i base-installer/includes string gnupg" workaround dropped which > > uses > > the https://apt.wikimedia.org repository and that worked fine. > > Many thanks, I'll be submitting a buster-pu bug accordingly. I wouldn't > mind an extra confirmation after it's been published in a point release > (peace of mind and all that). Sure, I'll drop the "base-installer/includes string gnupg" workaround from our Puppet tree once 10.1 is out and will confirm back. Cheers, Moritz
Bug#851774: fixed in apt-setup 1:0.151
On Fri, Jul 12, 2019 at 09:07:45AM +, Cyril Brulebois wrote: > apt-setup (1:0.151) unstable; urgency=medium > . >[ Moritz Mühlenhoff ] >* When preseeding a local repository via apt-setup/localX/repository, > the repository key for Secure Apt needs to be configured with > apt-setup/localX/key. This key used to be set up with apt-key, but > its use is deprecated and apt's former dependency on gnupg has been > demoted to a Suggests, rendering apt-key non-functional in d-i. > Apply a patch by Lars Kollstedt (thanks!) which adds the repository > key(s) to /etc/apt/trusted.gpg.d, following the approach used by > pbuilder (Closes: #851774, #928931): > - .asc suffix if the key file seems to be armoured ASCII (i.e. it > contains a “-BEGIN PGP PUBLIC KEY BLOCK-” line); > - .gpg suffix otherwise. Please note that only “GPG key public ring” > are supported by APT, newer “keybox database” format isn't at the > moment. Hi Cyril, as discussed on #debian-boot last week: I've tested a Buster installation with "d-i mirror/udeb/suite string unstable" and our previous "d-i base-installer/includes string gnupg" workaround dropped which uses the https://apt.wikimedia.org repository and that worked fine. I've also submitted a patch to installation-guide to enhance the docs so that the constraints for the Secure Apt key file are explicitly mentioned (#932284) Cheers, Moritz
Bug#932284: installation-guide: Update docs for apt-setup/localX/key preseeding config
Source: installation-guide Severity: normal apt-setup 1:0.151 slightly changed the implementation of how Secure Apt keys are preseeded for local repositories. Attached patch updates the existing documentation to reflect that. Cheers, Moritz diff -aur installation-guide-20190622.orig/en/appendix/preseed.xml installation-guide-20190622/en/appendix/preseed.xml --- installation-guide-20190622.orig/en/appendix/preseed.xml2019-06-22 19:29:15.0 +0200 +++ installation-guide-20190622/en/appendix/preseed.xml 2019-07-17 10:14:40.883831669 +0200 @@ -1395,8 +1395,12 @@ #d-i apt-setup/local0/source boolean true # URL to the public key of the local repository; you must provide a key or # apt will complain about the unauthenticated repository and so the -# sources.list line will be left commented out +# sources.list line will be left commented out. #d-i apt-setup/local0/key string http://local.server/key +# If the provided key file ends in ".asc" the key file needs to be an +# ASCII-armoured PGP key, if it ends in ".gpg" it needs to use the +# "GPG key public keyring" format, the "keybox database" format is +# currently not supported # By default the installer requires that repositories be authenticated # using a known gpg key. This setting can be used to disable that Nur in installation-guide-20190622/en/appendix: preseed.xml~.
Bug#908167: Add firefox-esr-l10n-ne-np to task-nepali-desktop
Package: tasksel Version: 3.45 Severity: wishlist I noticed that starting with the 60.x series Firefox ESR now provides a firefox-esr-l10n-ne-np language pack. That sounds like a useful thing to add to task-nepali-desktop Cheers, Moritz
Bug#902724: CVE-2018-1000517
Package: busybox Version: 1:1.27.2-2 Severity: important Tags: security This was assigned CVE-2018-1000517: https://git.busybox.net/busybox/commit/?id=8e2174e9bd836e53c8b9c6e00d1bc6e2a718686e Cheers, Moritz
Bug#879732: CVE-2017-15874 / CVE-2017-15873
On Wed, Oct 25, 2017 at 07:27:42PM +0200, Christoph Biedl wrote: > Tags: upstream confirmed > > Moritz Muehlenhoff wrote... > > > Hi, > > please see: > > Thanks for the heads-up, we'll try to get this fixed as soon as > possible. For the moment, I'm somewhat confused about the affected > distributions as listed in the security tracker. Could you please check? That's not surprising :-) By default all older releases are marked as affected (unless specific suites are updated to reflect that they are not vulnerable). Cheers, Moritz
Bug#879732: CVE-2017-15874 / CVE-2017-15873
Package: busybox Version: 1:1.27.2-1 Severity: important Tags: security Hi, please see: CVE-2017-15873 The get_next_block function in archival/libarchive/decompress_bunzip2.c in BusyBox 1.27.2 has an Integer Overflow that may lead to a write access violation. https://bugs.busybox.net/show_bug.cgi?id=10431 https://git.busybox.net/busybox/commit/?id=0402cb32df015d9372578e3db27db47b33d5c7b0 CVE-2017-15874 archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an Integer Underflow that leads to a read access violation. https://bugs.busybox.net/show_bug.cgi?id=10436 Cheers, Moritz
Bug#782573: Installation on Thinkpad X250 worked fine
Package: installation-reports Severity: normal Boot method: CD Image version: debian-testing-amd64-netinst.iso from 13-04-2015 Date: 13-04-2015 Machine: Lenovo ThinkPad X250 Summary: Everything went really well, good job! I especially like new desktop selection, which makes KDE installations much more easy for non-technical users. Some remarks: - In the past I usually installed using wired network, but decided to give the wireless installation a go. d-i correctly detected the missing iwlwifi firmware. While the steps to obtain the missing firmware files are obvious to, this is most probably not the case for 95% of all users. Maybe d-i should point to something like http://wiki.debian.org/d-i-Firmware which contains the specific blobs and instructions how to copy them to a USB stick? (Since this topic is probably contentious, I didn't file a bug for it, so maybe only take this as a suggestion). - One line was only displayed partly, I filed a bug against partman-crypto (782571) - The touchpad on the X250 needs a backport from Linux 4.0, but there's already a kernel bug/patch on that. Thanks, Moritz -- To UNSUBSCRIBE, email to debian-boot-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20150414110150.25577.53934.reportbug@pisco.westfalen.local
Bug#782571: Status message during initial overwrite not wrapped
Package: partman-crypto Version: 80 Severity: normal Hi, I installed jessie with yesterday's debian-testing-amd64-netinst and chose the graphical d-i with German i18n. One output from partman-crypto was truncated/not line-wrapped, so only the following was displayed (in one line): -- Der Installer �berschreibt nun SCSI1 (0,0,0), Partition #5 (sda) mit zuf�lligen Daten, um zu verhindern, da -- (This is the German gettext string for "The installer is now overwriting ${DEVICE} with random data (..)" Cheers, Moritz -- To UNSUBSCRIBE, email to debian-boot-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20150414104725.25135.42086.reportbug@pisco.westfalen.local
Bug#776186: busybox: CVE-2014-9645
On Mon, Jan 26, 2015 at 04:49:27AM +0100, Cyril Brulebois wrote: > Michael Gilbert (2015-01-25): > > control: tag -1 patch, pending > > > > Hi, > > > > I uploaded an nmu fixing this issue to delayed/15. Please let me know > > if I can shorten or if you want to do a maintainer upload instead. > > See proposed patch attached. > > NACK, it won't make it into testing this way. > > See <20150106090747.gc27...@ugent.be> and mails before that. > > Haven't had a chance to upload what I proposed, but I can look at > including your changes on top of mine, somewhen today. (It was > basically waiting on the d-i release, which happened earlier.) I'm slightly confused here. Is 1:1.22.0-9+deb8u1 different from the upload you mentioned above? jessie has CVE-2014-4607 fixed, but not CVE-2014-9645 (which isn't terribly severe and which could be tagged no-dsa if no further busybox upload is planned for jessie). Cheers, Moritz -- To UNSUBSCRIBE, email to debian-boot-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20150302152813.gc1...@inutil.org
Bug#699390: debian-policy: soften the wording recommending menu files
On Sun, May 12, 2013 at 02:04:01AM +0200, Michael Biebl wrote: > Hi Russ, hi Sune, > > I'd like to second this request to reword the current section in the > policy regarding menu files, suggesting fdo .desktop files as the > recommended mechanism and make it clear that .menu files are only really > relevant for legacy or more exotic window managers. > Sune's patch looks fine to me. > > As Sune already pointed out, the addition of menu-xdg actually is > harmful in case of modern DEs like KDE or GNOME, where the entries > generated via menu-xdg, duplicate a lot of existing entries, with no > icons or low res bitmaps, not translations etc and clutter it up in a > very bad way. > In GNOME shell this even leads to wrong application tracking, if the > wrong menu entry is chosen. That's why we decided to actively hide the > Debian menu. > > Regarding the same issue, I talked to Christian, as tasksel > co-maintainer, a while ago, to drop menu from the desktop task. If my > memory serves me well, he basically agreed, but was worried, that my > request came rather late into the wheezy release, so I've filed [1] and > hope we can resolve that for jessie. Eight months later we're now in the jessie cycle. Can we drop menu from the desktop task now? Cheers, Moritz -- To UNSUBSCRIBE, email to debian-boot-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20140122192733.ga8...@inutil.org
Bug#735492: Please remove recommends on intlfonts
Source: tasksel Severity: normal Various tasksel tasks recommend X fonts from intlfonts, e.g. task-ukrainian-desktop, task-portuguese-desktop, task-italian-desktop, task-greek-desktop, task-french-desktop are recommending xfonts-intl-european. I think we should remove these; X fonts are really totally obsolete these days.x Cheers, Moritz -- To UNSUBSCRIBE, email to debian-boot-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20140115190511.4823.79470.reportbug@pisco.westfalen.local
Bug#696658: Everything worked fine, well done!
Package: installation-reports Version: 2.49 Severity: normal -- Package-specific info: Boot method: CD Image version: Weekly build from 2012-12-24 Date: Machine: Barebone desktop system with Nvidia chipset bought six months ago. (No specific hardware information, since I'm filing this report from a different system) Base System Installation Checklist: [O] = OK, [E] = Error (please elaborate below), [ ] = didn't try it Initial boot: [O] Detect network card:[O] Configure network: [O] Detect CD: [O] Load installer modules: [O] Clock/timezone setup: [O] User/password setup:[O] Detect hard drives: [O] Partition hard drives: [O] Install base system:[O] Install tasks: [O] Install boot loader:[O] Overall install:[O] Comments/Problems: Everything was working fine and as expected. The i18n was perfect as well. I also really like the fact that Network Manager is used by default these days! The only feature suggestion I have: The task to install CUPS and the PPDs is called "Print server". While technically experienced users understand that this implies CUPS, it's not obvious to less tech-savvy users that this task is needed to use a printer attached to a desktop system. As such, the task should IMO rather be called "Support for local printer / print server". Cheers, Moritz -- To UNSUBSCRIBE, email to debian-boot-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20121225102914.4922.35743.reportbug@pisco.westfalen.local
Bug#635548: Affected by variant of CVE-2011-0097
Package: udhcpc Severity: grave Tags: security Dear Busybox maintainers, it was discovered that busybox's udhcpc is also affected by https://www.isc.org/software/dhcp/advisories/cve-2011-0997 This has been assigned CVE-2011-2716. Cheers, Moritz -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.0.0-1-amd64 (SMP w/2 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-boot-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20110726205200.423.62819.reportbug@pisco.westfalen.local
Re: Draft for lenny release announcement
On 2009-02-09, Alexander Reichle-Schmehl wrote: > This is a multi-part message in MIME format. > --040603030801070601030404 > Content-Type: text/plain; charset=ISO-8859-15 > Content-Transfer-Encoding: 7bit > > [ Sorry for the cross post; just trying to make sure everyone is aware of > the current state ] > > > Hi! > > Attached you'll find the current draft of the announcement for the lenny > release. Based upon the announcement for the last release it's far from > ready :( Maybe add a new about all the fancy games that are included in Lenny? Nexuiz, OpenArena, Battle for Wesnoth, FreeCiv, FreeCol, SuperTux, Torcs? And you should mention GoPlay, which allows comfortable browsing of games. Cheers, Moritz -- To UNSUBSCRIBE, email to debian-boot-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Installation report HP-715/64 (HIL)
reassign 416208 debian-installer thanks On Wed, Dec 24, 2008 at 04:19:51PM +0100, Frans Pop wrote: > On Wednesday 24 December 2008, Moritz Muehlenhoff wrote: > > > Is it possible that someone from the debian-installer teams add this > > > "modprobe hilkbd" somewhere to the bootup process? This modprobe > > > should also be carried over to the installed system afterwards. > > > > > > I'm willing to test any temporary images (preferably netboot images) > > > as soon as possible. > > > > [Forwarding to debian-b...@lists.debian.org] > > Why not (also) reassign the BR to debian-installer? It didn't know about that specific source package, reassigning now. Cheers, Moritz -- To UNSUBSCRIBE, email to debian-boot-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Installation report HP-715/64 (HIL)
On Tue, Dec 23, 2008 at 12:35:51PM +0100, Helge Deller wrote: > Moritz Muehlenhoff wrote: > >> The boot-kernel (2.6.18) does not detect this keyboard on the HIL bus. > >> It seems the needed .config values are not set when it was built. > >> To solve this problem, the boot kernel needs the > >> "CONFIG_KEYBOARD_HIL_OLD=y" option set. > >> Additionally, all other "HIL" options should be disabled (see below). > >> With those options, the HIL keyboard should work. HIL-Mouse will not be > >> available, but it's not needed either for the installation process. > >> In general, all newer HIL drivers do not work at all, so defaulting back > >> to the old driver should be ok. > > > > The Lenny kernel sets CONFIG_KEYBOARD_HIL_OLD=m, does this still apply? > > Moritz, thanks for bringing this up again. I nearly forgot it! > > I just tried the netboot image dated 30-10-08 from > http://ftp.nl.debian.org/debian/dists/testing/main/installer-hppa/current/images/netboot/2.6/. > > Currently the debian installer boots up nicely, but the keyboard is not > functional at all (on machines with HIL keyboard). > My tests with booting via serial console shows, that all what needs to > be done to get those keyboards working now is, to run a > "modprobe hilkbd" > at startup. > > Is it possible that someone from the debian-installer teams add this > "modprobe hilkbd" somewhere to the bootup process? This modprobe should > also be carried over to the installed system afterwards. > > I'm willing to test any temporary images (preferably netboot images) as > soon as possible. [Forwarding to debian-b...@lists.debian.org] Can that be considered for rc2? Cheers, Moritz -- To UNSUBSCRIBE, email to debian-boot-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Bug#393786: [sparc] CD-ROM support broken in esp driver
On Mon, Oct 23, 2006 at 06:10:51PM +0300, Meelis Roos wrote: >>> No. It is only present for sparc64 but missing for sparc32 (again with >>> 17. Oct netinst image, todays not tried). >> >> Hmm. I doubt that. If I check the contents of an initrd for the same CD >> image you used (sparc netinst from 17-10) I see: >> /lib/modules/2.6.17-2-sparc32/kernel/fs/isofs/isofs.ko > > I retried it. When CD mounting failed, I switched to Alt-F2 and did > find /lib/modules -name '*iso*' > This yielded > /lib/modules/2.6.16-2-sparc64/kernel/fs/isofs > /lib/modules/2.6.16-2-sparc64/kernel/fs/isofs/isofs.ko > > and nothing more. > /lib/modules/2.6.16-2-sparc32/kernel does not contain the fs subdir, > only drivers. Does this error still occur with more recent kernel versions? Cheers, Moritz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Please review announcement of upcoming release of Debian 4.0r4 "etch-and-a-half"
On Sat, Jul 26, 2008 at 04:24:20PM +0200, Alexander Reichle-Schmehl wrote: > Hi! > > Attached you'll find the current draft for the announcement of > "etch-and-a-half". Please review it; current schedule for it to be send > out is tomorrow. > One minor bit; while dcc was also subject to security issues that were not backportable, it was mostly removed as the outdated version was causing harm to the DCC server network and a newer version couldn't be released since upstream went non-free in later releases. So this should rather say "Incompatible with DCC network, security issues" Cheers, Moritz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: linux-latest-2.6 update in stable incomplete
On 2007-08-18, dann frazier <[EMAIL PROTECTED]> wrote: > On Sat, Aug 18, 2007 at 01:20:11PM +0200, Bastian Blank wrote: >> Hi folks >> >> The linux-latest-2.6 update in 4.0r1 was incomplete. arm still have the >> version 6, anything else 6etch1. This is a serious problem as arm will >> be uninstallable now and no machine gets new security uploads. > > I'm sure this is my fault, sorry about that. Is it possible to > update this before r2? You could release a new linux-latest-2.6 package pointing to the new arm kernel images in a DSA-1356-2. Cheers, Moritz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Scheduling linux-2.6 2.6.18-9
Frederik Schueler wrote: > If you have any last minute changes which are that important they cannot=20 > wait for the first point release kernel, please list them here so we can > discuss them. The 2.6.18.6 stable series patches posted by Chris include some fixes we should include: - fixes data corruption with dm-crypt on RAID - fixes bcm43xx retransmits (IIRC there's an RC bug for this) - provides openat() et. al. on arm Cheers, Moritz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: sarge3 kernel build & r3
dann frazier wrote: > On Tue, Jun 06, 2006 at 01:32:42PM -0600, dann frazier wrote: > > On Tue, Jun 06, 2006 at 09:23:45PM +0200, Frans Pop wrote: > > > The more arches are built by the same person, the easier coordination is. > > > So your offer is very welcome. > > > > > > Note that you'll need to check out the kernel udeb package sources from > > > the *sarge branch* of the d-i SVN repo for the different arches as ABI > > > numbers have to be updated there. > > > > yes, np. I'll try to have these done by this weekend. > > Here's the current status... > DSA is pending for the security update; jmm thought he'd be able to > et those released tonight. I haven't reconfirmed this with him today. There have been some interruptions (klecker running out of disk space and strange NEW processing for some packages), which micht delay this a few days further. Cheers, Moritz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: sarge3 kernel build & r3
Martin Schulze wrote: > It would be good if we would be able some day to release kernel > updates in a more timely fashion and also not accumulate this many > security updates in one update. However, due to the number of > architectures and affected packages I'm not sure this goal can be met > any time soon. But that's a different story... It will be possible for Etch, the linux-2.6 kernel packages can be autobuilt, which should reduce the overhead significantly. > > During the d-i bof at DebConf I pointed out that the sarge3 kernel > > build is in progress and is not an ABI change - there was consensus to > > wait for this build before doing the d-i build for r3. I don't > > remember the timeline we discussed for this build. The current status > > is that the build is complete and pending upload by the security team > > (I think Moritz would be the one to do it, so I've cc'd him). > > Oh. Great. Good to hear (err... sending such information to > [EMAIL PROTECTED] would actually be a good idea as well...) I'm pretty sure I kept you posted. I dropped a note when I pushed out the Woody updates, but it was probably too terse. Sorry for that, I've been very busy over the last months. I'll process the 2.4.27 and 2.6.8 packages on the weekend. Wrt the ABI bump: At DebConf Dann and I agreed to omit one kernel security issue: A hard-too-trigger denial of service vulnerability in the experimental SCTP code. As there will most definitely be another ABI breaker soon, it wasn't worth all the work to cope with an ABI change. Cheers, Moritz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#358348: installation-report: Installation report for etch2 beta on Powerbook G4
Frans Pop wrote: > > He had MacOS X occupying the whole hard disc, so we backuped all data > > and re-installed MacOS to repartition the disk. The standard MacOS > > installation procedure created a 32k HFS+ partition, followed by 134 MB > > free disk space and followed by the real MacOS partition. > > The yaboot installer complained that 900k would be needed, so we > > resized the 32k partition to something larger using the 134 megs behind > > it. This wept the whole partition clean, including the installed MacOS > > X. If resizing HFS+ partitions is experimental it shouldn't be offered > > in the installer, I guess. > > After a reinstall of MacOS X where we created a sufficiently large boot > > partition everything went fine. > > Reassigning to partman for this issue (hope partman-newworld is correct). > However, as far as I can tell [1] the option to resize should not even be > offered by partman for hfs partitions. How did you do the resizing? > > [1] By looking at the code in: > partman-partitioning/active_partition/resize/choices It didn't do anything special like opening a rescue shell or anything the like; I selected it through the regular dialog(1) based user interface. My memory has faded about the details, sorry. Cheers, Moritz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#358348: installation-report: Installation report for etch2 beta on Powerbook G4
Package: installation-report Severity: normal Yesterday I installed Debian with the Etch2 d-i on a friend's G4 Powerbook. Some observations: 1. He had MacOS X occupying the whole hard disc, so we backuped all data and re-installed MacOS to repartition the disk. The standard MacOS installation procedure created a 32k HFS+ partition, followed by 134 MB free disk space and followed by the real MacOS partition. The yaboot installer complained that 900k would be needed, so we resized the 32k partition to something larger using the 134 megs behind it. This wept the whole partition clean, including the installed MacOS X. If resizing HFS+ partitions is experimental it shouldn't be offered in the installer, I guess. After a reinstall of MacOS X where we created a sufficiently large boot partition everything went fine. 2. We installed the Desktop-Task, which installed Gnome. No desktop war flames intended, but a separate "Desktop/KDE", which installs a KDE based system including OpenOffice would be very much appreciated. 3. German i18n was fine, except the very awkward "Tottasten" for dead_keys. I have to admit I don't have better a translation, though. 4. Auto-detection of the Nvidia graphic card failed. It created an fbdev based X11 config, which failed to start. After manual configuration of the "nv" driver everything was fine. Besides the above the installation was very smooth and worked just great. Congratulations to everyone involved. -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.15-1-686 Locale: LANG=C, [EMAIL PROTECTED] (charmap=ISO-8859-15) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#274665: installation-reports: Installation report on Thinkpad X31
Package: installation-reports Version: foo Severity: normal Debian-installer-version: Daily build from 2004-09-30 uname -a: Linux galadriel 2.6.8-1-386 #1 Mon Sep 13 23:29:55 EDT 2004 i686 GNU/Linux Date: 2004-10-01 Method: PXE netboot Machine: IBM Thinkpad X31 Processor: Pentium M 1400 Memory: 512 MB Root Device: IDE; /dev/hda Root Size/partition table: Disk geometry for /dev/hda: 0.000-34831.493 megabytes Disk label type: msdos MinorStart End Type Filesystem Flags 1 0.031 33377.695 primary ext3boot 2 33377.695 34824.726 extended lba 5 33377.726 34824.726 logical linux-swap Information: Don't forget to update /etc/fstab, if necessary. Output of lspci and lspci -n: :00:00.0 Host bridge: Intel Corp. 82855PM Processor to I/O Controller (rev 03) :00:01.0 PCI bridge: Intel Corp. 82855PM Processor to AGP Controller (rev 03) :00:1d.0 USB Controller: Intel Corp. 82801DB/DBL/DBM (ICH4/ICH4-L/ICH4-M) USB UHCI Controller #1 (rev 01) :00:1d.1 USB Controller: Intel Corp. 82801DB/DBL/DBM (ICH4/ICH4-L/ICH4-M) USB UHCI Controller #2 (rev 01) :00:1d.2 USB Controller: Intel Corp. 82801DB/DBL/DBM (ICH4/ICH4-L/ICH4-M) USB UHCI Controller #3 (rev 01) :00:1d.7 USB Controller: Intel Corp. 82801DB/DBM (ICH4/ICH4-M) USB 2.0 EHCI Controller (rev 01) :00:1e.0 PCI bridge: Intel Corp. 82801 PCI Bridge (rev 81) :00:1f.0 ISA bridge: Intel Corp. 82801DBM LPC Interface Controller (rev 01) :00:1f.1 IDE interface: Intel Corp. 82801DBM (ICH4) Ultra ATA Storage Controller (rev 01) :00:1f.3 SMBus: Intel Corp. 82801DB/DBL/DBM (ICH4/ICH4-L/ICH4-M) SMBus Controller (rev 01) :00:1f.5 Multimedia audio controller: Intel Corp. 82801DB/DBL/DBM (ICH4/ICH4-L/ICH4-M) AC'97 Audio Controller (rev 01) :00:1f.6 Modem: Intel Corp. 82801DB/DBL/DBM (ICH4/ICH4-L/ICH4-M) AC'97 Modem Controller (rev 01) :01:00.0 VGA compatible controller: ATI Technologies Inc Radeon Mobility M6 LY :02:00.0 CardBus bridge: Ricoh Co Ltd RL5c476 II (rev aa) :02:00.1 CardBus bridge: Ricoh Co Ltd RL5c476 II (rev aa) :02:00.2 FireWire (IEEE 1394): Ricoh Co Ltd R5C552 IEEE 1394 Controller (rev 02) :02:02.0 Network controller: Intel Corp. PRO/Wireless 2200BG (rev 05) :02:08.0 Ethernet controller: Intel Corp. 82801BD PRO/100 VE (MOB) Ethernet Controller (rev 81) :00:00.0 0600: 8086:3340 (rev 03) :00:01.0 0604: 8086:3341 (rev 03) :00:1d.0 0c03: 8086:24c2 (rev 01) :00:1d.1 0c03: 8086:24c4 (rev 01) :00:1d.2 0c03: 8086:24c7 (rev 01) :00:1d.7 0c03: 8086:24cd (rev 01) :00:1e.0 0604: 8086:2448 (rev 81) :00:1f.0 0601: 8086:24cc (rev 01) :00:1f.1 0101: 8086:24ca (rev 01) :00:1f.3 0c05: 8086:24c3 (rev 01) :00:1f.5 0401: 8086:24c5 (rev 01) :00:1f.6 0703: 8086:24c6 (rev 01) :01:00.0 0300: 1002:4c59 :02:00.0 0607: 1180:0476 (rev aa) :02:00.1 0607: 1180:0476 (rev aa) :02:00.2 0c00: 1180:0552 (rev 02) :02:02.0 0280: 8086:4220 (rev 05) :02:08.0 0200: 8086:103d (rev 81) Base System Installation Checklist: [O] = OK, [E] = Error (please elaborate below), [ ] = didn't try it Initial boot worked:[O] Configure network HW: [O] Config network: [O] Detect CD: [ ] (The X series does not have a CD drive) Load installer modules: [O] Detect hard drives: [O] Partition hard drives: [O] Create file systems:[O] Mount partitions: [O] Install base system:[O] Install boot loader:[O] Reboot: [O] Comments/Problems: Everything went flawless. One possible enhancement: IBM Thinkpads do not have an installation CD for the included copy of Microsoft Windows; instead they ship a hidden partition with a recovery image. dmesg outputs this as a "Host Protected Area". It would ne nice if the installer could offer to use this space as well (it's a waste of 3.5 GBs). I haven't investigated yet how this could be done with parted or similar tools. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]