Bug#517018: debian-installer: no-root option in expert installer exposes locally exploitable security flaw

[Steve Langasek]

reassign 517018 sysvinit-utils
thanks

On Wed, Feb 25, 2009 at 01:43:05AM -0500, Michael Gilbert wrote:
> On Tue, 24 Feb 2009 22:12:52 -0800 Steve Langasek wrote:
> > > since there is no root password set up during installation, a local
> > > attacker can simply boot into the root account (without being prompted
> > > for a password) via single user mode ("single" kernel option).

> > Have you tested that this is actually the case?

> yes.

Ok; reassigning to sysvinit-utils.

> i'm not entirely sure what the installer is doing (i assume that it
> generates a random password since "su" itself still requires a password),
> but the easiest way i could think to describe the problem was by the term
> no-root.  if there is better terminology that i can use, please let me
> know.

What this is supposed to do is configure the root account without a valid
password.  You can verify this is the case by checking whether root's
password field in /etc/shadow is set to '*' or '!'.

Looking at sulogin's code, it treats this as an invalid password (which is
true), and as a result bypasses the password check entirely (which is
questionable).

-- 
Steve Langasek   Give me a lever long enough and a Free OS
Debian Developer   to set it on, and I can move the world.
Ubuntu Developerhttp://www.debian.org/
slanga...@ubuntu.com vor...@debian.org



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#452599: moinmoin 1.8: using systemwide copy of fckeditor.

[Frank Lin PIAT]

Hi,

Some clarification for the readers who didn't follow the whole story...

On Wed, 2009-02-25 at 07:48 +0100, Frank Lin PIAT wrote:
> That was quite easy actually.

Previously, the problem is that moinmoin used fckeditor 2.2, and the
fckeditor package was shipping 2.6.

Since moinmoin has some plugins for fckeditor, those plugins had to be
updated and tested with new fckeditor versions. It took a
GoogleSummerOfCode project to port moinmoin's fck plugins to work with
fckeditor 2.6

> I haven't tested it that much yet, but it seems to work. Also, I haven't
> tested unstable's fckeditor_1:2.6.4-1 either.

For reference, upstream have/had some bugs with GUI in 1.8:
http://moinmo.in/?action=fullsearch&value=re%3A1.8_GUI

> I have some concerns with the lack of control we have over the version
> of the fckeditor package. What's your opinion about it?

I suppose that depending on fckeditor <= 2.6.4 would prevent any new
version from entering DebianTesting.

Franklin





-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#464377: I have the same problem -cfdisk complaining about partitions

[Oz N]

Package: util-linux
Version: 2.13.1.1-1
Followup-For: Bug #464377

Hi, 
I installed debian squeeze on a new 160 GB. Prior to installing I
created several partitions inside an extended partition which has the
extent of 100% of the hard drive. I used GPARTED ver.3.4 live cd to create the 
partitions. I supply this information in hope it helps. 
After installing the system I wanted to check everything is ok, I used
fdisk and cfdisk:

Here is the outcome:
oz...@karo:~$ sudo fdisk -l

Disk /dev/hda: 160.0 GB, 160041885696 bytes
255 heads, 63 sectors/track, 19457 cylinders
Units = cylinders of 16065 * 512 = 8225280 bytes
Disk identifier: 0x00054897

   Device Boot  Start End  Blocks   Id  System
/dev/hda1   1   19457   1562883215  Extended
/dev/hda5   18139   1945710594867+  83  Linux
/dev/hda63586   18138   116896941   83  Linux
/dev/hda734593585 1020096   82  Linux swap /
Solaris
/dev/hda81610345814852061   83  Linux
/dev/hda9   1160912924198   83  Linux

Partition table entries are not in disk order
oz...@karo:~$ sudo fdisk -l -u

Disk /dev/hda: 160.0 GB, 160041885696 bytes
255 heads, 63 sectors/track, 19457 cylinders, total 312581808 sectors
Units = sectors of 1 * 512 = 512 bytes
Disk identifier: 0x00054897

   Device Boot  Start End  Blocks   Id  System
/dev/hda1  63   312576704   1562883215  Extended
/dev/hda5   291386970   31257670410594867+  83  Linux
/dev/hda657593088   291386969   116896941   83  Linux
/dev/hda7283357593024 1020096   82  Linux swap /
Solaris
/dev/hda825848648276914852061   83  Linux
/dev/hda9 1892584858412924198   83  Linux

Partition table entries are not in disk order

cfdisk won't start and complains: 
FATAL ERROR: Bad logical partition 6: enlarged logical partitions
overlap

Maybe my partitions really overlap (hda1 and hda5 end in the same cylinder)? 
Should I edit my partition table ?
I am no partition guru... So I hope this report is not redundant.

Thanks, 
Oz. 

-- System Information:
Debian Release: 5.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: i386 (i686)

Kernel: Linux 2.6.26-1-686 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages util-linux depends on:
ii  libc6  2.9-3 GNU C Library: Shared libraries
ii  libncurses55.7+20090214-1shared libraries for terminal hand
ii  libselinux12.0.65-5  SELinux shared libraries
ii  libslang2  2.1.3-3   The S-Lang programming library - r
ii  libuuid1   1.41.3-1  universally unique id library
ii  lsb-base   3.2-20Linux Standard Base 3.2 init scrip
ii  tzdata 2008i-3   time zone and daylight-saving time
ii  zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime

util-linux recommends no packages.

Versions of packages util-linux suggests:
ii  console-tools1:0.2.3dbs-65.1 Linux console and font utilities
pn  dosfstools (no description available)
pn  util-linux-locales (no description available)

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516780: iceweasel - segmentation fault

[lindis]

I have the same problem after upgrade from etch to lenny.
Launching Iceweasel from terminal appears: segmentation fault.

Bye




-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517001: (no subject)

[Rene Engelhard]

C
Cc: 
Bcc: 
Subject: Re: Bug#517001: openoffice.org-writer2latex: error when adding
extension
Reply-To: 
In-Reply-To: <20090225001838.7457.83271.report...@xerces>
X-PGP-Key: 248AEB73
X-PGP-Fingerprint: 41FA F208 28D4 7CA5 19BB  7AD9 F859 90B0 248A EB73
Organization: The Debian Project

Sam Morris wrote:
> When upgrading today:
> 
> Setting up openoffice.org-writer2latex (0.5.0.2-2) ...
> Adding extension 
> /usr/lib/openoffice/share/extension/install/writer2latex.oxt...An error 
> occurred while enabling: writer2latex-filter.jar
>  done.
> 
> The error appears to be ignored by the package's maintainer script; it did not

No, it's not. It's unopkg which does not return with an error so of course the 
scropt
can't know it has an error...
unopkg is a POS...

Grüße/Regards,

René
-- 
 .''`.  René Engelhard -- Debian GNU/Linux Developer
 : :' : http://www.debian.org | http://people.debian.org/~rene/
 `. `'  r...@debian.org | GnuPG-Key ID: 248AEB73
   `-   Fingerprint: 41FA F208 28D4 7CA5 19BB  7AD9 F859 90B0 248A EB73




--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517029: libburn4: Please upload newer version

[David Mohr]

Package: libburn4
Version: 0.5.5-0.1
Severity: wishlist

The libburn version in sid is quite outdated. In particular there has been a
bug fixed in 0.5.6, which gets triggered by some people using xfburn. Now
with the freeze lifted, can you please update the version? Thanks!

-- System Information:
Debian Release: 5.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: i386 (i686)

Kernel: Linux 2.6.26 (SMP w/2 CPU cores; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages libburn4 depends on:
ii  libc6 2.7-18 GNU C Library: Shared libraries

libburn4 recommends no packages.

libburn4 suggests no packages.

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517027: ITP: liblwp-protocol-socks-perl -- adds support for the socks protocol and proxy facility to perl LWP

[Pierre Neyron]

Package: wnpp
Severity: wishlist
Owner: Pierre Neyron 

* Package name: liblwp-protocol-socks-perl
  Version : 1.1
  Upstream Author : Sheridan C. Rawlins 
* URL : http://search.cpan.org/~scr/LWP-Protocol-socks-1.1/
* License : Same as Perl
  Programming Lang: Perl
  Description : adds support for the socks protocol and proxy facility to 
perl LWP

Perl module to add to Perl LWP the capability to talk through a socks proxy.

-- System Information:
Debian Release: 5.0
  APT prefers stable
  APT policy: (990, 'stable'), (200, 'testing'), (100, 'unstable'), (10, 
'experimental')
Architecture: amd64 (x86_64)



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517028: haskell-devscript: Spaces in hlibrary.mk

[Magnus Therning]

Package: haskell-devscripts
Version: 0.6.15+nmu4
Severity: important
File: haskell-devscript

This is the result when trying to use the hlibrary.mk that now is
shipped in haskell-devscripts:

  /usr/share/cdbs/1/class/hlibrary.mk:65: *** missing separator (did you mean 
TAB instead of 8 spaces?).  Stop.
  dpkg-buildpackage: failure: fakeroot debian/rules clean gave error exit 
status 2

Replacing the spaces with a tab solves it.

/M

-- System Information:
Debian Release: 5.0
  APT prefers unstable
  APT policy: (990, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.28-7.slh.1-sidux-amd64 (SMP w/2 CPU cores; PREEMPT)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages haskell-devscripts depends on:
ii  cdbs0.4.52   common build system for Debian pac
ii  dctrl-tools 2.13.1   Command-line tools to process Debi
ii  debhelper   7.0.17   helper programs for debian/rules
ii  ghc66.8.2dfsg1-1 GHC - the Glasgow Haskell Compilat
ii  xutils-dev  1:7.4+4  X Window System utility programs f

haskell-devscripts recommends no packages.

haskell-devscripts suggests no packages.

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517026: Proportional bias: problems saving Play count and Last played settings

[Damyan Ivanov]

Package: amarok
Version: 2.0.1.1-1
Severity: normal

Hi,

I use the following settings in a "Proportinal bias" dynamic playlist:

73%   Play count  equal to  0
17%   Genre  Progressive Metal
21%   Genre  Progressive Rock
19%   Genre  Dance
100%  Last played  less than  2009-01-01

These are saved as a playlist. All works well, until I restart amarok.
Upon start, the playlist is selected, but not entirely restored.

 * The relation field of the Play count match is empty (instead of
   "equal to").
 * The "Last played" is no longer selected in the last match and the
   rest of the settings (less than, date) are gone too.
 * The remaining matches are OK.

Thanks,
dam

-- System Information:
Debian Release: 5.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable'), (450, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.28-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=bg_BG.UTF-8, LC_CTYPE=bg_BG.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages amarok depends on:
ii  amarok-common  2.0.1.1-1 architecture independent files for
ii  kdebase-runtime4:4.2.0-1 runtime components from the offici
ii  kdelibs5   4:4.2.0-3 core libraries for all KDE 4 appli
ii  libc6  2.9-3 GNU C Library: Shared libraries
ii  libcurl3-gnutls7.18.2-8  Multi-protocol file transfer libra
ii  libgcc11:4.3.3-4 GCC support library
ii  libgcrypt111.4.4-2   LGPL Crypto library - runtime libr
ii  libgl1-mesa-glx [libgl 7.3-1 A free implementation of the OpenG
ii  libglib2.0-0   2.18.4-2  The GLib library of C routines
ii  libgpod3-nogtk 0.6.0-7   library to read and write songs to
ii  libgtk2.0-02.14.7-3  The GTK+ graphical user interface 
ii  libloudmouth1-01.4.2-2   Lightweight C Jabber library
ii  libmtp80.3.6-2   Media Transfer Protocol (MTP) libr
ii  libphonon4 4:4.3.0-2 Phonon multimedia framework for Qt
ii  libqt4-dbus4.4.3-2   Qt 4 D-Bus module
ii  libqt4-network 4.4.3-2   Qt 4 network module
ii  libqt4-opengl  4.4.3-2   Qt 4 OpenGL module
ii  libqt4-script  4.4.3-2   Qt 4 script module
ii  libqt4-sql 4.4.3-2   Qt 4 SQL module
ii  libqt4-svg 4.4.3-2   Qt 4 SVG module
ii  libqt4-webkit  4.4.3-2   Qt 4 WebKit module
ii  libqt4-xml 4.4.3-2   Qt 4 XML module
ii  libqtcore4 4.4.3-2   Qt 4 core module
ii  libqtgui4  4.4.3-2   Qt 4 GUI module
ii  libstdc++6 4.3.3-4   The GNU Standard C++ Library v3
ii  libstreamanalyzer0 0.6.3-1   streamanalyzer library for Strigi 
ii  libstreams00.5.11-2  streams library for for Strigi Des
ii  libtag1c2a 1.5-3 TagLib Audio Meta-Data Library
ii  libx11-6   2:1.1.5-2 X11 client-side library
ii  libxml22.6.32.dfsg-5 GNOME XML library
ii  phonon 4:4.3.0-2 metapackage for Phonon multimedia 
ii  zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime

Versions of packages amarok recommends:
ii  kdemultimedia-kio-plugins 4:4.2.0-1  transparent audio CD access for KD

Versions of packages amarok suggests:
pn  libqt4-sql-mysql   (no description available)
pn  libqt4-sql-psql(no description available)
ii  libqt4-sql-sqlite 4.4.3-2Qt 4 SQLite 3 database driver
ii  libvisual-0.4-plugins 0.4.0.dfsg.1-2 Audio visualization framework plug

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517025: fglrx-driver_1:9-2-1(s390/unstable): FTBTS on mipsel

[Luk Claes]

Package: fglrx-driver
Version: 1:9-2-1
Severity: serious

There was an error while trying to autobuild your package:

> Automatic build of fglrx-driver_1:9-2-1 on debian04v1.zseries.org by 
> sbuild/s390 98-farm
> Build started at 20090225-0637

[...]

> ** Using build dependencies supplied by package:
> Build-Depends: debhelper (>= 7), dpatch, bzip2, ia32-libs [amd64], libx11-6, 
> libxext6, libgl1-mesa-glx, libxrandr2, libice6, libsm6, libfontconfig1, 
> libxi6, libxcursor1, xsltproc, rpl, docbook-xml (>= 4.4), docbook-xsl (>= 
> 1.70.1), libxinerama-dev

[...]

>&& rm -rf modules)
> dh_desktop
> dh_installinit --name=fglrx-driver
> dh_installchangelogs
> dh_installdocs
> dh_installman
> dh_installmenu
> dh_installdebconf
> dh_link
> dh_lintian
> dh_strip
> strip: Unable to recognise the format of the input file 
> `debian/fglrx-driver/usr/lib/libfglrx_dm.so.1.0'
> dh_strip: command returned error code 256
> make: *** [binary-arch] Error 1
> dpkg-buildpackage: failure: /usr/bin/fakeroot debian/rules binary-arch gave 
> error exit status 2

A full build log can be found at:
http://buildd.debian.org/build.php?arch=s390&pkg=fglrx-driver&ver=1:9-2-1

Cheers

Luk



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517020: [Pkg-xfce-devel] Bug#517020: Bug#517020: thunar: potential exploits via application launchers

[David Mohr]

On Wed, Feb 25, 2009 at 12:08 AM, Michael Gilbert
 wrote:
> On Wed, 25 Feb 2009 07:44:33 +0100 Yves-Alexis Perez wrote:
>> Can you point me to your patch to the specs? And your patch to the code?
>
> i understand that there's going to be a lot of work involved, and its
> easy for me to submit the problem, and hard for you to fix it.  i
> truely do appreciate that.  and i also understand that you're a
> volunteer, so technically, you don't really have to do anything if you
> don't want to.
>
> i'm just trying to help get the ball rolling.
>
> are [1],[2] the spec you are refering to?
>
> [1] http://portland.freedesktop.org/xdg-utils-1.0/xdg-desktop-icon.html
> [2] http://portland.freedesktop.org/xdg-utils-1.0/xdg-desktop-menu.html

Correct me if I'm wrong, but I think the point is that these specs do
NOT mention the supposed fix that was getting talked about in the
references on the bug report. A consensus is formed once the specs are
updated - then the fix should be implemented.

Notably there is no need to rush here because Thunar already behaves
extremely well - and does NOT manage the desktop. So the issue is
completely different than with KDE and GNOME.

~David



--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517016: empty diff.gz file

[Michael Tautschnig]

> Package: diagnostics
> Version: 0.2.6-1
> 
> Hello,
> 
> the file diagnostics_0.2.6-1.diff.gz:
> 
> $ zcat diagnostics_0.2.6-1.diff.gz
> $
> 
> This is also warned by dpkg-source and lintian:
> 
> dpkg-source: warning: diff `./diagnostics_0.2.6-1.diff.gz' doesn't contain 
> any 
> patch
> 
> lintian -i *.dsc
> W: diagnostics source: empty-debian-diff
> 

Is there anything really wrong with diagnostics (that is, how did you get to
report this)? In fact, the empty diff was expected as I've got access to
upstream's source repository and keep the changes there. I might in fact add a
lintian override later on. I'll close the bug report with such an upload if
nothing else is wrong.

Best,
Michael



pgpJFworNlEk6.pgp
Description: PGP signature

Bug#517020: [Pkg-xfce-devel] Bug#517020: thunar: potential exploits via application launchers

[Michael Gilbert]

On Wed, 25 Feb 2009 07:44:33 +0100 Yves-Alexis Perez wrote:
> Can you point me to your patch to the specs? And your patch to the code?

i understand that there's going to be a lot of work involved, and its
easy for me to submit the problem, and hard for you to fix it.  i
truely do appreciate that.  and i also understand that you're a
volunteer, so technically, you don't really have to do anything if you
don't want to.

i'm just trying to help get the ball rolling.

are [1],[2] the spec you are refering to?

[1] http://portland.freedesktop.org/xdg-utils-1.0/xdg-desktop-icon.html
[2] http://portland.freedesktop.org/xdg-utils-1.0/xdg-desktop-menu.html



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516558: bouncy: Bouncy fails to start

[Timo Savinen]

Tested in same system with python-opengl 3.0.0~b3-1,  it starts ok. So
it seems to be related to python-opengl 3.0.0~b3-1 -> 3.0.0~b6-3
update. The crashing function glVertexDispatch (in exceptional.py)
seems to be changed between those versions.

Timo



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516688: Confirmation: fixed

[Éric Araujo]

Hello

I got the latest sid version without problem. Thank you.
Seems this one bug has brought much attention to itself ;)

Kind regards, Merwok




-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#452599: moinmoin 1.8: using systemwide copy of fckeditor.

[Frank Lin PIAT]

Hi,

I've had a try enabling fckeditor in moinmoin 1.8. That was quite easy
actually. I've attached a temporary patch.

I haven't tested it that much yet, but it seems to work. Also, I haven't
tested unstable's fckeditor_1:2.6.4-1 either.
I have some concerns with the lack of control we have over the version
of the fckeditor package. What's your opinion about it?

Franklin

diff --git a/debian/README.Debian.in b/debian/README.Debian.in
index caa5e8c..d5ce46e 100644
--- a/debian/README.Debian.in
+++ b/debian/README.Debian.in
@@ -29,7 +29,8 @@ Example: A single wiki as CGI with Apache2
 	
 		ServerName wiki.example.org
 		DocumentRoot /var/www/mywiki/
-		Alias /moin___STATICPATH__/ "/usr/share/moin/htdocs/"
+		Alias __STATICPATH__/applets/FCKeditor/ "/usr/share/fckeditor/"
+		Alias __STATICPATH__/ "/usr/share/moin/htdocs/"
 		ScriptAlias /MyWiki "/var/www/mywiki/moin.cgi"
 	
 
diff --git a/debian/control b/debian/control
index 4f7a484..5b07b30 100644
--- a/debian/control
+++ b/debian/control
@@ -11,7 +11,7 @@ Homepage: http://moinmo.in/
 Package: python-moinmoin
 Architecture: all
 Section: python
-Depends: ${python:Depends}, ${misc:Depends}
+Depends: ${python:Depends}, ${misc:Depends}, fckeditor
 Provides: ${python:Provides}, moinmoin-common
 Replaces: python2.3-moinmoin (<< 1.5.3-1.1), python2.4-moinmoin (<< 1.5.3-1.1), moinmoin-common
 Conflicts: python2.3-moinmoin (<< 1.5.3-1.1), python2.4-moinmoin (<< 1.5.3-1.1), moinmoin-common
diff --git a/debian/rules b/debian/rules
index fcc973f..8171e7b 100755
--- a/debian/rules
+++ b/debian/rules
@@ -39,7 +39,7 @@ DEB_UPSTREAM_TARBALL_MD5 = b3ced56bbe09311a7c56049423214cdb
 
 pkg = python-moinmoin
 
-DEB_INSTALL_EXAMPLES_$(pkg) += wiki/htdocs/applets/FCKeditor wiki/htdocs/applets/moinFCK* wiki/htdocs/applets/moinfck*
+##DEB_INSTALL_EXAMPLES_$(pkg) += wiki/htdocs/applets/FCKeditor wiki/htdocs/applets/moinFCK* wiki/htdocs/applets/moinfck*
 libdir = /usr/share/python-support/$(cdbs_curpkg)
 pyversions = 2.3-
 DEB_PYTHON_PRIVATE_MODULES_DIRS_$(pkg_data) = /usr/share/moin/data/plugin /usr/share/moin/server
@@ -159,13 +159,12 @@ binary-fixup/$(pkg)::
 	rm -f debian/$(cdbs_curpkg)$(datadir)/htdocs/applets/TWikiDrawPlugin/twikidraw.jar
 	echo "This applet has not yet been packaged for Debian. for now it is available at http://debian.jones.dk/auryn/pool-all/official/moin/twikidraw/"; > debian/$(cdbs_curpkg)$(datadir)/htdocs/applets/TWikiDrawPlugin/README
 
-# Strip FCKeditor as we cannot take responsibility for it
-# (provided as example instead)
+# Strip FCKeditor, as it's provided by packages fckeditor
 binary-fixup/$(pkg)::
 	rm -rf debian/$(cdbs_curpkg)$(datadir)/htdocs/applets/FCKeditor/*
-	rm -rf debian/$(cdbs_curpkg)$(datadir)/htdocs/applets/moinFCKplugins
-	rm -f debian/$(cdbs_curpkg)$(datadir)/htdocs/applets/moinfck*
-	echo "This applet is provided only as example for Debian." > debian/$(cdbs_curpkg)$(datadir)/htdocs/applets/FCKeditor/README
+	##rm -rf debian/$(cdbs_curpkg)$(datadir)/htdocs/applets/moinFCKplugins
+	##rm -f debian/$(cdbs_curpkg)$(datadir)/htdocs/applets/moinfck*
+	echo "This applet is provided by Debian's fckeditor package." > debian/$(cdbs_curpkg)$(datadir)/htdocs/applets/FCKeditor/README
 	echo "More info at /usr/share/doc/$(cdbs_curpkg)/README.Debian(.gz)" >> debian/$(cdbs_curpkg)$(datadir)/htdocs/applets/FCKeditor/README
 
 ## Move documentation parts of FCKeditor below /usr/share/doc/.../FCKeditor/

Bug#481296: Bug#481297: any progress on oui.txt unification?

[Filippo Giunchedi]

On Wed, Feb 25, 2009 at 07:02:38AM +0100, Vincent Bernat wrote:
> OoO Lors  de la soirée naissante  du mardi 24 février  2009, vers 18:56,
> Filippo Giunchedi  disait :
> 
> > with update-oui which downloads and stores files into /usr/share/oui/
> 
> Maybe /usr/share/misc like other files?

I thought of this but ended up with /usr/share/oui/ because also parsed files
can live there, oui.txt and iab.txt can be symlinked into /usr/share/misc
though, I'll add this, thanks.

filippo
--
Filippo Giunchedi - http://esaurito.net - 0x6B79D401

If only God would give me some clear sign! Like making a large deposit
in my name in a Swiss bank.
-- Woody Allen


signature.asc
Description: Digital signature

Bug#517010: [Debian-med-packaging] Bug#517010: Bug#517010: [njplot] Please mention that njplot is a phylogenetic tree drawing program in the short description

[Charles Plessy]

Hi Andreas,

Le Wed, Feb 25, 2009 at 07:27:30AM +0100, Andreas Tille a écrit :
>
> Any specific reason to wait with an upload.

Yes, the end of the coffee break :)

Do not hesitate to upload if you are currently examining njplot. I can do it
later, but I already shifted my attention to other packages.

Have a nice day,

-- 
Charles Plessy
Debian Med packaging team,
http://www.debian.org/devel/debian-med
Tsurumi, Kanagawa, Japan



--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517020: [Pkg-xfce-devel] Bug#517020: thunar: potential exploits via application launchers

[Yves-Alexis Perez]

On mer, 2009-02-25 at 00:33 -0500, Michael Gilbert wrote:
> it was recently realized that thunar also suffers from the same
> application launcher issues recently report on nautilus and
> konqueror [1].  this report is submitted to track this problem.  the
> original references are [2],[3],[5].  see nautilus [5] and konqueror
> [6] bug reports.

Can you point me to your patch to the specs? And your patch to the code?

Tia,
-- 
Yves-Alexis


signature.asc
Description: This is a digitally signed message part

Bug#517018: debian-installer: no-root option in expert installer exposes locally exploitable security flaw

[Michael Gilbert]

On Tue, 24 Feb 2009 22:12:52 -0800 Steve Langasek wrote:
> > since there is no root password set up during installation, a local
> > attacker can simply boot into the root account (without being prompted
> > for a password) via single user mode ("single" kernel option).
> 
> Have you tested that this is actually the case?

yes.

> "no password" != "empty password".  

right, i certainly appreciate that there is a huge difference.  i'm not
entirely sure what the installer is doing (i assume that it generates a
random password since "su" itself still requires a password), but the
easiest way i could think to describe the problem was by the term
no-root.  if there is better terminology that i can use, please let me
know.

> Booting in single user mode should not
> allow you to bypass the password prompt, and if it does, that's a bug in the
> sulogin program.

this is exactly what happens.  there is no password prompt for single
user mode.

it may indeed be more of an issue related to sulogin than the installer,
but the (non-default) no-root feature in the expert installer exposes
the problem. the current behavior may have been a conscious choice
(probably made by someone on the ubuntu team) to allow users admin
their systems even though they never set up a root password. 

> > [1] discusses the details of the method for password recovery, but the
> > same can be used for malicious purposes, of course.
> 
> > [1] http://linuxwave.blogspot.com/2008/09/ubuntu-forgotten-password.html
> 
> This link explicitly shows overriding the init value in the bootloader. 
> That doesn't appear to have anything to do with vulnerabilities with how the
> root account is set up.

regardless of what the article says, the "init=/bin/bash" option isn't
actually necessary.  all you need is "single", and a boot entry for
that is automatically set up by the installer by default.

mike



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517021: [Pkg-samba-maint] Bug#517021: Missing space in error message

[Christian Perrier]

forwarded 517021 https://bugzilla.samba.org/show_bug.cgi?id=6139
thanks

Quoting Matt Kraai (kr...@ftbfs.org):
> Package: smbfs
> Version: 2:3.3.0-3
> Severity: minor
> Tags: patch
> 
> I accidentally forgot the "user=" part of the argument to the -o
> option to mount.cifs, which resulted in the following message:
> 
>  mount error(13): Permission denied
>  Refer to the mount.cifs(8) manual page (e.g.man mount.cifs)
> 
> The attached patch adds a space after "e.g.".


Thanks, Matt. I forwarded this upstream.




signature.asc
Description: Digital signature

Bug#517010: [Debian-med-packaging] Bug#517010: Bug#517010: [njplot] Please mention that njplot is a phylogenetic tree drawing program in the short description

[Andreas Tille]

On Wed, 25 Feb 2009, Charles Plessy wrote:


tag 517010 pending
thanks


Thanks. ;-)


thanks for the suggestion. I corrected the description in our Subversion
repository, and the change will be part of the next upload (maybe not so soon…).


Any specific reason to wait with an upload.  IMHO it makes sense to fix 
description
issues in a shorter time frame.  This would influence our tasks pages and gives
description translators more time.

Kind regards

 Andreas.

--
http://fam-tille.de

Bug#517024: please add a --no-pristine-tar option

[Bdale Garbee]

Package: git-buildpackage
Severity: wishlist

By default, I have my .gbp.conf file set up to use pristine-tar.  However,
when dealing with a non-DFSG upstream tarball, it would be nice to be able
to do something like:

git-buildpackage --no-pristine-tar -S
pristine-tar commit ../build-area//_.orig.tar.gz

to generate an orig.tar.gz from the cleaned branch and get it into the
pristine-tar branch.  

If you were to provide a clueful way of doing both of the above operations 
in one git-buildpackage invocation I might use it, but all I really want 
is to not have to fiddle with .gbp.conf and use the --git-ignore-new flag 
every time I want to create an orig.tar.gz...  

Thanks for considering this!

Bdale




-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516545: ITP: eprover -- The Equational Theorem Prover E

[Petr Pudlak (Debian)]

On Tuesday 24 February 2009 09:02:34 Andreas Tille wrote:
> On Mon, 23 Feb 2009, Petr Pudlak (Debian) wrote:
> > as I was suggested, I'm looking for a sponsor for the "eprover" package,
> > who would help me with publishing the package.
>
> If you are seeking for a sponsor it is a clever idea to post the
> URL to your *.dsc file to enable others to evaluate your work. ;-)

Thanks for the suggestion. Here is the address:
dget -u http://petr.pudlak.name/deb/eprover_1.0.004-1.dsc

  Best regards,
  Petr

Bug#517018: debian-installer: no-root option in expert installer exposes locally exploitable security flaw

[Steve Langasek]

On Wed, Feb 25, 2009 at 12:02:58AM -0500, Michael Gilbert wrote:
> since there is no root password set up during installation, a local
> attacker can simply boot into the root account (without being prompted
> for a password) via single user mode ("single" kernel option).

Have you tested that this is actually the case?
"no password" != "empty password".  Booting in single user mode should not
allow you to bypass the password prompt, and if it does, that's a bug in the
sulogin program.

> [1] discusses the details of the method for password recovery, but the
> same can be used for malicious purposes, of course.

> [1] http://linuxwave.blogspot.com/2008/09/ubuntu-forgotten-password.html

This link explicitly shows overriding the init value in the bootloader. 
That doesn't appear to have anything to do with vulnerabilities with how the
root account is set up.

-- 
Steve Langasek   Give me a lever long enough and a Free OS
Debian Developer   to set it on, and I can move the world.
Ubuntu Developerhttp://www.debian.org/
slanga...@ubuntu.com vor...@debian.org



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517023: ITP: geanyvc -- a VCS plugin for Geany

[Chow Loong Jin]

Package: wnpp
Owner: Chow Loong Jin 
Severity: wishlist

*** Please type your report below this line ***

* Package name: geanyvc
  Version : 0.4
  Upstream Author : Yura Siamashka 
* URL : http://plugins.geany.org/geanyvc/
* License : GPL-2
  Programming Lang: C
  Description : a VCS plugin for Geany

GeaanyVC is a plugin for Geany that provides a uniform way of accessing
the different version-control systems inside the Geany IDE. Only a small
subset of vc operations are implemented, which are:
* diff
* log
* status
* revert
* commit

Geany is a small and lightweight integrated development environment
using the GTK2 toolkit.

-- System Information:
Debian Release: lenny/sid
  APT prefers intrepid-updates
  APT policy: (500, 'intrepid-updates'), (500, 'intrepid-security'),
(500, 'intrepid-proposed'), (500, 'intrepid-backports'), (500,
'intrepid')
Architecture: i386 (i686)

Kernel: Linux 2.6.27-12-generic (SMP w/2 CPU cores)
Locale: LANG=en_SG.UTF-8, LC_CTYPE=en_SG.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash


signature.asc
Description: This is a digitally signed message part

Bug#481296: Bug#481297: any progress on oui.txt unification?

[Vincent Bernat]

OoO Lors  de la soirée naissante  du mardi 24 février  2009, vers 18:56,
Filippo Giunchedi  disait :

> with update-oui which downloads and stores files into /usr/share/oui/

Maybe /usr/share/misc like other files?
-- 
printk("VFS: Busy inodes after unmount. "
"Self-destruct in 5 seconds.  Have a nice day...\n");
2.3.99-pre8 /usr/src/linux/fs/super.c


pgp5J0EefomtU.pgp
Description: PGP signature

Bug#516425: Patch to fix happy build

[Matt Kraai]

tag 516425 + patch
thanks

The attached patch incorporates Ruben's change, which has already been
included upstream, as well as another change to Main.lhs also already
included upstream and some changes to get_version.hs.  All of these
changes are required to allow happy to build successfully.

-- 
Matt http://ftbfs.org/
diff -ru happy-1.17~/debian/get_version.hs happy-1.17/debian/get_version.hs
--- happy-1.17~/debian/get_version.hs   2009-02-24 21:08:57.0 -0800
+++ happy-1.17/debian/get_version.hs2009-02-24 21:46:07.0 -0800
@@ -1,14 +1,16 @@
 
 module Main (main) where
 
+import Data.Version ( showVersion )
 import Distribution.Package
 import Distribution.PackageDescription
+import Distribution.PackageDescription.Parse ( readPackageDescription )
 import Distribution.Simple.Utils
 import Distribution.Verbosity
 import Distribution.Version
 
 main :: IO ()
-main = do fp <- findPackageDesc normal "."
+main = do fp <- findPackageDesc "."
   pd <- readPackageDescription normal fp
   putStr $ showVersion $ pkgVersion $ package $ packageDescription pd
 
diff -ru happy-1.17~/Setup.lhs happy-1.17/Setup.lhs
--- happy-1.17~/Setup.lhs   2009-02-24 21:08:57.0 -0800
+++ happy-1.17/Setup.lhs2009-02-24 21:45:50.0 -0800
@@ -4,7 +4,7 @@
 module Main where
 
 import Distribution.PackageDescription (PackageDescription(..))
-import Distribution.Simple.Setup ( BuildFlags(..) )
+import Distribution.Simple.Setup ( BuildFlags(..), buildVerbose )
 import Distribution.Simple ( defaultMainWithHooks, defaultUserHooks, 
UserHooks(..) )
 import Distribution.Simple.LocalBuildInfo ( LocalBuildInfo(..) )
 import Distribution.Simple.Program
diff -ru happy-1.17~/src/Main.lhs happy-1.17/src/Main.lhs
--- happy-1.17~/src/Main.lhs2009-02-24 21:08:57.0 -0800
+++ happy-1.17/src/Main.lhs 2009-02-24 21:50:51.0 -0800
@@ -36,7 +36,7 @@
 > import Foreign.C
 #endif
 #if defined(__GLASGOW_HASKELL__)
-> import GHC.Prim ( unsafeCoerce# )
+> import GHC.Exts ( unsafeCoerce# )
 #define sCC _scc_
 > coerceParser = unsafeCoerce#
 #else

Bug#517022: openssl: /it's unique/s/'//

[Justin Pryzby]

Package: openssl
Version: 0.9.8g-4ubuntu3.4
Severity: minor
File: /usr/share/man/man1/speed.1ssl.gz

--- /usr/share/man/man1/speed.1ssl.gz
+++ -   2009-02-24 22:49:58.571289761 -0700
@@ -168,7 +168,7 @@
 .IX Header "OPTIONS"
 .IP "\fB\-engine id\fR" 4
 .IX Item "-engine id"
-specifying an engine (by it's unique \fBid\fR string) will cause \fBspeed\fR
+specifying an engine (by its unique \fBid\fR string) will cause \fBspeed\fR
 to attempt to obtain a functional reference to the specified engine,
 thus initialising it if needed. The engine will then be set as the default
 for all available algorithms.




-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#514495: [lib/Spelling.pm] check the spelling of large texts in a more efficient way

[Raphael Geissert]

I'm afraid your message didn't make it to the newsgroup provided by gmane; so 
it is until now that I'm reading your email.

On Sunday 08 February 2009 21:11:20 Russ Allbery wrote:
> Raphael Geissert  writes:
> > There might indeed be a degradation on those texts where the number of
> > characters is near the limit of the methods switcher. Other than those
> > cases, when the number of words in the text is greater than the number
> > of words in the hash there should be a performance improvement when
> > searching for every known word in the text (there is indeed a
> > performance penalty because of the regex and the text traversal, but it
> > is not enough to make it slower than the other method).
>
> But why would that be the case?
>

I don't remember very well my reasoning behind the new implementation but it 
was along the lines of being faster because it only looked up known words, 
ignoring dups.

> There are two scaling factors here.  Let's say n is the length of the text
> and w is the number of corrections we have.  The current algorithm walks
> the text once and does a hash table lookup for each word.  (Well,
> technically it probably walks the text once to split it on whitespace and
> then a second time to do the hash table lookups.)  So, we do work
> proportional to the length of the text, or O(n).  The factor is roughly
> 2 plus the length of time it takes to hash a word.
>

Plus the lc and regex operations on every word (a word being whatever is 
between two spaces or the start and end of line, or any combination of them).

> Here's the new code:
[...]
>
> The first branch is the current algorithm.  This code chooses that
> algorithm if n is small.  If n is large, it switches to doing a scan of
> the full text for each correction that we have, which is work proportional
> to w, the number of corrections.
>
> I was wrong originally -- this isn't O(n^2).  It's still O(n), but with a
> different factor, this time proportional to w.  It's O(wn), essentially.
>

There are two less operations being performed on the new implementation: lc 
and the stripping regex are done directly on the whole text, not per word. 
And I wouldn't consider it O(wn), it is more like O(wn/p), where p is the 
probability that a known word appears in the text, because if a known word 
appears, for example, at the beginning of the text it won't have to recur 
over the rest of the text.

> So, for this to be faster, the time it takes to check a portion of the
> text against every correction we have using a regex must be less than the
> time it takes to hash a word.
>
> This makes no sense to me.  Any reasonable hash algorithm should be much
> faster than more than 100 regex matches.
>
> The benchmarking looks like it may just be in the noise for me:
[...]

agreed

[...]
>
> So I'm getting basically similar results either way.  I would expect that.

I believe that's because the version of lintian you used for your tests didn't 
include the binary spell checking patch, my results did. Running lintian 
without that patch makes it spell check only very small texts, IOW: the new 
algorithm is never used without the patch.

Anyway, I have written several different implementations; one similar to the 
one I previously wrote but turning the whole list of known bad words into a 
big ORed regex and, as expected, resulted a lot faster than my first one. But 
the vast majority of times it was still slower than the current algorithm.

These are the benchmark results of several methods, all dropping the regex 
that strips most non-word characters.

On the output of strings /usr/bin/php5 (50 times):
Rate   bts  orig  newfg
bts   7.74/s--  -44%  -61%
orig  13.7/s   77%--  -30%
newg 19.7/s  154%   43% --

on /usr/share/common-licenses/GPL-3 (1000 times):
Rate   bts  orig  new
bts   58.6/s--  -60%  -76%
orig   146/s  148%--  -40%
new  242/s  312%   66% --

bts: the one I first submitted on this bug report
orig: the current one
new: the proposed one

The idea behind removing the regex that removes all non-alphabetic characters 
is that the likelyhood for the resulting "word" to be an actual match should 
be extremely remote. Instead, the replacement takes care of removing dots, 
commas, and other symbols that are commonly used in sentences.

Cheers,
-- 
Raphael Geissert - Debian Maintainer
www.debian.org - get.debian.net


lintian_spelling-optim.mbox
Description: application/mbox

Bug#517021: Missing space in error message

[Matt Kraai]

Package: smbfs
Version: 2:3.3.0-3
Severity: minor
Tags: patch

I accidentally forgot the "user=" part of the argument to the -o
option to mount.cifs, which resulted in the following message:

 mount error(13): Permission denied
 Refer to the mount.cifs(8) manual page (e.g.man mount.cifs)

The attached patch adds a space after "e.g.".

-- 
Matt http://ftbfs.org/
diff -ru samba-3.3.0~/source/client/mount.cifs.c 
samba-3.3.0/source/client/mount.cifs.c
--- samba-3.3.0~/source/client/mount.cifs.c 2009-02-24 09:27:10.0 
-0800
+++ samba-3.3.0/source/client/mount.cifs.c  2009-02-24 09:28:51.0 
-0800
@@ -1435,7 +1435,7 @@
}
}
printf("mount error(%d): %s\n", errno, strerror(errno));
-   printf("Refer to the mount.cifs(8) manual page (e.g.man 
mount.cifs)\n");
+   printf("Refer to the mount.cifs(8) manual page (e.g. man 
mount.cifs)\n");
rc = EX_FAIL;
goto mount_exit;
}

Bug#516277: Patch to fix alex build

[Matt Kraai]

tag 516277 + patch
thanks

The attached patch fixes the build of alex.  It incorporates Ruben
Molina's change, which was already made upstream, along with another
upstream change to Main.hs required to allow alex to build.

It also includes some required changes to get_version.hs.

-- 
Matt http://ftbfs.org/
diff -ru alex-2.2~/debian/get_version.hs alex-2.2/debian/get_version.hs
--- alex-2.2~/debian/get_version.hs 2009-02-24 20:34:01.0 -0800
+++ alex-2.2/debian/get_version.hs  2009-02-24 20:52:49.0 -0800
@@ -1,14 +1,16 @@
 
 module Main (main) where
 
+import Data.Version ( showVersion )
 import Distribution.Package
 import Distribution.PackageDescription
+import Distribution.PackageDescription.Parse ( readPackageDescription )
 import Distribution.Simple.Utils
 import Distribution.Verbosity
 import Distribution.Version
 
 main :: IO ()
-main = do fp <- findPackageDesc normal "."
+main = do fp <- findPackageDesc "."
   pd <- readPackageDescription normal fp
   putStr $ showVersion $ pkgVersion $ package $ packageDescription pd
 
diff -ru alex-2.2~/Setup.lhs alex-2.2/Setup.lhs
--- alex-2.2~/Setup.lhs 2009-02-24 20:34:01.0 -0800
+++ alex-2.2/Setup.lhs  2009-02-24 20:34:16.0 -0800
@@ -4,7 +4,7 @@
 module Main where
 
 import Distribution.PackageDescription (PackageDescription(..))
-import Distribution.Simple.Setup ( BuildFlags(..) )
+import Distribution.Simple.Setup ( BuildFlags(..), buildVerbose )
 import Distribution.Simple ( defaultMainWithHooks, defaultUserHooks, 
UserHooks(..) )
 import Distribution.Simple.LocalBuildInfo ( LocalBuildInfo(..) )
 import Distribution.Simple.Program
diff -ru alex-2.2~/src/Main.hs alex-2.2/src/Main.hs
--- alex-2.2~/src/Main.hs   2009-02-24 20:34:01.0 -0800
+++ alex-2.2/src/Main.hs2009-02-24 21:00:17.0 -0800
@@ -22,6 +22,9 @@
 import Paths_alex ( version, getDataDir )
 
 import Control.Exception as Exception ( block, unblock, catch, throw )
+#if __GLASGOW_HASKELL__ >= 610
+import Control.Exception ( bracketOnError )
+#endif
 import Control.Monad ( when, liftM )
 import Data.Char ( chr )
 import Data.List ( isSuffixOf )
@@ -303,6 +306,7 @@
 dieAlex :: String -> IO a
 dieAlex s = getProgramName >>= \prog -> die (prog ++ ": " ++ s)
 
+#if __GLASGOW_HASKELL__ < 610
 bracketOnError
:: IO a -- ^ computation to run first (\"acquire resource\")
-> (a -> IO b)  -- ^ computation to run last (\"release resource\")
@@ -316,3 +320,4 @@
   (\e -> do { after a; throw e })
 return r
  )
+#endif

Bug#517020: thunar: potential exploits via application launchers

[Michael Gilbert]

package: thunar
severity: grave
tags: security

it was recently realized that thunar also suffers from the same
application launcher issues recently report on nautilus and
konqueror [1].  this report is submitted to track this problem.  the
original references are [2],[3],[5].  see nautilus [5] and konqueror
[6] bug reports.

[1] http://lists.debian.org/debian-devel/2009/02/msg00746.html
[2] http://www.geekzone.co.nz/foobar/6229
[3] http://www.geekzone.co.nz/foobar/6236
[4] http://lwn.net/Articles/178409/
[5] http://bugs.debian.org/515104
[6] http://bugs.debian.org/515106



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516555: CVE-2008-6059: missing access restriction

[Michael Gilbert]

does this problem (with cookies) really affect the version of webkit in
debian, which does not currently support cookies (or more accurately
the libraries in debian are not current enough to support cookies in
webkit)?  



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516864: libpam-afs-session: PAGs not used on SSH login

[Russ Allbery]

david l goodrich  writes:

> It's a custom kernel, because it's a Xen domU.  Which probably invites
> all kinds of pain.  But its config file is used in a different Xen domU,
> which works fine.  I've attached it, I'm not very adept at reading these
> files.  It works for me, so I just copy it to my new systems and build
> the kernel with whatever version of gcc the new machine requires.

Indeed, the kernel isn't built with keyring support:

> #
> # Security options
> #
> # CONFIG_KEYS is not set

CONFIG_KEYS is the relevant setting.

Now, that doesn't explain why it's working elsewhere, particularly if the
same versions of everything are involved.  In some ways, it raises more
questions than it answers, such as how you're getting PAGs at all since
the other way of doing them isn't exported in current kernels (but it may
be that this is an older version).  However, I suspect that if you enable
CONFIG_KEYS and build an AFS kernel module against the resulting kernel,
you'll find that this starts working.

If I had to guess, I'd say that the AFS module is managing to create the
group for the PAG but failing to hook into setgroups, so then when ssh
calls setgroups, it blows away the PAG again and you lose access to your
token.  No idea why that isn't happening on your other systems too.

It's likely that OpenAFS will completely drop support for kernels without
keyring support in some future version, since doing anything else is just
too ugly and is explicitly not supported by the Linux kernel developers.

-- 
Russ Allbery (r...@debian.org)   



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517019: owl: unnecessary krb4 and libdes425 dependencies

[Sam Hartman]

package: owl
version: 2.1.11-2
severity: important
tags: patch


With the next upload of the krb5 package, owl will FTBFS unless this
bug is fixed, so expect this to be upgraded to severity serious within
a week.

The krb5 package is dropping development support for libkrb4 and
libdes425 (and will be dropping runtime libraries in the near future).

Owl links against libdes425 for zcrypt and links against libkrb4 for
no particularly good reason.

Here are patches I just pushed to barnowl to fix these iyssues.

Note that patch 0007 includes some packaging changes you probably
don't want; the important thing is to build-depend on libssl-dev.

The affect of these patches will still be to use libdes425, but if
rebuilt after libdes425.so goes awy, you'd end up using libcrypto.


>From 4ad9c2d0e61dcdee8091d21d20effa74a053191b Mon Sep 17 00:00:00 2001
From: Sam Hartman 
Date: Tue, 24 Feb 2009 23:15:58 -0500
Subject: [PATCH] Remove unneeded dependency on krb5 and krb4

Barnowl links against libkrb4, libk5crypto and libkrb5 and uses
symbols from none of the above.  Remove these link-time dependencies.
  This might break static builds but Kerberos no longer provides static 
libraries.

The dependency on libkrb4 is problematic for Debian as libkrb4.so is being 
removed.
---
 configure.ac |4 
 1 files changed, 0 insertions(+), 4 deletions(-)

diff --git a/configure.ac b/configure.ac
index c83b5b9..d7269d1 100644
--- a/configure.ac
+++ b/configure.ac
@@ -59,13 +59,9 @@ AC_CHECK_LIB(ncursesw, initscr,, AC_MSG_ERROR(No libncursesw 
found.))
 AC_CHECK_LIB(com_err, com_err)
 AC_CHECK_LIB(nsl, gethostbyname)
 AC_CHECK_LIB(socket, socket)
-AC_CHECK_LIB(k5crypto, krb5_derive_key)
 dnl AC_CHECK_LIB(des425, req_act_vno)
 AC_CHECK_LIB(des425, des_cbc_encrypt)
 AC_CHECK_LIB(resolv, res_search)
-AC_CHECK_LIB(krb5, krb5_get_credentials)
-AC_CHECK_LIB(krb4, krb_sendauth,,
-   AC_CHECK_LIB(krb, krb_sendauth))
 dnl AC_CHECK_LIB(zephyr, ZGetSender,, AC_MSG_ERROR(No zephyr library found.))
 AC_CHECK_LIB(zephyr, ZGetSender)
 AC_CHECK_LIB(zephyr, ZInitLocationInfo, 
AC_DEFINE([HAVE_LIBZEPHYR_ZINITLOCATIONINFO], [], [Have ZInitLocationInfo]),)
-- 
1.5.6.3

>From 27ace3d98c59bd40c35cf439a2398665772aab3d Mon Sep 17 00:00:00 2001
From: Sam Hartman 
Date: Tue, 24 Feb 2009 23:41:54 -0500
Subject: [PATCH] Support zcrypt using OpenSSL DES

Support a hackish mechanism for detecting OpenSSL DES if des425 is not
present.  If you include des.h then they include macros to be
consistent with the des425 API.  However these macros rename
des_ecb_encrypto te DES_ecb_encrypt.  Searching for both the macros
and the functions was annoying in autoconf, so instead we search for
those internal function names.

Also, search  for /usr/include/openssl if no krb4 includes are found.
---
 configure.ac |7 ++-
 1 files changed, 6 insertions(+), 1 deletions(-)

diff --git a/configure.ac b/configure.ac
index d7269d1..a8975e2 100644
--- a/configure.ac
+++ b/configure.ac
@@ -41,6 +41,10 @@ elif test -d /usr/local/include/kerberosIV; then
 CFLAGS=${CFLAGS}\ -I/usr/local/include/kerberosIV
 CPPFLAGS=${CPPFLAGS}\ -I/usr/local/include/kerberosIV
 AC_MSG_RESULT(yes)
+elif test -d /usr/include/openssl; then
+CFLAGS=${CFLAGS}\ -I/usr/include/openssl
+CPPFLAGS=${CPPFLAGS}\ -I/usr/include/openssl
+AC_MSG_RESULT(OpenSSL DES found instead)
 else
 AC_MSG_RESULT(no)
 fi
@@ -60,7 +64,7 @@ AC_CHECK_LIB(com_err, com_err)
 AC_CHECK_LIB(nsl, gethostbyname)
 AC_CHECK_LIB(socket, socket)
 dnl AC_CHECK_LIB(des425, req_act_vno)
-AC_CHECK_LIB(des425, des_cbc_encrypt)
+AC_CHECK_LIB(des425, des_cbc_encrypt,,AC_CHECK_LIB(crypto,DES_cbc_encrypt))
 AC_CHECK_LIB(resolv, res_search)
 dnl AC_CHECK_LIB(zephyr, ZGetSender,, AC_MSG_ERROR(No zephyr library found.))
 AC_CHECK_LIB(zephyr, ZGetSender)
@@ -72,6 +76,7 @@ AC_ARG_ENABLE([athstatic], 
AS_HELP_STRING([--enable-athstatic],
   [ATHSTATIC=])
 
 AC_CHECK_FUNCS(use_default_colors resizeterm des_string_to_key des_key_sched 
des_ecb_encrypt)
+AC_CHECK_FUNCS(   DES_string_to_key  
DES_ecb_encrypt DES_key_sched)
 
 AC_MSG_CHECKING(for des_ecb_encrypt prototype)
 AC_TRY_COMPILE([#include 
-- 
1.5.6.3

>From a164690d846dad855c9d959dfc9c689c0704be40 Mon Sep 17 00:00:00 2001
From: Sam Hartman 
Date: Tue, 24 Feb 2009 23:56:43 -0500
Subject: [PATCH] Version 1.0.5-2

Document changes
Update standards version
Depend on libssl-dev for libcrypto when libdes425 goes away.
---
 debian/changelog |9 +
 debian/control   |4 ++--
 2 files changed, 11 insertions(+), 2 deletions(-)

diff --git a/debian/changelog b/debian/changelog
index fe2da5d..1ba2049 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,12 @@
+barnowl (1.0.5-2) unstable; urgency=low
+
+  * Use new mechanism for running -fstack-protector that works back to etch; 
pulled from upstream
+  * Do not link against libkrb4 or libkrb5; we use none o

Bug#517018: debian-installer: no-root option in expert installer exposes locally exploitable security flaw

[Michael Gilbert]

package: debian-installer
severity: important
tags: security

there is now an option in the expert mode of the debian-installer that
allows the user to install their system without a root account
(replacing it with sudo priviledges for the default user). this exposes
a loophole that enables local attackers to easily obtain root access.

details: 

since there is no root password set up during installation, a local
attacker can simply boot into the root account (without being prompted
for a password) via single user mode ("single" kernel option). then,
he/she can do all kinds of malicious things, but the easiest would be
to simply change the root password...thus owning the machine.  and
since the user never logs in with the root password him/herself,
he/she would never realize that an attacker had gotten in (unless
he/she diligently reviews logs). [1] discusses the details of the
method for password recovery, but the same can be used for malicious
purposes, of course.

potential solutions:

1. always create a root password (e.g. set up a random root password,
rather than no password, during the no root debian-installer setup
page).  note that this may currently be done since "su" itself asks for
a password.

2. drop the user to a full login prompt when booting into single user
mode; thus requiring a valid user account and sudo to perform
administrative actions.  note that it may be possible to circumvent
this via the "init" kernel option, for example "init=/bin/bash".

3. disable the no-root setup page in debian-installer.

the third option may be the easiest to implement immediately --
especially since it's an experimental option in the expert mode of
the installer.  the second option is probably the most robust, but
might be easily circumvented, and would require changes in single user
mode such as automatically mounting /home, which may make single user
mode harder to use (one use case for this mode is to recover or
scan /home, and if it's mounted, that's more difficult).

justification for why a fix for this problem is necessary:

there are levels of vulnerability/security.  at the lowest level are
pure software vulnerabilities (such as this issue), which require
absolutely no effort for a local attacker.  however, for a
hardware-assisted exploit, it requires surrepticious entry, more time,
and more preparedness (and it looks suspicious, and can be somewhat
prevented by limiting access to areas via locks, valid users only,
etc). the user can also increase their security by disabling boot from
media in the bios, which would force the attacker to spend more time to
crack open the machine, which is even more suspicious.

at each level, it takes more and more time for the attacker to exploit
the vulnerability, thus increasing the chance of detecting them.  less
than a minute for the software exploit, 10s of minutes for hardware
assisted and longer for resetting the bios.

severity:

note that the severity of this problem is fairly low right now since
no-root is a non-default option in the "expert" installer.  hence, few
debian systems are likely exposed; but regardless, this problem should
be fixed asap. note that no-root has been the default installer
behavior for ubuntu (since at least dapper i think), so it is a much
more severe issue for them. 

[1] http://linuxwave.blogspot.com/2008/09/ubuntu-forgotten-password.html



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517017: linux-image-2.6.26-1-powerpc: kernel oops on reading from HFS plus filesystem

[Daniel Kahn Gillmor]

Package: linux-image-2.6.26-1-powerpc
Version: 2.6.26-13
Severity: normal

I had mounted a journaled HFS plus filesystem read-only to access a single file 
on that filesystem.
The only file i was accessing at all was an 80G disk image stored at 
/Users/xxx/Desktop/laptop.dmg.

no other hfsplus filesystems were mounted.  In fact, the only non-tmpfs 
filesystem in use was
a vfat filesystem.

I was running photorec on the laptop.dmg file to try to recover data from it, 
when i got the kernel oops below.

--dkg

-- Package-specific info:
** Version:
Linux version 2.6.26-1-powerpc (Debian 2.6.26-13) (wa...@debian.org) (gcc 
version 4.1.3 20080704 (prerelease) (Debian 4.1.2-24)) #1 Sat Jan 10 14:00:38 
CET 2009

** Command line:
root=/dev/ram ro ramdisk_size=7000 

** Tainted: G D (128)

** Kernel log:
[  263.225298] usb 4-2: Manufacturer: USB
[  263.234473] usb 4-2: SerialNumber: XZ187S087WMGK8IG
[  263.285729] usb-storage: device found at 2
[  263.285738] usb-storage: waiting for device to settle before scanning
[  263.789714] hdc: ATAPI 24X DVD-ROM DVD-R CD-R/RW drive, 2048kB Cache
[  263.799193] Uniform CD-ROM driver Revision: 3.20
[  263.895416] PowerMac i2c bus pmu 2 registered
[  263.904572] PowerMac i2c bus pmu 1 registered
[  263.913502] PowerMac i2c bus mac-io 0 registered
[  263.922371] PowerMac i2c bus uni-n 1 registered
[  263.931152] PowerMac i2c bus uni-n 0 registered
[  264.645907] ieee1394: Host added: ID:BUS[0-00:1023]  GUID[000d93fffe346eba]
[  264.884913] b43-phy0: Broadcom 4306 WLAN found
[  264.982274] phy0: Selected rate control algorithm 'pid'
[  265.529072] Broadcom 43xx driver loaded [ Features: PMLR, Firmware-ID: FW13 ]
[  265.561573] snd-aoa-fabric-layout: found bus with layout 51
[  265.570172] snd-aoa-fabric-layout: Using direct GPIOs
[  265.594474] snd-aoa-codec-tas: found 'deq' node
[  265.594512] snd-aoa-fabric-layout: can use this codec
[  265.672897] snd-aoa-codec-tas: tas found, addr 0x35 on 
/p...@f200/mac...@17/i...@18000/d...@6a
[  268.263068] device-mapper: uevent: version 1.0.3
[  268.272791] device-mapper: ioctl: 4.13.0-ioctl (2007-10-18) initialised: 
dm-de...@redhat.com
[  268.293782] usb-storage: device scan complete
[  268.294832] scsi 1:0:0:0: Direct-Access USB  DISK 2.0 1219 
PQ: 0 ANSI: 0 CCS
[  268.639061] Driver 'sd' needs updating - please use bus_type methods
[  268.665639] sd 1:0:0:0: [sda] 1957888 512-byte hardware sectors (1002 MB)
[  268.674967] sd 1:0:0:0: [sda] Write Protect is off
[  268.683191] sd 1:0:0:0: [sda] Mode Sense: 43 00 00 00
[  268.683196] sd 1:0:0:0: [sda] Assuming drive cache: write through
[  268.721810] sd 1:0:0:0: [sda] 1957888 512-byte hardware sectors (1002 MB)
[  268.741738] sd 1:0:0:0: [sda] Write Protect is off
[  268.750258] sd 1:0:0:0: [sda] Mode Sense: 43 00 00 00
[  268.750262] sd 1:0:0:0: [sda] Assuming drive cache: write through
[  268.758731]  sda: [mac] sda1 sda2 sda3
[  268.775102] sd 1:0:0:0: [sda] Attached SCSI removable disk
[  587.801824] ieee1394: Error parsing configrom for node 0-00:1023
[  587.809815] ieee1394: Node changed: 0-00:1023 -> 0-01:1023
[  604.334145] ieee1394: Node added: ID:BUS[0-00:1023]  GUID[00d04b00e550]
[  604.515561] scsi2 : SBP-2 IEEE-1394
[  605.528565] ieee1394: sbp2: Logged into SBP-2 device
[  605.537136] ieee1394: sbp2: Node 0-00:1023: Max speed [S400] - Max payload 
[2048]
[  605.548466] scsi 2:0:0:0: Direct-Access-RBC IC35L060 AVER07-0 ER6O 
PQ: 0 ANSI: 4
[  605.593723] sd 2:0:0:0: [sdb] 120103200 512-byte hardware sectors (61493 MB)
[  605.613742] sd 2:0:0:0: [sdb] Write Protect is off
[  605.62] sd 2:0:0:0: [sdb] Mode Sense: 11 00 00 00
[  605.634084] sd 2:0:0:0: [sdb] Write cache: enabled, read cache: enabled, 
doesn't support DPO or FUA
[  605.643655] sd 2:0:0:0: [sdb] 120103200 512-byte hardware sectors (61493 MB)
[  605.665714] sd 2:0:0:0: [sdb] Write Protect is off
[  605.674342] sd 2:0:0:0: [sdb] Mode Sense: 11 00 00 00
[  605.686083] sd 2:0:0:0: [sdb] Write cache: enabled, read cache: enabled, 
doesn't support DPO or FUA
[  605.694909]  sdb: sdb1 sdb2 sdb3 sdb4 < sdb5 sdb6 sdb7 >
[  605.740840] sd 2:0:0:0: [sdb] Attached SCSI disk
[  676.248786] sd 2:0:0:0: [sdb] 120103200 512-byte hardware sectors (61493 MB)
[  676.254318] sd 2:0:0:0: [sdb] Write Protect is off
[  676.257912] sd 2:0:0:0: [sdb] Mode Sense: 11 00 00 00
[  676.261261] sd 2:0:0:0: [sdb] Write cache: enabled, read cache: enabled, 
doesn't support DPO or FUA
[  676.265197]  sdb: sdb1
[  718.761870] eth0: Link is up at 100 Mbps, full-duplex.
[  729.506089] eth0: Link is up at 100 Mbps, full-duplex.
[  729.512471] eth0: Pause is enabled (rxfifo: 10240 off: 7168 on: 5632)
[ 2568.590413] hfs: write access to a journaled filesystem is not supported, 
use the force option at your own risk, mounting read-only.
[ 4968.702722] Unable to handle kernel paging request for data at address 
0x0628
[ 4968.702983] Faulting instruction address: 0xf25b8f9c
[ 4968.703155] Oops: Kernel 

Bug#517016: empty diff.gz file

[George Danchev]

Package: diagnostics
Version: 0.2.6-1

Hello,

the file diagnostics_0.2.6-1.diff.gz:

$ zcat diagnostics_0.2.6-1.diff.gz
$

This is also warned by dpkg-source and lintian:

dpkg-source: warning: diff `./diagnostics_0.2.6-1.diff.gz' doesn't contain any 
patch

lintian -i *.dsc
W: diagnostics source: empty-debian-diff

-- 
pub 4096R/0E4BD0AB 2003-03-18 



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#499225: [PATCH 1/2] Support waf (closes: #499225).

[Joey Hess]

Trent W. Buck wrote:
> I stuck it directly below setup.py because they're both python thingies.
> I'm not really fussed if you would prefer it to go below.

I think it's safest to always add new stuff the the end of these
commands. Of course, that might mean the wrong stuff runs in some weird
packages, but that's very unlikely and in such a package, one guess is
probably as good as another -- as long as the guess is the same going
forward.
 
> > * The one Setup.hs file that I tried (in hpodder) does not delete
> >   Setup on 'Setup clean'.
> 
> I need to talk to the other Debian-Haskell people about this stuff
> still.  Right now I guess they're asleep (or defecting to Arch :-/).
> 
> > * I'd really like to have the debian haskell people look over any
> >   cabal/Setup/haskell stuff before putting it into debhelper, and
> >   make sure we get it 100% right the first time. In particular
> 
> [You're message got cut off here.]

[Don't think I really had anything important to add.]
 
> I have no problem getting Setup.hs stuff right before deploying it in
> unstable/testing; I just want to get started so that it's ready by the
> time Darcs (my package) transitions to cabal (scheduled for July).

The existing haskell-devscripts stuff might be a good source for a first
cut at getting it right. I am not sure though if debhelper itself can
afford to encode quite as much haskell-specific knowledge as those
commands do. At least, not until I use haskell a lot more. ;-)

-- 
see shy jo


signature.asc
Description: Digital signature

Bug#512854: [INTL:ja] please add Japanese po-debconf template translation (ja.po)

[Peter Samuelson]

tags 512854 pending
thanks

[Hideki Yamane]
>  Here's Japanese po-debconf template translation (ja.po) file that 
>  reviewed by several Japanese Debian developers and users.

Applied, thanks.  Sorry for the 1-month delay, your mail got lost in my
inbox for awhile.
-- 
Peter Samuelson | org-tld!p12n!peter | http://p12n.org/



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517015: e2fsprogs: tune2fs accept negative reserved blocks percentage

[Mike Bird]

Package: e2fsprogs
Version: 1.41.3-1
Severity: minor


"tune2fs -m -1 /dev/foo" should be an error.

-- System Information:
Debian Release: 5.0
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: i386 (i686)

Kernel: Linux 2.6.26-1-686 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages e2fsprogs depends on:
ii  e2fslibs  1.41.3-1   ext2 filesystem libraries
ii  libblkid1 1.41.3-1   block device id library
ii  libc6 2.7-18 GNU C Library: Shared libraries
ii  libcomerr21.41.3-1   common error description library
ii  libss21.41.3-1   command-line interface parsing lib
ii  libuuid1  1.41.3-1   universally unique id library

e2fsprogs recommends no packages.

Versions of packages e2fsprogs suggests:
pn  e2fsck-static  (no description available)
pn  gpart  (no description available)
ii  parted 1.8.8.git.2008.03.24-11.1 The GNU Parted disk partition resi

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517010: [Debian-med-packaging] Bug#517010: [njplot] Please mention that njplot is a phylogenetic tree drawing program in the short description

[Charles Plessy]

tag 517010 pending
thanks

Le Tue, Feb 24, 2009 at 09:47:03PM -0500, Filipus Klutiero a écrit :
> Package: njplot
> Version: 2.3-1
> Severity: wishlist
> 
> The short description is "A tree drawing program".
> Please specify that the trees drawn are phylogenetic.

Dear Filipus,

thanks for the suggestion. I corrected the description in our Subversion
repository, and the change will be part of the next upload (maybe not so soon…).

Have a nice day,

-- 
Charles Plessy
Debian Med packaging team,
http://www.debian.org/devel/debian-med
Tsurumi, Kanagawa, Japan



--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#499225: [PATCH 1/2] Support waf (closes: #499225).

[Trent W. Buck]

On Tue, Feb 24, 2009 at 11:18:51PM -0500, Joey Hess wrote:
> A few questions:
>
> * Earlier, you said you wanted to run waf in preference to
>   configure, but this looks to run it after?

That was based on the existing behaviour for Make.PL and setup.py,
which both defer to autoconf should it exist.

I work around it by doing "rm -f configure" in the clean target.

> * Is there any good reason to add the check for waf before the check
>   for Build.PL? While it seems unlikely a package would include
>   both, this could in theory change how such a package builds and
>   probably break it.

I stuck it directly below setup.py because they're both python thingies.
I'm not really fussed if you would prefer it to go below.

> * Suprised to see the Setup.hs patch included in this; similar
>   concerns with its ordering.

They're separate patches, because I realized I forgot to file a
separate wishlist bug for cabal (Setup.hs) support, and I couldn't be
bothered working out how to cherry-pick patches in git-format-email.

> * The one Setup.hs file that I tried (in hpodder) does not delete
>   Setup on 'Setup clean'.

I need to talk to the other Debian-Haskell people about this stuff
still.  Right now I guess they're asleep (or defecting to Arch :-/).

> * I'd really like to have the debian haskell people look over any
>   cabal/Setup/haskell stuff before putting it into debhelper, and
>   make sure we get it 100% right the first time. In particular

[You're message got cut off here.]

I have no problem getting Setup.hs stuff right before deploying it in
unstable/testing; I just want to get started so that it's ready by the
time Darcs (my package) transitions to cabal (scheduled for July).



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#511145: ttf-linux-libertine: 511145: suggested fix

[Paul Wise]

One suggested fix is to add this line to the fontconfig hints:




  
Linux Libertine
Linux Libertine O
  


This would be installed as:

/etc/fonts/conf.avail/90-ttf-linux-libertine.conf

And a symlink be added:

/etc/fonts/conf.d/90-ttf-linux-libertine.conf 
../conf.avail/90-ttf-linux-libertine.conf

-- 
bye,
pabs

http://wiki.debian.org/PaulWise


signature.asc
Description: This is a digitally signed message part

Bug#516864: libpam-afs-session: PAGs not used on SSH login

[david l goodrich]

On Tue, Feb 24, 2009 at 07:52:05PM -0800, Russ Allbery wrote:
> david l goodrich  writes:
> 
> > Could it be my ssh config?  I'm really grasping at straws, here.
> > This bug report was sort of my last resort 
> 
> Given that the PAM module is being run, it shouldn't be.  UsePAM being set
> to no is the only thing I can think of there, and clearly it's not.
> 
> > Actually, the keyctl bit looks a bit off:
> >
> > d...@chaos:~$ pagsh
> > sh-3.2$ id
> > uid=1000(dlg) gid=1000(dlg) groups=1000(dlg),1101227443
> > sh-3.2$ aklog
> > sh-3.2$ tokens
> >
> > Tokens held by the Cache Manager:
> >
> > User's (AFS ID 1000) tokens for a...@dsrw.org [Expires Feb 25
> > 20:11]
> >--End of list--
> > sh-3.2$ keyctl show
> > Session Keyring
> > -3: key inaccessible (Function not implemented)
> 
> Oh, hm, you're right, I didn't notice the function not implemented part.
> 
> Are you using the stock Debian kernel or did you build a custom kernel?
> And if you built a custom kernel, did you by chance build it without
> keyring support?  I *think* the AFS module wouldn't even load in that
> case, but it may be that something weird is going on  And if you have
> a kernel built with an exposed syscall table but no keyring support, I'm
> not entirely sure what the current AFS modules might do.
> 
> Also, this is a regular system, yes, not a vserver or a Xen domU or
> user-mode Linux or some other unusual setup?

It's a custom kernel, because it's a Xen domU.  Which probably
invites all kinds of pain.  But its config file is used in a
different Xen domU, which works fine.   I've attached it, I'm not
very adept at reading these files.  It works for me, so I just
copy it to my new systems and build the kernel with whatever
version of gcc the new machine requires.
  --david
#
# Automatically generated make config: don't edit
# Linux kernel version: 2.6.16.29-xenU
# Tue Feb 24 02:03:42 2009
#
CONFIG_X86_32=y
CONFIG_SEMAPHORE_SLEEPERS=y
CONFIG_X86=y
CONFIG_MMU=y
CONFIG_GENERIC_ISA_DMA=y
CONFIG_GENERIC_IOMAP=y
CONFIG_ARCH_MAY_HAVE_PC_FDC=y
CONFIG_DMI=y

#
# Code maturity level options
#
CONFIG_EXPERIMENTAL=y
CONFIG_LOCK_KERNEL=y
CONFIG_INIT_ENV_ARG_LIMIT=32

#
# General setup
#
CONFIG_LOCALVERSION=""
# CONFIG_LOCALVERSION_AUTO is not set
CONFIG_SWAP=y
CONFIG_SYSVIPC=y
# CONFIG_POSIX_MQUEUE is not set
# CONFIG_BSD_PROCESS_ACCT is not set
CONFIG_SYSCTL=y
# CONFIG_AUDIT is not set
# CONFIG_IKCONFIG is not set
# CONFIG_CPUSETS is not set
CONFIG_INITRAMFS_SOURCE=""
CONFIG_UID16=y
CONFIG_VM86=y
# CONFIG_CC_OPTIMIZE_FOR_SIZE is not set
# CONFIG_EMBEDDED is not set
CONFIG_KALLSYMS=y
# CONFIG_KALLSYMS_ALL is not set
# CONFIG_KALLSYMS_EXTRA_PASS is not set
CONFIG_HOTPLUG=y
CONFIG_PRINTK=y
CONFIG_BUG=y
CONFIG_ELF_CORE=y
CONFIG_BASE_FULL=y
CONFIG_FUTEX=y
CONFIG_EPOLL=y
CONFIG_SHMEM=y
CONFIG_CC_ALIGN_FUNCTIONS=0
CONFIG_CC_ALIGN_LABELS=0
CONFIG_CC_ALIGN_LOOPS=0
CONFIG_CC_ALIGN_JUMPS=0
CONFIG_SLAB=y
# CONFIG_TINY_SHMEM is not set
CONFIG_BASE_SMALL=0
# CONFIG_SLOB is not set

#
# Loadable module support
#
CONFIG_MODULES=y
CONFIG_MODULE_UNLOAD=y
# CONFIG_MODULE_FORCE_UNLOAD is not set
CONFIG_OBSOLETE_MODPARM=y
# CONFIG_MODVERSIONS is not set
# CONFIG_MODULE_SRCVERSION_ALL is not set
CONFIG_KMOD=y
CONFIG_STOP_MACHINE=y

#
# Block layer
#
# CONFIG_LBD is not set

#
# IO Schedulers
#
CONFIG_IOSCHED_NOOP=y
CONFIG_IOSCHED_AS=y
CONFIG_IOSCHED_DEADLINE=y
CONFIG_IOSCHED_CFQ=y
CONFIG_DEFAULT_AS=y
# CONFIG_DEFAULT_DEADLINE is not set
# CONFIG_DEFAULT_CFQ is not set
# CONFIG_DEFAULT_NOOP is not set
CONFIG_DEFAULT_IOSCHED="anticipatory"

#
# Processor type and features
#
# CONFIG_X86_PC is not set
CONFIG_X86_XEN=y
# CONFIG_X86_ELAN is not set
# CONFIG_X86_VOYAGER is not set
# CONFIG_X86_NUMAQ is not set
# CONFIG_X86_SUMMIT is not set
# CONFIG_X86_BIGSMP is not set
# CONFIG_X86_VISWS is not set
# CONFIG_X86_GENERICARCH is not set
# CONFIG_X86_ES7000 is not set
# CONFIG_M386 is not set
# CONFIG_M486 is not set
# CONFIG_M586 is not set
# CONFIG_M586TSC is not set
# CONFIG_M586MMX is not set
CONFIG_M686=y
# CONFIG_MPENTIUMII is not set
# CONFIG_MPENTIUMIII is not set
# CONFIG_MPENTIUMM is not set
# CONFIG_MPENTIUM4 is not set
# CONFIG_MK6 is not set
# CONFIG_MK7 is not set
# CONFIG_MK8 is not set
# CONFIG_MCRUSOE is not set
# CONFIG_MEFFICEON is not set
# CONFIG_MWINCHIPC6 is not set
# CONFIG_MWINCHIP2 is not set
# CONFIG_MWINCHIP3D is not set
# CONFIG_MGEODEGX1 is not set
# CONFIG_MGEODE_LX is not set
# CONFIG_MCYRIXIII is not set
# CONFIG_MVIAC3_2 is not set
# CONFIG_X86_GENERIC is not set
CONFIG_X86_CMPXCHG=y
CONFIG_X86_XADD=y
CONFIG_X86_L1_CACHE_SHIFT=5
CONFIG_RWSEM_XCHGADD_ALGORITHM=y
CONFIG_GENERIC_CALIBRATE_DELAY=y
CONFIG_X86_PPRO_FENCE=y
CONFIG_X86_WP_WORKS_OK=y
CONFIG_X86_INVLPG=y
CONFIG_X86_BSWAP=y
CONFIG_X86_POPAD_OK=y
CONFIG_X86_CMPXCHG64=y
CONFIG_X86_GOOD_APIC=y
CONFIG_X86_USE_PPRO_CHECKSUM=y
CONFIG_X86_TSC=y
CONFIG_SMP=y
CONFIG_SMP_ALTERNATIVES=y
CONFIG_NR_CPUS=8
CONFIG_PREEMPT_NONE=y
# CONFIG_PREEMPT_VOLUNTARY is not set
# CONFIG_PREEMPT is not s

Bug#499225: [PATCH 1/2] Support waf (closes: #499225).

[Joey Hess]

A few questions:

* Earlier, you said you wanted to run waf in preference to configure,
  but this looks to run it after?
* Is there any good reason to add the check for waf before the check
  for Build.PL? While it seems unlikely a package would include both,
  this could in theory change how such a package builds and probably
  break it. 

* Suprised to see the Setup.hs patch included in this; similar concerns
  with its ordering.
* The one Setup.hs file that I tried (in hpodder) does not delete Setup
  on 'Setup clean'.
* I'd really like to have the debian haskell people look over any
  cabal/Setup/haskell stuff before putting it into debhelper, and make
  sure we get it 100% right the first time. In particular 

-- 
see shy jo


signature.asc
Description: Digital signature

Bug#515288: Depends on GTK 1.2 and GLIB 1.2

[Barry deFreese]

tags 515288 + patch

thank you

Hi,

Here is a patch that builds with Gtk2.  Though I noticed after making it 
that you actually trimmed down the result of gtk-config for libs, I 
re-added pkg-config --libs gtk+-2.0 so you might want to trim that back 
down.


It does work for the minimal amount of testing that I did.  Hope it helps!

Thanks,

Barry deFreese
Debian QA


diff -u gman-0.9.3/debian/control gman-0.9.3/debian/control
--- gman-0.9.3/debian/control
+++ gman-0.9.3/debian/control
@@ -2,7 +2,7 @@
 Section: doc
 Priority: optional
 Maintainer: Josip Rodin 
-Build-Depends: debhelper (>= 5), libglib1.2-dev, libgtk1.2-dev
+Build-Depends: debhelper (>= 5), libglib2.0-dev, libgtk2.0-dev
 Standards-Version: 3.7.2
 
 Package: gman
diff -u gman-0.9.3/debian/changelog gman-0.9.3/debian/changelog
--- gman-0.9.3/debian/changelog
+++ gman-0.9.3/debian/changelog
@@ -1,3 +1,10 @@
+gman (0.9.3-5.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * Build with Gtk2. (Closes: #515288).
+
+ -- Barry deFreese   Tue, 24 Feb 2009 14:58:55 -0500
+
 gman (0.9.3-5) unstable; urgency=medium
 
   * Replaced 'gtk-config --libs' call with a condensed list of library
diff -u gman-0.9.3/menu.c gman-0.9.3/menu.c
--- gman-0.9.3/menu.c
+++ gman-0.9.3/menu.c
@@ -113,7 +113,7 @@
 int man_items_count;
 int clist_selected_row;
 List * man_paths_to_be_load;
-char * keyword;
+const char * keyword;
 
 void updata_menu_buttons(int);
 
@@ -141,7 +141,8 @@
gtk_item_factory_create_items(item_factory, nmenu_items, menu_items, 
NULL);
 
   /* Attach the new accelerator group to the window. */
-   gtk_accel_group_attach (accel_group, GTK_OBJECT (window));
+/* gtk_accel_group_attach (accel_group, GTK_OBJECT (window)); */
+   gtk_window_add_accel_group (GTK_WINDOW (window), accel_group);
 
if (menubar)
/* Finally, return the actual menu bar created by the item factory. */ 
@@ -381,7 +382,8 @@
 
 
 /*** tools functions **/
-int search_array_for_text(char ** array, int count, char * text)
+/*int search_array_for_text(char ** array, int count, char * text) */
+int search_array_for_text(char ** array, int count, const char * text)
 {
int i;
for (i=0;i0 ;i++);
@@ -418,8 +420,8 @@
int i;
GtkWidget * clist = (GtkWidget *)data;
i = search_array_for_text(man_items_buffer, 
- man_items_count, 
- 
gtk_entry_get_text(GTK_ENTRY(w)));
+   man_items_count, 
+   gtk_entry_get_text(GTK_ENTRY(w)));
if (i == -1) return;
gtk_clist_moveto(GTK_CLIST(clist),i,0,0.1,0.0);
GTK_CLIST(clist)->focus_row = i;
@@ -630,7 +632,7 @@
 
 static void entry4_changed_callback(GtkWidget *w,gpointer data)
 {
-   char * tmp;
+   const char * tmp;
tmp = gtk_entry_get_text(GTK_ENTRY(entry4));
gtk_widget_set_sensitive(search_button,strlen(tmp) >= 3);

diff -u gman-0.9.3/window2.c gman-0.9.3/window2.c
--- gman-0.9.3/window2.c
+++ gman-0.9.3/window2.c
@@ -240,7 +240,7 @@
break;
case 3: 
//Add New
x = 
(GtkWidget*)gtk_object_get_data(GTK_OBJECT(window2),"entry2");
-   c = gtk_entry_get_text(GTK_ENTRY(x));
+   c = (gchar *)gtk_entry_get_text(GTK_ENTRY(x));
if(!strcmp(c,"")) {
g_print("gman: path name can not be empty\n");
break;
diff -u gman-0.9.3/Makefile gman-0.9.3/Makefile
--- gman-0.9.3/Makefile
+++ gman-0.9.3/Makefile
@@ -2,7 +2,7 @@
 # You can adjust the following variables.
 
 CXX = g++
-CXXFLAGS = -DVERSION=\"0.9.3\" $(shell gtk-config --cflags) -O2 -Wall $(DEBUG)
+CXXFLAGS = -DVERSION=\"0.9.3\" $(shell pkg-config --cflags gtk+-2.0) -O2 -Wall 
$(DEBUG)
 CC = $(CXX) $(CXXFLAGS)
 
 prefix = /usr
@@ -14,8 +14,10 @@
 objectfiles = menu.o mandata.o util.o gman.o list.o context.o task.o \
   taskfunc.o window2.o
 
+GTK_LIBS = $(shell pkg-config --libs gtk+-2.0)
+
 gman: $(objectfiles)
-   $(CC) -lpthread -lm -lgtk -lglib -rdynamic $(objectfiles) -o gman
+   $(CC) -lpthread $(GTK_LIBS) -rdynamic $(objectfiles) -o gman
 
 %.o: %.c %.h
 gman.o: gman.c gman.h menu.h

Bug#517014: reference to base section

[Ruben Molina]

Package: developers-reference
Version: 3.4.1
Severity: minor

From 2.2.6 Package priorities :

For example, libc6, mawk, and makedev are "Priority: required"
and "Section: base" but are not "Essential: yes".

But they aren't "Section: base"...
libc6 is libs, mawk is utils, and makedev is admin.

uhmm... and 'base' is not listed as a section on policy 3.8.0 (section
2.4)...

Thanks

Ruben Molina


signature.asc
Description: Esta parte del mensaje está firmada	digitalmente

Bug#516864: libpam-afs-session: PAGs not used on SSH login

[Russ Allbery]

david l goodrich  writes:

> Could it be my ssh config?  I'm really grasping at straws, here.
> This bug report was sort of my last resort 

Given that the PAM module is being run, it shouldn't be.  UsePAM being set
to no is the only thing I can think of there, and clearly it's not.

> Actually, the keyctl bit looks a bit off:
>
> d...@chaos:~$ pagsh
> sh-3.2$ id
> uid=1000(dlg) gid=1000(dlg) groups=1000(dlg),1101227443
> sh-3.2$ aklog
> sh-3.2$ tokens
>
> Tokens held by the Cache Manager:
>
> User's (AFS ID 1000) tokens for a...@dsrw.org [Expires Feb 25
> 20:11]
>--End of list--
> sh-3.2$ keyctl show
> Session Keyring
> -3: key inaccessible (Function not implemented)

Oh, hm, you're right, I didn't notice the function not implemented part.

Are you using the stock Debian kernel or did you build a custom kernel?
And if you built a custom kernel, did you by chance build it without
keyring support?  I *think* the AFS module wouldn't even load in that
case, but it may be that something weird is going on  And if you have
a kernel built with an exposed syscall table but no keyring support, I'm
not entirely sure what the current AFS modules might do.

Also, this is a regular system, yes, not a vserver or a Xen domU or
user-mode Linux or some other unusual setup?

-- 
Russ Allbery (r...@debian.org)   



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516864: libpam-afs-session: PAGs not used on SSH login

[david l goodrich]

On Tue, Feb 24, 2009 at 07:11:01PM -0800, Russ Allbery wrote:
> david l goodrich  writes:
> > On Tue, Feb 24, 2009 at 06:49:10PM -0800, Russ Allbery wrote:
> 
> >> The extra high-numbered group won't necessarily show up, since PAGs are
> >> really based on keyrings.  If you run tokens, what is its output?
> >
> > oh, right, sorry.  I am also running `tokens`.  No dice.
> > d...@chaos:~$ tokens
> >
> > Tokens held by the Cache Manager:
> >
> >--End of list--
> > d...@chaos:~$
> >
> >> keyctl show will also show you the underlying keyring of the PAG.
> >
> > I didn't know about keyctl, so I have no idea if this is a normal
> > case for 'no PAGs':
> >
> > d...@chaos:~$ keyctl show
> > Session Keyring
> > -3: key inaccessible (Function not implemented)
> > d...@chaos:~$ 
> 
> That indicates you have no PAG indeed.  You should normally get something
> like:
> 
> windlord:~> keyctl show
> Session Keyring
>-3 --alswrv  0 0  keyring: _ses.3882
> 975847253: key inaccessible (Required key not available)
> 
> Hm.  Well, I'm stumped... this works fine for me with OpenSSH and PAM in a
> basically identical configuration, and your system logs say that the AFS
> PAM module thinks everything is working correctly and there are no
> problems.
> 
> I'm not sure what else to try.  Clearly there's something different about
> your system and your configuration that isn't happening on any of my
> systems, but I'm not sure what it could be.

Could it be my ssh config?  I'm really grasping at straws, here.
This bug report was sort of my last resort 

> 
> I assume that if you run pagsh you then have a PAG, and if you run aklog
> inside that shell, you then have a token?

Actually, the keyctl bit looks a bit off:

d...@chaos:~$ pagsh
sh-3.2$ id
uid=1000(dlg) gid=1000(dlg) groups=1000(dlg),1101227443
sh-3.2$ aklog
sh-3.2$ tokens

Tokens held by the Cache Manager:

User's (AFS ID 1000) tokens for a...@dsrw.org [Expires Feb 25
20:11]
   --End of list--
sh-3.2$ keyctl show
Session Keyring
-3: key inaccessible (Function not implemented)
sh-3.2$ exit
exit
d...@chaos:~$ id
uid=1000(dlg) gid=1000(dlg) groups=1000(dlg)
d...@chaos:~$ tokens

Tokens held by the Cache Manager:

User's (AFS ID 1000) tokens for a...@dsrw.org [Expires Feb 25
21:28]
   --End of list--
d...@chaos:~$ keyctl show
Session Keyring
-3: key inaccessible (Function not implemented)
d...@chaos:~$ 

  --david



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517013: linux-image-2.6.26-1-686: Suspected PS/2 device problem causes system to hang

[Neal Murphy]

Package: linux-image-2.6.26-1-686
Version: 2.6.26-13
Severity: critical
Justification: breaks the whole system


Running Etch on this system for a year or two, I was lulled into a 
comfort zone. :) I upgraded to Lenny, and the problems began. Randomly, 
the displayed video would go 'kablooey' and the system would hang. I 
also noticed the super I/O chip would heat up (the fan would speed up). 
I unplugged a bunch of stuff to no avail. I finally unplugged 
*everything* and the system would finally run POST OK. That's when I 
realized it was probably related to PS/2.

The system is an Asus K8N-DL, 2 Opteron 270s, 2 1GB sticks of RAM, 
GeForce 7600, PCI-E video, several SATA drives and a bunch of USB stuff, 
as well as a Logitech MX3000 wireless kbd/mouse. It is powered through a 
UPS and is unpowered each night.

As states, the system would boot, then hang a random time later. But in 
the past day or so, the system got to where it wouldn't even POST. I saw 
absolutely no error reports in anything in /var/log that seemed to be 
related; the system simply hanged itself every time.

I had the MX's PS/2 mouse connector plugged into the mouse jack. I had 
an empty USB-to-PS/2 adapter plugged into the kdb jack. Once I unplugged 
both of these, the problems vanished. Historically, I had the PS/2 
plugged in because Etch would not, or would not properly, utilize the 
USB mouse. Once I unplugged these two things and the system returned to 
normal operation, the dawn broke over ol' Marblehead here.

I don't know how this can be reproduced other than using faulty PS/2 
device(s) or building a device that simulates the problem. If someone 
were to send me a 'chatty' PS/2 module, I'd be willing to plug the stuff 
back in and await the failure again. ReiserFS has done its job all 
along, preventing corruption and (obvious) data loss.

I have a vague memory of some prior version of Linux not handling 
'spurious' PS/2 interrupts. It is possible that 2.6.26 is also not 
handling PS/2 problems as well as it should?

I'm posting this problem mostly as an FYI in the hope it will save 
someone extended troubleshooting time. If it turns out to be a bonafide 
bug, so much the better! I know no OS can completely prevent all 
hardware problems from causing system failures; this may be one of those 
exceptions.

Neal

-- Package-specific info:
** Version:
Linux version 2.6.26-1-686 (Debian 2.6.26-13) (wa...@debian.org) (gcc version 
4.1.3 20080704 (prerelease) (Debian 4.1.2-24)) #1 SMP Sat Jan 10 18:29:31 UTC 
2009

** Command line:
root=/dev/sda1 ro 

** Not tainted

** Kernel log:
[   26.363852] i2c-adapter i2c-2: unable to read EDID block.
[   26.566151] i2c-adapter i2c-2: unable to read EDID block.
[   26.756029] i2c-adapter i2c-3: unable to read EDID block.
[   26.971986] i2c-adapter i2c-3: unable to read EDID block.
[   27.140023] i2c-adapter i2c-3: unable to read EDID block.
[   27.194517] nvidiafb: CRTC 0 is currently programmed for DFP
[   27.194556] nvidiafb: Using DFP on CRTC 0
[   27.194592] nvidiafb: Panel size is 1280 x 1024
[   27.194628] nvidiafb: Panel is TMDS
[   27.198181] nvidiafb: MTRR set to ON
[   27.198239] fbcvt: 1280x1...@60: CVT Name - 1.310M4-R
[   27.520572] nvidiafb: Flat panel dithering disabled
[   27.520572] Console: switching to colour frame buffer device 160x64
[   27.524032] nvidiafb: PCI nVidia NV39 framebuffer (64MB @ 0xD000)
[   33.895951] md: md1 stopped.
[   33.898892] md: bind
[   33.898892] md: bind
[   33.964042] md: raid0 personality registered for level 0
[   33.964042] md1: setting max_sectors to 32, segment boundary to 8191
[   33.964042] raid0: looking at sdc1
[   33.964042] raid0:   comparing sdc1(97667072) with sdc1(97667072)
[   33.964042] raid0:   END
[   33.964042] raid0:   ==> UNIQUE
[   33.964042] raid0: 1 zones
[   33.964042] raid0: looking at sdb1
[   33.964042] raid0:   comparing sdb1(97667072) with sdc1(97667072)
[   33.964042] raid0:   EQUAL
[   33.964042] raid0: FINAL 1 zones
[   33.964042] raid0: done.
[   33.964042] raid0 : md_size is 195334144 blocks.
[   33.964042] raid0 : conf->hash_spacing is 195334144 blocks.
[   33.964042] raid0 : nb_zone is 1.
[   33.964042] raid0 : Allocating 4 bytes for hash.
[   33.964042] md: md2 stopped.
[   33.969525] md: bind
[   33.969583] md: bind
[   34.049269] md2: setting max_sectors to 32, segment boundary to 8191
[   34.049269] raid0: looking at sdc2
[   34.049269] raid0:   comparing sdc2(97667072) with sdc2(97667072)
[   34.049269] raid0:   END
[   34.049269] raid0:   ==> UNIQUE
[   34.049269] raid0: 1 zones
[   34.049269] raid0: looking at sdb2
[   34.049269] raid0:   comparing sdb2(97667072) with sdc2(97667072)
[   34.049269] raid0:   EQUAL
[   34.049269] raid0: FINAL 1 zones
[   34.049269] raid0: done.
[   34.049269] raid0 : md_size is 195334144 blocks.
[   34.049269] raid0 : conf->hash_spacing is 195334144 blocks.
[   34.049269] raid0 : nb_zone is 1.
[   34.049269] raid0 : Allocating 4 bytes for hash.
[   34.519212] fuse ini

Bug#499225: [PATCH 1/2] Support waf (closes: #499225).

[Trent W. Buck]

---
 dh_auto_build |5 -
 dh_auto_clean |5 -
 dh_auto_configure |5 -
 dh_auto_install   |5 -
 dh_auto_test  |3 +++
 5 files changed, 19 insertions(+), 4 deletions(-)

diff --git a/dh_auto_build b/dh_auto_build
index a3c9521..92c3a78 100755
--- a/dh_auto_build
+++ b/dh_auto_build
@@ -18,7 +18,7 @@ B [S>] [S 
I>]
 dh_auto_build is a debhelper program that tries to automatically
 build a package. If a Makefile is found, this is done by running make (or
 MAKE, if the environment variable is set).
-If there's a setup.py, or Build.PL, it is run to build the package.
+If there's a setup.py, waf, or Build.PL, it is run to build the package.
 
 This is intended to work for about 90% of packages. If it doesn't work,
 you're encouraged to skip using dh_auto_build at all, and just run the
@@ -45,6 +45,9 @@ if (-e "Makefile" || -e "makefile" || -e "GNUmakefile") {
 elsif (-e "setup.py") {
doit("python", "setup.py", "build", @{$dh{U_PARAMS}});
 }
+elsif (-x "waf" && -e "wscript") {
+   doit("./waf", "--nocache", "build", @{$dh{U_PARAMS}});
+}
 elsif (-e "Build.PL" && -e "Build") {
doit("perl", "Build", @{$dh{U_PARAMS}});
 }
diff --git a/dh_auto_clean b/dh_auto_clean
index 6c97b10..14db466 100755
--- a/dh_auto_clean
+++ b/dh_auto_clean
@@ -18,7 +18,7 @@ B [S>] [S 
I>]
 dh_auto_clean is a debhelper program that tries to automatically clean up
 after a package build. If there's a Makefile and it contains a "distclean",
 "realclean", or "clean" target, then this is  done by running make (or MAKE,
-if the environment variable is set). If there is a setup.py or Build.PL, it
+if the environment variable is set). If there is a setup.py, waf or Build.PL, 
it
 is run to clean the package.
 
 This is intended to work for about 90% of packages. If it doesn't work, or
@@ -59,6 +59,9 @@ elsif (-e "setup.py") {
# files.
doit('find', '.', '-name', '*.pyc', '-exec', 'rm', '{}', ';');
 }
+elsif (-x "waf" && -e "wscript") {
+   doit("./waf", "--nocache", "distclean", @{$dh{U_PARAMS}});
+}
 elsif (-e "Build.PL" && -e "Build") {
doit("perl", "Build", "--allow_mb_mismatch", 1, "distclean", 
@{$dh{U_PARAMS}});
 }
diff --git a/dh_auto_configure b/dh_auto_configure
index 6b8adf5..b131962 100755
--- a/dh_auto_configure
+++ b/dh_auto_configure
@@ -17,7 +17,7 @@ B [S>] [S 
I>]
 
 dh_auto_configure is a debhelper program that tries to automatically
 configure a package prior to building. It looks for and runs a ./configure
-script, Makefile.PL, or Build.PL. A standard set of parameters is
+script, waf, Makefile.PL, or Build.PL. A standard set of parameters is
 determined and passed to the program that is run. If no program to run is
 found, dh_auto_configure will exit without doing anything.
 
@@ -84,6 +84,9 @@ if (-x "configure") {
}
doit("./configure", @opts, @{$dh{U_PARAMS}});
 }
+elsif (-x "waf" && -e "wscript") {
+   doit("./waf", "--nocache", "configure", "--prefix=/usr", 
@{$dh{U_PARAMS}});
+}
 elsif (-e "Makefile.PL") {
# If set to a true value then MakeMaker's prompt function will
# # always return the default without waiting for user input.
diff --git a/dh_auto_install b/dh_auto_install
index 8e7ab90..515fdc3 100755
--- a/dh_auto_install
+++ b/dh_auto_install
@@ -19,7 +19,7 @@ B [S>] [S 
I>]
 dh_auto_install is a debhelper program that tries to automatically install
 built files. If there's a Makefile and it contains a "install" target,
 then this is done by running make (or MAKE, if the environment variable is
-set). If there is a setup.py or Build.PL, it is used.
+set). If there is a setup.py, waf or Build.PL, it is used.
 
 The files are installed into debian// if there is only one binary
 package. In the multiple binary package case, the files are instead
@@ -89,6 +89,9 @@ elsif (-e "setup.py") {
"--no-compile", "-O0",
@{$dh{U_PARAMS}});
 }
+elsif (-x "waf" && -e "wscript") {
+   doit("./waf", "--nocache", "install", "--destdir=$destdir", 
@{$dh{U_PARAMS}});
+}
 elsif (-e "Build.PL" && -e "Build") {
doit("perl", "Build", "install", "destdir=$destdir",
"create_packlist=0", @{$dh{U_PARAMS}});
diff --git a/dh_auto_test b/dh_auto_test
index 05c11b2..03289f5 100755
--- a/dh_auto_test
+++ b/dh_auto_test
@@ -54,6 +54,9 @@ if (-e "Makefile" || -e "makefile" || -e "GNUmakefile") {
}
}
 }
+elsif (-x "waf" && -e "wscript") {
+   doit("./waf", "--nocache", "check", @{$dh{U_PARAMS}});
+}
 elsif (-e "Build.PL" && -e "Build") {
doit(qw/perl Build test/, @{$dh{U_PARAMS}});
 }
-- 
1.6.1.3


>From 4bd5a5248a568f245b3500cbe813ab8c98edc02d Mon Sep 17 00:00:00 2001
From: Trent W. Buck 
Date: Wed, 25 Feb 2009 14:16:37 +1100
Subject: [PATCH 2/2] Support Setup.lhs (Haskell).

---
 dh_auto_build |7 ++-
 dh_auto_clean |8 ++--
 dh_auto_configure |   10 +++---
 dh_auto_install   |6 +-
 dh_auto_test  

Bug#516864: libpam-afs-session: PAGs not used on SSH login

[Russ Allbery]

david l goodrich  writes:
> On Tue, Feb 24, 2009 at 06:49:10PM -0800, Russ Allbery wrote:

>> The extra high-numbered group won't necessarily show up, since PAGs are
>> really based on keyrings.  If you run tokens, what is its output?
>
> oh, right, sorry.  I am also running `tokens`.  No dice.
> d...@chaos:~$ tokens
>
> Tokens held by the Cache Manager:
>
>--End of list--
> d...@chaos:~$
>
>> keyctl show will also show you the underlying keyring of the PAG.
>
> I didn't know about keyctl, so I have no idea if this is a normal
> case for 'no PAGs':
>
> d...@chaos:~$ keyctl show
> Session Keyring
> -3: key inaccessible (Function not implemented)
> d...@chaos:~$ 

That indicates you have no PAG indeed.  You should normally get something
like:

windlord:~> keyctl show
Session Keyring
   -3 --alswrv  0 0  keyring: _ses.3882
975847253: key inaccessible (Required key not available)

Hm.  Well, I'm stumped... this works fine for me with OpenSSH and PAM in a
basically identical configuration, and your system logs say that the AFS
PAM module thinks everything is working correctly and there are no
problems.

I'm not sure what else to try.  Clearly there's something different about
your system and your configuration that isn't happening on any of my
systems, but I'm not sure what it could be.

I assume that if you run pagsh you then have a PAG, and if you run aklog
inside that shell, you then have a token?

-- 
Russ Allbery (r...@debian.org)   



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517012: incorrect Unicode mapping in Uralic fonts

[Paul Wise]

Hi Esa,

Myself and several others have noted that the Uralic fonts are broken
wrt mappings between the glyphs and Unicode code points. Are you aware
of this issue and will you be fixing it?

http://bugs.debian.org/384124
http://bugs.debian.org/517012
https://bugs.launchpad.net/ubuntu/+source/ttf-uralic/+bug/73211

-- 
bye,
pabs

http://wiki.debian.org/PaulWise


signature.asc
Description: This is a digitally signed message part

Bug#517011: Iceweasel Petition Request

[Maximi89]

Package: Iceweasel
Version: 3.0.6

Hi, ¿would be possible to get to get a printer option called "selection"?,
when you are in a webpage, and you need to print only that have you
selected, you don't have choice, only copy and go to a text editor and there
print that you need, you lose a lot of time doing this action... so i think
better ask...


-- 
Maximiliano Augusto Castañón Araneda
Santiago, Chile
Linux user # 394821

Bug#516864: libpam-afs-session: PAGs not used on SSH login

[david l goodrich]

On Tue, Feb 24, 2009 at 06:49:10PM -0800, Russ Allbery wrote:
> david l goodrich  writes:
> 
> > running `id`, and looking for something like this (copied from a working
> > ubuntu box):
> > d...@aether:~$ id
> > uid=1000(dlg) gid=1000(dlg) groups=106(admin),1000(dlg),1104162558
> > d...@aether:~$ 
> 
> The extra high-numbered group won't necessarily show up, since PAGs are
> really based on keyrings.  If you run tokens, what is its output?

oh, right, sorry.  I am also running `tokens`.  No dice.
d...@chaos:~$ tokens

Tokens held by the Cache Manager:

   --End of list--
d...@chaos:~$

> keyctl show will also show you the underlying keyring of the PAG.

I didn't know about keyctl, so I have no idea if this is a normal
case for 'no PAGs':

d...@chaos:~$ keyctl show
Session Keyring
-3: key inaccessible (Function not implemented)
d...@chaos:~$ 

  --david



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#492668: [txt2tags] New upstream version fix several bugs

[Eder L. Marques]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Package: txt2tags
Version: 2.3.1

Dear Mr. Surchi,

I noted that txt2tags package (in lenny, squeeze and sid) stills on
version 2.3.1.

It isn't updated since 2006.

The new upstream version fix this bug.

Do you need any help to packing the new version, co-maintenance or even
 adoption for this package?

I also create a package already, fixing 6 of the 7 opened bugs:
http://edermarques.net/pacotes/txt2tags/

Me and the upstream are trying to keep in touch with you via email since
Aug.2008, but without success.

If you would like some help, don't hesitate to contact-me.

Kind regards,

- --
Eder L. Marques
Just another weekend hacker
http://blog.edermarques.net/ |  http://www.debian.org/
http://administrando.net/|  http://www.debianbrasil.org/
http://www.fsfla.org/|  http://www.debian-ce.org/
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU/Linux)

iQIcBAEBAgAGBQJJpLJhAAoJED9tnxvLkedtFTIP/A+65zaWJkphR8j7eBf2E2C8
P4jKRWALWkBqAKA1eHNGPFL/f8mvIfGef7gNiXsxJfByO3OgtQun4Sj5y5Tjcmut
8rYO3CladB4M/jYoVxLRo+0zpSOGX31D0nnf4t42K64JGOTvpdhhrUxsWdBqYXpn
YsT1CNPqPdwl8egC+G1WXszNHY/Mp91BYYs8VUsM7BEPDbQ2JNLt9EGAp95is+bw
VwZP+K93JQScCbLAyi9OrFAOL8OaNCMFsKSKucbZTQjNPeIxqGdT0HuhinmoANfZ
8goledIj6fa/0qS8xepc1zd2Ofta2lfpeEFhOnSqxQDEYnFxVgRGZUTKtPXMUzxv
PdsquH6NutrEwLxsvtCoZWpHFKqv6ki7p2VXVp+0dvHF0yje2H4aAMwhZYcxgkvS
BvZiSzArNy6jmI5gNFF/yGYrH1YBX1dnHXkQIXpPqia3Pdu9kCo2ltkKdJhccgAr
UqUqEY4TFNi0j71RtObCuvbv4mKKrSoWUpP3scCkq0+r1LDdGsaCvHbm3Nm+0W4T
tkvWoz6atpIb3sCFc7nsOSET6dlaN2EysvB+4y/hGWbdH9AfjePsXDeJZyG2J0V8
neDzCGq8BFXDT+a90ZXAs7YicUTxbTnyosk1MJe/l6iDETyzoe8d2wxa7NAaOJDX
hxRY1FsHm9uGGhAFDnal
=KkxD
-END PGP SIGNATURE-



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#451341: [txt2tags] [txt2tags] New upstream version fix several bugs

[Eder L. Marques]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Package: txt2tags
Version: 2.3.1

Dear Mr. Surchi,

I noted that txt2tags package (in lenny, squeeze and sid) stills on
version 2.3.1.

It isn't updated since 2006.

The new upstream version close this bug.

Do you need any help to packing the new version, co-maintenance or even
 adoption for this package?

I also create a package already, fixing 6 of the 7 opened bugs:
http://edermarques.net/pacotes/txt2tags/

Me and the upstream are trying to keep in touch with you via email since
Aug.2008, but without success.

If you would like some help, don't hesitate to contact-me.

Kind regards,

- --
Eder L. Marques
Just another weekend hacker
http://blog.edermarques.net/ |  http://www.debian.org/
http://administrando.net/|  http://www.debianbrasil.org/
http://www.fsfla.org/|  http://www.debian-ce.org/
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU/Linux)

iQIcBAEBAgAGBQJJpLCsAAoJED9tnxvLkedtzP8P/1sEHLbYv2S4VNAAou4VqL7H
2rA1I1Qb76nwXSIoJfvn4cOitdQdcfucH9wjhZYofM/xRgyA8PavcHWYtxrupG62
AilkmspGKwRtmCkpZIZxupqmSaXjkm8S+fyNsE7M4vRi/juv2qncxAKtaorSJ5EX
5RXK98haSpTssHotcbENnbQ/zr/qJjJRTuYujtF9JQ/rUL7ef8s58YfChUgx3B66
9Wt5xtukJSJPbckI4rb9jc6uTUE5xKCxVPPj+yECBYFABwT14CH2Gb6Y6xNZ/BiU
BerdEYIKqHO6UevVtN7LI14FHXuPz9F8D35PLacognB/UGuYUglkRFZuMtOItNXq
OKoZqtDAomDzmuaQLaY2EBJ1PM41Z2u404ZD/hBsXqnp9Uo12wKWygTO+slvnrXw
B6Hnnnr28buJhVSLGWcCOpnhHNu17ylD7mkHGqvzXuhFjxn4wkOLeBCa7Dn/+lwp
K3jJ9sM44Yxxvba3HcsWmgSBDBCVEwDe1XsjmlDBRqaD3c9fkqCTr/lHQnx+qS/N
UgzMWM9db5JJs4F7+RoTP4OZ6KyKwWVO8F0wgfmN8JWvnVdRPfvzjpViwfMt5O4y
e6GE471RW0dyM3o9rxzHgYsdMcZMwwAOJP9+Tpcy7sl7jBe8yCu4kut+ut7NTn/w
njU/KciPpwef7Zi68Ic7
=/oaV
-END PGP SIGNATURE-



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517010: [njplot] Please mention that njplot is a phylogenetic tree drawing program in the short description

[Filipus Klutiero]

Package: njplot
Version: 2.3-1
Severity: wishlist

The short description is "A tree drawing program".
Please specify that the trees drawn are phylogenetic.



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516864: libpam-afs-session: PAGs not used on SSH login

[Russ Allbery]

david l goodrich  writes:

> running `id`, and looking for something like this (copied from a working
> ubuntu box):
> d...@aether:~$ id
> uid=1000(dlg) gid=1000(dlg) groups=106(admin),1000(dlg),1104162558
> d...@aether:~$ 

The extra high-numbered group won't necessarily show up, since PAGs are
really based on keyrings.  If you run tokens, what is its output?

keyctl show will also show you the underlying keyring of the PAG.

-- 
Russ Allbery (r...@debian.org)   



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#434547: [txt2tags] New upstream version fix several bugs

[Eder L. Marques]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Package: txt2tags
Version: 2.3.1

Dear Mr. Surchi,

I noted that txt2tags package (in lenny, squeeze and sid) stills on
version 2.3.1.

It isn't updated since 2006.

The new upstream version close this bug.

Do you need any help to packing the new version, co-maintenance or even
 adoption for this package?

I also create a package already, fixing 6 of the 7 opened bugs:
http://edermarques.net/pacotes/txt2tags/

Me and the upstream are trying to keep in touch with you via email since
Aug.2008, but without success.

If you would like some help, don't hesitate to contact-me.

Kind regards,

- --
Eder L. Marques
Just another weekend hacker
http://blog.edermarques.net/ |  http://www.debian.org/
http://administrando.net/|  http://www.debianbrasil.org/
http://www.fsfla.org/|  http://www.debian-ce.org/
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU/Linux)
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=GLrF
-END PGP SIGNATURE-



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517008: alias not expanded with zsh -c

[Vincent Lefevre]

Package: zsh
Version: 4.3.9-1
Severity: normal

Aliases are not expanded with the -c option, as shown below.

vin% cmd=$(printf "emulate sh\nalias a='echo OK >&2'\na")
vin% printf "%s\n" "$cmd"
emulate sh
alias a='echo OK >&2'
a
vin% printf "%s" "$cmd" | zsh -f
OK
vin% zsh -fc "$cmd"
zsh:3: command not found: a
vin% 

There's no such problem with ksh93, bash in POSIX mode, and dash
(pdksh has the same bug).

-- System Information:
Debian Release: 5.0
  APT prefers oldstable
  APT policy: (500, 'oldstable'), (500, 'unstable'), (500, 'stable'), (1, 
'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.26.5-20080922 (SMP w/2 CPU cores; PREEMPT)
Locale: LANG=POSIX, LC_CTYPE=en_US.ISO8859-1 (charmap=ISO-8859-1)
Shell: /bin/sh linked to /bin/bash

Versions of packages zsh depends on:
ii  libc6 2.9-3  GNU C Library: Shared libraries
ii  libcap2   2.16-2 support for getting/setting POSIX.
ii  libncursesw5  5.7+20090214-1 shared libraries for terminal hand

Versions of packages zsh recommends:
ii  libpcre3  7.8-2  Perl 5 Compatible Regular Expressi

Versions of packages zsh suggests:
ii  zsh-doc   4.3.9-1zsh documentation - info/HTML form

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517009: alias not expanded with pdksh -c

[Vincent Lefevre]

Package: pdksh
Version: 5.2.14-23
Severity: normal

Aliases are not expanded with the -c option, as shown below.

$ cmd=$(printf "alias a='echo OK >&2'\na")
$ printf "%s\n" "$cmd"
alias a='echo OK >&2'
a
$ printf "%s" "$cmd" | pdksh
OK
$ pdksh -c "$cmd"
pdksh: a: not found
$ 

There's no such problem with ksh93, bash in POSIX mode, and dash
(zsh has the same bug).

-- System Information:
Debian Release: 5.0
  APT prefers oldstable
  APT policy: (500, 'oldstable'), (500, 'unstable'), (500, 'stable'), (1, 
'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.26.5-20080922 (SMP w/2 CPU cores; PREEMPT)
Locale: LANG=POSIX, LC_CTYPE=en_US.ISO8859-1 (charmap=ISO-8859-1)
Shell: /bin/sh linked to /bin/bash

Versions of packages pdksh depends on:
ii  debianutils   2.31   Miscellaneous utilities specific t
ii  libc6 2.9-3  GNU C Library: Shared libraries

pdksh recommends no packages.

pdksh suggests no packages.

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517007: xen-utils-3.2-1: tap:aio on disk image files is not usable

[Gianluigi Tiesi]

Package: xen-utils-3.2-1
Version: 3.2.1-2
Severity: important


/usr/lib/xen-3.2-1/bin/blktapctrl
searches for tapdisk executable in /usr/bin
while is in /usr/lib/xen-3.2-1/bin

this makes tap:aio unusable

I've linked to /usr/bin and everything went fine

perhaps the idea is to patch sources to pick
executable from the right directory

Regards


-- System Information:
Debian Release: 5.0
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.26-1-xen-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.ISO-8859-15, LC_CTYPE=en_US.ISO-8859-15 (charmap=ISO-8859-15)
Shell: /bin/sh linked to /bin/bash

Versions of packages xen-utils-3.2-1 depends on:
ii  e2fslibs   1.41.3-1  ext2 filesystem libraries
ii  iproute20080725-2networking and traffic control too
ii  libc6  2.7-18GNU C Library: Shared libraries
ii  libgcrypt111.4.1-1   LGPL Crypto library - runtime libr
ii  libgnutls262.4.2-6   the GNU TLS library - runtime libr
ii  libncurses55.7+20081213-1shared libraries for terminal hand
ii  libsdl1.2debian1.2.13-2  Simple DirectMedia Layer
ii  libxenstore3.0 3.2.1-2   Xenstore communications library fo
ii  python 2.5.2-3   An interactive high-level object-o
ii  python-central 0.6.8 register and build utility for Pyt
ii  udev   0.125-7   /dev/ and hotplug management daemo
ii  xen-utils-common   3.2.0-2   XEN administrative tools - common 
ii  zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime

Versions of packages xen-utils-3.2-1 recommends:
ii  bridge-utils  1.4-5  Utilities for configuring the Linu
ii  xen-hypervisor-3.2-1-amd64 [x 3.2.1-2The Xen Hypervisor on AMD64

Versions of packages xen-utils-3.2-1 suggests:
pn  xen-docs-3.2   (no description available)

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516864: libpam-afs-session: PAGs not used on SSH login

[Russ Allbery]

david l goodrich  writes:

> I sure do: 
>
> Feb 25 02:11:16 chaos sshd[18207]: (pam_afs_session): pam_sm_setcred: entry 
> (0x2)
> Feb 25 02:11:16 chaos sshd[18207]: (pam_afs_session): running /usr/bin/aklog 
> as UID 1000
> Feb 25 02:11:16 chaos sshd[18207]: (pam_afs_session): pam_sm_setcred: exit 
> (success)

Okay, so it's created a PAG and acquired tokens for you.  Something is
apparently later destroying both.  Do you have pam_keyring anywhere in
your configuration?  (The bits that you sent me I think didn't have that,
but I wasn't sure if that was the entirety of your PAM stack.)

Also, how are you checking whether you have a PAG and a token after you
log in?

-- 
Russ Allbery (r...@debian.org)   



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517006: firestarter: Missing build-dependency on libglade2-dev

[Iain Lane]

Package: firestarter
Version: 1.0.3-7
Severity: normal

Hi,

When uploading a new version of firestarter to Ubuntu I discovered that
it misses a build-dependency on libglade2-dev. This caused it to fail to
build. I am unable to test-build on sid to reproduce the problem there
as the build-deps are uninstallable due to transitions taking place.

Please consider adding the missing b-d (there may be others, but only
this one caused an FTBFS).

Iain

-- System Information:
Debian Release: 5.0
  APT prefers jaunty-updates
  APT policy: (500, 'jaunty-updates'), (500, 'jaunty-security'), (500, 
'jaunty-proposed'), (500, 'jaunty-backports'), (500, 'jaunty'), (500, 
'intrepid-updates'), (500, 'intrepid-security'), (500, 'intrepid-proposed'), 
(500, 'intrepid-backports'), (500, 'intrepid')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.28-8-generic (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) (ignored: LC_ALL 
set to en_GB.UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages firestarter depends on:
ii  gconf2  2.25.2-0ubuntu3  GNOME configuration database syste
ii  gksu2.0.0-5ubuntu4   graphical frontend to su
ii  iptables1.4.1.1-4ubuntu1 administration tools for packet fi
ii  libart-2.0-22.3.20-2 Library of functions for 2D graphi
ii  libatk1.0-0 1.25.2-0ubuntu1  The ATK accessibility toolkit
ii  libbonobo2-02.24.0-2 Bonobo CORBA interfaces library
ii  libbonoboui2-0  2.24.0-1 The Bonobo UI library
ii  libc6   2.9-0ubuntu12GNU C Library: Shared libraries
ii  libcairo2   1.8.6-1ubuntu2   The Cairo 2D vector graphics libra
ii  libfontconfig1  2.6.0-1ubuntu4   generic font configuration library
ii  libfreetype62.3.7-2ubuntu1   FreeType 2 font engine, shared lib
ii  libgconf2-4 2.25.2-0ubuntu3  GNOME configuration database syste
ii  libglade2-0 1:2.6.3-1library to load .glade files at ru
ii  libglib2.0-02.19.8-0ubuntu1  The GLib library of C routines
ii  libgnome2-0 2.24.1-1ubuntu3  The GNOME 2 library - runtime file
ii  libgnomecanvas2 2.25.90-0ubuntu2 A powerful object-oriented display
ii  libgnomeui-02.24.0-1 The GNOME 2 libraries (User Interf
ii  libgnomevfs2-0  1:2.24.0-1ubuntu2GNOME Virtual File System (runtime
ii  libgtk2.0-0 2.15.4-0ubuntu3  The GTK+ graphical user interface 
ii  libice6 2:1.0.4-1X11 Inter-Client Exchange library
ii  liborbit2   1:2.14.16-0.1libraries for ORBit2 - a CORBA ORB
ii  libpango1.0-0   1.22.4-1 Layout and rendering of internatio
ii  libpopt01.14-4   lib for parsing cmdline parameters
ii  libsm6  2:1.1.0-1X11 Session Management library
ii  libx11-62:1.1.99.2-1ubuntu2  X11 client-side library
ii  libxml2 2.6.32.dfsg-5ubuntu3 GNOME XML library
ii  lsb-base3.2-20ubuntu3Linux Standard Base 3.2 init scrip
ii  zlib1g  1:1.2.3.3.dfsg-12ubuntu1 compression library - runtime

firestarter recommends no packages.

Versions of packages firestarter suggests:
pn  dhcp3-server   (no description available)

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516864: libpam-afs-session: PAGs not used on SSH login

[david l goodrich]

On Tue, Feb 24, 2009 at 12:55:35PM -0800, Russ Allbery wrote:
> david l goodrich  writes:
> 
> > Certainly, they were taken from your README.
> >
> > chaos:~# grep -v ^# /etc/pam.d/common-auth 
> > auth [success=ok default=1] pam_krb5.so
> > auth [default=done] pam_afs_session.so debug
> > auth required   pam_unix.so try_first_pass nullok_secure
> >
> > chaos:~# grep -v ^# /etc/pam.d/common-session 
> > session optional pam_krb5.so
> > session required pam_afs_session.so debug
> > chaos:~# 
> 
> Hm, okay, that looks fine.  I see that you have the debug flags added to
> pam_afs_session.  When you connect with ssh, do you get log messages about
> pam_afs_session running?  If so, what do you get?
> 

I sure do: 

-
Feb 25 02:11:16 chaos sshd[18207]: Accepted password for dlg from 172.20.4.138 
port 51178 ssh2
Feb 25 02:11:16 chaos sshd[18207]: pam_env(sshd:setcred): Unable to open env 
file:
/etc/default/locale: No such file or directory
Feb 25 02:11:16 chaos sshd[18207]: (pam_afs_session): pam_sm_setcred: entry 
(0x2)
Feb 25 02:11:16 chaos sshd[18207]: (pam_afs_session): running /usr/bin/aklog as 
UID 1000
Feb 25 02:11:16 chaos sshd[18207]: (pam_afs_session): pam_sm_setcred: exit 
(success)
Feb 25 02:11:16 chaos sshd[18207]: (pam_afs_session): pam_sm_open_session: 
entry (0x0)
Feb 25 02:11:16 chaos sshd[18207]: (pam_afs_session): skipping, apparently 
already ran
Feb 25 02:11:16 chaos sshd[18207]: (pam_afs_session): pam_sm_open_session: exit 
(success)
Feb 25 02:11:16 chaos sshd[18212]: pam_env(sshd:setcred): Unable to open env 
file:
/etc/default/locale: No such file or directory
Feb 25 02:11:16 chaos sshd[18212]: (pam_afs_session): pam_sm_setcred: entry 
(0x2)
Feb 25 02:11:16 chaos sshd[18212]: (pam_afs_session): skipping, apparently 
already ran
Feb 25 02:11:16 chaos sshd[18212]: (pam_afs_session): pam_sm_setcred: exit 
(success)
-



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516301: Acknowledgement (after upgrade to libc62.9,almosteverything segfaults)

[Hamilton, Eamonn [OS-IE]]

>If possible, yes please. I currently do not have any other idea.

OK, tried rebooting with selinux=0 and I'm afraid it made no difference. When I 
get a chance I'll try compiling up the kernel again, and also have a look at a 
later revision and completely disable selinux.

Oh well, back to 2.7 and off to bed for me.

Thanks again,
Eamonn

Bug#515918: rort source

[Mark Robinson]

The following packages are BROKEN:
  cups-driver-gutenprint [5.0.2-4 -> 5.2.3-2]

The following packages have unmet dependencies:
  cups-driver-gutenprint: Conflicts: cupsys-driver-gutenprint but 5.0.2-4 is 
installed.

>

Resolving dependencies...
The following packages have been kept back:
  cups-driver-gutenprint{a}




--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517004: splashy: 96-100% CPU usage during the boot process

[Raphael Geissert]

Package: splashy
Version: 0.3.13-3

If I start sshd early during the boot process, via h/top on a remote machine I 
can see a splashy child process with a nice value of -10 consuming from 96 to 
100% of the CPU. The CPU consumption doesn't go down until splashy finally 
exits.

Cheers,
-- 
Raphael Geissert - Debian Maintainer
www.debian.org - get.debian.net



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#482260: 482260 + patch

[Ruben Molina]

tags 482260 + patch
thanks

Patch attached.

Regards,

 Ruben
--- pyspi-0.6.1.orig/pyspi.pyx
+++ pyspi-0.6.1/pyspi.pyx
@@ -25,9 +25,15 @@
 cdef class Event (EventBase)
 cdef class DeviceEvent
 
-ctypedef enum bool:
+ctypedef unsigned int bool
+
+import __builtin__
+try:
+	False = __builtin__.False
+	True = __builtin__.True
+except AttributeError:
 	False = 0
-	True
+	True = 1
 
 # SPIExceptionCode values:
 (SPI_EXCEPTION_UNSPECIFIED, SPI_EXCEPTION_DISCONNECT, SPI_EXCEPTION_NO_IMPL, SPI_EXCEPTION_IO, SPI_EXCEPTION_BAD_DATA)=range(5) 
@@ -731,7 +737,7 @@
 	Wrapper around the low-level cspi.AccessibleComponent_ functions,
 	giving an OO-style API.
 	"""
-	def getExtents (self, type=0):
+	def getExtents (self, key_type=0):
 		"""
 		Wraps cspi.AccessibleComponent_getExtents, returning an
 		(x,y,w,h) tuple.
@@ -741,7 +747,7 @@
 		cspi.AccessibleComponent_getExtents (self.__item, &x, &y, &w, &h, type)
 		return (x, y, w, h)
 
-	def getPosition (self, type = 0):
+	def getPosition (self, key_type=0):
 		"""
 		Wraps cspi.AccessibleComponent_getPosition, returning an
 		(x,y) tuple.
@@ -991,11 +997,11 @@
 		Wraps cspi.AccessibleHyperlink_getObject
 		"""
 		self.__checkSelf ()
-		cdef Accessible object
-		object = Accessible ()
-		object.__setItem (cspi.AccessibleHyperlink_getObject (self.__item, i))
-		object.__checkSelf ()
-		return object
+		cdef Accessible obj
+		obj = Accessible ()
+		obj.__setItem (cspi.AccessibleHyperlink_getObject (self.__item, i))
+		obj.__checkSelf ()
+		return obj
 
 	def getURI (self, i):
 		"""
@@ -1032,7 +1038,7 @@
 		cspi.AccessibleImage_getImageSize(self.__item, &w, &h);
 		return [w, h]
 
-	def getImagePosition (self, type=0):
+	def getImagePosition (self, key_type=0):
 		"""
 		Wraps cspi.AccessibleImage_getImagePosition, returning a (x,y)
 		pair
@@ -1042,7 +1048,7 @@
 		cspi.AccessibleImage_getImagePosition(self.__item, &x, &y, type)
 		return [x, y]
 
-	def getImageExtents (self, type=0):
+	def getImageExtents (self, key_type=0):
 		"""
 		Wraps cspi.AccessibleImage_getImageExtents, returning a
 		(x,y,w,h) tuple
@@ -1551,7 +1557,7 @@
 	cdef cspi.AccessibleDeviceListener *__item
 	cdef public object modMasks
 
-	def __init__ (self, callback, eventMask = cspi.SPI_KEY_PRESSED | cspi.SPI_KEY_RELEASED):
+	def __init__ (self, callback, eventMask =  cspi.SPI_KEY_PRESSED |  cspi.SPI_KEY_RELEASED):
 		"""
 		Registers a python callback function to be called.
 


signature.asc
Description: Esta parte del mensaje está firmada	digitalmente

Bug#507437: Fixed in 2.6.28

[Sam Morris]

Version: 2.6.28-1

This message is gone in 2.6.28.

-- 
Sam Morris
https://robots.org.uk/

PGP key id 1024D/5EA01078
3412 EA18 1277 354B 991B  C869 B219 7FDB 5EA0 1078



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#507378: (no subject)

[Iain Lane]

severity 507378 serious
severity 510044 serious
severity 510046 serious
severity 510048 serious
thanks

Hi again,

The transition has now begun in sid. Your package will FTBFS until
updated. I am therefore raising the severity of the transition bug as it
is now RC.

Iain



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517003: mirror submission for mirror.hosef.org

[R. Scott Belford]

Package: mirrors
Severity: wishlist

Submission-Type: new
Site: mirror.hosef.org
Aliases: mirrors.hosef.org
Type: leaf
Archive-architecture: alpha amd64 arm armel hppa i386 ia64 mips mipsel powerpc 
s390 sparc 
Archive-ftp: /debian/
Archive-http: /debian/
Archive-rsync: debian/
CDImage-ftp: /debian-cdimage/
CDImage-http: /debian-cdimage/
CDImage-rsync: debian-cdimage/
IPv6: no
Archive-upstream: osuosl.org
CDImage-upstream: osuosl.org
Updates: once
Maintainer: R. Scott Belford 
Country: US United States
Location: University of Hawaii
Sponsor: School of Ocean and Earth Science and Technology 
http://www.soest.hawaii.edu/
Comment: Brian Chee, ANCL
 



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517002: New 0.5.1 upstream release

[Uwe Hermann]

Package: teeworlds
Version: 0.4.2-2
Severity: wishlist

Hi, please consider packaging the new 0.5.1 upstream release.


Thanks, Uwe.
-- 
http://www.hermann-uwe.de  | http://www.holsham-traders.de
http://www.crazy-hacks.org | http://www.unmaintained-free-software.org



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516990: postfix-policyd-spf-python: NameError: global name 'Lib' is not defined

[Scott Kitterman]

The version of python-dns in Etch (which dates to before I was the 
maintainer) is seriously buggy).  I recognize the traceback as an issue 
fixed in the Lenny (and Etch Backports) version.



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#502311: testsuite failures in glibc

[Aurelien Jarno]

On Mon, Feb 23, 2009 at 11:26:01AM +0100, Sven Joachim wrote:
> On 2009-02-23 08:01 +0100, Aurelien Jarno wrote:
> 
> > On Sun, Feb 22, 2009 at 11:48:55AM +0100, Sven Joachim wrote:
> >> All but one of these errors are fixed or ignored in 2.9-2, but the last
> >> problem still occurs -- apparently only if a 64-bit kernel is running
> >> and detectable.  From my debuild log:
> >> 
> >> ,
> >> | #
> >> | # Testsuite failures, someone should be working towards
> >> | # fixing these! They are listed here for the purpose of
> >> | # regression testing during builds.
> >> | # Format: , Error  [(ignored)]
> >> | #
> >> | annexc.out, Error 1 (ignored)
> >> | check-localplt.out, Error 1
> >> | tst-cancelx4.out, Error 1
> >> | tst-cancelx5.out, Error 1
> >> | tst-cpuclock2.out, Error 1
> >> | tst-tables.out, Error 1
> >> | ***
> >> | Encountered regressions that don't match expected failures:
> >> | tst-tables.out, Error 1
> >> `
> >> 
> >> This does not happen if the build is run under linux32.  The
> >> corresponding error message looks like this:
> >> 
> >> ,
> >> | /bin/bash tst-tables.sh 
> >> /usr/local/src/deb-src/glibc/glibc-2.9/build-tree/i386-libc/ 
> >> /usr/local/src/deb-src/glibc/glibc-2.9/build-tree/i386-libc/iconvdata/ > 
> >> /usr/local/src/deb-src/glibc/glibc-2.9/build-tree/i386-libc/iconvdata/tst-tables.out
> >> | Testing ASCIItst-table.sh:38: command not found: tst-table-charmap.sh
> >> |  *** FAILED ***
> >> | make[3]: *** 
> >> [/usr/local/src/deb-src/glibc/glibc-2.9/build-tree/i386-libc/iconvdata/tst-tables.out]
> >>  Error 1
> >> `
> >
> > This is not something I am able to reproduce here, either with bash or
> > dash. This problems also looks very strange, it's a shell script not
> > able to find another one, and I have problem to understand how the linux
> > personality can affect that.
> 
> You're right.  The problem is not related to that at all.  Rather, I ran
> the original build with "debuild" but than retried with
> "linux32 debian/rules build" to save the recompilation time.  The
> difference in the environment (most notably, debuild unsetting SHELL) is
> the problem.

What is your shell pointing to when not running under debuild? /bin/zsh?

> > The best to debug that is probably to pass -x to the shell, which should
> > gives some more debugging input.
> 
> Did that and got this result:
> 
> ,
> | /bin/bash tst-tables.sh 
> /usr/local/src/deb-src/glibc/glibc-2.9/build-tree/i386-libc/ 
> /usr/local/src/deb-src/glibc/glibc-2.9/build-tree/i386-libc/iconvdata/ > 
> /usr/local/src/deb-src/glibc/glibc-2.9/build-tree/i386-libc/iconvdata/tst-tables.out
> | + common_objpfx=/usr/local/src/deb-src/glibc/glibc-2.9/build-tree/i386-libc/
> | + 
> objpfx=/usr/local/src/deb-src/glibc/glibc-2.9/build-tree/i386-libc/iconvdata/
> | + status=0
> | + cat
> | + read charset charmap
> | + test '#' = GB18030
> | + case ${charset} in
> | + continue
> | + read charset charmap
> | + test '#' = GB18030
> | + case ${charset} in
> | + continue
> | + read charset charmap
> | + test '#' = GB18030
> | + case ${charset} in
> | + continue
> | + read charset charmap
> | + test '#' = GB18030
> | + case ${charset} in
> | + continue
> | + read charset charmap
> | + test ASCII = GB18030
> | + case ${charset} in
> | + echo -n 'Testing ASCII'
> | Testing ASCII+ /bin/zsh tst-table.sh 
> /usr/local/src/deb-src/glibc/glibc-2.9/build-tree/i386-libc/ 
> /usr/local/src/deb-src/glibc/glibc-2.9/build-tree/i386-libc/iconvdata/ ASCII 
> ANSI_X3.4-1968

Seems zsh used.

> | tst-table.sh:38: command not found: tst-table-charmap.sh
> | + echo 'failed: ./tst-table.sh 
> /usr/local/src/deb-src/glibc/glibc-2.9/build-tree/i386-libc/ 
> /usr/local/src/deb-src/glibc/glibc-2.9/build-tree/i386-libc/iconvdata/ ASCII 
> ANSI_X3.4-1968'
> | + echo ' *** FAILED ***'
> |  *** FAILED ***
> | + exit 1
> | + exit 1
> | make[3]: *** 
> [/usr/local/src/deb-src/glibc/glibc-2.9/build-tree/i386-libc/iconvdata/tst-tables.out]
>  Error 1
> `
> 
> Line 38 of tst-table.sh reads
> 
> ${SHELL} tst-table-charmap.sh ${charmap:-$charset} \
>   < ../localedata/charmaps/${charmap:-$charset} \
>   > ${objpfx}tst-${charset}.charmap.table
> 
> and with SHELL unset, it would try to run tst-table-charmap.sh directly,
> which isn't found in $PATH.  This can be easily remedied, e.g. with

You tell before that the problem occurs when not running under debuild,
that is when SHELL *is* set. That's conflicting.

I am currently unable to reproduce the problem here. 

-- 
Aurelien Jarno  GPG: 1024D/F1BCDB73
aurel...@aurel32.net http://www.aurel32.net



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517001: openoffice.org-writer2latex: error when adding extension

[Sam Morris]

Package: openoffice.org-writer2latex
Version: 0.5.0.2-2
Severity: grave
Justification: renders package unusable

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

When upgrading today:

Setting up openoffice.org-writer2latex (0.5.0.2-2) ...
Adding extension 
/usr/lib/openoffice/share/extension/install/writer2latex.oxt...An error 
occurred while enabling: writer2latex-filter.jar
 done.

The error appears to be ignored by the package's maintainer script; it did not
cause dpkg to abort. I don't see LaTeX listed as a format if I go to File ->
Export so it appears the error is fatal.

I don't think this is a dupe of #466300. The comments on that bug indicate that
it was fixed a long time ago, and the symptoms are different (this bug does not
cause installation of the package to fail). But if it is, please accept my
apologies. :)

- -- Package-specific info:
all deployed shared packages:


- -- System Information:
Debian Release: 5.0
  APT prefers testing
  APT policy: (530, 'testing'), (520, 'unstable'), (510, 'experimental')
Architecture: i386 (i686)

Kernel: Linux 2.6.26-1-686 (SMP w/1 CPU core)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages openoffice.org-writer2latex depends on:
ii  openoffice.org-core   1:3.0.1-2  OpenOffice.org office suite archit
ii  openoffice.org-java-common1:2.4.1-17 OpenOffice.org office suite Java s

openoffice.org-writer2latex recommends no packages.

openoffice.org-writer2latex suggests no packages.

- -- no debconf information

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkmkjlkACgkQshl/216gEHjeDwCg74ms8/oKA+OFt68lvw191ARD
f9AAn2KOQ6GkgaxMNvEFM+3Spj8YIzgI
=qv1e
-END PGP SIGNATURE-



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516776: findutils: SAN fs in PRUNEFS

[James Youngman]

> On system using OCFS2 mounted, findutils can make the whole system hang
> while running updatedb (and then need a reboot).

It should not be possible for a unprivileged user-space program to
crash the system.   This sounds like a denial-of-service problem
caused by a strange configuration or perhaps a kernel or filesystem
bug.

James.



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516301: Acknowledgement (after upgrade to libc6 2.9,almosteverything segfaults)

[Aurelien Jarno]

On Tue, Feb 24, 2009 at 11:21:31PM -, Hamilton, Eamonn [OS-IE] wrote:
> 
> >Hmm, that looks very strange. error 14 is EFAULT. Have you added any 
> >(security) patch to your kernel? Are you using selinux?
> 
> 
> I'm running a vanilla kernel, 2.6.28.2, but selinux is certainly enabled. 
> Would you like me to try with selinux disabled?
> 

If possible, yes please. I currently do not have any other idea.

-- 
Aurelien Jarno  GPG: 1024D/F1BCDB73
aurel...@aurel32.net http://www.aurel32.net



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516982: scanadf: segfault: sanei_w_array: DECODE: maximum amount of allocated memory exceeded

[Jelle de Jong]

Jelle de Jong wrote:
> I found some more info:
> 
> ==> messages <==
> Feb 24 23:53:37 ashley kernel: [2102128.010003] scanimage[20502]:
> segfault at 1 ip 7f95e661d7b0 sp 7fffeef347d8 error 4 in
> libc-2.8.90.so[7f95e659b000+169000]
> 
> ==> user.log <==
> Feb 24 23:54:41 ashley scanimage: scan/sane/io.c 53: dBus Connection
> Error (Failed to connect to socket /var/run/dbus/system_bus_socket: No
> such file or directory)!
> Feb 24 23:54:41 ashley scanimage: failed to open scan channel:
> scan/sane/hpaio.c 665
> Feb 24 23:54:41 ashley scanimage: scan/sane/io.c 97: dbus message send
> failed!
> Feb 24 23:54:41 ashley scanimage: io/hpmud/hpmud.c 323:
> device_cleanup: device
> uri=hp:/usb/Officejet_J5700_series?serial=CN7BOCF3HP04TC
> Feb 24 23:54:41 ashley scanimage: io/hpmud/hpmud.c 335:
> device_cleanup: close device dd=1...
> Feb 24 23:54:41 ashley scanimage: io/hpmud/hpmud.c 337:
> device_cleanup: done closing device dd=1
> 
> ==> syslog <==
> Feb 24 23:54:41 ashley scanimage: scan/sane/io.c 53: dBus Connection
> Error (Failed to connect to socket /var/run/dbus/system_bus_socket: No
> such file or directory)!
> Feb 24 23:54:41 ashley scanimage: failed to open scan channel:
> scan/sane/hpaio.c 665
> Feb 24 23:54:41 ashley scanimage: scan/sane/io.c 97: dbus message send
> failed!
> Feb 24 23:54:41 ashley scanimage: io/hpmud/hpmud.c 323:
> device_cleanup: device
> uri=hp:/usb/Officejet_J5700_series?serial=CN7BOCF3HP04TC
> Feb 24 23:54:41 ashley scanimage: io/hpmud/hpmud.c 335:
> device_cleanup: close device dd=1...
> Feb 24 23:54:41 ashley scanimage: io/hpmud/hpmud.c 337:
> device_cleanup: done closing device dd=1
> 
> ==> messages <==
> Feb 24 23:54:41 ashley scanimage: failed to open scan channel:
> scan/sane/hpaio.c 665
> 

On the sever: (i don't want to run dbus and consolekit on a production
servers!) btw this is a fully updated ubuntu machine my apology it is
not debian, there is a legacy issue on this production server.

cat /etc/lsb-release
DISTRIB_DESCRIPTION="Ubuntu 8.10"

apt-get install dbus --no-install-recommends

r...@ashley:~# scanimage -d
net:192.168.1.1:hpaio:/usb/Officejet_J5700_series?serial=CN7BOCF3HP04TC
> test0.bmp
r...@ashley:~# ls -hal test0.bmp
-rw-rw 1 root root 2.1M 2009-02-25 00:10 test0.bmp

Now the scanner seem to be working again also from the clients ;-(

Should we still sent this bug report to the sane-devel mailinglist or
an other places?

Best regards,

Jelle de Jong



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#517000: Please update to 0.14.1 and provide python bindings

[Uwe Hermann]

Package: libtorrent-rasterbar-dev
Version: 0.13.1-2
Severity: normal

Hi,

I'm the maintainer of the 'miro' package. Please consider uploading a
package for 0.14.1 to unstable and also enable the Python bindings.

This is needed for the 'miro' package which uses libtorrent-rasterbar.
Currently miro is built with a libtorrent-rasterbar version which is shipped
in the miro tarball, which I intend to get rid of (using the
libtorrent-rasterbar Debian package as dependency instead).

However, miro needs (a) libtorrent-rasterbar >= 0.14.1, and (b) the Python
bindings, hence my request.


Thanks for considering! Uwe.
-- 
http://www.hermann-uwe.de  | http://www.holsham-traders.de
http://www.crazy-hacks.org | http://www.unmaintained-free-software.org



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516875: ITP: libxfce4menu -- freedesktop.org compliant menu implementation for Xfce

[Charles Plessy]

Le Tue, Feb 24, 2009 at 09:58:21AM +0100, Yves-Alexis Perez a écrit :
> > > libxfce4menu is an XDG-compliant menu implementation for Xfce
> > > Environment.

Hi Yves,

by the way, since the name of the XDG was changed to freedesktop.org, it is
maybe better not to use this name directly.

How about:

 libxfce4menu is a menu implementation for the Xfce Desktop Environment that is
 compliant with the Desktop Menu Specification of freedesktop.org (formerly
 known as XDG).

Have a nice day,

-- 
Charles Plessy
Tsurumi, Kanagawa, Japan



--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516990: postfix-policyd-spf-python: NameError: global name 'Lib' is not defined

[Kurt Roeckx]

On Tue, Feb 24, 2009 at 06:21:52PM -0500, Scott Kitterman wrote:
> Do you have the python-dns from backports.org installed too?

No, there was no version requirement for that.  I've installed that now too
and I'll let you know if I see it again.


Kurt




-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#397648: [pkg-ntp-maintainers] Bug#515702: Bug#515702: ntpdate: "no servers can be used" with default configuration

[Jack Bates]

On Thu, 2009-02-19 at 22:35 +0100, Kurt Roeckx wrote:
> He says he somehow ended up with a blank /etc/ntp.conf file, which
> shouldn't happen.

Thanks Kurt, on further investigation I realize that the ntpdate package
does not distribute an ntp.conf file, blank or otherwise. I think the
blank ntp.conf file I observe is a symptom of bug #397648, which has
been forwarded upstream:
http://bugzilla.gnome.org/show_bug.cgi?id=449267

Unfortunately neither bug #397648 nor the upstream bug show any recent
activity : (

After deleting the blank ntp.conf file and without manually
reconfiguring /etc/default/ntpdate, I can run ntpdate-debian



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516692: audacity: no PulseAudio devices presented

[Ben Finney]

On 23-Feb-2009, Reinhard Tartler wrote:
> Ben Finney  writes:
> 
> > This is a problem on systems that *only* have audio working via
> > PulseAudio. For example, an X desktop running on a remote server,
> > which must communicate over the network to a workstation running a
> > PulseAudio server that controls the workstation's audio devices.
> 
> From http://www.pulseaudio.org/wiki/PerfectSetup#Audacity
> 
> Audacity doesn't support PulseAudio, nor Esound for the moment.
> You'll have to kill or suspend pulseaudio before you use this
> application.

Note that this doesn't help for the situation described above, where
pulseaudio is *required* for access to the audio devices.

> Audacity uses the PortAudio cross-platform Audio API which doesnt
> support pulseaudio. Some work was started on making portaudio
> support PulseAudio but this does not appear to be under active
> development currently and does not work in it's current state.

Perhaps this bug is best applied to portaudio then? I don't know the
answer to that question.

> Audacity can use OSS for sound input and sound output. By changing
> the 2 settings in preferences to /dev/dsp, and running audacity as
> 
> padsp audacity

This does work, but could hardly be called a fix for this bug; more a
worksaround.

> OTOH upstream seems to be against it:
> http://audacityteam.org/forum/viewtopic.php?f=14&t=3541

That discussion also ignores the possibility of the situation
described in this bug report (that pulseaudio is required for access
to some audio setups).

> However there seems to be a patch for audacity to actually support
> this nevertheless. But unless someone steps forward to examine and
> discuss that patch with upstream, I'd vote for setting this bug to
> wishlist/wontfix.

Can I ask that the package manager perform that advocacy on behalf of
package users?

-- 
 \ “True greatness is measured by how much freedom you give to |
  `\  others, not by how much you can coerce others to do what you |
_o__)   want.” —Larry Wall |
Ben Finney 


signature.asc
Description: Digital signature

Bug#516999: nautilus: Launcher Properties dialog on NFS closes when you select the Launcher tab

[John Pearson]

Package: nautilus
Version: 2.20.0-7
Severity: normal


We use NFS-mounted /home directories; the Properties dialog for desktop
launchers is broken for us.  We see the same behaviour using both NFS3 
and NFS4.

If you select Properties for a desktop launcher and choose the 
"Launcher" tab, the dialog closes after a delay of a second or so.
All indications are that there is no crash or error per se (no 
processes die, nothing's written to .xsession-errors), the dialog just
closes.

The same thing happens to a launcher that's copied from the Desktop 
folder to the home directory itself, or to a subdirectory under it - 
you can open a Nautilus browser window to view "Home" (or navigate 
there via the "Filesystem"), open the Properties dialog for the 
launcher, select the Launcher tab and the dialog closes.

Oddly, this bug does NOT affect NFS mounts in general - as a test I 
mounted a second instance of server:/home at /mnt using the same mount 
options and was able to navigate to it and display the launcher's 
Properties dialog, and select and edit the Launcher tab without any 
problems.

We've also encountered this bug on Ubuntu 8.04, which uses Nautilus 
2.22.5.1 (Ubuntu bug #224642), but not under earlier versions (e.g., 
Ubuntu 6.06, which uses Nautilus 2.14.3).  While it's not serious in 
the greater scheme of things, it is a potential "show stopper" for 
our NFS client desktops that's blocking their migration to a newer 
release, be it Debian or Ubuntu.


John.

-- System Information:
Debian Release: 5.0
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: i386 (i686)

Kernel: Linux 2.6.26-1-686 (SMP w/2 CPU cores)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages nautilus depends on:
ii  desktop-file-utils0.15-1 Utilities for .desktop files
ii  gnome-control-center  1:2.22.2.1-2   utilities to configure the GNOME d
ii  libart-2.0-2  2.3.20-2   Library of functions for 2D graphi
ii  libatk1.0-0   1.22.0-1   The ATK accessibility toolkit
ii  libbonobo2-0  2.22.0-1   Bonobo CORBA interfaces library
ii  libc6 2.7-18 GNU C Library: Shared libraries
ii  libcairo2 1.6.4-7The Cairo 2D vector graphics libra
ii  libeel2-2.20  2.20.0-7   Eazel Extensions Library (for GNOM
ii  libesd0   0.2.36-3   Enlightened Sound Daemon - Shared 
ii  libexempi32.0.1-1library to parse XMP metadata (Lib
ii  libexif12 0.6.16-2.1 library to parse EXIF files
ii  libgail-common1.22.3-1   GNOME Accessibility Implementation
ii  libgail18 1.22.3-1   GNOME Accessibility Implementation
ii  libgconf2-4   2.22.0-1   GNOME configuration database syste
ii  libglade2-0   1:2.6.2-1  library to load .glade files at ru
ii  libglib2.0-0  2.16.6-1   The GLib library of C routines
ii  libgnome-desktop-22.22.3-2   Utility library for loading .deskt
ii  libgnome2-0   2.20.1.1-1 The GNOME 2 library - runtime file
ii  libgnomecanvas2-0 2.20.1.1-1 A powerful object-oriented display
ii  libgnomeui-0  2.20.1.1-2 The GNOME 2 libraries (User Interf
ii  libgnomevfs2-01:2.22.0-5 GNOME Virtual File System (runtime
ii  libgtk2.0-0   2.12.11-4  The GTK+ graphical user interface 
ii  libnautilus-extension12.20.0-7   libraries for nautilus components 
ii  liborbit2 1:2.14.13-0.1  libraries for ORBit2 - a CORBA ORB
ii  libpango1.0-0 1.20.5-3   Layout and rendering of internatio
ii  librsvg2-22.22.2-2lenny1 SAX-based renderer library for SVG
ii  libselinux1   2.0.65-5   SELinux shared libraries
ii  libstartup-notification0  0.9-1  library for program launch feedbac
ii  libtrackerclient0 0.6.6-2metadata database, indexer and sea
ii  libx11-6  2:1.1.5-2  X11 client-side library
ii  libxml2   2.6.32.dfsg-5  GNOME XML library
ii  nautilus-data 2.20.0-7   data files for nautilus
ii  shared-mime-info  0.30-2 FreeDesktop.org shared MIME databa

Versions of packages nautilus recommends:
ii  app-install-data  2008.11.27 Application Installer Data Files
ii  desktop-base  5.0.3  common files for the Debian Deskto
ii  eject 2.1.5+deb1-4   ejects CDs and operates CD-Changer
ii  libgnomevfs2-extra1:2.22.0-5 GNOME Virtual File System (extra m
ii  librsvg2-common   2.22.2-2lenny1 SAX-based renderer library for SVG
ii  nautilus-cd-burner2.20.0-1   CD Burning front-end for Nautilus
ii  synaptic  0.62.1+nmu1Graphical package manager


Versions of packages nautilus suggests:
ii  

Bug#513073: Bug #513073 - debhelper impossible to unpack on Win32 due to case insensitivity - please reopen

[Sjors Gielen]

Neil Williams schreef:

On Tue, 24 Feb 2009 23:07:35 +0100
Sjors Gielen  wrote:

I'd like to ask you to reopen this bug. I have sent you a patch which 
fixes debhelper so it can unpack on case insensitive file systems or 
operating systems. debhelper has in its main directory, next to the 
regular debian directory, also a Debian directory which contains Perl 
modules.  The patch (see the original bug report) fixes this case 
conflict by moving the Debian directory to lib/.


Even if only looking at perl packages installed on my own machine, this
problem is not unique to debhelper - any package that has a Debian::
perl module is likely to have exactly the same "problem"/feature.

$ ls /usr/share/perl5/Debian
AdduserCommon.pm  DebhelperDependency.pm  DpkgCross.pm
AptContents.pmDefoma   DictionariesCommon.pm  Dwww
DebConf   Dependencies.pm  DocBasePackages


Not really. For example the Defoma directory there:

  defoma-0.11.10$ find . -name '*.pm'
  ./pm/Defoma/SubstCache.pm
  [...]

DocBase:

  doc-base-0.8.20$ find . -name '*.pm'
  ./perl/Debian/DocBase/Document.pm

This is a problem of packaging only. For debhelper, this is the current 
situation:


  debhelper-7.0.15$ find . -name '*.pm'
  ./Debian/Debhelper/Sequence/python_support.pm

As you see, the Debian dir here conflicts with the regular debian 
directory on case insensitive filesystems.



If I'm correct, OS X may work in case insensitive mode too.


It's been a while since I used OSX but I certainly remember .DS_Store
directories all over the place and various applications using a mix of
capitalised and lower case directory names.


So this would not only help debhelper on Win32 platforms, but also on OS 
X in some configurations.


Sjors



--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516885: libavformat52: Videos have a green tint

[Apelete Seketeli]

Hi,

Gstreamer0.10-ffmpeg have been updated on the repos to 0.10.6-3, and
after doing the upgrade the problem disappeared.
Everything was as you thought, and it seems safe to assume that the
bug is fixed.

Thank you very much for your cooperation.
--
Apelete Seketeli 



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516982: scanadf: segfault: sanei_w_array: DECODE: maximum amount of allocated memory exceeded

[Jelle de Jong]

I found some more info:

==> messages <==
Feb 24 23:53:37 ashley kernel: [2102128.010003] scanimage[20502]:
segfault at 1 ip 7f95e661d7b0 sp 7fffeef347d8 error 4 in
libc-2.8.90.so[7f95e659b000+169000]

==> user.log <==
Feb 24 23:54:41 ashley scanimage: scan/sane/io.c 53: dBus Connection
Error (Failed to connect to socket /var/run/dbus/system_bus_socket: No
such file or directory)!
Feb 24 23:54:41 ashley scanimage: failed to open scan channel:
scan/sane/hpaio.c 665
Feb 24 23:54:41 ashley scanimage: scan/sane/io.c 97: dbus message send
failed!
Feb 24 23:54:41 ashley scanimage: io/hpmud/hpmud.c 323:
device_cleanup: device
uri=hp:/usb/Officejet_J5700_series?serial=CN7BOCF3HP04TC
Feb 24 23:54:41 ashley scanimage: io/hpmud/hpmud.c 335:
device_cleanup: close device dd=1...
Feb 24 23:54:41 ashley scanimage: io/hpmud/hpmud.c 337:
device_cleanup: done closing device dd=1

==> syslog <==
Feb 24 23:54:41 ashley scanimage: scan/sane/io.c 53: dBus Connection
Error (Failed to connect to socket /var/run/dbus/system_bus_socket: No
such file or directory)!
Feb 24 23:54:41 ashley scanimage: failed to open scan channel:
scan/sane/hpaio.c 665
Feb 24 23:54:41 ashley scanimage: scan/sane/io.c 97: dbus message send
failed!
Feb 24 23:54:41 ashley scanimage: io/hpmud/hpmud.c 323:
device_cleanup: device
uri=hp:/usb/Officejet_J5700_series?serial=CN7BOCF3HP04TC
Feb 24 23:54:41 ashley scanimage: io/hpmud/hpmud.c 335:
device_cleanup: close device dd=1...
Feb 24 23:54:41 ashley scanimage: io/hpmud/hpmud.c 337:
device_cleanup: done closing device dd=1

==> messages <==
Feb 24 23:54:41 ashley scanimage: failed to open scan channel:
scan/sane/hpaio.c 665





-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516301: Acknowledgement (after upgrade to libc6 2.9,almosteverything segfaults)

[Hamilton, Eamonn [OS-IE]]

>Hmm, that looks very strange. error 14 is EFAULT. Have you added any 
>(security) patch to your kernel? Are you using selinux?


I'm running a vanilla kernel, 2.6.28.2, but selinux is certainly enabled. Would 
you like me to try with selinux disabled?

Cheers,
Eamonn 

Bug#516982: scanadf: segfault: sanei_w_array: DECODE: maximum amount of allocated memory exceeded

[Jelle de Jong]

Julien BLACHE wrote:
> Jelle de Jong  wrote:
> 
> Hi,
> 
>> I hope the logs speaks for it selfs, if not please ask for more information.
> 
> I think it's a hpaio bug. It's symptomatic of a backend that writes to
> fd 0 while saned is run through (x)inetd.
> 
> It's already been reported to the hplip folks, but they didn't care
> enough to try to reproduce and fix the problem. See #495005.
> 
> It's either that, or the backend doing something against the
> standard. As I don't have any hplip-supported hardware, there's
> nothing I can do. Somebody with access to the hardware needs to
> reproduce, track down and fix the bug.
> 
> JB.
> 

You are right! It has something to do with the saned is run through
(x)inetd. This is bad, since I use this as enterprise setup by my
customers

So I logged into the server that is making a network printer and
scanner of the device and did the below as root:

# scanimage -L
device
`net:192.168.1.1:hpaio:/usb/Officejet_J5700_series?serial=CN7BOCF3HP04TC'
is a Hewlett-Packard Officejet_J5700_series all-in-one
device `hpaio:/usb/Officejet_J5700_series?serial=CN7BOCF3HP04TC' is a
Hewlett-Packard Officejet_J5700_series all-in-one
r...@ashley:/var/log# scanimage --help
Usage: scanimage [OPTION]...

Start image acquisition on a scanner device and write PNM image data to
standard output.

Parameters are separated by a blank from single-character options (e.g.
-d epson) and by a "=" from multi-character options (e.g.
--device-name=epson).
-d, --device-name=DEVICE   use a given scanner device (e.g.
hp:/dev/scanner)
--format=pnm|tiff  file format of output file
-i, --icc-profile=PROFILE  include this ICC profile into TIFF file
-L, --list-devices show available scanner devices
-f, --formatted-device-list=FORMAT similar to -L, but the FORMAT of
the output
   can be specified: %d (device name), %v
(vendor),
   %m (model), %t (type), and %i (index number)
-b, --batch[=FORMAT]   working in batch mode, FORMAT is `out%d.pnm' or
   `out%d.tif' by default depending on --format
--batch-start=#page number to start naming files with
--batch-count=#how many pages to scan in batch mode
--batch-increment=#increase number in filename by an amount of #
--batch-double increment page number by two for 2sided
originals
   being scanned in a single sided scanner
--batch-prompt ask for pressing a key before scanning a page
--accept-md5-only  only accept authorization requests using md5
-p, --progress print progress messages
-n, --dont-scanonly set options, don't actually scan
-T, --test test backend thoroughly
-h, --help display this help message and exit
-v, --verbose  give even more status messages
-B, --buffer-size  change default input buffersize
-V, --version  print version information
[sanei_wire] sanei_w_array: DECODE: maximum amount of allocated memory
exceeded (limit: 1048576, new allocation: 825636153, total: 826684729
bytes)
scanimage: open of device
net:192.168.1.1:hpaio:/usb/Officejet_J5700_series?serial=CN7BOCF3HP04TC
failed: Error during device I/O
Type ``scanimage --help -d DEVICE'' to get list of all options for DEVICE.

[sanei_wire] sanei_w_array: DECODE: maximum amount of allocated memory
exceeded (limit: 1048576, new allocation: 14682911648, total:
14683960224 bytes)
List of available devices:
hpaio:/usb/Officejet_J5700_series?serial=CN7BOCF3HP04TC


After that I restarted /etc/init.d/xinetd restart and let somebody on
the other side restart the printer and after that scanadf --help did
not show an error anymore. However!

After trying to run the simple below command as root on the server:

# scanimage
[sanei_wire] sanei_w_array: DECODE: maximum amount of allocated memory
exceeded (limit: 1048576, new allocation: 893001825, total: 894050401
bytes)
Segmentation fault

after this it takes a few minutes before the printer recovers and is
able to shutdown to reconnect it again.

The hole processes froze again with the same errors, and the device
does not scan anymore! printing still works.


# just to be sure showing this:
cat /etc/xinetd.d/saned
# default: off
# description: The sane server accepts requests
# for network access to a local scanner via the
# network.
service sane-port
{
port= 6566
socket_type = stream
wait= no
user= saned
group   = saned
groups  = yes
server  = /usr/sbin/saned
}

taking the power of the scanner and reconnecting it to the server:

r...@ashley:~# scanimage -d
hpaio:/usb/Officejet_J5700_series?serial=CN7BOCF3HP04TC > test.bmp
process 20186: arguments to dbus_connection_send() were incorrect,
assertion "connection != NULL" failed in file dbus-connection.c line 3099.
This is normally a bug in some application using the D-Bus library.

Bug#516990: postfix-policyd-spf-python: NameError: global name 'Lib' is not defined

[Scott Kitterman]

Do you have the python-dns from backports.org installed too?


signature.asc
Description: This is a digitally signed message part.

Bug#516998: zsh regards reserved word as candidate for alias substitution

[Vincent Lefevre]

Package: zsh
Version: 4.3.9-1
Severity: normal

POSIX.1-2008 says[*]:

  2.3.1 Alias Substitution
  [...] However, reserved words in correct grammatical context
  shall not be candidates for alias substitution.

[*] 
http://www.opengroup.org/onlinepubs/9699919799/utilities/V3_chap02.html#tag_18_03_01

but zsh gives:

vin% emulate sh
vin% alias !="echo OK"
vin% ! foo
OK foo
vin% 

instead of running command "foo". ksh93, pdksh, dash and bash
in POSIX mode all behave correctly.

-- System Information:
Debian Release: 5.0
  APT prefers oldstable
  APT policy: (500, 'oldstable'), (500, 'unstable'), (500, 'stable'), (1, 
'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.26.5-20080922 (SMP w/2 CPU cores; PREEMPT)
Locale: LANG=POSIX, LC_CTYPE=en_US.ISO8859-1 (charmap=ISO-8859-1)
Shell: /bin/sh linked to /bin/bash

Versions of packages zsh depends on:
ii  libc6 2.9-3  GNU C Library: Shared libraries
ii  libcap2   2.16-2 support for getting/setting POSIX.
ii  libncursesw5  5.7+20090214-1 shared libraries for terminal hand

Versions of packages zsh recommends:
ii  libpcre3  7.8-2  Perl 5 Compatible Regular Expressi

Versions of packages zsh suggests:
ii  zsh-doc   4.3.9-1zsh documentation - info/HTML form

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516277: FTBFS: Not in scope: `buildVerbose'

[Ruben Molina]

Hi, Setup.lhs can be fixed listing buildVerbose in the imports:

-import Distribution.Simple.Setup ( BuildFlags(..) )
+import Distribution.Simple.Setup ( BuildFlags(..), buildVerbose )

But debian/get_version.hs still needs to be fixed.

Thanks,

Ruben


signature.asc
Description: Esta parte del mensaje está firmada	digitalmente

Bug#516979: bind9: Enable dnssec by default.

[Ondřej Surý]

Hi Kurt, LaMont,

I just submitted #516991 with dnssec-conf tool made by Paul Wouters.

Enabling DNSSEC in bind and unbound should be based on this (or something
similar.)

Ondrej

On Tue, Feb 24, 2009 at 21:53, Kurt Roeckx  wrote:
> Package: bind9
> Severity: wishlist
>
> Hi,
>
> It would be nice if dnssec was enabled by default.
>
> I would also like to see itar (https://itar.iana.org/) and
> dlv (https://www.isc.org/solutions/dlv) to be enabled
> by default.
>
>
> Kurt
>
>
>
>
>



-- 
Ondřej Surý 



--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516301: Acknowledgement (after upgrade to libc6 2.9,almost everything segfaults)

[Aurelien Jarno]

On Tue, Feb 24, 2009 at 10:05:35AM +, Eamonn Hamilton wrote:
> Hi,
> 
> After re-installing libc6-2.9-3, I get the following on the console :
> 
> 
> xargs[20841]: segfault at 1 ip 0001 sp
> 7fff05cfb258 error 14 in libc-2.9.so[7f6bfd78c000+149000]
> xargs[20844]: segfault at 1 ip 0001 sp
> 7fff3f3b0918 error 14 in libc-2.9.so[7f3136e42000+149000]
> xargs[20847]: segfault at 1 ip 0001 sp
> 744b2a18 error 14 in libc-2.9.so[7f6febf46000+149000]
> xargs[21582]: segfault at 1 ip 0001 sp
> 7fff92e79438 error 14 in locale-archive[7f4e8570a000+5202000]
> xargs[21585]: segfault at 1 ip 0001 sp
> 7fff13feb5a8 error 14 in locale-archive[7fa10687a000+5202000]
> xargs[21588]: segfault at 1 ip 0001 sp
> 7fff262077c8 error 14 in locale-archive[7f8318a99000+5202000]
> update-menus[22280]: segfault at 0 ip  sp
> 7fff1da5e698 error 14 in update-menus[40+1d000]
> xargs[22832]:
> segfault at 1 ip 0001 sp 7fff53fe6598 error 14
> in locale-archive[7f35465ac000+54cb000]
> xargs[22835]: segfault at
> 1 ip 0001 sp 7fffa0b9e158 error 14 in
> locale-archive[7fc793166000+54cb000]
> xargs[22838]: segfault at 1
> ip 0001 sp 7fff94d82338 error 14 in
> locale-archive[7f578734a000+54cb000]
> xargs[22883]: segfault at 1
> ip 0001 sp 7fff3baca088 error 14 in
> locale-archive[7f062e09+54cb000]
> xargs[22886]: segfault at 1
> ip 0001 sp 7fff2b8c5e78 error 14 in
> locale-archive[7ff51de8c000+54cb000]
> xargs[22889]: segfault at 1
> ip 0001 sp 7fff45ecf488 error 14 in
> locale-archive[7fd838495000+54cb000]
> update-menus[22905]: segfault at 0
> ip  sp 7fff4bae8788 error 14 in update-menus[40
> +1d000]
> find[22937]: segfault at 1 ip 0001 sp
> 7fffa4f47f28 error 14 in ld-linux-x86-64.so.2[2ae505b5f000+1c000]
> update-menus[22955]: segfault at 0 ip  sp
> 7fff35a06638 error 14 in update-menus[40+1d000]
> find[23001]:
> segfault at 1 ip 0001 sp 7fff327e1458 error 14
> in ld-linux-x86-64.so.2[2b9f782c6000+1c000]
> find[23030]: segfault at
> 1 ip 0001 sp 7fffdc98 error 14 in
> ld-linux-x86-64.so.2[2b65cdffc000+1c000]
> 
> 
> 
> Basically, some things segfaul, however bash appears to work ok.
> 

Hmm, that looks very strange. error 14 is EFAULT. Have you added any 
(security) patch to your kernel? Are you using selinux?

-- 
Aurelien Jarno  GPG: 1024D/F1BCDB73
aurel...@aurel32.net http://www.aurel32.net



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516996: iscsitarget does not compile

[stor...@club-internet.fr]

Package: iscsitarget
version: iscsitarget-source-0.4.16+svn162-3_i386.deb

The module is not compiled with the 2.6.28 kernel with errors :

in function block_io_openpath
blockio.c:164: error: implicit declaration of 'open_bdev_excl'
...
in function block_io_detach
blockio.c:328: error: implicit declaration of 'close_bdev_excl'

'open_bdev_excl' became 'open_bdev_exclusive' since 2.6.28, the same
story for 'close_bdev_excl'

Regards

JP Pozzi






-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516997: python-imaging: License not compatible with DFSG

[Carl Fürstenberg]

Package: python-imaging
Version: 1.1.6-3
Severity: serious
Justification: Policy 2.2.1

Per requesting input on the license for python-imaging onto
debial-legal
(http://lists.debian.org/debian-legal/2009/02/msg00057.html), 
in which an resonse was made that the license is not DFSG compilant.
Thus I notify you here about the issue and ask you, if possible, to
resolve the issue.

The suggestion made is to try getting the software relicensed under an
compatible license, e.g. for example /usr/share/doc/x11-apps/copyright.

/Carl Fürstenberg


-- System Information:
Debian Release: 5.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)

Kernel: Linux 2.6.26-1-686 (SMP w/1 CPU core)
Locale: LANG=sv_SE.UTF-8, LC_CTYPE=sv_SE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages python-imaging depends on:
ii  libc6  2.7-18GNU C Library: Shared libraries
ii  libfreetype6   2.3.7-2   FreeType 2 font engine, shared lib
ii  libjpeg62  6b-14 The Independent JPEG Group's JPEG 
ii  mime-support   3.44-1MIME files 'mime.types' & 'mailcap
ii  python 2.5.2-3   An interactive high-level object-o
ii  python-central 0.6.8 register and build utility for Pyt
ii  python-imaging-tk  1.1.6-3   Python Imaging Library - ImageTk M
ii  zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime

python-imaging recommends no packages.

Versions of packages python-imaging suggests:
pn  python-imaging-dbg (no description available)
pn  python-imaging-doc (no description available)

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org