Bug#860310: unblock pre-apptoval request for yade/2017.01a-8

2017-04-18 Thread Anton Gladky 
tags 860310 -moreinfo
thanks

Hi Niels,

yade_2017.01a-8 has been succesfully built on all relevant release
platforms [1].

[1] https://buildd.debian.org/status/package.php?p=yade

Best regards

Anton


2017-04-17 13:07 GMT+02:00 Niels Thykier :
> Ack, please go ahead and let us know when the upload has been built on
> all relevant release architectures.

Bug#860544: [debian-mysql] Bug#860544: Security fixes from the April 2017 CPU

2017-04-18 Thread Lars Tangvald 
CVE list for 5.5:

CVE-2017-3302
CVE-2017-3305
CVE-2017-3308
CVE-2017-3309
CVE-2017-3329
CVE-2017-3453
CVE-2017-3456
CVE-2017-3461
CVE-2017-3462
CVE-2017-3463
CVE-2017-3464
CVE-2017-3600

--
Lars

Bug#860547: [debian-mysql] Bug#860547: Security fixes from the April 2017 CPU

2017-04-18 Thread Lars Tangvald 
CVE List for 5.7:

CVE-2017-3308
CVE-2017-3309
CVE-2017-3329
CVE-2017-3331
CVE-2017-3450
CVE-2017-3453
CVE-2017-3454
CVE-2017-3455
CVE-2017-3456
CVE-2017-3457
CVE-2017-3458
CVE-2017-3459
CVE-2017-3460
CVE-2017-3461
CVE-2017-3462
CVE-2017-3463
CVE-2017-3464
CVE-2017-3465
CVE-2017-3467
CVE-2017-3468
CVE-2017-3599
CVE-2017-3600

--
Lars

Bug#860600: release.debian.org: Please unblock openlp

2017-04-18 Thread Raoul Snyman 
Package: release.debian.org
Severity: important

Hello Release Team,

I would like to file an unblock request for the openlp package. The
openlp package currently is queued for removal from stretch due to
a dependency being removed from stretch. Please see bug #734101. In
order to do this, I removed the dependencies on libjs-jquery,
libjs-jquery-mobile and libjs-jquery-migrate-1 since the upstream
project already bundles these. I consulated Stefano Rivera with these
changes.

Additionally, I have added a dependency which fixes bug #860061.

Please note that I have not yet uploaded this to unstable, as I
am waiting for your approval to go ahead with this.

Attached is the diff.

Thank you.

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru openlp-2.4.4/debian/changelog openlp-2.4.4/debian/changelog
--- openlp-2.4.4/debian/changelog   2016-11-26 09:09:48.0 -0700
+++ openlp-2.4.4/debian/changelog   2017-04-11 14:40:24.0 -0700
@@ -1,3 +1,21 @@
+openlp (2.4.4-2) unstable; urgency=medium
+
+  * Remove libjs-jquery-migrate-1, libjs-jquery-mobile, libjs-jquery
+and rely on bundled versions. Closes: #734101
+  * Add libqt5multimedia5-plugins. Closes: #860061
+
+ -- Raoul Snyman   Tue, 11 Apr 2017 14:40:24 -0700
+
+openlp (2.4.5-1) experimental; urgency=low
+
+  * New upstream release
+  * Add libjs-jquery-migrate-1 to depends
+  * Add symlinks for jquery-migrate-1
+  * Make use of PYBUILD_* environment variables rather than overrides
+  * Update copyright
+
+ -- Raoul Snyman   Fri, 03 Feb 2017 20:55:02 -0700
+
 openlp (2.4.4-1) unstable; urgency=low
 
   * New upstream release
diff -Nru openlp-2.4.4/debian/control openlp-2.4.4/debian/control
--- openlp-2.4.4/debian/control 2016-11-26 09:09:48.0 -0700
+++ openlp-2.4.4/debian/control 2017-04-11 14:40:24.0 -0700
@@ -17,8 +17,7 @@
 Package: openlp
 Architecture: all
 Depends:
- libjs-jquery,
- libjs-jquery-mobile,
+ libqt5multimedia5-plugins,
  python3-bs4,
  python3-chardet,
  python3-enchant,
diff -Nru openlp-2.4.4/debian/copyright openlp-2.4.4/debian/copyright
--- openlp-2.4.4/debian/copyright   2016-11-26 09:09:48.0 -0700
+++ openlp-2.4.4/debian/copyright   2017-04-11 14:40:24.0 -0700
@@ -17,6 +17,8 @@
openlp/plugins/remotes/html/jquery.mobile.js
openlp/plugins/remotes/html/jquery.mobile.min.js
openlp/plugins/remotes/html/jquery.mobile.min.css
+   openlp/plugins/remotes/html/jquery.migrate.js
+   openlp/plugins/remotes/html/jquery.migrate.min.js
 Copyright: jQuery Foundation and other contributors,
https://jquery.org/
 License: Expat or GPL-2
diff -Nru openlp-2.4.4/debian/links openlp-2.4.4/debian/links
--- openlp-2.4.4/debian/links   2016-11-26 09:09:48.0 -0700
+++ openlp-2.4.4/debian/links   2017-04-11 14:40:24.0 -0700
@@ -1,8 +1 @@
 /usr/share/openlp/openlp.py /usr/bin/openlp
-/usr/share/javascript/jquery/jquery.js 
/usr/share/openlp/openlp/plugins/remotes/html/jquery.js
-/usr/share/javascript/jquery/jquery.min.js 
/usr/share/openlp/openlp/plugins/remotes/html/jquery.min.js
-/usr/share/javascript/jquery-mobile/jquery.mobile.js 
/usr/share/openlp/openlp/plugins/remotes/html/jquery.mobile.js
-/usr/share/javascript/jquery-mobile/jquery.mobile.min.js 
/usr/share/openlp/openlp/plugins/remotes/html/jquery.mobile.min.js
-/usr/share/javascript/jquery-mobile/jquery.mobile.css 
/usr/share/openlp/openlp/plugins/remotes/html/jquery.mobile.css
-/usr/share/javascript/jquery-mobile/jquery.mobile.min.css 
/usr/share/openlp/openlp/plugins/remotes/html/jquery.mobile.min.css
-/usr/share/javascript/jquery-mobile/images 
/usr/share/openlp/openlp/plugins/remotes/html/images
diff -Nru openlp-2.4.4/debian/rules openlp-2.4.4/debian/rules
--- openlp-2.4.4/debian/rules   2016-11-26 09:09:48.0 -0700
+++ openlp-2.4.4/debian/rules   2017-04-11 14:40:24.0 -0700
@@ -1,6 +1,7 @@
 #!/usr/bin/make -f
 
 export PYBUILD_NAME=openlp
+export PYBUILD_INSTALL_ARGS=--install-lib /usr/share/openlp --install-scripts 
/usr/share/openlp
 export PYBUILD_DISABLE=test/python3
 
 %:
@@ -15,9 +16,6 @@
lrelease $$TSFILE -qm resources/i18n/qm/`basename $$TSFILE 
.ts`.qm; \
done
 
-override_dh_auto_install:
-   dh_auto_install -- --install-args='--install-lib /usr/share/openlp 
--install-scripts /usr/share/openlp'
-
 override_dh_install:
dh_install
set -e; \

Bug#860599: libmpich-dev: provide alternative mpi-fort.pc

2017-04-18 Thread Drew Parsons 
Package: libmpich-dev
Version: 3.2-7+b1
Severity: normal

The mpi alternatives provide several pkg-config files: mpi-c.pc,
mpi-cxx.pc, mpi-fort.pc, mpi.pc, all provided by openmpi.

But mpich only provides mpi.pc

This somewhat breaks usage of mpi-defaults, since it means we can't
rely on these alternatives existing.  For instance, MUMPS FTBFS on
m68k because mpi-fort is not available.

Should an mpich version of mpi-fort.pc (and mpi-c.pc, mpi-cxx.pc) be
created and added to the mpich alternatives?

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages libmpich-dev depends on:
ii  g++ 4:6.3.0-4
ii  gfortran4:6.3.0-4
ii  libc6   2.24-10
ii  libcr-dev   0.8.5-2.3+b1
ii  libcr0  0.8.5-2.3+b1
ii  libmpich12  3.2-7+b1

Versions of packages libmpich-dev recommends:
ii  mpich  3.2-7+b1

libmpich-dev suggests no packages.

-- no debconf information

Bug#860598: RFS: openldap/2.4.44+dfsg-4 [RC]

2017-04-18 Thread Ryan Tandy 

Package: sponsorship-requests
Severity: important

Dear mentors,

I am looking for a sponsor to upload an updated openldap package targeted at
stretch. The changes have already been pre-approved by the release team in
#860448. The upload fixes one RC bug and one important bug and updates the
debconf translations.

The package can be found on mentors:

https://mentors.debian.net/debian/pool/main/o/openldap/openldap_2.4.44+dfsg-4.dsc

https://mentors.debian.net/package/openldap

Thanks,
Ryan

Bug#860597: util-linux: rtcwake's conversion from local time (EDT) to UTC is off by 8 hours.

2017-04-18 Thread Jason Cohen 
Package: util-linux
Version: 2.25.2-6
Severity: normal

Dear Maintainer,

rtcwake's conversion from local time to UTC is broken.  My system is set to the 
EDT timezone, which is -4 hours from UTC.  However, rtcwake adds 8 hours to my 
local time when converting to UTC.  This results in the wake timer being off by 
8 hours.
For example, to have rtcwake suspend to RAM and then wake at 11:04 PM EDT the 
same day, I need to use the following command:

rtcwake -m -l -t $(date +%s -d "tomorrow 07:04")

The expected behavior would be to enter the time in EDT as I used the -l flag 
to indicate the use of local time. I would expect the following command to 
achieve the same behavior:

rtcwake -m -l -t $(date +%s -d "today 23:04")

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?

I attmepted to use rtcwake to suspend my system to RAM and wake the system at a 
specified local time.

   * What exactly did you do (or not do) that was effective (or
 ineffective)?

Through testing, I discovered I needed to adjust local time +8 hours to achieve 
the expected behvaior.

   * What was the outcome of this action?

rtcwake now wakes the system as expected.

   * What outcome did you expect instead?

I expected to be able to enter the time using my correct local time (EDT).


-- System Information:
Debian Release: 8.7
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-0.bpo.2-amd64 (SMP w/8 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages util-linux depends on:
ii  initscripts2.88dsf-59
ii  libblkid1  2.25.2-6
ii  libc6  2.19-18+deb8u7
ii  libmount1  2.25.2-6
ii  libncurses55.9+20140913-1+b1
ii  libpam0g   1.1.8-3.1+deb8u2
ii  libselinux12.3-2
ii  libslang2  2.3.0-2
ii  libsmartcols1  2.25.2-6
ii  libtinfo5  5.9+20140913-1+b1
ii  libuuid1   2.25.2-6
ii  lsb-base   4.1+Debian13+nmu1
ii  tzdata 2016j-0+deb8u1
ii  zlib1g 1:1.2.8.dfsg-2+b1

util-linux recommends no packages.

Versions of packages util-linux suggests:
ii  dosfstools  3.0.27-1
ii  kbd 1.15.5-2
ii  util-linux-locales  2.25.2-6

-- no debconf information

Bug#860571: release-notes: clarify and document GnuPG transition for stretch

2017-04-18 Thread Joost van Baal-Ilić 
Maybe add something like:

"The upgrade to "modern" GnuPG has been made as smooth as possible by offering
migration scripts.  However, beware: The upgrade comes with some subtle
differences in GnuPG's interface.  See /usr/share/doc/gnupg/README.Debian for
more information."

Rationale: I'm thinking of e.g. 'all access to secret key material is handled
by gpg-agent'.

Thanks for your patch!

Bye,

Joost


On Tue, Apr 18, 2017 at 03:10:43PM -0400, Daniel Kahn Gillmor wrote:
> Package: release-notes
> Severity: normal
> Tags: patch
> Control: affects -1 src:gnupg2
> 
> The GnuPG transition from jessie to stretch is a significant change.
> We should document it in the release notes.
> 
> Attached is a proposed patch.
> 
> Regards,
> 
> --dkg
> 
> -- System Information:
> Debian Release: 9.0
>   APT prefers testing-debug
>   APT policy: (500, 'testing-debug'), (500, 'testing'), (200, 
> 'unstable-debug'), (200, 'unstable'), (1, 'experimental-debug'), (1, 
> 'experimental')
> Architecture: amd64 (x86_64)
> Foreign Architectures: i386
> 
> Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
> Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
> Shell: /bin/sh linked to /bin/dash
> Init: systemd (via /run/systemd/system)

> >From a743629071b6d138df19fef102a4b7c09b20fa81 Mon Sep 17 00:00:00 2001
> From: Daniel Kahn Gillmor 
> Date: Tue, 18 Apr 2017 15:07:53 -0400
> Subject: [PATCH] Clarify and document GnuPG transition
> 
> ---
>  en/whats-new.dbk | 22 --
>  1 file changed, 20 insertions(+), 2 deletions(-)
> 
> diff --git a/en/whats-new.dbk b/en/whats-new.dbk
> index 0d6dcb7d..e91aad00 100644
> --- a/en/whats-new.dbk
> +++ b/en/whats-new.dbk
> @@ -276,8 +276,8 @@ Among many others, this release also includes the 
> following software updates:
>
>  -->
>
> - GnupgGnupg
> - 2.0
> + GnuPGGnuPG
> + 1.4
>   2.1
>
>
> @@ -471,6 +471,24 @@ so are still included there.
>
>  
>  
> +
> +  Move to "Modern" GnuPG
> +  
> +The stretch release is the first version of Debian to feature the
> +"Modern" branch of GnuPG in the  +role="package">gnupg package.  This brings with it
> +elliptic curve cryptography, better defaults, a more modular
> +architecture, and improved smartcard support.  The modern branch
> +also explicitly does not support some older, known-broken formats
> +(like PGPv3).
> +  
> +  
> +We will continue to supply the "classic" branch of GnuPG as
> +gnupg1 for people who need
> +it, but it is now deprecated.
> +  
> +
> +
>  
>
>A new archive for debug symbols
> -- 
> 2.11.0
>

Bug#860596: linux-image-4.9.0-2-amd64: CPU frequency scaling after reboot

2017-04-18 Thread Alvin Zhu 
Package: src:linux
Version: 4.9.18-1
Severity: normal
Tags: upstream

Dear Maintainer,
I am using debian testing
When I use kernel linux-image-4.9.0-2-amd64, there is no CPU frequency scaling
when I reboot the system everytime. I got a fixed 3.20 GHz frequency. But If I
poweroff and poweron, the CPU frequency scaling works fine.
My CPU is Intel i7 6900k. the frequency is from 1.2 GHz to 4.0 GHz. Motherboard
is ASUS x99-E WS USB3.1.

I try to install kernel 4.10:
sudo apt -t experimental install linux-headers-4.10.0-trunk-all-amd64 linux-
image-4.10.0-trunk-amd64-unsigned
The kernel 4.10 works fine when I reboot the system.

I also try debian jessie, the kernel 3.16 works fine. but the kernel 4.9 from
jseeie-backports got the same bug.

the output of cpupower when I reboot to kernel 4.9:
% sudo cpupower frequency-info
analyzing CPU 0:
  driver: intel_pstate
  CPUs which run at the same hardware frequency: 0
  CPUs which need to have their frequency coordinated by software: 0
  maximum transition latency:  Cannot determine or is not supported.
  hardware limits: 1.20 GHz - 4.00 GHz
  available cpufreq governors: performance powersave
  current policy: frequency should be within 1.20 GHz and 4.00 GHz.
  The governor "powersave" may decide which speed to use
  within this range.
  current CPU frequency: Unable to call hardware
  current CPU frequency:  Unable to call to kernel
  boost state support:
Supported: yes
Active: yes
It can't read current CPU frequency. and the gnome extension"cpufreq" carsh.

% grep MHz /proc/cpuinfo:
cpu MHz : 3199.699
cpu MHz : 3199.699
cpu MHz : 3199.699
cpu MHz : 3199.699
cpu MHz : 3199.699
cpu MHz : 3199.699
cpu MHz : 3199.699
cpu MHz : 3199.699
cpu MHz : 3199.699
cpu MHz : 3199.699
cpu MHz : 3199.699
cpu MHz : 3199.699
cpu MHz : 3199.699
cpu MHz : 3199.699
cpu MHz : 3199.699
cpu MHz : 3199.699

part of /proc/cpuinfo:
processor   : 15
vendor_id   : GenuineIntel
cpu family  : 6
model   : 79
model name  : Intel(R) Core(TM) i7-6900K CPU @ 3.20GHz
stepping: 1
microcode   : 0xb1c
cpu MHz : 3199.699
cache size  : 20480 KB
physical id : 0
siblings: 16
core id : 7
cpu cores   : 8
apicid  : 15
initial apicid  : 15
fpu : yes
fpu_exception   : yes
cpuid level : 20
wp  : yes
flags   : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov
pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe syscall nx pdpe1gb
rdtscp lm constant_tsc arch_perfmon pebs bts rep_good nopl xtopology
nonstop_tsc aperfmperf eagerfpu pni pclmulqdq dtes64 ds_cpl vmx est tm2 ssse3
sdbg fma cx16 xtpr pdcm pcid dca sse4_1 sse4_2 x2apic movbe popcnt
tsc_deadline_timer aes xsave avx f16c rdrand lahf_lm abm 3dnowprefetch epb
intel_pt tpr_shadow vnmi flexpriority ept vpid fsgsbase tsc_adjust bmi1 hle
avx2 smep bmi2 erms invpcid rtm cqm rdseed adx smap xsaveopt cqm_llc
cqm_occup_llc cqm_mbm_total cqm_mbm_local dtherm ida arat pln pts
bugs:
bogomips: 6400.45
clflush size: 64
cache_alignment : 64
address sizes   : 46 bits physical, 48 bits virtual
power management:



-- Package-specific info:
** Version:
Linux version 4.9.0-2-amd64 (debian-ker...@lists.debian.org) (gcc version 6.3.0 
20170321 (Debian 6.3.0-11) ) #1 SMP Debian 4.9.18-1 (2017-03-30)

** Command line:
BOOT_IMAGE=/@/boot/vmlinuz-4.9.0-2-amd64 
root=UUID=10c08707-5063-4c70-b218-023e4951f774 ro rootflags=subvol=@ quiet 
pci=noaer

** Tainted: POE (12289)
 * Proprietary module has been loaded.
 * Out-of-tree module has been loaded.
 * Unsigned module has been loaded.

** Kernel log:
[   13.346796] EDAC sbridge: Seeking for: PCI ID 8086:6fa0
[   13.346805] EDAC sbridge: Seeking for: PCI ID 8086:6fa0
[   13.346812] EDAC sbridge: Seeking for: PCI ID 8086:6ffc
[   13.346816] EDAC sbridge: Seeking for: PCI ID 8086:6ffc
[   13.346822] EDAC sbridge: Seeking for: PCI ID 8086:6ffd
[   13.346825] EDAC sbridge: Seeking for: PCI ID 8086:6ffd
[   13.346832] EDAC sbridge: Seeking for: PCI ID 8086:6f60
[   13.346839] EDAC sbridge: Seeking for: PCI ID 8086:6fa8
[   13.346843] EDAC sbridge: Seeking for: PCI ID 8086:6fa8
[   13.346849] EDAC sbridge: Seeking for: PCI ID 8086:6f71
[   13.346853] EDAC sbridge: Seeking for: PCI ID 8086:6f71
[   13.346858] EDAC sbridge: Seeking for: PCI ID 8086:6faa
[   13.346862] EDAC sbridge: Seeking for: PCI ID 8086:6faa
[   13.346868] EDAC sbridge: Seeking for: PCI ID 8086:6fab
[   13.346872] EDAC sbridge: Seeking for: PCI ID 8086:6fab
[   13.346877] EDAC sbridge: Seeking for: PCI ID 8086:6fac
[   13.346882] EDAC sbridge: Seeking for: PCI ID 8086:6fac
[   13.346887] EDAC sbridge: Seeking for: PCI ID 8086:6fad
[   13.346891] EDAC sbridge: Seeking for: PCI ID 8086:6fad
[   13.346897] EDAC sbridge: Seeking for: PCI ID 8086:6faf
[

Bug#858454: RFS: simple-obfs/0.0.3-1~exp1 [ITP] -- simple obfusacting plugin for shadowsocks server

2017-04-18 Thread Andrew Starr-Bochicchio 
On Wed, Mar 22, 2017 at 10:13 AM, Roger Shimizu  wrote:
> I am looking for a sponsor for my package "simple-obfs", which is a new
> dependency of shadowsocks-libev since v3.0.3

Hi Roger,

Great work! Though there are a few things to address before uploading.
The largest ones are around the watch file and upstream tarball:

The watch file as provided seems to have an issue with the regex used
for filenamemangle and fails to download the upstream tarball. Running
uscan errors out with:

uscan warn: stop mangling:
rule="s%(?:.*?)?v?(\d[\d.]*)\.tar\.gz%simple-obfs-$1.tar.gz%""
   rule doesn't match "(s|tr|y)%.*%.*%[a-z]*" (or similar).
uscan warn: In debian/watch, potentially unsafe or malformed
filenamemangle pattern:
  's%(?:.*?)?v?(\d[\d.]*)\.tar\.gz%simple-obfs-$1.tar.gz%"' found.
Skipping watchline
  https://github.com/shadowsocks/simple-obfs/tags
(?:.*?/)?v?(\d[\d.]*)\.tar\.gz debian uupdate

Additionally, the upstream tarball I found on the project's GitHub
page [0] does not match the one provided on mentors.

$ md5sum simple-obfs-0.0.3.tar.gz
7daebe04043402fa61616c958140c24e  simple-obfs-0.0.3.tar.gz

$ md5sum simple-obfs_0.0.3.orig.tar.xz
edf878d5cd84416bd9241862e0c58e0a  simple-obfs_0.0.3.orig.tar.xz

A few minor points:

- The package description could be expanded on a bit. Referring to the
README.md and manpages isn't all that useful as the user would likely
not have the package installed. The description should help a user
understand what purpose the package serves but does not need to get
into usage details.

- The control file does not contain Vcs-* [1] fields. [1] Also, while
it is not a hard requirement, using Debian infrastructure (i.e.
git.debian.org) rather than GitHub would be prefered.

- If desired, targeting unstable would be fine as this is a new
package and will not cause issues with getting changes into testing.

[0] https://github.com/shadowsocks/simple-obfs/releases
[1] 
https://www.debian.org/doc/debian-policy/ch-controlfields.html#s-f-VCS-fields

Thanks,

-- Andrew Starr-Bochicchio

   Debian Developer 
   Ubuntu Developer 
   PGP/GPG Key ID: 3B56E2BBD53FDCB1

Bug#860512: [DRE-maint] Bug#860512: ruby-ronn: fails on m68k (no fast_xs)

2017-04-18 Thread Aaron M. Ucko 
Christian Hofstaedtler  writes:

> This usually means the ruby-fast-xs package is missing or broken or
> the search paths are incorrect.

That makes sense.

>  - ruby -e 'puts RbConfig::CONFIG'

I don't have access to an m68k system, but am attaching a copy of the
rbconfig.rb that should have been in use.

>  - installed versions of ruby* (esp. ruby-hpricot, ruby-fast-xs,
>ronn)

Per 
https://buildd.debian.org/status/fetch.php?pkg=telegram-desktop=m68k=1.0.29-1=1491864475=0:

ruby 1:2.3.3
ruby-did-you-mean 1.0.0-2
ruby-fast-xs 0.8.0-3+b2
ruby-hpricot 0.8.6-6+b2
ruby-minitest 5.9.0-1
ruby-mustache 1.0.2-1
ruby-net-telnet 0.1.1-2
ruby-power-assert 0.3.0-1
ruby-rdiscount 2.1.8-1+b3
ruby-ronn 0.7.3-5
ruby-test-unit 3.1.7-2
ruby2.3 2.3.3-1
rubygems-integration 1.11

AFAICT, ruby-fast-xs installs into
/usr/lib/m68k-linux-gnu/ruby/vendor_ruby/2.3.0/, to which
CONFIG["vendorarchdir"] should expand.  Its only extra dependency is
libgmp10, which was installed, at version 2:6.1.2+dfsg-1.

> PS: ronn hasn't seen any development since 2013. It's advisable to
> migrate off it.

I've just filed #860595 accordingly.

Thanks!

-- 
Aaron M. Ucko, KB1CJC (amu at alum.mit.edu, ucko at debian.org)
http://www.mit.edu/~amu/ | http://stuff.mit.edu/cgi/finger/?a...@monk.mit.edu



rbconfig.rb
Description: application/ruby

Bug#860595: telegram-desktop: please migrate from ronn (deprecated)

2017-04-18 Thread Aaron M. Ucko 
Source: telegram-desktop
Version: 1.0.29-1
Severity: normal
Tags: upstream

The build of telegram-desktop for m68k (admittedly not a release
architecture) failed with a ronn startup error, which I reported as
#860512.  In response, ronn maintainer Christian Hofstaedtler pointed
out that ronn is deprecated; please look into migrating to a different
tool.

Thanks!

-- 
Aaron M. Ucko, KB1CJC (amu at alum.mit.edu, ucko at debian.org)
http://www.mit.edu/~amu/ | http://stuff.mit.edu/cgi/finger/?a...@monk.mit.edu

Bug#202675: [Popcon-developers] Bug#202675: Bug#202675: popularity-contest: Should collect and report kernel modules used

2017-04-18 Thread Paul Wise 
On Wed, Apr 19, 2017 at 4:03 AM, Bill Allombert wrote:

> Well, if modules were split in several packages, then popcon could
> report the popularity of them.

Are you sure about that? The only linux-image-* file I can find in my
popcon report is the System.map, there is nothing for /lib/modules/...

/boot/System.map-4.9.0-2-amd64

-- 
bye,
pabs

https://wiki.debian.org/PaulWise

Bug#860594: ITP: r-cran-rematch -- R package to match regular expressions with a nicer 'api'

2017-04-18 Thread Dirk Eddelbuettel 

Package: wnpp
Owner: Dirk Eddelbuettel 
Severity: wishlist

* Package name: r-cran-rematch
  Version : 1.0.1-1
  Upstream Author : Gabor Csardi
* URL or Web page : https://cran.r-project.org/package=rematch
* License : MIT
  Description : R package to match regular expressions with a nicer 'api'

This package is a new Build-Depends of a new Build-Depends of the existing
package r-cran-readxl.

Dirk

-- 
http://dirk.eddelbuettel.com | @eddelbuettel | e...@debian.org

Bug#860207: fzy FTBFS on *-i386: assert(match("a", "*a") == SCORE_GAP_LEADING) was false

2017-04-18 Thread 陳昌倬 
Control: forwarded -1 https://github.com/jhawthorn/fzy/issues/38

Upstream has fixed this issue in version 0.9. Prepare to upload this
version.


-- 
ChangZhuo Chen (陳昌倬) czchen@{czchen,debian}.org
http://czchen.info/
Key fingerprint = BA04 346D C2E1 FE63 C790  8793 CC65 B0CD EC27 5D5B


signature.asc
Description: PGP signature

Bug#860593: unblock: reportbug/7.1.6

2017-04-18 Thread Sandro Tosi 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package reportbug

This upload fixes 2 crashes (one of which pinged by a RT member)

unblock reportbug/7.1.6

-- System Information:
Debian Release: stretch/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.2.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru reportbug-7.1.5/debian/changelog reportbug-7.1.6/debian/changelog
--- reportbug-7.1.5/debian/changelog2017-02-12 12:07:18.0 -0500
+++ reportbug-7.1.6/debian/changelog2017-04-18 21:12:02.0 -0400
@@ -1,3 +1,15 @@
+reportbug (7.1.6) unstable; urgency=medium
+
+  * reportbug/utils.py
+- wrap every command execution in a helper function to (eventually) decode
+  the command output, this will prevent non-UTF-8 output to crash 
reportbug;
+  patch by Nis Martensen; Closes: #857794
+  * reportbug/submit.py
+- handle text attachments in different encodings, currently making 
reportbug
+  crash; patch by Nis Martensen; Follow up for #848729
+
+ -- Sandro Tosi   Tue, 18 Apr 2017 21:12:02 -0400
+
 reportbug (7.1.5) unstable; urgency=medium
 
   * reportbug/utils.py
diff -Nru reportbug-7.1.5/reportbug/__init__.py 
reportbug-7.1.6/reportbug/__init__.py
--- reportbug-7.1.5/reportbug/__init__.py   2017-02-12 12:07:18.0 
-0500
+++ reportbug-7.1.6/reportbug/__init__.py   2017-04-18 21:12:02.0 
-0400
@@ -25,7 +25,7 @@
 __all__ = ['bugreport', 'utils', 'urlutils', 'checkbuildd', 'checkversions',
'debbugs', 'exceptions', 'submit', 'tempfile']
 
-VERSION_NUMBER = "7.1.5"
+VERSION_NUMBER = "7.1.6"
 
 VERSION = "reportbug " + VERSION_NUMBER
 COPYRIGHT = VERSION + '\nCopyright (C) 1999-2008 Chris Lawrence 
' + \
Binary files 
/tmp/1bRAXcxzCa/reportbug-7.1.5/reportbug/__pycache__/__init__.cpython-35.pyc 
and 
/tmp/snN27qW4Zs/reportbug-7.1.6/reportbug/__pycache__/__init__.cpython-35.pyc 
differ
Binary files 
/tmp/1bRAXcxzCa/reportbug-7.1.5/reportbug/__pycache__/utils.cpython-35.pyc and 
/tmp/snN27qW4Zs/reportbug-7.1.6/reportbug/__pycache__/utils.cpython-35.pyc 
differ
diff -Nru reportbug-7.1.5/reportbug/submit.py 
reportbug-7.1.6/reportbug/submit.py
--- reportbug-7.1.5/reportbug/submit.py 2017-02-12 12:07:18.0 -0500
+++ reportbug-7.1.6/reportbug/submit.py 2017-04-18 21:12:02.0 -0400
@@ -153,9 +153,15 @@
 
 maintype, subtype = ctype.split('/', 1)
 if maintype == 'text':
-fp = open(attachment, 'rU')
-part = MIMEText(fp.read())
-fp.close()
+try:
+with open(attachment, 'rU') as fp:
+part = MIMEText(fp.read())
+except UnicodeDecodeError:
+fp = open(attachment, 'rb')
+part = MIMEBase(maintype, subtype)
+part.set_payload(fp.read())
+fp.close()
+email.encoders.encode_base64(part)
 elif maintype == 'message':
 fp = open(attachment, 'rb')
 part = MIMEMessage(email.message_from_file(fp),
diff -Nru reportbug-7.1.5/reportbug/utils.py reportbug-7.1.6/reportbug/utils.py
--- reportbug-7.1.5/reportbug/utils.py  2017-02-12 12:07:18.0 -0500
+++ reportbug-7.1.6/reportbug/utils.py  2017-04-18 21:12:02.0 -0400
@@ -180,6 +180,13 @@
 return (pipe, use_dlocate)
 
 
+def get_command_output(cmd):
+use_shell = False
+if isinstance(cmd, str) and ' ' in cmd:
+use_shell = True
+return subprocess.run(cmd, shell=use_shell, 
stdout=subprocess.PIPE).stdout.decode(errors='backslashreplace')
+
+
 def query_dpkg_for(filename, use_dlocate=True):
 try:
 x = os.getcwd()
@@ -353,10 +360,10 @@
 
 packarg = pipes.quote(package)
 if avail:
-output = subprocess.getoutput(
+output = get_command_output(
 "COLUMNS=79 dpkg --print-avail %s 2>/dev/null" % packarg)
 else:
-output = subprocess.getoutput(
+output = get_command_output(
 "COLUMNS=79 dpkg --status %s 2>/dev/null" % packarg)
 
 for line in output.split(os.linesep):
@@ -511,7 +518,7 @@
 
 
 def available_package_description(package):
-data = subprocess.getoutput('apt-cache show ' + pipes.quote(package))
+data = get_command_output('apt-cache show ' + pipes.quote(package))
 descre = re.compile('^Description(?:-.*)?: (.*)$')
 for line in data.split('\n'):
 m = descre.match(line)
@@ -523,7 +530,7 @@
 def get_source_name(package):
 packages = []
 
-data = subprocess.getoutput('apt-cache showsrc ' + pipes.quote(package))
+data = get_command_output('apt-cache showsrc ' + pipes.quote(package))
 packre =

Bug#857794: [reportbug/master] wrap every command execution in a helper function to (eventually) decode the command output, this will prevent non-UTF-8 output to crash reportbug; patch by Nis Martense

2017-04-18 Thread Sandro Tosi 
tag 857794 pending
tag 857794 pending
thanks

Date:   Tue Apr 18 20:53:16 2017 -0400
Author: Sandro Tosi 
Commit ID: df3421fcd603037616d28b1d78a86374adb7acfb
Commit URL: 
http://anonscm.debian.org/gitweb/?p=reportbug/reportbug.git;a=commitdiff;h=df3421fcd603037616d28b1d78a86374adb7acfb
Patch URL: 
http://anonscm.debian.org/gitweb/?p=reportbug/reportbug.git;a=commitdiff_plain;h=df3421fcd603037616d28b1d78a86374adb7acfb

wrap every command execution in a helper function to (eventually) decode 
the command output, this will prevent non-UTF-8 output to crash reportbug; 
patch by Nis Martensen; Closes: #857794

Bug#860592: guake: Guake Settings restarts User Session

2017-04-18 Thread Ian 
Package: guake
Version: 0.8.8-1
Severity: important

Dear Maintainer,

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation? I've been customizing the standard menu
options to make my terminal juicier
   * What exactly did you do (or not do) that was effective (or
 ineffective)? I've been adjusting a setting, and then click close to try
it. This restarts my entire Debian User session. I'm logged out and have to log
back in via lightDM
   * What was the outcome of this action? Logged out
   * What outcome did you expect instead? Settings applied and I go on with my
session

*** End of the template - remove these template lines ***



-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (990, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages guake depends on:
ii  gconf2   3.2.6-4+b1
ii  libgtk2.0-0  2.24.31-2
ii  notification-daemon  3.20.0-1+b1
ii  python   2.7.13-2
ii  python-dbus  1.2.4-1+b1
ii  python-gconf 2.28.1+dfsg-1.2
ii  python-glade22.24.0-5.1
ii  python-keybinder 0.3.1-1
ii  python-notify0.1.1-4
ii  python-vte   1:0.28.2-5+b2
ii  python-xdg   0.25-4
ii  python2.72.7.13-2
pn  python:any   
ii  xfce4-notifyd [notification-daemon]  0.3.4-1

guake recommends no packages.

guake suggests no packages.

-- no debconf information

Bug#857013: reportbug: Attaching patch

2017-04-18 Thread Sandro Tosi 
On Thu, Apr 13, 2017 at 4:52 AM, Michal Suchanek  wrote:
> --- /usr/lib/python3/dist-packages/reportbug/utils.py   2017-04-13 
> 10:49:24.126454516 +0200
> +++ /usr/lib/python3/dist-packages/reportbug/utils.py~  2017-04-13 
> 10:49:17.663966502 +0200
> @@ -369,9 +369,7 @@
>  confmode = False
>  else:
>  # re is used to identify also conffiles with spaces in the 
> name
> -tmp = re.findall(r' (.+) ([0-9a-f]+).*
> , line)
> -if len(tmp) > 0:
> -conffiles = conffiles + [tmp[0]]
> +conffiles = conffiles + [re.findall(r' (.+) ([0-9a-f]+).*, 
> line)[0]]
>
>  if versionre.match(line):
>  (crud, pkgversion) = line.split(": ", 1)


is this in reverse order?

-- 
Sandro "morph" Tosi
My website: http://sandrotosi.me/
Me at Debian: http://wiki.debian.org/SandroTosi
G+: https://plus.google.com/u/0/+SandroTosi

Bug#860466: RFS: equivs/2.0.10 [QA] -- Circumvent Debian package dependencies

2017-04-18 Thread Sean Whitton 
control: tag -1 +moreinfo

On Wed, Apr 19, 2017 at 09:10:52AM +0900, Roger Shimizu wrote:
> Thanks for your review!

No problem.

> I think these are all simple fix that suitable for stretch.
> The policy don't require pre-approval to upload to unstable [0].
> 
> If the unblock is rejected, and someone need to to fix another RC bug for
> this package, it's still possible since we have "testing-proposed-updates" 
> [0].

I think you've misunderstood both the freeze policy, and
testing-proposed-updates.

Firstly, most/all of your changes fail to satisfy any of the bullet
points under "Changes which can be considered" in the freeze policy.  So
the unblock request will be denied.

Secondly, testing-proposed-updates is highly inconvenient for the
release team.  It requires manual intervention and slows everything
down.  So we shouldn't upload to unstable unless we *expect* it to be
unblocked.

-- 
Sean Whitton


signature.asc
Description: PGP signature

Bug#860591: cups-daemon: Job enters queue, then stops and can't be removed

2017-04-18 Thread Ben Finney 
Control: found -1 cups-daemon/2.2.1-5
Control: found -1 cups-daemon/2.2.1-8

On 19-Apr-2017, Ben Finney wrote:
> When attempting to print via CUPS, the job will successfully enter the
> queue (the status “Processing” is shown). Then, the job is shown as
> “Stopped”; the queue does not progress.

This occurs in both version “2.2.1-8” in current Stretch, and the
version “2.2.2-2” in current Experimental.

-- 
 \ “Are you pondering what I'm pondering?” “I think so, Brain, but |
  `\   pants with horizontal stripes make me look chubby.” —_Pinky and |
_o__)   The Brain_ |
Ben Finney 


signature.asc
Description: PGP signature

Bug#860591: cups-daemon: Job enters queue, then stops and can't be removed

2017-04-18 Thread Ben Finney 
Control: found -1 cups-daemon/2.2.1-5
Control: found -1 cups-daemon/2.2.1-8

On 19-Apr-2017, Ben Finney wrote:
> When attempting to print via CUPS, the job will successfully enter the
> queue (the status “Processing” is shown). Then, the job is shown as
> “Stopped”; the queue does not progress.

This occurs in both version “2.2.1-8” in current Stretch, and the
version “2.2.2-2” in current Experimental.

-- 
 \ “Are you pondering what I'm pondering?” “I think so, Brain, but |
  `\   pants with horizontal stripes make me look chubby.” —_Pinky and |
_o__)   The Brain_ |
Ben Finney 


signature.asc
Description: PGP signature

Bug#860591: cups-daemon: Job enters queue, then stops and can't be removed

2017-04-18 Thread Ben Finney 
Package: cups-daemon
Version: 2.2.1-5
Version: 2.2.2-2
Severity: normal

When attempting to print via CUPS, the job will successfully enter the
queue (the status “Processing” is shown). Then, the job is shown as
“Stopped”; the queue does not progress.

When I then attempt to remove that job – or any job – it simply fails.
The print queue is currently unusable, and its jobs remain there,
stopped.

I am using GNOME 3's printer management.


-- System Information:
Debian Release: 9.0
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8) (ignored: LC_ALL 
set to en_AU.UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages cups-daemon depends on:
ii  adduser  3.115
ii  bc   1.06.95-9+b3
ii  dpkg 1.18.23
ii  init-system-helpers  1.47
ii  libavahi-client3 0.6.32-2
ii  libavahi-common3 0.6.32-2
ii  libc62.24-9
ii  libcups2 2.2.2-2
ii  libcupsmime1 2.2.2-2
ii  libdbus-1-3  1.10.18-1
ii  libgssapi-krb5-2 1.15-1
ii  libpam0g 1.1.8-3.5
ii  libpaper11.1.24+nmu5
ii  libsystemd0  232-22
ii  lsb-base 9.20161125
ii  procps   2:3.3.12-3
ii  ssl-cert 1.0.38

Versions of packages cups-daemon recommends:
ii  avahi-daemon  0.6.32-2
ii  colord1.3.3-2
ii  cups-browsed  1.13.4-1

Versions of packages cups-daemon suggests:
ii  cups   2.2.2-2
ii  cups-bsd   2.2.2-2
ii  cups-client2.2.2-2
ii  cups-common2.2.2-2
ii  cups-filters [foomatic-filters]1.13.4-1
ii  cups-ppdc  2.2.1-8
ii  cups-server-common 2.2.2-2
ii  foomatic-db-compressed-ppds [foomatic-db]  20161201-1
ii  ghostscript9.20~dfsg-3
ii  hplip  3.16.11+repack0-2
ii  poppler-utils  0.48.0-2
ii  printer-driver-cups-pdf [cups-pdf] 2.6.1-22
ii  printer-driver-gutenprint  5.2.11-1+b2
ii  printer-driver-hpcups  3.16.11+repack0-2
pn  smbclient  
ii  udev   232-22

-- no debconf information

-- 
 \“We have to go forth and crush every world view that doesn't |
  `\believe in tolerance and free speech.” —David Brin |
_o__)  |
Ben Finney 


signature.asc
Description: PGP signature

Bug#860590: ebtables: Use real locking in ebtables (LP: #1645324)

2017-04-18 Thread Dragan Stancevic 
Package: ebtables
Version: 2.0.10.4-3.5
Severity: normal
Tags: patch
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu zesty ubuntu-patch

Dear Maintainer,


In Ubuntu, the attached patch was applied to achieve the following:


  * Use real locking in ebtables (LP: #1645324)
- Prior use of locking by file exclusive access is inadequate
  because if ebtables crashes or is killed it will leave a
  stale lock file behind which then blocks new ebtables from
  running.


Thanks for considering the patch.


-- System Information:
Debian Release: stretch/sid
  APT prefers xenial-updates
  APT policy: (500, 'xenial-updates'), (500, 'xenial-security'), (500, 
'xenial'), (100, 'xenial-backports')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.4.0-70-generic (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru ebtables-2.0.10.4/debian/control ebtables-2.0.10.4/debian/control
--- ebtables-2.0.10.4/debian/control	2016-07-28 07:38:12.0 -0500
+++ ebtables-2.0.10.4/debian/control	2017-04-18 19:24:58.0 -0500
@@ -1,8 +1,7 @@
 Source: ebtables
 Section: net
 Priority: optional
-Maintainer: Ubuntu Developers 
-XSBC-Original-Maintainer: Jochen Friedrich 
+Maintainer: Jochen Friedrich 
 Uploaders: William Dauchy 
 Standards-Version: 3.9.6
 Build-Depends: debhelper (>= 9), cdbs (>= 0.4.127), dh-systemd (>= 1.5)
diff -Nru ebtables-2.0.10.4/debian/patches/series ebtables-2.0.10.4/debian/patches/series
--- ebtables-2.0.10.4/debian/patches/series	2016-07-28 07:38:12.0 -0500
+++ ebtables-2.0.10.4/debian/patches/series	2017-04-18 17:29:23.0 -0500
@@ -4,3 +4,4 @@
 compensate-for-missing-aligned-u64.patch
 lockdirfix.patch
 link_with_no-as-needed.patch
+use_real_locking.patch
diff -Nru ebtables-2.0.10.4/debian/patches/use_real_locking.patch ebtables-2.0.10.4/debian/patches/use_real_locking.patch
--- ebtables-2.0.10.4/debian/patches/use_real_locking.patch	1969-12-31 18:00:00.0 -0600
+++ ebtables-2.0.10.4/debian/patches/use_real_locking.patch	2017-04-18 17:32:14.0 -0500
@@ -0,0 +1,76 @@
+Description: Use real locking in ebtables
+ Prior use of locking by file exclusive access is inadequate
+ because if ebtables crashes or is killed it will leave a
+ stale lock file behind which then blocks new ebtables from
+ running.
+Author: dragan.stance...@canonical.com
+Bug: https://bugs.launchpad.net/ubuntu/+source/ebtables/+bug/1645324
+---
+This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
+Index: ebtables-2.0.10.4/libebtc.c
+===
+--- ebtables-2.0.10.4.orig/libebtc.c
 ebtables-2.0.10.4/libebtc.c
+@@ -137,28 +137,19 @@ void ebt_list_extensions()
+ #define LOCKDIR "/run"
+ #define LOCKFILE LOCKDIR"/ebtables.lock"
+ #endif
+-static int lockfd = -1, locked;
++static volatile int lockfd = -1;
+ int use_lockfd;
+ /* Returns 0 on success, -1 when the file is locked by another process
+  * or -2 on any other error. */
+ static int lock_file()
+ {
+-	int try = 0;
+-	int ret = 0;
+-	sigset_t sigset;
++	int try = 0, ret = 0;
++	struct flock fl = {0,};
+ 
+ tryagain:
+-	/* the SIGINT handler will call unlock_file. To make sure the state
+-	 * of the variable locked is correct, we need to temporarily mask the
+-	 * SIGINT interrupt. */
+-	sigemptyset();
+-	sigaddset(, SIGINT);
+-	sigprocmask(SIG_BLOCK, , NULL);
+-	lockfd = open(LOCKFILE, O_CREAT | O_EXCL | O_WRONLY, 00600);
++	lockfd = open(LOCKFILE, O_CREAT | O_WRONLY, 00600);
+ 	if (lockfd < 0) {
+-		if (errno == EEXIST)
+-			ret = -1;
+-		else if (try == 1)
++		if (try == 1)
+ 			ret = -2;
+ 		else {
+ 			if (mkdir(LOCKDIR, 00700))
+@@ -169,18 +160,22 @@ tryagain:
+ 			}
+ 		}
+ 	} else {
+-		close(lockfd);
+-		locked = 1;
++		fl.l_type = F_WRLCK;
++		ret = fcntl(lockfd, F_SETLK, );
++		if (ret == -1 && errno != (EAGAIN || EACCES))
++			ret = -2;
+ 	}
+-	sigprocmask(SIG_UNBLOCK, , NULL);
+ 	return ret;
+ }
+ 
+ void unlock_file()
+ {
+-	if (locked) {
+-		remove(LOCKFILE);
+-		locked = 0;
++	struct flock fl = {0,};
++
++	if (lockfd > -1) {
++		fl.l_type = F_UNLCK;
++		fcntl(lockfd, F_SETLK, );
++		close(lockfd);
+ 	}
+ }
+

Bug#857794: [Reportbug-maint] Bug#857794: reportbug: crash when encountering some non-ASCII characters

2017-04-18 Thread Sandro Tosi 
On Tue, Apr 11, 2017 at 12:16 PM, Niels Thykier  wrote:
> Is there an update on this bug? :)

apologies for the delay, i'm preparing an upload

-- 
Sandro "morph" Tosi
My website: http://sandrotosi.me/
Me at Debian: http://wiki.debian.org/SandroTosi
G+: https://plus.google.com/u/0/+SandroTosi

Bug#860589: unblock: pyvirtualdisplay/0.2.1-2

2017-04-18 Thread Sandro Tosi 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package pyvirtualdisplay

The last upload add 2 dependencies, needed to be able to use pyvirtualdisplay
(without any of them, arguably xvfb the most important, so in depends, you cant
instantiate the main class Display())

source debdiff attached

unblock pyvirtualdisplay/0.2.1-2

-- System Information:
Debian Release: stretch/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.2.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru pyvirtualdisplay-0.2.1/debian/changelog 
pyvirtualdisplay-0.2.1/debian/changelog
--- pyvirtualdisplay-0.2.1/debian/changelog 2016-12-13 19:16:11.0 
-0500
+++ pyvirtualdisplay-0.2.1/debian/changelog 2017-04-18 20:13:15.0 
-0400
@@ -1,3 +1,11 @@
+pyvirtualdisplay (0.2.1-2) unstable; urgency=medium
+
+  * debian/control
+- add xvfb to depends and xserver-xephyr to suggests: one of them has to be
+  available to instantiate the Display() class; Closes: #860501
+
+ -- Sandro Tosi   Tue, 18 Apr 2017 20:13:15 -0400
+
 pyvirtualdisplay (0.2.1-1) unstable; urgency=medium
 
   * New upstream release
diff -Nru pyvirtualdisplay-0.2.1/debian/control 
pyvirtualdisplay-0.2.1/debian/control
--- pyvirtualdisplay-0.2.1/debian/control   2016-12-13 19:16:11.0 
-0500
+++ pyvirtualdisplay-0.2.1/debian/control   2017-04-18 20:13:15.0 
-0400
@@ -17,9 +17,9 @@
 
 Package: python-pyvirtualdisplay
 Architecture: all
-Depends: ${misc:Depends}, ${python:Depends},
+Depends: ${misc:Depends}, ${python:Depends}, xvfb
 Recommends: ${python:Recommends}
-Suggests: ${python:Suggests}
+Suggests: ${python:Suggests}, xserver-xephyr
 Description: python wrapper for Xvfb, Xephyr and Xvnc - Python 2.X
  pyvirtualdisplay is a python wrapper for Xvfb, Xephyr and Xvnc
  .
@@ -27,9 +27,9 @@
 
 Package: python3-pyvirtualdisplay
 Architecture: all
-Depends: ${misc:Depends}, ${python3:Depends},
+Depends: ${misc:Depends}, ${python3:Depends}, xvfb
 Recommends: ${python3:Recommends}
-Suggests: ${python3:Suggests}
+Suggests: ${python3:Suggests}, xserver-xephyr
 Description: python wrapper for Xvfb, Xephyr and Xvnc
  pyvirtualdisplay is a python wrapper for Xvfb, Xephyr and Xvnc
  .

Bug#860496: RFS: drgeo/1.1.0-10.3 [NMU, RC]

2017-04-18 Thread Patrick Hetu 

On Mon, Apr 17, 2017 at 05:59:11PM -0400, Patrick Hetu wrote:
>   * Fixed compatibility with Guile 2.0. (Closes: #707903)


Thank you for your work to fix this bug.

What is the source of the patch you have added?


I did the patch myself.


Also, your changelog needs to be much more detailed.  You should list
each change to the debian/ directory on its own line.  For example, 
the

changes to d/rules and d/control.

Further, since this is an NMU and now a QA upload, it is inappropriate
to bump the standards version.  You should limit your changes to those
necessary to fix the RC bug.


Ok, I think I fixed those issues, can you take new a look at:

 
https://mentors.debian.net/debian/pool/main/d/drgeo/drgeo_1.1.0-10.3.dsc


thanks,

Patrick

Bug#860588: mate-themes: Most of gnome-look 3.2 themes not working

2017-04-18 Thread Blackhold 
Package: mate-themes
Version: 3.22.6-1
Severity: important

Dear Maintainer,

I'm testing some third party themes, I've tested with Dark Aurora, Dust, Flat 
Plat themes and doesn't shows properly, for example buttons of maximize,
minimize and close, and are not taking the text colors of the aplications menú 
toolbar, making it unreadable.

Maybe is a good idea to add new dark bar + white background themes if it's not 
possible to make albatross work due it is discontinued.

In ubuntu mate are nice working themes.

I think it's important to work for more compatible themes on mate and remove 
incompatible themes.

Related to bug #832422 


-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=ca_ES.UTF-8, LC_CTYPE=ca_ES.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages mate-themes depends on:
ii  gtk2-engines  1:2.20.2-3
ii  gtk2-engines-murrine  0.98.1.1-6
ii  gtk2-engines-pixbuf   2.24.31-2
ii  librsvg2-common   2.40.16-1+b1
ii  mate-icon-theme   1.16.0-1

Versions of packages mate-themes recommends:
ii  dmz-cursor-theme  0.4.4

mate-themes suggests no packages.

-- no debconf information

Bug#860466: RFS: equivs/2.0.10 [QA] -- Circumvent Debian package dependencies

2017-04-18 Thread Roger Shimizu 
Control: tag -1 -moreinfo

Dear Sean,

Thanks for your review!
Very helpful. And I pushed my fixes to branch qa_upload2.
(I removed the final releasing commit of branch qa_upload, and added update 
commit)

Package also re-uploaded to DoM amd64 and mentors.

On Tue, 18 Apr 2017 09:37:20 -0700
Sean Whitton  wrote:

> control: tag -1 +moreinfo
> 
> Dear Roger,
> 
> On Mon, Apr 17, 2017 at 08:25:16PM +0900, Roger Shimizu wrote:
> > I am looking for a sponsor for my package "equivs"
> 
> Thanks for working on all these improvements and fixes.
> 
> Here is a review of 9818bd99a15efbbbf37eace90480f69e682f2e8f:
> 
> - Shouldn't this target experimental, not unstable, due to the freeze?

I think these are all simple fix that suitable for stretch.
The policy don't require pre-approval to upload to unstable [0].

If the unblock is rejected, and someone need to to fix another RC bug for
this package, it's still possible since we have "testing-proposed-updates" [0].

[0] https://release.debian.org/stretch/freeze_policy.html

> - In the old copyright file, there was a single list of copyright
>   holders, but you have generated two lists, for * and for debian/*.
>   How did you determine this?  Based on d/changelog?  I'm not sure that
>   is sufficiently reliable.  To be safe, it might be best to just have a
>   "Files: *" stanza for everything -- I'm not sure.

Indeed.
The new d/copyright was generated by decopy.
I think it's just have issue to support native package, or 1.0 source format,
when I invoked decopy command. (I changed to 3.0 native afterwards)

Now I merged two parts.
New entries are catched by decopy, which find it in d/changelog, I think.
 
> d/changelog:
> 
> - You should include in the changelog that you updated the Maintainer:
>   field (not every QA upload does this).  It's also good to write
>   something like (see #xx) where that's the number of the orphaning
>   bug.

Fixed.

> - You wrote "fix typos" in README.Debian, but the errors were not typos
>   (typos means "typographical errors").  They were just errors.  So I
>   would suggest s/typos/minor errors/ or even s/typos/references/.

Fixed.

> - I think you should say that no changes were required when bumping the
>   std-ver in the template.
> - You should say that you are bumping the debhelper compat level, not
>   the "debhelper version"

Fixed.

Hope you can sponsor this QA upload.
Thank you!

Cheers,
-- 
Roger Shimizu, GMT +9 Tokyo
PGP/GPG: 4096R/6C6ACD6417B3ACB1


pgpWmENIAflPD.pgp
Description: PGP signature

Bug#841506: aptitude: cannot reinstall package available as update

2017-04-18 Thread Jonas Smedegaard 
Quoting Manuel A. Fernandez Montecelo (2017-04-18 22:52:34)
> Hi Jonas,
> 
> 2017-04-18 21:54 Jonas Smedegaard:
> >Quoting Manuel A. Fernandez Montecelo (2017-04-18 21:01:41)
> >> So I am not sure what's going on, but I don't think that reinstalling is
> >> missing from the logic related with 'G'.
> >>
> >> Perhaps it's related with the package half-broken state in dpkg that
> >> this could not proceed, or some temporary inconsistency between
> >> aptitude<->apt or apt<->dpkg; but indeed it does not seem to be a
> >> problem in the common case.
> >
> >Yes, Most certainly relates to the package being half-broken in dpkg.
> >Listing events, rephrased from my initial post to this bugreport:
> >
> > 1) A package went into a semi-broken state needing reinstall
> > 2) Aptitude proxied dpkg error about 1)
> > 3) Attempt to use the aptitude way to reinstall fails
> >
> >The bug tracked in this bugreport is 3), triggered by 1).
> >
> >
> >Yes, 1) is rare and 1) occuring while using aptitude even more rare. Not
> >sure why you mention that, however.  That does not make the bug go away.
> 
> My comment was not directly addressed to you as submitter, sorry for not
> making that clear.
> 
> It was just to set on record for my future-self or other people
> investigating this bug report later (possibly months or years down the
> line) that the code paths related to reinstalling were tested a lot
> during my investigation of the other bug report, both UI and command
> line, and under different conditions (package available in repository,
> package obsolete, package obsolete but files downloaded locally; and
> same with scheduled actions and slightly different conditions --forced
> internal variables and code paths due to debugging the problem--),
> without ever getting the same behaviour as described here.
> 
> Since I tend to rely on my last comments on the issue when revisiting
> bugs, I just wanted to give an update on the current situation, before I
> forget my recent investigation on the other bug report.

Sorry - I shall try remember that the bugreport is yours, not mine :-)

No promise, but I will try not respond any further to this bugreport 
unless directly requested.

Kind regards,

 - Jonas

-- 
 * Jonas Smedegaard - idealist & Internet-arkitekt
 * Tlf.: +45 40843136  Website: http://dr.jones.dk/

 [x] quote me freely  [ ] ask before reusing  [ ] keep private


signature.asc
Description: signature

Bug#860501: python3-pyvirtualdisplay should require python3-xvfbwrapper

2017-04-18 Thread Sandro Tosi 
On Mon, Apr 17, 2017 at 8:06 PM, Jorge Moraleda
 wrote:
> easyprocess.EasyProcessCheckInstalledError: cmd=['Xvfb', '-help']
> OSError=[Errno 2] No such file or directory: 'Xvfb'
> Program install error!


this is because the `xvfb` package is not installed, not because the
python wrapper is missing.

-- 
Sandro "morph" Tosi
My website: http://sandrotosi.me/
Me at Debian: http://wiki.debian.org/SandroTosi
G+: https://plus.google.com/u/0/+SandroTosi

Bug#860512: [DRE-maint] Bug#860512: ruby-ronn: fails on m68k (no fast_xs)

2017-04-18 Thread Christian Hofstaedtler 
Hi,

* Aaron M. Ucko  [170418 04:27]:
>   ronn --roff debian/telegram-desktop.1.md
>   /usr/lib/ruby/2.3.0/rubygems/core_ext/kernel_require.rb:55:in `require': 
> cannot load such file -- fast_xs (LoadError)

This usually means the ruby-fast-xs package is missing or broken or
the search paths are incorrect.

Please provide:
 - ruby -e 'puts RbConfig::CONFIG'
 - strace -eopen ronn --roff debian/telegram-desktop.1.md
 - installed versions of ruby* (esp. ruby-hpricot, ruby-fast-xs,
   ronn)

PS: ronn hasn't seen any development since 2013. It's advisable to
migrate off it.

Cheers,
C.

Bug#860389: unblock: dhcpdump/1.8-2.1 (pre-approval)

2017-04-18 Thread Manuel A. Fernandez Montecelo 

Control: tags -1 - moreinfo


Hi Niels,

2017-04-18 10:39 Niels Thykier:


Please go ahead and let me know once it has been built successfully in
unstable on all relevant release architectures.


Thanks.

It has built successfully on all arches, -ports included, except sh4
(not attempted yet, long queue).


--
Manuel A. Fernandez Montecelo

Bug#860553: piuparts.debian.org: wheezy-security has 67 outdated packages

2017-04-18 Thread Andreas Beckmann 
On 2017-04-18 15:48, Holger Levsen wrote:
>> Revert "add wheezy-lts to the distros being tested"
> 
> according to https://wiki.debian.org/LTS/Using wheezy-lts is provided via same
> URL as wheezy-security was, and we already test that… so that's why I reverted
> this.

We could consider wheezy2proposed2jessie, where proposed ==
wheezy-proposed == wheezy + wheezy/updates + wheezy-proposed-updates (==
wheezy-lts)

> But: https://piuparts.debian.org/wheezy-security/ shows 67 outdated packages,
> eg https://piuparts.debian.org/wheezy-security/source/a/apt.html shows
> 0.9.7.9+deb7u6 being tested by us, while rmadison shows 

31da01a07 p-r: show "outdated" state in source summary

The state was resolved recursively ... finding successfully-tested
deb7u7 instead of outdated deb7u6


Andreas

Bug#860587: albatross-gtk-theme: Albatross controls are shown wreid

2017-04-18 Thread Blackhold 
Package: albatross-gtk-theme
Version: 1.7.4-1
Severity: important

Dear Maintainer,

   * What led up to the situation?
On define theme traditional OK + controls albatros, controls are shown 
wreid

   * What exactly did you do (or not do) that was effective (or
 ineffective)?
Go to appearance > themes > choose traditional OK > personalize > 
controls > set albatross

   * What was the outcome of this action?
Windows controls are shown wreid and not usable 

   * What outcome did you expect instead?
Usable controls such it works in debian 8


-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=ca_ES.UTF-8, LC_CTYPE=ca_ES.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages albatross-gtk-theme depends on:
ii  gtk2-engines-murrine  0.98.1.1-6

albatross-gtk-theme recommends no packages.

albatross-gtk-theme suggests no packages.

-- no debconf information

Bug#860586: unblock: aptitude/0.8.7-1 (pre-approval)

2017-04-18 Thread Manuel A. Fernandez Montecelo 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Hello,

I know that we're very late in the preparation of the release, but still I
submit this for your consideration.

I am quite happy with aptitude as it is now in stretch, but still I think that
it'll be a bit better with these changes than without them.

Due to $LIFE and $CIRCUMSTANCES I could not work too much on aptitude lately,
but in the last few days I fixed some things that are important for some people
(e.g. FAI), fixed some bugs that appeared in some cases after the last Debian
release due to other changes within aptitude, in other cases due to changes in
the apt "ecosystem", and in yet another case it was a bug present for a very
long time, maybe more than a decade; and lastly doc translation update.

>From my (biased) POV, these changes are not very risky/intrusive, all changes
can be reverted without much trouble if need be, and I expect to be available in
the next weeks for quick fixes if necessary.

I send attached the debdiff (filtering out po files of code and documentation),
but perhaps it's better/easier to review the individual changes in the VCS.


unblock aptitude/0.8.7-1


Cheers.
diff -Nru --exclude '*.po' --exclude '*.pot' --exclude 'configure*' --exclude 
'*.gmo' aptitude-0.8.6/debian/changelog aptitude-0.8.7/debian/changelog
--- aptitude-0.8.6/debian/changelog 2017-03-05 23:19:57.0 +0100
+++ aptitude-0.8.7/debian/changelog 2017-04-19 00:22:12.0 +0200
@@ -1,3 +1,26 @@
+aptitude (0.8.7-1) unstable; urgency=medium
+
+  [ Manuel A. Fernandez Montecelo ]
+  * New upstream release. Please see /usr/share/aptitude/NEWS for a change
+log with more details.
+
+- User visible changes:
+  * Warn about invalid locales (Closes: #859907)
+
+- Bug fixes:
+  * Preserve auto-installed flag with hold/unhold/keep operations
+(Closes: #843536)
+  * [cmdline] Fix extreme slowness of keep-all (Closes: #842707)
+  * Avoid problems or improve response in problems related to reinstalling
+(Closes:  #851901)
+  * [cmdline] Failing to apply actions are not fatal with -f /
+Aptitude::CmdLine::Fix-Broken (Closes: #835372)
+
+- Translation updates:
+  * Italian documentation translation by Beatrice Torracca (Closes: 
#858784)
+
+ -- Manuel A. Fernandez Montecelo   Wed, 19 Apr 2017 00:22:12 
+0200
+
 aptitude (0.8.6-1) unstable; urgency=medium
 
   [ Manuel A. Fernandez Montecelo ]
diff -Nru --exclude '*.po' --exclude '*.pot' --exclude 'configure*' --exclude 
'*.gmo' aptitude-0.8.6/doc/en/aptitude.xml aptitude-0.8.7/doc/en/aptitude.xml
--- aptitude-0.8.6/doc/en/aptitude.xml  2017-03-05 22:26:40.0 +0100
+++ aptitude-0.8.7/doc/en/aptitude.xml  2017-04-04 00:28:08.0 +0200
@@ -7,7 +7,7 @@
   dselect'>
   apt-get'>
   root'>
-  
+  
 
   
 
diff -Nru --exclude '*.po' --exclude '*.pot' --exclude 'configure*' --exclude 
'*.gmo' aptitude-0.8.6/NEWS aptitude-0.8.7/NEWS
--- aptitude-0.8.6/NEWS 2017-03-05 22:26:40.0 +0100
+++ aptitude-0.8.7/NEWS 2017-04-18 23:58:57.0 +0200
@@ -1,3 +1,48 @@
+[2017-04-18]
+Version 0.8.7
+
+- User visible changes:
+
+  * Warn about invalid locales (Closes: #859907)
+
+- Bug fixes:
+
+  * Preserve auto-installed flag with hold/unhold/keep operations
+(Closes: #843536)
+
+  * [cmdline] Fix extreme slowness of keep-all (Closes: #842707)
+
+Every change of marking the package to "keep" was triggering a reevaluation
+in aptitudeDepCache::end_action_group() of what had changed ("mark and 
sweep",
+duplicate of cache, triggers of packages state changes... etc), for every
+package.
+
+  * Avoid problems or improve response in problems related to reinstalling
+(Closes:  #851901)
+
+Improvements to deal with several problems that sometimes appear when
+reinstalling or acting on scheduled reinstall actions, due to the versions
+disappearing from the repositories.
+
+  * [cmdline] Failing to apply actions are not fatal with -f /
+Aptitude::CmdLine::Fix-Broken (Closes: #835372)
+
+The behaviour of refusing to continue when there are errors happens since
+the change "[cmdline] Abort with Failure when actions cannot be taken
+(Closes: #121313, #430392, #445034, #498239, #576212, #639789, #798320)",
+but it's not an optimal solution for automatic installers like FAI, so this
+is a way to revert to the old behaviour.
+
+- Internal changes:
+
+  * new method is_version_available(), to check if the given version of a
+package is available (to check availability e.g. for reinstalls)
+
+- Translation updates:
+
+  * Italian documentation translation by Beatrice Torracca (Closes: #858784)
+
+
 [2017-03-05]
 Version 0.8.6
 
diff -Nru --exclude '*.po' --exclude '*.pot' --exclude 'configure*' --exclude 
'*.gmo' aptitude-0.8.6/src/cmdline/cmdline_action.cc 
aptitude-0.8.7/src/cmdline/cmdline_action.cc
---

Bug#860513: vis: FTBFS on hurd-i386: PATH_MAX and PIPE_BUF undeclared

2017-04-18 Thread Aaron M. Ucko 
Paride Legovini  writes:

> Do you think you could sponsor a guest account request, as described
> here: https://dsa.debian.org/doc/guest-account/ ?

Sure.  Please send me the "Information guest needs to supply to
sponsoring DD" from that page (off-BTS), and I'll take it from there
(probably tomorrow night unless you're still up; sorry for not replying
sooner).

> As an alternative I could apply to become a New Member, without applying
> for the DM status (the two packages I'm maintaining probably do not
> justify it). What do you think?

That's also an option, but likely to be more involved, so I'm happy to
sponsor temporary guest access for now.

-- 
Aaron M. Ucko, KB1CJC (amu at alum.mit.edu, ucko at debian.org)
http://www.mit.edu/~amu/ | http://stuff.mit.edu/cgi/finger/?a...@monk.mit.edu

Bug#859262: Re: freezes Orca screen reader

2017-04-18 Thread Niels Thykier 
Control: reassign -1 gnome-orca
Control: affects -1 synaptic

Tim Retout:
> Hey,
> 
> I managed to reproduce this issue by:
> 
> 1) running orca and synaptic
> 2) clicking "Reload"
> 3) clicking "Mark all upgrades"
> 4) clicking "Apply" and proceeding to install ~12 packages.
> 
> Orca stopped speaking until synaptic was closed.
> 
> This only happened when upgrading via "Mark all upgrades"; I didn't
> seem to have the same problems when just installing a new package.
> 
> I'm attaching a log with various error messages that orca printed to
> the console; sorry I've not narrowed it down further yet!
> 
> Hope that helps,
> 

Thanks Tim, that is a very interesting log file.

Reading the log file, we at least have one bug in Orca itself (a Python
"NameError").  I am not entirely sure whether this bug triggers the
"hung" process or the "hung" process triggers the "NameError".

I am reassigning this bug to gnome-orca for now, so the maintainer of
orca can have a look at it.

@Orca maintainers: The Orca log shows:

"""
Traceback (most recent call last):
  File "/usr/lib/python3/dist-packages/orca/generator.py", line 234, in
generate
result = eval(formatting, globalsDict)
  File "", line 1, in 
NameError: name 'ancestors' is not defined

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "/usr/lib/python3/dist-packages/orca/generator.py", line 245, in
generate
globalsDict[arg] = self._methodsDict[arg](obj, **args)
  File "/usr/lib/python3/dist-packages/orca/braille_generator.py", line
278, in _generateAncestors
and not self._script.utilities.isLayoutOnly(parent):
  File "/usr/lib/python3/dist-packages/orca/script_utilities.py", line
1203, in isLayoutOnly
elif obj.childCount == 1 and obj.name and obj.name == firstChild.name:
GLib.GError: atspi_error: The process appears to be hung. (1)

"""

Thanks,
~Niels

Bug#860585: RFP: miniLock -- File encryption software that does more with less.

2017-04-18 Thread Jeffrey Cliff 
Package: wnpp
Severity: wishlist
Upstream Author : kaepora (Nadim Kobeissi)

URL : https://github.com/kaepora/miniLock
License : AGPL3
Language : javascript
Description :   miniLock is a small, portable file encryption software. The
idea behind its design is that passphrase memorized by the user, along with
their email address, can act as a complete, portable basis for a persistent
public key identity and provide a full substitute for other key pair
models, such as having the key pair stored on disk media (the PGP approach).

Bug#258096: Good day, Please Treat with Urgency and Caution.

2017-04-18 Thread Gabriel Bryan 
Dear Beneficiary,

I am writing you this message as a personal accountant and an accounting 
manager to an esteemed customer who share same last name as yours here at the 
platinum private capital bank. He was deceased about 5 years ago and i have 
since then searched and waited for his family to come and lay claims on his 
funds, but no one showed up.
 
Recently, i was prompted by the new board of directors to seal the account and 
declare the funds as public funds and to confiscate the account. I decided to 
relate this issue with his personal lawyer who then advised me to search for a 
relation that can claim the funds and he has agreed to support with all 
feasible document to ensure that no breach of the law is committed and to keep 
you safe and to proof that the inheritance belongs to you.

This is the reason i am contacting you to stand in as the next of kin to the 
deceased customer. I am assuring you that all document needed are present and 
are dividend to your claim.

I shall present you with his online banking information after getting a 
response from you so that you can see the proof of this funds and the evidence 
to clear all doubt.

In line with our standard confirmation process to check for impersonation and 
ensure funds are claimed by real owners, kindly furnish me with Your valid ID 
card,  full names, Telephone Number, Full address and occupation.

All funds will be shared on a 50% basis between two parties, while you take 50% 
me and the lawyer will have the other half.

Forthwith, I await your prompt response, 

It is urgent that this is attended to before the next Federal Government makes 
amendment on the laws that guarantees this process is concluded.

Yours Faithfully.

Dr. Bryan.
Senior Accounting Officer
Platinum Private Capital

Bug#860583: opensvc: French debconf templates translation

2017-04-18 Thread Alban Vidal 
Package: opensvc
Version: 1.8
Severity: wishlist
Tags: patch l10n

Please find attached the French debconf templates translation, proofread by the
debian-l10n-french mailing list contributors.

This file should be put as debian/po/fr.po in your package build tree.
# Translation of opensvc debconf template to French
# Copyright (C) 2017 Debian french l10n team
# This file is distributed under the same license as the opensvc package.
#
# Translator:
# Alban Vidal , 2017.
msgid ""
msgstr ""
"Project-Id-Version: opensvc 1.8\n"
"Report-Msgid-Bugs-To: open...@packages.debian.org\n"
"POT-Creation-Date: 2017-04-11 22:19+0200\n"
"PO-Revision-Date: 2017-04-15 08:46+0200\n"
"Last-Translator: Alban Vidal \n"
"Language-Team: French \n"
"Language: fr\n"
"MIME-Version: 1.0\n"
"Content-Type: text/plain; charset=UTF-8\n"
"Content-Transfer-Encoding: 8bit\n"
"Plural-Forms: nplurals=2; plural=(n > 1);\n"
"X-Generator: Lokalize 2.0\n"

#. Type: string
#. Description
#: ../templates:1001
msgid "Configuration for collector usage:"
msgstr "Configuration pour l'utilisation du collecteur :"

#. Type: string
#. Description
#: ../templates:1001
msgid ""
"By default, the collector is contacted by the node using the generic name "
"dbopensvc on ports 80 and 8000. This name should be known to your prefered "
"resolving mecanism : hosts, dns, ... If you choose to use the internet "
"shared collector, the corresponding ip address must be set to the address of "
"collector.opensvc.com"
msgstr ""
"Par défaut, le collecteur est contacté par le nœud en utilisant le nom"
" générique « dbopensvc » sur les ports 80 et 8000. Ce nom doit être connu par"
" votre mécanisme de résolution des noms préféré : hosts, dns…\\nSi vous"
" choisissez d'utiliser le collecteur partagé par Internet, l'adresse IP"
" correspondante doit être celle de collector.opensvc.com"

#. Type: select
#. Description
#: ../templates:2001
msgid "Host environment:"
msgstr "Environnement de l'hôte :"

#. Type: select
#. Description
#: ../templates:2001
msgid ""
"The valid host mode values are:\\n \\n host_mode  behaves as  description\\n "
"-  --  --\\n PRDPRD "
"Production\\n PPRD   PRD Pre Production\\n RECnot "
"PRD Prod-like testing\\n INTnot PRD Integration\\n "
"DEVnot PRD Development\\n TSTnot PRD Testing\\n "
"TMPnot PRD Temporary\\n DRPnot PRD Disaster recovery"
"\\n FORnot PRD Training\\n PRAnot PRD Disaster "
"recovery\\n PRJnot PRD Project\\n STGnot PRD Staging"
"\\n"
msgstr ""
"Les valeurs valables pour le mode de l'hôte sont les suivantes :\\n"
"\\n"
"Mode_HôteComportementDescription\\n"
"----\\n"
"PRD  PRD Production\\n"
"PPRD PRD Pré-Production\\n"
"REC  non PRD Test de type Production\\n"
"INT  non PRD Intégration\\n"
"DEV  non PRD Développement\\n"
"TST  non PRD Test\\n"
"TMP  non PRD Temporaire\\n"
"DRP  non PRD Reprise après sinistre\\n"
"FOR  non PRD Entraînement\\n"
"PRA  non PRD Reprise après sinistre\\n"
"PRJ  non PRD Projet\\n"
"STG  non PRD Simulation\\n"

Bug#860584: libqt5charts5-dev: missing Depends: libqt5charts5 (= ${binary:Version})

2017-04-18 Thread Andreas Beckmann 
Package: libqt5charts5-dev
Version: 5.7.1-1
Severity: serious
User: debian...@lists.debian.org
Usertags: piuparts

Hi,

during a test with piuparts I noticed your package ships (or creates)
a broken symlink.

>From the attached log (scroll to the bottom...):

0m57.1s ERROR: FAIL: Broken symlinks:
  /usr/lib/x86_64-linux-gnu/libQt5Charts.so -> libQt5Charts.so.5.7.1


cheers,

Andreas


libqt5charts5-dev_5.7.1-1.log.gz
Description: application/gzip

Bug#860582: Nokia N900 keyboard support in console

2017-04-18 Thread Enrico Menotti 
Package: console-setup

Dear Sirs,

I am experimenting with Debian on a Nokia N900 (RX-51). I debootstrapped a 
Jessie file system. When configuring the keyboard, I found an issue. Namely, 
the symbols file uses a custom type called PC_FN_LEVEL2; however, when setupcon 
is called, and from there ckbcomp is invoked, this type is not recognised.

There is a fix on the version of console-setup which is available in the Sid 
repository. The bug report is found at:

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=789816

However, I believe this bug is not fixed in the proper way. Let me explain.

1. The type is already defined in /usr/share/X11/xkb/types/nokia2. This type 
file is correctly referenced in /usr/share/X11/xkb/rules/xorg (line 1018/1225) 
(although I found no trace of Nokia models in xorg.lst and xorg.xml)
3. Based on my investigations, I believe the rules file is read by cbkcomp, but 
the types file is not4. The fix found at 
https://anonscm.debian.org/cgit/d-i/console-setup.git/commit/?id=f41adb653e666cefe15af02fdbf5bb56b11677df
 "hardcodes" the PC_FN_LEVEL2 type into ckbcomp

My conclusion is that the problem is ckbcomp not reading the type file 
indicated in the rule file, and that should be fixed, instead of hardcoding the 
custom type into ckbcomp.

Best regards,

Enrico Menotti

Bug#860464: wdm: Missing handling of plymouth (#782456)

2017-04-18 Thread Axel Beckert 
Control: tag -1 unreproducible moreinfo

Hi again,

Niels Thykier wrote:
> Axel Beckert:
> > Niels Thykier wrote:
> >> I have reviewed the wdm init.d script and I cannot see that it takes
> >> plymouth into account (which leads to #782456).  To the best of my
> >> knowledge, #782456 have to be fixed in the DMs.

Unfortunately I cannot reproduce #782456 at all, neither with wdm nor
with lightdm (1.18.3-1 from testing where this should be still
present), neither with plymouth-x11 installed nor without, neither
with any theme provided by desktop-base or plymouth-themes.

I only tested with systemd so far as the original reporter of #782456
reported it with systemd as init system.

I think I've rebooted that VM (which I specifically set up for testing
this) now about 50 times and haven't seen any case where the DM (be it
wdm or lightdm) didn't come up properly (except for #860576 related
cases, see below).

But I've only tested it in a KVM-based VM with a minimal installation,
no specific graphics driver, etc. (Not even all Recommends are
installed.)

> > [...] As I'm currently travelling, I can't promise to get this
> > tested before Tuesday evening.

Well, now I have nothing which I could test as I can't reproduce this
issue at all -- even after having read all of
https://bugs.debian.org/782456. :-/

> > If the release team prefers a soon upload, I can do an upload with
> > that feature untested.
> 
> I am okay with the wait. :)

So I wonder: Shall I upload the fix suggested by Niels anyways? (Not
untested, but unverified.)

Niels: I'd also include a fix for #860576 (wdm: Missing dependency on
an X server) in which I ran into recently and was able to verify and
debug it in this minimal VM setup I intended primarly for this bug
report.

Regards, Axel
-- 
 ,''`.  |  Axel Beckert , http://people.debian.org/~abe/
: :' :  |  Debian Developer, ftp.ch.debian.org Admin
`. `'   |  4096R: 2517 B724 C5F6 CA99 5329  6E61 2FF9 CD59 6126 16B5
  `-|  1024D: F067 EA27 26B9 C3FC 1486  202E C09E 1D89 9593 0EDE


signature.asc
Description: Digital signature

Bug#860581: boxer-data: broken symlinks: /usr/share/boxer/{jessie, stretch}/classes/Desktop/**/*.yml

2017-04-18 Thread Andreas Beckmann 
Package: boxer-data
Version: 10.5.18
Severity: normal
User: debian...@lists.debian.org
Usertags: piuparts

Hi,

during a test with piuparts I noticed your package ships (or creates)
a broken symlink.

>From the attached log (scroll to the bottom...):

0m25.8s ERROR: FAIL: Broken symlinks:
  /usr/share/boxer/stretch/classes/Desktop/web/iceweasel/harden.yml -> 
../../../../../jessie/classes/Desktop/web/iceweasel/harden.yml
  /usr/share/boxer/stretch/classes/Desktop/web/iceweasel/locale/zu.yml -> 
../../../../../../jessie/classes/Desktop/web/iceweasel/locale/zu.yml
  /usr/share/boxer/stretch/classes/Desktop/web/iceweasel/locale/ZA.yml -> 
../../../../../../jessie/classes/Desktop/web/iceweasel/locale/ZA.yml
  /usr/share/boxer/stretch/classes/Desktop/web/iceweasel/locale/EUROPE.yml -> 
../../../../../../jessie/classes/Desktop/web/iceweasel/locale/EUROPE.yml
  /usr/share/boxer/stretch/classes/Desktop/web/iceweasel/locale/EU.yml -> 
../../../../../../jessie/classes/Desktop/web/iceweasel/locale/EU.yml
  /usr/share/boxer/stretch/classes/Desktop/web/iceweasel/locale/ASIA.yml -> 
../../../../../../jessie/classes/Desktop/web/iceweasel/locale/ASIA.yml
  /usr/share/boxer/stretch/classes/Desktop/web/iceweasel/locale/AMERICAS.yml -> 
../../../../../../jessie/classes/Desktop/web/iceweasel/locale/AMERICAS.yml
  /usr/share/boxer/stretch/classes/Desktop/web/iceweasel/locale/ALL.yml -> 
../../../../../../jessie/classes/Desktop/web/iceweasel/locale/ALL.yml
  /usr/share/boxer/stretch/classes/Desktop/web/iceweasel/locale/AFRICA.yml -> 
../../../../../../jessie/classes/Desktop/web/iceweasel/locale/AFRICA.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/init.yml -> 
../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/init.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/de.yml -> 
../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/de.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/da.yml -> 
../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/da.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/ZA.yml -> 
../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/ZA.yml
  
/usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/SCANDINAVIA.yml
 -> 
../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/SCANDINAVIA.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/NORDIC.yml 
-> ../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/NORDIC.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/INDIA.yml 
-> ../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/INDIA.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/EUROPE.yml 
-> ../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/EUROPE.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/EU.yml -> 
../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/EU.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/ASIA.yml -> 
../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/ASIA.yml
  
/usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/AMERICAS.yml 
-> 
../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/AMERICAS.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/ALL.yml -> 
../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/ALL.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/AFRICA.yml 
-> ../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/AFRICA.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/ta/init.yml 
-> 
../../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/ta/init.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/ta/LK.yml 
-> 
../../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/ta/LK.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/pa/init.yml 
-> 
../../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/pa/init.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/pa/IN.yml 
-> 
../../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/pa/IN.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/en/init.yml 
-> 
../../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/en/init.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/en/ZA.yml 
-> 
../../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/en/ZA.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/en/US.yml 
-> 
../../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/en/US.yml
  /usr/share/boxer/stretch/classes/Desktop/scheduling/iceowl/locale/en/GB.yml 
-> 
../../../../../../../jessie/classes/Desktop/scheduling/iceowl/locale/en/GB.yml

Bug#858112: gcc-defaults: broken symlinks: gcc-: /usr/share/doc/cpp-/README.Bugs -> ../gcc-6/README.Bugs

2017-04-18 Thread Andreas Beckmann 
Control: severity -1 important

On Wed, 5 Apr 2017 21:21:06 +0200 Andreas Beckmann  wrote:
> Control: severity -1 serious

> and resulting in packages without copyright file after upgrade
> e.g. gdc-mips64-linux-gnuabi64 4:6.3.0-1 -> 4:6.3.0-2

This is tracked separately as #860117


Andreas

Bug#858112: gcc-defaults: broken symlinks: gcc-: /usr/share/doc/cpp-/README.Bugs -> ../gcc-6/README.Bugs

2017-04-18 Thread Andreas Beckmann 
Followup-For: Bug #858112
Control: reopen -1
Control: found -1 1.168

Hi,

the broken README.Bugs symlink is still there ...

  /usr/share/doc/cpp-mips-linux-gnu/README.Bugs -> ../gcc-6-base/README.Bugs
  /usr/share/doc/cpp-s390x-linux-gnu/README.Bugs -> ../gcc-6-base/README.Bugs
  /usr/share/doc/cpp-alpha-linux-gnu/README.Bugs -> ../gcc-6-base/README.Bugs
...


Andreas

Bug#860580: clang-3.8: broken symlink: /usr/bin/scan-build-py-3.8 -> ../share/clang/scan-build-py-3.8/bin/scan-build

2017-04-18 Thread Andreas Beckmann 
Package: clang-3.8
Version: 1:3.8.1-20
Severity: serious
User: debian...@lists.debian.org
Usertags: piuparts

Hi,

during a test with piuparts I noticed your package ships (or creates)
a broken symlink.

>From the attached log (scroll to the bottom...):

0m39.1s ERROR: FAIL: Broken symlinks:
  /usr/bin/scan-build-py-3.8 -> ../share/clang/scan-build-py-3.8/bin/scan-build

Looks like a change was unneccessarily backported from 3.9, since that was
previously working correctly in 3.8


cheers,

Andreas


clang-3.8_1:3.8.1-20.log.gz
Description: application/gzip

Bug#860574: firefox-esr: At start Firefox opens up quite quickly but than it freezes for 15 seconds

2017-04-18 Thread Mike Hommey 
On Tue, Apr 18, 2017 at 10:20:00PM +0200, Carlo Marchiori wrote:
> Package: firefox-esr
> Version: 52.0.2esr-1
> Severity: normal
> 
> Dear Maintainer,
> 
> At start Firefox opens up quite quickly but than it freezes for 15 seconds.
> 
> During these 15 seconds the browser is totally unresponsive, trying to type in
> the address bar or clicking on it doesn't move the focus or show the caret in
> it. There is no sign of any ongoing work being done by the browser or any type
> of visual feedback to the user about what's happening.

Try disabling all addons and plugins.

Mike

Bug#860579: ITP: grammalecte -- grammatical corrector for libreoffice and firefox

2017-04-18 Thread Antoine Beaupre 
Package: wnpp
Severity: wishlist
Owner: Antoine Beaupre 

* Package name: grammalecte
  Version : 0.5.15
  Upstream Author : Olivier R. (olivier /at/ grammalecte /dot/ net)
* URL : https://www.dicollecte.org/grammalecte/
* License : GPL-3
  Programming Lang: Python
  Description : grammatical corrector for libreoffice and firefox

Grammalecte is an open source grammar checker made for the french
language, with extensions for Write (LibreOffice, OpenOffice) and
Firefox. It is derived from Lightproof, which was written for
hungarian.

Grammalecte helps writing in french without bothering users with false
alarms. This checker therefore follows the principle of least "false
positives"; if it's impossible to determine with a strong probability
that a string is erroneous, the checker won't signal anything.



Grammalecte is the first checker I have found that does extensive
grammar checks for french while at the same time being a) actively
developped and b) free software.

I am not using it yet, being mostly restricted to english in most of
my public writing, but I hope to go back to french more, in which case
I will test it extensively and may end up packaging it myself.

It's an unofficial fork of "Lightproof", which seems mostly inactive,
but was written by FSF.hu for Hungarian and has LibreOffice extensions
as well:

https://cgit.freedesktop.org/libreoffice/lightproof/

It's unclear if they plan to merge back together.

Someone discussed maintaining this in Debian 3 years ago on their
forum:

https://www.dicollecte.org/thread.php?prj=fr=414

I'll post this WNPP there as soon as I have a bug #.

I usually maintain my packages in collab-maint and this one is no
exception. I'd also be happy to delegate this to someone else and just
sponsor the package or do whatever is needed to get this in...

Bug#860578: [dolphin] Xorg hangs on deleting/moving files

2017-04-18 Thread Antonio Marcos López Alonso 
Package: dolphin
Version: 4:16.08.3-3
Severity: important

--- Please enter the report below this line. ---
Dear maintainers:

Everytime I try to move/delete a file using Dolphin, Plasma 5 desktop freezes 
just before confirming dialog box.

Switching to a term then using "top" shows heavy CPU load on Xorg process 
which ends abruptedly at killing dolphin.

Regards,
Antonio

--- System information. ---
Architecture: 
Kernel:   Linux 4.9.0-2-amd64

Debian Release: 9.0
  900 testing ftp.es.debian.org 
  500 zesty   ppa.launchpad.net 
  500 yakkety ppa.launchpad.net 
  500 xenial  ppa.launchpad.net 
  500 trusty  ppa.launchpad.net 
  500 testing-proposed-updates ftp.es.debian.org 
  500 stable  update.devolo.com 
  500 stable  kxstudio.linuxaudio.org 
  500 stable  download.videolan.org 
  500 stable  dl.google.com 
  500 sid linux.dropbox.com 
  500 lucid   ppa.launchpad.net 

--- Package information. ---
Depends   (Version) | Installed
===-+-
==
baloo-kf5   | 5.28.0-2
kinit   | 5.28.0-1
kio | 5.28.0-2
libc6 (>= 2.14) | 
libdolphinvcs5  (>= 4:15.07.90) | 
libkf5baloo5 (>= 5.3.0+git20150512) | 
libkf5baloowidgets5(>= 15.08.0) | 
libkf5bookmarks5(>= 4.96.0) | 
libkf5codecs5   (>= 4.96.0) | 
libkf5completion5   (>= 4.97.0) | 
libkf5configcore5   (>= 4.98.0) | 
libkf5configgui5(>= 4.97.0) | 
libkf5configwidgets5(>= 4.96.0) | 
libkf5coreaddons5   (>= 5.16.0) | 
libkf5crash5(>= 5.15.0) | 
libkf5dbusaddons5   (>= 4.97.0) | 
libkf5filemetadata3 (>= 5.19.0) | 
libkf5i18n5 (>= 4.97.0) | 
libkf5iconthemes5(>= 5.0.0) | 
libkf5itemviews5(>= 4.96.0) | 
libkf5jobwidgets5   (>= 4.96.0) | 
libkf5kcmutils5 (>= 4.96.0) | 
libkf5kiocore5   (>= 5.2.0+git20140925) | 
libkf5kiofilewidgets5 (>= 5.6.0+git20150116.0016+15.04) | 
libkf5kiowidgets5   (>= 5.16.0) | 
libkf5newstuff5 (>= 5.10.0) | 
libkf5notifications5(>= 4.96.0) | 
libkf5parts5(>= 4.96.0) | 
libkf5service-bin   | 
libkf5service5  (>= 4.99.0) | 
libkf5solid5(>= 4.97.0) | 
libkf5textwidgets5  (>= 4.96.0) | 
libkf5widgetsaddons5  (>= 5.6.0+git20150110.0009+15.04) | 
libkf5windowsystem5 (>= 4.96.0) | 
libkf5xmlgui5   (>= 4.98.0) | 
libphonon4qt5-4(>= 4:4.8.0) | 
libqt5core5a (>= 5.7.0) | 
libqt5dbus5 (>= 5.4.0~) | 
libqt5gui5   (>= 5.7.0) | 
libqt5widgets5   (>= 5.4.0) | 
libqt5xml5  (>= 5.4.0~) | 
libstdc++6   (>= 4.1.1) | 
phonon4qt5  | 


Recommends  (Version) | Installed
=-+-===
kio-extras| 4:16.08.3-1
ruby  | 1:2.3.3


Suggests (Version) | Installed
==-+-===
dolphin-plugins|

Bug#860577: jessie-pu: package sus/7.20161013~deb8u1

2017-04-18 Thread Andreas Beckmann 
Package: release.debian.org
Severity: normal
Tags: jessie
User: release.debian@packages.debian.org
Usertags: pu

sus is a downloader package in contrib.
The download URL+checksum for susv4 has changed ... rendering the
package uninstallable.
This is a backport of the package in sid with the debhelper bump
reverted.


Andreas
diff -Nru sus-7.20160312~deb8u1/debian/changelog sus-7.20161013~deb8u1/debian/changelog
--- sus-7.20160312~deb8u1/debian/changelog	2016-03-21 00:58:24.0 +0100
+++ sus-7.20161013~deb8u1/debian/changelog	2017-04-18 23:05:48.0 +0200
@@ -1,3 +1,22 @@
+sus (7.20161013~deb8u1) jessie; urgency=medium
+
+  * Non-maintainer upload.
+  * Rebuild for jessie.
+  * Revert debhelper to compat level 9.
+
+ -- Andreas Beckmann   Tue, 18 Apr 2017 23:05:48 +0200
+
+sus (7.20161013) unstable; urgency=medium
+
+  * New upstream release: contains SUSv4 TC2; update checksum
+(Closes: #840318)
+  * urgency=medium since susv4 is no longer installable
+  * debian/compat: Use debheloper v10
+  * debian/control:
+- Bump Standards-Version to 3.9.8 (No changes needed)
+
+ -- David Weinehall   Thu, 13 Oct 2016 14:15:32 +0300
+
 sus (7.20160312~deb8u1) jessie; urgency=medium
 
   * Non-maintainer upload.
diff -Nru sus-7.20160312~deb8u1/debian/control sus-7.20161013~deb8u1/debian/control
--- sus-7.20160312~deb8u1/debian/control	2016-03-12 02:25:59.0 +0100
+++ sus-7.20161013~deb8u1/debian/control	2017-04-18 23:03:29.0 +0200
@@ -3,7 +3,7 @@
 Priority: extra
 Maintainer: David Weinehall 
 Build-Depends-Indep: debhelper (>= 9)
-Standards-Version: 3.9.7
+Standards-Version: 3.9.8
 
 Package: susv2
 Architecture: all
@@ -32,4 +32,4 @@
  redistributed, so this is an installer that fetches them and installs
  them in a Debian appropriate way.  This installer will fetch and
  install POSIX:2008 (also known as Single Unix Specification v4) with
- the POSIX:2013 Technical Corrigendum 1.
+ POSIX:2013 Technical Corrigendum 1 and POSIX:2016 Technical Corrigendum 2.
diff -Nru sus-7.20160312~deb8u1/debian/susv4.postinst sus-7.20161013~deb8u1/debian/susv4.postinst
--- sus-7.20160312~deb8u1/debian/susv4.postinst	2016-03-10 18:35:07.0 +0100
+++ sus-7.20161013~deb8u1/debian/susv4.postinst	2016-10-13 13:15:32.0 +0200
@@ -5,14 +5,14 @@
 TEMPDIR=$(mktemp -d) || exit 1
 
 echo Fetching file...
-wget -P $TEMPDIR http://pubs.opengroup.org/onlinepubs/9699919799/download/susv4tc1.tar.bz2
+wget -P $TEMPDIR http://pubs.opengroup.org/onlinepubs/9699919799/download/susv4tc2.tar.bz2
 
 echo Verifying SHA512 checksum...
-SHA512SUM="a646544074cb13b891b71d83fbe65dc23665e4bce1fdef09931f3025229eb7225e2ff620f05646d48a0256d53c12c39282d155eba2d7bba3831ab1b87d7e640b"
-[ x"$(sha512sum $TEMPDIR/susv4tc1.tar.bz2 | cut -f1 -d\ )" = x"$SHA512SUM" ] || (rm -rf $TEMPDIR; exit 1)
+SHA512SUM="cc86b2b4860b1069cb8712ef7b5a9702510f48d6585b5414ff561f85677974c156d8cc95cf29dfdab360c13ecb884e19e2112fe5c6bc49666417c9a744a816ad"
+[ x"$(sha512sum $TEMPDIR/susv4tc2.tar.bz2 | cut -f1 -d\ )" = x"$SHA512SUM" ] || (rm -rf $TEMPDIR; exit 1)
 
 echo Untarring...
-bunzip2 -cd $TEMPDIR/susv4tc1.tar.bz2 | tar xf - -C /usr/share/doc/susv4 --no-same-permissions --no-same-owner
+bunzip2 -cd $TEMPDIR/susv4tc2.tar.bz2 | tar xf - -C /usr/share/doc/susv4 --no-same-permissions --no-same-owner
 
 rm -rf $TEMPDIR

Bug#860576: wdm: Missing dependency on an X server

2017-04-18 Thread Axel Beckert 
Package: wdm
Version: 1.28-19
Severity: serious

If you install wdm on a minimal Debian system, you don't get a working
login manager, but error messages about not finding /usr/bin/X in the
syslog.

Installing xserver-xorg-core suffices to make wdm start up, but no input
device (mouse, keyboard) works. Installing one of the xserver-xorg-input
packages is needed, too.

The sanest approach to this issue seems to be the one by sddm by adding
a dependency on "xserver-xorg | xserver". (xserver-org pulls in
xserver-org-core, at least one xserver-org-video and one
xserver-org-input package; the xserver alternative is for flexibility
when needing wdm only for a non-standard X server, e.g. a virtual X
server.)

So I plan to follow sddm's example and plan to add a dependency on
"xserver-xorg | xserver".

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (990, 'unstable'), (600, 'testing'), (500, 'unstable-debug'), 
(500, 'buildd-unstable'), (110, 'experimental'), (1, 'experimental-debug'), (1, 
'buildd-experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages wdm depends on:
ii  cdebconf [debconf-2.0]  0.227
ii  debconf [debconf-2.0]   1.5.60
ii  libc6   2.24-10
ii  libpam-modules  1.1.8-3.5
ii  libpam-runtime  1.1.8-3.5
ii  libpam0g1.1.8-3.5
ii  libselinux1 2.6-3+b1
ii  libwings3   0.95.7-8
ii  libwraster5 0.95.7-8
ii  libwutil5   0.95.7-8
ii  libx11-62:1.6.4-3
ii  libxau6 1:1.0.8-1
ii  libxdmcp6   1:1.1.2-3
ii  libxinerama12:1.1.3-1+b3
ii  libxmu6 2:1.1.2-2
ii  psmisc  22.21-2.1+b2
ii  x11-apps7.7+6+b1
ii  x11-common  1:7.7+18
ii  x11-utils   7.7+3+b1
ii  x11-xserver-utils   7.7+7+b1

wdm recommends no packages.

Versions of packages wdm suggests:
ii  xfonts-base  1:1.0.4+nmu1

-- Configuration Files:
/etc/X11/wdm/wdm-config [Errno 13] Permission denied: '/etc/X11/wdm/wdm-config'

-- debconf information:
  wdm/daemon_name: /usr/bin/wdm
* shared/default-x-display-manager: wdm

Bug#859262: synaptic + orca going silent

2017-04-18 Thread Tim Retout 
Hey,

I managed to reproduce this issue by:

1) running orca and synaptic
2) clicking "Reload"
3) clicking "Mark all upgrades"
4) clicking "Apply" and proceeding to install ~12 packages.

Orca stopped speaking until synaptic was closed.

This only happened when upgrading via "Mark all upgrades"; I didn't
seem to have the same problems when just installing a new package.

I'm attaching a log with various error messages that orca printed to
the console; sorry I've not narrowed it down further yet!

Hope that helps,

-- 
Tim Retout 
/usr/lib/python3/dist-packages/pyatspi/registry.py:155: Warning: g_object_unref: assertion 'G_IS_OBJECT (object)' failed
  Atspi.event_main()

Traceback (most recent call last):
  File "/usr/lib/python3/dist-packages/orca/generator.py", line 234, in generate
result = eval(formatting, globalsDict)
  File "", line 1, in 
NameError: name 'ancestors' is not defined

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "/usr/lib/python3/dist-packages/orca/generator.py", line 245, in generate
globalsDict[arg] = self._methodsDict[arg](obj, **args)
  File "/usr/lib/python3/dist-packages/orca/braille_generator.py", line 278, in _generateAncestors
and not self._script.utilities.isLayoutOnly(parent):
  File "/usr/lib/python3/dist-packages/orca/script_utilities.py", line 1203, in isLayoutOnly
elif obj.childCount == 1 and obj.name and obj.name == firstChild.name:
GLib.GError: atspi_error: The process appears to be hung. (1)


Traceback (most recent call last):
  File "/usr/lib/python3/dist-packages/orca/generator.py", line 234, in generate
result = eval(formatting, globalsDict)
  File "", line 1, in 
NameError: name 'ancestors' is not defined

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "/usr/lib/python3/dist-packages/orca/generator.py", line 245, in generate
globalsDict[arg] = self._methodsDict[arg](obj, **args)
  File "/usr/lib/python3/dist-packages/orca/braille_generator.py", line 278, in _generateAncestors
and not self._script.utilities.isLayoutOnly(parent):
  File "/usr/lib/python3/dist-packages/orca/script_utilities.py", line 1203, in isLayoutOnly
elif obj.childCount == 1 and obj.name and obj.name == firstChild.name:
GLib.GError: atspi_error: The process appears to be hung. (1)


Traceback (most recent call last):
  File "/usr/lib/python3/dist-packages/orca/generator.py", line 234, in generate
result = eval(formatting, globalsDict)
  File "", line 1, in 
NameError: name 'ancestors' is not defined

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "/usr/lib/python3/dist-packages/orca/generator.py", line 245, in generate
globalsDict[arg] = self._methodsDict[arg](obj, **args)
  File "/usr/lib/python3/dist-packages/orca/braille_generator.py", line 278, in _generateAncestors
and not self._script.utilities.isLayoutOnly(parent):
  File "/usr/lib/python3/dist-packages/orca/script_utilities.py", line 1203, in isLayoutOnly
elif obj.childCount == 1 and obj.name and obj.name == firstChild.name:
GLib.GError: atspi_error: The process appears to be hung. (1)


Traceback (most recent call last):
  File "/usr/lib/python3/dist-packages/orca/generator.py", line 234, in generate
result = eval(formatting, globalsDict)
  File "", line 1, in 
NameError: name 'ancestors' is not defined

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "/usr/lib/python3/dist-packages/orca/generator.py", line 245, in generate
globalsDict[arg] = self._methodsDict[arg](obj, **args)
  File "/usr/lib/python3/dist-packages/orca/braille_generator.py", line 278, in _generateAncestors
and not self._script.utilities.isLayoutOnly(parent):
  File "/usr/lib/python3/dist-packages/orca/script_utilities.py", line 1203, in isLayoutOnly
elif obj.childCount == 1 and obj.name and obj.name == firstChild.name:
GLib.GError: atspi_error: The process appears to be hung. (1)


Traceback (most recent call last):
  File "/usr/lib/python3/dist-packages/orca/generator.py", line 234, in generate
result = eval(formatting, globalsDict)
  File "", line 1, in 
NameError: name 'ancestors' is not defined

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "/usr/lib/python3/dist-packages/orca/generator.py", line 245, in generate
globalsDict[arg] = self._methodsDict[arg](obj, **args)
  File "/usr/lib/python3/dist-packages/orca/braille_generator.py", line 278, in _generateAncestors
and not self._script.utilities.isLayoutOnly(parent):
  File "/usr/lib/python3/dist-packages/orca/script_utilities.py", line 1203, in isLayoutOnly
elif obj.childCount == 1 and obj.name and obj.name == firstChild.name:
GLib.GError: atspi_error: The process appears to be hung. (1)


Traceback

Bug#841506: aptitude: cannot reinstall package available as update

2017-04-18 Thread Manuel A. Fernandez Montecelo 

Hi Jonas,

2017-04-18 21:54 Jonas Smedegaard:

Quoting Manuel A. Fernandez Montecelo (2017-04-18 21:01:41)

So I am not sure what's going on, but I don't think that reinstalling is
missing from the logic related with 'G'.

Perhaps it's related with the package half-broken state in dpkg that
this could not proceed, or some temporary inconsistency between
aptitude<->apt or apt<->dpkg; but indeed it does not seem to be a
problem in the common case.


Yes, Most certainly relates to the package being half-broken in dpkg.
Listing events, rephrased from my initial post to this bugreport:

1) A package went into a semi-broken state needing reinstall
2) Aptitude proxied dpkg error about 1)
3) Attempt to use the aptitude way to reinstall fails

The bug tracked in this bugreport is 3), triggered by 1).


Yes, 1) is rare and 1) occuring while using aptitude even more rare. Not
sure why you mention that, however.  That does not make the bug go away.


My comment was not directly addressed to you as submitter, sorry for not
making that clear.

It was just to set on record for my future-self or other people
investigating this bug report later (possibly months or years down the
line) that the code paths related to reinstalling were tested a lot
during my investigation of the other bug report, both UI and command
line, and under different conditions (package available in repository,
package obsolete, package obsolete but files downloaded locally; and
same with scheduled actions and slightly different conditions --forced
internal variables and code paths due to debugging the problem--),
without ever getting the same behaviour as described here.

Since I tend to rely on my last comments on the issue when revisiting
bugs, I just wanted to give an update on the current situation, before I
forget my recent investigation on the other bug report.


Cheers.
--
Manuel A. Fernandez Montecelo

Bug#857992: openjdk-8-jre-headless: please add Breaks: tzdata-java

2017-04-18 Thread Andreas Beckmann 
Control: tag -1 patch pending

On 2017-04-14 22:11, anarcat wrote:

> I have tried to do a NMU for this and failed to build OpenJDK through

I had previously succeeded to build openjdk-8, so I just uploaded that
as a NMU to DELAYED/5. Please let me know if I should delay it longer or
cancel.


Andreas
diff -Nru openjdk-8-8u121-b13/debian/changelog 
openjdk-8-8u121-b13/debian/changelog
--- openjdk-8-8u121-b13/debian/changelog2017-03-03 18:46:54.0 
+0100
+++ openjdk-8-8u121-b13/debian/changelog2017-04-18 22:32:33.0 
+0200
@@ -1,3 +1,11 @@
+openjdk-8 (8u121-b13-4.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * openjdk-8-jre-headless: Add Breaks: tzdata-java to ensure openjdk gets
+upgraded on dist-upgrades from jessie.  (Closes: #857992)
+
+ -- Andreas Beckmann   Tue, 18 Apr 2017 22:32:33 +0200
+
 openjdk-8 (8u121-b13-4) unstable; urgency=medium
 
   * Drop Recommends on obsolete GNOME libraries so they are not in a
diff -Nru openjdk-8-8u121-b13/debian/control openjdk-8-8u121-b13/debian/control
--- openjdk-8-8u121-b13/debian/control  2017-02-08 07:24:37.0 +0100
+++ openjdk-8-8u121-b13/debian/control  2017-04-10 01:00:58.0 +0200
@@ -55,6 +55,7 @@
   java7-runtime-headless, java8-runtime-headless,
   ${defaultvm:Provides}, ${jvm:Provides}
 Breaks: oracle-java8-installer (<< 8u77+8u77arm-1),
+  tzdata-java,
   ca-certificates-java (<< 20160321~)
 Description: OpenJDK Java runtime, using ${vm:Name} (headless)
  Minimal Java runtime - needed for executing non GUI Java programs,
diff -Nru openjdk-8-8u121-b13/debian/control.in 
openjdk-8-8u121-b13/debian/control.in
--- openjdk-8-8u121-b13/debian/control.in   2017-01-19 12:16:07.0 
+0100
+++ openjdk-8-8u121-b13/debian/control.in   2017-04-10 01:00:21.0 
+0200
@@ -55,6 +55,7 @@
   java7-runtime-headless, java8-runtime-headless,
   ${defaultvm:Provides}, ${jvm:Provides}
 Breaks: oracle-java8-installer (<< 8u77+8u77arm-1),
+  tzdata-java,
   ca-certificates-java (<< 20160321~)
 Description: OpenJDK Java runtime, using ${vm:Name} (headless)
  Minimal Java runtime - needed for executing non GUI Java programs,

Bug#859334: hyperscan: [INTL:pt] Portuguese translation for debconf messages

2017-04-18 Thread Robert Haist 
Thanks for your contribution!

Will be included in the next release.

Regard,

Rob

On 04/02/2017 03:52 PM, TRADUZ - DebianPT wrote:
> Package: hyperscan
> Version: 4.4.1-1
> Tags: l10n, patch
> Severity: wishlist
>
> Updated Portuguese translation for hyperscan's debconf messages.
> Translator: Rui Branco 
> Feel free to use it.
>
> For translation updates please contact 'Last Translator' or the
> Portuguese Translation Team .




signature.asc
Description: OpenPGP digital signature

Bug#860539: xserver-xorg-video-nouveau: Nouveau GPU lockup problem (GeForce GT 240)

2017-04-18 Thread Sven Joachim 
On 2017-04-18 12:40 +0200, Mathieu Malaterre wrote:

> Package: xserver-xorg-video-nouveau
> Version: 1:1.0.11-1
> Severity: normal
>
> Looks like my GeForce GT 240 is not well supported by nouveau.

Try a kernel and libgl1-mesa-dri from jessie-backports.  If that does
not help, use the NVidia blob or buy a Radeon card.

> Here is what I can see before pulling the plug:
>
> Apr 18 12:16:06 vostrodell kernel: [15473.519712] nouveau E[  
> PGRAPH][:01:00.0] vm flush timeout
> Apr 18 12:16:08 vostrodell kernel: [15475.519540] nouveau E[  
> PGRAPH][:01:00.0] vm flush timeout
> Apr 18 12:16:10 vostrodell kernel: [15477.519169] nouveau E[  
> VM][:01:00.0] vm flush timeout: engine 13
> Apr 18 12:16:12 vostrodell kernel: [15479.518772] nouveau E[  
> PGRAPH][:01:00.0] vm flush timeout
> Apr 18 12:16:14 vostrodell kernel: [15481.518476] nouveau E[  
> PGRAPH][:01:00.0] vm flush timeout
> Apr 18 12:16:23 vostrodell kernel: [15490.810128] nouveau W[  
> BARCTL][:01:00.0] flush timeout
> Apr 18 12:16:23 vostrodell kernel: [15490.810161] nouveau W[   
> PFIFO][:01:00.0] unknown intr 0x0080, ch 3
> Apr 18 12:16:23 vostrodell kernel: [15490.810389] [sched_delayed] sched: RT 
> throttling activated
> Apr 18 12:16:23 vostrodell rtkit-daemon[1233]: The canary thread is 
> apparently starving. Taking action.
> Apr 18 12:16:23 vostrodell rtkit-daemon[1233]: Demoting known real-time 
> threads.
> Apr 18 12:16:23 vostrodell rtkit-daemon[1233]: Successfully demoted thread 
> 1297 of process 1212 (/usr/bin/pulseaudio).
> Apr 18 12:16:23 vostrodell rtkit-daemon[1233]: Successfully demoted thread 
> 1296 of process 1212 (/usr/bin/pulseaudio).
> Apr 18 12:16:23 vostrodell rtkit-daemon[1233]: Successfully demoted thread 
> 1295 of process 1212 (/usr/bin/pulseaudio).
> Apr 18 12:16:23 vostrodell rtkit-daemon[1233]: Successfully demoted thread 
> 1212 of process 1212 (/usr/bin/pulseaudio).
> Apr 18 12:16:23 vostrodell rtkit-daemon[1233]: Demoted 4 threads.
> Apr 18 12:16:24 vostrodell kernel: [15492.137476] nouveau W[   
> PFIFO][:01:00.0] unknown intr 0x0400, ch 3
> Apr 18 12:16:25 vostrodell kernel: [15492.81] nouveau E[  
> PGRAPH][:01:00.0] vm flush timeout
> Apr 18 12:16:44 vostrodell kernel: [15494.809641] nouveau E[  
> VM][:01:00.0] vm flush timeout: engine 13
> Apr 18 12:16:44 vostrodell kernel: [15512.402357] nouveau W[  
> BARCTL][:01:00.0] flush timeout
> Apr 18 12:16:44 vostrodell kernel: [15512.402364] nouveau W[   
> PFIFO][:01:00.0] unknown intr 0x04c0, ch 3
>
>
> Would be nice to at least be able to switch to virtual term instead of hard 
> reboot.

I guess you'll have to use ssh or even netconsole to capture more kernel
messages.  Possibly related upstream bug:
https://bugs.freedesktop.org/show_bug.cgi?id=69465.

Cheers,
   Sven

Bug#859926: speechd-up: fails to install

2017-04-18 Thread Paul Gevers 
Hi all,

I don't know what to make of it, but when I first start the speechd-up
daemon by hand, then the init script succeeds (because it finds the
daemon already running). But now it comes, I then can stop and start the
daemon successfully, but only when I am quick enough. This is
reproducible, sleep 4 works always, sleep 5 always fails (so far).

paul@testavoira ~/ $ sudo /sbin/start-stop-daemon --start --nicelevel 0
--quiet --oknodo --chdir "/" --exec "/usr/bin/speechd-up" --oknodo
--pidfile "/var/run/speechd-up.pid" -- -l1
[Tue Apr 18 21:46:42 2017] speechd: Configuration has been read from
"/etc/speechd-up.conf"

paul@testavoira ~ $ sudo service speechd-up start

paul@testavoira ~ $ sudo service speechd-up stop ; sleep 4 ; sudo
service speechd-up start

paul@testavoira ~ $ sudo service speechd-up stop ; sleep 5 ; sudo
service speechd-up start
Job for speechd-up.service failed because the control process exited
with error code.
See "systemctl status speechd-up.service" and "journalctl -xe" for details.

If I look at the processes that are running after a sleep 4 look, I
notice that speech-dispatcher keeps the same PID, so apparently with
sleep 4 it isn't killed and still alive when speechd-up wants to connect
to it. With sleep 4, the speech-dispatcher is killed and speechd-up
fails to connect (as seen in the speechd-up.log).

The big question is why systemd can't get speech-dispatcher up before
speechd-up wants to talk to it. One thing I noticed is that
/etc/default/speech-dispatcher has RUN=no, so starting speech-dispatcher
with the init script succeeds, but doesn't do anything. I think that
that may cause the confusion of systemd as the speechd-up init script
depends on the speech-dispatcher init script.

Setting RUN=yes, allows systemd to start speech-dispatcher, but
apparently that isn't enough, because it still fails to start
speechd-up. Speech-dispatcher isn't running anymore after starting
speechd-up while it was running before calling the init script, so it
looks like systemd tries to restart speech-dispatcher and fails doing
that properly.

Paul




signature.asc
Description: OpenPGP digital signature

Bug#860575: firefox-esr: Improve gnome 3 integration

2017-04-18 Thread Carlo Marchiori 
Package: firefox-esr
Version: 52.0.2esr-1
Severity: wishlist

Dear Maintainer,

firefox could be integrated much better in gnome 3.

The title bar with the caption could be totally removed.
The tabs bar could be merged with Gnome upper task bar (at least optionally).

This would save a lot o vertical space which is currently wasted.



-- Package-specific info:

-- Extensions information
Name: AdBlock for Firefox
Location: ${PROFILE_EXTENSIONS}/jid1-niffy2ca8fy...@jetpack.xpi
Status: enabled

Name: Application Update Service Helper
Location: ${PROFILE_EXTENSIONS}/aushel...@mozilla.org.xpi
Status: enabled

Name: Default theme
Location: 
/usr/lib/firefox-esr/browser/extensions/{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Package: firefox-esr
Status: enabled

Name: Multi-process staged rollout
Location: ${PROFILE_EXTENSIONS}/e10sroll...@mozilla.org.xpi
Status: enabled

Name: Pocket
Location: ${PROFILE_EXTENSIONS}/fire...@getpocket.com.xpi
Status: enabled

Name: Web Compat
Location: ${PROFILE_EXTENSIONS}/webcom...@mozilla.org.xpi
Status: enabled

-- Plugins information
Name: Citrix Receiver for Linux
Location: /opt/Citrix/ICAClient/npica.so
Package: icaclient
Status: enabled

Name: Evince Browser Plugin
Location: /usr/lib/mozilla/plugins/libevbrowserplugin.so
Package: browser-plugin-evince
Status: enabled

Name: GNOME Shell Integration
Location: /usr/lib/mozilla/plugins/libgnome-shell-browser-plugin.so
Package: gnome-shell
Status: enabled

Name: IcedTea-Web Plugin (using IcedTea-Web 1.6.2 (1.6.2-3.1))
Location: /usr/lib/jvm/java-8-openjdk-amd64/jre/lib/amd64/IcedTeaPlugin.so
Package: icedtea-8-plugin:amd64
Status: enabled


-- Addons package information
ii  browser-plugin 3.22.1-3 amd64plugin for web browsers to displa
ii  firefox-esr52.0.2esr-1  amd64Mozilla Firefox web browser - Ext
ii  gnome-shell3.22.3-2 amd64graphical shell for the GNOME des
ii  icaclient  13.3.0.34451 amd64Citrix Receiver for Linux
ii  icedtea-8-plug 1.6.2-3.1amd64web browser plugin based on OpenJ

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (900, 'testing'), (800, 'unstable'), (500, 'stable'), (100, 
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.2.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages firefox-esr depends on:
ii  debianutils   4.8.1
ii  fontconfig2.11.0-6.7+b1
ii  libasound21.1.3-5
ii  libatk1.0-0   2.22.0-1
ii  libc6 2.24-9
ii  libcairo-gobject2 1.14.8-1
ii  libcairo2 1.14.8-1
ii  libdbus-1-3   1.10.18-1
ii  libdbus-glib-1-2  0.108-2
ii  libevent-2.0-52.0.21-stable-3
ii  libffi6   3.2.1-6
ii  libfontconfig12.11.0-6.7+b1
ii  libfreetype6  2.6.3-3.1
ii  libgcc1   1:6.3.0-12
ii  libgdk-pixbuf2.0-02.36.5-2
ii  libglib2.0-0  2.50.3-2
ii  libgtk-3-03.22.11-1
ii  libgtk2.0-0   2.24.31-2
ii  libhunspell-1.4-0 1.4.1-2+b2
ii  libjsoncpp1   1.7.4-3
ii  libpango-1.0-01.40.4-1
ii  libsqlite3-0  3.16.2-3
ii  libstartup-notification0  0.12-4+b2
ii  libstdc++66.3.0-12
ii  libvpx4   1.6.1-3
ii  libx11-6  2:1.6.4-3
ii  libx11-xcb1   2:1.6.4-3
ii  libxcb-shm0   1.12-1
ii  libxcb1   1.12-1
ii  libxcomposite11:0.4.4-2
ii  libxdamage1   1:1.1.4-2+b3
ii  libxext6  2:1.3.3-1+b2
ii  libxfixes31:5.0.3-1
ii  libxrender1   1:0.9.10-1
ii  libxt61:1.1.5-1
ii  procps2:3.3.12-3
ii  zlib1g1:1.2.8.dfsg-5

firefox-esr recommends no packages.

Versions of packages firefox-esr suggests:
ii  fonts-lmodern  2.004.5-3
ii  fonts-stix [otf-stix]  1.1.1-4
ii  libcanberra0   0.30-3
ii  libgssapi-krb5-2   1.15-1
pn  mozplugger 

-- no debconf information

Bug#860574: firefox-esr: At start Firefox opens up quite quickly but than it freezes for 15 seconds

2017-04-18 Thread Carlo Marchiori 
Package: firefox-esr
Version: 52.0.2esr-1
Severity: normal

Dear Maintainer,

At start Firefox opens up quite quickly but than it freezes for 15 seconds.

During these 15 seconds the browser is totally unresponsive, trying to type in
the address bar or clicking on it doesn't move the focus or show the caret in
it. There is no sign of any ongoing work being done by the browser or any type
of visual feedback to the user about what's happening.




-- Package-specific info:

-- Extensions information
Name: AdBlock for Firefox
Location: ${PROFILE_EXTENSIONS}/jid1-niffy2ca8fy...@jetpack.xpi
Status: enabled

Name: Application Update Service Helper
Location: ${PROFILE_EXTENSIONS}/aushel...@mozilla.org.xpi
Status: enabled

Name: Default theme
Location: 
/usr/lib/firefox-esr/browser/extensions/{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Package: firefox-esr
Status: enabled

Name: Multi-process staged rollout
Location: ${PROFILE_EXTENSIONS}/e10sroll...@mozilla.org.xpi
Status: enabled

Name: Pocket
Location: ${PROFILE_EXTENSIONS}/fire...@getpocket.com.xpi
Status: enabled

Name: Web Compat
Location: ${PROFILE_EXTENSIONS}/webcom...@mozilla.org.xpi
Status: enabled

-- Plugins information
Name: Citrix Receiver for Linux
Location: /opt/Citrix/ICAClient/npica.so
Package: icaclient
Status: enabled

Name: Evince Browser Plugin
Location: /usr/lib/mozilla/plugins/libevbrowserplugin.so
Package: browser-plugin-evince
Status: enabled

Name: GNOME Shell Integration
Location: /usr/lib/mozilla/plugins/libgnome-shell-browser-plugin.so
Package: gnome-shell
Status: enabled

Name: IcedTea-Web Plugin (using IcedTea-Web 1.6.2 (1.6.2-3.1))
Location: /usr/lib/jvm/java-8-openjdk-amd64/jre/lib/amd64/IcedTeaPlugin.so
Package: icedtea-8-plugin:amd64
Status: enabled


-- Addons package information
ii  browser-plugin 3.22.1-3 amd64plugin for web browsers to displa
ii  firefox-esr52.0.2esr-1  amd64Mozilla Firefox web browser - Ext
ii  gnome-shell3.22.3-2 amd64graphical shell for the GNOME des
ii  icaclient  13.3.0.34451 amd64Citrix Receiver for Linux
ii  icedtea-8-plug 1.6.2-3.1amd64web browser plugin based on OpenJ

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (900, 'testing'), (800, 'unstable'), (500, 'stable'), (100, 
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.2.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages firefox-esr depends on:
ii  debianutils   4.8.1
ii  fontconfig2.11.0-6.7+b1
ii  libasound21.1.3-5
ii  libatk1.0-0   2.22.0-1
ii  libc6 2.24-9
ii  libcairo-gobject2 1.14.8-1
ii  libcairo2 1.14.8-1
ii  libdbus-1-3   1.10.18-1
ii  libdbus-glib-1-2  0.108-2
ii  libevent-2.0-52.0.21-stable-3
ii  libffi6   3.2.1-6
ii  libfontconfig12.11.0-6.7+b1
ii  libfreetype6  2.6.3-3.1
ii  libgcc1   1:6.3.0-12
ii  libgdk-pixbuf2.0-02.36.5-2
ii  libglib2.0-0  2.50.3-2
ii  libgtk-3-03.22.11-1
ii  libgtk2.0-0   2.24.31-2
ii  libhunspell-1.4-0 1.4.1-2+b2
ii  libjsoncpp1   1.7.4-3
ii  libpango-1.0-01.40.4-1
ii  libsqlite3-0  3.16.2-3
ii  libstartup-notification0  0.12-4+b2
ii  libstdc++66.3.0-12
ii  libvpx4   1.6.1-3
ii  libx11-6  2:1.6.4-3
ii  libx11-xcb1   2:1.6.4-3
ii  libxcb-shm0   1.12-1
ii  libxcb1   1.12-1
ii  libxcomposite11:0.4.4-2
ii  libxdamage1   1:1.1.4-2+b3
ii  libxext6  2:1.3.3-1+b2
ii  libxfixes31:5.0.3-1
ii  libxrender1   1:0.9.10-1
ii  libxt61:1.1.5-1
ii  procps2:3.3.12-3
ii  zlib1g1:1.2.8.dfsg-5

firefox-esr recommends no packages.

Versions of packages firefox-esr suggests:
ii  fonts-lmodern  2.004.5-3
ii  fonts-stix [otf-stix]  1.1.1-4
ii  libcanberra0   0.30-3
ii  libgssapi-krb5-2   1.15-1
pn  mozplugger 

-- no debconf information

Bug#860573: unblock: php-horde-imp/6.2.17-2

2017-04-18 Thread Mathieu Parent 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package php-horde-imp

This is to fix "sending email after attch_body_check hook fails" (#859048).

Debdiff is attached.

unblock php-horde-imp/6.2.17-2

-- System Information:
Debian Release: 9.0
  APT prefers testing-debug
  APT policy: (500, 'testing-debug'), (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru php-horde-imp-6.2.17/debian/changelog 
php-horde-imp-6.2.17/debian/changelog
--- php-horde-imp-6.2.17/debian/changelog   2016-12-18 22:21:45.0 
+0100
+++ php-horde-imp-6.2.17/debian/changelog   2017-04-18 21:59:43.0 
+0200
@@ -1,3 +1,9 @@
+php-horde-imp (6.2.17-2) unstable; urgency=medium
+
+  * Fix sending email after attch_body_check hook fails (Closes: #859048)
+
+ -- Mathieu Parent   Tue, 18 Apr 2017 21:59:43 +0200
+
 php-horde-imp (6.2.17-1) unstable; urgency=medium
 
   * New upstream version 6.2.17
diff -Nru 
php-horde-imp-6.2.17/debian/patches/0001-Bug-14610-Fix-sending-email-after-attch_body_check-h.patch
 
php-horde-imp-6.2.17/debian/patches/0001-Bug-14610-Fix-sending-email-after-attch_body_check-h.patch
--- 
php-horde-imp-6.2.17/debian/patches/0001-Bug-14610-Fix-sending-email-after-attch_body_check-h.patch
 1970-01-01 01:00:00.0 +0100
+++ 
php-horde-imp-6.2.17/debian/patches/0001-Bug-14610-Fix-sending-email-after-attch_body_check-h.patch
 2017-04-18 21:59:43.0 +0200
@@ -0,0 +1,30 @@
+From 9333bcbcdf64176e824858dfe2004f801b549f19 Mon Sep 17 00:00:00 2001
+From: Michael J Rubinsky 
+Date: Thu, 13 Apr 2017 15:32:35 -0400
+Subject: [PATCH] Bug: 14610 Fix sending email after attch_body_check hook
+ fails.
+
+Need to add the compose object to the queue if we catch this
+exception since the SmartMobile view does not get the cacheid when
+the compose page is "loaded" since it's not (re)generated on each
+compose action.
+---
+ imp/lib/Ajax/Application/Handler/Common.php | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/imp-6.2.17/lib/Ajax/Application/Handler/Common.php 
b/imp-6.2.17/lib/Ajax/Application/Handler/Common.php
+index 83df6c9af2..f853be959a 100644
+--- a/imp-6.2.17/lib/Ajax/Application/Handler/Common.php
 b/imp-6.2.17/lib/Ajax/Application/Handler/Common.php
+@@ -578,7 +578,7 @@ class IMP_Ajax_Application_Handler_Common extends 
Horde_Core_Ajax_Application_Ha
+ return $result;
+ } catch (IMP_Compose_Exception $e) {
+ $result->success = 0;
+-
++$this->_base->queue->compose($imp_compose);
+ if (is_null($e->tied_identity)) {
+ $notify_level = 'horde.error';
+ } else {
+-- 
+2.11.0
+
diff -Nru php-horde-imp-6.2.17/debian/patches/series 
php-horde-imp-6.2.17/debian/patches/series
--- php-horde-imp-6.2.17/debian/patches/series  1970-01-01 01:00:00.0 
+0100
+++ php-horde-imp-6.2.17/debian/patches/series  2017-04-18 21:59:43.0 
+0200
@@ -0,0 +1 @@
+0001-Bug-14610-Fix-sending-email-after-attch_body_check-h.patch

Bug#858876: libjna-jni: causes NoClassDefFoundError

2017-04-18 Thread Markus Koschany 
Hi,

Am 18.04.2017 um 11:15 schrieb Emmanuel Bourg:
> Le 18/04/2017 à 00:07, Emmanuel Bourg a écrit :
> 
>> I'll get another look.
> 
> I wrote a simple test case:
> 
> import com.sun.jna.platform.unix.X11;
> public class JNATest {
> public static void main(String[] args) throws Exception {
> System.setProperty("jna.boot.library.name", "jnidispatch.foo");
> System.out.println("XAllocSizeHints: " + 
> X11.INSTANCE.XAllocSizeHints());
> }
> }
> 
> Compiled and executed with the system JNA jar:
> 
> java -cp .:/usr/share/java/jna.jar:/usr/share/java/jna-platform.jar 
> JNATest
> 
> And this always works, even if the jna.boot.library.name property
> contains a bogus name.
> 
> Renaming libjnidispatch.system.so to libjnidispatch.so triggers
> an UnsatisfiedLinkError.
> 
> I checked again the JNA code and there is no other occurrence of
> jna.boot.library.* besides the ones removed in 4.2.2-3.
> 
> This issue really looks like an embedded jar. If it isn't in netbeans
> directly, it could be in one of its dependencies.

I must admit I don't know what's going wrong here. I have checked
libnb-platform18-java again but I can't find embedded code copies of
JNA. (I grepped for com.sun.jna). I have also made sure that no external
jar files are downloaded at build time. [1]

I suggest to reassign this bug to libnb-platform18-java for now. I will
update the netbeans-platform-nojnabinaries.patch accordingly which will
hopefully fix this permanently. If you or someone else find an embedded
code copy of JNA in Netbeans or libnb-platform18-java, please let me
know. Obviously this would be very disappointing after all the work that
went into the packaging.

Regards,

Markus

[1]
https://sources.debian.net/src/libnb-platform18-java/8.1%2Bdfsg1-4/debian/patches/netbeans-platform-empty-binaries-list.patch/





signature.asc
Description: OpenPGP digital signature

Bug#202675: [Popcon-developers] Bug#202675: popularity-contest: Should collect and report kernel modules used

2017-04-18 Thread Bill Allombert 
On Tue, Apr 18, 2017 at 11:58:45AM -0700, Matt Taggart wrote:
> Having popcon gather information about used kernel modules would be
> very helpful for a wishlist bug I just filed, #860570
> 
>   https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860570
> 
> (in addition to the other reasons previously mentioned)

Well, if modules were split in several packages, then popcon could
report the popularity of them.

Cheers,
-- 
Bill. 

Imagine a large red swirl here.

Bug#841506: aptitude: cannot reinstall package available as update

2017-04-18 Thread Jonas Smedegaard 
Quoting Manuel A. Fernandez Montecelo (2017-04-18 21:01:41)
> Hi again,
> 
> 2017-03-20 23:36 Manuel A. Fernandez Montecelo:
> >2017-03-07 23:33 GMT+01:00 Jonas Smedegaard :
> >> Quoting Manuel A. Fernandez Montecelo (2017-03-07 22:43:39)
> >>>
> >>> Under normal conditions, one can reinstall a single package ("l" +
> >>> "g") at any time, no problem -- it doesn't prevent to Go ahead just
> >>> because reinstall is not a supported operation.  Does this work for
> >>> you right now, I hope?
> >>
> >> It works to reinstall packages, yes.  This bug is not that reinstall
> >> stopped generally working, but that it refused to work for that specific
> >> package being in limbo, where aptitude (or dpkg bubbling through?)
> >> explicitly instructed to _reinstall_.
> >> [...]
> >>
> >>> Nevermind.  This has to do with my wrong interpretation.  When the
> >>> package to be reinstalled has been upgraded in the server, one should
> >>> upgrade, reinstall never works.
> >>
> >> I realize that your misunderstanding me quite likely stems from my bad
> >> phrasing of the subject of this bugreport: Kernel package had failed to
> >> install _moments_ before trying to reinstall - not long time befor - so
> >> situation was _not_ that the package no longer was available for
> >> re-download (I am aware that "l" does a fresh download of the current
> >> version of the package and therefore need that version to be available).
> >
> >Everything is more clear now, there are some ideas to simulate a
> >broken update and try to reproduce it.
> >
> >However I'm quite low on spare time at the moment, so it can take a while.
> 
> For the record, I could not attempt to reproduce this item properly
> (don't have space cycles to forge broken packages and check all code
> paths), but I was working with other bugs related with reinstalling and
> #851901 (incl. scheduling actions and reinstalling in later sessions)
> and never observed similar behaviour as described in a previous message:
> 
>   "Choosing "L" to reinstall and then "G", is refused with (in danish,
>   on my system) a message saying that no packages will be installed,
>   removed or upgraded, some packages could be upgraded, and I should
>   press "U" to do that."
> 
> So I am not sure what's going on, but I don't think that reinstalling is
> missing from the logic related with 'G'.
> 
> Perhaps it's related with the package half-broken state in dpkg that
> this could not proceed, or some temporary inconsistency between
> aptitude<->apt or apt<->dpkg; but indeed it does not seem to be a
> problem in the common case.

Yes, Most certainly relates to the package being half-broken in dpkg. 
Listing events, rephrased from my initial post to this bugreport:

 1) A package went into a semi-broken state needing reinstall
 2) Aptitude proxied dpkg error about 1)
 3) Attempt to use the aptitude way to reinstall fails

The bug tracked in this bugreport is 3), triggered by 1).


Yes, 1) is rare and 1) occuring while using aptitude even more rare. Not 
sure why you mention that, however.  That does not make the bug go away.


 - Jonas

-- 
 * Jonas Smedegaard - idealist & Internet-arkitekt
 * Tlf.: +45 40843136  Website: http://dr.jones.dk/

 [x] quote me freely  [ ] ask before reusing  [ ] keep private


signature.asc
Description: signature

Bug#835372: [Aptitude-devel] Bug#835372: Bug#835372: aptitude: behavior change with 0.7.6 with packages that can't be installed breaking automated installations

2017-04-18 Thread Manuel A. Fernandez Montecelo 

Control: tags -1 + pending

Hi,

2016-09-17 17:13 Manuel A. Fernandez Montecelo:

Hi,

2016-08-25 02:13 Thomas Lange:

On Thu, 25 Aug 2016 01:59:47 +0200, Axel Beckert  said:


  > So let's try to define the exact behaviour needed for automated setups
  > where package lists might be not 100% fit what's available.

  > * Installation requests for packages which don't exist in the package
  >   lists.
  > * Removal and purge request for not installed or non-existent
  >   packages.
  > * Hold requests for not installed packages.

This is missing:
Packages which are in the package list, but do not have an
installation candidate.


For me it's OK to have this as a wishlist bug, but it's very
important, that this option will be implemented for stretch. FAI and
other automated installation systems did not rely on the bad behaviour
of aptitude, but the used this behaviour as a usefull feature.

I would love to see a comment from the aptitude/apt-get developers, if
this new option can be implemented for stretch.


Reverting is not very likely, sorry.  The change was not made late in
the development cycle of the release (as we are now) for a reason.

The option of implementing a config flag for this would maybe make
sense, but I haven't had much time in the last few weeks and I will be
busy for a while yet, so let's see.


Indeed, I have been through some hellish months.  Maybe we're still in
time for stretch, though, let's try.

Please check this option in the next version and tell me if it works and
is a good solution (I think that it is for you, because it works as it
did before, ignoring errors).


About the fix itself...  I think that -f / Aptitude::CmdLine::Fix-Broken
[1] serves for this purpose, so I implemented a small check for "if
errors but fix_broken, continue anyway":

 $ sudo ./src/aptitude reinstall -f anacron does-not-exist
 Couldn't find any package whose name or description matched "does-not-exist"
 Unable to apply some actions but Aptitude::CmdLine::Fix-Broken (-f) is 
enabled, continuing...
 The following packages will be REINSTALLED:
   anacron
 0 packages upgraded, 0 newly installed, 1 reinstalled, 0 to remove and 64 not 
upgraded.
 Need to get 0 B/32.8 kB of archives. After unpacking 0 B will be used.
 (Reading database ... 254749 files and directories currently installed.)
 Preparing to unpack .../anacron_2.3-23_amd64.deb ...
 Unpacking anacron (2.3-23) over (2.3-23) ...
 Processing triggers for systemd (232-22) ...
 Processing triggers for man-db (2.7.6.1-2) ...
 Setting up anacron (2.3-23) ...


[1] From the man page:

 -f
   
 Try hard to fix the dependencies of broken packages, even if it means

 ignoring the actions requested on the command line.

 This corresponds to the configuration item Aptitude::CmdLine::Fix-Broken.


--
Manuel A. Fernandez Montecelo

Bug#860570: linux: compartmentalize modules into separate packages

2017-04-18 Thread Ben Hutchings 
Matt Taggart  wrote:
[...]
> * I still see the floppy and parallel port module load on many of my
> systems because the superio/southbridge/etc happened to have that
> device in case the system designer wanted to use it. It's time for
> this stuff to go away.

Sounds like a BIOS bug or misconfiguration.  In any case I don't think
those devices will be accessible by unprivileged users.

> * firewire is a particular risk, it could be argued that even if the
> hardware _is_ present, the user should have to opt-in to enabling it

I haven't seen a computer shipped with Firewire ports for a good few
years.  If they're present than they're probably on an add-on card that
the user wants to use.

> * Debian is cool because it still runs great on old systems, we don't
> want to prevent that, but it would be nice to leave the old baggage
> in a separate package (ISA, old network standards, old filesystems,
> anything that stopped being produced 20+ years ago).

I agree that filesystems are a problem, but not just old ones - they're
all vulnerable to malicious storage devices.  Ideally I want removable
storage to be mounted using FUSE by default, not kernel filesystems. 
Also util-linux ought not to probe any of those obscure filesystems by
default.  Both of these require userland, not kernel, changes.

Network protocols are a big problem, but again this isn't limited to
old ones.  I want to disable auto-loading for them by default, so you
have to opt in to get anything but AF_{INET,INET6,NETLINK,PACKET,UNIX}.

In general, the modules I'm concerned about are those that can be
loaded on-demand for unprivileged users.  The ModAutoRestrict LSM might
provide a way to deal with those: https://lwn.net/Articles/719385/

The old drivers, however, just aren't going to get loaded so I don't
think they're a problem.

> * This would add complication to an already complicated package.
> Would the benefit be worth it?

No, it's bad enough having to categorise things for udebs.

> * This might be confusing for the very, very, small percentage of
> users where things didn't "just work" with d-i doing the right thing.

It would be a very large percentage because, you know, hotplug is a
thing.

> Would the benefit be worth it?

No.

Ben.

-- 
Ben Hutchings
The world is coming to an end.  Please log off.


signature.asc
Description: This is a digitally signed message part

Bug#860520: Voting for TC Chair

2017-04-18 Thread Didier 'OdyX' Raboud 
Le mardi, 18 avril 2017, 08.58:03 h CEST Didier 'OdyX' Raboud a écrit :
> ===BEGIN===
> 
> The chair of the Debian Technical Committee will be:
> 
> A: Keith Packard 
> B: Didier Raboud 
> C: Tollef Fog Heen 
> D: Sam Hartman 
> E: Phil Hands 
> F: Margarita Manterola 
> G: David Bremner 
> ===END===

I vote:

B > E > D = C > F = G > A   

-- 
OdyX

signature.asc
Description: This is a digitally signed message part.

Bug#860572: RFP: delay -- a delayed pipe

2017-04-18 Thread Romain Vimont 
Package: wnpp
Severity: wishlist

* Package name: delay
  Version :
  Upstream Author : Romain Vimont (I'm the author)
* URL : https://github.com/rom1v/delay
* License : GPLv3
  Programming Lang: C
  Description : A delayed pipe

 A command-line tool introducing a constant delay between its stdin and
 its stdout.

This is a tiny tool I developed 3 years ago, for playing a video stream
after a constant delay. Since it is very generic (it's just a delayed
pipe), I think it may be useful to some people, so I would like it to be
packaged for Debian.

I am looking for a maintainer interested in packaging it. If some
adaptations in the upstream project are necessary, please let me know.

Thank you for your help.

Regards,
®om

Bug#860317: upgrade to latest stretch version breaks

2017-04-18 Thread Brent S. Elmer Ph.D. 
On Tue, 2017-04-18 at 18:50 +0200, Andreas Metzler wrote:
> On 2017-04-17 "Brent S. Elmer Ph.D."  wrote:
> > On Sat, 2017-04-15 at 13:33 +0200, Andreas Metzler wrote:
> > > On 2017-04-14 "Brent S. Elmer"  wrote:
> 
> [...]
> > > > Apr 14 08:30:06 brente systemd[1]: Starting LSB: exim Mail
> > > > Transport Agent...
> > > > Apr 14 08:30:06 brente exim4[27992]: Starting MTA: exim4.
> > > > Apr 14 08:30:06 brente exim4[27992]: ALERT: exim paniclog
> > > > /var/log/exim4/pa…oken
> > > > Apr 14 08:30:06 brente systemd[1]: exim4.service: PID file
> > > > /run/exim4/exim.…tory
> > > > Apr 14 08:30:06 brente systemd[1]: exim4.service: Daemon never
> > > > wrote its
> > > > PI…ing.
> > > > Apr 14 08:30:06 brente systemd[1]: Failed to start LSB: exim
> > > > Mail
> > > > Transport…ent.
> 
> Hello,
> 
> you have set
> QUEUERUNNER='nodaemon'
> in /etc/default/exim4, haven't you?
> 
> cu Andreas

No, it is 'combined'.  I don't think I have ever done anything to
change it.

Bug#860571: release-notes: clarify and document GnuPG transition for stretch

2017-04-18 Thread Daniel Kahn Gillmor 
Package: release-notes
Severity: normal
Tags: patch
Control: affects -1 src:gnupg2

The GnuPG transition from jessie to stretch is a significant change.
We should document it in the release notes.

Attached is a proposed patch.

Regards,

--dkg

-- System Information:
Debian Release: 9.0
  APT prefers testing-debug
  APT policy: (500, 'testing-debug'), (500, 'testing'), (200, 
'unstable-debug'), (200, 'unstable'), (1, 'experimental-debug'), (1, 
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
>From a743629071b6d138df19fef102a4b7c09b20fa81 Mon Sep 17 00:00:00 2001
From: Daniel Kahn Gillmor 
Date: Tue, 18 Apr 2017 15:07:53 -0400
Subject: [PATCH] Clarify and document GnuPG transition

---
 en/whats-new.dbk | 22 --
 1 file changed, 20 insertions(+), 2 deletions(-)

diff --git a/en/whats-new.dbk b/en/whats-new.dbk
index 0d6dcb7d..e91aad00 100644
--- a/en/whats-new.dbk
+++ b/en/whats-new.dbk
@@ -276,8 +276,8 @@ Among many others, this release also includes the following 
software updates:
   
 -->
   
-   GnupgGnupg
-   2.0
+   GnuPGGnuPG
+   1.4
2.1
   
   
@@ -471,6 +471,24 @@ so are still included there.
   
 
 
+
+  Move to "Modern" GnuPG
+  
+The stretch release is the first version of Debian to feature the
+"Modern" branch of GnuPG in the gnupg package.  This brings with it
+elliptic curve cryptography, better defaults, a more modular
+architecture, and improved smartcard support.  The modern branch
+also explicitly does not support some older, known-broken formats
+(like PGPv3).
+  
+  
+We will continue to supply the "classic" branch of GnuPG as
+gnupg1 for people who need
+it, but it is now deprecated.
+  
+
+
 
   
   A new archive for debug symbols
-- 
2.11.0

Bug#202675: popularity-contest: Should collect and report kernel modules used

2017-04-18 Thread Matt Taggart 
Having popcon gather information about used kernel modules would be
very helpful for a wishlist bug I just filed, #860570

  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860570

(in addition to the other reasons previously mentioned)

Thanks,

-- 
Matt Taggart
tagg...@debian.org

Bug#845659: debpatch: New script, "Apply a debdiff to a Debian source package"

2017-04-18 Thread Ximin Luo 
James McCoy:
> On Thu, Jan 05, 2017 at 04:18:00PM +, Ximin Luo wrote:
>> Ximin Luo:
>>> As part of the Reproducible Builds effort, I've written a tool called
>>> debpatch(1), see the branch here:
>>> [..]
>>
>> Hi devscripts team,
>>
>> Any news on this?
> 
> Apologies for not giving this a review sooner.
> 
>> I would also be happy to merge this myself (I have
>> the access) but I thought it would be good to ask for a review first,
>> since I haven't contributed to this repo before.
> 
> I agree with Sean that it would be good to not to have another
> reimplementation of changelog merging.  However, if dpkg-mergechangelogs
> doesn't provide the functionality you need, I would recommend looking at
> python3-debian's debian.changelog module.  I think that would probably
> be easier than trying to twist dch into doing the work.
> 

Sorry for the delay, I have now made these changes.

dpkg-mergechangelogs seemed interesting but actually does a different job - it 
merges different entries by total ordering on Debian version numbers, and it 
does a normal 3-way merge when changes to the same entry are detected. This 
type of merging seems more suited to packages that have already been released. 
For example, it was unable to merge my pu/debpatch branch with the current 
master, and I had to resolve that manually.

OTOH debpatch is for rebasing unreleased changes on top of new released 
packages. So what we want here is to plonk any added extra changelog entry, on 
top of the new base, and adjust the version number accordingly.

I have switched to using debian.changelog though, thanks for the tip. I also 
got rid of some dirty "this is already applied" logic and removed some 
arbitrary limits.

https://anonscm.debian.org/cgit/collab-maint/devscripts.git/log/?h=pu/debpatch

Pushed there ^ but also would be happy to squash these commits if you prefer.

X

-- 
GPG: ed25519/56034877E1F87C35
GPG: rsa4096/1318EFAC5FBBDBCE
https://github.com/infinity0/pubkeys.git

Bug#841506: aptitude: cannot reinstall package available as update

2017-04-18 Thread Manuel A. Fernandez Montecelo 

Hi again,

2017-03-20 23:36 Manuel A. Fernandez Montecelo:

2017-03-07 23:33 GMT+01:00 Jonas Smedegaard :

Quoting Manuel A. Fernandez Montecelo (2017-03-07 22:43:39)


Under normal conditions, one can reinstall a single package ("l" +
"g") at any time, no problem -- it doesn't prevent to Go ahead just
because reinstall is not a supported operation.  Does this work for
you right now, I hope?


It works to reinstall packages, yes.  This bug is not that reinstall
stopped generally working, but that it refused to work for that specific
package being in limbo, where aptitude (or dpkg bubbling through?)
explicitly instructed to _reinstall_.
[...]


Nevermind.  This has to do with my wrong interpretation.  When the
package to be reinstalled has been upgraded in the server, one should
upgrade, reinstall never works.


I realize that your misunderstanding me quite likely stems from my bad
phrasing of the subject of this bugreport: Kernel package had failed to
install _moments_ before trying to reinstall - not long time befor - so
situation was _not_ that the package no longer was available for
re-download (I am aware that "l" does a fresh download of the current
version of the package and therefore need that version to be available).


Everything is more clear now, there are some ideas to simulate a
broken update and try to reproduce it.

However I'm quite low on spare time at the moment, so it can take a while.


For the record, I could not attempt to reproduce this item properly
(don't have space cycles to forge broken packages and check all code
paths), but I was working with other bugs related with reinstalling and
#851901 (incl. scheduling actions and reinstalling in later sessions)
and never observed similar behaviour as described in a previous message:

 "Choosing "L" to reinstall and then "G", is refused with (in danish,
 on my system) a message saying that no packages will be installed,
 removed or upgraded, some packages could be upgraded, and I should
 press "U" to do that."

So I am not sure what's going on, but I don't think that reinstalling is
missing from the logic related with 'G'.

Perhaps it's related with the package half-broken state in dpkg that
this could not proceed, or some temporary inconsistency between
aptitude<->apt or apt<->dpkg; but indeed it does not seem to be a
problem in the common case.


Cheers.
--
Manuel A. Fernandez Montecelo

Bug#754785: [Pkg-fonts-devel] Bug#754785: ITP: fonts-open-sans -- sans serif typeface

2017-04-18 Thread Fabian Greffrath 
Am Dienstag, den 18.04.2017, 19:33 +0200 schrieb Gregor Riepl:
> My account on Alioth is onitake-guest.

Please request membership in the group on Alioth, so I can add you
immediately.

 - Fabian


signature.asc
Description: This is a digitally signed message part

Bug#851901: [Aptitude-devel] Bug#851901: aptitude: "E: Internal Error, No file name for apt-build:amd64" after failed reinstallation of apt-build, then endless loop "Can't find a source to download ve

2017-04-18 Thread Manuel A. Fernandez Montecelo 

Control: tags -1 + pending


Fix commited, to be released soon.

--
Manuel A. Fernandez Montecelo

Bug#860467: apt-setup https protocol support in generators/91security for security mirror

2017-04-18 Thread Philipp Kern 
On 17.04.2017 15:35, Cyril Brulebois wrote:
> Right now, the only setting available is apt-setup/security_host, and there's
> no apt-setup/security_path (“debian-security” is hardcoded).
> 
> Adding support for both shouldn't be too hard but:
>  - we're trying to release stretch, so at some point it would be nice to
>stop making changes;
>  - https support would be a nice addition but lacking it isn't a
>regression at this point (as I mentioned on IRC, https support is
>rather new); also, should it be automatically set to https if the
>main mirror was selected as https?
> 
> At this point, I think it would be fair to ask interested people to work
> on this in a buster branch, not to be uploaded to unstable until the
> release of stretch?

Yes. Especially as I think this can be worked around by using a local0
repository (which accepts an arbitrary URL).

Kind regards
Philipp Kern

Bug#860561: autossh restarts SSH session every $AUTOSSH_POLL seconds if (auto)ssh is called with option "-6" (i.e. when enforcing IPv6 usage)

2017-04-18 Thread Axel Beckert 
Dear Carson,

today I stumbled upon the following issue with at least autossh 1.4e,
but likely all versions since 1.2c:

If ssh (OpenSSHversion 7.4p1 in my case) is called with option "-6",
all local port forwardings listen on IPv6 localhost (i.e. ::1) only,
too.

But autossh attempts to "pass traffic on the monitor forwarded port"
only on IPv4 localhost (127.0.0.1) which causes the error message

  connect_to 127.0.0.1: unknown host (Address family for hostname not supported)

and then kills and respawns the SSH connection.

An easy way to reproduce this on a IPv6-capable host is this simple
command:

  env AUTOSSH_POLL=2 autossh -6 localhost

This issue is probably caused by or at least related to this change in
1.2c:

  use Marcus Friedl's suggestion to simply connect to "127.0.0.1" 
  rather than "localhost", as not really using IPv6 anyway. And this
  gets rid of annoying ipv6 localhost message on Solaris at least.

But then again, just changing "127.0.0.1" to "localhost" doesn't seem
to fix the issue. Now I get this error message:

  connect_to localhost port 60059: failed.

And in the syslog this one:

  timeout polling to accept read connection 

I've tried this with hosts which have both, A and  record, host
which only have an  record and pure IPv6 addresses.

So I'm not sure what's the proper way to solve this. Maybe an option
or environment variable to configure "mhost" dynamically or by the
user if needed?

Looking at the presence of the option "-6" or "-o AddressFamily=inet6"
is probably only a workaround to mitigate the issue as the
AddressFamily option could also be configured in .ssh/config, even
only per host. And I don't think autossh should start parsing
.ssh/config.

Maybe there's a chance to gather on which IP address the child ssh
process is listening to in the /proc file system. But then again,
that's probably linux-specific and might not work on other Unices. :-/

P.S.: I've documented this in the Debian bug tracking system at
https://bugs.debian.org/860561 -- if you Cc 860...@bugs.debian.org,
your replies will show up and be archived under that URL, too.

Regards, Axel
-- 
 ,''`.  |  Axel Beckert , http://people.debian.org/~abe/
: :' :  |  Debian Developer, ftp.ch.debian.org Admin
`. `'   |  4096R: 2517 B724 C5F6 CA99 5329  6E61 2FF9 CD59 6126 16B5
  `-|  1024D: F067 EA27 26B9 C3FC 1486  202E C09E 1D89 9593 0EDE


signature.asc
Description: Digital signature

Bug#860543: initramfs-tools: boot delayed by 30sec waiting for suspend/resume device

2017-04-18 Thread Ben Hutchings 
On Tue, 2017-04-18 at 16:41 +0200, Helios Solaris wrote:
> On Tue, 18 Apr 2017 15:19:21 +0100 Ben Hutchings 
> wrote:
> 
> > Does this system have a swap partition?
> > 
> > Is there a resume device specified in
> > /etc/initramfs-tools/conf.d/resume and does it exist?
> 
> I have the same issue.
> 
> My system does not have a swap partition.
> 
> /etc/initramfs-tools/conf.d/resume exists and did not contain a valid
> device. The problem still persists, if I enter a valid UUID, or remove
> the file.

This issue should only affect systems that have a nonexistent device
specified in the configuration, or that have a swap device that isn't
suitable as a resume device because it's not set up early enough.
Previously we would only look for the resume device once, so this
didn't hurt, but it also meant that resume was broken on some systems.

Unfortunately, as you've seen, there isn't currently a way to
completely disable use of a resume device when building the initramfs. 
It *is* possible to do so at boot time (kernel parameter 'noresume' or
'resume=').

I think I need to add:

- The option to disable use of a resume device in the configuration
  (e.g. RESUME=none)
- A warning on upgrade if the configured resume device doesn't exist or
  is unlikely to be available

Ben.

-- 
Ben Hutchings
The world is coming to an end.  Please log off.



signature.asc
Description: This is a digitally signed message part

Bug#860533: initramfs-tools: boot delayed by 30sec. due to /scripts/local-block loop

2017-04-18 Thread Ben Hutchings 
Control: tag -1 - moreinfo

On Tue, 2017-04-18 at 17:15 +0200, Enrico Rossi wrote:
[...]
> > Is there a resume device specified in
> > /etc/initramfs-tools/conf.d/resume and does it exist?
> 
> Now that you point me to it, yes, it is present and I have no idea where
> that UUID comes from.
> 
> No blkid device has that UUID.
> 
> I have removed the file, update the initramfs and now the problem seems
> solved. Still I have no idea where did it comes from, maybe an old upgrade?

Probably from the initial installation.  But it did no harm until I
implemented a wait for the resume device to appear.

Ben.

-- 
Ben Hutchings
The world is coming to an end.  Please log off.



signature.asc
Description: This is a digitally signed message part

Bug#860570: linux: compartmentalize modules into separate packages

2017-04-18 Thread Matt Taggart 
Source: linux
Severity: wishlist

(Foreword: I have an idea to make Debian more secure. This is for
post-stretch consideration. This is being filed as wishlist and is
only an idea, if parts of it don't make sense or have errors, I
welcome corrections, discussion, etc. Thanks!)

With the recent advent of syscall fuzzing, generic code analysis tools,
and other security related tools, we are seeing more and more security
vulnerabilities found in kernel subsystems. That they are being found
is a good thing! Previously they existed and only well funded (state
level?) attackers knew about them. Now they are coming out and getting
fixed which is great. But a side effect of this new transparency is
that all attackers learn of them and each system is at risk from more
attackers, security upgrades are becoming more urgent.

When a linux DSA is released, I read the advisory to assess if it
applies to the systems I maintain. Often the problems are in
subsystems that I don't use directly, but there exists a way for
a local unprivileged user to cause that subsystem to load and then
exploit it. A recent example is the DCCP bug (CVE-2017-6074,
DSA-3791-1), almost no one uses DCCP but all had to either upgrade
and reboot or mitigate on all systems.

There are many kernel modules where the number of systems that
truly need them installed is far under 0.01% of the installed
Debian base. It would be nice if we could find a way of avoiding
having those installed.

One way of solving this problem is to preload any modules you
may need at boot via /etc/modules and then
 sysctl kernel.modules_disabled=1
to disable further changes. Another option is to blacklist specific
modules and require the user to enable them if they need them.
Those both work, but aren't very user friendly.

After thinking about this, I came up with the following idea:

1) split all in-tree kernel modules into separate package groupings
according to a logical scheme. That might be:
 * use classes: base, desktop, laptop, server
 * era computer was produced: new, recent, legacy
 * statistical frequency modules are used: base, common, niche
(determined with something like popcon for modules, #202675)
 * arch related: mips-router, x86-tablet, arm-phone
 * some combination of the above

2) for each non-default-installed module package provided, build a
corresponding dummy/stubs package that provides all the same modules
but when loaded all they do is log a message indicating the kernel
attempted to load the module but it wasn't present and what package
the user needs to install to get it. The kernel package would then
depend on: modules-foo-version-stub | modules-foo-version, the stub
package gets pulled in by default. (for default-installed module
packages the kernel could just depend directly). (I am hoping this
is technically possible, IANAKernelDeveloper)

3) at install time, d-i could detect if any non-default module packages
were needed and install the non-stub version, future upgrades would
continue to work.

4) users that know they need the additional packages could install
them (setup their configuration management system to install them,
create metapackages that depend on them, etc)

Some things I've thought of:

* I'd probaby resist the urge to create a lot of these package and
initially aim to make the default modules something that works for
99.99% of systems and still manages to split off tons of modules to
a second package.

* I still see the floppy and parallel port module load on many of my
systems because the superio/southbridge/etc happened to have that
device in case the system designer wanted to use it. It's time for
this stuff to go away.

* firewire is a particular risk, it could be argued that even if the
hardware _is_ present, the user should have to opt-in to enabling it

* Debian is cool because it still runs great on old systems, we don't
want to prevent that, but it would be nice to leave the old baggage
in a separate package (ISA, old network standards, old filesystems,
anything that stopped being produced 20+ years ago).

* This would add complication to an already complicated package.
Would the benefit be worth it?

* This might be confusing for the very, very, small percentage of
users where things didn't "just work" with d-i doing the right thing.
Would the benefit be worth it?

If you feel this idea has merit, I think the first step would be to
gather some module usage statistics in order to see if there are clear
patterns. Let me know if I can help.

Thanks,

-- 
Matt Taggart
tagg...@debian.org

Bug#860568: iptraf-ng: cron spam due to duplicated logrotate rules

2017-04-18 Thread Tollef Fog Heen 
Package: iptraf-ng
Version: 1:1.1.4-6
Severity: normal

As of a few days ago, I started getting mails from logrotate complaining
about duplicate log rotation rules for iptraf and iptraf-ng:

  /etc/cron.daily/logrotate:
  error: iptraf-ng:2 duplicate log entry for /var/log/iptraf/rvnamed.log

-- 
Tollef Fog Heen
UNIX is user friendly, it's just picky about who its friends are

Bug#860569: linux-image-4.9.0-2-amd64: Please enable CONFIG_LEDS_GPIO on amd64 too

2017-04-18 Thread Matthew Gabeler-Lee 
Package: src:linux
Version: 4.9.18-1
Severity: normal

This is basically a reahsh of 
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=734204

That one enabled the relevant modules only on 32 bit kernels, but missed
amd64 kernes.  The current PCEngines hardware is all 64 bit processors, and
I'm sure they're not alone, so it makes sense to at least have the base
infrastructure (LEDS_GPIOS for one) enabled as modules so that per-platform
drivers can be built -- e.g.  lede-project.org has what looks like a nice
driver for the APU2 that could be built out-of-tree reasonably easily ... 
if the common modules were available in the baseline Debian kernel config.

-- Package-specific info:
** Version:
Linux version 4.9.0-2-amd64 (debian-ker...@lists.debian.org) (gcc version 6.3.0 
20170321 (Debian 6.3.0-11) ) #1 SMP Debian 4.9.18-1 (2017-03-30)

Bug#860567: fop: CVE-2017-5661: information disclosure vulnerability

2017-04-18 Thread Salvatore Bonaccorso 
Source: fop
Version: 1:1.0.dfsg-1
Severity: important
Tags: upstream security

Hi,

the following vulnerability was published for fop.

CVE-2017-5661[0]:
| In Apache FOP before 2.2, files lying on the filesystem of the server
| which uses FOP can be revealed to arbitrary users who send maliciously
| formed SVG files. The file types that can be shown depend on the user
| context in which the exploitable application is running. If the user
| is root a full compromise of the server - including confidential or
| sensitive files - would be possible. XXE can also be used to attack
| the availability of the server via denial of service as the references
| within a xml document can trivially trigger an amplification attack.

I was not able to verify that myself, but it is claimed to affect all
fop version from 1.0 up to 2.1.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-5661
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5661
[1] http://www.openwall.com/lists/oss-security/2017/04/18/2

Regards,
Salvatore

Bug#860011: xspim

2017-04-18 Thread Tim Retout 
severity 860011 serious
thanks

I can confirm the broken GUI.

I had to run "xspim -font 6x10" to get it to launch, as per a comment
at the end of this Ubuntu issue, a different issue to #670949:
https://bugs.launchpad.net/ubuntu/+source/spim/+bug/824084

Marking as 'serious' because at least the CLI program still works...

-- 
Tim Retout

Bug#860566: batik: CVE-2017-5662: information disclosure vulnerability

2017-04-18 Thread Salvatore Bonaccorso 
Source: batik
Version: 1.5beta2-1
Severity: important
Tags: security upstream

Hi,

the following vulnerability was published for batik.

CVE-2017-5662[0]:
| In Apache Batik before 1.9, files lying on the filesystem of the
| server which uses batik can be revealed to arbitrary users who send
| maliciously formed SVG files. The file types that can be shown depend
| on the user context in which the exploitable application is running.
| If the user is root a full compromise of the server - including
| confidential or sensitive files - would be possible. XXE can also be
| used to attack the availability of the server via denial of service as
| the references within a xml document can trivially trigger an
| amplification attack.

The issue was annonced in [1], but at the time of writing this
bugreport I have no upstream reference apart [2].

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-5662
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5662
[1] http://www.openwall.com/lists/oss-security/2017/04/18/1
[2] https://xmlgraphics.apache.org/security.html

Regards,
Salvatore

Bug#860564:

2017-04-18 Thread Jason A. Donenfeld 
Sorry, a small typo:

The openresolv package already "Provides: resolvconf", so it should be
a drop-in replacement.

Bug#729665: Please implement an option that causes resolvconf to list VPN nameservers exclusively

2017-04-18 Thread Jason A. Donenfeld 
This would be accomplished by the recommendation in #860564.

Bug#860565: xen: XSA-206: xenstore denial of service via repeated update

2017-04-18 Thread Salvatore Bonaccorso 
Source: xen
Version: 4.4.1-9
Severity: important
Tags: security upstream fixed-upstream
Control: fixed -1 4.8.1-1

Hi

This bugreport might seem superflous, though since no CVE is assigned,
having a Debian BTS entry helps tracking/identifying the issue for the
security-tracker.

Information: https://xenbits.xen.org/xsa/advisory-206.html

This has been addressed according to Ian Jackson in the last upload to
unstable, 4.8.1-1, marked as fixed as such.

Regards,
Salvatore

Bug#860564: openresolv is less crippled than debian-resolvconf for security-focused configurations

2017-04-18 Thread Jason A. Donenfeld 
Package: resolvconf

Debian has its own "resolvconf" which is vastly inferior and makes it
impossible to securely set up DNS servers for ephemeral secure tunnel
interfaces.

Specifically, Debian's "resolvconf" relies on a hard coded list of
interface templates. For virtual interfaces or renamed interfaces --
such as those used for creating secure tunnels -- the DNS entries will
be lowest priority. This means it's not possible to override the
current DNS with a DNS bound to particular arbitrarily-named
interface. In other words, Debian's "resolvconf" explicitly ties
interface naming templates to interface metrics. Openresolv has the
`-m` option for this. Using `-m 0` will give an interface's DNS
servers top priority.

Secondly, and importantly, Debian's "resolvconf" does not support the
`-x` option, which specifies that a DNS servers of an interface should
be the _exclusive_ servers in use. This option is necessary to prevent
leaking DNS queries over another interface. Even with the
aforementioned `-m 0` option, an attacker could DoS the top priority
DNS server in order to leak queries to the second priority DNS server.
Openresolv's `-x` option fixes this, by allowing marking an interface
as having "exclusive" control over DNS.

Therefore, I'd suggest that either:
a) Debian switch to using Openresolv by default instead of its own
"resolvconf". The openresolv package already "Provides: openresolv",
so it should be a drop-in replacement; or
b) Debian's "resolvconf" backport these useful and necessary features
from Openresolv.

Bug#754785: ITP: fonts-open-sans -- sans serif typeface

2017-04-18 Thread Gregor Riepl 
Hello again,

I've since reviewed ChangZhuo's comments and made the requested changes.

Including a short version of the license seems to be common practice in
Debian, so I added it as well.

Concerning the Vcs lines:
Could somebody create the repository
git.debian.org/git/pkg-fonts/fonts-open-sans.git and assign write permissions
to me?
My account on Alioth is onitake-guest.

Thanks!
Greg



signature.asc
Description: OpenPGP digital signature

Bug#860317: upgrade to latest stretch version breaks

2017-04-18 Thread Andreas Metzler 
Control: retitle -1 daemon startup under systemd fails when exim is configured 
without daemon process
Control: severity -1 serious
Control: tags -1 pending

On 2017-04-17 Davide Prina  wrote:
> On 17/04/2017 15:49, Andreas Metzler wrote:
>> Could you post th contents of /etc/default/exim4?

> $ cat /etc/default/exim4
[...]
> QUEUERUNNER='nodaemon'
[...]

Thanks for bearing with me. That seems to be the necessary part for
reproducing this.

cu Andreas

-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'

Bug#860562: unblock: gnome-paint/0.4.0-5

2017-04-18 Thread Boyuan Yang 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package gnome-paint

Gnome-paint 0.4.0-5 fixes a startup segmentation fault (RC Bug #860233) found
after PIE massive rebuild version 0.4.0-4+b1 in Stretch. We have tested to make
sure that the new version won't crash anymore. The new version is in Unstable
already and building status [1] looks normal.

[1] https://buildd.debian.org/status/package.php?p=gnome-paint=sid

Full debdiff is provided here.

diff -Nru gnome-paint-0.4.0/debian/changelog gnome-paint-0.4.0/debian/changelog
--- gnome-paint-0.4.0/debian/changelog  2013-07-30 21:29:55.0 +0800
+++ gnome-paint-0.4.0/debian/changelog  2017-04-17 21:42:56.0 +0800
@@ -1,3 +1,17 @@
+gnome-paint (0.4.0-5) unstable; urgency=medium
+
+  * Sponsored upload.
+  * d/control: Add myself into uploaders list.
+  * d/control: Bump Standards Version to 3.9.8.
+  * d/control: Use secure URI for homepage.
+  * d/control: Add Vcs-Git and Vcs-Browser.
+  * control,rules: Use dh-autoreconf instead of autotools-dev.
+(Closes: #727874)
+  * d/patches: Add patch to enable deprecated gdk functions.
+(Closes: #860233)
+
+ -- Boyuan Yang <073p...@gmail.com>  Mon, 17 Apr 2017 21:42:56 +0800
+
 gnome-paint (0.4.0-4) unstable; urgency=low

   * debian/ftbfs-libs-lm.patch:
diff -Nru gnome-paint-0.4.0/debian/control gnome-paint-0.4.0/debian/control
--- gnome-paint-0.4.0/debian/control  2013-07-30 21:29:55.0 +0800
+++ gnome-paint-0.4.0/debian/control  2017-04-17 21:42:54.0 +0800
@@ -2,9 +2,13 @@
 Section: graphics
 Priority: optional
 Maintainer: Aron Xu 
-Build-Depends: debhelper (>= 9), autotools-dev, libgtk2.0-dev, intltool ( >=
0.35.0), gettext
-Standards-Version: 3.9.4
-Homepage: http://launchpad.net/gnome-paint/
+Uploaders:
+ Boyuan Yang <073p...@gmail.com>
+Build-Depends: debhelper (>= 9), dh-autoreconf, libgtk2.0-dev, intltool ( >=
0.35.0), gettext
+Standards-Version: 3.9.8
+Homepage: https://launchpad.net/gnome-paint/
+Vcs-Git: https://anonscm.debian.org/git/collab-maint/gnome-paint.git
+Vcs-Browser: https://anonscm.debian.org/git/collab-maint/gnome-paint.git

 Package: gnome-paint
 Architecture: any
diff -Nru gnome-paint-0.4.0/debian/patches/debian-860233-enable-deprecated-gdk-
functions.patch gnome-paint-0.4.0/debian/patches/debian-860233-enable-
deprecated-gdk-functions.patch
--- gnome-paint-0.4.0/debian/patches/debian-860233-enable-deprecated-gdk-
functions.patch  1970-01-01 08:00:00.0 +0800
+++ gnome-paint-0.4.0/debian/patches/debian-860233-enable-deprecated-gdk-
functions.patch  2017-04-17 21:37:47.0 +0800
@@ -0,0 +1,25 @@
+From: Logan Rosen 
+Date: Mon, 17 Apr 2017 21:34:19 +0800
+Subject: Enable deprecated gdk functions
+Forwarded: no
+Last-Update: 2015-12-21
+
+Enable deprecated GDK functions to fix Debian Bug #860233.
+
+Original patch picked from Ubuntu gnome-paint 0.4.0-4ubuntu2.
+---
+ src/Makefile.am | 1 -
+ 1 file changed, 1 deletion(-)
+
+diff --git a/src/Makefile.am b/src/Makefile.am
+index 852ae55..fe405ff 100644
+--- a/src/Makefile.am
 b/src/Makefile.am
+@@ -78,7 +78,6 @@ gnome_paint_SOURCES = \
+ gnome_paint_CFLAGS = \
+   -DG_DISABLE_DEPRECATED\
+   -DG_DISABLE_SINGLE_INCLUDES\
+-  -DGDK_DISABLE_DEPRECATED\
+   -DGTK_DISABLE_DEPRECATED\
+   -DGDK_DISABLE_SINGLE_INCLUDES\
+   -DGTK_DISABLE_SINGLE_INCLUDES
diff -Nru gnome-paint-0.4.0/debian/patches/series gnome-paint-0.4.0/debian/
patches/series
--- gnome-paint-0.4.0/debian/patches/series  2013-07-30 21:29:55.0
+0800
+++ gnome-paint-0.4.0/debian/patches/series  2017-04-17 21:38:19.0
+0800
@@ -3,3 +3,4 @@
 debian-612470-handle-urls.patch
 ftbfs-libs-lm.patch
 ftbfs-format-security.patch
+debian-860233-enable-deprecated-gdk-functions.patch
diff -Nru gnome-paint-0.4.0/debian/rules gnome-paint-0.4.0/debian/rules
--- gnome-paint-0.4.0/debian/rules  2010-12-31 12:45:40.0 +0800
+++ gnome-paint-0.4.0/debian/rules  2017-04-17 21:26:06.0 +0800
@@ -4,7 +4,7 @@
 LDFLAGS += -Wl,--as-needed

 %:
-  dh  $@
+  dh  $@ --with autoreconf
 override_dh_install:
   mkdir -p debian/gnome-paint/usr/share/doc/gnome-paint/
   mv debian/gnome-paint/usr/doc/gnome-paint/README debian/gnome-paint/usr/
share/doc/gnome-paint/


unblock gnome-paint/0.4.0-5

--
Thanks!
Boyuan Yang

Bug#860007: #860007: z88: FTBFS: gdkgl.h:22:29: fatal error: gdkglext-config.h: No such file or directory

2017-04-18 Thread Chris Lamb 
reassign 860007 gtkglext
found 860007 1.2.0-5
tags 860007 + patch
affects 860007 + z88
thanks

Hi,

This actually seems to be a regresion due to multi-arching gtkglext in
the 1.2.0-5 upload.

Patch attached. After applying it to gtkglext, z88 builds successfully.


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-
diff --git a/debian/libgtkglext1-dev.install b/debian/libgtkglext1-dev.install
index 1453766..b9d1fa7 100644
--- a/debian/libgtkglext1-dev.install
+++ b/debian/libgtkglext1-dev.install
@@ -5,7 +5,6 @@ examples/*.rgb /usr/share/doc/libgtkglext1-dev/examples
 examples/Makefile.am /usr/share/doc/libgtkglext1-dev/examples
 m4macros/gtkglext.m4 /usr/share/aclocal
 usr/include
-usr/lib/*/gtkglext-1.0
 usr/lib/*/lib*.a
 usr/lib/*/lib*.la
 usr/lib/*/lib*.so
diff --git a/gdk/Makefile.am b/gdk/Makefile.am
index 525bfc2..1344303 100644
--- a/gdk/Makefile.am
+++ b/gdk/Makefile.am
@@ -180,7 +180,7 @@ $(srcdir)/gdkglenumtypes.c: @REBUILD@ 
$(gdkglext_public_h_sources) Makefile
 #
 # Rule to install gdkglext-config.h header file
 #
-configexecincludedir = $(libdir)/gtkglext-@GTKGLEXT_API_VERSION@/include
+configexecincludedir = $(includedir)/gtkglext-@GTKGLEXT_API_VERSION@
 #configexecinclude_DATA = gdkglext-config.h
 
 install-exec-local: gdkglext-config.h

Bug#860327: It is not necessary

2017-04-18 Thread Victor Porton 
We instead can deal with it like this:

date && time ...

or

date; time ...

Bug#511094: Zoom sur l'opportunité ETORO

2017-04-18 Thread SH-Affaires | Avril 2017 
Si vous ne voyez pas ce message correctement, consultez-le en ligne
Club d'affaires international - Réflexion et analyse sur les nouveaux modes 
d'investissements.
Visitez notre site internet
ZOOM sur l'opportunité ETORO.
Première plate forme de trading sociale
Création 2007 : Plusieurs bureaux dans le monde et près de 5 millions 
d'investisseurs dans 180 pays.
Conseils : Etoro permet de pouvoir investir financièrement en copiant les 
meilleurs traders de la plate foem et ainsi gagnez des revenus.
Attention : Avant de vous inscrire, contactez-moi sur sh.affai...@gmail.com .
Sylvain HIVY Fondateur SH-Affaires:
Mon avis personnel sur cette opportunité.
Etoro est la première plate forme de trading sociale mondiale. Cette société 
dispose de tous les agréments internationaux et existe depuis 2007. Elle 
regroupe aujourd'hui près de 5 millions de traders et dispose d'un service 
client très bien organisé. Chauqe nouveaux inscrits sera d'ailleurs contacté 
directement par téléphone par un conseiller Etoro.
C'est une très bonne opportunité dans laquelle je suis depuis février 2015 et 
qui me donne entière satisfaction.
Si vous souhaitez en savoir plus, vous pouvez visiter notre site internet ici 
ou me contacter sur la boite mail suivante :
sh.affai...@gmail.com
Rejoignez notre club d'affaires 
Rejoignez la communauté des traders Etoro 
Si vous ne souhaitez plus recevoir nos messages, suivez ce lien :
Veuillez me retirer de votre liste de diffusion

Bug#842676: Zoom sur l'opportunité ETORO

2017-04-18 Thread SH-Affaires | Avril 2017 
Si vous ne voyez pas ce message correctement, consultez-le en ligne
Club d'affaires international - Réflexion et analyse sur les nouveaux modes 
d'investissements.
Visitez notre site internet
ZOOM sur l'opportunité ETORO.
Première plate forme de trading sociale
Création 2007 : Plusieurs bureaux dans le monde et près de 5 millions 
d'investisseurs dans 180 pays.
Conseils : Etoro permet de pouvoir investir financièrement en copiant les 
meilleurs traders de la plate foem et ainsi gagnez des revenus.
Attention : Avant de vous inscrire, contactez-moi sur sh.affai...@gmail.com .
Sylvain HIVY Fondateur SH-Affaires:
Mon avis personnel sur cette opportunité.
Etoro est la première plate forme de trading sociale mondiale. Cette société 
dispose de tous les agréments internationaux et existe depuis 2007. Elle 
regroupe aujourd'hui près de 5 millions de traders et dispose d'un service 
client très bien organisé. Chauqe nouveaux inscrits sera d'ailleurs contacté 
directement par téléphone par un conseiller Etoro.
C'est une très bonne opportunité dans laquelle je suis depuis février 2015 et 
qui me donne entière satisfaction.
Si vous souhaitez en savoir plus, vous pouvez visiter notre site internet ici 
ou me contacter sur la boite mail suivante :
sh.affai...@gmail.com
Rejoignez notre club d'affaires 
Rejoignez la communauté des traders Etoro 
Si vous ne souhaitez plus recevoir nos messages, suivez ce lien :
Veuillez me retirer de votre liste de diffusion

Bug#666926: Zoom sur l'opportunité ETORO

2017-04-18 Thread SH-Affaires | Avril 2017 
Si vous ne voyez pas ce message correctement, consultez-le en ligne
Club d'affaires international - Réflexion et analyse sur les nouveaux modes 
d'investissements.
Visitez notre site internet
ZOOM sur l'opportunité ETORO.
Première plate forme de trading sociale
Création 2007 : Plusieurs bureaux dans le monde et près de 5 millions 
d'investisseurs dans 180 pays.
Conseils : Etoro permet de pouvoir investir financièrement en copiant les 
meilleurs traders de la plate foem et ainsi gagnez des revenus.
Attention : Avant de vous inscrire, contactez-moi sur sh.affai...@gmail.com .
Sylvain HIVY Fondateur SH-Affaires:
Mon avis personnel sur cette opportunité.
Etoro est la première plate forme de trading sociale mondiale. Cette société 
dispose de tous les agréments internationaux et existe depuis 2007. Elle 
regroupe aujourd'hui près de 5 millions de traders et dispose d'un service 
client très bien organisé. Chauqe nouveaux inscrits sera d'ailleurs contacté 
directement par téléphone par un conseiller Etoro.
C'est une très bonne opportunité dans laquelle je suis depuis février 2015 et 
qui me donne entière satisfaction.
Si vous souhaitez en savoir plus, vous pouvez visiter notre site internet ici 
ou me contacter sur la boite mail suivante :
sh.affai...@gmail.com
Rejoignez notre club d'affaires 
Rejoignez la communauté des traders Etoro 
Si vous ne souhaitez plus recevoir nos messages, suivez ce lien :
Veuillez me retirer de votre liste de diffusion

Bug#533231: Zoom sur l'opportunité ETORO

2017-04-18 Thread SH-Affaires | Avril 2017 
Si vous ne voyez pas ce message correctement, consultez-le en ligne
Club d'affaires international - Réflexion et analyse sur les nouveaux modes 
d'investissements.
Visitez notre site internet
ZOOM sur l'opportunité ETORO.
Première plate forme de trading sociale
Création 2007 : Plusieurs bureaux dans le monde et près de 5 millions 
d'investisseurs dans 180 pays.
Conseils : Etoro permet de pouvoir investir financièrement en copiant les 
meilleurs traders de la plate foem et ainsi gagnez des revenus.
Attention : Avant de vous inscrire, contactez-moi sur sh.affai...@gmail.com .
Sylvain HIVY Fondateur SH-Affaires:
Mon avis personnel sur cette opportunité.
Etoro est la première plate forme de trading sociale mondiale. Cette société 
dispose de tous les agréments internationaux et existe depuis 2007. Elle 
regroupe aujourd'hui près de 5 millions de traders et dispose d'un service 
client très bien organisé. Chauqe nouveaux inscrits sera d'ailleurs contacté 
directement par téléphone par un conseiller Etoro.
C'est une très bonne opportunité dans laquelle je suis depuis février 2015 et 
qui me donne entière satisfaction.
Si vous souhaitez en savoir plus, vous pouvez visiter notre site internet ici 
ou me contacter sur la boite mail suivante :
sh.affai...@gmail.com
Rejoignez notre club d'affaires 
Rejoignez la communauté des traders Etoro 
Si vous ne souhaitez plus recevoir nos messages, suivez ce lien :
Veuillez me retirer de votre liste de diffusion

Bug#771679: Zoom sur l'opportunité ETORO

2017-04-18 Thread SH-Affaires | Avril 2017 
Si vous ne voyez pas ce message correctement, consultez-le en ligne
Club d'affaires international - Réflexion et analyse sur les nouveaux modes 
d'investissements.
Visitez notre site internet
ZOOM sur l'opportunité ETORO.
Première plate forme de trading sociale
Création 2007 : Plusieurs bureaux dans le monde et près de 5 millions 
d'investisseurs dans 180 pays.
Conseils : Etoro permet de pouvoir investir financièrement en copiant les 
meilleurs traders de la plate foem et ainsi gagnez des revenus.
Attention : Avant de vous inscrire, contactez-moi sur sh.affai...@gmail.com .
Sylvain HIVY Fondateur SH-Affaires:
Mon avis personnel sur cette opportunité.
Etoro est la première plate forme de trading sociale mondiale. Cette société 
dispose de tous les agréments internationaux et existe depuis 2007. Elle 
regroupe aujourd'hui près de 5 millions de traders et dispose d'un service 
client très bien organisé. Chauqe nouveaux inscrits sera d'ailleurs contacté 
directement par téléphone par un conseiller Etoro.
C'est une très bonne opportunité dans laquelle je suis depuis février 2015 et 
qui me donne entière satisfaction.
Si vous souhaitez en savoir plus, vous pouvez visiter notre site internet ici 
ou me contacter sur la boite mail suivante :
sh.affai...@gmail.com
Rejoignez notre club d'affaires 
Rejoignez la communauté des traders Etoro 
Si vous ne souhaitez plus recevoir nos messages, suivez ce lien :
Veuillez me retirer de votre liste de diffusion

  1   2   3   >