Bug#837133: libconfig-model-itself-perl: FTBFS: t/load_write_itself.t failure

[Dominique Dumont]

On Fri, 9 Sep 2016 09:37:54 +0300 Niko Tyni  wrote:
>   Load command error:
>   command: 'upstream_default=#'
>   Syntax error: spurious char at command end: '=#'. Did you forget 
double quotes ?

This is a bug in Config::Model::Loader which is now trapped since 
Config::Model v2.089.

This bug is fixed in Config::Model 2.090 that will be packaged soon.

Thanks for the report

All the best
-- 
 https://github.com/dod38fr/   -o- http://search.cpan.org/~ddumont/
http://ddumont.wordpress.com/  -o-   irc: dod at irc.debian.org

Bug#837463: ruby-autoprefixer-rails: contains embedded code copy of Javascript library Autoprefixer

[Jonas Smedegaard]

Package: ruby-autoprefixer-rails
Version: 6.4.0.3-2
Severity: important

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

control: usertag -1 embed

Great that you you have packaged ruby-babel-source.

Unfortunately, in its current form this package ships Javascript library
Autoprefixer (twice, even).

Instead, a) that library should be packaged separately, tracking its own
upstream source , and c) this
package should symlink that library and depend on that other package.

See Debian Policy § 4.13 for more info.


 - Jonas

-BEGIN PGP SIGNATURE-
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=Gkht
-END PGP SIGNATURE-

Bug#837464: ITP: globjects -- cross-platform C++ wrapper for OpenGL API objects

[Ghislain Antony Vaillant]

Package: wnpp
Severity: wishlist
Owner: Ghislain Antony Vaillant 

* Package name: globjects
  Version : 1.0.0
  Upstream Author : CG Internals
* URL : http://globjects.org/
* License : Expat
  Programming Lang: C++
  Description : cross-platform C++ wrapper for OpenGL API objects

Long-Description:
 globjects provides object-oriented interfaces to the OpenGL API (3.0 and
 higher). The main goals are much reduced code to use OpenGL in your
 rendering software and fewer errors due to the underlying glbinding and
 further abstraction levels on top. Typical processes are automated and
 missing features in the used OpenGL driver are partially simulated or
 even emulated.

This package will be co-maintained by the Debian Science Team alongside
glbinding which it depends on.

Bug#837462: alpine: (regression) no longer sets Subject appropriately when forwarding

[Thorsten Glaser]

Package: alpine
Version: 2.20+dfsg1-2
Severity: normal

Reproduction: type 'f' on an eMail

Is: the newly composed message has an empty Subject

Should: the newly composed message used to have a
pre-set Subject line "Fwd: $original_subject"

-- System Information:
Debian Release: stretch/sid
  APT prefers unreleased
  APT policy: (500, 'unreleased'), (500, 'buildd-unstable'), (500, 'unstable')
Architecture: x32 (x86_64)
Foreign Architectures: i386, amd64

Kernel: Linux 4.6.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=C, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/lksh
Init: sysvinit (via /sbin/init)

Versions of packages alpine depends on:
ii  libc6 2.24-2
ii  libgssapi-krb5-2  1.14.3+dfsg-2
ii  libkrb5-3 1.14.3+dfsg-2
ii  libldap-2.4-2 2.4.42+dfsg-2+b2
ii  libpam0g  1.1.8-3.3
ii  libssl1.0.2   1.0.2h-1
ii  libtinfo5 6.0+20160625-1
ii  mlock 8:2007f~dfsg-4+b1

Versions of packages alpine recommends:
pn  alpine-doc  

Versions of packages alpine suggests:
ii  aspell  0.60.7~20110707-3+b1
ii  postfix [mail-transport-agent]  3.1.0-5+b1

-- no debconf information

Bug#837261: libconfig-model-dpkg-perl: FTBFS: Tests failures

[Dominique Dumont]

On Sat, 10 Sep 2016 09:44:10 +0200 Lucas Nussbaum  wrote:
> Relevant part (hopefully):
> > Test Summary Report
> > ---
> > t/model_tests.t(Wstat: 65280 Tests: 814 Failed: 0)
> >   Non-zero exit status: 255

This means that  t/model_tests.t exited on error.

The logs contains:

# Beginning subtest dpkg pan-copyright-upgrade-update
ok 813 - Copied dpkg example pan-copyright-upgrade-update
ok 814 - Read configuration and created instance with init() method without 
warning check
# updating config with quiet 1 in t/scanner/examples/pan.in
writing back cache file
Dubious, test returned 255 (wstat 65280, 0xff00)
All 814 subtests passed 

The last line here is a bit confusing, it means all tests were fine before the 
program crashed.

This is due to an error in the test which is now trapped by Config::Model 
since v2.089. 

This is fixed in git and will be uploaded quite soon.

Thanks for the report

All the best

-- 
 https://github.com/dod38fr/   -o- http://search.cpan.org/~ddumont/
http://ddumont.wordpress.com/  -o-   irc: dod at irc.debian.org

Bug#828874: hppa still FTBFS - [javac] Base64 cannot be resolved

[Afif Elghraoui]

Control: reopen -1
Control: notfixed -1 8.1.9+dfsg-2~exp1
Control: notfixed -1 8.1.9+dfsg-2
Control: retitle -1 gridengine: FTBFS on hppa

gridengine still FTBFS on hppa. There are a few errors like the following:

 [java] [javac] 81. ERROR in
/<>/gridengine-8.1.9+dfsg/source/libs/juti/java/com/sun/grid/secur
 [java] [javac] ity/login/GECATrustManagerLoginModule.java (at
line 210)
 [java] [javac] byte[] signature = Base64.decode(signatureStr);
 [java] [javac]^^
 [java] [javac] Base64 cannot be resolved


hppa (and hurd) does not have Java 8. It might need a dependency on
libcommons-codec-java to provide Base64 on this architecture.

-- 
Afif Elghraoui | عفيف الغراوي
http://afif.ghraoui.name

Bug#837461: chromium: aw snap

[ceph3us]

Package: chromium
Version: 53.0.2785.92-2
Severity: important

Dear Maintainer,


from 53.0.2785.92-1 i was not been able to open chromium as i get aw snap 
from 92-2  i get aw snap on many sites this is annoing (some sites are opening 
normally and some opening and after a while[i can movefor  a while  on site or 
instantly] i get aw snap)

Received signal 11 SEGV_MAPERR 0040
#0 0x55cf2abbe02e 
#1 0x55cf2abbe3e9 
#2 0x7f62fd336100 
#3 0x55cf2cf31c85 
#4 0x55cf2cfb33bc 
#5 0x55cf2d030b8b 
#6 0x55cf2d031b0e 
#7 0x55cf2d031811 
#8 0x55cf2d031811 
#9 0x55cf2d031bf1 
#10 0x55cf2cfb9c79 
#11 0x55cf2cfbb0be 
#12 0x55cf2cfbb2fc 
#13 0x55cf2cb1b0b5 
#14 0x55cf2cc5bb1d 
#15 0x55cf2bfbba5a 
#16 0x55cf2e2811b3 
#17 0x55cf2ee253d1 
#18 0x55cf2ee2e44a 
#19 0x55cf2ac2ac0d 
#20 0x55cf2f790c2f 
#21 0x55cf2f791234 
#22 0x55cf2ac2ac0d 
#23 0x55cf2abdceee 
#24 0x55cf2abdda5d 
#25 0x55cf2abddd30 
#26 0x55cf2abdf669 
#27 0x55cf2abf646a 
#28 0x55cf2abdbcc5 
#29 0x55cf2e1c3690 
#30 0x55cf2ab8e9b4 
#31 0x55cf2ab8ef2f 
#32 0x55cf2ab8d111 
#33 0x55cf2a72c7aa ChromeMain
#34 0x7f62f41ae2b1 __libc_start_main
#35 0x55cf2a72c66a _start
  r8: 0611  r9: 1562 r10: 0160 r11: 
d99f
 r12: 235f24087b38 r13: 0001 r14:  r15: 
3e7c0ee0c000
  di:   si: 3e7c0eea9590  bp:   bx: 

  dx: 0001  ax: 3e7c0ee17c48  cx: 0137  sp: 
7ffd900677e8
  ip: 55cf2cf31c85 efl: 00010283 cgf: 002b0033 erf: 
0004
 trp: 000e msk:  cr2: 0040
[end of stack trace]



-- System Information:
Debian Release: stretch/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.7.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=pl_PL.UTF-8, LC_CTYPE=pl_PL.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages chromium depends on:
ii  libasound2   1.1.2-1
ii  libatk1.0-0  2.21.90-2
ii  libavcodec57 7:3.1.3-1+b3
ii  libavformat577:3.1.3-1+b3
ii  libavutil55  7:3.1.3-1+b3
ii  libc62.24-2
ii  libcairo21.14.6-1+b1
ii  libcups2 2.1.4-4
ii  libdbus-1-3  1.10.10-1
ii  libexpat12.2.0-1
ii  libfontconfig1   2.11.0-6.7
ii  libfreetype6 2.6.3-3+b1
ii  libgcc1  1:6.2.0-3
ii  libgdk-pixbuf2.0-0   2.35.4-4
ii  libglib2.0-0 2.49.6-1
ii  libgnome-keyring03.12.0-1+b1
ii  libgtk-3-0   3.21.5-3
ii  libharfbuzz0b1.2.7-1+b1
ii  libjpeg62-turbo  1:1.5.0-1
ii  libnettle6   3.2-1
ii  libnspr4 2:4.12-6
ii  libnss3  2:3.26-1
ii  libpango-1.0-0   1.40.2-1
ii  libpangocairo-1.0-0  1.40.2-1
ii  libpci3  1:3.3.1-1.1
ii  libpulse09.0-3
ii  libspeechd2  0.8.5-1
ii  libstdc++6   6.2.0-3
ii  libx11-6 2:1.6.3-1
ii  libxcomposite1   1:0.4.4-1
ii  libxcursor1  1:1.1.14-1+b1
ii  libxdamage1  1:1.1.4-2+b1
ii  libxext6 2:1.3.3-1
ii  libxfixes3   1:5.0.2-1
ii  libxi6   2:1.7.6-1
ii  libxml2  2.9.4+dfsg1-1+b1
ii  libxrandr2   2:1.5.0-1
ii  libxrender1  1:0.9.9-2
ii  libxslt1.1   1.1.29-1
ii  libxss1  1:1.2.2-1
ii  libxtst6 2:1.2.2-1+b1
ii  x11-utils7.7+3
ii  xdg-utils1.1.1-1

Versions of packages chromium recommends:
ii  fonts-liberation  1:1.07.4-2

Versions of packages chromium suggests:
pn  chromium-l10n  

-- no debconf information

Bug#836940: [buildd-tools-devel] Bug#836940: cowbuilder, sbuild: should behave identically in regard to default gnupg installation

[Julien Cristau]

On Thu, Sep  8, 2016 at 13:35:51 +0200, Lucas Nussbaum wrote:

> 1) packages failing to build when gnupg is not installed in the chroot.
> gnupg is priority: important, and is not installed by debootstrap
> --variant=buildd.
> 
> 2) packages failing to build when tzdata is not installed in the chroot.
> tzdata is priority: required, and it is installed by debootstrap
> --variant=buildd. But since it is not essential, not build-essential,
> and not a dependency of essential or build-essential packages, it can
> safely be removed (e.g. with debfoster -o MaxPriority=required).  I
> count about 150 packages failing in that case.
> 
> Both classes of bugs are valid bugs. However, I'm wondering if it's OK
> to consider both classes as release critical.
> 
I think they should both be serious, and tzdata's priority should be
fixed up by ftpmaster.

Cheers,
Julien

Bug#827397: RFS: vlc/2.0.3-5+deb7u3

[Mateusz Łukasik]

On 10.09.2016 14:57 +0200, Mattia Rizzolo wrote:

Dear LTS team, Mateusz:



Hi Mattia!


On Thu, Jun 16, 2016 at 09:12:47AM +0200, Adam Borowski wrote:

On Thu, Jun 16, 2016 at 06:53:49AM +, Gianfranco Costamagna wrote:

Hi Adam,
(answering in general, not in this particular situation)



I've reviewed the upload, but I'm not sure if you coordinated it
with the LTS team.  I find a contradition:
 https://lists.debian.org/debian-lts/2016/06/msg00031.html
says vlc is no longer supported in wheezy, yet in
 https://lists.debian.org/debian-lts/2016/06/msg00035.html
the quoted mail sounds as if the upload is expected.

Should I proceed?


I guess not

In general, for security pocket, you need to do:
- check/test the patch
- wait for an ack from security team
- upload (binary-upload, not sure if source only is allowed, but I think not 
IIRC)  on security-master
e.g.


The docs on the LTS wiki suggest it is, but I asked to confirm.


I think you also need to do the build with -sa, as you need to upload
the full sources to security-master.


I pushed it to the mentors.




BTW according to security tracker wheezy is EOL for that cve, no DSA is 
released, so I guess you won't
have the ack
https://security-tracker.debian.org/tracker/CVE-2016-5108


The discussion continued after the EOL was mentioned, and Mateusz was
obviously aware of it, thus I assume the RFS he filed was acked in parts of
the discussion that are missing from list archives.

In any case, the patch is simple and works for me.


(well, since there is a patch and an upload ready they might give an exception, 
but I think
asking before is the right way to deal with this bug)


Right... which is exactly what I'm doing right now :)
Wheezy has been handed off from security to the LTS team.


We haven't heard anything on this RFS for nearly 3 months.
Can you see if there is anythin that you'd like.  For example, I don't
see a DLA enrty in dla-needed for VLC (nor I'd expect one considering
VLC is not declared as support iirc).
Anyway I suppose that a one-shot update can't really harm anybody.



--
 .''`.  Mateusz Łukasik
: :' :  http://mati75.eu
`. `'   Debian Member - mat...@linuxmint.pl
  `-GPG: D93B 0C12 C8D0 4D7A AFBC  FA27 CCD9 1D61 11A0 6851

Bug#836910: jessie-pu: package kamailio/4.2.0-2+deb8u1

[Julien Cristau]

On Wed, Sep  7, 2016 at 11:48:46 +0200, Victor Seva wrote:

> diff -Nru kamailio-4.2.0/debian/patches/fix_tls.patch 
> kamailio-4.2.0/debian/patches/fix_tls.patch
> --- kamailio-4.2.0/debian/patches/fix_tls.patch   1970-01-01 
> 01:00:00.0 +0100
> +++ kamailio-4.2.0/debian/patches/fix_tls.patch   2016-09-07 
> 10:00:32.0 +0200
> @@ -0,0 +1,34 @@
> +From 0a5f99b28d01d79cf2675df6d2a6220167e2476e Mon Sep 17 00:00:00 2001
> +From: Daniel-Constantin Mierla 
> +Date: Tue, 7 Jun 2016 15:21:06 +0200
> +Subject: [PATCH] tls: proper check of libssl versions used for compilation 
> and
> + available on system
> +
> +- shift out the last 12bits, being the patch version and status (see man
> +  SSLeay)
> +- reported by Victor Seva, GH #662
> +
> +(cherry picked from commit c38b4c7345a6806f48a0cdb07841e10bc962e1bf)
> +(cherry picked from commit 253909bf673c0a59e7adf578bb5df73eb157d0f2)
> +(cherry picked from commit 5632abc108bf8ed8157a77806ea80b962db3fa4f)
> +---
> + modules/tls/tls_init.c | 6 --
> + 1 file changed, 4 insertions(+), 2 deletions(-)
> +
> +diff --git a/modules/tls/tls_init.c b/modules/tls/tls_init.c
> +index a381be1..7bfc10f 100644
> +--- a/modules/tls/tls_init.c
>  b/modules/tls/tls_init.c
> +@@ -543,8 +543,10 @@ int init_tls_h(void)
> + #endif
> + ssl_version=SSLeay();
> + /* check if version have the same major minor and fix level
> +- * (e.g. 0.9.8a & 0.9.8c are ok, but 0.9.8 and 0.9.9x are not) */
> +-if ((ssl_version>>8)!=(OPENSSL_VERSION_NUMBER>>8)){
> ++ * (e.g. 0.9.8a & 0.9.8c are ok, but 0.9.8 and 0.9.9x are not)
> ++ * - values is represented as 0xMMNNFFPPS: major minor fix patch status
> ++ *   0x00090705f == 0.9.7e release */
> ++if ((ssl_version>>12)!=(OPENSSL_VERSION_NUMBER>>12)){
> + LOG(L_CRIT, "ERROR: tls: init_tls_h: installed openssl library "
> + "version is too different from the library the 
> ser tls module "
> + "was compiled with: installed \"%s\" (0x%08lx), 
> compiled "

TBH, this seems just as wrong; libssl has a SONAME for a reason, no need
to reinvent broken checks in each user.

Cheers,
Julien

Bug#837460: O: gtick -- Metronome application

[Roland Stigge]

Package: wnpp
Severity: normal

I'm orphaning the gtick package.

The package description is:
 GTick is an acoustical and graphical metronome application (usually used to
 support musicians at practising an instrument). It features a scale from 30 to
 250 beats per minute and 2/4, 3/4, 4/4 and other meters. You need a sound
 device for using it.

At some point I also adopted it upstream. Please ask if you need any assistance
working on this also.

Bug#836592: jessie-pu: package gdcm/2.4.4-3

[Julien Cristau]

On Fri, Sep  9, 2016 at 17:33:08 +0100, Adam D. Barratt wrote:

> On Fri, 2016-09-09 at 17:08 +0200, Gert Wollny wrote:
> > > As far as I can tell, the problem isn't the documentation, it's:
> > >
> > > make[3]: *** No rule to make target
> > > '/usr/lib/jvm/default-java/jre/lib/ppc64/libjawt.so', needed by
> > > 'bin/libvtkgdcmJava.so'.  Stop.
> > >
> > >
> > Agreed, I didn't see this because I was scanning for "error:".
> > 
> > The compilation failure is still unrelated to the patches though, 
> > because the patches only touch the C++ code, the compilation error is a 
> > result of some problem on the part that cmake does.
> > 
> > At the beginning of the build log one can even see that the library is 
> > correctly detected in the JRE ppc64el sub-directory, but later it wants 
> > ppc64 only and I can't find the according code in the gdcm VTK java 
> > module definition.
> 
> I was wondering if this might be a similar issue to javatool's #833572
> (now fixed in p-u), but I don't know either gdcm or Java packaging in
> general well enough to immediately point to a solution I'm afraid.
> 
After apt-get build-dep gdcm:

(jessie_ppc64el-dchroot)jcristau@plummer:~$ rgrep ppc64/libjawt /usr/lib/
/usr/lib/vtk-5.8/VTKTargets-release.cmake:  
IMPORTED_LINK_INTERFACE_LIBRARIES_RELEASE 
"vtkGraphics;vtkFilteringJava;/usr/lib/jvm/default-java/jre/lib/ppc64/libjawt.so"
/usr/lib/vtk-5.8/VTKTargets-release.cmake:  
IMPORTED_LINK_INTERFACE_LIBRARIES_RELEASE 
"vtkRendering;vtkGraphicsJava;vtkImagingJava;/usr/lib/jvm/default-java/jre/lib/ppc64/libjawt.so"
/usr/lib/vtk-5.8/VTKTargets-release.cmake:  
IMPORTED_LINK_INTERFACE_LIBRARIES_RELEASE 
"vtkCharts;vtkViewsJava;/usr/lib/jvm/default-java/jre/lib/ppc64/libjawt.so"
/usr/lib/vtk-5.8/VTKConfig-Java.cmake:SET(VTK_JAVA_AWT_LIBRARY 
"/usr/lib/jvm/default-java/jre/lib/ppc64/libjawt.so")

cmake brain damage strikes again.

Cheers,
Julien

Bug#836795: jessie-pu: package samba/2:4.1.17+dfsg-2+deb8u2

[Julien Cristau]

On Sat, Sep 10, 2016 at 12:34:51 +0100, Adam D. Barratt wrote:

> On Sat, 2016-09-10 at 13:15 +0200, Salvatore Bonaccorso wrote:
> > Thanks for CC'ing. It's right we haven't marked it as no-dsa (yet).
> > But it's true we asked (originally Andrew Barlett), to have samba
> > updated via a point release to adresss remaining (minor) regressions
> > introduced by the original fixes. Samba upstream has released several
> > updates in meanwhile and the idea was to have the packages exposed to
> > more wider testing via the jessie-proposed-updates before beeing
> > included in stable.
> 
> Okay, thanks. That makes sense, although a package uploaded now will
> either not get much (if any) testing or have to wait for 8.7.
> 
Even if we wait for 8.7, it's not like p-u gets a lot of user attention.

Cheers,
Julien

Bug#837459: liferea: When the main window resized (bigger) Liferea doesn't save pane configuration

[John Kirk]

Package: liferea
Version: 1.10.12-1
Severity: important

Hello,

When the main window resized (bigger) Liferea doesn't save pane configuration
on startup.

Let's my new height of the itemlist pane be 150. In dconf-editor it is org->
gnome->liferea-> last-hpane-pos (150).

Log out -> log in. Lifera always starts in tray not dependent on settings and
the height of the itemlist is one line.

Looks like it is this case: https://github.com/lwindolf/liferea/issues/158

Best wishes,
John




-- System Information:
Debian Release: 8.5
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.6.0-0.bpo.1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages liferea depends on:
ii  dbus-x11 1.8.20-0+deb8u1
ii  dconf-gsettings-backend [gsettings-backend]  0.22.0-1
ii  gir1.2-gtk-3.0   3.14.5-1+deb8u1
ii  gir1.2-peas-1.0  1.12.1-2
ii  libatk1.0-0  2.14.0-1
ii  libc62.19-18+deb8u4
ii  libcairo21.14.0-2.1+deb8u1
ii  libgdk-pixbuf2.0-0   2.31.1-2+deb8u5
ii  libgirepository-1.0-11.42.0-2.2
ii  libglib2.0-0 2.42.1-1+b1
ii  libgtk-3-0   3.14.5-1+deb8u1
ii  libindicate5 0.6.92-2
ii  libjson-glib-1.0-0   1.0.2-1
ii  libnotify4   0.7.6-2
ii  libpango-1.0-0   1.36.8-3
ii  libpeas-1.0-01.12.1-2
ii  libsoup2.4-1 2.48.0-1
ii  libsqlite3-0 3.8.7.1-1+deb8u1
ii  libwebkitgtk-3.0-0   2.4.9-1~deb8u1
ii  libxml2  2.9.1+dfsg1-5+deb8u2
ii  libxslt1.1   1.1.28-2+deb8u1
ii  liferea-data 1.10.12-1
ii  python-gi3.14.0-1
pn  python:any   

Versions of packages liferea recommends:
ii  gir1.2-gnomekeyring-1.0  3.12.0-1+b1
ii  gnome-icon-theme 3.12.0-1
ii  gnome-keyring3.14.0-1+b1
ii  steadyflow   0.2.0-1.1

Versions of packages liferea suggests:
ii  network-manager  0.9.10.0-7

-- no debconf information

Bug#837458: jessie-pu: package mactelnet/0.4.0-1

[haakon . nessjoen]

Package: release.debian.org
Severity: normal
Tags: jessie
User: release.debian@packages.debian.org
Usertags: pu

Request for uploading to stable, as there is posted a CVE for a bug in 
mactelnet-client.
This update is a backport of the fix that is done upstream, that fixes only the 
mentioned bug.

Mor information here: https://security-tracker.debian.org/tracker/CVE-2016-7115
and here: https://bugs.debian.org/836320

-- System Information:
Debian Release: stretch/sid
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.4.0-21-generic (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=UTF-8 (charmap=UTF-8) (ignored: LC_ALL set 
to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru mactelnet-0.4.0/debian/changelog mactelnet-0.4.0/debian/changelog
--- mactelnet-0.4.0/debian/changelog	2016-09-10 23:43:04.0 +0200
+++ mactelnet-0.4.0/debian/changelog	2016-09-10 23:46:41.0 +0200
@@ -1,3 +1,9 @@
+mactelnet (0.4.0-2) stable; urgency=low
+
+  * Backported bugfix of CVE 2016-7115 (closes: 836320)
+
+ -- Håkon Nessjøen   Sun, 10 Sep 2016 23:11:32 +0200
+
 mactelnet (0.4.0-1) unstable; urgency=low
 
   * Upstream release 0.4.0
diff -Nru mactelnet-0.4.0/debian/patches/CVE-2016-7115.patch mactelnet-0.4.0/debian/patches/CVE-2016-7115.patch
--- mactelnet-0.4.0/debian/patches/CVE-2016-7115.patch	1970-01-01 01:00:00.0 +0100
+++ mactelnet-0.4.0/debian/patches/CVE-2016-7115.patch	2016-09-10 23:49:20.0 +0200
@@ -0,0 +1,51 @@
+--- a/mactelnet.c
 b/mactelnet.c
+@@ -75,7 +75,7 @@
+ 
+ static int keepalive_counter = 0;
+ 
+-static unsigned char encryptionkey[128];
++static unsigned char pass_salt[16];
+ static char username[255];
+ static char password[255];
+ static char nonpriv_username[255];
+@@ -191,18 +191,21 @@
+ 	char *terminal = getenv("TERM");
+ 	char md5data[100];
+ 	unsigned char md5sum[17];
+-	int plen;
++	int plen, act_pass_len;
+ 	md5_state_t state;
+ 
+-	/* Concat string of 0 + password + encryptionkey */
++	/* calculate the actual password's length */
++	act_pass_len = strnlen(password, 82);
++
++	/* Concat string of 0 + password + pass_salt */
+ 	md5data[0] = 0;
+-	strncpy(md5data + 1, password, 82);
+-	md5data[83] = '\0';
+-	memcpy(md5data + 1 + strlen(password), encryptionkey, 16);
++	memcpy(md5data + 1, password, act_pass_len);
++	/* in case that password is long, calculate only using the used-up parts */
++	memcpy(md5data + 1 + act_pass_len, pass_salt, 16);
+ 
+ 	/* Generate md5 sum of md5data with a leading 0 */
+ 	md5_init();
+-	md5_append(, (const md5_byte_t *)md5data, strlen(password) + 17);
++	md5_append(, (const md5_byte_t *)md5data, 1 + act_pass_len + 16);
+ 	md5_finish(, (md5_byte_t *)md5sum + 1);
+ 	md5sum[0] = 0;
+ 
+@@ -279,9 +282,9 @@
+ 
+ 		while (success) {
+ 
+-			/* If we receive encryptionkey, transmit auth data back */
++			/* If we receive pass_salt, transmit auth data back */
+ 			if (cpkt.cptype == MT_CPTYPE_ENCRYPTIONKEY) {
+-memcpy(encryptionkey, cpkt.data, cpkt.length);
++memcpy(pass_salt, cpkt.data, 16);
+ send_auth(username, password);
+ 			}
+ 
diff -Nru mactelnet-0.4.0/debian/patches/series mactelnet-0.4.0/debian/patches/series
--- mactelnet-0.4.0/debian/patches/series	1970-01-01 01:00:00.0 +0100
+++ mactelnet-0.4.0/debian/patches/series	2016-09-10 23:49:03.0 +0200
@@ -0,0 +1 @@
+CVE-2016-7115.patch

Bug#837457: bash-completion: gzip completion broken if no space before >

[Samuel Thibault]

Package: bash-completion
Version: 1:2.1-4.3
Severity: normal

Hello,

mkdir /tmp/foo
cd /tmp/foo
touch foo.gz
touch a

now, if I type:

gzip < a > foo

and press tab, "foo" gets completed into foo.gz . However, if I type:

gzip < a> foo

i.e. no space before '>', and press tab, "foo" doesn't get
completed. Worse, if a foobar directory exists (mkdir foobar), then tab
does complete into foobar, ignoring the foo.gz file. this is very
inconvenient since it is completely fine not to type a space before '>'.

Samuel

-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable-debug'), (500, 
'buildd-unstable'), (500, 'unstable'), (500, 'stable'), (500, 'oldstable'), (1, 
'experimental-debug'), (1, 'buildd-experimental'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.7.0 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages bash-completion depends on:
ii  bash  4.4~rc2-1
ii  dpkg  1.18.10

bash-completion recommends no packages.

bash-completion suggests no packages.

-- no debconf information

-- 
Samuel
 CN > J'ai enseigné l'algorythmique.
 GLG> C'est quoi l'algorythmique ? Une contrebasse programmée en Algol ?
 -+- in : Guide du Neuneu d'Usenet - Neuneu fait ses gammes. -+-

Bug#837456: frama-c: FTBFS with bindnow and PIE enabled

[Balint Reczey]

Source: frama-c
Version: 20151002+magnesium+dfsg-1
Severity: important
User: bal...@balintreczey.hu
Usertags: pie-bindnow-20160906
Justification: FTBFS on amd64 with extra hardening

Hi,

During a rebuild of all packages in sid, your package failed to build on
amd64 with patched GCC and dpkg.

The rebuild tested if packages are ready for a transition
enabling PIE and bindnow for amd64.

For more information about the changes to sid's dpkg and GCC please
visit:
 https://wiki.debian.org/Hardening/PIEByDefaultTransition

Relevant part (hopefully):
...
configure: switching to OcamlGraph provided by Frama-C
checking for ocamlgraph... no
checking for ocamlgraph.tar.gz... no
configure: error: cannot find OcamlGraph in the current directory.
   Quite strange: would your Frama-C distribution be corrupted?
   Anyway:
   1. download the latest version from http://ocamlgraph.lri.fr/download
   2. install it by './configure && make && make install'
   3. rerun ./configure here
debian/rules:13: recipe for target 'override_dh_auto_configure' failed
make[1]: *** [override_dh_auto_configure] Error 1
make[1]: Leaving directory '/<>/frama-c-20151002+magnesium+dfsg'
debian/rules:71: recipe for target 'build' failed
...

The full build log is available from:
 
https://people.debian.org/~rbalint/build-logs/pie-bindnow-20160906/frama-c_20151002+magnesium+dfsg-1_amd64.build.gz

Thanks,
Balint

Bug#837455: tt-rss on jessie-backports

[Sergio Durigan Junior]

Package: tt-rss
Version: 16.8+git20160826+dfsg-3
Severity: wishlist

Hi,

It would be awesome to have tt-rss available on jessie-backports.  I
don't know if it depends on packages that are also not readily available
on jessie, but if that is the case I could certainly help you with the
task.

Thanks,

-- 
Sergio
GPG key ID: 237A 54B1 0287 28BF 00EF  31F4 D0EB 7628 65FC 5E36
Please send encrypted e-mail if possible
http://sergiodj.net/


signature.asc
Description: PGP signature

Bug#837454: flint-arb: FTBFS with bindnow and PIE enabled

[Balint Reczey]

Source: flint-arb
Version: 2.8.1-2
Severity: important
User: bal...@balintreczey.hu
Usertags: pie-bindnow-20160906
Justification: FTBFS on amd64 with extra hardening

Hi,

During a rebuild of all packages in sid, your package failed to build on
amd64 with patched GCC and dpkg.

The rebuild tested if packages are ready for a transition
enabling PIE and bindnow for amd64.

For more information about the changes to sid's dpkg and GCC please
visit:
 https://wiki.debian.org/Hardening/PIEByDefaultTransition

Relevant part (hopefully):
...
gcc -Wl,-z,relro -Wl,-z,now -Wdate-time -D_FORTIFY_SOURCE=2 -g -O2
-fdebug-prefix-map=/<>
=. -fstack-protector-strong -Wformat -Werror=format-security -Wl,-r
../build/fmpr/add_naive.lo ../buil
d/fmpr/get_si.lo ../build/fmpr/get_fmpz_2exp.lo ../build/fmpr/get_d.lo
../build/fmpr/set_mpfr.lo ../bu
ild/fmpr/cmp_2exp_si.lo ../build/fmpr/addmul.lo ../build/fmpr/add_eps.lo
../build/fmpr/set_d.lo ../bui
ld/fmpr/set_fmpz_2exp.lo ../build/fmpr/cmpabs_2exp_si.lo
../build/fmpr/divappr_abs_ubound.lo ../build/
fmpr/log.lo ../build/fmpr/add_fmpz.lo ../build/fmpr/mul_naive.lo
../build/fmpr/ulp.lo ../build/fmpr/ex
p.lo ../build/fmpr/check_ulp.lo ../build/fmpr/sum.lo
../build/fmpr/root.lo ../build/fmpr/cmp.lo ../bui
ld/fmpr/set_round.lo ../build/fmpr/set_round_uiui_2exp_fmpz.lo
../build/fmpr/mul.lo ../build/fmpr/get_
fmpz_fixed.lo ../build/fmpr/cmpabs.lo ../build/fmpr/printd.lo
../build/fmpr/get_fmpq.lo ../build/fmpr/
get_fmpz.lo ../build/fmpr/randtest.lo ../build/fmpr/rsqrt.lo
../build/fmpr/set_round_mpn.lo ../build/fmpr/pow_sloppy.lo
../build/fmpr/submul.lo ../build/fmpr/add.lo ../build/fmpr/mul_1x1.lo
../build/fmpr/mul_fmpz.lo ../build/fmpr/sqrt.lo ../build/fmpr/add_si.lo
../build/fmpr/cmpabs_ui.lo ../build/fmpr/div.lo
../build/fmpr/normalise.lo ../build/fmpr/set_fmpq.lo
../build/fmpr/abs_bound_lt_2exp_si.lo ../build/fmpr/print.lo
../build/fmpr/get_mpfr.lo ../build/fmpr/sub.lo ../build/fmpr/add_ui.lo
../build/fmpr/mul_mpn.lo ../build/fmpr/add_mpn.lo
../build/fmpr/set_round_ui_2exp_fmpz.lo -o ../build/fmpr/../fmpr.lo
-nostdlib
/usr/bin/ld: -r and -pie may not be used together
collect2: error: ld returned 1 exit status
...

The full build log is available from:
 
https://people.debian.org/~rbalint/build-logs/pie-bindnow-20160906/flint-arb_2.8.1-2_amd64.build.gz

The patch used in Ubuntu fixes the issue:
https://patches.ubuntu.com/f/flint-arb/flint-arb_2.8.1-2ubuntu1.patch

Thanks,
Balint

Bug#837453: flint: FTBFS with bindnow and PIE enabled

[Balint Reczey]

Source: flint
Version: 2.5.2-8
Severity: important
User: bal...@balintreczey.hu
Usertags: pie-bindnow-20160906
Justification: FTBFS on amd64 with extra hardening
Tags: patch

Hi,

During a rebuild of all packages in sid, your package failed to build on
amd64 with patched GCC and dpkg.

The rebuild tested if packages are ready for a transition
enabling PIE and bindnow for amd64.

For more information about the changes to sid's dpkg and GCC please
visit:
 https://wiki.debian.org/Hardening/PIEByDefaultTransition

Relevant part (hopefully):
...
gcc -fPIC -Wdate-time -D_FORTIFY_SOURCE=2 -g -O2
-fdebug-prefix-map=/<>=. -fstack-protect
or-strong -Wformat -Werror=format-security -I/<> -c
factor_trial_partial.c -o ../build/ul
ong_extras/factor_trial_partial.lo -MMD -MP -MF
"../build/ulong_extras/factor_trial_partial.d" -MT "..
/build/ulong_extras/factor_trial_partial.d" -MT
"../build/ulong_extras/factor_trial_partial.lo"
gcc -Wl,-z,relro -Wl,-z,now -Wl,-r ../build/ulong_extras/sizeinbase.lo
../build/ulong_extras/mulmod_pr
ecomp.lo ../build/ulong_extras/is_square.lo
../build/ulong_extras/euler_phi.lo ../build/ulong_extras/d
ivrem2_precomp.lo ../build/ulong_extras/mulmod2_preinv.lo
../build/ulong_extras/factor_SQUFOF.lo ../bu
ild/ulong_extras/powmod2_preinv.lo
../build/ulong_extras/primitive_root_prime.lo ../build/ulong_extras
/randlimb.lo ../build/ulong_extras/discrete_log_bsgs.lo
../build/ulong_extras/lll_mod_preinv.lo ../bui
ld/ulong_extras/factor_partial.lo ../build/ulong_extras/mod2_precomp.lo
../build/ulong_extras/flog.lo
../build/ulong_extras/factor_pp1.lo
../build/ulong_extras/factorial_mod2_preinv.lo ../build/ulong_extr
as/root.lo ../build/ulong_extras/mulmod_preinv.lo
../build/ulong_extras/gcdinv.lo ../build/ulong_extra
s/prime_inverses_arr_readonly.lo
../build/ulong_extras/is_probabprime_BPSW.lo ../build/ulong_extras/po
wmod_preinv.lo ../build/ulong_extras/inlines.lo
../build/ulong_extras/cleanup_primes.lo ../build/ulong
_extras/jacobi.lo ../build/ulong_extras/powmod_precomp.lo
../build/ulong_extras/is_prime_pseudosquare.
lo ../build/ulong_extras/primes_extend_small.lo
../build/ulong_extras/primes_sieve_range.lo ../build/u
long_extras/mod2_preinv.lo ../build/ulong_extras/is_perfect_power235.lo
../build/ulong_extras/moebius_
mu.lo ../build/ulong_extras/sqrtrem.lo ../build/ulong_extras/revbin.lo
../build/ulong_extras/mod_preco
mp.lo ../build/ulong_extras/cbrt_estimate.lo
../build/ulong_extras/gcd.lo ../build/ulong_extras/factor
.lo ../build/ulong_extras/factor_trial.lo
../build/ulong_extras/is_strong_probabprime2_preinv.lo ../bu
ild/ulong_extras/ll_mod_preinv.lo ../build/ulong_extras/primes_clear.lo
../build/ulong_extras/rootrem.
lo ../build/ulong_extras/factor_power235.lo
../build/ulong_extras/sqrt.lo ../build/ulong_extras/remove
2_precomp.lo ../build/ulong_extras/sqrtmodn.lo
../build/ulong_extras/cbrt_binary_search.lo ../build/ul
ong_extras/is_prime.lo ../build/ulong_extras/factor_insert.lo
../build/ulong_extras/clog.lo ../build/u
long_extras/nth_prime_bounds.lo ../build/ulong_extras/factor_one_line.lo
../build/ulong_extras/prime_p
i.lo ../build/ulong_extras/sqrtmod_primepow.lo
../build/ulong_extras/cbrtrem.lo ../build/ulong_extras/
sqrtmod.lo ../build/ulong_extras/factorial_fast_mod2_preinv.lo
../build/ulong_extras/cbrt.lo ../build/
ulong_extras/invmod.lo ../build/ulong_extras/cbrt_newton_iteration.lo
../build/ulong_extras/is_oddprim
e_binary.lo ../build/ulong_extras/is_probabprime.lo
../build/ulong_extras/is_squarefree.lo ../build/ul
ong_extras/is_probabprime_fermat.lo ../build/ulong_extras/randtest.lo
../build/ulong_extras/primes_arr
_readonly.lo ../build/ulong_extras/primes_jump_after.lo
../build/ulong_extras/pow.lo ../build/ulong_ex
tras/randint.lo ../build/ulong_extras/is_probabprime_lucas.lo
../build/ulong_extras/root_estimate.lo .
./build/ulong_extras/nth_prime.lo
../build/ulong_extras/prime_pi_bounds.lo ../build/ulong_extras/facto
r_lehman.lo ../build/ulong_extras/is_strong_probabprime_precomp.lo
../build/ulong_extras/primes_init.l
o ../build/ulong_extras/cbrt_chebyshev_approximation.lo
../build/ulong_extras/nextprime.lo ../build/ul
ong_extras/is_prime_pocklington.lo
../build/ulong_extras/factor_trial_range.lo
../build/ulong_extras/compute_primes.lo ../build/ulong_extras/xgcd.lo
../build/ulong_extras/is_oddprime_small.lo
../build/ulong_extras/is_probabprime_fibonacci.lo
../build/ulong_extras/remove.lo ../build/ulong_extras/randbits.lo
../build/ulong_extras/randprime.lo
../build/ulong_extras/factor_trial_partial.lo -o
../build/ulong_extras/../ulong_extras.lo -nostdlib
/usr/bin/ld: -r and -pie may not be used together
collect2: error: ld returned 1 exit status

...

The full build log is available from:
 
https://people.debian.org/~rbalint/build-logs/pie-bindnow-20160906/flint_2.5.2-8_amd64.build.gz

The patch used in Ubuntu fixes the issue:
https://patches.ubuntu.com/f/flint/flint_2.5.2-9ubuntu1.patch

Thanks,
Balint

Bug#837452: simgear: Please build libSimGearCore.a and libSimGearScene.a with -fPIC

[Balint Reczey]

Source: simgear
Version: 1:2016.2.1+dfsg-6
Severity: important
User: bal...@balintreczey.hu
Usertags: pie-bindnow-20160906
Justification: makes several packages FTBFS with extra hardening
Affects:fgrun flightgear

Dear Maintainers,

During a rebuild of all packages in sid, several packages
failed to build on amd64 with patched GCC and dpkg. The root
cause seems to be that libSimGearCore.a is shipped as a non-PIC library.

The rebuild tested if packages are ready for a transition
enabling PIE and bindnow for amd64.

For more information about the changes to sid's dpkg and GCC please
visit:
 https://wiki.debian.org/Hardening/PIEByDefaultTransitio

Relevant part of fgrun's build log:
...
/usr/bin/c++   -g -O2 -fdebug-prefix-map=/<>=.
-fstack-protector-strong -Wformat -Werror=
format-security -Wdate-time -D_FORTIFY_SOURCE=2   -D_REENTRANT
-DENABLE_NLS -g -DNDEBUG   -Wl,-z,relro
 -Wl,-z,now  CMakeFiles/fgrun.dir/wizard_funcs.cxx.o
CMakeFiles/fgrun.dir/advanced_funcs.cxx.o CMakeFi
les/fgrun.dir/AirportBrowser.cxx.o
CMakeFiles/fgrun.dir/AirportTable.cxx.o CMakeFiles/fgrun.dir/Fl_Tab
le.cxx.o CMakeFiles/fgrun.dir/Fl_Table_Row.cxx.o
CMakeFiles/fgrun.dir/Fl_OSG.cxx.o CMakeFiles/fgrun.di
r/Fl_Heading_Dial.cxx.o CMakeFiles/fgrun.dir/main.cxx.o
CMakeFiles/fgrun.dir/io.cxx.o CMakeFiles/fgrun
.dir/fgfsrc.cxx.o CMakeFiles/fgrun.dir/logwin.cxx.o
CMakeFiles/fgrun.dir/parkingloader.cxx.o CMakeFile
s/fgrun.dir/settings.cxx.o CMakeFiles/fgrun.dir/util.cxx.o
CMakeFiles/fgrun.dir/run_posix.cxx.o CMakeF
iles/fgrun.dir/fgrun_pty.cxx.o  -o fgrun -rdynamic libWizard.a
libAdvanced.a -Wl,-Bstatic -lSimGearSce
ne -lSimGearCore -lSimGearCore -Wl,-Bdynamic -losgText -losgDB
-losgParticle -losgUtil -losgViewer -lo
sgGA -losg -lOpenThreads /usr/lib/x86_64-linux-gnu/libfltk_forms.so
/usr/lib/x86_64-linux-gnu/libfltk_
gl.so /usr/lib/x86_64-linux-gnu/libfltk_images.so
/usr/lib/x86_64-linux-gnu/libfltk.so -ldl -ldl -lz -
lutil -lGLU -lGL -ldl -lpthread -lexpat -lz -lutil -lGLU -lGL -lpthread
-lexpat
/usr/bin/ld:
/usr/lib/gcc/x86_64-linux-gnu/6/../../../x86_64-linux-gnu/libSimGearScene.a(ModelRegistry
.cxx.o): relocation R_X86_64_32 against `.rodata' can not be used when
making a shared object; recompi
le with -fPIC
...

The full build log is available from:
https://people.debian.org/~rbalint/build-logs/pie-bindnow-20160906/fgrun_3.4.0.final-3_amd64.build.gz

Thanks,
Balint

Bug#828457: nodejs: FTBFS with openssl 1.1.0

[Jérémy Lal]

2016-09-11 14:25 GMT+02:00 Kurt Roeckx :

> tags 828457 + patch
>
> A patch for it is available at:
> https://github.com/nodejs/node/pull/8491
>
>
Wonderful, and thank you.
I'll upload nodejs 6.x in experimental with your patch applied.

Jérémy.

Bug#836821: Patch to enable python 3

[Thomas Viehmann]

tag 836821 + patch
thank you

Hello,

thank you for maintaining protobuf in Debian.
As a token of appreciation, please find attached a patch to add support 
for Python 3.


Best regards

Thomas


diff -Nru protobuf-3.0.0/debian/changelog protobuf-3.0.0/debian/changelog
--- protobuf-3.0.0/debian/changelog	2016-09-02 08:57:13.0 +0200
+++ protobuf-3.0.0/debian/changelog	2016-09-11 18:08:39.0 +0200
@@ -1,3 +1,9 @@
+protobuf (3.0.0-7.1) UNRELEASED; urgency=medium
+
+  * Patch to enable python 3. Closes: #836821
+
+ -- Thomas Viehmann   Sat, 10 Sep 2016 00:00:00 +
+
 protobuf (3.0.0-7) unstable; urgency=medium
 
   * Team upload.
diff -Nru protobuf-3.0.0/debian/control protobuf-3.0.0/debian/control
--- protobuf-3.0.0/debian/control	2016-08-26 00:28:51.0 +0200
+++ protobuf-3.0.0/debian/control	2016-09-11 15:38:55.0 +0200
@@ -20,7 +20,10 @@
  , dh-python
  , python-all (>= 2.7)
  , libpython-all-dev (>= 2.7)
+ , python3-all (>= 3.3)
+ , libpython3-all-dev (>= 3.3)
  , python-setuptools
+ , python3-setuptools
  , python-google-apputils
 # Manpage generator
  , xmlto
@@ -180,6 +183,27 @@
  need the protoc tool (in the protobuf-compiler package) to compile your
  definition to Python classes, and then the modules in this package will allow
  you to use those classes in your programs.
+
+Package: python3-protobuf
+Architecture: any
+Section: python
+Depends: ${shlibs:Depends}, ${python3:Depends}, ${misc:Depends}
+Description: Python 3 bindings for protocol buffers
+ Protocol buffers are a flexible, efficient, automated mechanism for
+ serializing structured data - similar to XML, but smaller, faster, and
+ simpler. You define how you want your data to be structured once, then you can
+ use special generated source code to easily write and read your structured
+ data to and from a variety of data streams and using a variety of languages.
+ You can even update your data structure without breaking deployed programs
+ that are compiled against the "old" format.
+ .
+ Google uses Protocol Buffers for almost all of its internal RPC protocols and
+ file formats.
+ .
+ This package contains the Python 3 bindings for the protocol buffers. You will
+ need the protoc tool (in the protobuf-compiler package) to compile your
+ definition to Python classes, and then the modules in this package will allow
+ you to use those classes in your programs.
 
 Package: libprotobuf-java
 Architecture: all
diff -Nru protobuf-3.0.0/debian/python-protobuf3.README.Debian protobuf-3.0.0/debian/python-protobuf3.README.Debian
--- protobuf-3.0.0/debian/python-protobuf3.README.Debian	1970-01-01 01:00:00.0 +0100
+++ protobuf-3.0.0/debian/python-protobuf3.README.Debian	2016-09-11 15:39:56.0 +0200
@@ -0,0 +1,11 @@
+C++ backend
+===
+
+As of protobuf 2.6.0, a new C++ backend for the Python protobuf bindings is
+available, which is faster than the default pure Python implementation. It can
+be activated by setting the following environment variables:
+
+PROTOCOL_BUFFERS_PYTHON_IMPLEMENTATION=cpp
+PROTOCOL_BUFFERS_PYTHON_IMPLEMENTATION_VERSION=2
+
+ -- Robert Edmonds   Thu, 28 Aug 2014 21:10:30 -0700
diff -Nru protobuf-3.0.0/debian/rules protobuf-3.0.0/debian/rules
--- protobuf-3.0.0/debian/rules	2016-08-25 02:28:25.0 +0200
+++ protobuf-3.0.0/debian/rules	2016-09-11 15:42:48.0 +0200
@@ -1,7 +1,7 @@
 #!/usr/bin/make -f
 
 %:
-	dh $@ --with autoreconf,python2 --parallel
+	dh $@ --with autoreconf,python2,python3 --parallel
 
 override_dh_auto_build-arch:
 ## Chicken<->Egg problem: protobuf requires self-generated .pb.go files to
@@ -13,9 +13,10 @@
 
 	# Generate the manpage.
 	xmlto man debian/protoc.xml
-
+	cp python python3 -r
 	# Python build.
 	cd python && python setup.py build --cpp_implementation
+	cd python3 && python3 setup.py build --cpp_implementation
 
 override_dh_auto_build-indep:
 	dh_auto_build --indep
@@ -45,6 +46,9 @@
 	cd python && for python in $(shell pyversions -r); do \
 		$$python setup.py test --cpp_implementation; \
 	done
+	cd python3 && for python in $(shell py3versions -r); do \
+		$$python setup.py test --cpp_implementation; \
+	done
 endif
 
 override_dh_auto_test-indep:
@@ -58,6 +62,7 @@
 		$$python setup.py clean --all; \
 	done
 	rm -rf python/protobuf.egg-info
+	rm -rf python3
 
 override_dh_auto_clean-indep:
 	dh_auto_clean --indep
@@ -76,7 +81,13 @@
 			--install-layout=deb --no-compile \
 			--root=$(CURDIR)/debian/python-protobuf; \
 	done
+	cd python3 && for python in $(shell py3versions -r); do \
+		$$python setup.py install --cpp_implementation \
+			--install-layout=deb --no-compile \
+			--root=$(CURDIR)/debian/python3-protobuf; \
+	done
 	find $(CURDIR)/debian/python-protobuf -name 'protobuf-*-nspkg.pth' -delete
+	find $(CURDIR)/debian/python3-protobuf -name 'protobuf-*-nspkg.pth' -delete
 
 override_dh_auto_install-indep:
 	dh_auto_install --indep

Bug#837178: linux-image-3.16.0-4-amd64: All memory and swap is used up until system freezes

[Dennis E. Hamilton]

> -Original Message-
> From: Ben Hutchings [mailto:b...@decadent.org.uk]
> Sent: Saturday, September 10, 2016 18:11
> To: Jose R R ; 837...@bugs.debian.org; Wolfgang
> Tichy 
> Cc: dev 
> Subject: Re: Bug#837178: linux-image-3.16.0-4-amd64: All memory and swap
> is used up until system freezes
> 
> On Sat, 2016-09-10 at 17:37 -0700, Jose R R wrote:
> > On Fri, Sep 9, 2016 at 12:37 PM, Wolfgang Tichy 
> > wrote:
> > >
> > > Package: src:linux
> > > Version: 3.16.7-ckt25-2+deb8u3
> > > Severity: critical
> > > Tags: security
> > > Justification: causes serious data loss
> > >
> > > Dear Maintainer,
> > >
> > > when I open a particular word document (it contains images and I
> > > can send it
> > > to you for testing) with libreoffice, all memory and all swap get
> > > used up
> > > within about a minute.
> >
> > You may want to *narrow down* your memory issue by trying out Apache
> > OpenOffice:
> >
> > Download: https://openoffice.org/download/
> [...]
> 
> Please, we don't need advocacy for rival software in the Debian BTS.
[orcmid] 

I agree completely, Ben.

I don't understand at all how dev@oo.a.o became included in this, since it has 
nothing to do with development at Apache OpenOffice.

My reading of the quoted "narrow down" was as a suggestion for forensic 
purposes, the same way I test apparent problem documents with different 
products to see if there is anything in the pattern that gives me clue about 
what the defect might be.  And even so, there is no reason that the dev@ 
openoffice.apache.org list be cross-posted.

I am told that a document-forensic suggestion was not the intention.

In that case I want to make it clear that the ASF is completely ecumenical 
about open-source software projects, sees forking as a feature, and does not 
participate in advocacy of one project over another.  So, in accordance with 
the ASF operating as a US charity that provides free software as a public good, 
the Apache OpenOffice project does not concern itself about "rival software."  

Individuals have their own positions, sometimes rooted deeply in the past, and 
that shows up on various lists.  Those are not official positions, whatever the 
association of the advocate with Apache projects.

That the technical analysis on behalf of an issue on the Debian Bug Tracking 
System was used in this manner is unfortunate and regrettable.  It was also 
inappropriate that the dev@ openoffice.apache.org list was also so abused.

I trust we can remove the cross-posting now and Debian developers can return to 
their important business without this distraction.

 - Dennis E. Hamilton
   ASF Vice President for Apache OpenOffice
   Chair of the AOO Project Management Committee

> 
> Ben.
> 
> --
> Ben Hutchings
> Experience is what causes a person to make new mistakes instead of old
> ones.

Bug#837451: xserver-xorg-core: visual flashes followed by hard crash upon keyboard interaction with thinkpad x201

[Gabriel Filion]

Package: xserver-xorg-core
Version: 2:1.18.4-2
Severity: important

Hi there,

I've been having weird crashes that happen only when I interact with my
keyboard. It also happens with a keyboard plugged in to USB port.

I didn't know where exactly to look, so I "bisected" packages with the help of
snapshot.debian.org and found out that xserver-xorg-core version 1.18.3-2 was
introducing this issue. Downgrading to 1.18.3-1 makes the visual flashes and
hard crashes go away. I'm still seeing those crashes in 1.18.4-2

What happens is when I type on the keyboard, at some random point X crashes
(happens always exactly when I type a letter on the keyboard - if I let the
computer open without touching it, it doesn't crash).

Crash in this case means the screen goes black, sometimes there's a 1
pixel-wide vertical line on the left where color zizags randomly. The black
screen and left vertical column stay there for about 10 seconds before the
computer shuts down by itself. I have seen because of ssh connections that the
last letter I typed which caused the crash usually makes it through to the ssh
connection, but nothing after that goes through.

Also, before the crash happens, I saw that with gnome-terminal, if I switch
window or tab and start typing in the new window, I'll see a visual flash like
a quick blackout. If I repeat those flashes a number of time I end up
reproducing the crash.

Unfortunately, nothing in syslog or X.log ever shows up after a crash.

-- Package-specific info:
X server symlink status:

lrwxrwxrwx 1 root root 13 Jul 28  2013 /etc/X11/X -> /usr/bin/Xorg
-rwxr-xr-x 1 root root 274 Sep  6 09:09 /usr/bin/Xorg

VGA-compatible devices on PCI bus:
--
00:02.0 VGA compatible controller [0300]: Intel Corporation Core Processor 
Integrated Graphics Controller [8086:0046] (rev 02)

/etc/X11/xorg.conf does not exist.

/etc/X11/xorg.conf.d does not exist.

KMS configuration files:

/etc/modprobe.d/radeon-kms.conf:
  options radeon modeset=1

Kernel version (/proc/version):
---
Linux version 4.7.0-1-amd64 (debian-ker...@lists.debian.org) (gcc version 5.4.1 
20160803 (Debian 5.4.1-1) ) #1 SMP Debian 4.7.2-1 (2016-08-28)

Xorg X server log files on system:
--
-rw-r--r-- 1 rootroot21530 Sep 15  2015 /var/log/Xorg.2.log
-rw-r--r-- 1 rootroot23021 Oct 28  2015 /var/log/Xorg.0.log
-rw-r--r-- 1 rootroot22171 Oct 28  2015 /var/log/Xorg.1.log
-rw-r--r-- 1 gabster gabster 29264 Sep 11 13:38 
/home/gabster/.local/share/xorg/Xorg.0.log

Contents of most recent Xorg X server log file 
(/home/gabster/.local/share/xorg/Xorg.0.log):

[35.253] (--) Log file renamed from 
"/home/gabster/.local/share/xorg/Xorg.pid-2040.log" to 
"/home/gabster/.local/share/xorg/Xorg.0.log"
[35.254] 
X.Org X Server 1.18.4
Release Date: 2016-07-19
[35.254] X Protocol Version 11, Revision 0
[35.254] Build Operating System: Linux 3.16.0-4-amd64 x86_64 Debian
[35.254] Current Operating System: Linux boohn 4.7.0-1-amd64 #1 SMP Debian 
4.7.2-1 (2016-08-28) x86_64
[35.254] Kernel command line: BOOT_IMAGE=/vmlinuz-4.7.0-1-amd64 
root=UUID=c638294f-3066-4dfc-85ae-6601096a4134 ro quiet
[35.254] Build Date: 06 September 2016  01:32:44PM
[35.254] xorg-server 2:1.18.4-2 (https://www.debian.org/support) 
[35.254] Current version of pixman: 0.33.6
[35.254]Before reporting problems, check http://wiki.x.org
to make sure that you have the latest version.
[35.254] Markers: (--) probed, (**) from config file, (==) default setting,
(++) from command line, (!!) notice, (II) informational,
(WW) warning, (EE) error, (NI) not implemented, (??) unknown.
[35.254] (==) Log file: "/home/gabster/.local/share/xorg/Xorg.0.log", Time: 
Sun Sep 11 13:38:44 2016
[35.255] (==) Using system config directory "/usr/share/X11/xorg.conf.d"
[35.257] (==) No Layout section.  Using the first Screen section.
[35.257] (==) No screen section available. Using defaults.
[35.257] (**) |-->Screen "Default Screen Section" (0)
[35.257] (**) |   |-->Monitor ""
[35.258] (==) No monitor specified for screen "Default Screen Section".
Using a default monitor configuration.
[35.258] (==) Automatically adding devices
[35.258] (==) Automatically enabling devices
[35.258] (==) Automatically adding GPU devices
[35.258] (==) Max clients allowed: 256, resource mask: 0x1f
[35.258] (WW) The directory "/usr/share/fonts/X11/cyrillic" does not exist.
[35.258]Entry deleted from font path.
[35.258] (==) FontPath set to:
/usr/share/fonts/X11/misc,
/usr/share/fonts/X11/100dpi/:unscaled,
/usr/share/fonts/X11/75dpi/:unscaled,
/usr/share/fonts/X11/Type1,
/usr/share/fonts/X11/100dpi,

Bug#837447: p8-platform: should not include prctl.h on non-linux

[Samuel Thibault]

A bogus shortcut in mutt made me send before attaching. Here is the
proposed patch.

Samuel
Index: p8-platform-2.0.1+dfsg1/src/posix/os-types.h
===
--- p8-platform-2.0.1+dfsg1.orig/src/posix/os-types.h
+++ p8-platform-2.0.1+dfsg1/src/posix/os-types.h
@@ -36,7 +36,7 @@
 #include 
 #include 
 #include 
-#if !defined(__APPLE__) && !defined(__FreeBSD__) && !defined(__NetBSD__)
+#ifdef __linux__
 #include 
 #endif
 #include 

Bug#837450: faumachine: FTBFS with bindnow and PIE enabled

[Balint Reczey]

Source: faumachine
Version: 20160511-1
Severity: important
User: bal...@balintreczey.hu
Usertags: pie-bindnow-20160906
Justification: FTBFS on amd64 with extra hardening

Hi,

During a rebuild of all packages in sid, your package failed to build on
amd64 with patched GCC and dpkg.

The rebuild tested if packages are ready for a transition
enabling PIE and bindnow for amd64.

For more information about the changes to sid's dpkg and GCC please
visit:
 https://wiki.debian.org/Hardening/PIEByDefaultTransition

Relevant part (hopefully):
...
./dyngen -p chip_intel_80286_op_ -o cpu_286_jit_op_gen.h
libqemu_gen_286_a-cpu_286_jit_op.o
dyngen: unsupported X86_64 relocation (4)
Makefile:892: recipe for target 'cpu_286_jit_op_gen.h' failed
make[5]: *** [cpu_286_jit_op_gen.h] Error 1
make[5]: Leaving directory '/<>/chips/qemu'
Makefile:2010: recipe for target 'all-recursive' failed
make[4]: *** [all-recursive] Error 1
make[4]: Leaving directory '/<>/chips'
Makefile:560: recipe for target 'all' failed
make[3]: *** [all] Error 2
make[3]: Leaving directory '/<>/chips'
Makefile:523: recipe for target 'all-recursive' failed
make[2]: *** [all-recursive] Error 1
make[2]: Leaving directory '/<>'

...

The full build log is available from:
 
https://people.debian.org/~rbalint/build-logs/pie-bindnow-20160906/faumachine_20160511-1_amd64.build.gz

Thanks,
Balint

Bug#834683: fixed in mini-buildd 1.0.17

[Stephan Sürken]

Hi Santiago,

On So, 2016-09-11 at 11:37 +0200, Santiago Vila wrote:
(...)
> This is the changelog entry you wrote:
> 
> >    * [8ee94bc] gnupg.py: Add extra method to get sec user id. Fixes
> doctest
> >  for GPG 2.1. Thanks to Santiago Vila (Closes: 834683)
> 
> If this is only intended to work with gnupg 2, please add
> Build-Depends: gnupg (>= 2) so that autobuilders testing packages in
> stretch do not even try to build it with gnupg version 1.

no, this should work for both, 1.4 and 2.1.

> OTOH, if this is intended to work with both gnupg 1 and gnupg 2
> (for example, if you intend this to be backported to jessie),
> then the problem is still here.

Yes, I do ;). And I did test it under jessie, and also the package
build under stretch.

> The error message:
(...)
> suggests to me that there is not enough entropy to generate a key.

If entropy actually is the problem, it should have always been there
for all 1.0.x versions (having that doctest).

> (I don't know how to fix that, sorry, maybe an additional
> build-depends on some package which wraps accesses to /dev/random to
> make them faster, if such package exists).
> 
> The full build log is attached.
> 
> This time I only tried to build it once, but since the problem was
> not
> supposed to always happen, it is probably correct to say that the
> FTBFS-randomness has not been eliminated.

Ok, agree, this does add some randomness [which I usually mitigate
running something like haveged on the builder host]. I guess this
generally means automated tests depending on some entropy must be
avoided?

Anyway, I don't have a good solution either right now; maybe someone
already has? Will look around eventually ;)

Thx,

S

Bug#837448: farstream-0.2: FTBFS with bindnow and PIE enabled

[Balint Reczey]

Source: farstream-0.2
Version: 0.2.8-1
Severity: important
User: bal...@balintreczey.hu
Usertags: pie-bindnow-20160906
Justification: FTBFS on amd64 with extra hardening

Hi,

During a rebuild of all packages in sid, your package failed to build on
amd64 with patched GCC and dpkg.

The rebuild tested if packages are ready for a transition
enabling PIE and bindnow for amd64.

For more information about the changes to sid's dpkg and GCC please
visit:
 https://wiki.debian.org/Hardening/PIEByDefaultTransition

Relevant part (hopefully):
...
(lt-farstream-plugins-scan:26687): GLib-GObject-WARNING **: cannot
register existing type 'FsMsnConference'

(lt-farstream-plugins-scan:26687): GLib-CRITICAL **: g_once_init_leave:
assertion 'result != 0' failed
** Message: fs_msn_conference_get_type () didn't return a valid type
Segmentation fault
Scan failed:
Makefile:823: recipe for target 'scanobj-build.stamp' failed
make[4]: *** [scanobj-build.stamp] Error 1
make[4]: Leaving directory '/<>/docs/plugins'
Makefile:479: recipe for target 'all-recursive' failed
make[3]: *** [all-recursive] Error 1
make[3]: Leaving directory '/<>/docs'
Makefile:616: recipe for target 'all-recursive' failed
make[2]: *** [all-recursive] Error 1
make[2]: Leaving directory '/<>'

...

The full build log is available from:
 
https://people.debian.org/~rbalint/build-logs/pie-bindnow-20160906/farstream-0.2_0.2.8-1_amd64.build.gz

Thanks,
Balint

Bug#837449: brightness not properly reset after suspend

[Pascal Obry]

Package: gnome-power-manager
Version: 3.21.91-1

Since recent updates on Debian/sid the brightness is not properly reset
on resume after suspend or at boot time.

That is, the brightness is always reset to its maximum value.

Am fully up-to-date on Debian/sid.

Let me know if you need more information.

Thanks,

-- 
  Pascal Obry /  Magny Les Hameaux (78)

  The best way to travel is by means of imagination

  http://www.obry.net

  gpg --keyserver keys.gnupg.net --recv-key F949BD3B

Bug#834318: c-blosc: please update c-blosc

[Daniel Stender]

On 11.09.2016 19:27, Jean-Christophe Jaskula wrote:
> Hey Daniel,
> 
> Thank you for taking care of this new version and for taking over this 
> package in the future. Please let me know if I can help in anything.
> 
> Best,
> JC

All right!

Good work so far, I'll keep that up.

Till next time,
Daniel

-- 
4096R/DF5182C8
http://www.danielstender.com/blog/

Bug#837447: p8-platform: should not include prctl.h on non-linux

[Samuel Thibault]

Source: p8-platform
Version: 2.0.1+dfsg1-2
Severity: important
Tags: patch upstream
User: debian-h...@lists.debian.org
User-tags: hurd

Hello,

p8-platform inconditionally includes , which is a
linux-only header. The attached patch makes it only include it on Linux,
thus fixing debian package builds using p8-platforms, e.g. libcec, on
kfreebsd & hurd.

Cheers,
Samuel

-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable-debug'), (500, 
'buildd-unstable'), (500, 'unstable'), (500, 'stable'), (500, 'oldstable'), (1, 
'experimental-debug'), (1, 'buildd-experimental'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.7.0 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

-- 
Samuel
c> ah (on trouve fluide glacial sur le net, ou il faut aller dans le monde reel 
?)
s> dans le monde reel
c> zut

Bug#813969: O: eyed

[Petter Reinholdtsen]

[Gaetano Guerriero]
> Thank you for your intereset.
> I've uploaded again to debian mentors:
> https://mentors.debian.net/debian/pool/main/e/eyed3/eyed3_0.7.9-1.dsc

Thank you.  It seem to miss the latest uploads to Debian, see
https://tracker.debian.org/pkg/eyed3 > for a summary of the status
in Debian at the moment.  Please base your new version on the version in
unstable at the moment.

Please also check out the bug reports in Debian.  A new version should
close at least one of them in the d/changelog text.

Another thing, are you in touch with upstream?  The manual page in
debian/eyeD3.1 should probably be pushed upstream.

-- 
Happy hacking
Petter Reinholdtsen

Bug#804254: publib-dev: publib does not provide a .a file with PIC objects

[Balint Reczey]

Control: severity -1 important

On Fri, 06 Nov 2015 16:05:03 + Daniel Silverstone
 wrote:
...

> 
> Dear Maintainer,
> 
> It would be super-useful if publib-dev provided a PIC compiled variant of the
> ar file.  This would allow the use of publib functions when preparing shared
> objects such as modules to be loaded into interpreters.
...


During a rebuild of all packages in sid, several packages
failed to build on amd64 with patched GCC and dpkg. The root
cause seems to be that libpub.a is shipped as a non-PIC library.

The rebuild tested if packages are ready for a transition
enabling PIE and bindnow for amd64.

For more information about the changes to sid's dpkg and GCC please
visit:
 https://wiki.debian.org/Hardening/PIEByDefaultTransitio

Relevant part of falselogin's build log:
...
make[1]: Entering directory '/<>'
gcc -W -Wall -g -O2 -c falselogin.c
gcc -o falselogin falselogin.o -lpub
/usr/bin/ld:
/usr/lib/gcc/x86_64-linux-gnu/6/../../../x86_64-linux-gnu/libpub.a(strgsub.o):
relocation R_X86_64_32 against `.rodata' can not be used when making a
shared object; recompile with -fPIC
/usr/bin/ld:
/usr/lib/gcc/x86_64-linux-gnu/6/../../../x86_64-linux-gnu/libpub.a(strsub.o):
relocation R_X86_64_32 against `.rodata' can not be used when making a
shared object; recompile with -fPIC
/usr/bin/ld: final link failed: Nonrepresentable section on output
...

The full build log is available from:
https://people.debian.org/~rbalint/build-logs/pie-bindnow-20160906/falselogin_0.3-4_amd64.build.gz

Thanks,
Balint

Bug#834318: c-blosc: please update c-blosc

[Jean-Christophe Jaskula]

Hey Daniel,

Thank you for taking care of this new version and for taking over this package 
in the future. Please let me know if I can help in anything.

Best,
JC

> Le 2 sept. 2016 à 17:44, Daniel Stender  a écrit :
> 
> On 02.09.2016 23:20, Jean-Christophe Jaskula wrote:
>> 
>>> Le 1 sept. 2016 à 13:59, Daniel Stender  a écrit :
>>> 
>>> On 01.09.2016 17:49, Jean-Christophe Jaskula wrote:
 Hey Daniel,
 
 Sorry I have been busy these days and lost track of my emails. I might be 
 able to do it quickly these next days too. There would be the step of 
 sponsorship and I don’t know if Mathieu would be available right away to 
 check the package.
 
 On the other hand, I could orphan the package if you wish and/or intend to 
 update it frequently. Also FYI, I had started the packaging of 
 python-blosc and its friends but it never went to a state where I would 
 send them over.
 
 Cheers,
 JC
>>> 
>>> Hi,
>>> 
>>> ... no problem.
>>> 
>>> Yes, I would sponsor the upload if you going to have an updated package 
>>> ready.
>>> 
>>> Beyond that, yes I would be interested in constantly looking after/taking 
>>> care of blosc. No need to orphan
>>> it - I'm going to change the Maintainer field, then (if you could sign an 
>>> email/reply saying that this is all
>>> right with you, that would be o.k.).
>>> 
>>> I've filed ITP bugs for python-blosc and bloscpack recently, making a wrap. 
>>> If you would like to send
>>> over your work on that so far, I would keep you in deb/copyright then.
>>> 
>>> DS
>> 
>> Hi,
>> 
>> I won’t have time to do anything this weekend. You can take over this 
>> package if you wish. Please tell me if you want a signed text file.
>> 
>> Thank you for taking care of that.
>> JC
> 
> Yes, all right, I'll take care of the package. It's a wrap with the Python 
> packages depending on that.
> 
> I think it's not required for that, but if you could state that also in a 
> signed reply some time in the next
> days, that would be great ...
> 
> DS
> 
> --
> 4096R/DF5182C8
> http://www.danielstender.com/blog/


--
Jean-Christophe Jaskula







signature.asc
Description: Message signed with OpenPGP using GPGMail

Bug#837268: Please upload bzr 2.7.0+bzr6619-2

[Vincent Ladeuil]

The attached patch fixes:

- the test failure caused by diff not exiting '2' on binary files
  anymore (the test was too eager, no other part of bzr relies on this
  behavior), 

- http basic auth was broken when the base64 encoding for the auth
  header become too long.

The former being encountered while fixing the later.

Tested locally with

autopkgtest .// -U -- lxd autopkgtest/debian/sid/amd64


Pushed to
https://anonscm.debian.org/bzr/pkg-bazaar/bzr/2.7/

Thanks in advance,

   Vincent

=== modified file 'debian/changelog'
--- debian/changelog	2016-07-02 16:18:18 +
+++ debian/changelog	2016-09-11 16:43:13 +
@@ -1,3 +1,14 @@
+bzr (2.7.0+bzr6619-2) unstable; urgency=medium
+
+  * Add 18_diff_binaries: With diffutils > 3.5, diff stop exiting with '2'
+on binary files. LP: #1622039
+Closes: #837268
+
+  * Add 19_fix_long_creds: Fix http Basic auth with credentials longer
+than ~57 characters. LP: #1606203
+
+ -- Vincent Ladeuil   Fri, 09 Sep 2016 16:00:49 +0200
+
 bzr (2.7.0+bzr6619-1) unstable; urgency=medium
 
   * Bump standards version to 3.9.8 (no changes).

=== added file 'debian/patches/18_diff_binaries'
--- debian/patches/18_diff_binaries	1970-01-01 00:00:00 +
+++ debian/patches/18_diff_binaries	2016-09-11 16:39:56 +
@@ -0,0 +1,17 @@
+Description: diff doesn't exit with 2 anymore on binary files.
+Author: Vincent Ladeuil 
+
+
+=== modified file 'bzrlib/tests/test_diff.py'
+--- unstable.orig/bzrlib/tests/test_diff.py	2016-02-01 18:06:32 +
 unstable/bzrlib/tests/test_diff.py	2016-09-11 16:32:54 +
+@@ -313,8 +313,6 @@
+ pipe = subprocess.Popen(cmd, stdout=subprocess.PIPE,
+  stdin=subprocess.PIPE)
+ out, err = pipe.communicate()
+-# Diff returns '2' on Binary files.
+-self.assertEqual(2, pipe.returncode)
+ # We should output whatever diff tells us, plus a trailing newline
+ self.assertEqual(out.splitlines(True) + ['\n'], lines)
+ 
+

=== added file 'debian/patches/19_fix_long_creds'
--- debian/patches/19_fix_long_creds	1970-01-01 00:00:00 +
+++ debian/patches/19_fix_long_creds	2016-09-09 14:03:49 +
@@ -0,0 +1,49 @@
+Description: http Basic auth was broken
+ When a long (>57) user/pass combination was used, a spurious '\n' ended up in the header value, crashing httplib.
+.
+Author: Vincent Ladeuil 
+
+
+
+=== modified file 'bzrlib/tests/test_http.py'
+--- unstable.orig/bzrlib/tests/test_http.py	2016-02-01 18:06:32 +
 unstable/bzrlib/tests/test_http.py	2016-09-09 12:57:44 +
+@@ -260,6 +260,16 @@
+ self.assertEqual('basic', scheme)
+ self.assertEqual('realm="Thou should not pass"', remainder)
+ 
++def test_build_basic_header_with_long_creds(self):
++handler = _urllib2_wrappers.BasicAuthHandler()
++user = 'user' * 10  # length 40
++password = 'password' * 5  # length 40
++header = handler.build_auth_header(
++dict(user=user, password=password), None)
++# https://bugs.launchpad.net/bzr/+bug/1606203 was caused by incorrectly
++# creating a header value with an embedded '\n'
++self.assertFalse('\n' in header)
++
+ def test_basic_extract_realm(self):
+ scheme, remainder = self.parse_header(
+ 'Basic realm="Thou should not pass"',
+
+=== modified file 'bzrlib/transport/http/_urllib2_wrappers.py'
+--- unstable.orig/bzrlib/transport/http/_urllib2_wrappers.py	2016-01-31 12:55:31 +
 unstable/bzrlib/transport/http/_urllib2_wrappers.py	2016-09-09 12:58:12 +
+@@ -48,6 +48,7 @@
+ # actual code more or less do that, tests should be written to
+ # ensure that.
+ 
++import base64
+ import errno
+ import httplib
+ import os
+@@ -1491,7 +1492,7 @@
+ 
+ def build_auth_header(self, auth, request):
+ raw = '%s:%s' % (auth['user'], auth['password'])
+-auth_header = 'Basic ' + raw.encode('base64').strip()
++auth_header = 'Basic ' + base64.b64encode(raw)
+ return auth_header
+ 
+ def extract_realm(self, header_value):
+

=== modified file 'debian/patches/series'
--- debian/patches/series	2016-07-02 16:15:17 +
+++ debian/patches/series	2016-09-11 16:38:05 +
@@ -5,3 +5,5 @@
 15_autodoc_source_epoch
 16_paramiko_compat
 17_reproducible_makefile
+18_diff_binaries
+19_fix_long_creds

Bug#837446: openmpi: FTBFS on hppa - no java

[John David Anglin]

Source: openmpi
Version: 2.0.1-4
Severity: normal

Dear Maintainer,

Build fails here:
Making all in java
make[4]: Entering directory '/<>/ompi/mpi/java/java'
  JAVACMPI.class
--
1. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 237)
@Override final public void free() throws MPIException
^^
The method free() of type Comm must override a superclass method
--
2. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 372)
if(buf instanceof Buffer && !(db = ((Buffer)buf).isDirect()))
 
The method isDirect() is undefined for the type Buffer
--
3. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 375)
buf = ((Buffer)buf).array();
^
The method array() is undefined for the type Buffer
--
4. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 404)
if(buf instanceof Buffer && !(db = ((Buffer)buf).isDirect()))
 
The method isDirect() is undefined for the type Buffer
--
5. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 407)
buf = ((Buffer)buf).array();
^
The method array() is undefined for the type Buffer
--
6. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 456)
if(sendbuf instanceof Buffer && !(sdb = ((Buffer)sendbuf).isDirect()))
  
The method isDirect() is undefined for the type Buffer
--
7. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 459)
sendbuf = ((Buffer)sendbuf).array();
^
The method array() is undefined for the type Buffer
--
8. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 462)
if(recvbuf instanceof Buffer && !(rdb = ((Buffer)recvbuf).isDirect()))
  
The method isDirect() is undefined for the type Buffer
--
9. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 465)
recvbuf = ((Buffer)recvbuf).array();
^
The method array() is undefined for the type Buffer
--
10. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 510)
if(buf instanceof Buffer && !(db = ((Buffer)buf).isDirect()))
 
The method isDirect() is undefined for the type Buffer
--
11. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 513)
buf = ((Buffer)buf).array();
^
The method array() is undefined for the type Buffer
--
12. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 549)
if(buf instanceof Buffer && !(db = ((Buffer)buf).isDirect()))
 
The method isDirect() is undefined for the type Buffer
--
13. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 552)
buf = ((Buffer)buf).array();
^
The method array() is undefined for the type Buffer
--
14. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 580)
if(buf instanceof Buffer && !(db = ((Buffer)buf).isDirect()))
 
The method isDirect() is undefined for the type Buffer
--
15. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 583)
buf = ((Buffer)buf).array();
^
The method array() is undefined for the type Buffer
--
16. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 611)
if(buf instanceof Buffer && !(db = ((Buffer)buf).isDirect()))
 
The method isDirect() is undefined for the type Buffer
--
17. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 614)
buf = ((Buffer)buf).array();
^
The method array() is undefined for the type Buffer
--
18. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 925)
if(inbuf instanceof Buffer && !(indb = ((Buffer)inbuf).isDirect()))
   
The method isDirect() is undefined for the type Buffer
--
19. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 928)
inbuf  = ((Buffer)inbuf).array();
 ^
The method array() is undefined for the type Buffer
--
20. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 963)
if(outbuf instanceof Buffer && !(outdb = ((Buffer)outbuf).isDirect()))
  
The method isDirect() is undefined for the type Buffer
--
21. ERROR in /<>/ompi/mpi/java/java/Comm.java (at line 966)
outbuf = 

Bug#837372: #3872: when using gpgme, the signature information is brightyellow making it difficult to read

[Mutt]

#3872: when using gpgme, the signature information is brightyellow making it
difficult to read
+--
  Reporter:  antonio@…  |  Owner:  mutt-dev
  Type:  defect | Status:  new
  Priority:  minor  |  Milestone:
 Component:  crypto |Version:  1.7.0
Resolution: |   Keywords:
+--

Comment (by antonio@…):

 I've investigated and I'm providing you with the same patch that I'll add
 to the debian package.

 It seems that the output of pgp.c is written with state_puts(), while the
 output of crypt-gpgme.c has state_attach_puts().

 It might make sense to use state_attach_puts() for the lines with [--] but
 we still want to preserve the same behavior of pgp.c for the content.

 Another option is to provide a feature to have a different color for
 crypto output (it might be called crypto and we could provide
 state_crypto_puts()); I might provide a patch for this particular feature
 next weekend (I'll file a separate bug for that).

--
Ticket URL: 
Mutt 
The Mutt mail user agent

Bug#837372: #3872: when using gpgme, the signature information is brightyellow making it difficult to read

[Mutt]

#3872: when using gpgme, the signature information is brightyellow making it
difficult to read
+--
  Reporter:  antonio@…  |  Owner:  mutt-dev
  Type:  defect | Status:  new
  Priority:  minor  |  Milestone:
 Component:  crypto |Version:  1.7.0
Resolution: |   Keywords:
+--
Changes (by antonio@…):

 * Attachment "837372-do-not-color-gpgme-output.patch" added.


--
Ticket URL: 
Mutt 
The Mutt mail user agent

Bug#837403: connectome-workbench: FTBFS with bindnow and PIE enabled

[Bálint Réczey]

Hi Yaroslav,

2016-09-11 18:03 GMT+02:00 Yaroslav Halchenko :
> On September 11, 2016 6:59:58 AM EDT, Balint Reczey  
> wrote:
...
>>Hi,
>>
>>During a rebuild of all packages in sid, your package failed to build
>>on
>>amd64 with patched GCC and dpkg.
>>
>>The rebuild tested if packages are ready for a transition
>>enabling PIE and bindnow for amd64.
>>
>>For more information about the changes to sid's dpkg and GCC please
>>visit:
>> https://wiki.debian.org/Hardening/PIEByDefaultTransition
>>
>>Relevant part (hopefully):
>>...
>>/usr/bin/c++   -fopenmp -g -O2 -fdebug-prefix-map=/<>=.
>>-fstack-protector-strong -Wformat
>> -Werror=format-security -DNDEBUG -Wdate-time -D_FORTIFY_SOURCE=2
>>-Wl,-z,relro -Wl,-z,now -Wl,--as
>>-needed CMakeFiles/wb_command.dir/wb_command.cxx.o
>>CMakeFiles/wb_command.dir/qrc_resources.cxx.o  -o w
>>b_command -rdynamic ../Commands/libCommands.a
>>../Operations/libOperations.a ../Algorithms/libAlgorithm
>>s.a ../OperationsBase/libOperationsBase.a ../Brain/libBrain.a -lftgl
>>../Files/libFiles.a ../Annotation
>>s/libAnnotations.a ../Palette/libPalette.a ../Gifti/libGifti.a
>>../Cifti/libCifti.a ../Nifti/libNifti.a
>> ../Charting/libCharting.a ../FilesBase/libFilesBase.a
>>../Scenes/libScenes.a ../Xml/libXml.a ../Common/libCommon.a
>>../Quazip/libQuazip.a -lfreetype -lQtGui -lQtXml -lQtNetwork -lQtCore
>>-lOSMesa -lGL -Wl,-Bstatic -lGLU -Wl,-Bdynamic -lz
>>/usr/bin/ld:
>>/usr/lib/gcc/x86_64-linux-gnu/6/../../../x86_64-linux-gnu/libGLU.a(error.o):
>>relocation R_X86_64_32 against `.rodata' can not be used when making a
>>shared object; recompile with -fPIC
...
>>
>>The full build log is available from:
>>https://people.debian.org/~rbalint/build-logs/pie-bindnow-20160906/connectome-workbench_1.2.3-1_amd64.build.gz
>>
>>Dynamically linking to libGLU would probably fix the problem.
>>
>>Thanks,
>>Balint
>
> So the actual issue is within libGLU.a which needs to be rebuilt with -fPIC, 
> ie nothing to do on my end?

AFAIK the policy does not dictate shipping PIC static libraries, thus
it is not clearly
libGLU's issue, but it could be fixed by libGLU.

Generally I prefer dynamic linking to be able to fix libraries without
recompiling reverse dependencies thus I think moving to libGLU.so
would be beneficial in itself.

As an alternative libglu could be updated to build with fPIC, but this
is up to the libglu maintainers.

As an other alternative libglu could be recompiled with gcc with PIE
and PIC enabled by default which would resolve this issue for
_some_ architectures, where PIE is enabled by default but
would not let connectome-workbench compiled with PIE on
the rest of the architectures.

I suggest going with moving to using dynamic linking. It also helps
the preparation for the transition to enable PIE by default.

Thanks,
Balint

Bug#822021: scalapack: Build arch:all+arch:any but is missing build-{arch,indep} targets

[Sebastiaan Couwenberg]

On 09/11/2016 07:00 PM, Sebastiaan Couwenberg wrote:
> On 09/11/2016 06:53 PM, Muammar El Khatib wrote:
>> On Sun, Sep 11, 2016 at 04:25:26PM +0200, Sebastiaan Couwenberg wrote:
>> I had already applied this patch:
>>
>> scalapack (1.8.0-13) unstable; urgency=medium
>>
>>   * Added missing build-{arch,indep} targets. Thanks to Santiago Vila for
>> providing a patch. Closes: #822021.
>>   * hppa architecture switched to openmpi. Closes: #834182.
>>
>>  -- Muammar El Khatib   Mon, 05 Sep 2016 23:48:13 
>> +0200
>>
>> I am waiting for the openmpi upload of today that closes #837062 to proceed.

PS, in case you hadn't yet, don't forget to incorporate the changes from
the last three NMUS:

 scalapack (1.8.0-12.3) https://tracker.debian.org/news/747399
 scalapack (1.8.0-12.2) https://tracker.debian.org/news/746047
 scalapack (1.8.0-12.1) https://tracker.debian.org/news/675073

Kind Regards,

Bas

-- 
 GPG Key ID: 4096R/6750F10AE88D4AF1
Fingerprint: 8182 DE41 7056 408D 6146  50D1 6750 F10A E88D 4AF1

Bug#837445: check: Please build libcheck.a with -fPIC

[Balint Reczey]

Source: check
Version: 0.10.0-3
Severity: important
User: bal...@balintreczey.hu
Usertags: pie-bindnow-20160906
Justification: makes several packages FTBFS on amd64 with extra hardening
Affects: ettercap galera-3 gubbins netcfg vnstat

Dear Maintainers,

During a rebuild of all packages in sid, several packages
failed to build on amd64 with patched GCC and dpkg. The root
cause seems to be that libcheck.a is shipped as a non-PIC library.

The rebuild tested if packages are ready for a transition
enabling PIE and bindnow for amd64.

For more information about the changes to sid's dpkg and GCC please
visit:
 https://wiki.debian.org/Hardening/PIEByDefaultTransitio

Relevant part of ettercap's build log:
...
[100%] Linking C executable test_ec_decode
cd /<>/obj-text-only/tests && /usr/bin/cmake -E cmake_link_script 
CMakeFiles/test_ec_deco
de.dir/link.txt --verbose=1
/usr/bin/cc  -g -O2 -fdebug-prefix-map=/<>=. 
-fstack-protector-strong -Wformat -Werror=fo
rmat-security -Wdate-time -D_FORTIFY_SOURCE=2  -O2 -g -DNDEBUG   -Wl,-z,relro 
-Wl,-z,now CMakeFiles/te
st_ec_decode.dir/test_ec_decode.c.o  -o test_ec_decode -rdynamic 
../src/libettercap.so.0.0.0 ../src/in
terfaces/libec_interfaces.a -Wl,-Bstatic -lcheck -Wl,-Bdynamic -lpthread 
-lcheck_pic -lrt -lm -lsubuni
t -lssl -lcrypto -lz -ldl -lbsd -lpcap -lnet -lresolv -lpcre 
../src/lua/libec_lua.a -lluajit-5.1 -lpth
read -Wl,-rpath,/<>/obj-text-only/src /usr/bin/ld: 
/usr/lib/gcc/x86_64-linux-gnu/6/../../../x86_64-linux-gnu/libcheck.a(check.o): 
relocation
 R_X86_64_32 against `.rodata.str1.1' can not be used when making a shared 
object; recompile with -fPI
C
/usr/bin/ld: 
/usr/lib/gcc/x86_64-linux-gnu/6/../../../x86_64-linux-gnu/libcheck.a(check_error.o):
 relo
cation R_X86_64_32 against `.rodata.str1.1' can not be used when making a 
shared object; recompile wit
h -fPIC
...

The full build log is available from:
https://people.debian.org/~rbalint/build-logs/pie-bindnow-20160906/ettercap_0.8.2-2_amd64.build.gz

I'm aware of the provided libcheck_pic.a file, but I think
there is little value in providing the non-PIC library
thus I suggest providing only one, libcheck.a with PIC.

Thanks,
Balint

Bug#837102: emacspeak: [INTL:nl] Dutch translation of debconf messages

[Samuel Thibault]

Control: tags -1 + pending

Hello,

Frans Spiesschaert, on Thu 08 Sep 2016 21:16:16 +0200, wrote:
> Please find attached the Dutch translation of emacspeak debconf messages. 

Thanks! I have added it to the repo, pending upload.

Samuel

Bug#822021: scalapack: Build arch:all+arch:any but is missing build-{arch,indep} targets

[Sebastiaan Couwenberg]

Control: tags -1 pending

Hi Muammar,

On 09/11/2016 06:53 PM, Muammar El Khatib wrote:
> On Sun, Sep 11, 2016 at 04:25:26PM +0200, Sebastiaan Couwenberg wrote:
>> On Tue, 26 Jul 2016 16:17:49 +0200 (CEST) Santiago Vila  wrote:
>>> tags 822021 + patch
>>> thanks
>>>
>>> I also recommend switching to dh, but in the meantime, the attached
>>> patch should work.
>>
>> Muammar, please apply this patch and upload a new scalapack revision to
>> unstable as soon as possible.
>>
>> scalapack binNMUes for the ongoing openmpi transition are failing
>> because of this issue, and prevent building its many reverse dependencies.
>>
> 
> I had already applied this patch:
> 
> scalapack (1.8.0-13) unstable; urgency=medium
> 
>   * Added missing build-{arch,indep} targets. Thanks to Santiago Vila for
> providing a patch. Closes: #822021.
>   * hppa architecture switched to openmpi. Closes: #834182.
> 
>  -- Muammar El Khatib   Mon, 05 Sep 2016 23:48:13 
> +0200
> 
> I am waiting for the openmpi upload of today that closes #837062 to proceed.

Thanks, that's excellent news. Let's tag this bugreport accordingly.

openmpi (2.0.1-4) should be available on the mirrors in about 4 hours.

Kind Regards,

Bas

-- 
 GPG Key ID: 4096R/6750F10AE88D4AF1
Fingerprint: 8182 DE41 7056 408D 6146  50D1 6750 F10A E88D 4AF1

Bug#822021: scalapack: Build arch:all+arch:any but is missing build-{arch,indep} targets

[Muammar El Khatib]

Hi Sebastiaan,

On Sun, Sep 11, 2016 at 04:25:26PM +0200, Sebastiaan Couwenberg wrote:
> On Tue, 26 Jul 2016 16:17:49 +0200 (CEST) Santiago Vila  wrote:
> > tags 822021 + patch
> > thanks
> >
> > I also recommend switching to dh, but in the meantime, the attached
> > patch should work.
>
> Muammar, please apply this patch and upload a new scalapack revision to
> unstable as soon as possible.
>
> scalapack binNMUes for the ongoing openmpi transition are failing
> because of this issue, and prevent building its many reverse dependencies.
>

I had already applied this patch:

scalapack (1.8.0-13) unstable; urgency=medium

  * Added missing build-{arch,indep} targets. Thanks to Santiago Vila for
providing a patch. Closes: #822021.
  * hppa architecture switched to openmpi. Closes: #834182.

 -- Muammar El Khatib   Mon, 05 Sep 2016 23:48:13 +0200

I am waiting for the openmpi upload of today that closes #837062 to proceed.


Cheers,
--
Muammar El Khatib.
Linux user: 403107.
GPG Key = 71246E4A.
http://muammar.me | http://proyectociencia.org
  ,''`.
 : :' :
 `. `'
   `-

Bug#827296: - connman: Connman slow down the boot when no network available

[zi]

Quoting Gianfranco Costamagna :


interesting, since gnutls seems to have a regression somewhere, can
we please know which version is the first one with the issue?


Hi,

the last one, that works together with connman as expected, was  
libgnutls30 3.5.2-3. The Timeouts began with 3.5.3-1.


From the  changelog.Debian.gz

[...]
gnutls28 (3.5.3-1) experimental; urgency=medium

  * New upstream version.
+ Update libgnutls30.symbols.
+ Drop 31_nettle-use-rsa_-_key_prepare-on-key-import.patch (forgot to
  apply it in the previous upload anyway.)
+ Add b-d on libcmocka-dev (marked with ).

 -- Andreas Metzler   Wed, 10 Aug 2016 19:14:22 +0200

gnutls28 (3.5.2-3) experimental; urgency=medium

  * Cherry pick 31_nettle-use-rsa_-_key_prepare-on-key-import.patch
from upstream GIT, which should allow gnutls continue to work with
CVE-2016-6489-patched nettle.

 -- Andreas Metzler   Mon, 08 Aug 2016 19:41:41 +0200
[...]

Bug#835924: O: emdebian-archive-keyring -- GnuPG archive keys for the emdebian repository

[Adrian Bunk]

On Mon, Aug 29, 2016 at 11:39:59AM +0100, Neil Williams wrote:
> Package: wnpp
> Severity: normal
> 
> I intend to orphan the emdebian-archive-keyring package
> as I no longer have access to the keyring.
> 
> The package description is:
>  Emdebian digitally signs its Release files. This package
>  contains the archive key used by both Emdebian Crush and
>  Emdebian Grip.
>  .
>  The key is also available via the Emdebian website and as
>  a udeb for debian-installer support.

Hi Neil,

is there a good reason why you aren't doing
  reassign 835924 ftp.debian.org
  retitle 835924 RM: emdebian-archive-keyring -- RoM; obsolete
?

Considering that Emdebian is no longer being developed and its last 
release was for wheezy, I don't really see the point in having the
keys in the archive.

cu
Adrian

-- 

   "Is there not promise of rain?" Ling Tan asked suddenly out
of the darkness. There had been need of rain for many days.
   "Only a promise," Lao Er said.
   Pearl S. Buck - Dragon Seed

Bug#837436: Various ITPs for Mbrola voices

[Samuel Thibault]

Hello,

With the newer versions of espeak, there is potential use for other
Mbrola voices.  I thus intend to upload these voices to increase the
high-quality voice coverage.

ITP: mbrola-br2 -- Brazilian Portuguese female voice for Mbrola
ITP: mbrola-br4 -- Brazilian Portuguese female voice for Mbrola
ITP: mbrola-de1 -- German female voice for Mbrola
ITP: mbrola-de2 -- German male voice for Mbrola
ITP: mbrola-de3 -- German female voice for Mbrola
ITP: mbrola-ir1 -- Farsi male voice for Mbrola
ITP: mbrola-lt1 -- Lithuanian male voice for Mbrola
ITP: mbrola-lt2 -- Lithuanian male voice for Mbrola
ITP: mbrola-mx1 -- Mexican Spanish male voice for Mbrola

Samuel

Subject: ITP: mbrola-br2 -- Brazilian Portuguese female voice for Mbrola

Package: wnpp
Version: N/A; reported 2016-09-11
Severity: wishlist
Owner: Samuel Thibault 

* Package name: mbrola-br2
  Version : 2.021
  Upstream Author : Faculte Polytechnique de  Mons  -  mbrola team 
 
* URL : http://tcts.fpms.ac.be/synthesis
* License : see the file readme.txt in the source zip: non-free as in
without source code, and for non-commercial, non-military
purposes, with and only with the mbrola package made
available by the author.
  Description : Brazilian Portuguese female voice for Mbrola
 This package contains a Brazilian Portuguese diphone database provided in the 
context
 of the MBROLA project see: http://tcts.fpms.ac.be/synthesis/
 .
 It provides a Brazilian Portuguese female voice to be used with the MBROLA
 program.

Subject: ITP: mbrola-br4 -- Brazilian Portuguese female voice for Mbrola

Package: wnpp
Version: N/A; reported 2016-09-11
Severity: wishlist
Owner: Samuel Thibault 

* Package name: mbrola-br4
  Version : 1.0
  Upstream Author : Faculte Polytechnique de  Mons  -  mbrola team 
 
* URL : http://tcts.fpms.ac.be/synthesis
* License : see the file readme.txt in the source zip: non-free as in
without source code, and for non-commercial, non-military
purposes, with and only with the mbrola package made
available by the author.
  Description : Brazilian Portuguese female voice for Mbrola
 This package contains a Brazilian Portuguese diphone database provided in the 
context
 of the MBROLA project see: http://tcts.fpms.ac.be/synthesis/
 .
 It provides a Brazilian Portuguese female voice to be used with the MBROLA
 program.

Subject: ITP: mbrola-de1 -- German female voice for Mbrola

Package: wnpp
Version: N/A; reported 2016-09-11
Severity: wishlist
Owner: Samuel Thibault 

* Package name: mbrola-de1
  Version : 2.050
  Upstream Author : Faculte Polytechnique de  Mons  -  mbrola team 
 
* URL : http://tcts.fpms.ac.be/synthesis
* License : see the file readme.txt in the source zip: non-free as in
without source code, and for non-commercial, non-military
purposes, with and only with the mbrola package made
available by the author.
  Description : German female voice for Mbrola
 This package contains a German diphone database provided in the context
 of the MBROLA project see: http://tcts.fpms.ac.be/synthesis/
 .
 It provides a German female voice to be used with the MBROLA
 program.

Subject: ITP: mbrola-de2 -- German male voice for Mbrola

Package: wnpp
Version: N/A; reported 2016-09-11
Severity: wishlist
Owner: Samuel Thibault 

* Package name: mbrola-de2
  Version : 0.0.19990106
  Upstream Author : Faculte Polytechnique de  Mons  -  mbrola team 
 
* URL : http://tcts.fpms.ac.be/synthesis
* License : see the file readme.txt in the source zip: non-free as in
without source code, and for non-commercial, non-military
purposes, with and only with the mbrola package made
available by the author.
  Description : German male voice for Mbrola
 This package contains a German diphone database provided in the context
 of the MBROLA project see: http://tcts.fpms.ac.be/synthesis/
 .
 It provides a German male voice to be used with the MBROLA
 program.

Subject: ITP: mbrola-de3 -- German female voice for Mbrola

Package: wnpp
Version: N/A; reported 2016-09-11
Severity: wishlist
Owner: Samuel Thibault 

* Package name: mbrola-de3
  Version : 1.0
  Upstream Author : Faculte Polytechnique de  Mons  -  mbrola team 
 
* URL : http://tcts.fpms.ac.be/synthesis
* License : see the file readme.txt in the source zip: non-free as in
without source code, and for non-commercial, non-military
purposes, 

Bug#837437: ITP: mbrola-br4 -- Brazilian Portuguese female voice for Mbrola

[Samuel Thibault]

Package: wnpp
Version: N/A; reported 2016-09-11
Severity: wishlist
Owner: Samuel Thibault 

* Package name: mbrola-br4
  Version : 1.0
  Upstream Author : Faculte Polytechnique de  Mons  -  mbrola team 
 
* URL : http://tcts.fpms.ac.be/synthesis
* License : see the file readme.txt in the source zip: non-free as in
without source code, and for non-commercial, non-military
purposes, with and only with the mbrola package made
available by the author.
  Description : Brazilian Portuguese female voice for Mbrola
 This package contains a Brazilian Portuguese diphone database provided in the 
context
 of the MBROLA project see: http://tcts.fpms.ac.be/synthesis/
 .
 It provides a Brazilian Portuguese female voice to be used with the MBROLA
 program.

Bug#837436: ITP: mbrola-br2 -- Brazilian Portuguese female voice for Mbrola

[Samuel Thibault]

Package: wnpp
Version: N/A; reported 2016-09-11
Severity: wishlist
Owner: Samuel Thibault 

* Package name: mbrola-br2
  Version : 2.021
  Upstream Author : Faculte Polytechnique de  Mons  -  mbrola team 
 
* URL : http://tcts.fpms.ac.be/synthesis
* License : see the file readme.txt in the source zip: non-free as in
without source code, and for non-commercial, non-military
purposes, with and only with the mbrola package made
available by the author.
  Description : Brazilian Portuguese female voice for Mbrola
 This package contains a Brazilian Portuguese diphone database provided in the 
context
 of the MBROLA project see: http://tcts.fpms.ac.be/synthesis/
 .
 It provides a Brazilian Portuguese female voice to be used with the MBROLA
 program.

Bug#837442: ITP: mbrola-lt1 -- Lithuanian male voice for Mbrola

[Samuel Thibault]

Package: wnpp
Version: N/A; reported 2016-09-11
Severity: wishlist
Owner: Samuel Thibault 

* Package name: mbrola-lt1
  Version : 1.0
  Upstream Author : Faculte Polytechnique de  Mons  -  mbrola team 
 
* URL : http://tcts.fpms.ac.be/synthesis
* License : see the file readme.txt in the source zip: non-free as in
without source code, and for non-commercial, non-military
purposes, with and only with the mbrola package made
available by the author.
  Description : Lithuanian male voice for Mbrola
 This package contains a Lithuanian diphone database provided in the context
 of the MBROLA project see: http://tcts.fpms.ac.be/synthesis/
 .
 It provides a Lithuanian male voice to be used with the MBROLA
 program.

Bug#836764: recoll: default mimemap is confusing

[Jean-Francois Dockes]

Martin Monperrus writes:
 > Package: recoll
 > Version: 1.22.3-1
 > Severity: normal
 > 
 > I've just spent a long time to understand why my indexing configuration 
 > fails.
 > 
 > I've finally realized that the cause is that the mimetypes defined in mimemap
 > are different from the ones returned by 'file -i'.
 > 
 > Example:
 > text/x-text (file) vs application/x-tex (mimemap)
 > application/vnd.oasis.opendocument.text (file) vs
 > application/vnd.sun.xml.writer (mimemap)
 > 
 > For sake of least astonishment, they could be aligned.

Some of the mimemap values are obsolete, but changing them would more or
less force every Recoll user to reset their index, so it will only happen
in conjunction with another change which would force a reindex.

This is more an upstream issue than one specific to the Debian package
actually.  I am taking a note of the issue, and the values can be fixed at
the next occasion.

I'd be curious to know how you hit this problem with these file types which
usually have proper extensions ?

J.F. Dockes

Bug#837441: ITP: mbrola-ir1 -- Farsi male voice for Mbrola

[Samuel Thibault]

Package: wnpp
Version: N/A; reported 2016-09-11
Severity: wishlist
Owner: Samuel Thibault 

* Package name: mbrola-ir1
  Version : 0.0.20040310
  Upstream Author : Faculte Polytechnique de  Mons  -  mbrola team 
 
* URL : http://tcts.fpms.ac.be/synthesis
* License : see the file readme.txt in the source zip: non-free as in
without source code, and for non-commercial, non-military
purposes, with and only with the mbrola package made
available by the author.
  Description : Farsi male voice for Mbrola
 This package contains a Farsi diphone database provided in the context
 of the MBROLA project see: http://tcts.fpms.ac.be/synthesis/
 .
 It provides a Farsi male voice to be used with the MBROLA
 program.

Bug#837443: ITP: mbrola-lt2 -- Lithuanian male voice for Mbrola

[Samuel Thibault]

Package: wnpp
Version: N/A; reported 2016-09-11
Severity: wishlist
Owner: Samuel Thibault 

* Package name: mbrola-lt2
  Version : 1.0
  Upstream Author : Faculte Polytechnique de  Mons  -  mbrola team 
 
* URL : http://tcts.fpms.ac.be/synthesis
* License : see the file readme.txt in the source zip: non-free as in
without source code, and for non-commercial, non-military
purposes, with and only with the mbrola package made
available by the author.
  Description : Lithuanian male voice for Mbrola
 This package contains a Lithuanian diphone database provided in the context
 of the MBROLA project see: http://tcts.fpms.ac.be/synthesis/
 .
 It provides a Lithuanian male voice to be used with the MBROLA
 program.

Bug#837444: ITP: mbrola-mx1 -- Mexican Spanish male voice for Mbrola

[Samuel Thibault]

Package: wnpp
Version: N/A; reported 2016-09-11
Severity: wishlist
Owner: Samuel Thibault 

* Package name: mbrola-mx1
  Version : 0.1
  Upstream Author : Faculte Polytechnique de  Mons  -  mbrola team 
 
* URL : http://tcts.fpms.ac.be/synthesis
* License : see the file readme.txt in the source zip: non-free as in
without source code, and for non-commercial, non-military
purposes, with and only with the mbrola package made
available by the author.
  Description : Mexican Spanish male voice for Mbrola
 This package contains a Mexican Spanish diphone database provided in the 
context
 of the MBROLA project see: http://tcts.fpms.ac.be/synthesis/
 .
 It provides a Mexican Spanish male voice to be used with the MBROLA
 program.

Bug#837440: ITP: mbrola-de3 -- German female voice for Mbrola

[Samuel Thibault]

Package: wnpp
Version: N/A; reported 2016-09-11
Severity: wishlist
Owner: Samuel Thibault 

* Package name: mbrola-de3
  Version : 1.0
  Upstream Author : Faculte Polytechnique de  Mons  -  mbrola team 
 
* URL : http://tcts.fpms.ac.be/synthesis
* License : see the file readme.txt in the source zip: non-free as in
without source code, and for non-commercial, non-military
purposes, with and only with the mbrola package made
available by the author.
  Description : German female voice for Mbrola
 This package contains a German diphone database provided in the context
 of the MBROLA project see: http://tcts.fpms.ac.be/synthesis/
 .
 It provides a German female voice to be used with the MBROLA
 program.

Bug#837438: ITP: mbrola-de1 -- German female voice for Mbrola

[Samuel Thibault]

Package: wnpp
Version: N/A; reported 2016-09-11
Severity: wishlist
Owner: Samuel Thibault 

* Package name: mbrola-de1
  Version : 2.050
  Upstream Author : Faculte Polytechnique de  Mons  -  mbrola team 
 
* URL : http://tcts.fpms.ac.be/synthesis
* License : see the file readme.txt in the source zip: non-free as in
without source code, and for non-commercial, non-military
purposes, with and only with the mbrola package made
available by the author.
  Description : German female voice for Mbrola
 This package contains a German diphone database provided in the context
 of the MBROLA project see: http://tcts.fpms.ac.be/synthesis/
 .
 It provides a German female voice to be used with the MBROLA
 program.

Bug#837439: ITP: mbrola-de2 -- German male voice for Mbrola

[Samuel Thibault]

Package: wnpp
Version: N/A; reported 2016-09-11
Severity: wishlist
Owner: Samuel Thibault 

* Package name: mbrola-de2
  Version : 0.0.19990106
  Upstream Author : Faculte Polytechnique de  Mons  -  mbrola team 
 
* URL : http://tcts.fpms.ac.be/synthesis
* License : see the file readme.txt in the source zip: non-free as in
without source code, and for non-commercial, non-military
purposes, with and only with the mbrola package made
available by the author.
  Description : German male voice for Mbrola
 This package contains a German diphone database provided in the context
 of the MBROLA project see: http://tcts.fpms.ac.be/synthesis/
 .
 It provides a German male voice to be used with the MBROLA
 program.

Bug#837403: connectome-workbench: FTBFS with bindnow and PIE enabled

[Yaroslav Halchenko]

On September 11, 2016 6:59:58 AM EDT, Balint Reczey  
wrote:
>Source: connectome-workbench
>Version: 1.2.3-1
>Severity: important
>User: bal...@balintreczey.hu
>Usertags: pie-bindnow-20160906
>Justification: FTBFS on amd64 with extra hardening
>
>Hi,
>
>During a rebuild of all packages in sid, your package failed to build
>on
>amd64 with patched GCC and dpkg.
>
>The rebuild tested if packages are ready for a transition
>enabling PIE and bindnow for amd64.
>
>For more information about the changes to sid's dpkg and GCC please
>visit:
> https://wiki.debian.org/Hardening/PIEByDefaultTransition
>
>Relevant part (hopefully):
>...
>/usr/bin/c++   -fopenmp -g -O2 -fdebug-prefix-map=/<>=.
>-fstack-protector-strong -Wformat
> -Werror=format-security -DNDEBUG -Wdate-time -D_FORTIFY_SOURCE=2
>-Wl,-z,relro -Wl,-z,now -Wl,--as
>-needed CMakeFiles/wb_command.dir/wb_command.cxx.o
>CMakeFiles/wb_command.dir/qrc_resources.cxx.o  -o w
>b_command -rdynamic ../Commands/libCommands.a
>../Operations/libOperations.a ../Algorithms/libAlgorithm
>s.a ../OperationsBase/libOperationsBase.a ../Brain/libBrain.a -lftgl
>../Files/libFiles.a ../Annotation
>s/libAnnotations.a ../Palette/libPalette.a ../Gifti/libGifti.a
>../Cifti/libCifti.a ../Nifti/libNifti.a
> ../Charting/libCharting.a ../FilesBase/libFilesBase.a
>../Scenes/libScenes.a ../Xml/libXml.a ../Common/libCommon.a
>../Quazip/libQuazip.a -lfreetype -lQtGui -lQtXml -lQtNetwork -lQtCore
>-lOSMesa -lGL -Wl,-Bstatic -lGLU -Wl,-Bdynamic -lz
>/usr/bin/ld:
>/usr/lib/gcc/x86_64-linux-gnu/6/../../../x86_64-linux-gnu/libGLU.a(error.o):
>relocation R_X86_64_32 against `.rodata' can not be used when making a
>shared object; recompile with -fPIC
>/usr/bin/ld:
>/usr/lib/gcc/x86_64-linux-gnu/6/../../../x86_64-linux-gnu/libGLU.a(glue.o):
>relocation R_X86_64_32S against `.rodata' can not be used when making a
>shared object; recompile with -fPIC
>/usr/bin/ld:
>/usr/lib/gcc/x86_64-linux-gnu/6/../../../x86_64-linux-gnu/libGLU.a(mipmap.o):
>relocation R_X86_64_32 against `.text' can not be used when making a
>shared object; recompile with -fPIC
>/usr/bin/ld:
>/usr/lib/gcc/x86_64-linux-gnu/6/../../../x86_64-linux-gnu/libGLU.a(tess.o):
>relocation R_X86_64_32S against `.text' can not be used when making a
>shared object; recompile with -fPIC
>/usr/bin/ld:
>/usr/lib/gcc/x86_64-linux-gnu/6/../../../x86_64-linux-gnu/libGLU.a(render.o):
>relocation R_X86_64_32S against `.text' can not be used when making a
>shared object; recompile with -fPIC
>/usr/bin/ld:
>/usr/lib/gcc/x86_64-linux-gnu/6/../../../x86_64-linux-gnu/libGLU.a(sweep.o):
>relocation R_X86_64_32S against hidden symbol `__gl_noCombineData' can
>not be used when making a shared object
>/usr/bin/ld: final link failed: Nonrepresentable section on output
>collect2: error: ld returned 1 exit status
>CommandLine/CMakeFiles/wb_command.dir/build.make:419: recipe for target
>'CommandLine/wb_command' failed
>
>...
>
>The full build log is available from:
>https://people.debian.org/~rbalint/build-logs/pie-bindnow-20160906/connectome-workbench_1.2.3-1_amd64.build.gz
>
>Dynamically linking to libGLU would probably fix the problem.
>
>Thanks,
>Balint

So the actual issue is within libGLU.a which needs to be rebuilt with -fPIC, ie 
nothing to do on my end?
-- 
Sent from a phone which beats iPhone.

Bug#836835: gnome-control-center: segfault when editing a cable network

[Michael Biebl]

Control: forwarded -1 https://bugzilla.gnome.org/show_bug.cgi?id=771251

Hi

Am 11.09.2016 um 17:44 schrieb Ara Keary:
> 
> the same happens here: when editing a wired connection in the network applet 
> of
> gnome control center, a segmentation fault occurs *whenever*
>  1) editing an existing wired connection
>  2) adding a new wired connection with manual IPV4 address settings: the
> segmentation fault occurs whenever filling the last missing address, whichever
> order the adresses are typed in. The new connection is not saved.
> 
> This renders the network applet unusable.
> 
> A message appears in /etc/syslog as:
> 
> kernel: [  622.950848] gnome-control-c[5975]: segfault at 1 ip 
> 7f846654f85d
> sp 7ffcf9e106e8 error 4 in libgobject-2.0.so.0.4906.0[7f846651b000+51000]
> 
> Any workaround to add a new wired connection?
> 

I was able to reproduce the crash with the steps you outlined, so I've
forwarded it upstream.

For the time being, you can use nm-connection-editor from the
network-manager-gnome package.

Regards,
Michael


-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#691726: ITA: inform6-mode -- Emacs mode for editing Inform files

[Ben Finney]

Control: retitle -1 ITA: inform6-mode -- Emacs mode for editing Inform files

On 11-Sep-2016, Ben Finney wrote:

> I now Intend To Package the latest upstream version, and continue the
> Debian packaging in a published VCS.

This is an Intent To Adopt, of course.

-- 
 \ “[H]ow deep can a truth be — indeed, how true can it be — if it |
  `\ is not built from facts?” —Kathryn Schulz, 2015-10-19 |
_o__)  |
Ben Finney 


signature.asc
Description: PGP signature

Bug#834964: testresources: FTBFS too much often (failing tests)

[Thomas Goirand]

On 09/10/2016 09:00 PM, Santiago Vila wrote:
> Some people here have the theory (which I don't share) that it's ok
> that a package FTBFS sometimes as far as it builds "most of the time",
> i.e. the RC-ness is apparently based on a statistical measure.

Build predictability (and in fact, reproducibility) is indeed key, and I
share your view.

> My reaction to that is to file bugs with the subject that you have
> already seen before this one: FTBFS too much often.
> 
> However, since a 100% failure rate is also "too much" (our goal is a
> failure rate of 0%), the subject is also ok, by definition, for
> packages which always fail.

I don't agree, I find it confusing: if a package always fail, you're
here telling "too much" which makes the reader believe that sometimes it
does build well, which is sometimes not the case with the bugs you reported.

> Since I use a template and a script to create the bug reports, I don't
> bother to remove the "too much often" from the subject when the
> package always fail.

IMO, if you want to keep always the same build title, just remove "too
much often". If you experienced an FTBFS, that's enough for an RC. Best
would be if you could differentiate, but if you can't, just don't write
about the fact it sometimes work.

> Closing the bug without asking is a little bit rude, IMHO.

Here, it is my view that you are interpreting this as rude. Bug triaging
in a project as big as packaging OpenStack is very important. I just
thought it was a false positive: this may happen, you know. You see,
everything is about perspective. Like the CoC says: assume good faith...

> I'm a human like you and I make mistakes

Sure, and so am I.

> Congratulations. I estimate that the failure rate is around 8.2% so
> make sure that you try enough times for something with such
> probability to happen.

Considering that in debian/rules, there's the exclude thing, I'd say it
smells like a bug in nose, which should exclude the test but doesn't.
I'll just patch out the test instead of trying to exclude it then, so
we'll be sure that it will not fail to build.

> But you will really go faster if you read the message I wrote
> yesterday night:
> 
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=834964#20
> 
> After you read it, please consider raising to serious, it's a FTBFS bug.

It doesn't really mater, as I'll fix it ASAP.

Cheers,

Thomas Goirand (zigo)

Bug#836835: gnome-control-center: segfault when editing a cable network

[Ara Keary]

Package: gnome-control-center
Version: 1:3.21.90-1
Followup-For: Bug #836835

Dear maintainers,

the same happens here: when editing a wired connection in the network applet of
gnome control center, a segmentation fault occurs *whenever*
 1) editing an existing wired connection
 2) adding a new wired connection with manual IPV4 address settings: the
segmentation fault occurs whenever filling the last missing address, whichever
order the adresses are typed in. The new connection is not saved.

This renders the network applet unusable.

A message appears in /etc/syslog as:

kernel: [  622.950848] gnome-control-c[5975]: segfault at 1 ip 7f846654f85d
sp 7ffcf9e106e8 error 4 in libgobject-2.0.so.0.4906.0[7f846651b000+51000]

Any workaround to add a new wired connection?

Best,

Ara



-- System Information:
Debian Release: stretch/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.7.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages gnome-control-center depends on:
ii  accountsservice0.6.40-3
ii  apg2.2.3.dfsg.1-4
ii  colord 1.3.3-2
ii  desktop-file-utils 0.23-1
ii  gnome-control-center-data  1:3.21.90-1
ii  gnome-desktop3-data3.21.90-3
ii  gnome-settings-daemon  3.21.90-2
ii  gsettings-desktop-schemas  3.21.4-2
ii  libaccountsservice00.6.40-3
ii  libatk1.0-02.21.90-2
ii  libc6  2.24-2
ii  libcairo-gobject2  1.14.6-1+b1
ii  libcairo2  1.14.6-1+b1
ii  libcanberra-gtk3-0 0.30-3
ii  libcanberra0   0.30-3
ii  libcheese-gtk253.21.3-1
ii  libcheese8 3.21.3-1
ii  libclutter-1.0-0   1.26.0-2
ii  libclutter-gtk-1.0-0   1.8.0-2
ii  libcolord-gtk1 0.1.26-1
ii  libcolord2 1.3.3-2
ii  libcups2   2.1.4-4
ii  libfontconfig1 2.11.0-6.7
ii  libgdk-pixbuf2.0-0 2.35.4-4
ii  libglib2.0-0   2.49.6-1
ii  libgnome-bluetooth13   3.20.0-1
ii  libgnome-desktop-3-12  3.21.90-3
ii  libgoa-1.0-0b  3.21.91-1
ii  libgoa-backend-1.0-1   3.21.91-1
ii  libgrilo-0.3-0 0.3.1-1
ii  libgtk-3-0 3.21.5-3
ii  libgtop-2.0-10 2.34.1-2
ii  libgudev-1.0-0 230-3
ii  libibus-1.0-5  1.5.11-1
ii  libkrb5-3  1.14.3+dfsg-2
ii  libmm-glib01.6.0-1
ii  libnm0 1.4.0-3
ii  libnma01.4.0-2
ii  libpango-1.0-0 1.40.2-1
ii  libpangocairo-1.0-01.40.2-1
ii  libpolkit-gobject-1-0  0.105-16
ii  libpulse-mainloop-glib09.0-3
ii  libpulse0  9.0-3
ii  libpwquality1  1.3.0-1
ii  libsmbclient   2:4.4.5+dfsg-3
ii  libsoup2.4-1   2.55.90-1
ii  libupower-glib30.99.4-3
ii  libwacom2  0.19-1
ii  libx11-6   2:1.6.3-1
ii  libxi6 2:1.7.6-1
ii  libxml22.9.4+dfsg1-1+b1

Versions of packages gnome-control-center recommends:
ii  cracklib-runtime  2.9.2-3
ii  cups-pk-helper0.2.6-1
ii  gkbd-capplet  3.6.0-1
ii  gnome-online-accounts 3.21.91-1
ii  gnome-user-guide  3.20.2-1
ii  gnome-user-share  3.18.2-1
ii  iso-codes 3.70-1
ii  libnss-myhostname 231-5
ii  mousetweaks   3.12.0-1
ii  network-manager-gnome 1.4.0-2
ii  policykit-1   0.105-16
pn  pulseaudio-module-bluetooth   
ii  realmd0.16.3-1
ii  rygel 0.30.3-1
ii  rygel-tracker 0.30.3-1
ii  system-config-printer-common  1.5.7-2

Versions of packages gnome-control-center suggests:
ii  gstreamer1.0-pulseaudio  1.8.3-1+b1
ii  libcanberra-gtk-module   0.30-3
ii  libcanberra-gtk3-module  0.30-3
ii  x11-xserver-utils7.7+7

-- no debconf information

Bug#837407: pkg_resources: ‘load_entry_point’ crashes without Setuptools

[Ben Finney]

Control: reassign -1 python-pkg-resources
Control: retitle -1 pkg_resources: ‘load_entry_point’ crashes without Setuptools
Control: forcemerge 836710 -1

On 11-Sep-2016, Helge Kreutzmann wrote:

> Installing either pypy-setuptools or python3-setuptools does not
> help but python-setuptools does the trick.
> 
> I do no install recommends by default (but I don't see
> python-setuptools being recommended by dput).

Yes, the documented API of ‘pkg_resources.load_entry_point’ is all
that is needed, so no dependency on Setuptools is declared.

The bug is that the ‘pkg_resources’ module installed by
‘python-pkg-resources’ currently does not provide the API as documented.

Thanks for the report. I am merging it with the existing report for
this bug.

-- 
 \  “I used to be a proofreader for a skywriting company.” —Steven |
  `\Wright |
_o__)  |
Ben Finney 


signature.asc
Description: PGP signature

Bug#837372: mutt: Colour of gnupg output changed to bold yellow

[Antonio Radici]

Control: tag -1 +pending

On Sat, Sep 10, 2016 at 09:41:11PM -0400, Peter Colberg wrote:
> Package: mutt
> Version: 1.7.0-2
> Severity: minor
> 
> Dear Maintainer,
> 
> Since the switch to gpgme, the entire gnupg output enclosed between
> [-- Begin signature information --] and [-- End signature information --]
> is highlighted in bold yellow, which makes it quite hard to read.
> 
> Could you revert the gnupg output back to normal text colour?
> 

I've pushed a patch in git to fix the issue. I'll let upstream know.

This will be part of 1.7.0-4

Bug#837435: ITP: colorspacious -- powerful, accurate, and easy-to-use Python library for doing colorspace conversions

[Sandro Tosi]

Package: wnpp
Severity: wishlist
Owner: Sandro Tosi 

* Package name: colorspacious
  Version : 1.0.0
  Upstream Author : Nathaniel J. Smith
* URL : https://github.com/njsmith/colorspacious
* License : MIT
  Programming Lang: (Python
  Description : powerful, accurate, and easy-to-use Python library for 
doing colorspace conversions


needed by matplotlib 2.x

Bug#837434: binpac: Please build libbinpac.a with -fPIC

[Balint Reczey]

Source: binpac
Version: 0.44-1
Severity: important
User: bal...@balintreczey.hu
Usertags: pie-bindnow-20160906
Justification: makes bro FTBFS on amd64 with extra hardening
Affects: bro

Dear Maintainers,

During a rebuild of all packages in sid, dicomnifti failed to build on
amd64 with patched GCC and dpkg. The root cause seems to be that
libbinpac.a is shipped as a non-PIC library.

The rebuild tested if packages are ready for a transition
enabling PIE and bindnow for amd64.

For more information about the changes to sid's dpkg and GCC please
visit:
 https://wiki.debian.org/Hardening/PIEByDefaultTransitio

Relevant part of bro's build log:
...
[100%] Linking CXX executable bro
cd /<>/bro-2.4.1+dfsg/build/src && /usr/bin/cmake -E
cmake_link_script CMakeFiles/bro.dir/link.txt --verbose=1
/usr/bin/c++   -g -O2 -fdebug-prefix-map=/<>/bro-2.4.1+dfsg=.
-fstack-protector-strong -Wformat -Werror=format-security -Wdate-time
-D_FORTIFY_SOURCE=2  -Wall -Wno-unused   -Wl,-z,relro -Wl,-z,no
w CMakeFiles/bro.dir/version.c.o CMakeFiles/bro.dir/binpac-lib_pac.cc.o
CMakeFiles/bro.dir/binpac_bro-lib_pac.cc.o
CMakeFiles/bro.dir/rule-parse.cc.o CMakeFiles/bro.dir/re-parse.cc.o
CMakeFiles/bro.dir/par
se.cc.o CMakeFiles/bro.dir/rule-scan.cc.o
CMakeFiles/bro.dir/re-scan.cc.o CMakeFiles/bro.dir/scan.cc.o
CMakeFiles/bro.dir/plugins.cc.o CMakeFiles/bro.dir/main.cc.o
CMakeFiles/bro.dir/net_util.cc.o CMakeFil
es/bro.dir/util.cc.o CMakeFiles/bro.dir/module_util.cc.o
CMakeFiles/bro.dir/Anon.cc.o CMakeFiles/bro.dir/Attr.cc.o
CMakeFiles/bro.dir/Base64.cc.o CMakeFiles/bro.dir/Brofiler.cc.o
CMakeFiles/bro.dir/BroStri
ng.cc.o CMakeFiles/bro.dir/CCL.cc.o CMakeFiles/bro.dir/ChunkedIO.cc.o
CMakeFiles/bro.dir/CompHash.cc.o CMakeFiles/bro.dir/Conn.cc.o
CMakeFiles/bro.dir/ConvertUTF.c.o CMakeFiles/bro.dir/DFA.cc.o CMakeFiles/
bro.dir/DbgBreakpoint.cc.o CMakeFiles/bro.dir/DbgHelp.cc.o
CMakeFiles/bro.dir/DbgWatch.cc.o CMakeFiles/bro.dir/Debug.cc.o
CMakeFiles/bro.dir/DebugCmds.cc.o CMakeFiles/bro.dir/DebugLogger.cc.o
CMakeFiles/br
o.dir/Desc.cc.o CMakeFiles/bro.dir/Dict.cc.o
CMakeFiles/bro.dir/Discard.cc.o CMakeFiles/bro.dir/DNS_Mgr.cc.o
CMakeFiles/bro.dir/EquivClass.cc.o CMakeFiles/bro.dir/Event.cc.o
CMakeFiles/bro.dir/EventHandler
.cc.o CMakeFiles/bro.dir/EventLauncher.cc.o
CMakeFiles/bro.dir/EventRegistry.cc.o CMakeFiles/bro.dir/Expr.cc.o
CMakeFiles/bro.dir/File.cc.o CMakeFiles/bro.dir/Flare.cc.o
CMakeFiles/bro.dir/Frag.cc.o CMakeF
iles/bro.dir/Frame.cc.o CMakeFiles/bro.dir/Func.cc.o
CMakeFiles/bro.dir/Hash.cc.o CMakeFiles/bro.dir/ID.cc.o
CMakeFiles/bro.dir/IntSet.cc.o CMakeFiles/bro.dir/IP.cc.o
CMakeFiles/bro.dir/IPAddr.cc.o CMakeFi
les/bro.dir/List.cc.o CMakeFiles/bro.dir/Reporter.cc.o
CMakeFiles/bro.dir/NFA.cc.o CMakeFiles/bro.dir/Net.cc.o
CMakeFiles/bro.dir/NetVar.cc.o CMakeFiles/bro.dir/Obj.cc.o
CMakeFiles/bro.dir/OpaqueVal.cc.o C
MakeFiles/bro.dir/OSFinger.cc.o CMakeFiles/bro.dir/PacketFilter.cc.o
CMakeFiles/bro.dir/PersistenceSerializer.cc.o
CMakeFiles/bro.dir/Pipe.cc.o CMakeFiles/bro.dir/PolicyFile.cc.o
CMakeFiles/bro.dir/PrefixT
able.cc.o CMakeFiles/bro.dir/PriorityQueue.cc.o
CMakeFiles/bro.dir/Queue.cc.o CMakeFiles/bro.dir/RandTest.cc.o
CMakeFiles/bro.dir/RE.cc.o CMakeFiles/bro.dir/Reassem.cc.o
CMakeFiles/bro.dir/RemoteSerializer
.cc.o CMakeFiles/bro.dir/Rule.cc.o CMakeFiles/bro.dir/RuleAction.cc.o
CMakeFiles/bro.dir/RuleCondition.cc.o
CMakeFiles/bro.dir/RuleMatcher.cc.o CMakeFiles/bro.dir/ScriptAnaly.cc.o
CMakeFiles/bro.dir/SmithW
aterman.cc.o CMakeFiles/bro.dir/Scope.cc.o
CMakeFiles/bro.dir/SerializationFormat.cc.o
CMakeFiles/bro.dir/SerialObj.cc.o CMakeFiles/bro.dir/Serializer.cc.o
CMakeFiles/bro.dir/Sessions.cc.o CMakeFiles/bro.d
ir/StateAccess.cc.o CMakeFiles/bro.dir/Stats.cc.o
CMakeFiles/bro.dir/Stmt.cc.o CMakeFiles/bro.dir/Tag.cc.o
CMakeFiles/bro.dir/Timer.cc.o CMakeFiles/bro.dir/Traverse.cc.o
CMakeFiles/bro.dir/Trigger.cc.o CMa
keFiles/bro.dir/TunnelEncapsulation.cc.o CMakeFiles/bro.dir/Type.cc.o
CMakeFiles/bro.dir/UID.cc.o CMakeFiles/bro.dir/Val.cc.o
CMakeFiles/bro.dir/Var.cc.o CMakeFiles/bro.dir/bsd-getopt-long.c.o
CMakeFiles/b
ro.dir/bro_inet_ntop.c.o CMakeFiles/bro.dir/cq.c.o
CMakeFiles/bro.dir/patricia.c.o CMakeFiles/bro.dir/setsignal.c.o
CMakeFiles/bro.dir/PacketDumper.cc.o CMakeFiles/bro.dir/strsep.c.o
CMakeFiles/bro.dir/mod
p_numtoa.c.o CMakeFiles/bro.dir/threading/BasicThread.cc.o
CMakeFiles/bro.dir/threading/Formatter.cc.o
CMakeFiles/bro.dir/threading/Manager.cc.o
CMakeFiles/bro.dir/threading/MsgThread.cc.o CMakeFiles/bro.d
ir/threading/SerialTypes.cc.o
CMakeFiles/bro.dir/threading/formatters/Ascii.cc.o
CMakeFiles/bro.dir/threading/formatters/JSON.cc.o
CMakeFiles/bro.dir/plugin/Component.cc.o CMakeFiles/bro.dir/plugin/Manager
.cc.o CMakeFiles/bro.dir/plugin/Plugin.cc.o
CMakeFiles/bro.dir/nb_dns.c.o  -o bro -rdynamic
analyzer/protocol/arp/libplugin-Bro-ARP.a
analyzer/protocol/ayiya/libplugin-Bro-AYIYA.a analyzer/protocol/backdoo
r/libplugin-Bro-BackDoor.a
analyzer/protocol/bittorrent/libplugin-Bro-BitTorrent.a

Bug#837433: cargo: FTBFS with bindnow and PIE enabled

[Balint Reczey]

Source: cargo
Version: 0.11.0-2
Severity: important
User: bal...@balintreczey.hu
Usertags: pie-bindnow-20160906
Justification: FTBFS on amd64 with extra hardening

Hi,

During a rebuild of all packages in sid, your package failed to build on
amd64 with patched GCC and dpkg.

The rebuild tested if packages are ready for a transition
enabling PIE and bindnow for amd64.

For more information about the changes to sid's dpkg and GCC please
visit:
 https://wiki.debian.org/Hardening/PIEByDefaultTransition

Relevant part (hopefully):
...
   Compiling strsim v0.3.0 (registry file:///<>/vendor/index)
 Running `rustc 
.cargohome/registry/src/-797c7c204f0503ca/strsim-0.3.0/src/lib.rs --crate-name 
str
sim --crate-type lib -C opt-level=3 -C metadata=17a8c122310cffc9 -C 
extra-filename=-17a8c122310cffc9 -
-out-dir /<>/target/x86_64-unknown-linux-gnu/release/deps 
--emit=dep-info,link --target x
86_64-unknown-linux-gnu -L 
dependency=/<>/target/x86_64-unknown-linux-gnu/release/deps -L
 dependency=/<>/target/x86_64-unknown-linux-gnu/release/deps 
--cap-lints allow -C link-ar
gs=-Wl,-z,relro -Wl,-z,now`
error: unknown lint: `l,_z,now`
note: requested on the command line with `-W l,_z,now`
error: aborting due to previous error
Build failed, waiting for other jobs to finish...
error: unknown lint: `l,_z,now`
note: requested on the command line with `-W l,_z,now`
error: aborting due to previous error
error: unknown lint: `l,_z,now`
note: requested on the command line with `-W l,_z,now`
error: aborting due to previous error
error: unknown lint: `l,_z,now`
note: requested on the command line with `-W l,_z,now`
error: aborting due to previous error
error: Could not compile `matches`.
...

The full build log is available from:
 
https://people.debian.org/~rbalint/build-logs/pie-bindnow-20160906/cargo_0.11.0-2_amd64.build.gz

Thanks,
Balint

Bug#832285: Symlink /usr/lib/libompitrace.so.0 pointing to wrong file

[Guus Sliepen]

I'm writing a tool called debsyscheck that tries to find and repair
problems with a debian installation. It found this problem on one of my
systems:

[guus@haplo]~/debsyscheck>sudo ./debsyscheck
STAGE 1: gathering information about installed packages
STAGE 2: checking for missing files
[...]
Missing file /usr/lib/libompitrace.so.0 from package libopenmpi2

Reinstalling libopenmpi2 does not fix the problem. After some digging,
it looks like the package does contain this file, but it links to
libompitrace.so.0.0.0, which is wrong. During the postinst phase,
ldconfig notices the dangling symlink in /usr/lib and removes it.

This symlink should not be in the package at all; ldconfig normally will
create such symlinks automatically, and indeed it creates the correct
symlink (libompitrace.so.20 -> libompitrace.so.20.0.0).

-- 
Met vriendelijke groet / with kind regards,
  Guus Sliepen 


signature.asc
Description: Digital signature

Bug#837432: ftp.debian.org: RM: libpoe-api-peek-perl -- ROM, RC buggy, abandonned upstream

[intrigeri]

Package: ftp.debian.org
Severity: normal

Hi,

we (pkg-perl) would like to remove libpoe-api-peek-perl from sid.
It's been removed from testing 10 months ago since it FTBFS with Perl
5.22; and upstream does not seem interested in fixing this.

I guess that #837430 and #837431 need to be done before removing
libpoe-api-peek-perl.

References:
https://bugs.debian.org/789381
https://rt.cpan.org/Public/Bug/Display.html?id=103803
https://lists.debian.org/debian-perl/2016/06/msg00038.html

Thanks in advance!

Cheers,
-- 
intrigeri

-- 
intrigeri

Bug#837431: ftp.debian.org: RM: libpoe-component-server-http-perl -- ROM, build-depends on libpoe-api-peek-perl

[intrigeri]

Package: ftp.debian.org
Severity: normal

Hi,

this leaf package with very low popcon depends on
libpoe-api-peek-perl, that we (pkg-perl) would like to remove (RM bug
will follow). Please remove it from sid.

References:
https://bugs.debian.org/789381
https://lists.debian.org/debian-perl/2016/06/msg00038.html

Thanks in advance!

Cheers,
-- 
intrigeri

Bug#833433: jessie-pu: package flashplugin-nonfree/1:3.6.1+deb8u1

[Adam D. Barratt]

Control; tags -1 + pending

On Sun, 2016-09-11 at 08:04 +, Bart Martens wrote:
> On Sat, Sep 10, 2016 at 04:59:29PM +0100, Adam D. Barratt wrote:
> > Please go ahead, bearing in mind that the window for 8.6 closes this
> > weekend.
> 
> Apology accepted. I uploaded for stable just now.

Flagged for acceptance.

Regards,

Adam

Bug#837430: ftp.debian.org: RM: libpoe-component-ikc-perl -- ROM, depends on libpoe-api-peek-perl

[intrigeri]

Package: ftp.debian.org
Severity: normal

Hi,

this leaf package with very low popcon depends on
libpoe-api-peek-perl, that we (pkg-perl) would like to remove (RM bug
will follow). It's been removed from testing 10 months ago.
Please remove it from sid.

References:
https://bugs.debian.org/789381
https://lists.debian.org/debian-perl/2016/06/msg00038.html

Thanks in advance!

Cheers,
-- 
intrigeri

Bug#837429: libdap23: Package description mentions link to official documentation but link is not present

[Beatrice Torracca]

Package: libdap23
Severity: minor

Hi!

the package description now reads:
«The DAP is a NASA community standard; here is the official link to the
specification.»

but there is no link in the description.

Thanks,

beatrice.

Bug#837406: caff: "gpg: error reading key: No public key"

[Marcus Frings]

On Sun, 11 Sep 2016 16:04:21 +0200, Guilhem Moulin
 wrote:

> Also, does the recv-key command work when you run it manually?
> 
> ~$ gpg --batch --no-tty --homedir ~/.caff/gnupghome \
> --trust-model=always --no-options --use-agent \
> --keyserver=hkps://hkps.pool.sks-keyservers.net \
> --keyserver-options=no-honor-keyserver-url \
> --keyserver-options=include-revoked --no-greeting
> --ask-cert-level \ --set-policy-url=http://www.gothgoose.net/pgp/ \
> --personal-cipher-preferences='AES256 AES192 AES CAST5' \
> --personal-digest-preferences='SHA512 SHA384 SHA256 SHA224' \
> --cert-digest-algo=SHA512 --no-autostart
> --no-auto-check-trustdb \ --with-fingerprint --with-colons
> --recv-keys 12DA91AD71D80831 gpg: key 12DA91AD71D80831: public key …
> imported gpg: Total number processed: 1
> gpg:   imported: 1

Yes, I can confirm that running the command manually works perfectly
here.

Best regards,
Marcus
-- 
RWTH Aachen University, Institute of Organic Chemistry,
Landoltweg 1, 52074 Aachen, Germany

GPG key: 6C3458EE737CE22C0EF9FA3BE88FEBBE202CE599 (ed25519, preferred)
GPG key: 0138DA92EDFFB27DD270F86DB475E207BAB58229 (dsa1024, disfavoured)


pgp7jHR2C_Fcd.pgp
Description: OpenPGP digital signature

Bug#813969: O: eyed

[Gaetano Guerriero]

> I suspect Alex never saw your email.  I would be happy to review and
> sponsor, and my
> sponsoring preferences are available from
> http://www.hungry.com/~pere/debian-sponsoring.html >.

Thank you for your intereset.
I've uploaded again to debian mentors:
https://mentors.debian.net/debian/pool/main/e/eyed3/eyed3_0.7.9-1.dsc

Bug#827296: - connman: Connman slow down the boot when no network available

[Gianfranco Costamagna]

Hi,

>Problem exists up to libgnutls30:amd64 3.5.3-4 at the moment on my  
>Debian Sid. So ">= 3.5.3-2" is staying true until falsified.
>
>The graphical plot does not show further information than  
>connman.service being in the state "Activating" for the defined  
>TimeoutStartSec, symbolized by a red bar.


interesting, since gnutls seems to have a regression somewhere, can
we please know which version is the first one with the issue?

thanks,
G.

Bug#835043: nemo: crashes ...

[Norbert Preining]

retitle 835043 nemo: crashes in bookmark code
thanks

Hi Max,

I have now built my own nemo and installed the dbgsym debs to debug
the crashes I see when opening a pdf from the desktop by double
click.

And here is the probably relevant part:
#28 0x7fb192203f17 in ?? ()
   from /usr/lib/x86_64-linux-gnu/gio/modules/libgvfsdbus.so
#29 0x7fb192208f6b in ?? ()
   from /usr/lib/x86_64-linux-gnu/gio/modules/libgvfsdbus.so
#30 0x004c958e in nemo_bookmark_uri_get_exists (
bookmark=bookmark@entry=0x7fb1880019c0) at nemo-bookmark.c:769
#31 0x004c99ae in nemo_bookmark_connect_file (bookmark=0x7fb1880019c0)
at nemo-bookmark.c:341
#32 0x004c9c0d in nemo_bookmark_connect_file (bookmark=0x7fb1880019c0)
at nemo-bookmark.c:659
#33 nemo_bookmark_get_icon (bookmark=0x7fb1880019c0) at nemo-bookmark.c:656
#34 0x004ad611 in nemo_menus_append_bookmark_to_menu (
window=0x2203780, bookmark=bookmark@entry=0x7fb1880019c0, 
parent_path=parent_path@entry=0x563aa8 "/MenuBar/Other 
Menus/Bookmarks/Bookmarks Placeholder", parent_id=parent_id@entry=0x563ba5 
"dynamic", 
index_in_parent=index_in_parent@entry=1, 
action_group=action_group@entry=0x194d4a0, merge_id=13, 
refresh_callback=0x4ad770 , 
failed_callback=0x4ad0f0 )
at nemo-window-bookmarks.c:304
#35 0x004ad96f in update_bookmarks (window=0x2203780)
at nemo-window-bookmarks.c:381
#36 refresh_bookmarks_menu (window=0x2203780) at nemo-window-bookmarks.c:400
#37 0x004ada48 in nemo_window_initialize_bookmarks_menu (
window=0x2203780) at nemo-window-bookmarks.c:414
#38 0x004bf938 in nemo_window_constructed (self=)
at nemo-window.c:672
#39 0x0044093b in nemo_desktop_window_constructed (obj=0x2203780)
at nemo-desktop-window.c:82
...

(the rest is all in libgio etc)

Does that tell you anything? 

All the best

Norbert

--
PREINING Norbert + TeX Live & Debian Developer + http://www.preining.info
GPG: 0x860CDC13fp: F7D8 A928 26E3 16A1 9FA0  ACF0 6CAC A448 860C DC13

Bug#836908: [pkg-cinnamon] Bug#836908: nemo: desktop not properly redrawn

[Norbert Preining]

Hi Max,

> > I think this is fixed in nemo 3.0.6-2 with the set of upstream
> > patches that were added. Is this fixed for you as well?
> 
> Unfortunately not. See the attached screenshot where I have

Attached a fix, taken from pull request:
https://github.com/linuxmint/nemo/pull/1235

(git format-patch from the Debian nemo repo I cloned)

All the best

Norbert

--
PREINING Norbert + TeX Live & Debian Developer + http://www.preining.info
GPG: 0x860CDC13fp: F7D8 A928 26E3 16A1 9FA0  ACF0 6CAC A448 860C DC13
>From 273ea5e7ccf04e6415f9e349afd67be24be82c93 Mon Sep 17 00:00:00 2001
From: Norbert Preining 
Date: Sun, 11 Sep 2016 23:28:30 +0900
Subject: [PATCH] fix desktop redraw errors

---
 debian/changelog  |  7 ++
 debian/patches/fix-desktop-redraw | 51 +++
 debian/patches/series |  1 +
 3 files changed, 59 insertions(+)
 create mode 100644 debian/patches/fix-desktop-redraw

diff --git a/debian/changelog b/debian/changelog
index 445edd0..a1a41e3 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+nemo (3.0.6-2.1) UNRELEASED; urgency=medium
+
+  * Non-maintainer upload.
+  * fix desktop redraw issues with gtk >= 3.21
+
+ -- Norbert Preining   Sun, 11 Sep 2016 23:27:38 +0900
+
 nemo (3.0.6-2) unstable; urgency=medium
 
   * Import upstream patches:
diff --git a/debian/patches/fix-desktop-redraw b/debian/patches/fix-desktop-redraw
new file mode 100644
index 000..1997bc8
--- /dev/null
+++ b/debian/patches/fix-desktop-redraw
@@ -0,0 +1,51 @@
+Fix GTK 3.21.3 desktop redraw issue (#1231) #1235
+https://github.com/linuxmint/nemo/pull/1235
+---
+ libnemo-private/nemo-icon-container.c |2 ++
+ src/nemo-desktop-icon-view.c  |5 +
+ src/nemo-style-application.css|5 +
+ 3 files changed, 12 insertions(+)
+
+--- nemo-debian.git.orig/libnemo-private/nemo-icon-container.c
 nemo-debian.git/libnemo-private/nemo-icon-container.c
+@@ -4249,11 +4249,13 @@
+ 
+ 	container = NEMO_ICON_CONTAINER (widget);
+ 
++#if !GTK_CHECK_VERSION(3, 21, 0)
+ 	/* Ensure that the desktop window is native so the background
+ 	   set on it is drawn by X. */
+ 	if (container->details->is_desktop) {
+ 		gdk_x11_window_get_xid (gtk_layout_get_bin_window (GTK_LAYOUT (widget)));
+ 	}
++#endif
+ 
+ 	/* Set up DnD.  */
+ 	nemo_icon_dnd_init (container);
+--- nemo-debian.git.orig/src/nemo-desktop-icon-view.c
 nemo-debian.git/src/nemo-desktop-icon-view.c
+@@ -155,6 +155,11 @@
+ 	vclass->update_menus = real_update_menus;
+ 	vclass->get_view_id = real_get_id;
+ 
++#if GTK_CHECK_VERSION(3, 21, 0)
++	GtkWidgetClass *wclass = GTK_WIDGET_CLASS (class);
++	gtk_widget_class_set_css_name (wclass, "nemo-desktop-icon-view");
++#endif
++
+ 	g_type_class_add_private (class, sizeof (NemoDesktopIconViewDetails));
+ }
+ 
+--- nemo-debian.git.orig/src/nemo-style-application.css
 nemo-debian.git/src/nemo-style-application.css
+@@ -1,5 +1,10 @@
+ /* Desktop text stuff */
+ 
++.nemo-window.nemo-desktop-window notebook,
++.nemo-window.nemo-desktop-window paned {
++	background-color: transparent;
++}
++
+ .nemo-canvas-item {
+ border-radius: 3px;
+ }
diff --git a/debian/patches/series b/debian/patches/series
index 78c5e80..0f7a6c3 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -4,3 +4,4 @@ Migrate-away-from-gnome-common-deprecated-vars-and-macros.patch
 window-remove-custom-get_preferred_width-height-impl.patch
 pathbar-avoid-gtk-warnings.patch
 pathbar-remove-hardcoded-width-for-sliders.patch
+fix-desktop-redraw
-- 
2.9.3

Bug#835075: [PATCH] use fake-pinentry (Closes: #835075)

[gregor herrmann]

On Tue, 06 Sep 2016 10:56:15 -0400, Daniel Kahn Gillmor wrote:

> On Sat 2016-09-03 03:58:34 -0400, gregor herrmann wrote:
> > 1) After the build finishes there are 6 instances of gpg-agent
> >   running. In my cowbuilder setup this doesn't cause any issues and
> >   they time out after some time (1 minute I guess).
> right, those processes should time out after their temporary home
> directories are removed.  I'm working with upstream on making that
> timeout happen faster than a 1 minute delay, but it's not done yet.

Sounds good, thanks!
 
> > 3) This is in schroot-on-lvm. And here unmounting fails because of the
> >running gpg-agents leaving my schroot/lvm setup in a sad state.
> right, but this is a different issue, related to gpg-agent not.
> terminating rapidly enough when its socket is removed (same as (1)).
> I'm happy to track this as an issue, but it is a different issue than
> 835075.

True, I'm just a bit hesitant to upload a package which (at least in
my autopkgtest setup) fails autopkgtests and leaves a broken schroot
session and an orphaned lvm snapshot lying around. My fear is that
the same happens on the buildds and on ci.debian.net.
 
> > Another question is if we could have a fake-pinentry in some central
> > place (gnupg binary package?) to be used from all packages instead of
> > adding it everywhere?
> I am happy to ship something like fake-pinentry.pl (a pinentry that
> always returns "passphrase" and gamely accepts anything else) in a
> separate package, or even in gnupg as /usr/lib/gnupg/fake-pinentry, 

Cool, thanks.

> but
> it seems more important for me to get these fixes upstreamed.

Right, and I've asked David on IRC to look into this issue.
 
> I could even ship upstream's ./tests/openpgp/fake-pinentry.c there,
> though i worry that it now has too many features, which might actually
> encourage people to try to use it in non-dev environments; i think that
> would be a bad outcome.

Good point.
 
> Also, for language-specific libraries like lib*-perl, upstream will want
> this stuff to work on all platforms, and we can't guarantee that any
> gnupg binary package on other platforms will ship a fake-pinentry.

Good point as well :)
 
> So i think we should go ahead with this patch, as well as submitting it
> upstream.  I'm happy to try to replicate it on the other lib*-perl
> gnupg-related packages too if you're ok with this.

You're more than welcome to take a look at the other perl packages :)

TTBOMK we have:
#834522 libgnupg-perl
#835075 libmail-gnupg-perl
#834281 libgnupg-interface-perl
#835711 libconfig-identity-perl


Cheers,
gregor

-- 
 .''`.  Homepage https://info.comodo.priv.at/ - OpenPGP key 0xBB3A68018649AA06
 : :' : Debian GNU/Linux user, admin, and developer -  https://www.debian.org/
 `. `'  Member of VIBE!AT & SPI, fellow of the Free Software Foundation Europe
   `-   NP: Nick Drake: 'Cello Song


signature.asc
Description: Digital Signature

Bug#837324: [pkg-cinnamon] Bug#837324: cinnamon: Windows of QT written programs not placed in the center of desktop

[john . kirk]

 Quoting Maximiliano Curia :


¡Hola John!

El 2016-09-10 a las 17:52 +0300, John Kirk escribió:

Open QT written program -> it opens in the center of a desktop (in
accordance with settings) -> move it somewhere -> close the program ->
open again and it will be opened where you closed it.


Sorry, about which settings are you talking about?
Are you only able to reproduce this issue in cinnamon?

It sounds like more like a feature than a bug.

Happy hacking,
--
"There are two ways of constructing a software design.  One way is to
make it
so simple that there are obviously no deficiencies. And the other way is
to
make it so complicated that there are no obvious deficiencies."
-- C.A.R. HoareSaludos /\/\ /\ >< `/


Hello!

Settings -> Windows -> Behavior -> Location of newly opened windows ->
Center.

In KDE it worked well.

Best wishes,
John


-

ONLY AT VFEmail! - Use our Metadata Mitigator to keep your email out of the 
NSA's hands!
$24.95 ONETIME Lifetime accounts with Privacy Features!  
15GB disk! No bandwidth quotas!

Commercial and Bulk Mail Options!  

Bug#837406: caff: "gpg: error reading key: No public key"

[Marcus Frings]

On Sun, 11 Sep 2016 15:46:58 +0200, Guilhem Moulin
 wrote:

> Still, I can't reproduce this.  Could you try to pass ‘--debug-level
>  basic’ to the recv-key command?

I patched caff with the diff file you suggested, but the output is
still the same, hence not even additional debugging information (see
attached txt file).

> If this doesn't produce anything useful, could you also enable debug
> output for dirmngr?  For instance by adding
> 
> debug-level basic
> log-file /run/user/1000/dirmngr.log
> 
> to ~/.gnupg/dirmngr.conf.

I also added these two lines, but when I run caff (or gpg manually)
this logfile is not created at all.

Best regards,
Marcus
-- 
RWTH Aachen University, Institute of Organic Chemistry,
Landoltweg 1, 52074 Aachen, Germany

GPG key: 6C3458EE737CE22C0EF9FA3BE88FEBBE202CE599 (ed25519, preferred)
GPG key: 0138DA92EDFFB27DD270F86DB475E207BAB58229 (dsa1024, disfavoured)
My patched caff:

$ /tmp/local-caff/caff --debug 39278DA8109E6244
[NOTICE] Importing GnuPG options from ~/.gnupg/gpg.conf:
[NOTICE] use-agent
[NOTICE] keyserver hkps://hkps.pool.sks-keyservers.net
[NOTICE] keyserver-options no-honor-keyserver-url
[NOTICE] keyserver-options include-revoked
[NOTICE] no-greeting
[NOTICE] ask-cert-level
[NOTICE] set-policy-url http://www.gothgoose.net/pgp/
[NOTICE] personal-cipher-preferences AES256 AES192 AES CAST5
[NOTICE] personal-digest-preferences SHA512 SHA384 SHA256 SHA224
[NOTICE] cert-digest-algo SHA512
[DEBUG] gpg (GnuPG) 2.1.15
[DEBUG] Creating symlink /home/marcus/.caff/gnupghome/S.dirmngr to 
/run/user/1000/gnupg/S.dirmngr
[DEBUG] Creating symlink /home/marcus/.caff/gnupghome/S.gpg-agent to 
/run/user/1000/gnupg/S.gpg-agent
[DEBUG] Exporting key(s) 
E88FEBBE202CE599,B475E207BAB58229,948FD6A0E10F502E,7A0685421E899042 from your 
normal GnuPGHOME to /home/marcus/.caff/gnupghome
[DEBUG] gpg --batch --no-tty --trust-model=always --no-autostart 
--no-auto-check-trustdb ...
[DEBUG] stdin: <&=4, stdout: IO::Handle=GLOB(0x2a88958)
[DEBUG] gpg --batch --no-tty --homedir /home/marcus/.caff/gnupghome --quiet 
--trust-model=always --no-options --use-agent 
--keyserver=hkps://hkps.pool.sks-keyservers.net 
--keyserver-options=no-honor-keyserver-url --keyserver-options=include-revoked 
--no-greeting --ask-cert-level --set-policy-url=http://www.gothgoose.net/pgp/ 
--personal-cipher-preferences=AES256 AES192 AES CAST5 
--personal-digest-preferences=SHA512 SHA384 SHA256 SHA224 
--cert-digest-algo=SHA512 --no-autostart --no-auto-check-trustdb ...
[DEBUG] status: IO::Handle=GLOB(0x2afa730), stdin: 5, stdout: >&=4
[DEBUG] Imported 0138DA92EDFFB27DD270F86DB475E207BAB58229 for B475E207BAB58229
[INFO] Key B475E207BAB58229 not changed
[DEBUG] Imported 53FC5A8727BE1D30FEB4861A948FD6A0E10F502E for 948FD6A0E10F502E
[INFO] Key 948FD6A0E10F502E not changed
[DEBUG] Imported 69E1EE07F7A6AA8E4A777B2A7A0685421E899042 for 7A0685421E899042
[INFO] Key 7A0685421E899042 not changed
[DEBUG] Imported 6C3458EE737CE22C0EF9FA3BE88FEBBE202CE599 for E88FEBBE202CE599
[INFO] Key E88FEBBE202CE599 not changed
[DEBUG] Exporting key(s) 
E88FEBBE202CE599,B475E207BAB58229,948FD6A0E10F502E,7A0685421E899042 from your 
normal GnuPGHOME to /home/marcus/.caff/gnupghome
[DEBUG] gpg --batch --no-tty --trust-model=always --no-autostart 
--no-auto-check-trustdb --no-autostart --no-auto-check-trustdb ...
[DEBUG] stdin: <&=4, stdout: IO::Handle=GLOB(0xaed0e8)
[DEBUG] gpg --batch --no-tty --homedir /home/marcus/.caff/gnupghome --quiet 
--trust-model=always --no-options --use-agent 
--keyserver=hkps://hkps.pool.sks-keyservers.net 
--keyserver-options=no-honor-keyserver-url --keyserver-options=include-revoked 
--no-greeting --ask-cert-level --set-policy-url=http://www.gothgoose.net/pgp/ 
--personal-cipher-preferences=AES256 AES192 AES CAST5 
--personal-digest-preferences=SHA512 SHA384 SHA256 SHA224 
--cert-digest-algo=SHA512 --no-autostart --no-auto-check-trustdb ...
[DEBUG] status: IO::Handle=GLOB(0x2c43818), stdin: 5, stdout: >&=4
[DEBUG] Imported 0138DA92EDFFB27DD270F86DB475E207BAB58229 for B475E207BAB58229
[INFO] Key B475E207BAB58229 not changed
[DEBUG] Imported 53FC5A8727BE1D30FEB4861A948FD6A0E10F502E for 948FD6A0E10F502E
[INFO] Key 948FD6A0E10F502E not changed
[DEBUG] Imported 69E1EE07F7A6AA8E4A777B2A7A0685421E899042 for 7A0685421E899042
[INFO] Key 7A0685421E899042 not changed
[DEBUG] Imported 6C3458EE737CE22C0EF9FA3BE88FEBBE202CE599 for E88FEBBE202CE599
[INFO] Key E88FEBBE202CE599 not changed
[DEBUG] gpg --batch --no-tty --homedir /home/marcus/.caff/gnupghome 
--trust-model=always --no-options --use-agent 
--keyserver=hkps://hkps.pool.sks-keyservers.net 
--keyserver-options=no-honor-keyserver-url --keyserver-options=include-revoked 
--no-greeting --ask-cert-level --set-policy-url=http://www.gothgoose.net/pgp/ 
--personal-cipher-preferences=AES256 AES192 AES CAST5 
--personal-digest-preferences=SHA512 SHA384 SHA256 SHA224 
--cert-digest-algo=SHA512 --no-autostart 

Bug#833658: espeakup: Does not speak with PulseAudio

[Samuel Thibault]

Hello,

espeak-ng will probably make it into Debian, which should be fixing the
issue.

Samuel

Bug#833081: libcgicc5: New upstream version available

[Thomas Pircher]

Attached the diff, which was missing in the previous mail.diff -urN orig/debian/cgicc-config.1 mine/debian/cgicc-config.1
--- orig/debian/cgicc-config.1	2011-04-08 00:49:34.0 +0100
+++ mine/debian/cgicc-config.1	1970-01-01 01:00:00.0 +0100
@@ -1,52 +0,0 @@
-.\"  Hey, EMACS: -*- nroff -*-
-.\" First parameter, NAME, should be all caps
-.\" Second parameter, SECTION, should be 1-8, maybe w/ subsection
-.\" other parameters are allowed: see man(7), man(1)
-.TH CGICC-CONFIG 1 "11 September 07"
-.\" Please adjust this date whenever revising the manpage.
-.\"
-.\" Some roff macros, for reference:
-.\" .nhdisable hyphenation
-.\" .hyenable hyphenation
-.\" .ad l  left justify
-.\" .ad b  justify to both left and right margins
-.\" .nfdisable filling
-.\" .fienable filling
-.\" .brinsert line break
-.\" .sp insert n+1 empty lines
-.\" for manpage-specific macros, see man(7)
-.SH NAME
-cgicc-config \- script to get information about the installed version of cgicc
-.SH SYNOPSIS
-.B cgicc-config
-[\-\-prefix] [\-\-exec\-prefix] [\-\-version] [\-\-libs] [\-\-static-libs] [\-\-cflags]
-.SH DESCRIPTION
-.B cgicc-config
-displays information about the libcgicc installation
-.SH OPTIONS
-These programs follow the usual GNU command line syntax, with long
-options starting with two dashes (`-').
-.TP
-.B \-\-prefix
-Display architecture-independent installation dir
-.TP
-.B \-\-exec\-prefix
-Display architecture-dependent installation dir
-.TP
-.B \-\-includedir
-Display header file installation dir
-.TP
-.B \-\-libdir
-Display object-code installation dir
-.TP
-.B \-\-host
-Display host information
-.TP
-.B \-\-version
-Display version information
-.TP
-.B \-\-help
-Display summary of options.
-.SH AUTHOR
-This manual page was written by Chris Butler ,
-for the Debian project (but may be used by others).
diff -urN orig/debian/changelog mine/debian/changelog
--- orig/debian/changelog	2011-04-12 02:06:09.0 +0100
+++ mine/debian/changelog	2016-09-08 19:41:26.0 +0100
@@ -1,3 +1,18 @@
+libcgicc (3.2.16-0.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * New upstream release (closes: #833081, #811988, #798624, #645616).
+  * Updated to Standards-Version 3.9.8 (no changes required).
+  * Updated to debhelper 9, updated Build-Depends.
+  * Added Multiarch support.
+  * Updated debian/*.install and removed the install directory where source and
+destination directories are the same.
+  * Added patch to generate non-empty index.html in the documentation.
+  * Removed old-style config file.
+  * Commented out the broken Vcs URLs in debian/control.
+
+ -- Thomas Pircher   Thu, 08 Sep 2016 19:41:26 +0100
+
 libcgicc (3.2.9-3) unstable; urgency=low
 
   * Fix binary-only build by adding --no-run-if-empty to xargs in the
diff -urN orig/debian/compat mine/debian/compat
--- orig/debian/compat	2011-04-08 00:49:34.0 +0100
+++ mine/debian/compat	2016-09-08 19:41:26.0 +0100
@@ -1 +1 @@
-7
+9
diff -urN orig/debian/control mine/debian/control
--- orig/debian/control	2011-04-10 14:12:20.0 +0100
+++ mine/debian/control	2016-09-08 19:41:26.0 +0100
@@ -2,11 +2,11 @@
 Priority: optional
 Section: libs
 Maintainer: Chris Butler 
-Build-Depends: debhelper (>> 7.0.50~), automake, libtool, doxygen, dh-autoreconf
-Standards-Version: 3.9.2
+Build-Depends: debhelper (>=9), automake, libtool, doxygen, dh-autoreconf
+Standards-Version: 3.9.8
 Homepage: http://www.gnu.org/software/cgicc/
-Vcs-Git: git://git.crustynet.org.uk/libcgicc.git/
-Vcs-Browser: http://git.crustynet.org.uk/libcgicc.git
+#Vcs-Git: git://git.crustynet.org.uk/libcgicc.git/
+#Vcs-Browser: http://git.crustynet.org.uk/libcgicc.git
 
 Package: libcgicc-doc
 Section: doc
@@ -32,6 +32,7 @@
 Package: libcgicc5-dev
 Section: libdevel
 Architecture: any
+Multi-Arch: same
 Depends: libcgicc5 (= ${binary:Version}), ${misc:Depends}
 Provides: libcgicc-dev
 Conflicts: libcgicc-dev, libcgicc1-dev
@@ -60,6 +61,7 @@
 Conflicts: libcgicc1
 Section: libs
 Architecture: any
+Multi-Arch: same
 Depends: ${shlibs:Depends}, ${misc:Depends}
 Description: C++ class library for writing CGI applications (library)
  An ANSI C++ compliant class library that greatly simplifies the creation of
diff -urN orig/debian/libcgicc1.install mine/debian/libcgicc1.install
--- orig/debian/libcgicc1.install	1970-01-01 01:00:00.0 +0100
+++ mine/debian/libcgicc1.install	2016-09-08 19:41:26.0 +0100
@@ -0,0 +1 @@
+usr/lib/*/lib*.so.*
diff -urN orig/debian/libcgicc5-dev.dirs mine/debian/libcgicc5-dev.dirs
--- orig/debian/libcgicc5-dev.dirs	2011-04-08 00:49:34.0 +0100
+++ mine/debian/libcgicc5-dev.dirs	2016-09-08 19:41:26.0 +0100
@@ -1,3 +1 @@
-usr/bin
-usr/lib
 usr/include/cgicc
diff -urN orig/debian/libcgicc5-dev.install mine/debian/libcgicc5-dev.install
--- 

Bug#822021: scalapack: Build arch:all+arch:any but is missing build-{arch,indep} targets

[Sebastiaan Couwenberg]

On Tue, 26 Jul 2016 16:17:49 +0200 (CEST) Santiago Vila  wrote:
> tags 822021 + patch
> thanks
> 
> I also recommend switching to dh, but in the meantime, the attached
> patch should work.

Muammar, please apply this patch and upload a new scalapack revision to
unstable as soon as possible.

scalapack binNMUes for the ongoing openmpi transition are failing
because of this issue, and prevent building its many reverse dependencies.

Kind Regards,

Bas

-- 
 GPG Key ID: 4096R/6750F10AE88D4AF1
Fingerprint: 8182 DE41 7056 408D 6146  50D1 6750 F10A E88D 4AF1

Bug#837273:

[Santiago Vila]

affects 837273 src:csoundqt
thanks

The affects keyword helps to avoid duplicate bugs in the affected
packages (in fact, this bug was first reported against csoundqt
and then reassigned, and I was close to report it again).

Thanks.

Bug#834804: Switch to Qt5 backend via QtPy: patch provided

[Ghislain Vaillant]

Something wrong with the patch?

Ghis

Bug#833081: libcgicc5: New upstream version available

[Thomas Pircher]

I have updated the proposed patch with a few more changes:
- reduced cosmetic changes in the patch.
- removed the old-style config file, as it is deprecated and replaced by 
pkg-config.


The proposed changes are attached as libcgicc_3.2.16-0.1.debian.tar.xz 
and as diff.
I have also uploaded a build to Debian mentors, and will request for 
sponsorship for the package in a few days, unless I hear otherwise.


Thanks,
Thomas

libcgicc_3.2.16-0.1.debian.tar.xz
Description: application/xz

Bug#837406: caff: "gpg: error reading key: No public key"

[Guilhem Moulin]

Also, does the recv-key command work when you run it manually?

~$ gpg --batch --no-tty --homedir ~/.caff/gnupghome \
--trust-model=always --no-options --use-agent \
--keyserver=hkps://hkps.pool.sks-keyservers.net \
--keyserver-options=no-honor-keyserver-url \
--keyserver-options=include-revoked --no-greeting --ask-cert-level \
--set-policy-url=http://www.gothgoose.net/pgp/ \
--personal-cipher-preferences='AES256 AES192 AES CAST5' \
--personal-digest-preferences='SHA512 SHA384 SHA256 SHA224' \
--cert-digest-algo=SHA512 --no-autostart --no-auto-check-trustdb \
--with-fingerprint --with-colons --recv-keys 12DA91AD71D80831
gpg: key 12DA91AD71D80831: public key … imported
gpg: Total number processed: 1
gpg:   imported: 1

(You'll then need to delete the key to reproduce the bug, otherwise caff
will warn that it couldn't download it but will let you proceed with the
version found in its keyring.)

-- 
Guilhem.


signature.asc
Description: PGP signature

Bug#676602: 676602 - One-click key download

[Matijs van Zuijlen]

Hi Alexander,

EnigMail has improved its interface a lot recently and requires far less
clicking, so I think this can be closed.

Regards,
Matijs

On 09/09/16 01:09, Alexander Sack wrote:
> tags 676602 + moreinfo
> thanks
> 
> Hi,
> 
> thanks for reporting the bug. We would like to identify issues to focus on 
> and hence
> we would love to hear an update if the issue at hand is still something you 
> would like
> to see fix (if it hasn't).
> 
> Thanks!
> 
>  - Alexander
> 



signature.asc
Description: OpenPGP digital signature

Bug#837420: dietlibc: FTBFS with bindnow and PIE enabled

[Christian Seiler]

Control: tags -1 + confirmed

Am 11. September 2016 15:04:46 MESZ, schrieb Balint Reczey 
:
>During a rebuild of all packages in sid, your package failed to build
>on
>amd64 with patched GCC and dpkg.

Yes, because dietlibc is a static library and there are some build flag related 
issues I still have to work out. (Was on my TODO list anyway, just didn't get 
to it yet. bindnow should be fine (albeit useless for static libs/executables), 
pie is the problem. (Hence hardening=+all,-pie in d/rules.) I'll probably need 
to add -no-pie to the linker flags manually.

Same problem probably also on other archs, only that -fPIE might also cause 
trouble there due to assembly code. (amd64 assembly code in dietlibc can cope 
with -fPIE though).

I'll take care of this soon.

Regards,
Christian

Bug#837424: portaudio19: Please build libportaudio.a with -fPIC

[Balint Reczey]

Source: portaudio19
Version: 19+svn20140130-1
Severity: important
User: bal...@balintreczey.hu
Usertags: pie-bindnow-20160906
Justification: makes espeakup FTBFS on amd64 with extra hardening
Affects: espeakup

Dear Maintainers,

During a rebuild of all packages in sid, espeakup failed to build on
amd64 with patched GCC and dpkg. The root cause seems to be that
libportaudio.a is shipped as a non-PIC library.

The rebuild tested if packages are ready for a transition
enabling PIE and bindnow for amd64.

For more information about the changes to sid's dpkg and GCC please
visit:
 https://wiki.debian.org/Hardening/PIEByDefaultTransitio

Relevant part of espeakup's build log:
...
cc -g -O2 -fdebug-prefix-map=/<>=. -fstack-protector-strong
-Wformat -Werror=format-secur
ity -Os -MMD -Wall   -c -o stringhandling.o stringhandling.c
cc -u _Unwind_Resume -u __gcc_personality_v0 -u _Unwind_ForcedUnwind -u
_Unwind_GetCFA -u _Unwind_GetB
SP -lgcc_s  espeakup.o cli.o espeak.o queue.o signal.o softsynth.o
stringhandling.o  /usr/lib/x86_64-l
inux-gnu/libespeak.a /usr/lib/x86_64-linux-gnu/libsonic.a
/usr/lib/x86_64-linux-gnu/libportaudio.a /us
r/lib/x86_64-linux-gnu/libjack.a -lm -lpthread -lasound -lrt -o espeakup
/usr/bin/ld: /usr/lib/x86_64-linux-gnu/libportaudio.a(pa_front.o):
relocation R_X86_64_32 against `.ro
data.str1.8' can not be used when making a shared object; recompile with
-fPIC
/usr/bin/ld: /usr/lib/x86_64-linux-gnu/libportaudio.a(pa_unix_util.o):
relocation R_X86_64_32 against
`.rodata' can not be used when making a shared object; recompile with -fPIC
/usr/bin/ld: /usr/lib/x86_64-linux-gnu/libportaudio.a(pa_linux_alsa.o):
relocation R_X86_64_32 against
 `.rodata.str1.8' can not be used when making a shared object; recompile
with -fPIC
...

The full build log is available from:
https://people.debian.org/~rbalint/build-logs/pie-bindnow-20160906/espeakup_0.80-1_amd64.build.gz

Thanks,
Balint



diff -u binutils-2.27/debian/changelog binutils-2.27/debian/changelog
--- binutils-2.27/debian/changelog
+++ binutils-2.27/debian/changelog
@@ -1,3 +1,10 @@
+binutils (2.27-8+rbalint0) UNRELEASED; urgency=medium
+
+  * Non-maintainer upload.
+  * Build libbfd with -fPIC
+
+ -- Balint Reczey   Sat, 10 Sep 2016 15:53:07 +0200
+
 binutils (2.27-8) unstable; urgency=medium
 
   * Fix diversion updates for 32bit x86 targets.
diff -u binutils-2.27/debian/patches/series binutils-2.27/debian/patches/series
--- binutils-2.27/debian/patches/series
+++ binutils-2.27/debian/patches/series
@@ -12,6 +12,7 @@
 130_gold_disable_testsuite_build.patch
 131_ld_bootstrap_testsuite.patch
 135_bfd_version.patch
+136_bfd_pic.patch
 157_ar_scripts_with_tilde.patch
 #158_ld_system_root.patch
 161_gold_dummy_zoption.diff
only in patch2:
unchanged:
--- binutils-2.27.orig/debian/patches/136_bfd_pic.patch
+++ binutils-2.27/debian/patches/136_bfd_pic.patch
@@ -0,0 +1,25 @@
+Author: Balint Reczey 
+Description: Build libbfd with -fPIC to allow linking with PIE binaries
+
+--- ./bfd/Makefile.am.bak	2016-09-10 16:26:46.062371030 +0200
 ./bfd/Makefile.am	2016-09-10 16:27:48.913724681 +0200
+@@ -51,7 +51,7 @@
+ 
+ WARN_CFLAGS = @WARN_CFLAGS@
+ NO_WERROR = @NO_WERROR@
+-AM_CFLAGS = $(WARN_CFLAGS) $(ZLIBINC)
++AM_CFLAGS = $(WARN_CFLAGS) $(ZLIBINC) -fPIC
+ AM_CPPFLAGS = -DBINDIR='"$(bindir)"'
+ if PLUGINS
+ bfdinclude_HEADERS += $(INCDIR)/plugin-api.h
+--- ./bfd/Makefile.in.bak	2016-09-10 16:26:53.009857349 +0200
 ./bfd/Makefile.in	2016-09-10 16:27:31.886983240 +0200
+@@ -387,7 +387,7 @@
+ # case both are empty.
+ ZLIB = @zlibdir@ -lz
+ ZLIBINC = @zlibinc@
+-AM_CFLAGS = $(WARN_CFLAGS) $(ZLIBINC)
++AM_CFLAGS = $(WARN_CFLAGS) $(ZLIBINC) -fPIC
+ AM_CPPFLAGS = -DBINDIR='"$(bindir)"'
+ @PLUGINS_TRUE@LIBDL = @lt_cv_dlopen_libs@
+ 

Bug#837406: caff: "gpg: error reading key: No public key"

[Guilhem Moulin]

On Sun, 11 Sep 2016 at 15:19:49 +0200, Marcus Frings wrote:
>>~$ gpg --keyserver hkps://hkps.pool.sks-keyservers.net
>> --recv-keys 39278DA8109E6244 gpg: keyserver receive failed: Invalid
>> argument ~$ $ gpg --keyserver hkp://pool.sks-keyservers.net
>> --recv-keys 39278DA8109E6244 gpg: key 39278DA8109E6244: "Guilhem
>> Moulin" not changed gpg: Total number processed: 1
>>gpg:  unchanged: 1
> 
> Huh? Receiving keys via hkps works as expected for me:
 
My bad.  This seems to be due to the presence of ‘use-tor’ in my
‘~/.gnupg/dirmngr.conf’.  Looks like an upstream bug, but not related to
your problem.

Still, I can't reproduce this.  Could you try to pass ‘--debug-level
 basic’ to the recv-key command?

--8<>8--
diff --git a/caff/caff b/caff/caff
index 6dacd57..c8046d3 100755
--- a/caff/caff
+++ b/caff/caff
@@ -1375,6 +1375,7 @@ sub import_keys_to_sign($) {
 notice("Fetching keys from a keyserver (this may take a while)...");
 my @args = (extra_args => ['--keyserver='.$CONFIG{'keyserver'}]) if 
defined $CONFIG{'keyserver'};
 my $gpg = mkGnuPG( homedir => $GNUPGHOME, @args );
+$gpg->options->push_extra_args(qw/--debug-level basic/);
 # logger: requesting key ... from hkp
 # stdout: gpgkeys: key ... not found on keyserver
 my $handles = mkGnuPG_fds( status => undef );
--8<>8--

If this doesn't produce anything useful, could you also enable debug
output for dirmngr?  For instance by adding

debug-level basic
log-file /run/user/1000/dirmngr.log

to ~/.gnupg/dirmngr.conf.

-- 
Guilhem.


signature.asc
Description: PGP signature

Bug#837425: deets: FTBFS with bindnow and PIE enabled

[Balint Reczey]

Source: deets
Version: 0.2.1-4
Severity: important
User: bal...@balintreczey.hu
Usertags: pie-bindnow-20160906
Justification: FTBFS on amd64 with extra hardening

Hi,

During a rebuild of all packages in sid, your package failed to build on
amd64 with patched GCC and dpkg.

The rebuild tested if packages are ready for a transition
enabling PIE and bindnow for amd64.

For more information about the changes to sid's dpkg and GCC please
visit:
 https://wiki.debian.org/Hardening/PIEByDefaultTransition

Relevant part (hopefully):
...
gcc -DHAVE_CONFIG_H -I. -I..   -Wdate-time -D_FORTIFY_SOURCE=2
-I/usr/include/lua5.1 -DDEETS_LUADIR=\"
/usr/share/deets\" -g -O2 -fdebug-prefix-map=/<>=.
-fstack-protector-strong -Wformat -Wer
ror=format-security -c -o luau-luau.o `test -f 'luau.c' || echo '../'`luau.c
../luau.c: In function 'dpkg_status':
../luau.c:88:7: error: 'stat_notinstalled' undeclared (first use in this
function)
  case stat_notinstalled:
   ^
../luau.c:88:7: note: each undeclared identifier is reported only once
for each function it appears in
../luau.c:91:7: error: 'stat_configfiles' undeclared (first use in this
function)
  case stat_configfiles:
   ^~~~
../luau.c:94:7: error: 'stat_halfinstalled' undeclared (first use in
this function)
  case stat_halfinstalled:
   ^~
../luau.c:97:7: error: 'stat_unpacked' undeclared (first use in this
function)
  case stat_unpacked:
   ^
../luau.c:100:7: error: 'stat_halfconfigured' undeclared (first use in
this function)
  case stat_halfconfigured:
   ^~~
../luau.c:103:7: error: 'stat_triggersawaited' undeclared (first use in
this function)
  case stat_triggersawaited:
   ^~~~
../luau.c:106:7: error: 'stat_triggerspending' undeclared (first use in
this function)
  case stat_triggerspending:
   ^~~~
../luau.c:109:7: error: 'stat_installed' undeclared (first use in this
function)
  case stat_installed:
   ^~
Makefile:364: recipe for target 'luau-luau.o' failed
make[2]: *** [luau-luau.o] Error 1
...

The full build log is available from:
 
https://people.debian.org/~rbalint/build-logs/pie-bindnow-20160906/deets_0.2.1-4_amd64.build.gz

Thanks,
Balint

Bug#837423: jack-audio-connection-kit: Please build libjack.a with -fPIC

[Balint Reczey]

Source: jack-audio-connection-kit
Version: 1:0.124.1+20140122git5013bed0-3
Severity: important
User: bal...@balintreczey.hu
Usertags: pie-bindnow-20160906
Justification: makes espeakup FTBFS on amd64 with extra hardening
Affects: espeakup

Dear Maintainers,

During a rebuild of all packages in sid, espeakup failed to build on
amd64 with patched GCC and dpkg. The root cause seems to be that
libjack.a is shipped as a non-PIC library.

The rebuild tested if packages are ready for a transition
enabling PIE and bindnow for amd64.

For more information about the changes to sid's dpkg and GCC please
visit:
 https://wiki.debian.org/Hardening/PIEByDefaultTransitio

Relevant part of espeakup's build log:
...
cc -g -O2 -fdebug-prefix-map=/<>=. -fstack-protector-strong
-Wformat -Werror=format-secur
ity -Os -MMD -Wall   -c -o stringhandling.o stringhandling.c
cc -u _Unwind_Resume -u __gcc_personality_v0 -u _Unwind_ForcedUnwind -u
_Unwind_GetCFA -u _Unwind_GetB
SP -lgcc_s  espeakup.o cli.o espeak.o queue.o signal.o softsynth.o
stringhandling.o  /usr/lib/x86_64-l
inux-gnu/libespeak.a /usr/lib/x86_64-linux-gnu/libsonic.a
/usr/lib/x86_64-linux-gnu/libportaudio.a /us
r/lib/x86_64-linux-gnu/libjack.a -lm -lpthread -lasound -lrt -o espeakup
/usr/bin/ld: /usr/lib/x86_64-linux-gnu/libportaudio.a(pa_front.o):
relocation R_X86_64_32 against `.ro
data.str1.8' can not be used when making a shared object; recompile with
-fPIC
/usr/bin/ld: /usr/lib/x86_64-linux-gnu/libportaudio.a(pa_unix_util.o):
relocation R_X86_64_32 against
`.rodata' can not be used when making a shared object; recompile with -fPIC
/usr/bin/ld: /usr/lib/x86_64-linux-gnu/libportaudio.a(pa_linux_alsa.o):
relocation R_X86_64_32 against
 `.rodata.str1.8' can not be used when making a shared object; recompile
with -fPIC
/usr/bin/ld: /usr/lib/x86_64-linux-gnu/libportaudio.a(pa_jack.o):
relocation R_X86_64_32 against `.rod
ata' can not be used when making a shared object; recompile with -fPIC
/usr/bin/ld: /usr/lib/x86_64-linux-gnu/libportaudio.a(pa_unix_oss.o):
relocation R_X86_64_32 against `.rodata.str1.8' can not be used when
making a shared object; recompile with -fPIC
/usr/bin/ld: /usr/lib/x86_64-linux-gnu/libportaudio.a(pa_converters.o):
relocation R_X86_64_32S against `.rodata' can not be used when making a
shared object; recompile with -fPIC
/usr/bin/ld: /usr/lib/x86_64-linux-gnu/libportaudio.a(pa_cpuload.o):
relocation R_X86_64_32 against `.rodata' can not be used when making a
shared object; recompile with -fPIC
/usr/bin/ld: /usr/lib/x86_64-linux-gnu/libportaudio.a(pa_process.o):
relocation R_X86_64_32 against `.rodata' can not be used when making a
shared object; recompile with -fPIC
/usr/bin/ld: /usr/lib/x86_64-linux-gnu/libjack.a(libjack_la-client.o):
relocation R_X86_64_32 against `.rodata.str1.1' can not be used when
making a shared object; recompile with -fPIC
/usr/bin/ld:
/usr/lib/x86_64-linux-gnu/libjack.a(libjack_la-messagebuffer.o):
relocation R_X86_64_32S against `.bss' can not be used when making a
shared object; recompile with -fPIC
/u
...

The full build log is available from:
https://people.debian.org/~rbalint/build-logs/pie-bindnow-20160906/espeakup_0.80-1_amd64.build.gz

Thanks,
Balint


diff -u binutils-2.27/debian/changelog binutils-2.27/debian/changelog
--- binutils-2.27/debian/changelog
+++ binutils-2.27/debian/changelog
@@ -1,3 +1,10 @@
+binutils (2.27-8+rbalint0) UNRELEASED; urgency=medium
+
+  * Non-maintainer upload.
+  * Build libbfd with -fPIC
+
+ -- Balint Reczey   Sat, 10 Sep 2016 15:53:07 +0200
+
 binutils (2.27-8) unstable; urgency=medium
 
   * Fix diversion updates for 32bit x86 targets.
diff -u binutils-2.27/debian/patches/series binutils-2.27/debian/patches/series
--- binutils-2.27/debian/patches/series
+++ binutils-2.27/debian/patches/series
@@ -12,6 +12,7 @@
 130_gold_disable_testsuite_build.patch
 131_ld_bootstrap_testsuite.patch
 135_bfd_version.patch
+136_bfd_pic.patch
 157_ar_scripts_with_tilde.patch
 #158_ld_system_root.patch
 161_gold_dummy_zoption.diff
only in patch2:
unchanged:
--- binutils-2.27.orig/debian/patches/136_bfd_pic.patch
+++ binutils-2.27/debian/patches/136_bfd_pic.patch
@@ -0,0 +1,25 @@
+Author: Balint Reczey 
+Description: Build libbfd with -fPIC to allow linking with PIE binaries
+
+--- ./bfd/Makefile.am.bak	2016-09-10 16:26:46.062371030 +0200
 ./bfd/Makefile.am	2016-09-10 16:27:48.913724681 +0200
+@@ -51,7 +51,7 @@
+ 
+ WARN_CFLAGS = @WARN_CFLAGS@
+ NO_WERROR = @NO_WERROR@
+-AM_CFLAGS = $(WARN_CFLAGS) $(ZLIBINC)
++AM_CFLAGS = $(WARN_CFLAGS) $(ZLIBINC) -fPIC
+ AM_CPPFLAGS = -DBINDIR='"$(bindir)"'
+ if PLUGINS
+ bfdinclude_HEADERS += $(INCDIR)/plugin-api.h
+--- ./bfd/Makefile.in.bak	2016-09-10 16:26:53.009857349 +0200
 ./bfd/Makefile.in	2016-09-10 16:27:31.886983240 +0200
+@@ -387,7 +387,7 @@
+ # case both are empty.
+ ZLIB = @zlibdir@ -lz
+ ZLIBINC = @zlibinc@
+-AM_CFLAGS = $(WARN_CFLAGS) $(ZLIBINC)
++AM_CFLAGS = $(WARN_CFLAGS) $(ZLIBINC) -fPIC
+ 

Bug#837300: jessie-pu: package mariadb-10.0/10.0.27-0+deb8u1

[Adam D. Barratt]

On Sat, 2016-09-10 at 14:42 +0300, Otto Kekäläinen wrote:
> The powerpc build of the security release 10.0.26-0+deb8u1 fails to
> build due to an upstream regression (see Bug#832931). This has been
> fixed in 10.0.27, but as it is not a security release (at least not
> publicly at the moment) I propose it to be uploaded via
> stable-updates.

Unfortunately 10.0.27 still FTBFS on powerpc, with failures that look
the same as those seen for 10.0.26-0+deb8u1.

Regards,

Adam

Bug#837416: mutt: segfaults when started with -y

[Antonio Radici]

Control: tag -1 +confirmed pending

On Sun, Sep 11, 2016 at 02:59:40PM +0200, Frederic Peters wrote:
> hi,
> 
>  $ mutt -y
> GPGME: CMS protocol not available
> Segmentation fault (core dumped)
> 
> (... debugging ...)
> 
> Turns out it's https://github.com/neomutt/neomutt/pull/137, could the patch be
> included in Debian package?
> 
> 

Hi Frederic,
thanks for the report and for letting us know that this is fixed. I've added the
patch in git and it will be part of 1.7.0-4

Bug#836941: Acknowledgement (nmu: shibboleth-sp2_2.6.0+dfsg1-3)

[Ferenc Wágner]

Shall I file a serious bug against libshibsp7 to keep it out of testing
until these binNMUs are scheduled?
-- 
Thanks,
Feri

Bug#833880: patool: Please provide python(3)-patoolib package

[Abhijith]

On September 11, 2016 4:56:22 PM GMT+05:30, Michael Hanke  
wrote:
>Hey,
>
>thanks a lot for implementing this!
>
>It sure works for me. However, I am uncertain whether Debian Python
>policy
>would mandate dedicated python{3}-patoolib packages. You might want to
>double-check that.

>From #debian-python , I understood that for a command line utility we can 
>switch to just python3 . But I am confused about patoolib . I think I need to 
>create 2 packages and 3 binaries . 

>I didn't do a full review, but I noticed one tiny thing:
>
>Vcs-Git URL wrong in debian/control
>
>Any of these should do it:
>https://anonscm.debian.org/git/collab-maint/patool.git
>git://anonscm.debian.org/collab-maint/patool.git

I will fix it . 
-- 
Sent from my Android device with K-9 Mail. Please excuse my brevity.

Bug#837406: caff: "gpg: error reading key: No public key"

[Marcus Frings]

Hi Guilhem.

On Sun, 11 Sep 2016 14:45:10 +0200, Guilhem Moulin
 wrote:

> Does it work when you replace ‘hkps://hkps.pool.sks-keyservers.net’ by
> ‘hkp://pool.sks-keyservers.net’ in ~/.gnupg/gpg.conf?

Sorry, I should have told you yesterday that I had already tried this,
too. However, it doesn't seem related to an hkp/hkps issue, for it also
fails if I use caff with a normal http connection:

[DEBUG] gpg --batch --no-tty --homedir /home/marcus/.caff/gnupghome
--trust-model=always --no-options --use-agent
--keyserver=hkp://pool.sks-keyservers.net
--keyserver-options=no-honor-keyserver-url
--keyserver-options=include-revoked --no-greeting --ask-cert-level
--set-policy-url=http://www.gothgoose.net/pgp/
--personal-cipher-preferences=AES256 AES192 AES CAST5
--personal-digest-preferences=SHA512 SHA384 SHA256 SHA224
--cert-digest-algo=SHA512 --no-autostart --no-auto-check-trustdb
--with-fingerprint --with-colons ... [DEBUG] stdout:
IO::Handle=GLOB(0x2d4c8f8), stdin: <&=4 gpg: error reading key: No
public key [WARN] gpg exited with value 2 [WARN] No public keys found
with list-key 12DA91AD71D80831 (note that caff uses its own keyring
in /home/marcus/.caff/gnupghome) [NOTICE] No keys to sign found

> ~$ gpg --keyserver hkps://hkps.pool.sks-keyservers.net
> --recv-keys 39278DA8109E6244 gpg: keyserver receive failed: Invalid
> argument ~$ $ gpg --keyserver hkp://pool.sks-keyservers.net
> --recv-keys 39278DA8109E6244 gpg: key 39278DA8109E6244: "Guilhem
> Moulin" not changed gpg: Total number processed: 1
> gpg:  unchanged: 1

Huh? Receiving keys via hkps works as expected for me:

gpg --keyserver hkps://hkps.pool.sks-keyservers.net --recv-keys
39278DA8109E6244 gpg: key 0x39278DA8109E6244: "Guilhem Moulin" not
changed gpg: Total number processed: 1
gpg:  unchanged: 1

> Maybe caff need to pass another option from ~/.gnupg/gpg.conf.  Would
> you mind sharing that file?

My configuration is rather standard and more or less based on the
recommended, well-known page "OpenPGP Best Practices". Thus, here we go:

~/.gnupg/gpg.conf:

default-key 6C3458EE737CE22C0EF9FA3BE88FEBBE202CE599
default-recipient-self
encrypt-to 6C3458EE737CE22C0EF9FA3BE88FEBBE202CE599
keyid-format 0xlong
with-fingerprint
list-options show-uid-validity
verify-options show-uid-validity
list-options show-policy-urls show-unusable-uids show-unusable-subkeys 
show-usage
use-agent
require-cross-certification
keyserver hkps://hkps.pool.sks-keyservers.net
keyserver-options no-honor-keyserver-url
keyserver-options include-revoked
no-greeting
no-mdc-warning
no-secmem-warning
ask-cert-level
set-policy-url http://www.gothgoose.net/pgp/
personal-cipher-preferences AES256 AES192 AES CAST5
personal-digest-preferences SHA512 SHA384 SHA256 SHA224
cert-digest-algo SHA512
default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES CAST5 
ZLIB BZIP2 ZIP Uncompressed

Additionally, I also configured this to enable hkps:

~/.gnupg/dirmngr.conf:

hkp-cacert /home/marcus/.gnupg/sks-keyservers.netCA.pem

Best regards,
Marcus
-- 
RWTH Aachen University, Institute of Organic Chemistry,
Landoltweg 1, 52074 Aachen, Germany

GPG key: 6C3458EE737CE22C0EF9FA3BE88FEBBE202CE599 (ed25519, preferred)
GPG key: 0138DA92EDFFB27DD270F86DB475E207BAB58229 (dsa1024, disfavoured)


pgpQFhDZfWOsL.pgp
Description: OpenPGP digital signature