Bug#779305: Update on dependencies

[Pirate Praveen]

On Sun, 24 May 2015 12:34:59 +0200 Ross Gammon  wrote:
> -uglifyjs (already packaged as node-uglify)
> -rimraf (already pckage as node-rimraf)
> -optimist (already packaged as node-optimist)
> -mocha (already packaged as libjs-mocha & mocha)
> -mkdirp (already packaged as node-mkdirp)
> -glob (already packaged as node-glob)
> -cross-spawn (already packaged & in the NEW queue as node-cross-spawn)
> -cli-table (already packaged & in the NEW queue as node-cli-table)
> -browserify
> -acorn (already packaged & in NEW queue as part of the acorn package)
> 
> I have stopped work on this, waiting for node packages to start leaving
> the NEW queue.
> 

All of them are in archive. Can we have just the nodejs part packaged
until we get browserify?



signature.asc
Description: OpenPGP digital signature

Bug#861438: systemd is bad

[Greg Alexander]

Package: systemd
Version: 232-22
Severity: important

Dear Maintainer,

My specific problem is that systemd doesn't umount NFS before killing the
network, which has previously been reported in Oct 2015 as Debian bug
#800707, has not been fixed, and has been bumped several times by other
users running into the same problem.

Searching for variants of this problem yields many people asking
variations of this question: how can I ask systemd to run a script and
wait for it to complete before it begins killing user processes?
There are no solutions posted.

The next obvious question is can you get systemd to tell you what it will
do when you shutdown, without actually shutting down?  Again, an
incredibly popular question with no answer.

systemd is simply not suited for anything other than managing gnome
sessions, and the claims that were made when Debian decided to make
systemd the default init system were all revealed to be lies.
For example, "systemd is compatible with SysV and LSB init scripts".  If
this is true, why doesn't /etc/the existing /etc/init.d/umountnfs.sh ever
run?  It is symlinked /etc/rc[06].d/K04umountnfs.sh.  This claim is a
bold lie.  We should not be using lies to make core debian decisions.

I trusted you guys, man.  But I have just dug into systemd for the first
time and find there is no end to this very common and very simple
problem.  Even people who use gnome NetworkManager still find it
intractable.

Heck of a job, guys.


-- Package-specific info:

-- System Information:
Debian Release: 8.1
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: armhf (armv7l)

Kernel: Linux 3.14.0 (SMP w/4 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages systemd depends on:
ii  adduser 3.113+nmu3
ii  libacl1 2.2.52-2
ii  libapparmor12.11.0-3
ii  libaudit1   1:2.4-1+b1
ii  libblkid1   2.25.2-6
ii  libc6   2.24-9
ii  libcap2 1:2.24-8
ii  libcryptsetup4  2:1.6.6-5
ii  libgcc1 1:4.9.2-10
ii  libgcrypt20 1.7.6-1
ii  libgpg-error0   1.26-2
ii  libidn111.33-1
ii  libip4tc0   1.6.0+snapshot20161117-5
ii  libkmod218-3
ii  liblz4-10.0~r131-2+b1
ii  liblzma55.2.2-1.2+b1
ii  libmount1   2.29.2-1
ii  libpam0g1.1.8-3.1
ii  libseccomp2 2.3.1-2.1
ii  libselinux1 2.6-3+b1
ii  libsystemd0 232-22
ii  mount   2.29.2-1
ii  util-linux  2.29.2-1

Versions of packages systemd recommends:
ii  dbus1.10.16-1
ii  libpam-systemd  232-22

Versions of packages systemd suggests:
pn  policykit-1
pn  systemd-container  
pn  systemd-ui 

Versions of packages systemd is related to:
pn  dracut   
ii  initramfs-tools  0.120
ii  udev 232-22

-- Configuration Files:
/etc/systemd/logind.conf changed [not included]

-- debconf-show failed

Bug#860805: [Pkg-opencl-devel] Bug#860805: Could we set bug #860805 against beignet-opencl-icd to stretch-is-blocker?

[Andreas Tille]

On Fri, Apr 28, 2017 at 10:03:31AM +, Holger Levsen wrote:
> On Fri, Apr 28, 2017 at 09:35:53AM +0200, Andreas Tille wrote:
> > Please excuse my hardware ignorance but how can I tell whether my hardware
> > has Haswell?  Any one-liner to read out the relevant part from the system
> > information?
>  
> compare /proc/cpuinfo with 

 $ grep '^model name'  /proc/cpuinfo | head -n1
model name  : Intel(R) Core(TM) i5-4200U CPU @ 1.60GHz

> https://en.wikipedia.org/wiki/Haswell_%28microarchitecture%29#List_of_Haswell_processors

... 4200U is listed so I guess I can do the testing, right?
 
Kind regards

   Andreas.

-- 
http://fam-tille.de

Bug#487534: Cannot build a CDD from a Debian CD/DVD

[Vagrant Cascadian]

On 2008-06-22, Enrico Zini wrote:
> while experimenting offline I've tried to run simple-cdd using a Debian
> DVD as mirror, but it failed as apparently build-simple-cdd always wants
> to access security mirrors.

It is now possible to disable security mirrors, but I don't think Debian
DVDs include copies of the installer images.

I'm also not sure if images are typically signed, and the Release files
and SHA256SUMS/MD5SUMS (and soon to be "extrafiles") are all verified
with pgp signatures. I'm not sure if a DVD image includes the *SUMS
files either.


> Would it be possible to have a simple-cdd that is able to work only off
> an etch CD?

We might be able to add support for "unsigned" repositories and
checksums files. Not sure how we would handle missing checksums files,
as we use those to parse which files to download in some cases.


It might be possible for simple-cdd to generate a CD that includes the
appropriate checksums files and installer images... but I'm not sure if
this would be possible from the debian-produced images.


live well,
  vagrant


signature.asc
Description: PGP signature

Bug#858584: konsole: please backport font rendering fix for noto-sans

[Boyuan Yang]

Hello? Ping?

Are you still working on this issue to get the fix into Stretch? The fixed 
version is still stuck in unstable due to migration blocking.

Please file an unblock request against release.debian.org on konsole/
4:16.12.0-3 if you find that possible.

Thanks!

--
Sincerely,
Boyuan Yang

signature.asc
Description: This is a digitally signed message part.

Bug#861437: debsources: support extracting descriptions from patches created by `git show`

[Paul Wise]

Package: qa.debian.org
Severity: wishlist
User: qa.debian@packages.debian.org
Usertags: debsources

Some packages use the output of `git show ` as the format for
patches. It would be great if debsources could support extracting the
descriptions from those patches. Here is an example of this:

https://sources.debian.net/patches/zzuf/0.13.svn20100215-4/
https://sources.debian.net/patches/zzuf/0.13.svn20100215-4/100_more_tolerant_test.diff/

-- 
bye,
pabs

https://wiki.debian.org/PaulWise


signature.asc
Description: This is a digitally signed message part

Bug#861436: debian-cd: Should recommend wget, used when using DI_WWW_HOME.

[Vagrant Cascadian]

Package: debian-cd
Version: 3.1.19
Severity: normal
Tags: patch

When DI_WWW_HOME is set, debian-cd uses wget to download the installer
images. Since not everyoone will use DI_WWW_HOME, adding wget to
recommends seems appropriate.


diff --git a/debian/control b/debian/control
index a05cc66..81c82e6 100644
--- a/debian/control
+++ b/debian/control
@@ -12,7 +12,7 @@ Vcs-Browser: 
http://anonscm.debian.org/git/debian-cd/debian-cd.git;a=summary
 Package: debian-cd
 Architecture: all
 Depends: ${misc:Depends}, curl, perl, dpkg-dev, cpp, libdigest-md5-perl, 
libdigest-sha-perl, tofrodos, apt (>= 0.3.11.1), make, xorriso | genisoimage, 
lynx-cur | lynx, grep-dctrl, bc, libcompress-zlib-perl, bzip2, libdpkg-perl
-Recommends: hfsutils, netpbm, isolinux, syslinux-common, syslinux-utils, 
mtools, dosfstools, syslinux-utils
+Recommends: hfsutils, netpbm, isolinux, syslinux-common, syslinux-utils, 
mtools, dosfstools, syslinux-utils, wget
 Description: Tools for building (Official) Debian CD set
  Debian-cd is the official tool for building Debian CD set since the potato
  release. It was formerly called YACS (for Yet Another CD Script).


live well,
  vagrant


signature.asc
Description: PGP signature

Bug#861379: debsources: /patches/api/list/ contains packages with no patches (such as 0xffff)

[Paul Wise]

On Fri, 2017-04-28 at 19:02 +0200, Orestis Ioannou wrote:

> Doing so would enable us to actually know which packages do have
> patches, or better which versions of each package have patches. 

I need an API that can help make these links more like the 4th link by
exporting the amount of patches for each supported package version:

https://packages.qa.debian.org/~pabs/g/glibc.html (want patch counts, 
versions/suites in title attributes)
https://packages.qa.debian.org/~pabs/n/nsis.html (3.0 has no patches, needs 
hiding)
https://packages.qa.debian.org/~pabs/0/0x.html (no version has patches, all 
need hiding, want single version anyway)
https://bugs.debian.org/cgi-bin/bugreport.cgi?att=1;bug=779400;filename=distro-tracker-patches-mockup.png;msg=5

For me the ideal data set would be a list of packages with 1 or more
patches, each with the associated suite names, version numbers and
patch counts, or files patched counts for packages that use diff.gz.
I'd prefer if it didn't include patch info for obsolete suites.

-- 
bye,
pabs

https://wiki.debian.org/PaulWise


signature.asc
Description: This is a digitally signed message part

Bug#861435: unblock: chrony/3.0-4

[Vincent Blut]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Please unblock package chrony

Removal of “cached PID/TID in clone” from glibc 2.24-10 exposed a 
regression in chrony when running it with the system call filter 
enabled. That’s due to getpid(2) not being allowed in the seccomp 
filter. Chrony 3.0-4 fixes this and thus closes #861258¹ (severity 
important.)

unblock chrony/3.0-4

Cheers,
Vincent

¹https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=861258

- -- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (990, 'testing'), (1, 'experimental')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

-BEGIN PGP SIGNATURE-
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=v9co
-END PGP SIGNATURE-
diffstat for chrony-3.0 chrony-3.0

 changelog|8 
 patches/allow_getpid_in_seccomp_filter.patch |   23 +++
 patches/series   |1 +
 3 files changed, 32 insertions(+)

diff -Nru chrony-3.0/debian/changelog chrony-3.0/debian/changelog
--- chrony-3.0/debian/changelog 2017-02-07 00:37:24.0 +0100
+++ chrony-3.0/debian/changelog 2017-04-26 17:39:44.0 +0200
@@ -1,3 +1,11 @@
+chrony (3.0-4) unstable; urgency=medium
+
+  * debian/patches/*:
+- Backport commit 768bce799bfe to make chrony operable with the syscall
+filtering feature enabled in level 1. (Closes: #861258)
+
+ -- Vincent Blut   Wed, 26 Apr 2017 17:39:44 +0200
+
 chrony (3.0-3) unstable; urgency=medium
 
   * debian/patches/*:
diff -Nru chrony-3.0/debian/patches/allow_getpid_in_seccomp_filter.patch 
chrony-3.0/debian/patches/allow_getpid_in_seccomp_filter.patch
--- chrony-3.0/debian/patches/allow_getpid_in_seccomp_filter.patch  
1970-01-01 01:00:00.0 +0100
+++ chrony-3.0/debian/patches/allow_getpid_in_seccomp_filter.patch  
2017-04-26 17:39:44.0 +0200
@@ -0,0 +1,23 @@
+Description: Allow getpid in seccomp filter
+Author: Miroslav Lichvar 
+Origin: 
https://git.tuxfamily.org/chrony/chrony.git/commit/?id=768bce799bfe009e7dbaad5742738f7d05280d6d
+Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=861258
+Applied-Upstream: 3.1-10-g768bce7
+---
+This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
+--- a/sys_linux.c
 b/sys_linux.c
+@@ -465,9 +465,10 @@ SYS_Linux_EnableSystemCallFilter(int lev
+ SCMP_SYS(adjtimex), SCMP_SYS(clock_gettime), SCMP_SYS(gettimeofday),
+ SCMP_SYS(settimeofday), SCMP_SYS(time),
+ /* Process */
+-SCMP_SYS(clone), SCMP_SYS(exit), SCMP_SYS(exit_group), 
SCMP_SYS(getrlimit),
+-SCMP_SYS(rt_sigaction), SCMP_SYS(rt_sigreturn), SCMP_SYS(rt_sigprocmask),
+-SCMP_SYS(set_tid_address), SCMP_SYS(sigreturn), SCMP_SYS(wait4),
++SCMP_SYS(clone), SCMP_SYS(exit), SCMP_SYS(exit_group), SCMP_SYS(getpid),
++SCMP_SYS(getrlimit),SCMP_SYS(rt_sigaction), SCMP_SYS(rt_sigreturn),
++SCMP_SYS(rt_sigprocmask), SCMP_SYS(set_tid_address), SCMP_SYS(sigreturn),
++SCMP_SYS(wait4),
+ /* Memory */
+ SCMP_SYS(brk), SCMP_SYS(madvise), SCMP_SYS(mmap), SCMP_SYS(mmap2),
+ SCMP_SYS(mprotect), SCMP_SYS(mremap), SCMP_SYS(munmap), SCMP_SYS(shmdt),
diff -Nru chrony-3.0/debian/patches/series chrony-3.0/debian/patches/series
--- chrony-3.0/debian/patches/series2017-02-06 20:03:25.0 +0100
+++ chrony-3.0/debian/patches/series2017-04-26 17:39:44.0 +0200
@@ -1 +1,2 @@
+allow_getpid_in_seccomp_filter.patch
 fix_time_smoothing_in_interleaved_mode.patch

Bug#861434: cannot upgrade from 24 to 25

[積丹尼 Dan Jacobson]

Package: flashplugin-nonfree
Version: 1:3.7

Flash Player version installed on this system  : 24.0.0.186
Flash Player version available on upstream site: 25.0.0.148
sh /usr/sbin/update-flashplugin-nonfree --install
ERROR: wget failed to download 
http://people.debian.org/~bartm/flashplugin-nonfree/D5C0FC14/fp.25.0.0.148.sha512.i386.pgp.asc

Bug#861433: unblock: initramfs-tools/0.130

[Ben Hutchings]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package initramfs-tools

This fixes several longstanding bugs in handling configuration of
the suspend/resume device:

- Setting the RESUME variable anywhere other than
  /etc/initramfs-tools/conf.d/resume was ignored
- Setting the RESUME variable to UUID=something or LABEL=something
  was ignored (#861057)
- The fallback to automatic selection of the biggest swap partition
  actually sorted by dictionary order, not numeric order, of size
- There was no way to disable this automatic selection (#860403)

These used to be mostly harmless in practice, but version 0.128
(current version in testing) waits for the resume device to appear at
boot time.  That caused a regression for systems which didn't use
hibernation and where automatic selection was doing the wrong thing.
Dealing with that led me to all the other bugs.

Ben.

--- a/debian/NEWS
+++ b/debian/NEWS
@@ -1,3 +1,24 @@
+initramfs-tools (0.129) unstable; urgency=medium
+
+  * Some systems that do not support suspend-to-disk (hibernation) will
+require a configuration change to explicitly disable this.
+
+From version 0.128, the boot code waits for a suspend/resume device
+to appear, rather than checking just once.  If the configured or
+automatically selected resume device is not available at boot time,
+this results in a roughly 30 second delay.
+
+You should set the RESUME variable in
+/etc/initramfs-tools/conf.d/resume or
+/etc/initramfs-tools/initramfs.conf to one of:
+
+- auto - select the resume device automatically
+- none - disable use of a resume device
+- UUID= - use a specific resume device (by UUID)
+- /dev/ - use a specific resume device (by kernel name)
+
+ -- Ben Hutchings   Thu, 20 Apr 2017 23:21:32 +0100
+
 initramfs-tools (0.121~rc1) unstable; urgency=medium
 
   * If initramfs-tools is configured to use busybox but it is not
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,29 @@
+initramfs-tools (0.130) unstable; urgency=medium
+
+  * [5b7c092] hooks/resume: Fix validation of resume devices specified by
+UUID etc. (Closes: #861057)
+
+ -- Ben Hutchings   Wed, 26 Apr 2017 02:00:05 +0100
+
+initramfs-tools (0.129) unstable; urgency=medium
+
+  * [71cfb7f] hooks/resume: Use correct sort options to select the biggest swap
+partition
+  * [7da8194] initramfs.conf(5): Clean up split between general and NFS
+variables
+  * [d857e91] Support setting of RESUME in initramfs.conf or anywhere in 
conf.d/
+  * [786e4aa] initramfs.conf(5): Document the RESUME variable
+  * [7106c3e] hooks/resume: Check for chroot earlier
+  * [433e1ca] Allow disabling resume from disk at build time by setting
+RESUME=none
+  * [8108a17] Support requesting automatic selection of resume device with
+RESUME=auto
+  * [6b5] hooks/resume: Report when we might be doing something surprising
+  * [995b556] NEWS: Add entry explaining the need for RESUME=none on some
+systems (Closes: #860403)
+
+ -- Ben Hutchings   Mon, 24 Apr 2017 01:06:21 +0100
+
 initramfs-tools (0.128) unstable; urgency=medium
 
   * [cd352e8] debian/control: Add Breaks against older versions of busybox
--- a/hooks/resume
+++ b/hooks/resume
@@ -15,29 +15,53 @@ prereqs)
;;
 esac
 
-# First check if a location is set and is a valid swap partition
-test -r /etc/initramfs-tools/conf.d/resume \
-   && . /etc/initramfs-tools/conf.d/resume
-if [ -n "$RESUME" ] && blkid -p -n swap $RESUME >/dev/null 2>&1; then
-   # As mkinitramfs copies the config file nothing to do.
-   exit 0
-fi
+. /usr/share/initramfs-tools/scripts/functions
 
-# We need to be able to read the listed swap partitions
-if [ ! -r /proc/swaps ]; then
-   exit 0
+# First check if a location is set and is a valid swap partition.
+# If so, the config file will be copied in and there is nothing to do.
+if [ -n "$RESUME" ] && [ "$RESUME" != auto ]; then
+   if [ "$RESUME" = none ]; then
+   exit 0
+   fi
+   if resume_dev_node="$(resolve_device "$RESUME")" && \
+  blkid -p -n swap "$resume_dev_node" >/dev/null 2>&1; then
+   exit 0
+   fi
+
+   echo >&2 "W: initramfs-tools configuration sets RESUME=$RESUME"
+   echo >&2 "W: but no matching swap device is available."
 fi
 
-# Try to autodetect the RESUME partition, using biggest swap?
-RESUME=$(grep ^/dev/ /proc/swaps | sort -rk3 | head -n 1 | cut -d " " -f 1)
-if [ -n "$RESUME" ]; then
-   UUID=$(blkid -s UUID -o value "$RESUME" || true)
-   if [ -n "$UUID" ]; then
-   RESUME="UUID=$UUID"
+# If we were not explicitly requested to select a device, report that we
+# are doing so
+report_auto()
+{
+   test "$RESUME" = auto || echo >&2 "I: $*"
+}
+
+# We need to be able to read the listed swap partitions
+if ischroot || [ 

Bug#860429: binNMU in unstable

[Michael Lustfield]

I've requested a rebuild of the reverse build dependencies in unstable [1].

I also rebuilt reverse build dependencies against this package update with the
following results:

testing:
  success: 62,  failed: 2 (being addressed)
unstable
  success: 107, failed: 7 (unchecked)

The first failure in testing was packer (previous comments). Felix contacted me
about restic and is taking care of any issues.


These packages have a delta between unstable and testing:
  acmetool_0.0.58-5
  golang-github-coreos-pkg_2-2
  golang-github-docker-go-connections_0.2.1-1
  go-wire_0~20161027~0git287d8ca-1
  skydns_2.5.3a-1
  syncthing_0.14.18+dfsg1-1
  tendermint-go-merkle_0.0~git20160312.0.05042c6-1


[1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=861432

-- 
Michael Lustfield

Bug#852040: jessie-pu: package ca-certificates/20141019+deb8u3

[Andreas Beckmann]

On 2017-04-28 18:53, Michael Shuler wrote:
> On 04/28/2017 11:39 AM, Adam D. Barratt wrote:
>> On Fri, 2017-04-28 at 00:58 +0200, Andreas Beckmann wrote:
>>>
>>> Attached is the combined debdiff of the commits backported by Michael
>>> and me. I verified in piuparts that "running update-certificates without
>>> hooks initially" now actually works as intended.
>>
>> That looks okay, thanks.
>>
>> Please feel free to upload, bearing in mind that the window for 8.8
>> closes over the weekend.
> 
> Thank you so much. I'm sorry I've been ridiculously busy, and "I'll get
> to it this weekend" repeatedly hasn't materialized for me.

Just built and uploaded.


Andreas

Bug#861432: nmu: golang-go.crypto

[Michael Lustfield]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: binnmu

Bug #859655 [3] has been fixed in unstable. This addresses a CVE bug, but also
requires all reverse build dependencies be rebuilt. After this package has
migrated to testing, there will be 62-64 packages that need rebuilding as well.

I have run build tests in both unstable and testing for this update using an
amd64 sbuild environment. For reference, the results:

testing:
  success: 62,  failed: 2 (being addressed)
unstable
  success: 107, failed: 7 (unchecked)


For the moment, I need the 107 packages in this list [1] to rebuilt in unstable.
... wanna build? :)

[1]

nmu mtail_0.0+git20161231.ae129e9-1 . ANY all . unstable . -m 'Rebuild against 
fixed golang-go.crypto; #859655'
nmu tendermint-ed25519_0.0~git20160723.0.1f52c6f-1 . ANY all . unstable . -m 
'Rebuild against fixed golang-go.crypto; #859655'
nmu golang-github-rsc-letsencrypt_0.0~git20160929.0.76104d2-2 . ANY all . 
unstable . -m 'Rebuild against fixed golang-go.crypto; #859655'
nmu golang-github-docker-leadership_0.1.0-1 . ANY all . unstable . -m 'Rebuild 
against fixed golang-go.crypto; #859655'
nmu sia_1.0.4-1 . ANY all . unstable . -m 'Rebuild against fixed 
golang-go.crypto; #859655'
nmu golang-github-samalba-dockerclient_0.0~git20160531.0.a303626-1 . ANY all . 
unstable . -m 'Rebuild against fixed golang-go.crypto; #859655'
nmu golang-golang-x-net-dev_1:0.0+git20160110.4fd4a9f-1 . ANY all . unstable . 
-m 'Rebuild against fixed golang-go.crypto; #859655'
nmu gocryptfs_1.2-2 . ANY all . unstable . -m 'Rebuild against fixed 
golang-go.crypto; #859655'
nmu golang-github-aelsabbahy-gonetstat_0.0~git20160428.0.edf89f7-2 . ANY all . 
unstable . -m 'Rebuild against fixed golang-go.crypto; #859655'
nmu golang-github-blevesearch-bleve_0.5.0+git20170324.202.4702785f-1 . ANY all 
. unstable . -m 'Rebuild against fixed golang-go.crypto; #859655'
nmu golang-github-endophage-gotuf_0.0~git20151020.0.2df1c8e-1 . ANY all . 
unstable . -m 'Rebuild against fixed golang-go.crypto; #859655'
nmu cadvisor_0.25.0+dfsg-1 . ANY all . unstable . -m 'Rebuild against fixed 
golang-go.crypto; #859655'
nmu dnss_0.0~git20161126.0.162090e-1 . ANY all . unstable . -m 'Rebuild against 
fixed golang-go.crypto; #859655'
nmu golang-gopkg-dancannon-gorethink.v2_2.0.4-1 . ANY all . unstable . -m 
'Rebuild against fixed golang-go.crypto; #859655'
nmu mongo-tools_3.2.11-1 . ANY all . unstable . -m 'Rebuild against fixed 
golang-go.crypto; #859655'
nmu golang-github-docker-go-connections_0.2.1+git20161115.12.4ccf312-1 . ANY 
all . unstable . -m 'Rebuild against fixed golang-go.crypto; #859655'
nmu golang-github-fsouza-go-dockerclient_0.0+git20160622-1 . ANY all . unstable 
. -m 'Rebuild against fixed golang-go.crypto; #859655'
nmu golang-github-go-macaron-macaron_1.2.1+git20170219.2.8be5635-1 . ANY all . 
unstable . -m 'Rebuild against fixed golang-go.crypto; #859655'
nmu rkt_1.21.0+dfsg-1 . ANY all . unstable . -m 'Rebuild against fixed 
golang-go.crypto; #859655'
nmu golang-github-coreos-go-systemd_14-1 . ANY all . unstable . -m 'Rebuild 
against fixed golang-go.crypto; #859655'
nmu chasquid_0.01+git20161124.6479138-2 . ANY all . unstable . -m 'Rebuild 
against fixed golang-go.crypto; #859655'
nmu minica_1.0-1 . ANY all . unstable . -m 'Rebuild against fixed 
golang-go.crypto; #859655'
nmu golang-github-pkg-sftp_0.0~git20160930.0.4d0e916-1 . ANY all . unstable . 
-m 'Rebuild against fixed golang-go.crypto; #859655'
nmu golang-github-spf13-afero_0.0~git20161226.0.90dd71e-1 . ANY all . unstable 
. -m 'Rebuild against fixed golang-go.crypto; #859655'
nmu golang-github-azure-go-ntlmssp_0.0~git20160412.e0b63eb-1 . ANY all . 
unstable . -m 'Rebuild against fixed golang-go.crypto; #859655'
nmu golang-github-opencontainers-image-spec_1.0.0~rc2+dfsg-1 . ANY all . 
unstable . -m 'Rebuild against fixed golang-go.crypto; #859655'
nmu golang-github-couchbase-moss_0.0~git20170330.0.d2258a2-1 . ANY all . 
unstable . -m 'Rebuild against fixed golang-go.crypto; #859655'
nmu tendermint-go-p2p_0.0~git20170113.0.3d98f67-1 . ANY all . unstable . -m 
'Rebuild against fixed golang-go.crypto; #859655'
nmu kubernetes-addon-heapster_1.2.0+dfsg-1 . ANY all . unstable . -m 'Rebuild 
against fixed golang-go.crypto; #859655'
nmu golang-github-go-macaron-csrf_0.0~git20170207.0.428b7c6-1 . ANY all . 
unstable . -m 'Rebuild against fixed golang-go.crypto; #859655'
nmu golang-github-coreos-ioprogress_0.0~git20151023.0.4637e49-1 . ANY all . 
unstable . -m 'Rebuild against fixed golang-go.crypto; #859655'
nmu tendermint-go-rpc_0.0~git20161021.0.e6e3853-2 . ANY all . unstable . -m 
'Rebuild against fixed golang-go.crypto; #859655'
nmu golang-github-dnephin-cobra_1.5+git20161103.0.a3c0924-1 . ANY all . 
unstable . -m 'Rebuild against fixed golang-go.crypto; #859655'
nmu golang-ed25519-dev_0~20140907.d2b94fd-2 . ANY all . unstable . -m 'Rebuild 
against fixed golang-go.crypto; #859655'
nmu 

Bug#845208: apport-retrace crashed with IOError in _get_primary_mirror_from_apt_sources(): [Errno 2] No such file or directory: u'Debian GNU/Debian testing/sources.list'

[Brian Murray]

On Wed, Apr 26, 2017 at 01:33:19PM +0530, Ritesh Raj Sarraf wrote:
> On Tue, 2017-04-25 at 15:00 -0700, Brian Murray wrote:
> > What is in the directory which you passed to the -S switch? That
> > directory should be structured so that you have folders matching
> > releases and in those folders sources.list files for that release.
> > Here's an example from my system:
> > 
> >  $ ls ~/source-trees/daisy/watchtower-archive 
> > crashdb.conf  Ubuntu 11.04  Ubuntu 12.04  Ubuntu 13.04  Ubuntu 14.04
> > Ubuntu 15.04  Ubuntu 16.04  Ubuntu 17.04Ubuntu RTM 14.09
> > Ubuntu 10.04  Ubuntu 11.10  Ubuntu 12.10  Ubuntu 13.10  Ubuntu 14.10
> > Ubuntu 15.10  Ubuntu 16.10  Ubuntu Core 16
> > [  2:56PM 10151 ]  [
> > bdmurray@impulse:~/source-trees/error-tracker-deployment/trunk ]
> >  $ ls ~/source-trees/daisy/watchtower-archive/Ubuntu\ 17.04 
> > arm64  armhf  codename  powerpc  ppc64el  sources.list
> > 
> 
> That directory was created by apport itself and has similar structure.
> 
> rrs@learner:/var/tmp/Debian-Build/Result$ ls ~/.cache/apport/retrace/
> Debian 9/  Debian testing/  system/
> 2017-04-26 / 13:28:55 ♒♒♒  ☺  

This is not the directory which you passed to the -S switch. From your
report we can see:

PythonArgs: ['/usr/bin/apport-retrace', '-S', 'Debian GNU', '--cache',
'/home/username/.cache/apport/retrace/', '--stdout',
'/var/crash/_usr_bin_calibre.1000.crash']

The "Debian GNU" directory likely does not exist and that's why the
IOError is raised. If you wanted to use "Debian GNU" as the argument to
"-S" then that directory should contain a folder named "Debian testing",
which then contains an appropriate "sources.list" file for that release
of Debian.

--
Brian Murray


signature.asc
Description: PGP signature

Bug#861431: restic: Rebuild needed for CVE-2017-3204; #859655

[Michael Lustfield]

Package: restic
Justification: renders package unusable
Tags: security
Severity: grave

A CVE was issued for golang-go.crypto which is a build dependency of this
package. While attempting a rebuild of restic against this updated crypto
library, I ran into a build failure. This failure did not seem to come from the
changes made in the crypto library.

I have attached the build log from that failure, as generated by sbuild. The
error indicated it may be a simple solution, but I'm lacking the time to dig
into it. I saw no build failure when testing the change in unstable.

Thanks,
-- 
Michael Lustfield


restic_0.3.3-1
Description: Binary data

Bug#842690: Please overthink the packaging layout

[dann frazier]

On Fri, Apr 28, 2017 at 09:23:03PM +0300, Michael Tokarev wrote:
> Just a small comment without trying to understand what's going on..
> 
> 28.04.2017 20:25, dann frazier wrote:
> []
> > For 32-bit ARM, I propose we use:
> >   /usr/share/AAVMF/AAVMF32_{CODE,VARS}.fd
> 
> If it's QEMU-foo, why can't we drop things directly
> to /usr/share/qemu/ ?

These locations are hardcoded in libvirt.

Bug#861430: unblock: ceilometer/7.0.1-5

[Thomas Goirand]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Hi Niels and the rest of the release team,

Niels already unblocked 7.0.1-4, which fixed ceilometer agent
central and compute. Though the -api daemon also needed some fix-up:
the daemon arg was wrong, and the daemon wouldn't start. Also, the
port was wrong. One liner debdiff attached.

Please unblock ceilometer/7.0.1-5
Cheers,

Thomas Goirand (zigo)
diff -Nru ceilometer-7.0.1/debian/ceilometer-api.init.in ceilometer-7.0.1/debian/ceilometer-api.init.in
--- ceilometer-7.0.1/debian/ceilometer-api.init.in	2017-04-26 15:36:56.0 +
+++ ceilometer-7.0.1/debian/ceilometer-api.init.in	2017-04-28 08:51:50.0 +
@@ -15,3 +15,4 @@
 DESC="OpenStack Ceilometer API"
 PROJECT_NAME=ceilometer
 NAME=${PROJECT_NAME}-api
+DAEMON_ARGS="--port 8777 --"
diff -Nru ceilometer-7.0.1/debian/changelog ceilometer-7.0.1/debian/changelog
--- ceilometer-7.0.1/debian/changelog	2017-04-26 15:36:56.0 +
+++ ceilometer-7.0.1/debian/changelog	2017-04-28 08:51:50.0 +
@@ -1,3 +1,11 @@
+ceilometer (1:7.0.1-5) unstable; urgency=medium
+
+  * Fix ceilometer-api: add "--" as DAEMON_ARGS (Closes: #861199).
+  * Also fix the default port to 8777 as it should (instead of the default
+port 8000 which is wrong).
+
+ -- Thomas Goirand   Fri, 28 Apr 2017 10:51:50 +0200
+
 ceilometer (1:7.0.1-4) unstable; urgency=medium
 
   * Fix ceilometer-agent-central .service file (Closes: #861202).

Bug#861198: Shutting down public FTP services

[Vagrant Cascadian]

On 2017-04-28, Vagrant Cascadian wrote:
> On 2017-04-28, Vagrant Cascadian wrote:
>> On 2017-04-28, Enrico Zini wrote:
>>> Would you like me to try and provide a version which uses urlretrieve?
>>
>> All these ideas sound good to me, so please take a shot at it!
>
> Actually, being able to verify the checksums instead of relying on
> timestamps got me excited enough to try this myself...

And pushed to git, review appreciated.


> So we may need to set that with os.environ or something?

I went ahead and added:


if env.get("http_proxy"):
os.environ.setdefault('http_proxy', env.get("http_proxy"))

Seemed to work. Might be a better way.


live well,
  vagrant


signature.asc
Description: PGP signature

Bug#861429: unblock: puppet/4.8.2-4

[Apollon Oikonomopoulos]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Dear Release Team,

Please unblock package puppet.

The version currently in unstable (4.8.2-4) fixes two important bugs:

 - It makes the package piuparts-clean by properly cleaning up 
   /var/cache/puppet/state (#855923)
 - It makes puppet upgrade cleanly from Jessie under sysvinit when the 
   puppet agent is running as a daemon (#859454)

Additionally, it includes a Breaks: against older facter versions, which 
use Puppet 3 API functions that no longer exist in Puppet 4, breaking 
`facter --puppet'.

Full source debdiff attached.

Regards,
Apollon

unblock puppet/4.8.2-4
diff -Nru puppet-4.8.2/debian/changelog puppet-4.8.2/debian/changelog
--- puppet-4.8.2/debian/changelog	2017-02-15 14:23:21.0 +0200
+++ puppet-4.8.2/debian/changelog	2017-04-28 17:38:26.0 +0300
@@ -1,3 +1,15 @@
+puppet (4.8.2-4) unstable; urgency=medium
+
+  * Handle creation and removal of /var/cache/puppet/state (Closes: #855923)
+  * Add Breaks against old facter versions; facter before 2.4.0 uses a
+deprecated Puppet settings API making `facter --puppet` no longer work with
+Puppet 4.
+  * puppet-common: stop the puppet service in preinst when upgrading from
+Puppet 3. Fixes upgrade on sysvinit systems running the puppet agent.
+(Closes: #859454)
+
+ -- Apollon Oikonomopoulos   Fri, 28 Apr 2017 17:38:26 +0300
+
 puppet (4.8.2-3) unstable; urgency=medium
 
   * Mark systemd as the default service provider for Debian. If the system is
diff -Nru puppet-4.8.2/debian/control puppet-4.8.2/debian/control
--- puppet-4.8.2/debian/control	2017-02-15 14:23:19.0 +0200
+++ puppet-4.8.2/debian/control	2017-04-28 17:38:26.0 +0300
@@ -39,7 +39,8 @@
 Suggests: ruby-rrd
 Breaks: puppet-common (<< 4.5.1-1),
 puppetmaster-common (<< 4.4.2-1~),
-puppet-agent (<< 4.8.1-3~)
+puppet-agent (<< 4.8.1-3~),
+facter (<< 2.4.0~)
 Replaces: puppet-common (<< 4.5.1-1),
 puppetmaster-common (<< 4.4.2-1~)
 Description: configuration management system
diff -Nru puppet-4.8.2/debian/puppet-common.preinst puppet-4.8.2/debian/puppet-common.preinst
--- puppet-4.8.2/debian/puppet-common.preinst	1970-01-01 02:00:00.0 +0200
+++ puppet-4.8.2/debian/puppet-common.preinst	2017-04-28 17:38:26.0 +0300
@@ -0,0 +1,13 @@
+#!/bin/sh
+
+set -e
+
+# Stop puppet agent before removing /usr/bin/puppet on upgrade; otherwise the
+# initscript will fail to stop the service, see #859454.
+if [ "$1" = "upgrade" ] && dpkg --compare-versions "$2" lt "4.4.2-1~"; then
+	if [ -x "/etc/init.d/puppet" ]; then
+		invoke-rc.d puppet stop || true
+	fi
+fi
+
+#DEBHELPER#
diff -Nru puppet-4.8.2/debian/puppet.dirs puppet-4.8.2/debian/puppet.dirs
--- puppet-4.8.2/debian/puppet.dirs	2017-02-15 14:23:19.0 +0200
+++ puppet-4.8.2/debian/puppet.dirs	2017-04-28 17:38:26.0 +0300
@@ -1,3 +1,4 @@
 var/lib/puppet
 var/log/puppet
+var/cache/puppet/state
 usr/share/puppet/modules
diff -Nru puppet-4.8.2/debian/puppet.postinst puppet-4.8.2/debian/puppet.postinst
--- puppet-4.8.2/debian/puppet.postinst	2017-02-15 14:23:19.0 +0200
+++ puppet-4.8.2/debian/puppet.postinst	2017-04-28 17:38:26.0 +0300
@@ -24,14 +24,15 @@
 		dpkg-statoverride --update --add puppet puppet 0750 /var/log/puppet
 	fi
 
+	# Create folders common to "puppet" and "puppetmaster", which need
+	# to be owned by the "puppet" user
 	if ! dpkg-statoverride --list /var/lib/puppet >/dev/null 2>&1; then
 		dpkg-statoverride --update --add puppet puppet 0750 /var/lib/puppet
 	fi
 
-	# Create folders common to "puppet" and "puppetmaster", which need
-	# to be owned by the "puppet" user
-	install --owner puppet --group puppet --directory \
-		/var/cache/puppet/state
+	if ! dpkg-statoverride --list /var/cache/puppet/state >/dev/null 2>&1; then
+		dpkg-statoverride --update --add puppet puppet 0750 /var/cache/puppet/state
+	fi
 
 	if [ -z "$2" ]; then
 		# Disable the service by default on new installations

Bug#861294: jessie-pu: package spip/3.0.17-2+deb8u3

[Adam D. Barratt]

Control: tags -1 + pending

On Thu, 2017-04-27 at 20:54 +0100, Adam D. Barratt wrote:
> Control: tags -1 + confirmed
> 
> On Wed, 2017-04-26 at 19:00 -1000, David Prévot wrote:
> > I’ve been asked by the security team to fix the (pile of) security
> > issues currently affecting the spip package in Jessie. Please find
> > attached the full debdiff, here is the proposed changelog:
> > 
> > spip (3.0.17-2+deb8u3) jessie; urgency=medium
> > 
> >   * Document CVE in previous changelog entry
> >   * Update security screen to 1.3.0
> 
> Please go ahead.

Uploaded and flagged for acceptance.

Regards,

Adam

Bug#861397: jessie-pu: package xshisen/1:1.51-4.1+deb8u1

[Adam D. Barratt]

Control: tags -1 + pending

On Fri, 2017-04-28 at 18:19 +0100, Adam D. Barratt wrote:
> Control: tags -1 + confirmed
> 
> On Fri, 2017-04-28 at 15:05 +0300, Adrian Bunk wrote:
> > +xshisen (1:1.51-4.1+deb8u1) jessie; urgency=medium
> > +
> > +  * QA upload.
> > +  * Set maintainer to the QA team.
> > +  * Fix frequent segfault on start, thanks Alexey Shilin.
> > +(Closes: #765504)
> 
> Please go ahead.

Uploaded and flagged for acceptance.

Regards,

Adam

Bug#861428: open-infrastructure-storage-tools: [INTL:pt] Portuguese translation for debconf messages

[Traduz - DebianPT]

Package: open-infrastructure-storage-tools
Version: 20170410-1
Tags: l10n, patch
Severity: wishlist

Updated Portuguese translation for open-infrastructure-storage-tools's 
debconf messages.

Feel free to use it.

For translation updates please contact 'Last Translator' or the
Portuguese Translation Team .
--
Best regards,

"Traduz" - Portuguese Translation Team
http://www.DebianPT.org




# Portuguese translation for open-infrastructure-storage-tools debconf
# This file is distributed under the same license as the open-infrastructure-storage-tools package.
# Rui Branco , 2017. Initial translation
#
msgid ""
msgstr ""
"Project-Id-Version: open-infrastructure-storage-tools 20170410-1\n"
"Report-Msgid-Bugs-To: open-infrastructure-storage-to...@packages.debian.org\n"
"POT-Creation-Date: 2017-04-09 19:17+0200\n"
"PO-Revision-Date: 2017-04-15 23:00+\n"
"Last-Translator: Rui Branco - DebianPT \n"
"Language-Team: Portuguese \n"
"Language: pt\n"
"MIME-Version: 1.0\n"
"Content-Type: text/plain; charset=UTF-8\n"
"Content-Transfer-Encoding: 8bit\n"
"Plural-Forms: nplurals=2; plural=(n != 1);\n"

#. Type: title
#. Description
#: ../open-infrastructure-storage-tools.templates:1001
msgid "storage-tools: Setup"
msgstr "storage-tools: Configuração"

#. Type: boolean
#. Description
#: ../open-infrastructure-storage-tools.templates:2001
msgid "ceph-log:"
msgstr "ceph-log:"

#. Type: boolean
#. Description
#: ../open-infrastructure-storage-tools.templates:2001
msgid "ceph-log stores Ceph cluster log as a logfile, see ceph-log(1)."
msgstr ""
"O ceph-log armazena os registos do cluster Ceph num ficheiro de "
"registos, veja o ceph-log(1)."

#. Type: boolean
#. Description
#: ../open-infrastructure-storage-tools.templates:2001
msgid "Should ceph-log be enabled?"
msgstr "Deve o ceph-log ser activado?"

#. Type: boolean
#. Description
#: ../open-infrastructure-storage-tools.templates:3001
msgid "ceph-info:"
msgstr "ceph-info:"

#. Type: boolean
#. Description
#: ../open-infrastructure-storage-tools.templates:3001
msgid ""
"ceph-info shows Ceph cluster information as a website, see ceph-info(1)."
msgstr ""
"O ceph-info mostra a informação do cluster Ceph através de um site web, "
"veja ceph-info(1)."

#. Type: boolean
#. Description
#: ../open-infrastructure-storage-tools.templates:3001
msgid "Should ceph-info be enabled?"
msgstr "Deve o ceph-info ser activado?"

#. Type: boolean
#. Description
#: ../open-infrastructure-storage-tools.templates:4001
msgid "cephfs-snap:"
msgstr "cephfs-snap:"

#. Type: boolean
#. Description
#: ../open-infrastructure-storage-tools.templates:4001
msgid "cephfs-snap creates CephFS snapshots periodically, see cephfs-snap(1)."
msgstr ""
"O cephfs-snap cria snapshots do CephFS periodicamente, veja  "
"cephfs-snap(1)."

#. Type: boolean
#. Description
#: ../open-infrastructure-storage-tools.templates:4001
msgid "Should cephfs-snap be enabled?"
msgstr "Deve o cephfs-snap ser activado?"

#. Type: string
#. Description
#: ../open-infrastructure-storage-tools.templates:5002
msgid "cephfs-snap directories:"
msgstr "Directórios do cephfs-snap:"

#. Type: string
#. Description
#: ../open-infrastructure-storage-tools.templates:5002
msgid ""
"Please specify the directories (space separated) where CephFS are mounted "
"that should be snapshoted."
msgstr ""
"Por favor especifique os directórios (separados por espaços) a ser"
" 'snapshoted' "
"onde o CephFS está montado."

#. Type: string
#. Description
#: ../open-infrastructure-storage-tools.templates:5002
msgid "If unsure, leave empty."
msgstr "Se tem dúvidas, deixe este campo vazio."

#. Type: string
#. Default
#: ../open-infrastructure-storage-tools.templates:6001
msgid "168"
msgstr "168"

#. Type: string
#. Description
#: ../open-infrastructure-storage-tools.templates:6002
msgid "cephfs-snap hourly:"
msgstr "cephfs-snap de hora a hora:"

#. Type: string
#. Description
#: ../open-infrastructure-storage-tools.templates:6002
msgid "Please specify the number of hourly snapshots that should be kept."
msgstr ""
"Por favor especifique o número de snapshots horárias que deverão "
"ser mantidas."

#. Type: string
#. Description
#: ../open-infrastructure-storage-tools.templates:6002
msgid ""
"Depending on the use case a reasonable default might be to keep hourly "
"snapshots for 1 week, means: (24 * 7) + 1 = 169"
msgstr ""
"Dependendo do tipo de uso, uma utilização razoável poderá ser a de guardar "
"snapshots horárias durante uma semana, ou seja: (24 * 7) + 1 = 169"

#. Type: string
#. Description
#: ../open-infrastructure-storage-tools.templates:6002
msgid "If unsure, leave empty (no automatic hourly snapshot rotation)."
msgstr ""
"Se tem dúvidas, deixe este campo vazio (sem rotação horária "
"automática de snapshots)."

#. Type: string
#. Default
#: ../open-infrastructure-storage-tools.templates:7001
msgid "32"
msgstr "32"

#. Type: string
#. Description
#: 

Bug#861389: jessie-pu: package sitesummary/0.1.17+deb8u3

[Adam D. Barratt]

Control: tags -1 + pending

On Fri, 2017-04-28 at 13:06 +0200, Holger Levsen wrote:
> please accept sitesummary (0.1.17+deb8u3) into the next jessie point release.
> 
> sitesummary (0.1.17+deb8u2) was uploaded and accepted into jessie-security
> (without a DSA) to fix #852623, which was caused by DSA-3796-1 for apache2,
> and which complete broke sitesummary.
> 
> Sadly that version of sitesummary was also affected by #823688, which breaks
> sitesummary upgrades, thus the fix for #852623 in jessie-security never 
> reached
> out users :/
> 
> Thus I have prepared 0.1.17+deb8u3 now, fixing #823688, thus also+finally
> fixing #852623:

Uploaded and flagged for acceptance.

Regards,

Adam

Bug#833193: RFS: chapel/1.15-1 [ITP]

[Sean Whitton]

control: tag -1 -moreinfo
control: retitle -1 RFS: chapel/1.15-1 [ITP]

Dear Ben,

On Fri, Apr 28, 2017 at 08:48:00PM +, Ben Albrecht wrote:
> Thanks for your feedback. Below are:
>  * some responses to your questions
>  * a description of some major changes recently incorporated in the
>package
>  * some questions about the long-term plans of a fully featured
>(non-minimal) Chapel package.

Thank you for all this.  I'm very busy for the next two to three weeks,
so I wanted to let you know it'll be a little while before I get to this
-- but I will get to it.

-- 
Sean Whitton


signature.asc
Description: PGP signature

Bug#861110: jessie-pu: package postfix/2.11.3-1+deb8u1

[Adam D. Barratt]

Control: tags -1 + pending

On Fri, 2017-04-28 at 14:05 -0400, Scott Kitterman wrote:
> On Friday, April 28, 2017 05:54:52 PM Adam D. Barratt wrote:
> > Control: tags -1 + confirmed
> > 
> > On Mon, 2017-04-24 at 14:10 -0400, Scott Kitterman wrote:
> > > Users are currently experiencing problems with upgrading to stretch when
> > > using a postfix map type that is in an external .so file becaue these
> > > files moved in stretch (with the transition to postfix 3) and the stable
> > > version of the package doesn't remove it's own mappings on upgrade as is
> > > should (the stretch version of postfix already does this, so this is
> > > already adressed there).
> > > 
> > > The function to remove the mapping already exists, it is just not called
> > > correctly.  The attached debdiff for stable fixes this and results in
> > > correct upgrades.
> > 
> > Please go ahead, bearing in mind that the window for 8.8 closes during
> > the weekend.
> 
> Thanks,
> 
> Uploaded.

Flagged for acceptance into p-u.

Regards,

Adam

Bug#861395: jessie-pu: package libvorbisidec/1.0.2+svn18153-1~deb8u1

[Adam D. Barratt]

Control: tags -1 + pending

On Fri, 2017-04-28 at 18:18 +0100, Adam D. Barratt wrote:
> Control: tags -1 + confirmed
> 
> On Fri, 2017-04-28 at 14:49 +0300, Adrian Bunk wrote:
> > +libvorbisidec (1.0.2+svn18153-1~deb8u1) jessie; urgency=medium
> > +
> > +  * QA upload.
> > +  * Rebuild for jessie.
> > +
> > + -- Adrian Bunk   Fri, 28 Apr 2017 14:42:20 +0300
> > +
> > +libvorbisidec (1.0.2+svn18153-1) unstable; urgency=medium
> > +
> > +  * QA upload.
> > +  * Set maintainer to Debian QA Group. (see #698378)
> > +  * Add libogg-dev dependency to libvorbisidec-dev.
> > +(Closes: #739864)
> 
> Please go ahead.

Uploaded and flagged for acceptance.

Regards,

Adam

Bug#861129: jessie-pu: package gnome-media/3.4.0-2+deb8u1

[Adam D. Barratt]

Control: tags -1 + pending

On Thu, 2017-04-27 at 20:56 +0100, Adam D. Barratt wrote:
> Control: tags -1 + confirmed
> 
> On Mon, 2017-04-24 at 22:28 +0200, Andreas Beckmann wrote:
> > I'd like to update gnome-media in jessie to add Breaks to match the
> > Replaces. I found an upgrade path in piuparts where a mutilated
> > gnome-media-common package (originating from squeeze) is kept installed.
> > gnome-media does no longer exist in stretch, so fixing it in jessie is
> > the only possibility.
> > I verified in piuparts that the upgrade to the updated packages fixes
> > the problem.
> 
> I'm not always convinced if no actual users appear to be affected, but
> please go ahead.

Uploaded and flagged for acceptance.

Regards,

Adam

Bug#860718: jessie-pu: package openmpi/1.6.5-9.1+deb8u1

[Adam D. Barratt]

Control: tags -1 + pending

On Thu, 2017-04-27 at 20:59 +0100, Adam D. Barratt wrote:
> Control: tags -1 + confirmed
> 
> On Wed, 2017-04-19 at 12:32 +0200, Andreas Beckmann wrote:
> > I'd like to update openmpi in jessie to fix some problems during
> > upgrades to stretch. libopenmpi1.6 has an unversioned
> >   Conflicts: libopenmpi2
> > which is the package name in stretch (but was also used temporarily for
> > three uploads of 1.5.4, therefore the conflict). Making this versioned
> > for (<< 1.6) should preserve the original intention while avoiding
> > confusion in jessie's apt (which is running the dist-upgrade to
> > stretch), where libopenmpi2 is not considered as a valid installation
> > condidate for stretch. See #859986 for more details.
> > It's difficult to test that this actually improves the upgrade path
> > behavior before the package hits s-p-u. Will recheck once this has
> > happened.
> > 
> > Another fix that is included is fixing some soname links in
> > libopenmpi1.6 to the versions actually shipped ...
> 
> Please go ahead.

Uploaded and flagged for acceptance.

Regards,

Adam

Bug#856872: jessie-pu: package gnutls28/3.3.8-6+deb8u5

[Adam D. Barratt]

Control: tags -1 + pending

On Thu, 2017-04-27 at 18:29 +0200, Andreas Metzler wrote:
> On 2017-04-27 "Adam D. Barratt"  wrote:
> > On Mon, 2017-03-06 at 19:24 +0100, Andreas Metzler wrote:
> [...]
> >> upstream has now released 3.5.10/3.3.27 including these fixes and
> >> another one on top:
> >>  + 55_16_Enforce-the-max-packet-length-for-OpenPGP-subpackets.patch
> >>Addressed large allocation in OpenPGP certificate parsing, that 
> >> could
> >>lead in out-of-memory condition. Issue found using oss-fuzz 
> >> project, and
> >>was fixed by Alex Gaynor:
> >>https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=392
> >>[GNUTLS-SA-2017-3C]
> >> 
> >> Updated diff for jessie attached.
> 
> > Please go ahead; thanks.
> 
> Thanks, uploaded with the new CVE number mentioned in changelog.

Flagged for acceptance into p-u.

Regards,

Adam

Bug#861392: jessie-pu: package libindicate/0.6.92-2+deb8u1

[Adam D. Barratt]

Control: tags -1 + pending

On Fri, 2017-04-28 at 18:14 +0100, Adam D. Barratt wrote:
> Control: tags -1 + confirmed
> 
> On Fri, 2017-04-28 at 14:30 +0300, Adrian Bunk wrote:
> > +libindicate (0.6.92-2+deb8u1) jessie; urgency=medium
> > +
> > +  * QA upload.
> > +  * Set maintainer to the QA group.
> > +  * libindicate-gtk3-dev: Depend on libindicate-gtk3-3 instead of
> > +libindicate-gtk3, thanks to Andreas Beckmann for finding this
> > +bug. (Closes: #715066)
> 
> Please go ahead.

Uploaded and flagged for acceptance.

Regards,

Adam

Bug#861427: opensvc: [INTL:pt] Portuguese translation for debconf messages

[Traduz - DebianPT]

Package: opensvc
Version: 1.8-20170412-1
Tags: l10n, patch
Severity: wishlist

Updated Portuguese translation for opensvc's debconf messages.
Feel free to use it.

For translation updates please contact 'Last Translator' or the
Portuguese Translation Team .
--
Best regards,

"Traduz" - Portuguese Translation Team
http://www.DebianPT.org



# Portuguese translation for opensvc debconf
# This file is distributed under the same license as the opensvc package.
# Rui Branco , 2017. Initial translation
#
msgid ""
msgstr ""
"Project-Id-Version: opensvc 1.8-20170412-1\n"
"Report-Msgid-Bugs-To: open...@packages.debian.org\n"
"POT-Creation-Date: 2017-04-11 22:19+0200\n"
"PO-Revision-Date: 2017-04-15 21:07+\n"
"Last-Translator: Rui Branco - DebianPT \n"
"Language-Team: Portuguese \n"
"Language: pt\n"
"MIME-Version: 1.0\n"
"Content-Type: text/plain; charset=UTF-8\n"
"Content-Transfer-Encoding: 8bit\n"
"Plural-Forms: nplurals=2; plural=(n != 1);\n"

#. Type: string
#. Description
#: ../templates:1001
msgid "Configuration for collector usage:"
msgstr "Configuração para utilização do colector:"

#. Type: string
#. Description
#: ../templates:1001
msgid ""
"By default, the collector is contacted by the node using the generic name "
"dbopensvc on ports 80 and 8000. This name should be known to your prefered "
"resolving mecanism : hosts, dns, ... If you choose to use the internet "
"shared collector, the corresponding ip address must be set to the address of "
"collector.opensvc.com"
msgstr ""
"Por predefinição, o colector é contactado através do nó utilizando o nome "
"genérico dbopensvc na porta 80 e 8000. Este nome deverá ser conhecido "
"do mecanismo de resolução preferido: hosts, dns,... Se escolher usar o "
"colector partilhado de internet, o endereço ip correspondente deverá ser "
"definido para collector.opensvc.com"

#. Type: select
#. Description
#: ../templates:2001
msgid "Host environment:"
msgstr "Ambiente do host:"

#. Type: select
#. Description
#: ../templates:2001
msgid ""
"The valid host mode values are:\\n \\n host_mode  behaves as  description\\n "
"-  --  --\\n PRDPRD "
"Production\\n PPRD   PRD Pre Production\\n RECnot "
"PRD Prod-like testing\\n INTnot PRD Integration\\n "
"DEVnot PRD Development\\n TSTnot PRD Testing\\n "
"TMPnot PRD Temporary\\n DRPnot PRD Disaster recovery"
"\\n FORnot PRD Training\\n PRAnot PRD Disaster "
"recovery\\n PRJnot PRD Project\\n STGnot PRD Staging"
"\\n"
msgstr ""
"Os valores válidos para o modo host são:\\n \\n o host_mode  comporta-se como"
" descrito\\n "
"-  --  --\\n PRDPRD "
"Production\\n PPRD   PRD Pre Production\\n RECnot "
"PRD Prod-like testing\\n INTnot PRD Integration\\n "
"DEVnot PRD Development\\n TSTnot PRD Testing\\n "
"TMPnot PRD Temporary\\n DRPnot PRD Disaster recovery"
"\\n FORnot PRD Training\\n PRAnot PRD Disaster "
"recovery\\n PRJnot PRD Project\\n STGnot PRD Staging"
"\\n"

Bug#860276: jessie-pu: package glibc/2.19-18+deb8u8

[Adam D. Barratt]

On Fri, 2017-04-28 at 00:25 +0200, Aurelien Jarno wrote:
> On 2017-04-27 22:58, Aurelien Jarno wrote:
> > On 2017-04-23 21:18, Adam D. Barratt wrote:
> > > On Thu, 2017-04-13 at 23:19 +0200, Aurelien Jarno wrote:
> > > > I would like to upload a new glibc package for the next jessie release.
> > > > Here is the changelog with some additional comment:
> > > > 
> > > >   * Update from upstream stable branch:
> > > > - Fix PowerPC sqrt inaccuracy.  Closes: #855606.
> > > > 
> > > > This fixes a regression introduced in glibc 2.19-18+deb8u7, which
> > > > slightly lower the precision of the sqrt function on PowerPC. This
> > > > notably causes failures in the postgresql testsuite. This code is
> > > > already present in stretch/sid.
> > > > 
> > > >   * patches/any/cvs-resolv-internal-qtype.diff: patch from upstream to 
> > > > fix a
> > > > NULL pointer dereference in libresolv when receiving a T_UNSPEC 
> > > > internal
> > > > QTYPE (CVE-2015-5180).  Closes: #796106.
> > > > 
> > > > This is a long standing security issue that has been fixed recently.
> > > > It basically change the value of a constant so that it can't only be
> > > > generated internally. The patch is already present in stretch/sid.
> > > 
> > > While I doubt that either of the above should have any noticeable effect
> > > on the installer, I'd appreciate a d-i ack in any case; CCing.
> > 
> > As said on IRC, I have been pointed that the second patch actually
> > breaks the breaks libnss/libnss-dns ABI. This means that the resolver
> > might not work correctly if all the binaries using libnss are restarted.
> > The same way there might be an issue on the d-i side if the libc in d-i
> > and libnss-dns-udeb are out of sync.
> > 
> > Therefore I'll do a new upload without the patch fixing CVE-2015-5180,
> > leaving only the PowerPC fix. That should be either today or tomorrow.
> > 
> > Sorry about this complication.
> 
> I have just uploaded glibc_2.19-18+deb8u9.

Flagged for acceptance.

Regards,

Adam

Bug#861391: jessie-pu: package apf-firewall/9.7+rev1-3+deb8u1

[Adam D. Barratt]

Control: tags -1 + pending

On Fri, 2017-04-28 at 18:00 +0100, Adam D. Barratt wrote:
> Control: tags -1 + confirmed
> 
> On Fri, 2017-04-28 at 14:15 +0300, Adrian Bunk wrote:
> > +apf-firewall (9.7+rev1-3+deb8u1) jessie; urgency=medium
> > +
> > +  * QA upload.
> > +  * Set maintainer field to Debian QA Group.
> > +  * Add patch from Christoph Biedl to make it work with
> > +kernel 3.x and newer. (Closes: #701674)
> 
> I do wonder if the package shouldn't be removed from the archive
> instead, but please go ahead.

Uploaded and flagged for acceptance.

Regards,

Adam

Bug#861200: jessie-pu: package activemq/5.6.0+dfsg1-4+deb8u2

[Adam D. Barratt]

Control: tags -1 + pending

On Fri, 2017-04-28 at 10:48 +0200, Markus Koschany wrote:
> Am 27.04.2017 um 21:52 schrieb Adam D. Barratt:
> > Control: tags -1 + confirmed
> > 
> > On Tue, 2017-04-25 at 21:27 +0200, Markus Koschany wrote:
> >> I would like to fix CVE-2015-7599 for Jessie. The security team marked
> >> this issue as no-dsa. Please find attached the debdiff.
> > 
> > It appears that you mean CVE-2015-7559.
> > 
> > With that fixed throughout, please go ahead.
> > 
> > Regards,
> > 
> > Adam
> > 
> 
> Good catch! Fixed and uploaded.

Flagged for acceptance.

Regards,

Adam

Bug#861426: unblock: python-iptables/0.11.0-3

[IOhannes m zmoelnig]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package python-iptables

the uploaded fixes an RC-bug which makes the packages useless
in case the user has *only* libxtables12 installed (#860986).
it also backports and upstream fix for IPv6 masking (which hasn't been reported
by Debian users yet, but nonetheless the bug was present)

unblock python-iptables/0.11.0-3

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#861368: RFS: helm/2.5.0-2 [Team Upload]

[Sean Whitton]

Hello Gianfranco,

On Fri, Apr 28, 2017 at 05:47:13AM +, Gianfranco Costamagna wrote:
> in deferred/2, so Sean can review changes if needed :)

Thanks for uploading -- could you reschedule an extra 2 or 3 days
please?

I am currently moving house.

-- 
Sean Whitton


signature.asc
Description: PGP signature

Bug#860254:

[Sebastian Andrzej Siewior]

On 2017-04-27 21:32:42 [+0200], Kurt Roeckx wrote:
> I'm not suggesting to add libwww-curl-perl.
> 
> I'm not sure why we have things in /usr/lib/ssl/misc/, which
> doesn't sound like a useful place to put things.
> 
> Note that there are actually manpages for them, so maybe we should
> move them to /usr/bin/?
> 
> We should probaby get rid of the whole /usr/lib/ssl/

So some apps from within that folder got removed in 1.1

https://github.com/openssl/openssl/commit/b8a9af68819f1cc51155cdeabe8bbf8242e8b3ee

since nobody screamed for things like c_name maybe nobody cares. Looking
at
https://packages.debian.org/sid/amd64/openssl/filelist
we have just
/usr/lib/ssl/certs
/usr/lib/ssl/misc/CA.pl
/usr/lib/ssl/misc/tsget
/usr/lib/ssl/openssl.cnf
/usr/lib/ssl/private

and everything but the misc folder are symlinks to /etc/ssl. So if we
get openssl+libssl patched we could get rid of the symlinks.
So then we have just the misc folder with CA.pl an tsget. CA.pl seems to be
referenced by "things" like

http://sources.debian.net/src/kopanocore/8.1.0-3/installer/linux/ssl-certificates.sh/?#L23

and we may may have some users. My guess is that most people have either
wrappers around openssl or something else. Even openvpn brings the
"easyrsa" thingy. And then there is tsget which I have no idea what it
does and how usefull it is.
I am in between nuking both tools from orbit (including the manpage)
and moving them to /usr/bin. Do you thing that they are usefull? google
brings either the source code or the manpage. I miss a blog entry where
someone explains why he is doing what he is doing :)

> But I think we shouldn't change anything for stretch, except maybe
> changing from perl to perl-base.

Correct. If I get around it I would open an unblock request (around
Monday) asking the release team if they want the perl-base dependency
instead of perl for Stretch of this is fine with you.

> Kurt

Sebastian

Bug#833193: closed by Sean Whitton <spwhit...@spwhitton.name> (Closing inactive ITP RFSs)

[Ben Albrecht]

Hi Sean,

Thanks for your feedback. Below are:
 * some responses to your questions
 * a description of some major changes recently incorporated in the
   package
 * some questions about the long-term plans of a fully featured
   (non-minimal) Chapel package.


Note that we have upgraded our package to Chapel 1.15, and changed 
the source package name to 'chapel' rather than 'chapel-minimal', 
which can be found here: 

https://mentors.debian.net/package/chapel

Responses to questions
--

> > 7. The package is not compliant with the FHS.  Almost everything is
> > installed into /usr/lib/chapel, plus a symlink from /usr/bin/chpl into
> > /usr/lib/chapel (only to the 64-bit version?).  The main executable
> > needs to be installed into /usr/bin/chpl.  Please take a look at Debian
> > policy section 9.1.1 and install the files appropriately.

> The basic distinction is that /usr/share is for arch-independent files,
> /usr/lib for arch-dependent files or a mix of arch-independent and
> arch-dependent if necessary.

> The CHPL_HOME problem ought to be fixed by patching chapel to look in
> different places for these different resources.  For example, you can
> have it look in /usr/share/chapel for the modules/ subdir.  Is there
> something about chapel's design that makes this difficult?

We're investigating updating Chapel to work with an installation structure
more normal for Debian.

We're currently pursuing:

 runtime (.a and .o files)   in /usr/lib/chapel/1.15/runtime/lib

 runtime includes (.h files) in /usr/lib/chapel/1.15/runtime/include

 compiler binary (chpl)  in /usr/bin

 modules/, utils/, make/ in /usr/share/chapel/1.15

> You are installing lots of *.h, *.c and *.py files into
> /usr/lib/chapel.  What is the purpose of this?

With the changes we are working on, we will no longer install .py files
to /usr/lib/chapel. We'll install the .py files to /usr/share/chapel.

We will however continue to install some .h files to /usr/lib/chapel or
/usr/share/chapel. We will explain more in answer to your next questions.
There is a single .c file we might need to also install to
/usr/lib/chapel. See below.

> How is the C source code necessary for compiling chapel programs?

> *.h files are supposed to be in /usr/include/ ... again, could you
> explain how they are necessary for compiling chapel programs?

The Chapel compiler normally functions by translating Chapel source code
to C.  The headers in /usr/lib/chapel/runtime/include are necessary for
this generated C code to build with the Chapel runtime that is already
built (and stored in /usr/lib/chapel/runtime/lib).  These headers could
be architecture-specific, so we intend to store them in /usr/lib/chapel
rather than /usr/share/chapel.

These headers are not meant to be user-visible for general C program
development. Instead, they are only useful internally to the Chapel
compiler. For this reason, we think it would be a mistake to make them
generally available in /usr/include.

In some configurations (namely with LLVM support), the Chapel compiler
needs a sigle .c file in order to function correctly, as it is building
upon the work of a C compiler. For this reason, we may include a C file
in /usr/lib/chapel or /usr/share/chapel. The other C files you observed
have been removed from the upstream project.

We can see in GCC a precedent for this sort of thing; for example there
is a /usr/lib/gcc/x86_64-linux-gnu/6.3.0/include directory on my system.

Based on discussion in #debian-mentors, we're including a version number
as in /usr/lib/chapel/ and /usr/share/chapel/.  The reason
for this is that since Chapel is a language, people often need to be
able to install more than one version at a time. 

> > > 11. I'm not an expert on multi-arch issues but this package seems to be
> > > targeted only at 32-bit and 64-bit Linux machines, just from looking at
> > > the 'linux32' and 'linux64' directories you have a lot of.  Debian
> > > supports lots of other architectures, and the package should work on
> > > those.  Is that something that can be fixed?

> > I have not made any changes in response to this feedback.

> > This is a way in which Chapel distinguishes platforms, which are independent
> > of the architectures Debian distinguishes. I would expect all 
> > Debian-supported
> > architectures to be categorized as either 'linux32' or 'linux64' platforms
> > for Chapel's purposes.
> > For a list of our platforms, see our documentation:
> >
> > http://chapel.cray.com/docs/1.14/usingchapel/chplenv.html#chpl-host-platform
> 
> It seems that things have changed since we last spoke.  I built the
> package and I now get paths like this:
>
> /usr/lib/chapel/runtime/src/threads/pthreads/gen/linux64.gnu.arch-native.loc-flat.comm-none.tasks-fifo.tmr-generic.unwind-none.mem-cstdlib.atomics-intrinsics.gmp-none.hwloc-none.re-none.wide-struct.fs-none/
> 
> According to the docs you linked to, a value of CHPL_HOST_PLATFORM is
> meant to be much 

Bug#861425: priority difference

[SZÉPE Viktor]

Package: mirrors
Severity: important

Hello!

The Packages files contains "optional".

$ wget -qO-  
http://ftp.debian.org/debian/dists/stretch/main/binary-arm64/Packages.gz|zgrep  
-Fx -A18 "Package: aptitude"|tail -n 1

Priority: optional

The package contains "important".

In  
http://ftp.debian.org/debian/pool/main/a/aptitude/aptitude_0.8.7-1_amd64.deb  
control files has:

Priority: important

Please advise.
Thanks.

-- System Information:
Debian Release: 8.7
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.16.0-4-amd64 (SMP w/3 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: sysvinit (via /sbin/init)



SZÉPE Viktor
https://github.com/szepeviktor/debian-server-tools/blob/master/CV.md
--
+36-20-4242498  s...@szepe.net  skype: szepe.viktor
Budapest, III. kerület

Bug#861424: cmus: will not start up on fresh install

[Michael P. Soulier]

Package: cmus
Version: 2.5.0-7+b1
Severity: normal

Dear Maintainer,

On a fresh install of cmus, it will not start. I get no display in my terminal
of the ncurses UI. I had to do
this to get it to come up.

echo 'set output_plugin=pulse' > .cmus/autosave

Afterwards, while I can now add songs via the :add command, the UI is
unresponsive, although cmus-remote is able
to make the program play.

I am on Debian Jessie in the i3 window manager, with pulseaudio for sound.



-- System Information:
Debian Release: 8.7
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages cmus depends on:
ii  libao4  1.1.0-3
ii  libasound2  1.0.28-1
ii  libc6   2.19-18+deb8u7
ii  libcddb21.3.2-5
ii  libcdio-cdda1   0.83-4.2
ii  libcdio13   0.83-4.2
ii  libcue1 1.4.0-1
ii  libfaad22.7-8
ii  libflac81.3.0-3
ii  libmad0 0.15.1b-8
ii  libmodplug1 1:0.8.8.4-4.1+b1
ii  libmpcdec6  2:0.1~r459-4.1
ii  libncursesw55.9+20140913-1+b1
ii  libtinfo5   5.9+20140913-1+b1
ii  libvorbisfile3  1.3.4-2
ii  libwavpack1 4.70.0-1

Versions of packages cmus recommends:
ii  cmus-plugin-ffmpeg  2.5.0-7+b1
ii  libpulse0   5.0-13
ii  libroar21.0~beta11-1

cmus suggests no packages.

-- no debconf information

Bug#861400: Acknowledgement (Use of uninitialized value $pid in scalar chomp at /data/nfsen/libexec/NfSenRC.pm line 357.)

[Alfredo Nacino]

Hello,

I forgot to change the file to unlink in this changes. It is written in bold.


* ACTUAL ***
# Check if NfSen is already running
if ( -f "$NfConf::PIDDIR/nfsend.pid" ) {
open PID, "$NfConf::PIDDIR/nfsend.pid" ||
die "Can't read pid file
'$NfConf::PIDDIR/nfsend.pid': $!\n";
my $pid = ;
chomp $pid;
close PID;
if ( kill( 0, $pid) == 1  ) {
print "NfSen is already running!\n";
return;
} else {
print "Unclean shutdown - run stop sequence first
to clean up!\n";
NfSen_stop();
}
}

* CHANGES ***
# Check if NfSen is already running
if ( -f "$NfConf::PIDDIR/nfsend.pid" ) {
open PID, "$NfConf::PIDDIR/nfsend.pid" ||
die "Can't read pid file
'$NfConf::PIDDIR/nfsend.pid': $!\n";
my $pid = ;
close PID;

if ($pid) {
chomp $pid;
   if ( kill( 0, $pid) == 1  ) {
print "NfSen is already running!\n";
return;
} else {
print "Unclean shutdown - run stop sequence
first to clean up!\n";
NfSen_stop();
}
} else {
*unlink "$NfConf::PIDDIR/nfsend.pid";*
}
}




​Thank you very much and regards.

Alfredo Nacino​

Bug#858986: systemd-container: systemd-nspawn fails to spawn container from a read-only image

[Michael Biebl]

Hi Felix

On Wed, 29 Mar 2017 12:20:52 +0200 Felix Wiedemann
<1wied...@informatik.uni-hamburg.de> wrote:
> Package: systemd-container
> Version: 232-19
> Severity: normal
> 
> Dear Maintainer,
> 
> systemd-nspawn fails to spawn a container from an image which has a
> read-only file system as root partition (SquashFS):
> 
>   $ systemd-nspawn -i foo.img
>   Spawning container foo.img on /home/felix/foo.img.
>   Press ^] three times within 1s to kill container.
>   Failed to create directory /tmp/nspawn-root-jvD8mU/sys: Read-only file 
> system
> 
> I filed the bug upstream [0] and it was fixed in systemd v233 [1].
> Please consider backporting the patch to stretch.
> 
> [0]: https://github.com/systemd/systemd/issues/4711
> [1]: 
> https://github.com/systemd/systemd/commit/acbbf69b718260755a5dff60dd68ba239ac0d61b

Have you confirmed that applying this commit on top of v232 fixes the
issue you have? Otherwise, can you give me instructions how to create
such a read-only image or provide one for me, so I can test it myself.

Regards,
Michael




-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#858149: systemd-nspawn: ephemeral flag ignored with raw images

[Michael Biebl]

On Sat, 18 Mar 2017 23:16:35 +0100 Antoine Musso  wrote:
> Package: systemd-container
> Version: 230-7~bpo8+2
> Severity: important
> 
> Dear Maintainer,
> 
> Short version
> =
> 
> Assuming one has an image /var/lib/machines/jessie.raw and spawn it
> with: systemd-nspawn --ephemeral -m jessie
> The jessie.raw ends up being modified.
> 
> Fix released with systemd 233 that should be backported:
> https://github.com/poettering/systemd/commit/0f3be6ca4dbbac8350cd8f10a8968d31f7bc13b6
> 
> Longer version
> ==
> 
> systemd-nspawn has a [-x|--ephemeral] option which is supposed to
> snapshot the image and boot a container out of it. Once the container is
> terminated, the snapshot is dismissed entirely.
> 
> The ephemeral option is ignored entirely when using a raw image, for
> example via --machine which can load either a fs tree if the name match
> a directory or a raw image if the base name match.
> 
> The upstream issue has a detailled reproducible case:
> https://github.com/systemd/systemd/issues/4664
> 
> Original thread:
> https://lists.freedesktop.org/archives/systemd-devel/2016-November/037699.html
> 
> The fix is commit 0f3be6ca4
> https://github.com/poettering/systemd/commit/0f3be6ca4dbbac8350cd8f10a8968d31f7bc13b6
> 
> It seems straightforward to backport to jessie-backports and for
> stretch.   Non ephemeral ephemeral containers sounds like a release
> critical bug to me.

Well, not release critical, but something we might fix indeed.

Antoine, have to tested the commit
0f3be6ca4dbbac8350cd8f10a8968d31f7bc13b6 applied on top of v232 to fix
the issue you have?

Regards,
Michael

-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#861423: libstroke FTCBFS: configures for the build architecture

[Helmut Grohne]

Source: libstroke
Version: 0.5.1-8
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap

libstroke fails to cross build from source, because it configures for
the build architecture. The attached patch explicitly passes the
required --build and --host flags to configure. Alternatively,
using dh_auto_configure they will be supplied automatically. After
applying the patch, libstroke cross builds successfully. Please consider
applying it after stretch is released.

Helmut
diff --minimal -Nru libstroke-0.5.1/debian/changelog 
libstroke-0.5.1/debian/changelog
--- libstroke-0.5.1/debian/changelog2016-07-05 11:01:49.0 +0200
+++ libstroke-0.5.1/debian/changelog2017-04-28 22:07:43.0 +0200
@@ -1,3 +1,10 @@
+libstroke (0.5.1-8.1) UNRELEASED; urgency=medium
+
+  * Non-maintainer upload.
+  * Fix FTCBFS: Pass --build and --host to ./configure (Closes: #-1).
+
+ -- Helmut Grohne   Fri, 28 Apr 2017 22:07:43 +0200
+
 libstroke (0.5.1-8) unstable; urgency=medium
 
   * QA upload.
diff --minimal -Nru libstroke-0.5.1/debian/rules libstroke-0.5.1/debian/rules
--- libstroke-0.5.1/debian/rules2016-07-05 09:43:17.0 +0200
+++ libstroke-0.5.1/debian/rules2017-04-28 22:07:41.0 +0200
@@ -1,5 +1,7 @@
 #!/usr/bin/make -f
 
+include /usr/share/dpkg/architecture.mk
+
 build: build-stamp
 build-arch: build
 build-indep: build
@@ -7,7 +9,7 @@
 build-stamp:
dh_testdir
dh_autotools-dev_updateconfig
-   ./configure --prefix=/usr --x-includes=/usr/X11R6/include 
--x-libraries=/usr/X11R6/lib
+   ./configure --build=$(DEB_BUILD_GNU_TYPE) --host=$(DEB_HOST_GNU_TYPE) 
--prefix=/usr --x-includes=/usr/X11R6/include --x-libraries=/usr/X11R6/lib
 
 # Patch the generated libtool to avoid passing -rpath when linking,
 # and to explicitly link libraries against the libraries they

Bug#858538: fadecut package review

[Anton Gladky]

Hi Marco,

bash consiedered to be an "essential" package, so
you should probably not depend on it. It should be
in the system.

I do not understand, what you mean with "killed my orbis-tools|lame rule".
As far as I see, dependencies were just aligned.

Debian is deeply frozen at the moment, but the stable will be released
very soon. We can wait a coupe of weexs till Debian will be released.
Otherwise uploads into experimental are possible.

Best regards

Anton


2017-04-22 16:27 GMT+02:00 Marco Balmer :
> Hi Anton,
>
> Thank you for your reply.
>
> On Wed, Apr 12, 2017 at 09:29:19PM +0200, Anton Gladky wrote:
>> there are a couple of minor notes regarding your package:
>>
>> 1) integrate changes from NMU two years ago [1] (to be consistent 
>> d/changelog)
>> 2) Try to use compat level 10 and debhelper >=10.
>> 3) Use "cme fix dpkg" over your package to fix minor issues
> I am done with all this steps [1].
>
> cme fix dpkg [2] has
> * killed my vorbis-tools|lame rule
> * removed Depends bash (>=3.2-4)
> But fadecut needs bash. Is that ok?
>
> Thanks for help,
> Marco
>
> [1] https://mentors.debian.net/debian/pool/main/f/fadecut/fadecut_0.2.0-1.dsc
>
> [2] 
> https://github.com/fadecut/fadecut/commit/f58c7a2086743e5a63fa1ed1298895fbec652af8#diff-d837a1c17de0268bcea321239ddbed47L13

Bug#660298: Debian Reference --- adding pdf support apparently now possible?

[Holger Wansing]

Hi,

Holger Wansing  wrote:
> 
> Osamu, I have prepared a patch for this, could you take a look?
> (The only required changes were the selection of fonts for the different
> languages, the rest worked out of the box.)

I had some problems with git handling, and thus I missed some more needed
changings (zh-cn.tex and zh-tw.tex files).
Please find a corrected patch here.


Holger


-- 
Holger Wansing 
PGP-Finterprint: 496A C6E8 1442 4B34 8508  3529 59F1 87CA 156E B076
diff --git a/Makefile b/Makefile
index d71e96b..56f1015 100644
--- a/Makefile
+++ b/Makefile
@@ -10,7 +10,7 @@ MANUAL	:=	debian-reference
 # This can list more than debian/rules for translator to check the result
 LANGPO	:=	ja fr it pt de zh-cn zh-tw es 
 # languages to skip generation of PDF files (not used now)
-NOPDF	:=	ja fr it pt de es
+NOPDF	:=	
 # languages to build document
 LANGALL	=	en $(LANGPO)
 
diff --git a/debian/changelog b/debian/changelog
index 1fffa66..ac4611c 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+debian-reference (2.67) UNRELEASED; urgency=medium
+
+  * Add pdf support. Closes: #660298
+
+ -- Osamu Aoki   Sat, 28 Apr 2017 20:34:09 +0200
+
 debian-reference (2.66) unstable; urgency=medium
 
   * Update Italian, Spanish, and Chinese translations. 
diff --git a/debian/control b/debian/control
index 2373196..af69fed 100644
--- a/debian/control
+++ b/debian/control
@@ -11,7 +11,9 @@ Build-Depends-Indep: docbook-xml,
  python,
  w3m,
  xsltproc,
- zip
+ zip,
+ fonts-vlgothic,
+ fonts-wqy-microhei
 Standards-Version: 3.9.8
 Vcs-Git: https://alioth.debian.org/anonscm/git/ddp/debian-reference.git
 Vcs-Browser: https://anonscm.debian.org/gitweb/?p=ddp/debian-reference.git
diff --git a/po/zh-cn.tex b/po/zh-cn.tex
new file mode 100644
index 000..676604b
--- /dev/null
+++ b/po/zh-cn.tex
@@ -0,0 +1 @@
+\hyphenation{}
diff --git a/po/zh-tw.tex b/po/zh-tw.tex
new file mode 100644
index 000..676604b
--- /dev/null
+++ b/po/zh-tw.tex
@@ -0,0 +1 @@
+\hyphenation{}
diff --git a/xslt/xetex_param.xsl b/xslt/xetex_param.xsl
index 8b62310..81712cb 100644
--- a/xslt/xetex_param.xsl
+++ b/xslt/xetex_param.xsl
@@ -7,49 +7,32 @@
  -->
 
   
-
-
-
-
- 
-\setmainfont{Liberation Serif}
-\setsansfont{Liberation Sans}
-\setmonofont{Liberation Mono}
-
-\usepackage{xeCJK}
 
   
-	
-\setCJKmainfont{AR PL SungtiL GB}
-\setCJKsansfont{WenQuanYi Zen Hei}
-\setCJKmonofont{WenQuanYi Zen Hei Mono}
+	
+	\usepackage{xeCJK}
+	\setCJKmainfont{WenQuanYi Micro Hei}
+	\setCJKsansfont{WenQuanYi Micro Hei}
+	\setCJKmonofont{WenQuanYi Micro Hei Mono}
   
   
-
-\setCJKmainfont{AR PL Mingti2L Big5}
-\setCJKsansfont{WenQuanYi Zen Hei}
-\setCJKmonofont{WenQuanYi Zen Hei Mono}
+	
+	\usepackage{xeCJK}
+	\setCJKmainfont{WenQuanYi Micro Hei}
+	\setCJKsansfont{WenQuanYi Micro Hei}
+	\setCJKmonofont{WenQuanYi Micro Hei Mono}
   
-  
-
-\setCJKmainfont{UnBatang}
-\setCJKsansfont{UnDotum}
-\setCJKmonofont{UnDotum}
+  
+
+	\usepackage{xeCJK}
+	\setCJKmainfont{VL-PGothic-Regular}
+	\setCJKsansfont{VL-PGothic-Regular}
+	\setCJKmonofont{VL-PGothic-Regular}
   
   
-
+\setmainfont{FreeSerif}
+\setsansfont{FreeSans}
+\setmonofont{FreeMono}
   
 
   

Bug#861422: fbreader FTCBFS: uses build architecture build tools

[Helmut Grohne]

Source: fbreader
Version: 0.12.10dfsg2-2
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap

fbreader fails to cross build from source, because it uses build
architecture build tools (g++, pkg-config) where host architecture ones
should be used. Indirecting the $(MAKE) invocations through
dh_auto_build supplies CC and CXX, but the build system has a nother
copy of plain "g++" in LD, so that needs to be set as well. Furthermore,
pkg-config invocations need to be prefixed as well. After applying the
attached patch, fbreader successfully cross builds. Please consider
applying it after stretch is released.

Helmut
diff -u fbreader-0.12.10dfsg2/debian/changelog 
fbreader-0.12.10dfsg2/debian/changelog
--- fbreader-0.12.10dfsg2/debian/changelog
+++ fbreader-0.12.10dfsg2/debian/changelog
@@ -1,3 +1,13 @@
+fbreader (0.12.10dfsg2-2.1) UNRELEASED; urgency=medium
+
+  * Non-maintainer upload.
+  * Fix FTCBFS: (Closes: #-1)
++ Let dh_auto_build pass cross compilers.
++ Also put cross compilers into LD.
++ Use a triplet-prefixed pkg-config.
+
+ -- Helmut Grohne   Fri, 28 Apr 2017 20:05:08 +0200
+
 fbreader (0.12.10dfsg2-2) unstable; urgency=medium
 
   * debian/patches:
diff -u fbreader-0.12.10dfsg2/debian/patches/series 
fbreader-0.12.10dfsg2/debian/patches/series
--- fbreader-0.12.10dfsg2/debian/patches/series
+++ fbreader-0.12.10dfsg2/debian/patches/series
@@ -1,3 +1,4 @@
+0011-cross.patch
 0001-110-use-sensible-browser.patch
 0002-400-fix-building-with-gcc46.patch
 0003-600-fix-ftell-crash.patch
diff -u fbreader-0.12.10dfsg2/debian/rules fbreader-0.12.10dfsg2/debian/rules
--- fbreader-0.12.10dfsg2/debian/rules
+++ fbreader-0.12.10dfsg2/debian/rules
@@ -6,20 +6,23 @@
 endif
 
 DPKG_EXPORT_BUILDFLAGS=1
+include /usr/share/dpkg/architecture.mk
 include /usr/share/dpkg/buildflags.mk
 
 DEB_DIR = $(CURDIR)/debian
 
+export PKG_CONFIG=$(DEB_HOST_GNU_TYPE)-pkg-config
+AUXMAKEFLAGS += 'LD=$$(CXX)'
 
 %:
dh $@ --with quilt
 
 override_dh_auto_build:
-   $(MAKE) $(AUXMAKEFLAGS) -C zlibrary/core TARGET_ARCH=desktop 
UI_TYPE=dummy
-   $(MAKE) $(AUXMAKEFLAGS) -C zlibrary/text TARGET_ARCH=desktop 
UI_TYPE=dummy
-   $(MAKE) $(AUXMAKEFLAGS) -C zlibrary/ui TARGET_ARCH=desktop UI_TYPE=gtk
-   $(MAKE) $(AUXMAKEFLAGS) -C zlibrary/ui TARGET_ARCH=desktop UI_TYPE=qt4
-   $(MAKE) $(AUXMAKEFLAGS) -C fbreader TARGET_ARCH=desktop UI_TYPE=dummy
+   dh_auto_build -- $(AUXMAKEFLAGS) -C zlibrary/core TARGET_ARCH=desktop 
UI_TYPE=dummy
+   dh_auto_build -- $(AUXMAKEFLAGS) -C zlibrary/text TARGET_ARCH=desktop 
UI_TYPE=dummy
+   dh_auto_build -- $(AUXMAKEFLAGS) -C zlibrary/ui TARGET_ARCH=desktop 
UI_TYPE=gtk
+   dh_auto_build -- $(AUXMAKEFLAGS) -C zlibrary/ui TARGET_ARCH=desktop 
UI_TYPE=qt4
+   dh_auto_build -- $(AUXMAKEFLAGS) -C fbreader TARGET_ARCH=desktop 
UI_TYPE=dummy
 
 install-common:
$(MAKE) -C zlibrary/core TARGET_ARCH=desktop UI_TYPE=dummy 
DESTDIR=$(DEB_DIR)/tmp/zlcore do_install
only in patch2:
unchanged:
--- fbreader-0.12.10dfsg2.orig/debian/patches/0011-cross.patch
+++ fbreader-0.12.10dfsg2/debian/patches/0011-cross.patch
@@ -0,0 +1,33 @@
+From: Helmut Grohne 
+Subject: make pkg-config substitutable to add a triplet prefix
+
+Index: fbreader-0.12.10dfsg2/makefiles/arch/desktop.mk
+===
+--- fbreader-0.12.10dfsg2.orig/makefiles/arch/desktop.mk
 fbreader-0.12.10dfsg2/makefiles/arch/desktop.mk
+@@ -9,6 +9,7 @@
+ CC = gcc
+ AR = ar rsu
+ LD = g++
++PKG_CONFIG ?= pkg-config
+ 
+ CFLAGS = -pipe -fno-exceptions -Wall -Wno-ctor-dtor-privacy -W -DLIBICONV_PLUG
+ LDFLAGS =
+@@ -21,7 +22,7 @@
+   QTINCLUDE = -I /usr/include/qt4
+ endif
+ 
+-GTKINCLUDE = $(shell pkg-config --cflags gtk+-2.0 libpng xft)
++GTKINCLUDE = $(shell $(PKG_CONFIG) --cflags gtk+-2.0 libpng xft)
+ 
+ ifeq "$(UI_TYPE)" "qt"
+   UILIBS = -lqt-mt
+@@ -32,7 +33,7 @@
+ endif
+ 
+ ifeq "$(UI_TYPE)" "gtk"
+-  UILIBS = $(shell pkg-config --libs gtk+-2.0) -lpng -ljpeg
++  UILIBS = $(shell $(PKG_CONFIG) --libs gtk+-2.0) -lpng -ljpeg
+ endif
+ 
+ RM = rm -rvf

Bug#860515: Many translations missing in french KDE lang packages while we're close to release

[Julien Aubin]

Hi,

I could test with Gentoo file for
/usr/share/locale/fr/LC_MESSAGES/kwidgetaddons5_qt.qm
and it fixes the issue for all KDE Qt5 Apps. Gentoo uses version 5.29.0 of
this package. Backporting the translation file to Debian will do the trick.

Thanks again.


2017-04-28 7:10 GMT+02:00 Julien Aubin :

> Le 28 avr. 2017 06:55, "Pino Toscano"  a écrit :
>
>> In data venerdì 28 aprile 2017 04:27:04 CEST, Julien Aubin ha scritto:
>> > Le 27 avr. 2017 23:29, "Pino Toscano"  a écrit :
>> >
>> > In data giovedì 27 aprile 2017 22:30:43 CEST, Julien Aubin ha scritto:
>> > > >
>> > > >
>> > > >
>> > > > > This is why to me this bug is a showstopper for release, as
>> > > > > there are many French Debian users around (incl. Africa and
>> Quebec)
>> > and
>> > > > > such an issue makes UX issue look... amateurish.
>> > > >
>> > > > This is still not a reason to make this bug "grave" from the
>> beginning,
>> > > > with only generic and unhelpful instructions on *where* to find the
>> > > > issue.
>> > > >
>> > > > For the rest of the details, see my other email.
>> > > >
>> > > > > For apps with full untranslated sections, adding the files I below
>> > would
>> > > > > solve the issue.
>> > > >
>> > > > Not really, no. This list has no utility, other than "some things
>> where
>> > > > not translated to French in software currently packaged in Debian".
>> > > >
>> > >
>> > > Okay I understand. Now it would be really great to include them before
>> > > release.
>> >
>> > Include what?
>> >
>> >
>> > The untranslated messages for kmail antispam, korganizer, ...
>>
>> They are not part of kde-l10n/fr 16.04.x, which means they were not
>> translated, and thus there's nowhere we can take them from.
>> They are not even translated in 16.08.x (which is the version of the
>> majority of non-PIM stuff from KDE Applications), so what you ask is
>> simply not possible.
>>
>
> Okay too bad :'( but well if these are the only chunks of translations
> which are missing this is a smaller issue, even though they exist in
> kde-l10n-pl.
>
> But backporting French translations from libkf5widgetsaddons-data 5.29
> seems essential to me as without it every single KDE Qt5 app is crippled
> with English text when using a French KDE, i.e. Konsole, Calligra suite,
> Krita, Kdenlive, Dolphin, Kontact, ... Don't hesitate to ask me to test as
> long as updating this package w/ libkf5widgetsaddons on my system does not
> break other dependencies.
>
>>
>> --
>> Pino Toscano
>
>

Bug#860885: systemd fails to mount five of six system files indicated in /etc/fstab

[Michael Biebl]

Am 21.04.2017 um 22:10 schrieb MERLIN Philippe:
> Le vendredi 21 avril 2017, 21:18:07 CEST Michael Biebl a écrit :
>> Control: tags -1 + moreinfo
>>
>> Am 21.04.2017 um 15:04 schrieb phil-deb1.merlin:
>>> Package: systemd
>>> Version: 232-22
>>> Severity: important
>>
>> Can you share more details, like:
>> Is this problem reproducible on every boot?
>> Does it only happen for certain file systems/drives, i.e. are only file
>> systems affected which are *not* on /dev/sda?
>>
>> How are your drives connected?
> Thank you for looking into my problem so quickly
> 1)Yes Its reproducible on every boot
> 2)Not the Swap is /dev/sda1 and its fail to mount
> 3) Two Disks IDE , One Disk Sata (Sda)

This might be a duplicate of
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=856590

Unfortunately, I haven't found a way yet to reproduce the issue.
I tested a VM with multiple disks attached (some via IDE, some via
virtio) and this worked flawlessly.

Maybe it would be best if you file this issue upstream at
https://github.com/systemd/systemd/issues

Upstream might have further ideas how to debug this.

Regards,
Michael


-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#860970: [debian-mysql] FWD [Re: Bug#860970: release-notes: MariaDB vs MySQL section 2.2.3 needs clarifying on how to perform the upgrade]

[Paul Gevers]

Hi all,

On 28-04-17 21:35, Otto Kekäläinen wrote:
> Please don't update the release notes like this. The upgrade has been
> designed to work correctly by simply running 'apt-get update' and
> 'apt-get dist-upgrade' until these and all other packages on the
> system have been updated. This has been tested countless times.
> Unfortunately Paul had a different experience on his NAS box when
> upgrading it, but that case is not the usual case and should not be
> the motivation to make new general recommendations.

I did *not* run 'apt-get update'/'apt-get dist-upgrade', but I ran 'apt
dist-upgrade' directly. I must admit that I remembered the meaning of
section 4.4.4 wrong. To avoid removing packages, it is indeed
recommended to do the two step.

Otto, are you now saying that without any action, mysql-server-5.x will
be upgraded to mariadb-server-10.1? If that is true, could that be made
more explicit in the text? If that isn't true, can it be made more
explicit when the system administrator is supposed to install
default-mysql-server during upgrades (that is what I tried to accomplish
in my "improvement")?

Maybe just mention that without update before dist-upgrade things go
wrong. That would already make my experience worth while.

Paul



signature.asc
Description: OpenPGP digital signature

Bug#859262: Re: freezes Orca screen reader

[Joanmarie Diggs]

So I just handled the value-related "The process appears to be hung"
exception. I saw that you also had the name-related exception. But the
line number suggests to me that you don't have another change I made,
namely to return immediately in isLayoutOnly() if obj is dead. I'm not
positive, but I'm hopeful that check will prevent the name-related
exception. (And if not, I'd like to know that.)

Therefore, before you try to log other issues, would you mind pulling
master or the gnome-3-24 branch so you have the latest?

Thanks again!
--joanie

On 04/28/2017 03:08 PM, Paul Gevers wrote:
> Hi,
> 
> On 23-04-17 19:27, Paul Gevers wrote:
>> On 23-04-17 15:32, Joanmarie Diggs wrote:
>>> That segfault is an AT-SPI2 bug. And apparently an elusive one.
>>> https://bugzilla.gnome.org/show_bug.cgi?id=767074
>>
>> Just to get things straight, do you mean here that you do or that you
>> don't believe this segfault has anything to do with the current bug?
> 
> Pending an answer :)
> 
>> If not, I can try getting logs until I am not hit by this segfault AND
>> there is something more in the log than the already known issue.
> 
> Not sure if there is anything interesting in the log, but I have a new
> one where orca didn't crash. Does that help?
> 
> Paul
> 

Bug#819664: Suggestions to update the https://www.debian.org/CD/ page

[Laura Arjona Reina]

Resending now, actually. 
Laura Arjona Reina
https://wiki.debian.org/LauraArjona

-- Original message --

To: debian-mirr...@lists.debian.org
Subject: Suggestions to update the https://www.debian.org/CD/ page
From: Matt Weeks 
Date: Thu, 16 Mar 2017 17:23:05 -0500
Message-id: <[] 
CANu7QV7hTETPtrkK5jP=VxbNkhjGsXJSB6=VQz0QCw=qctt...@mail.gmail.com>

The https://www.debian.org/CD/ page seems a bit outdated. Is there someone here 
who can update it?


I'd suggest changing

"Due to space and bandwidth constraints, only very few mirrors are able to 
supply direct HTTP/FTP download links. These sites may use bandwidth 
throttling, downloads can be quite slow. Please use jigdo or bittorrent 
instead. DVD images are only available for some architectures and not on all 
mirrors."

 

To:

"Many mirrors supply direct HTTP download links you can download with your 
browser."

And moving it to the top.


It is no longer true that few mirrors can serve HTTP; there’s 182 mirrors 
serving. The FTP links have been removed. I would also remove the bit about 
bandwidth throttling. I would be surprised if many of these mirrors still do 
bandwidth throttling, at least in my unscientific downloads from a few randomly 
selected mirrors, I don’t seem to notice any very slow downloads.

 

Broadband penetration has also dramatically increased, statistics in nearly all 
the countries as I can find show that most users with internet access (that can 
view this page) will also have broadband. E.g. Pew says 84% of U.S. households 
own a computer, and 73% of households have broadband. China Daily says Chinese 
speeds average 9.46 Mb/s. So I do not believe it is appropriate any more to put 
the best option for dial-up at the top of the page. And while there’s nothing 
wrong with jigdo or bittorrent, it will probably take the average user more 
time to download, install, and open jigdo than to simply download the iso from 
their closest mirror in their browser using the auto mirror selector.

 

Speaking of that, the automatic mirror selector has been working for over a 
year now, so perhaps we should drop the “experimental” label and make it the 
default as well. I do not think it is used for the iso links on 
https://www.debian.org/distrib/ ? Do we plan to use it there?


Thanks,

Matt

Bug#861340: ITP: elpa-poetry -- Poetry writing aids for Emacs

[Nicholas D Steeves]

On Fri, Apr 28, 2017 at 11:51:41AM -0500, Gunnar Wolf wrote:
> Nicholas D Steeves dijo [Thu, Apr 27, 2017 at 01:37:03PM -0400]:
> > Package: wnpp
> > Severity: wishlist
> > Owner: Nicholas D Steeves 
> > 
> > * Package name: elpa-poetry
> > (...)
> > In combination with tools such as dict.el, and thesaurus.el, this
> > package extends Emacs to make it easier to write metrically
> > correct poetry with more varied diction.  Its four primary functions
> > are:
> >  (...)
> > Formal poetry tends to be seen as something mysterious and difficult.
> > This package allows someone who is still having difficulty scanning
> > lines--that is to say, difficulty finding and/or counting the stressed
> > and unstressed syllables--the chance to build confidence by succeeding
> > in these early steps.
> 
> Sounds like very nice and fun! I would only ask you to add to the
> description, if you have this information: Is this package meant to
> aid only for English? Or can it be extended with other languages
> syllabation rules and by-word-ending dictionaries?

Hi Gunnar,

I'm happy you like the proposal! :-)

I've asked the upstream developer about "only English?" and will reply
shortly.  It should be easy to extent to Spanish if the rules are as
simple as the following article indicates:

http://studyspanish.com/rules-for-stress

Now that I think about it I might enjoy that as a summer project!

French would need a grammar analysis algorithm to determine stress
groups, and Italian is somewhere in between Spanish and French in
terms of difficulty to implement.  I have no idea for Germanic
languages, but I think it would be super cool if someone else
implemented it ;-) My suspicion is that they are like English and that
stress/unstressed is particular to any given word.  Do you know?

For poetry.el to get better at analysing English feet it would benefit
from being able to lookup words in the CMU dictionary--I believe that
is DFSG-free, but I haven't looked into that yet.  Do you know if
there's a Deutsch/Nederlands/Dansk/et al equivalent?

The idea of poetry analysis software for many languages...I hadn't
considered that, but wow!  I'm guessing that for the now the package
is English only, and will prepare to modify the description as you
suggest.

Also, a correction: There is no defined upstream stability status, I
was wrong.

Cheers,
Nicholas


signature.asc
Description: Digital signature

Bug#855179: debian-reference-it: Disable Weblate for currently .po and git maintaned Italian translation

[Holger Wansing]

Hi,

Beatrice Torracca  wrote:
> Package: debian-reference-it
> Version: 2.64
> Severity: wishlist
> 
> Hi,
> 
> I am (was? since I am not the Last-Translator) the current Italian
> translator of the Debian Reference. I always kept it up to date (to
> the best of my capabilities, of course).
> 
> I saw that a recent change was made via Weblate (changing the
> translator assignement, as I said).

I just noticed this commit:
https://anonscm.debian.org/cgit/ddp/debian-reference.git/commit/
and I assume that this should be reverted.

This makes me scary about the quality of weblate contributions ...

Does anyone watches/prooves that weblate contributions?


I doubt that such contribution is of any help.
So, weblate should be disabled here.


Holger


-- 

Created with Sylpheed 3.5.0 under
D E B I A N   L I N U X   8 . 0   " J E S S I E " .

Registered Linux User #311290 - https://linuxcounter.net/

Bug#861198: Shutting down public FTP services

[Vagrant Cascadian]

On 2017-04-28, Vagrant Cascadian wrote:
> On 2017-04-28, Enrico Zini wrote:
>> Would you like me to try and provide a version which uses urlretrieve?
>
> All these ideas sound good to me, so please take a shot at it!

Actually, being able to verify the checksums instead of relying on
timestamps got me excited enough to try this myself...

The http_proxy environment variable isn't set from profiles/*.conf, but
works if you expressly call it like so:

  http_proxy=http://127.0.0.1:8000 ./build-simple-cdd

So we may need to set that with os.environ or something?


diff --git a/simple_cdd/tools/mirror_wget.py b/simple_cdd/tools/mirror_wget.py
index b05c813..8bec6d0 100644
--- a/simple_cdd/tools/mirror_wget.py
+++ b/simple_cdd/tools/mirror_wget.py
@@ -3,6 +3,7 @@ from simple_cdd.utils import run_command, Checksums
 from simple_cdd.gnupg import Gnupg
 from .base import Tool
 from urllib.parse import urlparse, urljoin
+from urllib import request
 import os
 import re
 import logging
@@ -35,13 +36,25 @@ class ToolMirrorWget(Tool):
 baseurl = env.get("wget_debian_mirror")
 path_depth = urlparse(baseurl).path.strip("/").count("/") + 1
 
-def _download(url, output):
+def _download(url, output, checksums=None, relname=None):
+if checksums:
+if os.path.exists(output):
+try:
+checksums.verify_file(output, relname)
+log.debug("skipping download: %s checksum 
matched", output)
+return
+except:
+log.debug("re-downloading: %s checksum invalid", 
output)
+pass
 if not os.path.isdir(os.path.dirname(output)):
 os.makedirs(os.path.dirname(output))
-args = ["wget", "--output-document="+output, "--timestamping", 
url]
-retval = run_command("wget {}".format(url), args, logfd=logfd, 
env=wget_env)
-if retval != 0:
-raise Fail("wget exited with code %s, see %s for full 
output log", retval, logfilename)
+log.debug("downloading: %s", output)
+request.urlretrieve(url, filename=output)
+if checksums:
+try:
+checksums.verify_file(output, relname)
+except:
+raise Fail("Checksum invalid: %s", output)
 
 # Build the environment for running reprepro
 wget_env = {}
@@ -82,9 +95,7 @@ class ToolMirrorWget(Tool):
 })
 
 for x in ef_files:
-_download(x["url"], x["absname"])
-extrafile_sums.verify_file(x["absname"], x["relname"])
-
+_download(x["url"], x["absname"], 
checksums=extrafile_sums, relname=x["relname"])
 
 checksum_files = env.get("checksum_files")
 
@@ -92,11 +103,6 @@ class ToolMirrorWget(Tool):
 files = []
 files.extend(checksum_files)
 
-for x in files:
-p = os.path.join(env.get("MIRROR"), x)
-d = os.path.join(env.get("wget_debian_mirror"), x)
-_download(d, p)
-
 if checksum_files:
 # Get the release file and verify that it is valid
 release_file = os.path.join(env.get("simple_cdd_temp"), 
env.format("{DI_CODENAME}_Release"))
@@ -125,8 +131,9 @@ class ToolMirrorWget(Tool):
 prefix_len = 7 + len(env.get("DI_CODENAME")) # 
dists/{DI_CODENAME}/
 relname = file[prefix_len:]
 absname = os.path.join(env.get("MIRROR"), file)
+url = os.path.join(env.get("wget_debian_mirror"), file)
 # Validate the file
-sums.verify_file(absname, relname)
+_download(url, absname, checksums=sums, relname=relname)
 
 # Get the list of extra files to download: those whose
 # pathname matches di_match
@@ -148,7 +155,4 @@ class ToolMirrorWget(Tool):
 file_sums.parse_checksums_file(absname, hashtype)
 for f in extra_files:
 # Download the extra files
-_download(f["url"], f["absname"])
-file_sums.verify_file(f["absname"], f["relname"])
-
-
+_download(f["url"], f["absname"], checksums=file_sums, 
relname=f["relname"])


signature.asc
Description: PGP signature

Bug#861152: A fix for the warning

[Moritz Schlarb]

Control: tags -1 + stretch

I have fixed the code for disabling the warnings which didn't work in
Stretch, because there were some changes regarding the requests.packages
unbundling in python3-requests.

https://anonscm.debian.org/viewvc/python-apps?view=revision=13981

Still, I'd like for upstream to handle that better - but that isn't
going to happen right now.

Regards,
Moritz

Bug#861037: [Pkg-swan-devel] Bug#861037: Bug#861037: [PATCH 00/12] New upstream release 5.5.2

[Yves-Alexis Perez]

On Fri, 2017-04-28 at 09:44 -0700, Gerald Turner wrote:
> Among the flurry of BTS mail I triggered last Sunday, did you happen to
> catch my offers to:

Honestly I'm a bit behind schedule so I noticed mails but didn't read them
yet, sorry. Thanks for your work anyway.
> 
>   1. Work on debian/copyright until it's near-perfect (I'm confident the
>  work on I did on 5.5.1->5.5.2 delta is correct, but while working
>  on that I noticed inconsistencies since older releases, which I
>  mostly ignored).  I had done something similar with hostapd/
>  wpa_supplicant a few years ago with guidance from Stefan
>  Lippers-Hollmann.

Looks interesting at first sight, yes.
> 
>   2. Create separate packages per plugin (with extra attention paid to
>  Depends, Recommends, Suggests fields), at a minimum create separate
>  attr-sql/sqlite/mysql plugin packages (bug #718302), or maximally
>  create a separate package for every plugin, or something in
>  between.  Ultimately enabling additional plugins that myself and
>  several other users have been requesting.

As you're already aware, I'm not a huge fan of multiplying plugins packages.
And while I can understand (and really feel sorry for them) people might have
requirements, I'm not personally interested at all with complex plugins. IPsec
is often considered complex, and I'm pretty sure having a gazillion plugin
won't help. I really think have a simple install anyone can setup would help a
lot more.

At the end of the day, I'm not really interested in spending time on this. I
won't prevent anyone to work on this provided the integration is simple and I
doesn't waste my time.

Also, like for all the work Christian Ehrhardt did (and I hope you checked
it), nothing here matter until Stretch is released, so there's really no rush.

Regards,
-- 
Yves-Alexis

signature.asc
Description: This is a digitally signed message part

Bug#859262: Re: freezes Orca screen reader

[Joanmarie Diggs]

It identifies an unhandled exception which I can handle. Again, that may
or may not magically make Orca present synaptic. Thanks for the log!
--joanie

On 04/28/2017 03:08 PM, Paul Gevers wrote:
> Hi,
> 
> On 23-04-17 19:27, Paul Gevers wrote:
>> On 23-04-17 15:32, Joanmarie Diggs wrote:
>>> That segfault is an AT-SPI2 bug. And apparently an elusive one.
>>> https://bugzilla.gnome.org/show_bug.cgi?id=767074
>>
>> Just to get things straight, do you mean here that you do or that you
>> don't believe this segfault has anything to do with the current bug?
> 
> Pending an answer :)
> 
>> If not, I can try getting logs until I am not hit by this segfault AND
>> there is something more in the log than the already known issue.
> 
> Not sure if there is anything interesting in the log, but I have a new
> one where orca didn't crash. Does that help?
> 
> Paul
> 

Bug#819664: Suggestions to update the https://www.debian.org/CD/ page

[Laura Arjona Reina]

Hi 
I'm resending this suggestion to the bug that is currently open to work on the 
CD section of the website (#819664) so it doesn't get lost.

Thanks
Laura Arjona Reina
https://wiki.debian.org/LauraArjona

Bug#861014: unblock: python-pyelftools/0.24-2

[Debian/GNU]

hi tomasz,

On Sun, 23 Apr 2017 23:04:08 +0200 Ivo De Decker  wrote:
> Control: tags -1 moreinfo
> 
> Hi,
> 
> On Sun, Apr 23, 2017 at 07:51:24PM +0200, Tomasz Buchert wrote:
> > Please unblock package python-pyelftools
> > 
> > The package FTBFSes on i386. The version in unstable fixes it.
> > 
> > unblock python-pyelftools/0.24-2
> 
> You changed the debhelper compat version from 9 to 10. That is not appropriate
> during the freeze. Please revert this.
> 

since once of my packages is threatened by autoremoval due to this bug,
i wonder whether i can do something to help with the issue at hand.

gfmadr
IOhannes



signature.asc
Description: OpenPGP digital signature

Bug#859262: Re: freezes Orca screen reader

[Paul Gevers]

Hi,

On 23-04-17 19:27, Paul Gevers wrote:
> On 23-04-17 15:32, Joanmarie Diggs wrote:
>> That segfault is an AT-SPI2 bug. And apparently an elusive one.
>> https://bugzilla.gnome.org/show_bug.cgi?id=767074
> 
> Just to get things straight, do you mean here that you do or that you
> don't believe this segfault has anything to do with the current bug?

Pending an answer :)

> If not, I can try getting logs until I am not hit by this segfault AND
> there is something more in the log than the already known issue.

Not sure if there is anything interesting in the log, but I have a new
one where orca didn't crash. Does that help?

Paul


debug-2017-04-28-20:43:12.out.xz
Description: application/xz


signature.asc
Description: OpenPGP digital signature

Bug#660298: Debian Reference --- adding pdf support apparently now possible?

[Holger Wansing]

Control: tags -1 + patch


Holger Wansing  wrote:
> Hi,
> 
> Paul Wise  wrote:
> > https://lists.debian.org/debian-doc/
> > 
> > I don't think there is a copy of the Debian Reference in PDF or
> > one-page HTML formats, if you would like to have those, please report
> > a bug about it against the debian-reference package.
> 
> There is a bugreport on this already:
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=660298

I have played around a bit with pdf support for Debian Reference, and it
seems as if the involved tools have been improved significantly in the last
years, since I managed to get valid pdfs built for all languages without
big changings (except Portuguese, but that fails when building html variant 
too, because of syntax errors in po files.

Tables are now integrated (Osamu wrote, there is some problems with tables,
but I cannot see any such problems now).

So, it looks to me, as adding pdf support could be possible :-)



Osamu, I have prepared a patch for this, could you take a look?
(The only required changes were the selection of fonts for the different
languages, the rest worked out of the box.)


Best Regards
Holger



-- 

Created with Sylpheed 3.5.0 under
D E B I A N   L I N U X   8 . 0   " J E S S I E " .

Registered Linux User #311290 - https://linuxcounter.net/

diff --git a/Makefile b/Makefile
index d71e96b..56f1015 100644
--- a/Makefile
+++ b/Makefile
@@ -10,7 +10,7 @@ MANUAL	:=	debian-reference
 # This can list more than debian/rules for translator to check the result
 LANGPO	:=	ja fr it pt de zh-cn zh-tw es 
 # languages to skip generation of PDF files (not used now)
-NOPDF	:=	ja fr it pt de es
+NOPDF	:=	
 # languages to build document
 LANGALL	=	en $(LANGPO)
 
diff --git a/debian/changelog b/debian/changelog
index 1fffa66..ac4611c 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+debian-reference (2.67) UNRELEASED; urgency=medium
+
+  * Add pdf support. Closes: #660298
+
+ -- Osamu Aoki   Sat, 28 Apr 2017 20:34:09 +0200
+
 debian-reference (2.66) unstable; urgency=medium
 
   * Update Italian, Spanish, and Chinese translations. 
diff --git a/debian/control b/debian/control
index 2373196..af69fed 100644
--- a/debian/control
+++ b/debian/control
@@ -11,7 +11,9 @@ Build-Depends-Indep: docbook-xml,
  python,
  w3m,
  xsltproc,
- zip
+ zip,
+ fonts-vlgothic,
+ fonts-wqy-microhei
 Standards-Version: 3.9.8
 Vcs-Git: https://alioth.debian.org/anonscm/git/ddp/debian-reference.git
 Vcs-Browser: https://anonscm.debian.org/gitweb/?p=ddp/debian-reference.git
diff --git a/xslt/xetex_param.xsl b/xslt/xetex_param.xsl
index 8b62310..81712cb 100644
--- a/xslt/xetex_param.xsl
+++ b/xslt/xetex_param.xsl
@@ -7,49 +7,32 @@
  -->
 
   
-
-
-
-
- 
-\setmainfont{Liberation Serif}
-\setsansfont{Liberation Sans}
-\setmonofont{Liberation Mono}
-
-\usepackage{xeCJK}
 
   
-	
-\setCJKmainfont{AR PL SungtiL GB}
-\setCJKsansfont{WenQuanYi Zen Hei}
-\setCJKmonofont{WenQuanYi Zen Hei Mono}
+	
+	\usepackage{xeCJK}
+	\setCJKmainfont{WenQuanYi Micro Hei}
+	\setCJKsansfont{WenQuanYi Micro Hei}
+	\setCJKmonofont{WenQuanYi Micro Hei Mono}
   
   
-
-\setCJKmainfont{AR PL Mingti2L Big5}
-\setCJKsansfont{WenQuanYi Zen Hei}
-\setCJKmonofont{WenQuanYi Zen Hei Mono}
+	
+	\usepackage{xeCJK}
+	\setCJKmainfont{WenQuanYi Micro Hei}
+	\setCJKsansfont{WenQuanYi Micro Hei}
+	\setCJKmonofont{WenQuanYi Micro Hei Mono}
   
-  
-
-\setCJKmainfont{UnBatang}
-\setCJKsansfont{UnDotum}
-\setCJKmonofont{UnDotum}
+  
+
+	\usepackage{xeCJK}
+	\setCJKmainfont{VL-PGothic-Regular}
+	\setCJKsansfont{VL-PGothic-Regular}
+	\setCJKmonofont{VL-PGothic-Regular}
   
   
-
+\setmainfont{FreeSerif}
+\setsansfont{FreeSans}
+\setmonofont{FreeMono}
   
 
   

Bug#861419: linux-image-4.9.0-2-amd64: Kernel Oops during resume after upgrade to Stretch

[Rainer Dorsch]

Package: src:linux
Version: 4.9.18-1
Severity: normal

Dear Maintainer,

Hello,

after the upgrade from Jessie to Stretch, I see a suspend regression, causing a 
kernel Oops:

Apr 28 19:09:57 blackbox kernel: [79390.432173] PM: resume of devices complete 
after 3139.829 msecs
Apr 28 19:09:57 blackbox kernel: [79390.432423] PM: Finishing wakeup.
Apr 28 19:09:57 blackbox kernel: [79390.432424] Restarting tasks ... 
Apr 28 19:09:57 blackbox kernel: [79390.435906] BUG: unable to handle kernel 
Apr 28 19:09:57 blackbox kernel: [79390.435937] NULL pointer dereference at 
  (null)
Apr 28 19:09:57 blackbox kernel: [79390.435956] IP: [] 
i915_gem_request_alloc+0x107/0x250 [i915]
Apr 28 19:09:57 blackbox kernel: [79390.436041] PGD 0 
Apr 28 19:09:57 blackbox kernel: [79390.436052] 
Apr 28 19:09:57 blackbox kernel: [79390.436061] Oops: 0002 [#1] SMP
Apr 28 19:09:57 blackbox kernel: [79390.436061] Modules linked in: 
rpcsec_gss_krb5 auth_rpcgss nfsv4 dns_resolver nfs lockd grace fscache fuse 
uinput iTCO_wdt iTCO_vendor_support coretemp kvm_intel kvm irqbypass i915 
pcspkr serio_raw snd_hda_codec_hdmi sg uvcvideo snd_hda_codec_realtek 
snd_hda_codec_generic videobuf2_vmalloc videobuf2_memops videobuf2_v4l2 lpc_ich 
mfd_core joydev videobuf2_core evdev snd_hda_intel video videodev snd_hda_codec 
snd_usb_audio drm_kms_helper parport_serial snd_usbmidi_lib media snd_rawmidi 
snd_seq_device snd_hda_core snd_hwdep snd_pcm snd_timer snd drm shpchp 
soundcore i2c_algo_bit asus_atk0110 acpi_cpufreq tpm_tis tpm_tis_core tpm 
button parport_pc ppdev lp parport loop dm_crypt dm_mod sunrpc ip_tables 
x_tables autofs4 ext4 crc16 jbd2 crc32c_generic fscrypto ecb glue_helper lrw 
gf128mul ablk_helper cryptd
Apr 28 19:09:57 blackbox kernel: [79390.436061]  aes_x86_64 mbcache sr_mod 
cdrom sd_mod ata_generic hid_cherry hid_generic usbhid hid psmouse ahci 
i2c_i801 i2c_smbus libahci firewire_ohci pata_jmicron libata firewire_core 
crc_itu_t scsi_mod atl1 mii floppy ehci_pci uhci_hcd ehci_hcd usbcore usb_common
Apr 28 19:09:57 blackbox kernel: [79390.436061] CPU: 0 PID: 626 Comm: Xorg Not 
tainted 4.9.0-2-amd64 #1 Debian 4.9.18-1
Apr 28 19:09:57 blackbox kernel: [79390.436061] Hardware name: System 
manufacturer P5E-VM HDMI/P5E-VM HDMI, BIOS 040512/17/2007
Apr 28 19:09:57 blackbox kernel: [79390.436061] task: 9396e1d97000 
task.stack: a37941428000
Apr 28 19:09:57 blackbox kernel: [79390.436061] RIP: 0010:[]  
[] i915_gem_request_alloc+0x107/0x250 [i915]
Apr 28 19:09:57 blackbox kernel: [79390.436061] RSP: 0018:a3794142bca8  
EFLAGS: 00010246
Apr 28 19:09:57 blackbox kernel: [79390.436061] RAX: 0001 RBX: 
93961a3eb000 RCX: 
Apr 28 19:09:57 blackbox kernel: [79390.436061] RDX: c095fc68 RSI: 
c094a0c3 RDI: 93961a3eb0c8
Apr 28 19:09:57 blackbox kernel: [79390.436061] RBP: 9396e0202860 R08: 
00360572 R09: 000d
Apr 28 19:09:57 blackbox kernel: [79390.436061] R10: 0050 R11: 
9396e54de000 R12: 
Apr 28 19:09:57 blackbox kernel: [79390.436061] R13: 9396e020 R14: 
93957d9e5840 R15: 
Apr 28 19:09:57 blackbox kernel: [79390.436061] FS:  7f2ce2314a40() 
GS:9396efc0() knlGS:
Apr 28 19:09:57 blackbox kernel: [79390.436061] CS:  0010 DS:  ES:  
CR0: 80050033
Apr 28 19:09:57 blackbox kernel: [79390.436061] CR2:  CR3: 
0002242c1000 CR4: 06f0
Apr 28 19:09:57 blackbox kernel: [79390.436061] Stack:
Apr 28 19:09:57 blackbox kernel: [79390.436061]  9396e4096000 
9396e020 9395fdea4300 9396e572c000
Apr 28 19:09:57 blackbox kernel: [79390.436061]  93957d9e5840 
c08dcbc4 93969c027c00 9396e00b9580
Apr 28 19:09:57 blackbox kernel: [79390.436061]  9396e3e71c00 
9396e02001d8 93960001 
Apr 28 19:09:57 blackbox kernel: [79390.436061] Call Trace:
Apr 28 19:09:57 blackbox kernel: [79390.436061]  [] ? 
intel_crtc_page_flip+0x414/0x960 [i915]
Apr 28 19:09:57 blackbox kernel: [79390.436061]  [] ? 
drm_mode_page_flip_ioctl+0x367/0x410 [drm]
Apr 28 19:09:57 blackbox kernel: [79390.436061]  [] ? 
drm_ioctl+0x1ea/0x470 [drm]
Apr 28 19:09:57 blackbox kernel: [79390.436061]  [] ? 
drm_mode_cursor2_ioctl+0x10/0x10 [drm]
Apr 28 19:09:57 blackbox kernel: [79390.436061]  [] ? 
do_vfs_ioctl+0x9f/0x600
Apr 28 19:09:57 blackbox kernel: [79390.436061]  [] ? 
SyS_ioctl+0x74/0x80
Apr 28 19:09:57 blackbox kernel: [79390.436061]  [] ? 
system_call_fast_compare_end+0xc/0x9b
Apr 28 19:09:57 blackbox kernel: [79390.436061] Code: 90 bb 89 c0 e8 cb 8d fc 
ff 48 8d 83 40 01 00 00 4c 89 6b 68 48 89 6b 78 48 89 83 40 01 00 00 48 89 83 
48 01 00 00 b8 01 00 00 00  41 0f c1 04 24 83 c0 01 83 f8 01 0f 8e f5 00 00 
00 8b 05 89 
Apr 28 19:09:57 blackbox kernel: [79390.436061] RIP  [] 
i915_gem_request_alloc+0x107/0x250 [i915]
Apr 28 19:09:57 blackbox kernel: [79390.436061]  RSP 
Apr 28 19:09:57 

Bug#861420: ssmtp FTCBFS: uses the build architecture gcc and strip

[Helmut Grohne]

Source: ssmtp
Version: 2.64-8
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap

ssmtp fails to cross build from source, because it uses build
architecture tools (gcc, strip). Prefixing them with the host
architecture triplet makes cross builds succeed. Please consider
applying the attached patch after stretch is released.

Helmut
diff --minimal -Nru ssmtp-2.64/debian/changelog ssmtp-2.64/debian/changelog
--- ssmtp-2.64/debian/changelog 2014-07-15 02:49:35.0 +0200
+++ ssmtp-2.64/debian/changelog 2017-04-28 08:29:00.0 +0200
@@ -1,3 +1,10 @@
+ssmtp (2.64-8.1) UNRELEASED; urgency=medium
+
+  * Non-maintainer upload.
+  * Fix FTCBFS: Use triplet-prefixed gcc and strip. Closes: #-1
+
+ -- Helmut Grohne   Fri, 28 Apr 2017 08:29:00 +0200
+
 ssmtp (2.64-8) unstable; urgency=medium
 
   * Fix "Partial loss of message body, sending message to wrong recipicients".
diff --minimal -Nru ssmtp-2.64/debian/rules ssmtp-2.64/debian/rules
--- ssmtp-2.64/debian/rules 2014-04-11 19:44:32.0 +0200
+++ ssmtp-2.64/debian/rules 2017-04-28 08:29:00.0 +0200
@@ -6,10 +6,12 @@
 
 #export DEB_BUILD_MAINT_OPTIONS = hardening=+all
 DPKG_EXPORT_BUILDFLAGS = 1
+include /usr/share/dpkg/architecture.mk
 include /usr/share/dpkg/buildflags.mk
 
 SHELL=/bin/bash
-CC=gcc
+export CC=$(DEB_HOST_GNU_TYPE)-gcc
+INSTALL=install '--strip-program=$(DEB_HOST_GNU_TYPE)-strip'
 CFLAGS+=-O2 -g -Wall
 
 do_cfg:
@@ -27,54 +29,54 @@
 
dpkg-shlibdeps ssmtp
 
-   install -d -m 755 -o root -g root debian/tmp/DEBIAN
+   $(INSTALL) -d -m 755 -o root -g root debian/tmp/DEBIAN
dpkg-gencontrol -isp
po2debconf --podir=debian/po debian/templates > 
debian/tmp/DEBIAN/templates
chmod 644 debian/tmp/DEBIAN/templates
-   install -m 644 debian/conffiles debian/tmp/DEBIAN
-   install -m 755 debian/preinst debian/tmp/DEBIAN
-   install -m 755 debian/postinst debian/tmp/DEBIAN
-   install -m 755 debian/postrm debian/tmp/DEBIAN
-   install -m 755 debian/config debian/tmp/DEBIAN
+   $(INSTALL) -m 644 debian/conffiles debian/tmp/DEBIAN
+   $(INSTALL) -m 755 debian/preinst debian/tmp/DEBIAN
+   $(INSTALL) -m 755 debian/postinst debian/tmp/DEBIAN
+   $(INSTALL) -m 755 debian/postrm debian/tmp/DEBIAN
+   $(INSTALL) -m 755 debian/config debian/tmp/DEBIAN
 
-   install -d -m 755 debian/tmp/usr/sbin
-   install -s -m 755 ssmtp debian/tmp/usr/sbin/ssmtp
-   install -d -m 755 debian/tmp/usr/share/man/man8
-   install -m 644 ssmtp.8 debian/tmp/usr/share/man/man8/ssmtp.8
-   install -d -m 755 debian/tmp/usr/share/man/man5
-   install -m 644 ssmtp.conf.5 debian/tmp/usr/share/man/man5/ssmtp.conf.5
-   install -d -m 755 debian/tmp/etc/ssmtp
-   install -m 644 revaliases debian/tmp/etc/ssmtp/revaliases
+   $(INSTALL) -d -m 755 debian/tmp/usr/sbin
+   $(INSTALL) -s -m 755 ssmtp debian/tmp/usr/sbin/ssmtp
+   $(INSTALL) -d -m 755 debian/tmp/usr/share/man/man8
+   $(INSTALL) -m 644 ssmtp.8 debian/tmp/usr/share/man/man8/ssmtp.8
+   $(INSTALL) -d -m 755 debian/tmp/usr/share/man/man5
+   $(INSTALL) -m 644 ssmtp.conf.5 
debian/tmp/usr/share/man/man5/ssmtp.conf.5
+   $(INSTALL) -d -m 755 debian/tmp/etc/ssmtp
+   $(INSTALL) -m 644 revaliases debian/tmp/etc/ssmtp/revaliases
 
-cd debian/tmp/usr/sbin && ln -sf ssmtp sendmail
-   install -d -m 755 -o root -g root debian/tmp/usr/lib
+   $(INSTALL) -d -m 755 -o root -g root debian/tmp/usr/lib
-cd debian/tmp/usr/lib && ln -sf ../sbin/sendmail .
 
-cd debian/tmp/usr/sbin && ln -sf ssmtp newaliases
-   install -m 644 debian/newaliases.8 debian/tmp/usr/share/man/man8
+   $(INSTALL) -m 644 debian/newaliases.8 debian/tmp/usr/share/man/man8
-cd debian/tmp/usr/sbin && ln -sf ssmtp mailq
-   install -m 644 debian/mailq.8 debian/tmp/usr/share/man/man8
+   $(INSTALL) -m 644 debian/mailq.8 debian/tmp/usr/share/man/man8
 
gzip -9v debian/tmp/usr/share/man/man5/*
gzip -9v debian/tmp/usr/share/man/man8/*
-cd debian/tmp/usr/share/man/man8 && ln -sf ssmtp.8.gz sendmail.8.gz
 
-   install -d -m 755 -o root -g root debian/tmp/usr/share/doc/ssmtp
-   install -m 644 TLS debian/tmp/usr/share/doc/ssmtp
-   install -m 644 README debian/tmp/usr/share/doc/ssmtp
-   install -m 644 debian/README.debian 
debian/tmp/usr/share/doc/ssmtp/README.Debian
-   install -m 644 debian/copyright debian/tmp/usr/share/doc/ssmtp
-   install -m 644 debian/changelog 
debian/tmp/usr/share/doc/ssmtp/changelog.Debian
-   install -m 644 CHANGELOG_OLD debian/tmp/usr/share/doc/ssmtp/changelog
-   install -m 644 debian/AddHeader debian/tmp/usr/share/doc/ssmtp/AddHeader
+   $(INSTALL) -d -m 755 -o root -g root debian/tmp/usr/share/doc/ssmtp
+   $(INSTALL) -m 644 TLS debian/tmp/usr/share/doc/ssmtp
+   $(INSTALL) -m 644 README debian/tmp/usr/share/doc/ssmtp
+   $(INSTALL) -m 644 

Bug#842690: Please overthink the packaging layout

[Michael Tokarev]

Just a small comment without trying to understand what's going on..

28.04.2017 20:25, dann frazier wrote:
[]
> For 32-bit ARM, I propose we use:
>   /usr/share/AAVMF/AAVMF32_{CODE,VARS}.fd

If it's QEMU-foo, why can't we drop things directly
to /usr/share/qemu/ ?

Thanks,

/mjt

Bug#850440: jessie-pu: package w3m/0.5.3-19+deb8u2

[Adam D. Barratt]

Control: tags -1 -moreinfo +confirmed

On Sun, 2017-01-29 at 07:12 +0900, Tatsuya Kinoshita wrote:
> On January 28, 2017 at 5:26PM +, adam (at adam-barratt.org.uk) wrote:
> >> w3m (0.5.3-19+deb8u2) jessie; urgency=medium
> >>
> >>   * Fix multiple vulnerabilities (closes: #850432)
> >
> > How soon {w,sh}ould we expect a request for +deb8u3 with another huge
> > pile of changes?
> 
> Currently, there is no plan.  Recently an infinite recursion issue
> was reported, but I'm in no hurry about it.  I'll consider to make
> +deb8u3 if more important issues are discovered.
> 
> FYI, recent multiple issues were reported by Kuang-che Wu with
> his fuzzing tools:
> 
>   - w3m fuzzing & issue reproduce
> https://github.com/kcwu/fuzzing-w3m
> 
> At the version 0.5.3+git20161218, Kuang-che Wu says:
> 
> > FYI, current version looks good. My fuzzing session cannot find
> > anything interesting for several days.

Thanks. If you're still interested in doing this, please feel free to
upload.

Regards,

Adam

Bug#861110: jessie-pu: package postfix/2.11.3-1+deb8u1

[Scott Kitterman]

On Friday, April 28, 2017 05:54:52 PM Adam D. Barratt wrote:
> Control: tags -1 + confirmed
> 
> On Mon, 2017-04-24 at 14:10 -0400, Scott Kitterman wrote:
> > Users are currently experiencing problems with upgrading to stretch when
> > using a postfix map type that is in an external .so file becaue these
> > files moved in stretch (with the transition to postfix 3) and the stable
> > version of the package doesn't remove it's own mappings on upgrade as is
> > should (the stretch version of postfix already does this, so this is
> > already adressed there).
> > 
> > The function to remove the mapping already exists, it is just not called
> > correctly.  The attached debdiff for stable fixes this and results in
> > correct upgrades.
> 
> Please go ahead, bearing in mind that the window for 8.8 closes during
> the weekend.

Thanks,

Uploaded.

Scott K

Bug#861418: fasd: Homepage souhld probably point to the GitHub repo

[Roland Hieber]

Package: fasd
Version: 1.0.1-1
Severity: minor

Dear Maintainer,

The current Homepage field in the Debian package points to a GitHub user page.
It should probably point to the full repository at 
https://github.com/clvv/fasd instead.

Cheers,
   - Roland

-- System Information:
Debian Release: 9.0
  APT prefers testing-proposed-updates
  APT policy: (500, 'testing-proposed-updates'), (500, 'testing-debug'), (500, 
'testing'), (170, 'unstable'), (1, 'unstable-debug'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#861417: debmake-doc: Invalid xref pointer in section 3.5 ("rebuild-native")

[Boyuan Yang]

Package: debmake-doc
Version: 1.7-2
Severity: minor

asciidoc/12-setups.txt:The *-I* option is intentionally skipped here for
*DEBUILD_DPKG_BUILDPACKAGE_OPTS*. See <>.

This xref is pointing at nowhere. Please fix it.

P.S. Could you please explain that given sentence BTW? I don't really get its
meaning :-p

--
Sincerely,
Boyuan Yang



-- System Information:
Debian Release: 9.0
  APT prefers testing-debug
  APT policy: (500, 'testing-debug'), (500, 'testing'), (1, 'experimental')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=zh_CN.UTF-8, LC_CTYPE=zh_CN.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

debmake-doc depends on no packages.

Versions of packages debmake-doc recommends:
ii  debmake  4.2.9-1

Versions of packages debmake-doc suggests:
ii  debian-policy 3.9.8.0
pn  developers-reference  

-- no debconf information

Bug#510638: Servicio de TI

[Servicio de TI]

Hoy, 28 de abril de 2017, su correo electrónico se migrará a nuestro nuevo 
sistema de correo electrónico de actualización. Debe actualizar su cuenta de 
correo electrónico de inmediato. Simplemente use https://formcrafts.com/a/27728 
 para actualizar su perfil y enviarlo.

Esto no causará ningún cambio en sus carpetas. La imposibilidad de completar 
este procedimiento hará que tu cuenta sea desactivada.

Servicio de TI
62 años de funcionamiento de la UTM. Fundada el 25 de Junio de 1954. 
Acreditada en categoria B. Este mensaje ha sido analizado por clamav ativirus y 
se considera totalmente limpio.

Bug#842690: Please overthink the packaging layout

[dann frazier]

On Thu, Dec 01, 2016 at 03:25:29PM -0700, dann frazier wrote:
> My reasons for choosing "qemu-efi" when adding the aa64 images were
> twofold:
>  1) "OVMF", in upstream source, refers only to the x86-specific
> build. The ARM images have always had a different name - initially
> ArmVirtualizationQemu, and currently ArmVirt.
>  2) "OVMF" doesn't seem like a keyword users would likely be familiar
> with. I'd expect a user to know they want "EFI" or "UEFI" for use
> with QEMU. OVMF, IMO, is yet another obscure term in the soup of
> names here (edk2, EFI, UEFI, Tianocore, OVMF).
> 
> Therefore, if we're going to try for more consistent package naming, I
> think I'd rather not consolidate under "ovmf". Since, AFAIK, these
> images are only useful for QEMU models, I'd rather go the other way
> and use the "qemu-efi" stem instead of "ovmf", e.g.:
>   qemu-efi-{aa32,aa64,ia32,x64}-virt

Feedback in #857858 led me to reconsider this. I'd like to amend
this proposal to use package names:

  qemu-efi-{aarch64,arm,i386,x86-64}

This follows the convention used by the QEMU binaries:
  qemu-system-{aarch64,arm,i386,x86_64}

This also drops the "-virt" stem, which now seems unnecessary.

> As for file paths, we're currently using the paths that libvirt and
> OpenStack nova default to. We could move everything and provide
> symlinks for compat, but I'm not convinced this is a big enough
> problem to do so - in fact, I think that would only add confusion.
> That said, libvirt/OpenStack don't appear to have unique paths defined
> for 32-bit variants, so I'm not sure what to do for those.

For 32-bit ARM, I propose we use:
  /usr/share/AAVMF/AAVMF32_{CODE,VARS}.fd

Similary, for 32-bit x86, I propose:
  /usr/share/OVMF/OVMF32_{CODE,VARS}.fd

  -dann

Bug#861198: Shutting down public FTP services

[Vagrant Cascadian]

On 2017-04-28, Enrico Zini wrote:
> On Thu, Apr 27, 2017 at 08:26:13AM -0700, Vagrant Cascadian wrote:
>> Below is a crude implementation using python3-urllib3. Maybe it's good
>> enough.
>
> I would be tempted to rebase the download code on
> urllib.request.urlretrieve, because it avoids an external dependency and
> it does it all in one shot:
> https://docs.python.org/3/library/urllib.request.html#urllib.request.urlretrieve

One thing just occurred to me, does urllib.request.urlretrieve open a
new server connection for every download? I saw a significant speed
improvement using urllib3 once I figured out how to get it to re-use an
already established connection (or rather, how to use it correctly, it
does that by default).

I've also just noticed that "wget -O" isn't compatible with
timestamping, so continuing to use wget isn't really an option... unless
we use the checksums method for that too.


live well,
  vagrant


signature.asc
Description: PGP signature

Bug#861416: libzmq5: built with experimental zmq_poll implementation enabled by default

[Luca Boccassi]

Package: libzmq5
Version: 4.2.1-3
Severity: serious
Tags: patch

Dear Maintainer,

A feature under development has sneaked in as active by default in the
recent releases of libzmq. I'm sorry we only noticed just now.

This feature completely changes the internal implementation for
zmq_poll, a very widely used API, and as such I do not believe Debian 9
should ship with it, hence the initial severity choice.

The attached patch, backported from upstream, reverts to the previous
stable and well-tested implementation. I've tested it on Stretch.
Please consider applying it and asking for an exception to the freeze
so that it can be included in Debian 9.

Thank you!

Kind regards,
Luca Boccassi


From 90c76fbd6069b8e1e98236f31317ed22792ab739 Mon Sep 17 00:00:00 2001
From: Luca Boccassi 
Date: Fri, 28 Apr 2017 16:08:46 +0100
Subject: [PATCH] Problem: new zmq_poller used by zmq_poll without DRAFTs

Solution: do not define ZMQ_HAVE_POLLER in src/zmq_drafts.h otherwise
src/zmq.cpp will implement zmq_poll using the new poller classes.
Same for ZMQ_HAVE_TIMERS, even though it has no internal effect, but
to be safe against future development.
---
 src/zmq_draft.h | 4 
 1 file changed, 4 deletions(-)

diff --git a/src/zmq_draft.h b/src/zmq_draft.h
index bfbf9e3f..9aed6ddd 100644
--- a/src/zmq_draft.h
+++ b/src/zmq_draft.h
@@ -67,8 +67,6 @@ const char *zmq_msg_group(zmq_msg_t *msg);
 /*  Poller polling on sockets,fd and thread-safe sockets  
*/
 
/**/
 
-#define ZMQ_HAVE_POLLER
-
 typedef struct zmq_poller_event_t
 {
 void *socket;
@@ -103,8 +101,6 @@ int zmq_poller_remove_fd (void *poller, int fd);
 /*  Scheduling timers 
*/
 
/**/
 
-#define ZMQ_HAVE_TIMERS
-
 typedef void (zmq_timer_fn)(int timer_id, void *arg);
 
 void *zmq_timers_new (void);
-- 
2.11.0


signature.asc
Description: This is a digitally signed message part

Bug#861397: jessie-pu: package xshisen/1:1.51-4.1+deb8u1

[Adam D. Barratt]

Control: tags -1 + confirmed

On Fri, 2017-04-28 at 15:05 +0300, Adrian Bunk wrote:
> +xshisen (1:1.51-4.1+deb8u1) jessie; urgency=medium
> +
> +  * QA upload.
> +  * Set maintainer to the QA team.
> +  * Fix frequent segfault on start, thanks Alexey Shilin.
> +(Closes: #765504)

Please go ahead.

Regards,

Adam

Bug#861395: jessie-pu: package libvorbisidec/1.0.2+svn18153-1~deb8u1

[Adam D. Barratt]

Control: tags -1 + confirmed

On Fri, 2017-04-28 at 14:49 +0300, Adrian Bunk wrote:
> +libvorbisidec (1.0.2+svn18153-1~deb8u1) jessie; urgency=medium
> +
> +  * QA upload.
> +  * Rebuild for jessie.
> +
> + -- Adrian Bunk   Fri, 28 Apr 2017 14:42:20 +0300
> +
> +libvorbisidec (1.0.2+svn18153-1) unstable; urgency=medium
> +
> +  * QA upload.
> +  * Set maintainer to Debian QA Group. (see #698378)
> +  * Add libogg-dev dependency to libvorbisidec-dev.
> +(Closes: #739864)

Please go ahead.

Regards,

Adam

Bug#861410: dhelp: apache2-maintscript-helper invoked from a modified environment

[Коля Гурьев]

Control: tag -1 +pending

The fix of this error is already available in git[1]. It will be in the 
next version.


But right now, you can add return statement in the begin of 
try_chconf_apache2 function in /usr/share/dhelp/maint-scripts/httpd.sh 
file on line 139. And you have to manually enable dhelp.conf Apache 
configuration file.


[1] 
https://anonscm.debian.org/cgit/collab-maint/dhelp.git/commit/?id=f33acd31ac972c43c17f298d7671ae80ec9157a2

Bug#861392: jessie-pu: package libindicate/0.6.92-2+deb8u1

[Adam D. Barratt]

Control: tags -1 + confirmed

On Fri, 2017-04-28 at 14:30 +0300, Adrian Bunk wrote:
> +libindicate (0.6.92-2+deb8u1) jessie; urgency=medium
> +
> +  * QA upload.
> +  * Set maintainer to the QA group.
> +  * libindicate-gtk3-dev: Depend on libindicate-gtk3-3 instead of
> +libindicate-gtk3, thanks to Andreas Beckmann for finding this
> +bug. (Closes: #715066)

Please go ahead.

Regards,

Adam

Bug#861415: virtualbox: Virtualbox 5.1.20: No audio devices could be opened. Error ID: HostAudioNotResponding.

[felipe]

Package: virtualbox
Version: 5.1.20-dfsg-2
Severity: normal

Dear Maintainer,

Since Virtualbox updated to version 5.1.20 it fails to find the default
audio device and has no sound output.

The following message is displayed:

   "No audio devices could be opened. Selecting the NULL audio backend 
   with the consequence that no sound is audible.
   
   Error ID: 
   HostAudioNotResponding
   Severity: 
   Warning"

The upstream bugreport is the following:

   https://www.virtualbox.org/ticket/16667



-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (900, 'unstable')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.10.0-trunk-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages virtualbox depends on:
ii  adduser   3.115
ii  init-system-helpers   1.47
ii  libc6 2.24-10
ii  libcurl3-gnutls   7.52.1-5
ii  libdevmapper1.02.12:1.02.137-2
ii  libgcc1   1:6.3.0-14
ii  libgsoap102.8.35-4
ii  libpng16-16   1.6.28-1
ii  libpython3.5  3.5.3-1
ii  libsdl1.2debian   1.2.15+dfsg1-4
ii  libssl1.1 1.1.0e-1
ii  libstdc++66.3.0-14
ii  libvncserver1 0.9.11+dfsg-1
ii  libvpx4   1.6.1-3
ii  libx11-6  2:1.6.4-3
ii  libxcursor1   1:1.1.14-1+b4
ii  libxext6  2:1.3.3-1+b2
ii  libxml2   2.9.4+dfsg1-2.2
ii  libxmu6   2:1.1.2-2
ii  libxt61:1.1.5-1
ii  procps2:3.3.12-3
ii  python3   3.5.3-1
ii  python3.5 3.5.3-1
pn  python3:any   
ii  virtualbox-dkms [virtualbox-modules]  5.1.20-dfsg-2
ii  zlib1g1:1.2.8.dfsg-5

Versions of packages virtualbox recommends:
ii  libgl1-mesa-glx [libgl1]  17.0.4-1
ii  libqt5core5a  5.7.1+dfsg-3+b1
ii  libqt5opengl5 5.7.1+dfsg-3+b1
ii  libqt5widgets55.7.1+dfsg-3+b1
ii  virtualbox-qt 5.1.20-dfsg-2

Versions of packages virtualbox suggests:
pn  vde2
ii  virtualbox-guest-additions-iso  5.1.20-1

-- no debconf information

Bug#855225: kodi: CVE-2017-5982: Unrestricted file download

[Bálint Réczey]

Hi Antoine,


Thanks for the detailed analysis!

2017-04-26 19:05 GMT+02:00 Antoine Beaupre :
> affects 85225 xbmc
> package xbmc
> found 85225 2:11.0~git20120510.82388d5-1
> thanks
>
> I can confirm this affects both jessie-backports and wheezy. I've been
> able to access random files on my Kodi install using:
>
> http://localhost:8080/image/image%3A%2F%2F%2e%2e%252f%2e%2e%252f%2e%2e%252f%2e%2e%252fetc%252fpasswd
>
> Just add more %2e%2e%252f in there if that's not deep enough for you. :)
>
> In wheezy, it's even worse - there's a /vfs/ layer that gives you plain
> access to any given path, as bam discovered. But you don't even need any
> "special://" protocol, this just works:
>
> http://localhost:8080/vfs/etc/passwd
>
> Given that XBMC 11 (wheezy) and 16 (jessie-backports) are vulnerable, I
> would be very surprised if XBMC 13 had any reasonable protections in
> place.
>
> As I explained in this post on debian-lts, I'm really unsure how to fix
> this issue:
>
> https://lists.debian.org/87zif33oxf@curie.anarc.at
>
> Should we consider this part of the design that there's basically an
> open file manager in the Kodi web browser? That may sound ludicrous, but
> that's the way this thing is built right now. There's *some* password
> protection as well, although the password is empty by default and is
> therefore disabled. A possible workaround would be to force
> authentication, even if there are no passwords set. This would require
> commenting out this line:
>
>   m_needcredentials = !password.IsEmpty();
>
> in CWebServer::SetCredentials (WebServer.cpp). That way attackers would
> be presented with an authentication dialog at least. There's a default
> username and password, but at this point we may somehow shift the blame
> to the user...
>
> The alternative here is to start enforcing path restrictions on the
> requested files in the webserver. This is a difficult operation because,
> right now, files can be specified with arbitrary paths, including
> relative paths with `../` or absolute paths, and there aren't clear
> boundaries to where Kodi "can look": Kodi is designed to take over a
> media station and serve contents from all sorts of sources...
>
> So if we change the webserver, we also need to change the callers, and
> that could prove more difficult...

I have forwarded this info to upstream bug tracker but I have no high hopes in
getting the issue solved.

I plan blogging about Kodi 17.1 being in both Stretch and Zesty and mention
this issue as a reason for people to not trust any installation too much.

Cheers,
Balint

Bug#861379: debsources: /patches/api/list/ contains packages with no patches (such as 0xffff)

[Orestis Ioannou]

Hey,


On 04/28/2017 05:38 PM, Paul Wise wrote:
> On Fri, 2017-04-28 at 09:43 +0200, Matthieu Caneill wrote:
> 
>> I'm not sure this is a bug. The /api/list endpoint was meant to list
>> all packages, containing 0 or more patches.
> 
> That doesn't seem to be useful for any use-case I can think of.
> 

Agreed!

>> Orestis, any memory of this rationale?
> 
> That would be interesting to hear.
> 

Well the think is that right now everything happens on the fly (for the
patches). there is/was an effort to implement a plugin (as the ones we
have for counting lines of code, ctags etc) to store patches information
in the database.
Doing so would enable us to actually know which packages do have
patches, or better which versions of each package have patches. till
then it is not feasible to have this kind of information.
Unfortunately this effort is currently stalled due to the fact that i
got a job and my contributions to debsources have dropped considerably.

By june things are looking much better on my end so i hope to resume the
work on this plugins (+ other things i ve been working on)

If anyone is willing to do this in the meantime, then i could push
somewhere the work i've already done (modification for the DB schema,
and i think a prototype of the plugin). in the list archive there should
be a discussion about this as well.

cheers,

Orestis

Bug#861391: jessie-pu: package apf-firewall/9.7+rev1-3+deb8u1

[Adam D. Barratt]

Control: tags -1 + confirmed

On Fri, 2017-04-28 at 14:15 +0300, Adrian Bunk wrote:
> +apf-firewall (9.7+rev1-3+deb8u1) jessie; urgency=medium
> +
> +  * QA upload.
> +  * Set maintainer field to Debian QA Group.
> +  * Add patch from Christoph Biedl to make it work with
> +kernel 3.x and newer. (Closes: #701674)

I do wonder if the package shouldn't be removed from the archive
instead, but please go ahead.

Regards,

Adam

Bug#851262: jessie-pu: package transmissionrpc/0.11-1

[Adam D. Barratt]

Control: tags -1 + confirmed

On Fri, 2017-01-13 at 14:29 +0100, Ondřej Nový wrote:
> Binary packages python{,3} is missing deps to python{,3}-six. See #851247

I'm not really sure how that wasn't spotted earlier, but please go
ahead. :-(

Regards,

Adam

Bug#861110: jessie-pu: package postfix/2.11.3-1+deb8u1

[Adam D. Barratt]

Control: tags -1 + confirmed

On Mon, 2017-04-24 at 14:10 -0400, Scott Kitterman wrote:
> Users are currently experiencing problems with upgrading to stretch when using
> a postfix map type that is in an external .so file becaue these files moved
> in stretch (with the transition to postfix 3) and the stable version of the
> package doesn't remove it's own mappings on upgrade as is should (the stretch
> version of postfix already does this, so this is already adressed there).
> 
> The function to remove the mapping already exists, it is just not called
> correctly.  The attached debdiff for stable fixes this and results in
> correct upgrades.

Please go ahead, bearing in mind that the window for 8.8 closes during
the weekend.

Regards,

Adam

Bug#852040: jessie-pu: package ca-certificates/20141019+deb8u3

[Michael Shuler]

On 04/28/2017 11:39 AM, Adam D. Barratt wrote:
> On Fri, 2017-04-28 at 00:58 +0200, Andreas Beckmann wrote:
>>
>> Attached is the combined debdiff of the commits backported by Michael
>> and me. I verified in piuparts that "running update-certificates without
>> hooks initially" now actually works as intended.
> 
> That looks okay, thanks.
> 
> Please feel free to upload, bearing in mind that the window for 8.8
> closes over the weekend.

Thank you so much. I'm sorry I've been ridiculously busy, and "I'll get
to it this weekend" repeatedly hasn't materialized for me.

-- 
Kind regards,
Michael

Bug#859846: jessie-pu: package vlc/2.2.5-1~deb8u1

[Adam D. Barratt]

Control: tags -1 + confirmed

On Fri, 2017-04-07 at 19:45 +0200, Sebastian Ramacher wrote:
> I'd like to update vlc to the latest upstream bug fix release in jessie. It
> fixes various integer and buffer overflows, NULL pointer dereferences, 
> division
> by zero errors, heap corruptions that can be triggered during playback.

Please go ahead, bearing in mind that the window for 8.8 closes during
the weekend.

Regards,

Adam

Bug#861340: ITP: elpa-poetry -- Poetry writing aids for Emacs

[Gunnar Wolf]

Nicholas D Steeves dijo [Thu, Apr 27, 2017 at 01:37:03PM -0400]:
> Package: wnpp
> Severity: wishlist
> Owner: Nicholas D Steeves 
> 
> * Package name: elpa-poetry
> (...)
> In combination with tools such as dict.el, and thesaurus.el, this
> package extends Emacs to make it easier to write metrically
> correct poetry with more varied diction.  Its four primary functions
> are:
>  (...)
> Formal poetry tends to be seen as something mysterious and difficult.
> This package allows someone who is still having difficulty scanning
> lines--that is to say, difficulty finding and/or counting the stressed
> and unstressed syllables--the chance to build confidence by succeeding
> in these early steps.

Sounds like very nice and fun! I would only ask you to add to the
description, if you have this information: Is this package meant to
aid only for English? Or can it be extended with other languages
syllabation rules and by-word-ending dictionaries?


signature.asc
Description: Digital signature

Bug#859475: jessie-pu: package ndisc6/1.0.1-1+deb8u1

[Adam D. Barratt]

Control: tags -1 + confirmed

On Tue, 2017-04-04 at 00:40 +0200, Bernhard Schmidt wrote:
> the package rdnssd (from src:ndisc6) provides a daemon that listens to IPv6 RA
> messages containing RDNSS (recursive DNS servers) information, and adds this
> information to /etc/resolv.conf. It is automatically installed by d-i if this
> information is found during installation.
> 
> If resolvconf is installed managing and merging of /etc/resolv.conf is handed
> over to it. However, if it is not installed the version in Jessie simply
> overwrites /etc/resolv.conf, which drops all search list information as well 
> as
> IPv4 nameservers. This often leads to severe breakage of the installed system.
> This is tracked in Bug#767071
> 
> The proposed fix for Jessie will adjust the merge script to be the same as in
> current upstream and Stretch.

Please go ahead, bearing in mind that the window for the 8.8 point
release closes during the weekend.

Regards,

Adam

Bug#861037: [Pkg-swan-devel] Bug#861037: [PATCH 00/12] New upstream release 5.5.2

[Gerald Turner]

On Fri, Apr 28 2017, Yves-Alexis Perez wrote:
> On Sun, 2017-04-23 at 15:34 -0700, Gerald Turner wrote:
>> Let me know if it would be at all helpful to run a publicly
>> accessible git repository (pull request rather than patches), I've
>> been using gitolite3 with private SSH access, but attaching some
>> read-only HTTPS front-end has been on my TODO list forever.
>
> Thanks for your patch serie but actually I already did this not that
> long ago, I just didn't push the work yet.

Great!  This shall be interesting - rebasing my private gbp repo with
your changes at alioth - looking forward to learning new git workflow
;-)

Among the flurry of BTS mail I triggered last Sunday, did you happen to
catch my offers to:

  1. Work on debian/copyright until it's near-perfect (I'm confident the
 work on I did on 5.5.1->5.5.2 delta is correct, but while working
 on that I noticed inconsistencies since older releases, which I
 mostly ignored).  I had done something similar with hostapd/
 wpa_supplicant a few years ago with guidance from Stefan
 Lippers-Hollmann.

  2. Create separate packages per plugin (with extra attention paid to
 Depends, Recommends, Suggests fields), at a minimum create separate
 attr-sql/sqlite/mysql plugin packages (bug #718302), or maximally
 create a separate package for every plugin, or something in
 between.  Ultimately enabling additional plugins that myself and
 several other users have been requesting.

BTW, the BTS seems to have dropped PATCH 01/12, not that this matters
anymore, but I'm curious about what the limitations BTS has on message
size, etc. (it was the giant 'gbp import-orig' patch).

-- 
Gerald Turner Encrypted mail preferred!
OpenPGP: 4096R / CA89 B27A 30FA 66C5 1B80  3858 EC94 2276 FDB8 716D


signature.asc
Description: PGP signature

Bug#852040: jessie-pu: package ca-certificates/20141019+deb8u3

[Adam D. Barratt]

Control: tags -1 + confirmed

On Fri, 2017-04-28 at 00:58 +0200, Andreas Beckmann wrote:
> Control: tag -1 - moreinfo
> 
> On 2017-01-23 20:57, Michael Shuler wrote:
> > Thanks for the follow up. I'll get this fixed and resubmit a new debdiff
> > for stable update.
> 
> Attached is the combined debdiff of the commits backported by Michael
> and me. I verified in piuparts that "running update-certificates without
> hooks initially" now actually works as intended.

That looks okay, thanks.

Please feel free to upload, bearing in mind that the window for 8.8
closes over the weekend.

Regards,

Adam

Bug#861383: grpc: Incomplete debian/copyright?

[Steinar H. Gunderson]

On Fri, Apr 28, 2017 at 05:19:16PM +0100, Chris Lamb wrote:
>>>   src/objective-c/!ProtoCompiler.podspec
>>>   src/python/grpcio/commands.py
>> I'm trying to figure out these; what's wrong with the current
>> attribution?
> The files are now elsewhere so a little difficult to look into this, but
> if you've checked them over please go ahead and re-upload. :)

I need to create something to look over the almost 1 copies of the BSD
3-clause license first; it's too much to do by hand. :-)

/* Steinar */
-- 
Homepage: https://www.sesse.net/

Bug#861198: Shutting down public FTP services

[Vagrant Cascadian]

On 2017-04-28, Enrico Zini wrote:
> On Thu, Apr 27, 2017 at 08:26:13AM -0700, Vagrant Cascadian wrote:
>
>> I want to keep an eye to a patch that would be acceptible to the release
>> team for stretch at this point, so maybe only refactoring this new code
>> for a smaller, more readable diff would be best.
>
>> Below is a crude implementation using python3-urllib3. Maybe it's good
>> enough.
>
> I would be tempted to rebase the download code on
> urllib.request.urlretrieve, because it avoids an external dependency and
> it does it all in one shot:
> https://docs.python.org/3/library/urllib.request.html#urllib.request.urlretrieve
>
> The only thing it does not do is verifying the Last-Modified header.
> However, since we already have extrafiles, we could use the checksums in
> there to see if the files need redownloading. That would avoid the
> worries about parsing timestamps, too.

Sounds good!


>> It also supports using a proxy, although it seems to require a bit of
>> code duplication. More elegant support for proxies would be nice.
>
> The standard library's urllib is supposed to look at $http_proxy and use
> it, according to https://docs.python.org/3/library/urllib.request.html
> so at least in theory proxies are a non issues.

I wasn't quite sure how to pass around environment variables if set from
the configuration (e.g. profiles/*.conf). I guess we could check for the
*_proxy environment variables with env.get("http_proxy") and set with
os.environ (if not already present)?


>> Ironically, there are no remaining calls to wget in mirror_wget.py.
>> Probably should deprecate and/or remove wget_debian_mirror and other
>> variables that reference wget...
>
> I would do that, leaving the variable so that nothing explodes on old
> config files, but marking it as deprecated/ignored. I could even add an
> "ignored" flag to variables that makes it throw an exception if the code
> uses them.
>
> Would you like me to try and provide a version which uses urlretrieve?

All these ideas sound good to me, so please take a shot at it!


live well,
  vagrant


signature.asc
Description: PGP signature

Bug#861225: [Regression] Soft lockup in KVM/QEMU virtual machine

[Olav Seyfarth]

Hi Ben,

first, thanks for your patience, very much appreciated. I know how hard
debugging can be, I'm helping with Enigmail If I have time to do so.
I tried to write clearly but now see that I did not succeed:

> Based on your original report, giving a kernel log from the guest
> (which has also been upgraded), I thought you were reporting an issue
> triggered by upgrading the guest kernel. Now I think what you're
> actually reporting is that upgrading the host kernel casues guests
> to crash. Is that correct?

No. Host and guests received the (unattended) upgrade but downgrading
the _host_ (only) turned the system in a stable state. You might have
spotted "Guests still are on 3.16.43-1" in my original report and
deducted that the host seems to be the culprit. Well hidden, I agree.
Sorry for that! So maybe you want to rephrase the bug title (again).

While investigating when my guests did not start, I tried to start them
using virsh --console - and received (nothing) for some minutes. Just as
I was about to kill the terminal, there was that kernel panic messages.
So I saved them, not aware by that time that I was the host's console
messages being shown. (At least I now think that it was.)

> were reporting an issue triggered by upgrading the guest kernel

To clearify: The crash only happened upon rebooting the whole system.
Unattended upgrade installed the new kernel but did not reload it.
I rebooted due to a PHP and mySQL upgrade, to make sure new versions
being active and that THEY would come up correctly upon reboot.

> If so, can you check whether the host kernel logs anything when this
> happens, and send that?

Now, as it seems necessary what I can do (on the host) is to remove the
APT Pin, apt update and upgrade, then boot, open a terminal from my
laptop to the host (how do I make sure to get console output there?) and
start some VM guests to make the host crash. Copy the console output
from the terminal and revert all changes (re-activate pin, downgrade,
reboot, fire up guests).

Since I want to avoid having to do this multiple times, what exactly do
I need to capture?

> But I can't fix a bug if I don't understand what the bug is or how to
> reproduce it!

Thought you'd say that. I just hoped that the stuff I reported answering
your remark "you cut too much" might already have helped.

Olav



signature.asc
Description: OpenPGP digital signature

Bug#861383: grpc: Incomplete debian/copyright?

[Chris Lamb]

Hi Steinar,

> >   src/objective-c/!ProtoCompiler.podspec
> >   src/python/grpcio/commands.py
> 
> I'm trying to figure out these; what's wrong with the current
> attribution?

The files are now elsewhere so a little difficult to look into this, but
if you've checked them over please go ahead and re-upload. :)


Best wishes,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-

Bug#861414: unblock: pysurfer/0.7-2

[Yaroslav Halchenko]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package pysurfer

-2 fixes documentation issue (manpages being garbage), should be safe 
otherwise

Full diff:

diff -Nru pysurfer-0.7/debian/changelog pysurfer-0.7/debian/changelog
--- pysurfer-0.7/debian/changelog   2016-11-12 13:43:21.0 -0500
+++ pysurfer-0.7/debian/changelog   2017-03-27 17:09:17.0 -0400
@@ -1,3 +1,10 @@
+pysurfer (0.7-2) unstable; urgency=medium
+
+  * Run help2man under xvfb to avoid manpage containing just an error
+message (Closes: #858848)
+
+ -- Yaroslav Halchenko   Mon, 27 Mar 2017 17:09:17 -0400
+
 pysurfer (0.7-1) unstable; urgency=medium
 
   * Fresh upstream release
diff -Nru pysurfer-0.7/debian/control pysurfer-0.7/debian/control
--- pysurfer-0.7/debian/control 2016-11-12 13:43:21.0 -0500
+++ pysurfer-0.7/debian/control 2017-03-27 17:09:17.0 -0400
@@ -13,6 +13,7 @@
  mayavi2,
  python-matplotlib,
  ipython,
+ xvfb, xauth,
 Standards-Version: 3.9.6
 XS-Python-Version: >= 2.6
 Homepage: http://pysurfer.github.com
diff -Nru pysurfer-0.7/debian/rules pysurfer-0.7/debian/rules
--- pysurfer-0.7/debian/rules   2016-11-12 13:43:21.0 -0500
+++ pysurfer-0.7/debian/rules   2017-03-27 17:09:17.0 -0400
@@ -27,7 +27,7 @@
 #endif
 
 override_dh_installman:
-   PYTHONPATH=. help2man --version-string="$(upstreamver)" -N \
+   PYTHONPATH=. xvfb-run --auto-servernum help2man 
--version-string="$(upstreamver)" -N \
--no-discard-stderr \
-n 'visualize cortical surface reconstruction from Freesurfer' \
debian/python-surfer/usr/bin/pysurfer > build/pysurfer.1


unblock pysurfer/0.7-2

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (900, 'testing'), (600, 'unstable'), (300, 'experimental'), (100, 
'unstable-debug')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#861050: [pkg-gnupg-maint] Bug#861050: gnupg-agent: GPG_AGENT_INFO is not set according to /etc/X11/Xsession.d/90gpg-agent

[Marek Straka]

I have adapted script /etc/X11/Xsession.d/90gpg-agent to:

agent_sock=$(gpgconf --list-dirs agent-socket)
export GPG_AGENT_INFO2=${agent_sock}:0:1
if [ -n "$(gpgconf --list-options gpg-agent | \
  awk -F: '/^enable-ssh-support:/{ print $10 }')" ]; then
export SSH_AUTH_SOCK=$(gpgconf --list-dirs agent-ssh-socket)
fi

...and after Xsession starts

:~$ echo $GPG_AGENT_INFO2
/run/user/1000/gnupg/S.gpg-agent:0:1

On Wed, 26 Apr 2017 18:33:14 -0700
Daniel Kahn Gillmor  wrote:

> On Wed 2017-04-26 20:36:25 +0200, Marek Straka wrote:
> >> how does your start X11?  do you have a display manager? if so, which
> >> one?  do you log in from the text-mode console?  
> >
> > I am starting Xfce4 desktop with Lightdm display manager. I tried also
> > to disable Lightdm and start Xsession only with startx command, but
> > variable GPG_AGENT_INFO was also not set.  
> 
> interesting.  What else do you have in /etc/X11/Xsession.d/ ?  are any
> of those scripts being executed?
> 
>--dkg

Bug#861383: grpc: Incomplete debian/copyright?

[Steinar H. Gunderson]

On Fri, Apr 28, 2017 at 09:04:57AM +0100, Chris Lamb wrote:
>   src/objective-c/!ProtoCompiler.podspec
>   src/python/grpcio/commands.py

I'm trying to figure out these; what's wrong with the current attribution?
It looks like copyright holder is right (and largely the year, too), and the
license appears to be the same.

/* Steinar */
-- 
Homepage: https://www.sesse.net/

Bug#861413: gnome-control-center: does not update when modify the command in keyboard setting

[Santi Moreno]

Package: gnome-control-center
Version: 1:3.22.2-1
Severity: normal

Dear Maintainer,

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?
When I modify the command in bind does not update.
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
I removed the bind and create another time and it worked.
   * What was the outcome of this action?
   * What outcome did you expect instead?

*** End of the template - remove these template lines ***



-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64
 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=es_ES.UTF-8, LC_CTYPE=es_ES.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages gnome-control-center depends on:
ii  accountsservice0.6.43-1
ii  apg2.2.3.dfsg.1-4+b1
ii  colord 1.3.3-2
ii  desktop-file-utils 0.23-1
ii  gnome-control-center-data  1:3.22.2-1
ii  gnome-desktop3-data3.22.2-1
ii  gnome-settings-daemon  3.22.2-1
ii  gsettings-desktop-schemas  3.22.0-1
ii  libaccountsservice00.6.43-1
ii  libatk1.0-02.22.0-1
ii  libc6  2.24-10
ii  libcairo-gobject2  1.14.8-1
ii  libcairo2  1.14.8-1
ii  libcanberra-gtk3-0 0.30-3
ii  libcanberra0   0.30-3
ii  libcheese-gtk253.22.1-1+b1
ii  libcheese8 3.22.1-1+b1
ii  libclutter-1.0-0   1.26.0+dfsg-3
ii  libclutter-gtk-1.0-0   1.8.2-2
ii  libcolord-gtk1 0.1.26-1.1
ii  libcolord2 1.3.3-2
ii  libcups2   2.2.1-8
ii  libfontconfig1 2.11.0-6.7+b1
ii  libgdk-pixbuf2.0-0 2.36.5-2
ii  libglib2.0-0   2.50.3-2
ii  libgnome-bluetooth13   3.20.1-1
ii  libgnome-desktop-3-12  3.22.2-1
ii  libgoa-1.0-0b  3.22.5-1
ii  libgoa-backend-1.0-1   3.22.5-1
ii  libgrilo-0.3-0 0.3.2-2
ii  libgtk-3-0 3.22.11-1
ii  libgtop-2.0-10 2.34.2-1
ii  libgudev-1.0-0 230-3
ii  libibus-1.0-5  1.5.14-2
ii  libkrb5-3  1.15-1
ii  libmm-glib01.6.4-1
ii  libnm0 1.6.2-3
ii  libnma01.4.4-1
ii  libpango-1.0-0 1.40.4-1
ii  libpangocairo-1.0-01.40.4-1
ii  libpolkit-gobject-1-0  0.105-17
ii  libpulse-mainloop-glib010.0-1
ii  libpulse0  10.0-1
ii  libpwquality1  1.3.0-1+b1
ii  libsmbclient   2:4.5.8+dfsg-1
ii  libsoup2.4-1   2.56.0-2
ii  libupower-glib30.99.4-4+b1
ii  libwacom2  0.22-1+b1
ii  libx11-6   2:1.6.4-3
ii  libxi6 2:1.7.9-1
ii  libxml22.9.4+dfsg1-2.2

Versions of packages gnome-control-center recommends:
ii  cracklib-runtime  2.9.2-4
ii  cups-pk-helper0.2.6-1+b1
ii  gkbd-capplet  3.22.0.1-1+b1
ii  gnome-online-accounts 3.22.5-1
ii  gnome-user-guide  3.22.0-1
ii  gnome-user-share  3.18.3-1+b1
ii  iso-codes 3.74-1
ii  libcanberra-pulse 0.30-3
ii  libnss-myhostname 232-22
ii  mousetweaks   3.12.0-1+b1
ii  network-manager-gnome 1.4.4-1
ii  policykit-1   0.105-17
ii  pulseaudio-module-bluetooth   10.0-1
ii  realmd0.16.3-1
ii  rygel 0.32.1-3
ii  rygel-tracker 0.32.1-3
ii  system-config-printer-common  1.5.7-3

Versions of packages gnome-control-center suggests:
ii  gstreamer1.0-pulseaudio  1.10.4-1
ii  libcanberra-gtk-module   0.30-3
ii  libcanberra-gtk3-module  0.30-3
ii  x11-xserver-utils7.7+7+b1

-- no debconf information

Bug#860714: general: disk became full after running a perl program

[Gunnar Wolf]

The bug submitter followed up by private mail to me only; I'm cc:ing
the bug report before closing it to provide a reasoned follow-up.

- Forwarded message from Luis Duarte  -

Date: Sat, 22 Apr 2017 16:36:29 +0100
From: Luis Duarte 
To: Gunnar Wolf 
Subject: Re: Bug#860714: general: disk became full after running a perl program
Message-ID: <9115278b-70fc-03fd-f7ff-0b56012c2...@sapo.pt>
References: <20170419084010.1659.21073.reportbug@batelatas> 
<20170419235152.ga1...@gwolf.org>
X-Spam-Level: 
X-Spam-Status: No, score=-1.1 required=5.0 tests=BAYES_00,FREEMAIL_FROM, 
SPF_NEUTRAL autolearn=no autolearn_force=no version=3.4.0

Hi Wolf
Thank you for replying and for being helpful.
I wrote a batch of perl programs to deal with the emails returned to me.
Everyday I send emails marketing a book I had written. The perl program I sent
to you in attachment do the parsing of the files related to the emails
returned to me. The emails are previously saved  in a directory. The perl
program analyses the return codes of emails, and accordingly, the email
addresses are written in different files (a file with the email addresses
considered spam; a file with email addresses considered unknown; a file with
new email addresses, etc). The program also analyses the returning emails like
"out of office". After that, another perl program includes the treated email
addresses in a small (kind of) data base.

Let's go to the reported bug. As I told you, I use the last release of debian
Jessie, with Xfce. Previously, the perl programs were executable ones.
Sometimes, in the file manager Thunar 1.6.3 I click two times in a perl
program (executable) in order to open it with the gedit text editor, but
instead to open it, I mistakenly  execute it. It happens that the
xfce4-terminal (0.6.3) don't open to show the output. Due to these actions, I
think the disk became full several times, creating a lot of trouble.

Since I marked the perl files as not executable, when I click two times on a
perl file, it opens automatically gedit text editor, presenting the respective
perl file. This way, the double click do not start the execution of the
program. When I intend to run the perl program (file), I open a
xfce4-terminal, and write: perl name_of_perl_program. Since then I had any
problem.

In Wheezy I got disk full a lot of times. In Jessie, it happen to me one time.
I managed to free some disk, I restarted the computer, and I got 30% of disk
usage instead of 100%. I think Jessie managed to recover nicely from this kind
of error. On the contrary, Wheezy was a mess.

Soon I will do some experimentation about this bug in a separate disk. I am
not sure that the problem resides in the operating system, or in Xfce, or in
my programs. I am not a perfect programmer.

My best wishes
Luis Duarte


- End forwarded message -

Bug#861412: RFP: run-over-ssh -- run command or script over ssh in host(s)

[Yuri Escalianti]

Package: wnpp
Severity: wishlist

Version : 1.0.0
Upstream Author : Yuri E. 
URL : https://github.com/yuriescl/run-over-ssh
License : GPL

This is a single Bash script that runs a Bash command or script over ssh in
one or more hosts.