Bug#883147: bittornado: Please port to Python3
Package: src:bittornado Version: 0.3.18-10.3 User: debian-pyt...@lists.debian.org Usertags: py2-removal Please port to Python3.
Bug#868900: iso-scan: should be able to copy the ISO into RAM before mount
Hi, On Wed, 29 Nov 2017, Miguel Figueiredo wrote: > > Let me know if there's anything to improve before it's ready to be merged > > (notably on the debconf template, etc.). > > [...] > > Installation guide update ? Done: https://anonscm.debian.org/viewvc/d-i?view=revision&revision=70938 Cheers, -- Raphaël Hertzog ◈ Debian Developer Support Debian LTS: https://www.freexian.com/services/debian-lts.html Learn to master Debian: https://debian-handbook.info/get/
Bug#883146: bzr: please port to Python3
Package: src:bzr Version: 2.7.0+bzr6622-9 User: debian-pyt...@lists.debian.org Usertags: py2-removal Please port bzr to Python3
Bug#883145: etckeeper: needs port to Python3
Package: src:etckeeper Version: 5.112-1 User: debian-pyt...@lists.debian.org Usertags: py2-removal Please port the package to Python3.
Bug#883144: Please depend on Python3 instead of Python2
Package: src:byobu Version: 5.112-1 User: debian-pyt...@lists.debian.org Usertags: py2-removal Please depend on Python3 instead of Python2. The package is Python3 compatible.
Bug#883143: ejabberd: mod_http_upload fails with permission denied
Hi, I bet you that is because AppArmor has recently been enabled by default for unstable/testing. Please check dmesg and either adjust ejabberdctl's AppArmor profile to your needs or set it to unconfined/complain. The next package upload will set the profile to complain by default. If it's not AppArmor, it's probably one of the settings in the systemd unit file, although I'm not aware of any recent changes in there. Regards, -- .''`. Philipp Huebner : :' : pgp fp: 6719 25C5 B8CD E74A 5225 3DF9 E5CA 8C49 25E4 205F `. `'` `- signature.asc Description: OpenPGP digital signature
Bug#874295: Not a bug
Thomas Pierson writes: > Clementine does not require or depend on a external software to run > properly. So for me the policy 2.2.1 is respected. I agree that, as described, Clementine's normal function as a general-purpose music player is available without any non-free music services. So this does not infringe Policy §2.2.1. > It's only if a user want to connect to a particular external service > that a plugin file is downloaded and used. That is still a problem, IMO. It would be best if the program did not do that, and instead prompted the user to install the non-free package providing that plug-in. > But it's the same case for many software like web browser which > download and run proprietary javascripts without any warning. (Yes, I think a web browser should not download and execute arbitrary JavaScript either. That one problem remains unaddressed is not a justification for the same problem elsewhere.) > So unless someone point me a clear justification I will close this bug > as invalid for now. I agree that, despite the problems remarked on of downloading and executing unpackaged code to execute on the user's computer, this is not a dependency for the program performing its normal function. So this does not appear to be a Policy §2.2.1 violation. -- \ “If we could change ourselves, the tendencies in the world | `\ would also change.” —Mohandas K. Gandhi, _Collected Works_, 1913 | _o__) | Ben Finney
Bug#883143: ejabberd: mod_http_upload fails with permission denied
Package: ejabberd Version: 17.08-3 Severity: normal My ejabberd server has been running successfully with mod_http_upload without issue for some time. Yesterday, after performing a reboot of the server, sending images failed. /var/log/ejabberd/error.log shows the following entry when an attempt is made to upload an image: 2017-11-29 23:02:25.498 [error] <0.509.0>@mod_http_upload:process:371 Cannot store file /var/www/ejabberd/file_upload/b706e1f6bfeeeb3ec03fb853c495ed10de004e5d/ nCs5LyydsHSYAaIlo71MHii36OZcRBj7N2WbmqD6/ClkSaG0aRdCwn3gE3_RBrg.gif from 192.168.10.100 for ejabberd.stoutner.com: "permission denied" The file permissions for /var/www/ejabberd and subfolders are 750 with ejabberd as the user and group. This configuration has always worked previously. When running as the ejabberd user I can successfully navigate to these folders and create files. Also, most interestingly, when the file permissions of /var/www/ejabberd and subfolders are changed to 777, it still fails with the "permission denied" error. On November 22 I upgraded to the latest packages in Debian testing, which included several Erlang packages. It is possible that one of those updates only took effect on November 28 when the server was rebooted. Other than that, I can't think of any changes that have occurred with the server that would explain the sudden appearance of this error after the reboot. -- System Information: Debian Release: buster/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 4.13.0-1-amd64 (SMP w/6 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE= (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages ejabberd depends on: ii adduser3.116 ii debconf [debconf-2.0] 1.5.65 ii erlang-asn11:20.1.6+dfsg-1 ii erlang-base [erlang-abi-17.0] 1:20.1.6+dfsg-1 ii erlang-crypto 1:20.1.6+dfsg-1 ii erlang-inets 1:20.1.6+dfsg-1 ii erlang-jiffy 0.14.11+dfsg-2 ii erlang-lager 3.5.2-1 ii erlang-mnesia 1:20.1.6+dfsg-1 ii erlang-odbc1:20.1.6+dfsg-1 ii erlang-p1-cache-tab1.0.10-1 ii erlang-p1-iconv1.0.5-1 ii erlang-p1-stringprep 1.0.9-1 ii erlang-p1-tls 1.0.15-1 ii erlang-p1-utils1.0.9-1 ii erlang-p1-xml 1.1.23-1 ii erlang-p1-xmpp 1.1.14-2 ii erlang-p1-yaml 1.0.10-1 ii erlang-p1-zlib 1.0.2-1 ii erlang-public-key 1:20.1.6+dfsg-1 ii erlang-ssl 1:20.1.6+dfsg-1 ii erlang-syntax-tools1:20.1.6+dfsg-1 ii erlang-xmerl 1:20.1.6+dfsg-1 ii init-system-helpers1.51 ii lsb-base 9.20170808 ii openssl1.1.0g-2 ii ucf3.0036 ejabberd recommends no packages. Versions of packages ejabberd suggests: ii apparmor 2.11.1-3 pn apparmor-utils pn ejabberd-contrib pn erlang-luerl ii erlang-p1-mysql 1.0.3-1 pn erlang-p1-oauth2 pn erlang-p1-pam pn erlang-p1-pgsql pn erlang-p1-sip pn erlang-p1-sqlite3 pn erlang-p1-stun pn erlang-redis-client ii imagemagick 8:6.9.7.4+dfsg-16 ii imagemagick-6.q16 [imagemagick] 8:6.9.7.4+dfsg-16 pn libunix-syslog-perl pn yamllint
Bug#883098: RFS: libreoffice-texmaths/0.43-1 [ITP]
Hello Rene,
On Wed, 2017-11-29 at 19:20 +0100, Rene Engelhard wrote:
> On Wed, Nov 29, 2017 at 11:05:43AM -0600, kkremit...@gmail.com wrote:
> > * Package name: libreoffice-texmaths
> > Version : 0.43-1
> > Upstream Author : Roland Baudin
> > * URL : htthttp://roland65.free.fr/texmaths/
> > * License : GPL2
> > Section : tex
> >
> > It builds those binary packages:
> >
> > libreoffice-texmaths - TexMaths is a LaTeX equation editor for
> > LibreOffice
>
> Looks good basically. What I saw, though is:
>
> Depends: libreoffice-common, libreoffice-core (>= 3.3.0~),
> libreoffice-writer, texlive, dvipng, ${misc:Depends}
>
> - common and -core are superfluous (writer would depend on them
> anyway)
> and 3.3.0 is there since the beginning. Even wheezy has 3.5.4
> - README says
> " - LibreOffice Draw (version 4 or later)
> "
> so you probably want to a) add -draw b) make it >= 4.0 :-)
>
> Regards,
>
> Rene
Thanks for the feedback. I tested the dependencies some more and
uploaded libreoffice-texmaths-0.43-2 with the changes. To summarize:
Depends: libreoffice-draw (>= 4.0), texlive, ${misc:Depends}
Enhances: libreoffice-writer, libreoffice-impress, libreoffice-draw
Bug#883142: hyperscan: [INTL:ru] Russian translation of debconf template
Package: hyperscan Severity: wishlist Tags: l10n patch Dear Maintainer, please find attached the Russian debconf translation for hyperscan. Regards, Lev Lamberov -- System Information: Debian Release: buster/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=ru_RU.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8), LANGUAGE=ru_RU.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) # SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the hyperscan package. # FIRST AUTHOR , YEAR. # msgid "" msgstr "" "Project-Id-Version: hyperscan\n" "Report-Msgid-Bugs-To: hypers...@packages.debian.org\n" "POT-Creation-Date: 2016-07-26 23:46+0200\n" "PO-Revision-Date: 2017-11-30 11:34+0500\n" "Language-Team: \n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Poedit 2.0.4\n" "Last-Translator: Lev Lamberov \n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" "Language: ru\n" #. Type: boolean #. Description #: ../libhyperscan4.templates:1001 msgid "Really install package?" msgstr "Действительно установить этот пакет?" #. Type: boolean #. Description #: ../libhyperscan4.templates:1001 msgid "" "This CPU lacks support for the Supplemental Streaming SIMD Extensions 3 " "(SSSE3) instruction set that is required to execute programs linked against " "hyperscan." msgstr "" "У данного ЦП отсутствует поддержки набора инструкций Supplemental Streaming " "SIMD Extensions 3 (SSSE3), который требуется для выполнения программ, " "скомпонованных с hyperscan."
Bug#883141: openvas-scanner: [INTL:ru] Russian translation of debconf template
Package: openvas-scanner Severity: wishlist Tags: l10n patch Dear Maintainer, please find attached the Russian debconf translation for openvas-scanner. Regards, Lev Lamberov -- System Information: Debian Release: buster/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=ru_RU.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8), LANGUAGE=ru_RU.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages openvas-scanner depends on: ii debconf [debconf-2.0] 1.5.65 ii init-system-helpers1.51 ii libc6 2.25-2 ii libgcrypt201.8.1-4 ii libglib2.0-0 2.54.1-1 pn libopenvas9 ii lsb-base 9.20170808 ii openssl1.1.0g-2 pn redis-server Versions of packages openvas-scanner recommends: pn nmap pn rsync Versions of packages openvas-scanner suggests: pn ike-scan pn openvas-client pn pnscan pn snmp pn strobe # SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the openvas-scanner package. # FIRST AUTHOR , YEAR. # msgid "" msgstr "" "Project-Id-Version: openvas-scanner\n" "Report-Msgid-Bugs-To: openvas-scan...@packages.debian.org\n" "POT-Creation-Date: 2016-09-14 17:49+0800\n" "PO-Revision-Date: 2017-11-30 11:30+0500\n" "Language-Team: \n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Poedit 2.0.4\n" "Last-Translator: Lev Lamberov \n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" "Language: ru\n" #. Type: boolean #. Description #: ../templates:1001 msgid "Do you want to enable redis unix socket on /var/run/redis/redis.sock?" msgstr "Включить unix-сокет redis в /var/run/redis/redis.sock?" #. Type: boolean #. Description #: ../templates:1001 msgid "" "Openvas scanner require redis database to store data. It will connect to the " "database with a unix socket at /var/run/redis/redis.sock and /etc/redis/" "redis.conf will be updated." msgstr "" "Сканеру openvas для хранения данных требуется база данных redis. Сканер " "подключится к базе данных, используя unix-сокет в /var/run/redis/redis.sock, " "также будет обновлён файл /etc/redis/redis.conf."
Bug#883140: refind: [INTL:ru] Russian translation of debconf template
Package: refind
Severity: wishlist
Tags: l10n patch
Dear Maintainer,
please find attached the Russian debconf translation for refind.
Regards,
Lev Lamberov
-- System Information:
Debian Release: buster/sid
APT prefers testing
APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=ru_RU.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8),
LANGUAGE=ru_RU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages refind depends on:
ii debconf [debconf-2.0] 1.5.65
ii efibootmgr 15-1
ii openssl1.1.0g-2
pn parted
Versions of packages refind recommends:
ii python3 3.6.3-2
pn sbsigntool
refind suggests no packages.
# SOME DESCRIPTIVE TITLE.
# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER
# This file is distributed under the same license as the PACKAGE package.
# FIRST AUTHOR , YEAR.
#
msgid ""
msgstr ""
"Project-Id-Version: refind\n"
"Report-Msgid-Bugs-To: ref...@packages.debian.org\n"
"POT-Creation-Date: 2015-12-12 18:35-0500\n"
"PO-Revision-Date: 2017-11-30 11:21+0500\n"
"Language-Team: \n"
"MIME-Version: 1.0\n"
"Content-Type: text/plain; charset=UTF-8\n"
"Content-Transfer-Encoding: 8bit\n"
"X-Generator: Poedit 2.0.4\n"
"Last-Translator: Lev Lamberov \n"
"Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n"
"%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n"
"Language: ru\n"
#. Type: boolean
#. Description
#: ../templates:1001
msgid "Automatically install rEFInd to the ESP?"
msgstr "Автоматически установить rEFInd в ESP?"
#. Type: boolean
#. Description
#: ../templates:1001
msgid ""
"It is necessary to install rEFInd to the EFI System Partition (ESP) for it "
"to control the boot process."
msgstr ""
"Для управления процессом загрузки требуется установить rEFInd в системный "
"раздел EFI (ESP)."
#. Type: boolean
#. Description
#: ../templates:1001
msgid ""
"Not installing the new rEFInd binary on the ESP may leave the system in an "
"unbootable state. Alternatives to automatically installing rEFInd include "
"running /usr/sbin/refind-install by hand or installing the rEFInd binaries "
"manually by copying them from subdirectories of /usr/share/refind-{version}."
msgstr ""
"Если новые двоичные файлы rEFInd не будут установлены в раздел ESP, то это "
"может привести к невозможности загрузить систему. В качестве альтернатив "
"установке rEFInd можно вручную запустить /usr/sbin/refind-install или "
"установить двоичные файлы rEFInd самостоятельно путём их копирования из "
"подкаталогов /usr/share/refind-{версия}."
Bug#865537: stretch-pu: plasma 5.8.7 LTS pre-approval
2017-11-30 7:08 GMT+01:00 Adam D. Barratt : > On Thu, 2017-11-30 at 06:29 +0100, Julien Aubin wrote: > > It turns out that the mix of 5.8.6 and 5.8.7 plasma parts leads to > > some extremely annoying issues, at least for me. The most noticeable > > are : > > - Massive memory leak in ksmserver (bug #881015) > > - From time to time the system does not detect my soundcard anymore. > > > > These issues did not appear prior to Debian 9.2 release so I strongly > > suspect that the mix of 5.8.6 and 5.8.7 libs triggered the issues. > > There were no 5.8.7 packages included in 9.2 so far as I can see. Which > related packages do you believe were updated? > > Regards, > > Adam > Okay my bad. In that case the mem leak must be related to some other component, cannot isolate it. My findings in the dedicated bug report about ksmserver. This bug seems anyway hard to debug, and maybe 5.8.7 contains a fix for this.
Bug#851414: debian-faq: Adapt build for UTF-8 in french translation
tag 851414 +pending thanks Bonjour Baptiste, On Thu, Jan 19, 2017 at 06:37:17PM +0100, Baptiste Jammet wrote: > Hello, > > >The fr/Makefile and po4a/po4a.cfg assume french is ISO-8859-15. > >Now that we have switched to UTF-8, if we want to use non-ascii > >characters in the po-file, the Makefile must be adapted. > > > >Here is a patch doing so, inspired from other languages, lightly > >tested. (I could commit, as I have write access in ddp svn, but I > >prefer ask in this bugreport before doing anything.) > > For completeness, the 2 files in po4a/add_fr should be converted to > UTF-8 too. > Here is an updated patch doing so. Applied, merci beaucoup! Now lets investigate the FTBFS-bug again... Salut, Joost
Bug#883139: makedumpfile: [INTL:ru] Russian translation of debconf template
Package: makedumpfile Severity: wishlist Tags: l10n patch Dear Maintainer, please find attached the Russian debconf translation for makedumpfile. Regards, Lev Lamberov -- System Information: Debian Release: buster/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=ru_RU.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8), LANGUAGE=ru_RU.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages makedumpfile depends on: ii libbz2-1.0 1.0.6-8.1 ii libc6 2.25-2 ii libdw1 0.170-0.1 ii libelf1 0.170-0.1 ii liblzo2-2 2.08-1.2+b2 ii perl5.26.1-2 ii zlib1g 1:1.2.8.dfsg-5 Versions of packages makedumpfile recommends: pn crash pn kexec-tools makedumpfile suggests no packages. # SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the makedumpfile package. # FIRST AUTHOR , YEAR. # msgid "" msgstr "" "Project-Id-Version: makedumpfile\n" "Report-Msgid-Bugs-To: makedumpf...@packages.debian.org\n" "POT-Creation-Date: 2016-06-10 12:46+0200\n" "PO-Revision-Date: 2017-11-30 00:39+0500\n" "Language-Team: \n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Poedit 2.0.4\n" "Last-Translator: Lev Lamberov \n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" "Language: ru\n" #. Type: boolean #. Description #: ../kdump-tools.templates:1001 msgid "Should kdump-tools be enabled by default?" msgstr "Следует ли включить kdump-tools по умолчанию?" #. Type: boolean #. Description #: ../kdump-tools.templates:1001 msgid "" "If you choose this option, the kdump-tools mechanism will be enabled. A " "reboot is still required in order to enable the crashkernel kernel parameter." msgstr "" "Если вы выберите эту опцию, то механизм kdump-tools будет включён. Чтобы " "включить параметр ядра crashkernel, требуется перезагрузка."
Bug#865537: stretch-pu: plasma 5.8.7 LTS pre-approval
On Thu, 2017-11-30 at 06:29 +0100, Julien Aubin wrote: > It turns out that the mix of 5.8.6 and 5.8.7 plasma parts leads to > some extremely annoying issues, at least for me. The most noticeable > are : > - Massive memory leak in ksmserver (bug #881015) > - From time to time the system does not detect my soundcard anymore. > > These issues did not appear prior to Debian 9.2 release so I strongly > suspect that the mix of 5.8.6 and 5.8.7 libs triggered the issues. There were no 5.8.7 packages included in 9.2 so far as I can see. Which related packages do you believe were updated? Regards, Adam
Bug#871105: debian-faq: FTBFS: Addendum po4a/add_fr/commentaires.add does NOT apply to fr/debian-faq.sgml (translation discarded).
Yes, this is indeed buggy. I'll work on it. More details below. On Thu, Nov 30, 2017 at 06:43:03AM +0100, Joost van Baal-Ilić wrote: > On Sun, Aug 06, 2017 at 05:46:58PM -0400, Lucas Nussbaum wrote: > > > > During a rebuild of all packages in sid, your package failed to build on > > amd64. > > > > Relevant part (hopefully): > > > make[1]: Entering directory '/<>' > > > echo "" > faqdynamic.ent > > > if [ -f debian/changelog ]; then \ > > > echo " > > grep '^Version: ' | sed 's/^Version: *//'`\">" >> faqdynamic.ent; \ > > > else \ > > > echo "" >> faqdynamic.ent; \ > > > fi > > > PERL_PERTURB_KEYS=0 PERL_HASH_SEED=0 po4a --keep 0 --previous > > > --rm-backups po4a/po4a.cfg # --localized-charset UTF-8 > > > Negative repeat count does nothing at > > > /usr/share/perl5/Locale/Po4a/Sgml.pm line 1103, line 8143. > > > Negative repeat count does nothing at > > > /usr/share/perl5/Locale/Po4a/Sgml.pm line 1103, line 8143. > > > No candidate position for the addendum po4a/add_fr/commentaires.add. > > > Addendum po4a/add_fr/commentaires.add does NOT apply to > > > fr/debian-faq.sgml (translation discarded). > > > Makefile:53: recipe for target 'po4a-translate' failed > > > make[1]: *** [po4a-translate] Error 255 > > > > The full build log is available from: > >http://aws-logs.debian.net/2017/08/05/debian-faq_8.1_unstable.log > > > > A list of current common problems and possible solutions is available at > > http://wiki.debian.org/qa.debian.org/FTBFS . You're welcome to contribute! > > > > About the archive rebuild: The rebuild was done on EC2 VM instances from > > Amazon Web Services, using a clean, minimal and up-to-date chroot. Every > > failed build was retried once to eliminate random failures. > > > > Thanks a lot for this rebuilding effort! > > FWIW: On a Debian GNU/Linux 9.1 (stretch) system running 'make pdf langs="fr"' > from current debian-faq svn works just fine. > > Will investigate more soonish. And on today's Debian sid I can manually build just fine. Just generated a fine fr/debian-faq.pdf . However, running touch faqdynamic.ent make po4a-translate indeed shows PERL_PERTURB_KEYS=0 PERL_HASH_SEED=0 po4a --keep 0 --previous --rm-backups po4a/po4a.cfg # --localized-charset UTF-8 Negative repeat count does nothing at /usr/share/perl5/Locale/Po4a/Sgml.pm line 1106, line 8222. No candidate position for the addendum po4a/add_fr/commentaires.add. Addendum po4a/add_fr/commentaires.add does NOT apply to fr/debian-faq.sgml (translation discarded). Makefile:53: recipe for target 'po4a-translate' failed make: *** [po4a-translate] Error 255 . (And running 'make' afterwards just happily completes (!).) So our Makefile is buggy, too. I did not build the complete .deb yet; it could be some needed build dependency is missing too... Bye, Joost
Bug#883138: Adding my DE
My DE is Gnome 3.22.2
Bug#871105: debian-faq: FTBFS: Addendum po4a/add_fr/commentaires.add does NOT apply to fr/debian-faq.sgml (translation discarded).
Hi, On Sun, Aug 06, 2017 at 05:46:58PM -0400, Lucas Nussbaum wrote: > > During a rebuild of all packages in sid, your package failed to build on > amd64. > > Relevant part (hopefully): > > make[1]: Entering directory '/<>' > > echo "" > faqdynamic.ent > > if [ -f debian/changelog ]; then \ > > echo " > '^Version: ' | sed 's/^Version: *//'`\">" >> faqdynamic.ent; \ > > else \ > > echo "" >> faqdynamic.ent; \ > > fi > > PERL_PERTURB_KEYS=0 PERL_HASH_SEED=0 po4a --keep 0 --previous --rm-backups > > po4a/po4a.cfg # --localized-charset UTF-8 > > Negative repeat count does nothing at /usr/share/perl5/Locale/Po4a/Sgml.pm > > line 1103, line 8143. > > Negative repeat count does nothing at /usr/share/perl5/Locale/Po4a/Sgml.pm > > line 1103, line 8143. > > No candidate position for the addendum po4a/add_fr/commentaires.add. > > Addendum po4a/add_fr/commentaires.add does NOT apply to fr/debian-faq.sgml > > (translation discarded). > > Makefile:53: recipe for target 'po4a-translate' failed > > make[1]: *** [po4a-translate] Error 255 > > The full build log is available from: >http://aws-logs.debian.net/2017/08/05/debian-faq_8.1_unstable.log > > A list of current common problems and possible solutions is available at > http://wiki.debian.org/qa.debian.org/FTBFS . You're welcome to contribute! > > About the archive rebuild: The rebuild was done on EC2 VM instances from > Amazon Web Services, using a clean, minimal and up-to-date chroot. Every > failed build was retried once to eliminate random failures. > Thanks a lot for this rebuilding effort! FWIW: On a Debian GNU/Linux 9.1 (stretch) system running 'make pdf langs="fr"' from current debian-faq svn works just fine. Will investigate more soonish. Bye, Joost signature.asc Description: Digital signature
Bug#883138: fceux.desktop file causing huge logs in /var/log
Package: fceux Version: 2.2.2+dfsg0-1+b2 Severity: normal Dear Maintainer, Hello, I installed FCEUX from the Debian Stretch repositories and soon after it started filling up my "messages", "syslog", and "user.log" logs files in /var/log. I noticed this evening that I was low on disk space and those three files were taking up over 200GB of space. I used the tail command on those three files and noticed that it was filled with errors about trying to parse the fceux.desktop file in /usr/share/applications. I managed to fix it by opening the fceux.desktop file and deleting everything below the "Actions=Fullscreen;DefaultConfig;" line. Once I did that, everything seems fine now. Thank you -- System Information: Debian Release: 9.2 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.9.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages fceux depends on: ii libc6 2.24-11+deb9u1 ii libgcc1 1:6.3.0-18 ii libgd32.2.4-2+deb9u2 ii libgdk-pixbuf2.0-02.36.5-2+deb9u1 ii libgl1-mesa-glx [libgl1] 13.0.6-1+b2 ii libglib2.0-0 2.50.3-2 ii libgtk2.0-0 2.24.31-2 ii liblua5.1-0 5.1.5-8.1+b2 ii libsdl1.2debian 1.2.15+dfsg1-4 ii libstdc++66.3.0-18 ii libx11-6 2:1.6.4-3 ii zlib1g1:1.2.8.dfsg-5 fceux recommends no packages. Versions of packages fceux suggests: pn efp -- no debconf information
Bug#883089: udev: on alpha architecture, /dev/disk/by-XXX nodes not created
On Wed, Nov 29, 2017 at 05:12:58PM +0100, Michael Biebl wrote: > Please check all other kernel config options as well that are listed in > /usr/share/doc/systemd/README.gz A few of the listed config options do not exist, at least in 4.14: CONFIG_DMIID CONFIG_DEVPTS_MULTIPLE_INSTANCES There were a few namespace and crypto config settings that were configured as modules rather than built-in, so I fixed those and am in the process of rebuilding the 4.14 kernel. > Please test the kernel that is provided by Debian and report back if it > works with that one. The Debian-supplied kernels for alpha have been problematic in the past, to the point I've been building my own from the mainline kernel.org source tree for several years now. On a possibly related note, three years ago bug #652459 was opened because systemd and udev failed to work properly with "/usr" being a separate partition from "/". Has anything happened with systemd and/or initramfs development that broke the resolution of that bug? Thanks for the assist! I *do* appreciate your time and trouble. --Bob
Bug#883102: kwrite: Update to "unstable: 4:17.08.3-1" fails with error
Followup-For: Bug #883102 I can reproduce this problem with the following language packages in sid: kde-l10n-ca=4:16.04.3-5 kde-l10n-de=4:16.04.3-5 kde-l10n-it=4:16.04.3-5 kde-l10n-nl=4:16.04.3-5 kde-l10n-ptbr=4:16.04.3-5 kde-l10n-sv=4:16.04.3-5 kde-l10n-uk=4:16.04.3-5 Andreas
Bug#865537: stretch-pu: plasma 5.8.7 LTS pre-approval
On Sat, 15 Jul 2017 21:23:58 +0100 Ian Jackson <
ijack...@chiark.greenend.org.uk> wrote:
> (resending with right list address)
>
> Maximiliano Curia writes ("stretch-pu: plasma 5.8.7 LTS pre-approval"):
> > The source packages that I would like to update in stretch are:
>
> Thanks. I am not a RM but I am trying to help out by providing review
> comments. I have reviewed this request.
>
> tl;dr: Most of them are very good. Two are questionable:
>plasma-workspace
>plasma-desktop
>
> One caveat for all the packages: they all had big translation updates.
> I ignored these. I assume these are fine for stretch-pu.
>
>
> In each case I have been relying on the accuracy not only of the
> provided debdiff but the provided "packaging" diff and upstream
> git log. I found the latter particularly helpful - thank you!
>
> Overall I would like to say that I am impressed with the associated
> documentation, and what I saw of upstream relase processes. With the
> two exceptions I mention above, I was convinced by the thoroughness of
> the approach upstream. Even when I didn't understand the code
> etc. myself, upstream seemed to be making decisions on the right basis
> and with good review.
>
> > bluedevil/4:5.8.7-1+deb9u1
> > breeze-gtk/5.8.7-1+deb9u1
> > kde-cli-tools/4:5.8.7-1+deb9u1
> > kscreenlocker/5.8.7-1+deb9u1
> > plasma-pa/4:5.8.7-1+deb9u1
> > user-manager/4:5.8.7-1+deb9u1
> > kwin/4:5.8.7-1+deb9u1
> > libksysguard/4:5.8.7-1+deb9u1
> > systemsettings/4:5.8.7-1+deb9u1
>
> These LGTM. I did notice a few things that are IMO not of concern:
>
> The urls
>
>
https://gnuservers.com.ar/~maxy/debian/plasma_5.8.7_stretch-pu/kscreenlocker_5.8.4_5.8.7.upstream.gitlog
>
https://gnuservers.com.ar/~maxy/debian/plasma_5.8.7_stretch-pu/systemsettigns_5.8.4_5.8.7.upstream.gitlog
>
> referred to in the bug report are 404. The urls are wrong and should
> be
>
>
https://gnuservers.com.ar/~maxy/debian/plasma_5.8.7_stretch-pu/libksysguard_5.8.4_5.8.7.upstream.gitlog
>
https://gnuservers.com.ar/~maxy/debian/plasma_5.8.7_stretch-pu/systemsettings_5.8.4_5.8.7.upstream.gitlog
>
> Do you generate these requests by hand ?!
>
> Secondly, this in the changelog entry for libksysguard 4:5.8.7-1 is
> rather odd:
> | * Add new patch: Drop-html-markup-from-polkit-action-file.patch.
> | Thanks to Michael Biebl for reporting (Closes: 696905)
> ...
> | * Drop upstream applied patch:
Drop-html-markup-from-polkit-action-file.patch
> and it confused me briefly.
>
Hi,
It turns out that the mix of 5.8.6 and 5.8.7 plasma parts leads to some
extremely annoying issues, at least for me. The most noticeable are :
- Massive memory leak in ksmserver (bug #881015)
- From time to time the system does not detect my soundcard anymore.
These issues did not appear prior to Debian 9.2 release so I strongly
suspect that the mix of 5.8.6 and 5.8.7 libs triggered the issues.
For the latter one I must stress that my GPU is detected as a soundcard as
well, which is a normal behaviour. (NVidia GPU w/ 375.82 blob)
Restarting KDE fixes the issues, but for the issue with ksmserver you have
to kill ksmserver manually, and then run kill -9 -1 as the component
becomes unresponsive when it stats leaking memory.
So could you please make a full transition to 5.8.7 ?
Thanks a lot !
Bug#883137: backblaze-b2: /usr/bin/b2 already provided by libboost1.XX-tools-dev
Package: backblaze-b2 Version: 1.0.0-1 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Hi, during a test with piuparts I noticed your package failed to install because it tries to overwrite other packages files. Since I expect these two binaries to be unrelated, using Breaks+Replaces or Conflicts would be an *incorrect* solution. The new package will have to rename its binary to avoid this conflict. >From the attached log (scroll to the bottom...): Selecting previously unselected package backblaze-b2. Preparing to unpack .../16-backblaze-b2_1.0.0-1_all.deb ... Unpacking backblaze-b2 (1.0.0-1) ... dpkg: error processing archive /tmp/apt-dpkg-install-TBtTWT/16-backblaze-b2_1.0.0-1_all.deb (--unpack): trying to overwrite '/usr/bin/b2', which is also in package libboost1.63-tools-dev 1.63.0+dfsg-1.1 dpkg-deb: error: paste subprocess was killed by signal (Broken pipe) Errors were encountered while processing: /tmp/apt-dpkg-install-TBtTWT/16-backblaze-b2_1.0.0-1_all.deb cheers, Andreas libboost1.63-tools-dev=1.63.0+dfsg-1.1_backblaze-b2=1.0.0-1.log.gz Description: application/gzip
Bug#628843: Auditoría Masiva DGI ¿Se encuentra su empresa preparada para resistirla?
Si no ve este corr= eo, haga [click aqui](3D'http://seg.publicidadpersonal.com/public/correo_detalle=) No quiero recibir mas este correo (Unsubscribe)= --> Co= mpartir este correo [](3D'http://seg.publicidadpersonal.com/public/correo_detalle.=) hola [](3D'http://www.tuloenvias.com.ve/') Este correo fue enviado por Soluciones Geren= ciales (j312255749) a traves de TuLoEnvias.com= ong> Su correo se encuentra registrado en la base de datos de Soluciones G= erenciales, si usted no desea seguir recibiendo este correo, por favor haga= click en retirar de la lista y no recibira mas correos de esta empr= esa, o actualice su informacion para mejorar nuestra segmentaci&oacu= te;n y envio de correos. [Actualizar mi informacion](3D'http://seg.publicidadpersonal.com/public/proceso_redirect.=) | [Retirar de la lista (Unsubscribe)](3D'ht=)
Bug#883135: ITP: deepin-shortcut-viewer -- Pop-up shortcut viewer for Deepin applications
Package: wnpp Severity: wishlist Owner: Boyuan Yang <073p...@gmail.com> X-Debbugs-CC: debian-de...@lists.debian.org pkg-deepin-de...@lists.alioth.debian.org * Package name: deepin-shortcut-viewer Version : 1.3.3 Upstream Author : Deepin Technology Co., Ltd. * URL : https://github.com/linuxdeepin/deepin-shortcut-viewer * License : GPL-3+ Programming Lang: C++/Qt Description : Pop-up shortcut viewer for Deepin applications Deepin-shortcut-viewer is a standalone binary that helps Deepin applications pop up their shortcut information on screen in a unified appearance. It is part of Deepin software and DDE (Deepin Desktop Environment). I intend to co-maintain it in pkg-deepin group. Regards, Boyuan Yang signature.asc Description: This is a digitally signed message part.
Bug#883136: libgo11: Please consider moving gox files to a separate package
Package: libgo11 Version: 7.2.0-16 Severity: wishlist Dear Maintainer, *.gox files are shipped in libgo11, in /usr/lib/x86_64-linux-gnu/go/7/. IMHO, these files are like *.h for C, and should be in a separate package. -- System Information: Debian Release: buster/sid APT prefers testing APT policy: (500, 'testing'), (100, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=zh_CN.UTF-8 (charmap=UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages libgo11 depends on: ii gcc-7-base 7.2.0-16 ii libc6 2.25-2 ii libgcc1 1:7.2.0-16 ii zlib1g 1:1.2.8.dfsg-5 libgo11 recommends no packages. libgo11 suggests no packages. -- no debconf information signature.asc Description: PGP signature
Bug#883134: general: Add new package header Upstream-Version:
Package: general Severity: wishlist Dear Maintainers, I propose to add new package header Upstream-Version: to contain the version as of the upstream of the package. The header should be optional because not every package has a definite upstream version. I am writing software which should call a program in specific version range (or fail to call it if the program in this version range is not installed). It should work for Debian and other systems (so I can use only the upstream version, not Debian version as is, to be compatible with other systems). Adding this header would ease the task to extract the upstream version of a specific package. It is possible now, but the algorithm of extracting the version of upstream may be different for every package. This is no good. My software should work not only on Debian. So writing a special algorithm to extract Debian version numbers (instead of simply looking into Upstream-Version:) is not a good way to do this task. Somebody, please report a similar idea for Fedora, SUSE and others. (I don't have it installed and don't know the proper way to report to them.) -- System Information: Debian Release: buster/sid APT prefers stable-updates APT policy: (990, 'stable-updates'), (500, 'unstable'), (500, 'testing'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.13.0-1-amd64 (SMP w/8 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#883108: kerneloops: Don't show in Ubuntu's Startup Applications
On Wed, Nov 29, 2017 at 6:44 PM, Bálint Réczey wrote: > What do you think? I think an actual GUI method to disable or enable kerneloops would be better than using Startup Applications. Remember that Startup Applications is basically Ubuntu-specific. On the other hand, Ubuntu does intentionally keep the GNOME Keyring SSH agent in Startup Applications (because of strong differing opinions on how that should be handled and because there isn't any other GUI way to do it). Dropping kerneloops-applet from the default install (hopefully auto-removed on upgrades) does fix my primary concern. I certainly haven't looked through the whole archive to report bugs on every autostart file that doesn't set NoDisplay=true (not that it's a bad idea someday…) Thanks, Jeremy Bicha
Bug#883133: general: Add new package header Upstream-Version:
Package: general Severity: wishlist Dear Maintainers, I propose to add new package header Upstream-Version: to contain the version as of the upstream of the package. The header should be optional because not every package has a definite upstream version. I am writing software which should call a program in specific version range (or fail to call it if the program in this version range is not installed). It should work for Debian and other systems (so I can use only the upstream version, not Debian version as is, to be compatible with other systems). Adding this header would ease the task to extract the upstream version of a specific package. It is possible now, but the algorithm of extracting the version of upstream may be different for every package. This is no good. My software should work not only on Debian. So writing a special algorithm to extract Debian version numbers (instead of simply looking into Upstream-Version:) is not a good way to do this task. Somebody, please report a similar idea for Fedora, SUSE and others. (I don't have it installed and don't know the proper way to report to them.) -- System Information: Debian Release: buster/sid APT prefers stable-updates APT policy: (990, 'stable-updates'), (500, 'unstable'), (500, 'testing'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.13.0-1-amd64 (SMP w/8 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#883132: RFS: opendict/0.6.8-1
Package: sponsorship-requests Severity: normal Dear mentors, I am looking for a sponsor for my package "opendict" * Package name: opendict * Version : 0.6.8-1 * Upstream Author : Martynas Jocius * URL : http://sourceforge.net/projects/opendict/ * License : GPL-2.0+ Section : text It builds those binary packages: opendict - computer dictionary for several dictionary formats To access further information about this package, please visit the following URL: https://mentors.debian.net/package/opendict Alternatively, one can download the package with dget using this command: dget -x https://mentors.debian.net/debian/pool/main/o/opendict/opendict_0.6.8-1.dsc More information about hello can be obtained from http://sourceforge.net/projects/opendict/. Changes since the last upload: QA Upload. * New upstream release. * debian/control + Bump standard versions 4.1.1 + Use HTTPS in Link to copyright format. + Remove version depends from python. + Change debhelper to 10 in B-D. + Remove X-Python-Version field. * debian/compat + Switch compat level 9 to 10. * debian/changelog + Remove trailing whitespaces. * debian/watch + Use HTTPS in url. Regards -- Daniel Echeverry http://wiki.debian.org/DanielEcheverry http://rinconinformatico.net Linux user: #477840 Debian user
Bug#787152: Section 11.5/11.6 - Replace Boot-up method from init to systemd
tags 787152 + pending thanks Hi again, Have just commited a change based upon your patch. Thanks again. Bye, Joost On Sun, Jan 22, 2017 at 03:35:24AM +0100, Joost van Baal-Ilić wrote: > > See also https://lists.debian.org/<20160530145917.ge...@beskar.mdcc.cx> .
Bug#883131: DDPO: Popcon data not updating
Package: qa.debian.org Severity: normal User: qa.debian@packages.debian.org Usertags: ddpo As a reminder... It appears that the cron job at https://qa.debian.org/data/cronjobs/popcon has not run successfully since October. This script downloads popcon data from popcon.d.o to https://qa.debian.org/data/popcon/, and updates popcon.db in that directory. The db file is used to populate the popcon column in DDPO As another symptom, the popcon.php pages on qa.d.o show up-to-date charts, but the tables on the same page use months old data. See, for instance, https://qa.debian.org/popcon.php?package=aiofiles. signature.asc Description: GooPG digital signature
Bug#883130: RFS: colorclass/2.2.0-2
Package: sponsorship-requests Severity: normal Dear mentors, I am looking for a sponsor for a small update to a python module: https://mentors.debian.net/package/colorclass dget -x https://mentors.debian.net/debian/pool/main/c/colorclass/colorclass_2.2.0-2.dsc colorclass (2.2.0-2) unstable; urgency=medium * Upload to unstable. * Tell dh_compress to leave example.py alone. * Enable autopkgtest-pkg-python test suite. * Bump standards to 4.1.1, no changes needed. -- Carl Suster Fri, 24 Nov 2017 13:21:26 +1100 Thanks, Carl On 24/11/17 16:17, Carl Suster wrote: Dear DPMT, Could someone please help me upload my latest version of the colorclass module? This is just moving it from experimental (where it landed due to the ongoing freeze at the time I last touched the package) to unstable and doing some very minor packaging updates. I've uploaded the package to mentors but I'm unable to push my changes to DPMT git since I don't have ssh access any more. I'm not sure if this is related to the alioth replacement or if there is some other problem. In the meantime I pushed my changes to a temporary home on GitLab: https://gitlab.com/arcresu/colorclass Thanks, Carl
Bug#743553: rsyslog: build omudpspoof module
On Thu, 30 Nov 2017, Michael Biebl wrote: Control: tags -1 + moreinfo Hi Chris On Thu, 3 Apr 2014 11:18:28 -0700 (PDT) Chris Stromsoe wrote: Package: rsyslog Version: 7.4.8-1~bpo70+1 Please add --enable-omudpspoof to the build flags to enable building of the omudpspoof module. Could you elaborate why you want to see this module enabled and what you want to use it for? I have a tiered syslog collection system where multiple collectors retransmit received packets in a mesh to ensure that every collector has all of the UDP traffic. Right now, I need to install samplicate to listen on *:514/udp and transmit to rsyslog bound to localhost for local storage and duplicate traffic to the rest of the mesh. I would prefer having rsyslog listen on *:514/udp and do all of the processing and retransmission as part of the standard config. -Chris
Bug#882159:
Thank you .All this orders or whatever is I don't have nothing tu du.Cancel everything and I call Mei bank to stop any payment.Alredy did.This is not nice gais So sad from you.
Bug#883129: ntpdate: Wrong evaluation of an invalid option
Package: ntpdate Version: 1:4.2.8p10+dfsg-5 Severity: minor Dear Maintainer, * What led up to the situation? Strange string "rsion" in the output. * What exactly did you do (or not do) that was effective (or ineffective)? command: ntpdate --version * What was the outcome of this action? ntpdate: unknown option -- ntpdate: encryption delay rsion is unlikely usage: ntpdate [-46bBdqsuv] [-a key#] [-e delay] [-k file] [-p samples] [-o version#] [-t timeo] server ... * What outcome did you expect instead? ntpdate: unknown option --version usage: ntpdate ... -- System Information: Debian Release: buster/sid APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'proposed-updates'), (500, 'testing'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.9.51-2u3 (SMP w/2 CPU cores) Locale: LANG=is_IS.iso88591, LC_CTYPE=is_IS.iso88591 (charmap=ISO-8859-1), LANGUAGE=is_IS.iso88591 (charmap=ISO-8859-1) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init) Versions of packages ntpdate depends on: ii dpkg 1.19.0.4 ii libc6 2.25-2 ii libssl1.1 1.1.0g-2 ii netbase5.4 ntpdate recommends no packages. ntpdate suggests no packages. -- Configuration Files: /etc/default/ntpdate changed [not included] -- no debconf information -- Bjarni I. Gislason
Bug#882159:
Stop send me msg.I didn't order anything.Stop
Bug#882317: Pending fixes for bugs in the libhibernate-validator-java package
tag 882317 + pending thanks Some bugs in the libhibernate-validator-java package are closed in revision 51f3889c87090f769b9ca7239672d47011a13d91 in branch 'master' by Emmanuel Bourg The full diff can be seen at https://anonscm.debian.org/cgit/pkg-java/libhibernate-validator-java.git/commit/?id=51f3889 Commit message: Added the missing build dependency on libjsoup-java (Closes: #882317)
Bug#873264: Updating the debian-faq Uploaders list
tag 873264 pending thanks On Fri, Aug 25, 2017 at 11:28:30PM +0200, Mattia Rizzolo wrote: > > Simon Paillard has not been working on > the debian-faq package for quite some time. > > We are tracking their status in the MIA team and would like to ask you > to remove them from the Uploaders list of the package so we can close > that part of the file. Thanks, committed to svn. Bye, Joost
Bug#883128: sdpa: hard-coded dependency on scotch-5.1
Dear Steve langasek,
Thank you very much for your kind information.
I will apply your patch as soon as possible.
Actually, I have received another patch to add functions to SDPA.
So, I think that I had better update the SDPA version to 7.3.11.
During the update, I would like to include your patch.
Best regards,
Makoto Yamashita
==
Makoto Yamashita
Associate Professor
Department of Mathematical and Computing Science,
School of Computing,
Tokyo Institute of Technology
http://www.is.titech.ac.jp/~makoto
2017-11-30 9:32 GMT+09:00 Steve Langasek :
> Package: sdpa
> Version: 7.3.10+dfsg-2
> Severity: serious
> Tags: patch
> Justification: uninstallable
> User: ubuntu-de...@lists.ubuntu.com
> Usertags: origin-ubuntu bionic ubuntu-patch
>
> Dear Makoto,
>
> The sdpa package has a hard-coded dependency on libscotch-5.1, even though
> it dynamically links against -lscotch at build time and gets the correct
> dependency via ${shlibs:Depends}.
>
> libscotch-5.1 has now been replaced with libscotch-6.0, which makes sdpa
> uninstallable in Debian testing.
>
> I have uploaded the attached patch to Ubuntu, which fixes this problem.
> Please consider applying it in Debian as well.
>
> Thanks,
> --
> Steve Langasek Give me a lever long enough and a Free OS
> Debian Developer to set it on, and I can move the world.
> Ubuntu Developerhttp://www.debian.org/
> slanga...@ubuntu.com vor...@debian.org
>
Bug#846862: doesn't work
Control: tags -1 moreinfo Hi On Sat, 3 Dec 2016 20:31:31 +0100 =?UTF-8?B?WmRlbsSbayBIZcWZbWFu?= wrote: > Package: rsyslog-mongodb > Version: 8.23.0-2~bpo8+1 > > On Jessie after upgrade rsyslog to backported version mongodb logging > doesn't work > No error reported while starting but mongo db is empty. .. > after downgrade to stable package no problem and everything is stored > without problem Can you please verify if this is still a problem in Stretch, our current stable release? Thanks, Michael -- Why is it that all of the instruments seeking intelligent life in the universe are pointed away from Earth? signature.asc Description: OpenPGP digital signature
Bug#743553: rsyslog: build omudpspoof module
Control: tags -1 + moreinfo Hi Chris On Thu, 3 Apr 2014 11:18:28 -0700 (PDT) Chris Stromsoe wrote: > Package: rsyslog > Version: 7.4.8-1~bpo70+1 > > Please add --enable-omudpspoof to the build flags to enable building of > the omudpspoof module. Could you elaborate why you want to see this module enabled and what you want to use it for? Regards, Michael -- Why is it that all of the instruments seeking intelligent life in the universe are pointed away from Earth? signature.asc Description: OpenPGP digital signature
Bug#883123: asciidoc-common: Python UnicodeDecodeError using :lang: fr in asciidoc metadata, due to accent in lang-fr.conf
Hi Simon, Could you provide an example file to reproduce you problem please? Thanks Joseph
Bug#883128: sdpa: hard-coded dependency on scotch-5.1
Package: sdpa
Version: 7.3.10+dfsg-2
Severity: serious
Tags: patch
Justification: uninstallable
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu bionic ubuntu-patch
Dear Makoto,
The sdpa package has a hard-coded dependency on libscotch-5.1, even though
it dynamically links against -lscotch at build time and gets the correct
dependency via ${shlibs:Depends}.
libscotch-5.1 has now been replaced with libscotch-6.0, which makes sdpa
uninstallable in Debian testing.
I have uploaded the attached patch to Ubuntu, which fixes this problem.
Please consider applying it in Debian as well.
Thanks,
--
Steve Langasek Give me a lever long enough and a Free OS
Debian Developer to set it on, and I can move the world.
Ubuntu Developerhttp://www.debian.org/
slanga...@ubuntu.com vor...@debian.org
diff -Nru sdpa-7.3.10+dfsg/debian/control sdpa-7.3.10+dfsg/debian/control
--- sdpa-7.3.10+dfsg/debian/control 2017-10-19 00:00:00.0 -0700
+++ sdpa-7.3.10+dfsg/debian/control 2017-11-29 16:26:27.0 -0800
@@ -11,7 +11,7 @@
Package: sdpa
Architecture: any
Depends: ${shlibs:Depends}, ${misc:Depends},
- libopenblas-dev, libmumps-seq-5.1.1, libscotch-5.1
+ libopenblas-dev, libmumps-seq-5.1.1
Description: High-performance package for SemiDefinite Programs
The software SDPA (SemiDefinite Programming Algorithm) is one of the most
efficient and stable software packages for solving SDPs based on the
@@ -38,7 +38,7 @@
Package: sdpam
Architecture: any
Depends: ${shlibs:Depends}, ${misc:Depends},
- libopenblas-dev, libmumps-seq-5.1.1, libscotch-5.1,
+ libopenblas-dev, libmumps-seq-5.1.1,
octave, libsdpa-dev
Description: Matlab/Octave interface of SDPA
This package provides SDPA-M, Matlab/Octave interface
Bug#883059: dangling symlink: apm.8 links to snooze.8, which was removed in 0.10-14
What arch did that happen on? (Your system info lists amd64. pmud should not be built on that arch). But more to the point - in the binary-arch rule, the snooze man page is removed from the packaged files for the pmud-utils package, but not for the pmud package, The symlink to apm.8 OTOH is only done for the pmud package. I notice there is another missing man page (wakebay.8) in -14. Looks as though the manpages install debhelper script failed. I'll see what I can do to get this one rebuilt. Cheers, Michael On Wed, Nov 29, 2017 at 9:32 PM, Michael Stapelberg wrote: > Package: pmud > Version: 0.10-14 > Severity: normal > > In 0.10-13, snooze.8 was present. > In 0.10-14, snooze.8 is no longer present. > > I presume this was done accidentally, as the snooze binary still exists. > > -- System Information: > Debian Release: buster/sid > APT prefers testing > APT policy: (990, 'testing'), (500, 'unstable-debug'), (500, > 'testing-debug'), (500, 'unstable') > Architecture: amd64 (x86_64) > Foreign Architectures: i386, armel, mipsel, arm64 > > Kernel: Linux 4.13.0-1-amd64 (SMP w/12 CPU cores) > Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), > LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) > Shell: /bin/sh linked to /bin/dash > Init: systemd (via /run/systemd/system)
Bug#531489: ftgl-dev: problems with bitmap fonts as textures etc.
Control: reassign -1 libftgl-dev Reassigning, since the transitional package is going to be removed after many years. Also see #760571 for a follow-up on the issue of this bug. -- Manuel A. Fernandez Montecelo
Bug#883127: gst123: playlist option always returns parse error
Package: gst123 Version: 0.3.3-1+b3 Severity: normal Hello, It seems that there is something buggy in the command-line argument parsing code in gst123. No matter what, using -@ (or --list) always gives aborts saying Error parsing option. See below for an example. Any help troubleshooting would be appreciated. Thanks, --Joe joe@brain:~$ cat Party.m3u HM.ogg joe@brain:~$ ls -l HM.ogg -rw-r--r-- 1 joe users 3977322 Nov 29 19:17 HM.ogg joe@brain:~$ gst123 -@ Party.m3u Error parsing option -@ Usage: gst123 [OPTION...] ... - Play video and audio clips Help Options: -h, --help Show help options --help-all Show all help options --help-gst Show GStreamer Options Application Options: -@, --list= read playlist of files and URIs from --version print version --full-version print full version --verbose print GStreamer pipeline used to play files -r, --repeatrepeat playlist forever -z, --shuffle shuffle playlist before playing -Z, --randomplay files in random order forever -x, --novideo do not play the video stream -a, --audio-output=[=] set audio output driver and device -v, --visualization= set visualization plugin to use for audio playback -V, --visualization-listshow available visualization plugins -k, --skip= Skip the first 'n' seconds -q, --quiet don't display any messages joe@brain:~$ gst123 --list=Party.m3u Error parsing option --list Usage: gst123 [OPTION...] ... - Play video and audio clips Help Options: -h, --help Show help options --help-all Show all help options --help-gst Show GStreamer Options Application Options: -@, --list= read playlist of files and URIs from --version print version --full-version print full version --verbose print GStreamer pipeline used to play files -r, --repeatrepeat playlist forever -z, --shuffle shuffle playlist before playing -Z, --randomplay files in random order forever -x, --novideo do not play the video stream -a, --audio-output=[=] set audio output driver and device -v, --visualization= set visualization plugin to use for audio playback -V, --visualization-listshow available visualization plugins -k, --skip= Skip the first 'n' seconds -q, --quiet don't display any messages joe@brain:~$ -- System Information: Debian Release: 9.1 APT prefers stable APT policy: (990, 'stable'), (500, 'stable-debug'), (500, 'unstable'), (200, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.9.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages gst123 depends on: ii gstreamer1.0-plugins-base 1.10.4-1 ii gstreamer1.0-plugins-good 1.10.4-1 ii libc6 2.24-11+deb9u1 ii libgcc1 1:6.3.0-18 ii libglib2.0-02.50.3-2 ii libgstreamer-plugins-base1.0-0 1.10.4-1 ii libgstreamer1.0-0 1.10.4-1 ii libgtk2.0-0 2.24.31-2 ii libstdc++6 6.3.0-18 ii libtinfo5 6.0+20161126-1+deb9u1 ii libx11-62:1.6.4-3 Versions of packages gst123 recommends: ii gstreamer1.0-libav 1.10.4-1 ii gstreamer1.0-plugins-bad 1.10.4-1 ii gstreamer1.0-plugins-ugly 1.10.4-1 ii gstreamer1.0-pulseaudio1.10.4-1 ii gstreamer1.0-x 1.10.4-1 gst123 suggests no packages. -- no debconf information
Bug#883126: darkice cannot connect to IPv6 icecast server
Package: darkice Version: 1.3-0.1 Severity: important Tags: ipv6 $ cat darkice.cfg [general] duration = 0 bufferSecs = 2 [input] device = default sampleRate = 48000 bitsPerSample = 16 channel = 1 [icecast2-0] bitrateMode = abr format = opus bitrate = 16 server = marconi.home.nivex.net port = 8000 password = topsecret mountPoint = debtest.opus $ host marconi.home.nivex.net marconi.home.nivex.net has IPv6 address 2606:a000:a449:5900:5054:ff:febc:58a2 $ darkice -c darkice.cfg DarkIce 1.3 live audio streamer, http://code.google.com/p/darkice/ Copyright (c) 2000-2007, Tyrell Hungary, http://tyrell.hu/ Copyright (c) 2008-2013, Akos Maroy and Rafael Diniz This is free software, and you are welcome to redistribute it under the terms of The GNU General Public License version 3 or any later version. Using config file: darkice.cfg Using ALSA DSP input device: default Could not set POSIX real-time scheduling, this may cause recording skips. Try to run darkice as the super-user. DarkIce: TcpSocket.cpp:226: gethostbyname error [0] == Observing the source at the specified line, I see a function that has #ifdef HAVE_ADDRINFO This really should be enabled on a modern application. -- System Information: Debian Release: 9.2 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.9.0-4-amd64 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages darkice depends on: ii libasound21.1.3-5 ii libc6 2.24-11+deb9u1 ii libgcc1 1:6.3.0-18 ii libjack-jackd2-0 [libjack-0.116] 1.9.10+20150825git1ed50c92~dfsg-5 ii libmp3lame0 3.99.5+repack1-9+b2 ii libogg0 1.3.2-1 ii libopus0 1.2~alpha2-1 ii libpulse0 10.0-1+deb9u1 ii libsamplerate00.1.8-8+b2 ii libstdc++66.3.0-18 ii libtwolame0 0.3.13-2 ii libvorbis0a 1.3.5-4 ii libvorbisenc2 1.3.5-4 ii lsb-base 9.20161125 darkice recommends no packages. Versions of packages darkice suggests: pn darksnow -- no debconf information
Bug#459427: changelog vs. NEWS handling
Hi,
gregor herrmann wrote:
> From the Perl world, looking at roughly ~3400 packages I have locally
> cloned:
>
> 28 have a NEWS file (most of them with a Gnome/GTK background), 1
> News, 1 news.
>
> 3368 have a Changes, CHANGES, Changelog, ChangeLog, (and some other
> variations like Change{s,Log}.{pod,ini,1,txt}); and those files are the
> manually created user-facing summaries of relevant changes of the
> release (in almost all cases).
>
> For 10 packages we have `dh_installchangelogs NEWS' in debian/rules.
>
>
> I'm all for installing NEWS if it's a summary in the GNU style; but
> assuming that ChangeLog etc. are detailed/auto-generated/boring
> doesn't reflect reality in the Perl universe.
Yes.
Some more questions from a policy pov:
1. What to do with packages that make multiple per-release release
note files? Should the packager concatenate them or is shipping
them as multiple files ok? (E.g. see /usr/share/doc/git/RelNotes.)
2. What about packages that prune old release notes from their source
tarball? (E.g. Samba's WHATSNEW.TXT doesn't go back very far,
sometimes not even as far as the previous stable Debian release.)
Should packagers copy back in such archived release notes to make
the changelog usable to users?
3. Any advice for packagers to make complying with the GPL section 5+6
straightforward?
a) The work must carry prominent notices stating that you modified
it, and giving a relevant date.
What about when Debian's upstream is downstream from someone else?
Thanks,
Jonathan
Bug#760571: libftgl2: problems with bitmap fonts, incorrect blending function, etc.
Hi Frank (and others),
2014-09-05 15:29 Frank Heckenbach:
Package: libftgl2
Version: 2.1.3~rc5-4+nmu1
Severity: normal
Tags: upstream patch
See https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=589601
and https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742469
Since bug reports against stable seem to be generally ignored, I'm
reporting this again for the version in unstable. (I don't actually
use it, but since the version there is unchanged (except for an
unrelated NMU), the bugs are obviously still there.)
I don't know what more I could do:
- I provided a detailed description and analysis of the problems.
- I supplied patches, ready to apply, and tested. (The patches are
included in the original reports, but I'm attaching a combined
patch again, just in case.)
- It's been more than 5 years since the original report (#531489),
in which time I've been using ftgl with my patch and had no
problems with it, and there hasn't been even a single reply to the
bug reports (other that the automatic acknowledgement from the
server) in all this time.
- I'm mailing both the Debian BTS and the listed contact addresses
for ftgl.
So could you please apply my patches now, before another major
release goes by with the bugs included?
Otherwise I really wonder why I should report bugs at all. If I have
to keep separate patched versions anyway, I can stop wasting my time
trying to help other users who may experience the same problems, and
keep my patches to myself. That's not my idea how free software
should work, but neither is tracking simple changes for years with
no response at all.
So basically the package has been unmaintained all these years, and
still is. Sorry that your patches were ignored, but it seems that the
maintainers are simply not available, and the rest of the Debian folks
don't always take a look to packages unless they are interested in it
for some reason.
I just uploaded another NMU fixing other problems (related with
cross-compilation, because it affects other packages), and considered
including some of your patches, but they are a bit complex (it not just
a fix initialising a variable, or avoiding a leak, etc), and nobody else
"seconded" the change (I'm CCing other addressed of the authors) or
asked for the patches to be applied, or pointed that the patch is
already battle-tested because it's shipped in new upstream releases...
Essentially, I have very little knowledge about the matter at hand and I
am not interested in maintaining the package long term, so without
investing a significant amount of time and effort I don't know what's
currently wrong with the behaviour, how to test it with the available
packages using the library (or if I have to create a sample program to
test the new features of the fonts to rotate them, for example), I don't
know either if they will break applications relying on the current
behaviour (even if possibly buggy), I cannot evaluate if you're
introducing errors in the package as part of a mistake or a nefarious
plan... and even then, the fixes will be only applied in Debian (and
possibly derivatives), with behaviour possibly diverging from other
platforms.
(This also happened in the past with SDL packages in Debian for example,
which contained patches not applied upstream for years changing
important things about the behaviour).
Basically, I would have to trust that your patches are OK and will not
cause any harm, or I will be responsible for the outcomes, and fixing
things if affects other packages.
Now, what I can offer is that if you are interested in the package, want
to take responsability for the changes, and want to fix the problems in
the long term (including maybe switching to the fork in github, which
seems more lively), I will ask you to prepare a new upload fixing these
and maybe other problems, and will then try to help and sponsor your
changes.
Does it sound interesting?
The rest of the e-mail (a patch attached), for those following along at
home without having to visit the bug-tracker:
--- src/FTGlyph/FTPolygonGlyph.cpp.orig 2008-06-09 14:52:41.0 +0200
+++ src/FTGlyph/FTPolygonGlyph.cpp 2010-07-17 07:00:27.0 +0200
@@ -64,6 +64,7 @@
FTPolygonGlyphImpl::FTPolygonGlyphImpl(FT_GlyphSlot glyph, float _outset,
bool useDisplayList)
: FTGlyphImpl(glyph),
+vectoriser(0),
glList(0)
{
if(ft_glyph_format_outline != glyph->format)
--- src/FTGlyph/FTOutlineGlyph.cpp.orig 2010-07-17 06:59:51.0 +0200
+++ src/FTGlyph/FTOutlineGlyph.cpp 2010-07-17 06:59:55.0 +0200
@@ -64,6 +64,7 @@
FTOutlineGlyphImpl::FTOutlineGlyphImpl(FT_GlyphSlot glyph, float _outset,
bool useDisplayList)
: FTGlyphImpl(glyph),
+vectoriser(0),
glList(0)
{
if(ft_glyph_format_outline != glyph->format)
--- src/FTGlyph/FTBitmapGlyphImpl.h.orig2008-06-09 14:49:52.0
+0200
+++ src/FTGlyph/FTBitmapGlyphImpl.h 2010-07
Bug#877470: Pending fixes for bugs in the bsh package
tag 877470 + pending thanks Some bugs in the bsh package are closed in revision eda9f8fad7f4986309b79ebf6f34d50ca7fdab95 in branch 'master' by Emmanuel Bourg The full diff can be seen at https://anonscm.debian.org/cgit/pkg-java/bsh.git/commit/?id=eda9f8f Commit message: Applied Jonathan Bustillos' patch to make the build reproducible (Closes: #877470)
Bug#875340: Pending fixes for bugs in the bsh package
tag 875340 + pending thanks Some bugs in the bsh package are closed in revision dffd4ffca0beb65b50db3f7b97148fc533edf687 in branch 'master' by Emmanuel Bourg The full diff can be seen at https://anonscm.debian.org/cgit/pkg-java/bsh.git/commit/?id=dffd4ff Commit message: Fixed the build failure with Java 9 (Closes: #875340)
Bug#883125: gnome-icon-theme-nuovo: Modernize the packaging
gnome-icon-theme-nuovo-883125.debdiff Description: Binary data
Bug#875560: Please update to a new snapshot version
Hi Laurent, 2017-09-12 11:07 GMT+02:00 Bálint Réczey : > Control: tags -1 confirmed pending > > Hi Laurent, > > 2017-09-12 10:17 GMT+02:00 Laurent Bigonville : >> Source: kerneloops >> Version: 0.12+git20140509-6 >> Severity: wishlist >> >> Hi, >> >> Could kerneloops be updated to a new snapshot release? >> >> There is some activity on the upstream git (Hi last update Aug 2017) > > Absolutely. I started merging/forwarding Ubuntu patches as well in > August and my plan is uploading a new version/snapshot in the near > future. I just forwarded a few patches from Ubuntu to upstream, let's see if they get accepted and I can include them in the snapshot. Cheers, Balint
Bug#883108: kerneloops: Don't show in Ubuntu's Startup Applications
Hi Jeremy, 2017-11-29 20:02 GMT+01:00 Jeremy Bicha : > Source: kerneloops > Version: 0.12+git20140509-6 > > Ubuntu still includes the Startup Applications app in the default > install (it was dropped in gnome-session upstream years ago). > > To prevent users from being able to easily disable system services > that they probably shouldn't, Ubuntu makes sure that apps included by > default set NoDisplay=true in their autostart files. This hides the > services from the Startup Applications app. While I like keeping the view on the system clean and easy to understand hiding the kerneloops-applet in Startup Applications may be confusing for users and disabling the kerneloops-applet would not break their system. I just committed a change to the packaging repository to make kerneloops (the daemon) only Suggest kerneloops-applet thus the applet won't be standard part of the Ubuntu systems. Hiding an applet which is not standard part of the system seems confusing and I think it would be better to keep it displayed. What do you think? Cheers, Balint > > By the way, MATE has a similar tool but it doesn't respect NoDisplay yet. > https://github.com/mate-desktop/mate-session-manager/issues/134 > > Thanks, > Jeremy Bicha
Bug#883125: gnome-icon-theme-nuovo: Modernize the packaging
Source: mod-dnssd Version: 0.5-4.1 Tags: pending patch I've prepared an NMU for gnome-icon-theme versioned as 0.5-4.2 to modernize the packaging [debhelper compat 10, dh7 simple rules, source format 3.0 (quilt) etc.] and close all but one of the open bugs. I have uploaded it to DELAYED/15. Please feel free to tell me if I should delay it longer or upload it sooner. I'll attach a copy of my debdiff in a follow-up email. Thanks, Jeremy Bicha
Bug#872368: gpgme: please adjust libgpgme11 dependency on gnupg package
Hi Pierre--
Thanks for continuing to engage constructively on this.
The GnuPG packaging split that happened in 2.1.21-4 (and the subsequent
packages added to support things like WKS) does indeed cause more things
to be pulled in by the explicit dependency on the "gnupg" package than
used to be the case.
On Wed 2017-11-29 21:48:01 +0100, Pierre Ynard wrote:
> how about the reason that it violates the Debian policy?? I've brought
> it up several times in this thread already, and nobody has denied it.
iiuc, your contention about debian policy is:
>> The policy states that hard dependencies are for when they're needed
>> to provide a significant amount of functionality. mutt provides
>> plenty of functionality already without the option to GPG-sign emails
>> and even without checking email signatures. So from that point of
>> view, it hardly seems appropriate that mutt pulls unconditionally the
>> whole GnuPG suite.
But please consider that policy governs immediate dependencies. That
is, it's not abouve whether *mutt* provides significant functionality
without GnuPG. It's about whether *libgpgme* provides significant
functionality.
libgpgme provides *no functionality* whatsoever if gpg is not installed.
Without gpg-agent or dirmngr, libgpgme cannot provide secret key
operations, which is clearly a "significant amount of functionality".
Do you really think it's a violation of debian policy that gpgme
explicitly Depends on the full gnupg suite?
> Regardless, once again, I've made several suggestions that would leave
> them installed by default like you mentioned. Nobody has denied that it
> would be a positive solution for everybody.
Would the following change satisfy your concerns? Would you be willing
to look out for (and help respond to) any bug reports that debian
receives about users of gpgme (including, but not limited to, mutt
users) who can no longer use their secret keys as expected?
diff --git a/debian/control b/debian/control
index f99a7401..429d2d9e 100644
--- a/debian/control
+++ b/debian/control
@@ -55,17 +55,20 @@ Description: GPGME - GnuPG Made Easy (development files)
Package: libgpgme11
Architecture: any
Multi-Arch: same
Pre-Depends:
${misc:Pre-Depends},
Depends:
- gnupg (>> 2) | gnupg2 (>> 2.0.4),
+ gnupg (>= 2.1.21-4) | gpg,
${misc:Depends},
${shlibs:Depends},
-Suggests:
- gpgsm (>> 1.9.6),
+Recommends:
+ dirmngr,
+ gpg-agent,
+ gpg-wks-client,
+ gpgsm,
Description: GPGME - GnuPG Made Easy (library)
GPGME is a wrapper library which provides a C API to access some of the
GnuPG functions, such as encrypt, decrypt, sign, verify, ...
.
This package contains the library.
Note that this will make backporting of libgpgme to older distributions
more difficult.
Regards,
--dkg
signature.asc
Description: PGP signature
Bug#876428: No 'standard' image of Debian-Live
Narcis, > As of Debian 10 (Buster) Live Alpha 1, there is no ISO image such as: > debian-live-buster-DI-a1-i386-standard.iso Actually, it was discontinued (temporarily?) with Debian 9 (Stretch). Q.v. "Is there a text console flavor available of the Debian 9 (Stretch) Live CD installer?" thread: https://lists.debian.org/debian-cd/2017/06/msg00030.html Dan
Bug#710262:
I am working on the Archi package for Debian again. /Willem
Bug#883124: stretch-pu: package golang-github-go-ldap-ldap/2.4.1-1
Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu
Dear stable release managers,
I've prepared a fix for CVE-2017-14623, Debian BTS #876404. The security
team does not intend to publish a DSA for this minor issue, so I'm
asking here if you would accept an upload for stable-proposed-updates.
The source debdiff is attached. Please tell me if I should upload the
package or if you need further changes.
Regards,
Tobias
diff -Nru golang-github-go-ldap-ldap-2.4.1/debian/changelog golang-github-go-ldap-ldap-2.4.1/debian/changelog
--- golang-github-go-ldap-ldap-2.4.1/debian/changelog 2016-08-16 18:19:35.0 +0200
+++ golang-github-go-ldap-ldap-2.4.1/debian/changelog 2017-11-29 23:45:26.0 +0100
@@ -1,3 +1,17 @@
+golang-github-go-ldap-ldap (2.4.1-1+deb9u1) stretch; urgency=medium
+
+ * Team upload.
+ * Require explicit intention for empty password.
+This is normally used for unauthenticated bind, and
+https://tools.ietf.org/html/rfc4513#section-5.1.2 recommends:
+"Clients SHOULD disallow an empty password input to a Name/Password
+Authentication user interface"
+This is (mostly) a cherry-pick of 95ede12 from upstream, except
+the bit in ldap_test.go, which is unrelated to the security issue.
+This fixes CVE-2017-14623. (Closes: #876404)
+
+ -- Dr. Tobias Quathamer Wed, 29 Nov 2017 23:45:26 +0100
+
golang-github-go-ldap-ldap (2.4.1-1) unstable; urgency=medium
* New upstream version.
diff -Nru golang-github-go-ldap-ldap-2.4.1/debian/patches/0002-Require-explicit-intention-for-empty-password.patch golang-github-go-ldap-ldap-2.4.1/debian/patches/0002-Require-explicit-intention-for-empty-password.patch
--- golang-github-go-ldap-ldap-2.4.1/debian/patches/0002-Require-explicit-intention-for-empty-password.patch 1970-01-01 01:00:00.0 +0100
+++ golang-github-go-ldap-ldap-2.4.1/debian/patches/0002-Require-explicit-intention-for-empty-password.patch 2017-11-29 23:02:18.0 +0100
@@ -0,0 +1,170 @@
+From: "Dr. Tobias Quathamer"
+Date: Wed, 29 Nov 2017 14:34:16 +0100
+Subject: Require explicit intention for empty password.
+
+This is normally used for unauthenticated bind, and
+https://tools.ietf.org/html/rfc4513#section-5.1.2 recommends:
+
+> Clients SHOULD disallow an empty password input to a Name/Password
+> Authentication user interface
+
+This is (mostly) a cherry-pick of 95ede12 from upstream. I've removed
+the bit in ldap_test.go, which is unrelated to the security issue.
+
+This fixes CVE-2017-14623.
+
+https://github.com/go-ldap/ldap/commit/95ede1266b237bf8e9aa5dce0b3250e51bfefe66
+---
+ bind.go | 80
+ error.go | 9 +++
+ ldap_test.go | 64 +++-
+ 3 files changed, 77 insertions(+), 76 deletions(-)
+
+diff --git a/bind.go b/bind.go
+index 26b3cc7..432efa7 100644
+--- a/bind.go
b/bind.go
+@@ -7,7 +7,7 @@ package ldap
+ import (
+ "errors"
+
+- "gopkg.in/asn1-ber.v1"
++ ber "gopkg.in/asn1-ber.v1"
+ )
+
+ // SimpleBindRequest represents a username/password bind operation
+@@ -18,6 +18,9 @@ type SimpleBindRequest struct {
+ Password string
+ // Controls are optional controls to send with the bind request
+ Controls []Control
++ // AllowEmptyPassword sets whether the client allows binding with an empty password
++ // (normally used for unauthenticated bind).
++ AllowEmptyPassword bool
+ }
+
+ // SimpleBindResult contains the response from the server
+@@ -28,9 +31,10 @@ type SimpleBindResult struct {
+ // NewSimpleBindRequest returns a bind request
+ func NewSimpleBindRequest(username string, password string, controls []Control) *SimpleBindRequest {
+ return &SimpleBindRequest{
+- Username: username,
+- Password: password,
+- Controls: controls,
++ Username: username,
++ Password: password,
++ Controls: controls,
++ AllowEmptyPassword: false,
+ }
+ }
+
+@@ -47,6 +51,10 @@ func (bindRequest *SimpleBindRequest) encode() *ber.Packet {
+
+ // SimpleBind performs the simple bind operation defined in the given request
+ func (l *Conn) SimpleBind(simpleBindRequest *SimpleBindRequest) (*SimpleBindResult, error) {
++ if simpleBindRequest.Password == "" && !simpleBindRequest.AllowEmptyPassword {
++ return nil, NewError(ErrorEmptyPassword, errors.New("ldap: empty password not allowed by the client"))
++ }
++
+ packet := ber.Encode(ber.ClassUniversal, ber.TypeConstructed, ber.TagSequence, nil, "LDAP Request")
+ packet.AppendChild(ber.NewInteger(ber.ClassUniversal, ber.TypePrimitive, ber.TagInteger, l.nextMessageID(), "MessageID"))
+ encodedBindRequest := simpleBindRequest.encode()
+@@ -97,47 +105,33 @@ func (l *Conn) SimpleBind(simpleBindRequest *SimpleBindRequest) (*SimpleBindResu
+ return result, nil
+ }
+
+-// Bind performs a bind with the given username and password
++// Bind performs a bind with the given username and password.
Bug#883123: asciidoc-common: Python UnicodeDecodeError using :lang: fr in asciidoc metadata, due to accent in lang-fr.conf
Package: asciidoc-common Version: 8.6.9-5 Severity: normal Tags: l10n A :lang: fr asciidoc can't compile because of a french accent in l10n file /etc/asciidoc/lang-fr.conf, crashing asciidoc with exception UnicodeDecodeError. -- System Information: Debian Release: 9.2 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.13.0-0.bpo.1-amd64 (SMP w/4 CPU cores) Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8), LANGUAGE=fr_FR.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) -- Configuration Files: /etc/asciidoc/lang-fr.conf changed: toc-title=Table des matières -- no debconf information -- Simon Descarpentries http://acoeuro.com
Bug#883122: powercap: FTBFS on kFreeBSD: ENODATA undeclared
Source: powercap Version: 0.1.1-1 Severity: important Justification: fails to build from source Builds of powercap for kfreebsd-* (admittedly not release architectures) have been failing: /«PKGBUILDDIR»/src/powercap-common.c:61:13: error: 'ENODATA' undeclared (first use in this function); did you mean 'ENOTTY'? Ordinarily, I'd suggest conditionally substituting some other errno value (though not ENOTTY, similar prefix notwithstanding). However, it looks like powercap is fundamentally Linux-specific, so it would make much more sense to declare Architecture: linux-any and be done with it. Thanks! -- Aaron M. Ucko, KB1CJC (amu at alum.mit.edu, ucko at debian.org) http://www.mit.edu/~amu/ | http://stuff.mit.edu/cgi/finger/?a...@monk.mit.edu
Bug#883121: lintian: Add R CRAN & Bioconductor repositories homepage to the list of known insecure URIs
Package: lintian
Version: 2.5.60
Severity: wishlist
Tags: patch
Hi,
Please find attached a patch which add R CRAN & Bioconductor
repositories homepages to the list of known insecure URIs for the tag
homepage-field-uses-insecure-uri.
Best,
Dylan
From 11d3cdffa24bca1f5d2e5701919146a3b9621f8b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Dylan=20A=C3=AFssi?=
Date: Wed, 29 Nov 2017 23:00:00 +0100
Subject: [PATCH] Add R CRAN & Bioconductor repositories to the list of known
insecure URIs
---
checks/fields.pm | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/checks/fields.pm b/checks/fields.pm
index d9a238b5f..6f5cbfce8 100644
--- a/checks/fields.pm
+++ b/checks/fields.pm
@@ -631,7 +631,7 @@ sub run {
}
if ( $homepage =~ m,^ftp://,
or $homepage
-=~m,^http://(?:[^\.]+\.)?(?:github\.com|metacpan\.org|debian\.org)/,
+=~m,^http://(?:[^\.]+\.)?(?:github\.com|metacpan\.org|debian\.org|cran\.r-project\.org|bioconductor\.org)/,
){
tag 'homepage-field-uses-insecure-uri', $orig;
}
--
2.11.0
Bug#883120: i2c-tools: FTBFS on non-Linux: linux/types.h: No such file or directory
Source: i2c-tools Version: 4.0-1 Severity: important Justification: fails to build from source Builds of i2c-tools for hurd-i386 and kfreebsd-* (admittedly not release architectures) have been failing: include/i2c/smbus.h:28:10: fatal error: linux/types.h: No such file or directory If you can arrange to add support for either or both kernels, great. Otherwise, I'd suggest declaring Architecture: linux-any so that non-Linux autobuilders don't bother attempting to cover i2c-tools. Thanks! -- Aaron M. Ucko, KB1CJC (amu at alum.mit.edu, ucko at debian.org) http://www.mit.edu/~amu/ | http://stuff.mit.edu/cgi/finger/?a...@monk.mit.edu
Bug#875583: Pending fixes for bugs in the jedit package
tag 875583 + pending thanks Some bugs in the jedit package are closed in revision f0e62feb7d4cd8ea8f7f75bcc7ee0433f871e224 in branch 'master' by Markus Koschany The full diff can be seen at https://anonscm.debian.org/cgit/pkg-java/jedit.git/commit/?id=f0e62fe Commit message: Fix FTBFS with OpenJDK 9. Closes: #875583 Thanks: Chris West for the report.
Bug#883075: ITP: memleax -- debug a running process for memoy leaks without recompiling or restarting
Hi Steve, On Wed, Nov 29, 2017 at 11:13:34AM +, Steve Kemp wrote: > > Description : debug a running process for memoy leaks without > > recompiling or restarting > > Typo: "memory", not "memoy". [...] > > Differences from Valgrind: > > . > > * Valgrind starts the target process, while memleax attaches to on that is > >already running. > > Nor this. Thank you for the edits and suggestions. I've also shortened the short description by dropping 'without recompiling or restarting', and have updated to the newest upstream version (1.1.0). Unfortunately my first attempt at using memleax failed. The first run produced more output than expected, and I thought I'd try to set a longer period than 10 seconds to gather more dramatic data (when redirecting output to a file). Unfortunately the process hung, presumably because /proc/pid/map disappeared. A third run confirmed that /proc/pid/map was gone and wouldn't come back. I'm trying to collect more data for #879901. When the bug reoccurred this month kded5 was holding onto 6520.81MB of RAM ! At any rate, would you like to comaintain or sponsor this package? The remote is here ssh://git.debian.org/git/collab-maint/memleax.git and I'd be happy to add you to uploaders before finalising the changelog and putting the package on mentors! Sincerely, Nicholas signature.asc Description: PGP signature
Bug#878088: reportbug: please inform security and lts teams about security update regressions
Hi Markus,
Great this is still moving forward!
On Wed, Nov 29, 2017 at 08:00:12PM +0100, Markus Koschany wrote:
> Hi!
[..snip..]
> I would prefer this solution. At the moment we check for the version
> string and I think that's sufficient for an initial check. The following
> actions should be triggered by the user himself by answering specific
> questions. What do you think about adding a second question after "Do
> you want to report a regression because of a security update?"
>
> Is this regression in Debian's LTS release?
>
> Yes, this bug is in the LTS release. -> only CC the LTS team
> No, this bug is not in the LTS release -> CC the security team
Can't we deduce if it's LTS from either the packages version number or from
/etc/debian_version. Once we have the code name or number we could do a
simple HTTP call to check if this is stable, oldstable or lts.
I don't know of a page that exposes this information in JSON or similar
but if we don't have it we could add another page to the security
tracker like:
GET /tracker/data/releases
{ 'stretch': 'stable',
'jessie': 'oldstable',
'wheezy': 'lts'
}
We then wouldn't be dependent on the string parsing in the changelog.
Cheers,
-- Guido
Bug#748783: uploaded to NEW queue
just an fyi: packages have been put in for NEW queue processing
Bug#883119: redshift-gtk: No redshift icon in the notification area
Package: redshift-gtk Version: 1.11-1 Severity: normal Dear Maintainer, After running "redshift-gtk" from terminal or xfce menu there is no icon in the xfce panel's notification area. The expected behaviour is that there is an icon which can be used for basic operations on redshift and displaying status. Regards, Mikolaj Menke -- System Information: Debian Release: buster/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=pl_PL.utf8, LC_CTYPE=pl_PL.utf8 (charmap=UTF-8), LANGUAGE=pl_PL.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages redshift-gtk depends on: ii gir1.2-appindicator3-0.1 0.4.92-5 ii python3 3.6.3-2 ii python3-gi3.26.1-1 ii python3-xdg 0.25-4 ii redshift 1.11-1 Versions of packages redshift-gtk recommends: ii at-spi2-core 2.26.0-2 redshift-gtk suggests no packages. -- no debconf information
Bug#883118: gmediarender crashes when gets an upnp search
Package: gmediarender Version: 0.0.7~git20160329+repack-1 Severity: normal Dear Maintainer, as usually, last weekend i upgraded my sid boxes. these run gmediarender. now i restarted two of them, then noticed that gmediarender crashes just after the first incoming upnp search. i dist-upgraded again, but the issue still exists. i see this if i start from the terminal: mc36@acer:~$ gmediarender gmediarender 0.0.7-git started [ gmediarender 0.0.7-git (libupnp-1.6.19+git20160116; glib-2.49.6; gstreamer-1.8.3) ]. Logging switched off. Enable with --logfile= (e.g. --logfile=/dev/stdout for console) Segmentation fault mc36@acer:~$ i see this in the dmesg: [ 9788.977982] gmediarender[6368]: segfault at 0 ip 7f4cbc7cd375 sp 7f4c2893c1b0 error 4 in libupnp.so.6.4.0[7f4cbc7b7000+36000] i see this packet as a trigger, but probaby others will do: User Datagram Protocol, Src Port: 40871, Dst Port: 1900 Source Port: 40871 Destination Port: 1900 Length: 157 Checksum: 0xafb8 [correct] [Calculated Checksum: 0xafb8] [Checksum Status: Good] [Stream index: 50] Simple Service Discovery Protocol M-SEARCH * HTTP/1.1\r\n [Expert Info (Chat/Sequence): M-SEARCH * HTTP/1.1\r\n] [M-SEARCH * HTTP/1.1\r\n] [Severity level: Chat] [Group: Sequence] Request Method: M-SEARCH Request URI: * Request Version: HTTP/1.1 HOST: 239.255.255.250:1900\r\n MAN: "ssdp:discover"\r\n MX: 3\r\n ST: upnp:rootdevice\r\n USER-AGENT: Android/25 UPnP/1.1 UPnPTool/1.4.8\r\n \r\n [Full request URI: http://239.255.255.250:1900*] [HTTP request 1/1] to trigger, i used android's upnptool. -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.13.0-1-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages gmediarender depends on: ii libc6 2.25-2 ii libglib2.0-0 2.54.2-1 ii libgstreamer1.0-0 1.12.3-1 ii libupnp6 1:1.6.24-1 ii lsb-base 9.20170808 Versions of packages gmediarender recommends: ii gstreamer1.0-plugins-good 1.12.3-1 Versions of packages gmediarender suggests: pn gstreamer-plugins-ugly ii gstreamer1.0-plugins-bad 1.12.3-2 -- no debconf information
Bug#883072: [Pkg-swan-devel] Bug#883072: strongswan-libcharon: Upgrade to 5.6.1-2 changed cypher proposals, can't connect to VPN anymore
That sounds totally reasonable - it would have been great if apt-listchanges had explained to me that I might have to add back disabled ciphers to connect to legacy VPNs. It's a shame that Windows doesn't offer MODP-2048 by default... Luca On 29 November 2017 at 13:34, Yves-Alexis Perez wrote: > On Wed, 2017-11-29 at 10:54 +0100, Luca Niccoli wrote: >> Is there a specific reason the default cipher proposal by >> strongswan doesn't offer aes256-sha256-prfsha256-modp1024 anymore? >> Would it be possible to add it back? > > Hi, > > see the first point in https://wiki.strongswan.org/versions/67: > > > Several algorithms were removed from the default ESP/AH and IKEv2 > proposals in compliance with > RFC 8221 and RFC 8247, respectively. Removed from the default ESP/AH > proposal were the > 3DES and Blowfish encryption algorithms and the HMAC-MD5 integrity > algorithm. From the IKEv2 default > proposal the HMAC-MD5 integrity algorithm and the MODP-1024 > Diffie-Hellman group were removed (the > latter is significant for Windows clients in their default configuration). > These algorithms may still be used in custom proposals. > > > We don't intend to divert from upstream on that (quite the contrary actually), > so no we won't add it back. I'll add a note to NEWS.Debian though, so users > are warned at upgrade time. > > Regards, > -- > Yves-Alexis
Bug#833706: Link to working hdmedia-boot
Working (can load 64-bit Debian 9.2 netinst ISOs successfully) permanent link : http://ftp.uk.debian.org/debian/dists/buster/main/installer-amd64/20170828/images/hd-media/ Latest Stretch "hd-media" is still broken, fails with the same "Loading libc6-udeb failed..." problem: http://ftp.uk.debian.org/debian/dists/stretch/main/installer-amd64/20170615%2Bdeb9u2/images/hd-media/
Bug#883117: tmux: FAQ files is still listed in docs even though it has been removed.
Package: tmux Version: 2.6-1 Severity: minor Dear Maintainer, the file debian/docs lists FAQ as a doc file. However, this file was removed from the source tree after 2.5-3. This causes warnings when building the package from source, and errors in older versions of debhelper: make[1]: Leaving directory '/build/tmux-2.6' dh_installdocs -O--parallel dh_installdocs: Cannot find (any matches for) "FAQ" (tried in .)
Bug#883115: perf: annotate doesn't work when symfs_filename contains shell-special characters
Package: linux-perf-4.9
Version: 4.9.51-1
Severity: normal
Dear Maintainer,
I was trying to profile a binary linked to a non-system numeric calculation
library. The library in question is in its rpath which contains spaces.
When I chose "annotate this function" in `perf report` UI, I got "rep: : no such file or directory".
The bug seems to be around line 1349 of tools/perf/util/annotate.c:
https://sources.debian.net/src/linux/4.9.30-2%2Bdeb9u2/tools/perf/util/annotate.c/#L1349
- a command line is being built there with no regard to possible shell-special
characters
in the variables.
A proper way to pass arbitrary strings to child process could be to pass them
in separate
arguments using execl(...) and refer to them inside the command line only as
"$1", "$2"
and so on - with proper quoting. Example:
snprintf(command, sizeof(command),
"\"$1\" %s%s --start-address=0x%016" PRIx64
" --stop-address=0x%016" PRIx64
" -l -d %s %s -C \"$2\" 2>/dev/null|grep -v \"$2\"|expand",
disassembler_style ? "-M " : "",
disassembler_style ? disassembler_style : "",
map__rip_2objdump(map, sym->start),
map__rip_2objdump(map, sym->end),
symbol_conf.annotate_asm_raw ? "" : "--no-show-raw",
symbol_conf.annotate_src ? "-S" : "");
// and later
execl("/bin/sh", "sh", "-c", command, "--", objdump_path ?
objdump_path : "objdump", symfs_filename, NULL);
Whatever special symbols are there in objdump_path or symfs_filename, they
won't escape from
the command line parameters because they are properly quoted in the command
line.
-- System Information:
Debian Release: 9.1
APT prefers stable-debug
APT policy: (500, 'stable-debug'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386, armhf
Kernel: Linux 4.9.0-3-amd64 (SMP w/6 CPU cores)
Locale: LANG=ru_RU.utf8, LC_CTYPE=ru_RU.utf8 (charmap=UTF-8),
LANGUAGE=ru_RU.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)
Versions of packages linux-perf-4.9 depends on:
ii libaudit1 1:2.6.7-2
ii libbabeltrace-ctf1 1.5.1-1
ii libc6 2.24-11+deb9u1
ii libdw1 0.168-1
ii libelf1 0.168-1
ii libnuma12.0.11-2.1
ii libperl5.24 5.24.1-3+deb9u2
ii libpython2.72.7.13-2
ii libslang2 2.3.1-5
ii libunwind8 1.1-4.1
ii zlib1g 1:1.2.8.dfsg-5
Versions of packages linux-perf-4.9 recommends:
ii linux-base 4.5
Versions of packages linux-perf-4.9 suggests:
pn linux-doc-4.9
-- no debconf information
Bug#872368: gpgme: please adjust libgpgme11 dependency on gnupg package
> Perhaps we need to consider shipping the same software (the full GnuPG > suite) in a single, monolithic package. That way, there won't be any > "new packages" for people to be upset about. > > The current package split is designed to try to accomodate people who > really want a minimalist installation. However, it appears that it is > antagonizing those same people, so it might not be worth maintaining. > Would you be happier if there were fewer binary packages? I understand your efforts to offer flexibility, and the challenges to get it to work right and the maintenance burden implied - and I appreciate your looking into this. However that sounds like a rather unfriendly proposition, especially at this point. It essentially sounds like the same bloat would still be there, except less visible, except people would just never know about it, and so couldn't be upset about it. Also way to go solving the problem of uninstallable packages by removing the option of having separate packages to begin with... I was complaining about a lack of freedom to choose what I don't want to install, and you make me an offer for even less freedom and choice. What antagonizes me is when I read in the changelog things that are for my use case bloat creep. It only mildly antagonize me an upgrade prompts for new extra packages; what really antagonize me is then when I look into it and see no option out of it because of the dependency creep hell. > reasonable mail user agents are doing exactly that. Please see > https://autocrypt.org/ for more discussion of this approach. If you > would like to encourage the Mutt developers to consider the Autocrypt, > that would be great! What do you want me to reply... that I'm sorry for using an unreasonable MUA, mutt, which must be making me out of touch from what encryption should be?... > As for "new services", there are *no* new services started by any of > these packages on a standard debian system if the functionality is > not requested. There are sockets opened by the user's systemd session > manager, but the services themselves do not run unless someone tries > to access them. If they try to access them, then presumably that > implies that they want them installed, no? No; that view is not very conservative. It could be a mistake or something inadvertent from the user; an exploit attempt; a bug or a corner case, a test gone wrong; or something enabled by the maintainer or packager who decided it was best for the average user, that the system administrator doesn't agree with. > The fact is, libgpgme explicitly fails in many use cases if gpg-agent > or dirmngr are not available. This partial, unpredictable failure is > not acceptable for a library package. I don't see how. That's normal error handling, and the very reason for error handling. Every time I start vlc, the pulseaudio audio output plugin is probed, and libpulse0 throws a failure because it can't connect to the PulseAudio server, which is not installed on my system. By that logic it would be unacceptable for libpulse0 to be installed without the full pulseaudio, unacceptable for libsystemd0 to be installed without a systemd init, unacceptable for libudev0 to be installed without udev... Oh the tyranny of pervasive access libraries, imagine that. > I see no reason to inflict this on users by default, which is what is > likely to happen for anything using gpgme on debian if the library > package does not explicitly depend on the full suite. Besides my above comparison, how about the reason that it violates the Debian policy?? I've brought it up several times in this thread already, and nobody has denied it. Does nobody care about honoring the policy on dependencies? You're making me depressed, it's like you're not listening to me. Regardless, once again, I've made several suggestions that would leave them installed by default like you mentioned. Nobody has denied that it would be a positive solution for everybody. -- Pierre Ynard "Une âme dans un corps, c'est comme un dessin sur une feuille de papier."
Bug#883116: jove FTCBFS: uses the build architecture compiler
Source: jove Version: 4.16.0.73-4 Tags: patch User: helm...@debian.org Usertags: rebootstrap jove fails to cross build from source, because it uses the build architecture compiler as a make default. After letting dh_auto_build pass cross compilers to make, the only missing piece to the puzzle is providing a suitable LOCALCC and then jove cross builds successfully. Please consider applying the attached patch. Helmut diff -u jove-4.16.0.73/debian/changelog jove-4.16.0.73/debian/changelog --- jove-4.16.0.73/debian/changelog +++ jove-4.16.0.73/debian/changelog @@ -1,3 +1,10 @@ +jove (4.16.0.73-4.1) UNRELEASED; urgency=medium + + * Non-maintainer upload. + * Fix FTCBFS: Let dh_auto_build pass cross compilers to make. (Closes: #-1) + + -- Helmut Grohne Wed, 29 Nov 2017 21:43:54 +0100 + jove (4.16.0.73-4) unstable; urgency=low * force nroff to ascii to work towards reproducable builds. diff -u jove-4.16.0.73/debian/rules jove-4.16.0.73/debian/rules --- jove-4.16.0.73/debian/rules +++ jove-4.16.0.73/debian/rules @@ -9,6 +9,8 @@ # Hardening export DPKG_EXPORT_BUILDFLAGS = 1 include /usr/share/dpkg/buildflags.mk +-include /usr/share/dpkg/buildtools.mk +CC_FOR_BUILD ?= cc # does nothing. build: @@ -18,7 +20,7 @@ build-jove: dh_testdir # $(MAKE) - $(MAKE) SYSDEFS="$(CFLAGS) $(CPPFLAGS) -DSYSVR4 -D_XOPEN_SOURCE=500 -DJLGBUFSIZ=14" + dh_auto_build -- SYSDEFS="$(CFLAGS) $(CPPFLAGS) -DSYSVR4 -D_XOPEN_SOURCE=500 -DJLGBUFSIZ=14" 'LOCALCC=$(CC_FOR_BUILD)' binary: binary-arch binary-indep
Bug#883114: admesh FTCBFS: fails running test suite despite DEB_BUILD_OPTIONS=nocheck
Source: admesh Version: 0.98.3-2 Tags: patch User: helm...@debian.org Usertags: rebootstrap admesh fails to cross build from source, because it fails running its test suite even though the build was performed with DEB_BUILD_OPTIONS=nocheck. After honouring the option, admesh cross builds successfully. Please consider applying the attached patch. Helmut diff --minimal -Nru admesh-0.98.3/debian/changelog admesh-0.98.3/debian/changelog --- admesh-0.98.3/debian/changelog 2017-11-25 14:16:13.0 +0100 +++ admesh-0.98.3/debian/changelog 2017-11-29 21:27:57.0 +0100 @@ -1,3 +1,10 @@ +admesh (0.98.3-2.1) UNRELEASED; urgency=medium + + * Non-maintainer upload. + * Fix FTCBFS: Honour DEB_BUILD_OPTIONS=nocheck. (Closes: #-1) + + -- Helmut Grohne Wed, 29 Nov 2017 21:27:57 +0100 + admesh (0.98.3-2) unstable; urgency=medium [ Graham Inggs ] diff --minimal -Nru admesh-0.98.3/debian/rules admesh-0.98.3/debian/rules --- admesh-0.98.3/debian/rules 2017-11-25 14:13:59.0 +0100 +++ admesh-0.98.3/debian/rules 2017-11-29 21:27:57.0 +0100 @@ -5,5 +5,7 @@ %: dh $@ --with autoreconf +ifeq ($(filter nocheck,$(DEB_BUILD_OPTIONS)),) override_dh_auto_test: ./debian/regression_test/regression_test +endif
Bug#882847: python3-searx: missing ionicons fonts breaks simple theme
On Mon, 27 Nov 2017 12:48:08 +0100 Johannes Schauer wrote:
> The simple theme contains references to the ionicons font in searx.min*.css.
> Since the font was removed from the source package, using the simple theme
> leads to 404 errors and to some buttons not being displayed properly. The
> ionicons font was removed because Debian currently doesn't include a compiler
> (like grunt-webfont) from svg to the font files.
>
> There are multiple ways to solve this problem:
>
> - replace the ionicons font with a similar font that already exists in
> Debian. This seems unlikely to work because searx compiles a custom
> set of svg files from ionicons plus magnet.svg into a new font.
>
> - remove the simple theme
>
> - hack the css to use the svg graphics directly instead of using the
> font
>
> For me, the missing fonts are still shown with some symbol, so I don't
> think the theme is yet unusable. Thus, I'm hesitant to remove the theme.
>
> I'll investigate the other two options.
There is another option:
Use fontforge (which is in Debian main) to convert from svg to ttf or woff.
This is also what the grunt-webfont module does. We could just call fontforge
in debian/rules and then not need grunt-webfont be packaged. Packaging it would
be tricky because it depends on another eight nodejs packages which are also
not in Debian.
To do this use the generate.py script from:
https://github.com/sapegin/grunt-webfont/blob/master/tasks/engines/fontforge/generate.py
And, assuming you placed navicon-round.svg and search.svg in /tmp/ionicons/svg
run the following:
cat << END | fontforge -script generate.py
{
"types": ["woff", "ttf"],
"fontFamilyName": "ion",
"fontFilename": "ion",
"dest": "/tmp/ionicons",
"round": 10e12,
"codepoints": {"navicon-round": 61697, "search": 61698},
"addLigatures": false,
"normalize": false,
"version": false,
"descent": 64,
"fontHeight": 512,
"inputDir": "/tmp/ionicons/svg"
}
END
The result will /tmp/ionicons/ion.woff and /tmp/ionicons/ion.ttf which will
make the frontpage of the simple theme work. The other icons can be added in
the same manner. Care just has to be taken to assign codepoints in the same
order as in:
https://github.com/asciimoo/searx/blob/master/searx/static/themes/simple/gruntfile.js
Thanks!
cheers, josch
signature.asc
Description: signature
Bug#881808: [Pkg-varnish-devel] Bug#881808: varnish: CVE-2017-8807: Data leak - '-sfile' Stevedore transient objects
Salvatore Bonaccorso writes: > Any news regarding the upload for unstable? I'm building and testing it now, and it should hit unstable shortly. -- Stig Sandbeck Mathisen
Bug#883113: attica-kf5 FTCBFS: fails to run qhelpgenerator
Source: attica-kf5 Version: 5.37.0-2 Tags: patch User: helm...@debian.org Usertags: rebootstrap attica-kf5 fails to cross build from source, because it fails running qhelpgenerator (through doxygen). Doxygen doesn't notice the failure (#818379), but the build finally fails due to missing files. The issue here is that qhelpgenerator needs libqt5sql5-sqlite for the build architecture, but Build-Depends only request it for the host architecture. qhelpgenerator thus perceives it as missing and refuses to operate. The solution is to annotate the dependency with :native and that makes attica-kf5 cross build successfully indeed. Please consider applying the attached patch. Helmut diff --minimal -Nru attica-kf5-5.37.0/debian/changelog attica-kf5-5.37.0/debian/changelog --- attica-kf5-5.37.0/debian/changelog 2017-09-03 09:57:21.0 +0200 +++ attica-kf5-5.37.0/debian/changelog 2017-11-29 21:01:20.0 +0100 @@ -1,3 +1,10 @@ +attica-kf5 (5.37.0-2.1) UNRELEASED; urgency=medium + + * Non-maintainer upload. + * Fix FTCBFS: Annotate libqt5sql5-sqlite with :native. (Closes: #-1) + + -- Helmut Grohne Wed, 29 Nov 2017 21:01:20 +0100 + attica-kf5 (5.37.0-2) sid; urgency=medium * New revision diff --minimal -Nru attica-kf5-5.37.0/debian/control attica-kf5-5.37.0/debian/control --- attica-kf5-5.37.0/debian/control2017-09-03 09:57:21.0 +0200 +++ attica-kf5-5.37.0/debian/control2017-11-29 21:01:19.0 +0100 @@ -8,7 +8,7 @@ doxygen, extra-cmake-modules (>= 5.37.0~), graphviz, - libqt5sql5-sqlite, + libqt5sql5-sqlite:native, pkg-kde-tools (>= 0.15.15ubuntu1~), qtbase5-dev (>= 5.7.0~), qttools5-dev-tools (>= 5.4),
Bug#683495: Mandating use of /usr/bin/perl in Policy
Bill Allombert wrote: > On Mon, Nov 27, 2017 at 09:10:12PM +0100, Bill Allombert wrote: >> On Mon, Nov 27, 2017 at 11:34:15AM -0600, Gunnar Wolf wrote: >>> Sean Whitton dijo [Sat, Oct 14, 2017 at 11:49:59AM -0700]: I am seeking seconds for the following patch to close this bug, which I think is uncontroversial at this point. > @@ -185,7 +185,7 @@ All command scripts, including the package maintainer > scripts inside the > package and used by ``dpkg``, should have a ``#!`` line naming the shell > to be used to interpret them. > > -In the case of Perl scripts this should be ``#!/usr/bin/perl``. > +In the case of Perl scripts this must be ``#!/usr/bin/perl``. > > When scripts are installed into a directory in the system PATH, the > script name should not include an extension such as ``.sh`` or ``.pl`` >>> >>> Seconded. >> >> Before we make it a must, is there a lintian test for it ? >> How may packages need to be fixed ? > > Given Russ answer about the lintian test and result, I second this > proposal. Seconded as well. Thanks! Jonathan
Bug#883112: ibus-gtk: Don't depend on gtk2
From 8caaabf274c1089d13bb1ce5ff138870d931e7c2 Mon Sep 17 00:00:00 2001 From: Jeremy Bicha Date: Wed, 29 Nov 2017 14:20:58 -0500 Subject: [PATCH] ibus-gtk: Don't depend on libgtk2.0-0 so that ibus-gtk can be pre-installed without requiring that GTK+2 be installed Closes: #883112 --- debian/rules | 3 +++ 1 file changed, 3 insertions(+) diff --git a/debian/rules b/debian/rules index d6f9326..20c1331 100755 --- a/debian/rules +++ b/debian/rules @@ -51,6 +51,9 @@ override_dh_install: override_dh_makeshlibs: dh_makeshlibs -Nibus-gtk -Nibus-gtk3 +override_dh_shlibdeps: + dh_shlibdeps -- -xlibgtk2.0-0 + override_dh_auto_test: -dh_auto_test -- 2.14.1
Bug#868900: iso-scan: should be able to copy the ISO into RAM before mount
Hi, On 19-07-2017 16:19, Raphael Hertzog wrote: Source: iso-scan Version: 1.57 Severity: wishlist Tags: patch When you use an ISO image stored on a disk, it makes it impossible to re-use that disk in the installation process (e.g. for automatic partitioning). In order to avoid this limitation, I would like iso-scan to be able to copy the ISO image into RAM and to mount it from there. The attached patch implements precisely when the debconf question "iso-scan/copy_iso_to_ram" returns true. It would be nice to see this merged (the patch applies cleanly on top of the one in #868859, but you can also merge it separately if you drop the changelog entry). Let me know if there's anything to improve before it's ready to be merged (notably on the debconf template, etc.). [...] Installation guide update ?
Bug#883112: ibus-gtk: Don't depend on gtk2
Package: ibus-gtk Version: 1.5.14-3 Tags: patch I'm attaching a patch in a follow-up email to allow ibus-gtk to not have a dependency on libgtk2.0-0. I believe this is safe because the package only provides an input method module for GTK2. GTK2 should be the only thing that would try to load that. This is important because it's desirable to have systems that don't have GTK2 installed by default but that will still work well when GTK2 apps are installed. I intend to apply the patch in Ubuntu soon. Please apply in Debian so that I can drop libgtk2.0-0's new Recommends on ibus-gtk. Thanks, Jeremy Bicha
Bug#883107: octicons: Ships binaries without building them
On 29-Nov-2017, Johannes Schauer wrote: > Source: octicons > Version: 4.4.0-1 > Severity: serious The justification for this bug severity as “serious” is, IMO, that it constitutes a violation of Policy §2.2.1: […] the packages in ‘main’ […] must not require or recommend a package outside of main for compilation or execution […] This package has an undeclared build dependency: the compiler for its font files. That the package successfully builds is because that undeclared dependency is circumvented, by including the non-source form of the work in the source package. (Whether this violates Policy §4.13 is a different matter.) So, this bug should be resolved by: * Removing the package until its true build dependencies (including the build dependency to compile the fonts from source) are all in Debian. * Working with others to get those build dependencies into Debian. * Updating the package build rules to build the packages from the actual source. -- \ “All my life I've had one dream: to achieve my many goals.” | `\—Homer, _The Simpsons_ | _o__) | Ben Finney signature.asc Description: PGP signature
Bug#883111: sash: [INTL:ru] Russian translation of debconf template
Package: sash Severity: wishlist Tags: l10n patch Dear Maintainer, please find attached the Russian debconf translation of sash. Regards, Lev Lamberov -- System Information: Debian Release: buster/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=ru_RU.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8), LANGUAGE=ru_RU.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages sash depends on: ii debconf [debconf-2.0] 1.5.65 sash recommends no packages. Versions of packages sash suggests: ii doc-debian 6.4 # SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the sash package. # FIRST AUTHOR , YEAR. # msgid "" msgstr "" "Project-Id-Version: sash\n" "Report-Msgid-Bugs-To: s...@packages.debian.org\n" "POT-Creation-Date: 2017-07-16 19:14+0200\n" "PO-Revision-Date: 2017-11-30 00:34+0500\n" "Language-Team: \n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Poedit 2.0.4\n" "Last-Translator: Lev Lamberov \n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" "Language: ru\n" #. Type: error #. Description #: ../templates:1001 msgid "sashroot user detected" msgstr "Обнаружен пользователь sashroot" #. Type: error #. Description #: ../templates:1001 msgid "" "Previous versions of sash offered to create a root user with shell set to /" "bin/sash. This system has such a user." msgstr "" "Предыдущие версии sash предлагали создать суперпользователя, для которого " "в качестве командной оболочки выбиралась /bin/sash. В данной системе такой " "пользователь имеется." #. Type: error #. Description #: ../templates:1001 msgid "" "This can unfortunately not be automatically removed together with the " "package, so you need to manually delete the sashroot user." msgstr "" "К сожалению, этот пользователь не может быть автоматически удалён при " "удалении данного пакета, поэтому вам следует удалить пользователя sashroot " "вручную."
Bug#883110: privoxy: [INTL:ru] Russian translation of debconf template
Package: privoxy Severity: wishlist Tags: l10n patch Dear Maintainer, please find attached the Russian debconf translation of privoxy. Regards, Lev Lamberov -- System Information: Debian Release: buster/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=ru_RU.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8), LANGUAGE=ru_RU.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages privoxy depends on: ii adduser3.116 ii debconf [debconf-2.0] 1.5.65 ii libc6 2.25-2 ii libpcre3 2:8.39-4 ii logrotate 3.11.0-0.1 ii lsb-base 9.20170808 ii ucf3.0036 ii zlib1g 1:1.2.8.dfsg-5 Versions of packages privoxy recommends: ii doc-base 0.10.7 privoxy suggests no packages. # SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # FIRST AUTHOR , YEAR. # msgid "" msgstr "" "Project-Id-Version: privoxy\n" "Report-Msgid-Bugs-To: priv...@packages.debian.org\n" "POT-Creation-Date: 2016-04-08 17:17+0200\n" "PO-Revision-Date: 2017-11-30 00:29+0500\n" "Language-Team: \n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Poedit 2.0.4\n" "Last-Translator: Lev Lamberov \n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" "Language: ru\n" #. Type: string #. Description #: ../templates:1001 msgid "Adresses on with Privoxy listens:" msgstr "Адреса, прослушиваемые Privoxy:" #. Type: string #. Description #: ../templates:1001 msgid "" "Please enter a space separated list of address:port combinations on which " "Privoxy will listen for client requests." msgstr "" "Введите комбинации вида адрес:порт, разделяя их пробелами, на которых " "Privoxy будет прослушивать клиентские запросы."
Bug#883109: libvirt: [INTL:ru] Russian translation of debconf template
Package: libvirt Severity: wishlist Tags: l10n patch Dear Maintainer, please find attached the Russian debconf translation of libvirt. Regards, Lev Lamberov -- System Information: Debian Release: buster/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=ru_RU.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8), LANGUAGE=ru_RU.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) # SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the libvirt package. # FIRST AUTHOR , YEAR. # msgid "" msgstr "" "Project-Id-Version: libvirt\n" "Report-Msgid-Bugs-To: libv...@packages.debian.org\n" "POT-Creation-Date: 2016-12-22 14:20+0100\n" "PO-Revision-Date: 2017-11-30 00:22+0500\n" "Language-Team: \n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Poedit 2.0.4\n" "Last-Translator: Lev Lamberov \n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" "Language: ru\n" #. Type: boolean #. Description #: ../libvirt-daemon-system.templates:1001 msgid "Continue with incorrect libvirt-qemu user/group ID(s)?" msgstr "Продолжить с неправильными идентификаторами пользователя/группы для libvirt-qemu?" #. Type: boolean #. Description #: ../libvirt-daemon-system.templates:1001 msgid "" " The user/group ID (uid/gid) allocated for libvirt-qemu (64055)\n" " seems to be taken by another user/group, thus it is not possible\n" " to create the user/group with this numeric ID." msgstr "" " Похоже, что идентификатор пользователя/группы (uid/gid) выделенный\n" " для libvirt-qemu (64055) занят другим пользователем/группой, поэтому не удаётся\n" " создать пользователя/группу с таким номером идентификатора." #. Type: boolean #. Description #: ../libvirt-daemon-system.templates:1001 msgid "" " The migration of guests with disk image files shared over NFS\n" " requires a static libvirt-qemu user and group ID (uid and gid)\n" " between the source and destination host systems." msgstr "" " Для миграция гостевых систем с файлами образов дисков с общим доступом\n" " через NFS требуется статичный идентификатор пользователя и группы (uid и gid)\n" " libvirt-qemu как на системе-источнике, так и на системе-получателе." #. Type: boolean #. Description #: ../libvirt-daemon-system.templates:1001 msgid "" " If guest migration over NFS is not required, you can continue\n" " the installation." msgstr "" " Если производить миграцию гостевых систем через NFS не требуется, то вы\n" " можете продолжить установку." #. Type: boolean #. Description #: ../libvirt-daemon-system.templates:1001 msgid "" " In order to resolve this problem, do not continue the installation,\n" " release the 64055 uid/gid (which might involve permission changes),\n" " then install this package again." msgstr "" " Для разрешения этой проблемы не продолжайте установку,\n" " сначала освободите uid/gid 64055 (для этого может потребоваться\n" " изменение прав доступа), а затем заново установите данный пакет."
Bug#873302: openvpn: openssl 1.1 tls version support
On Wed, Nov 29, 2017 at 03:36:14PM +0100, Bernhard Schmidt wrote: > Hi Kurt, > > Steffan has posted a patch for this that is losely based on yours. It is > not merged yet, comments welcome. > > https://sourceforge.net/p/openvpn/mailman/openvpn-devel/thread/20171126141555.25930-1-steffan%40karger.me/#msg36136873 I have some comments: - It has: +/* TLS Version defines are new in OpenSSL 1.1 */ +#ifndef TLS1_0_VERSION +#define TLS1_0_VERSION 0x0301 +#endif +#ifndef TLS1_1_VERSION +#define TLS1_1_VERSION 0x0302 +#endif +#ifndef TLS1_2_VERSION +#define TLS1_2_VERSION 0x0303 +#endif It's TLS1_VERSION (not TLS1_0_VERSION) The defines all exist in at least 1.0.1, the version that added support for TLS 1.1 and 1.2 - It calls SSL_CTX_set_min_proto_version() unconditionally, overriding the library default. In the 1.0.2 case SSLv2 and SSLv3 are then disabled, in the 1.1 case it could enable SSLv3. - openssl_tls_version() should probably add SSL3_VERSION support. Kurt
Bug#875822: Should certmaster be removed from Debian?
Hi Andreas, I'm so sorry for taking this long to respond. I've been stuck out of the country due to a Visa issue (7 weeks), but back now temporarily. Yes, please remove, and thank you! Nima On Sat, Sep 30, 2017 at 9:22 AM, Andreas Moog wrote: > Hello Nima, > > I've been looking at this bug report and wonder if the best course of > action > for Debian would be to remove certmaster from the archive. It hasn't seen > any > maintainer-upload since 2009, the homepage is gone and I can't find any > active upstream development repository. Additionally, the popcon is really > low > (expected from a experimental-only package) and it was never included in > any > stable Debian release. > > If you agree on the removal, just say the word and I'll file the bug. > > Thanks! > > Regards, > Andreas > > -- > PGP-encrypted mails preferred > PGP Fingerprint: 74CD D9FE 5BCB FE0D 13EE 8EEA 61F3 4426 74DE 6624 >
Bug#883108: kerneloops: Don't show in Ubuntu's Startup Applications
Source: kerneloops Version: 0.12+git20140509-6 Ubuntu still includes the Startup Applications app in the default install (it was dropped in gnome-session upstream years ago). To prevent users from being able to easily disable system services that they probably shouldn't, Ubuntu makes sure that apps included by default set NoDisplay=true in their autostart files. This hides the services from the Startup Applications app. By the way, MATE has a similar tool but it doesn't respect NoDisplay yet. https://github.com/mate-desktop/mate-session-manager/issues/134 Thanks, Jeremy Bicha
Bug#878088: reportbug: please inform security and lts teams about security update regressions
Hi! On Wed, 29 Nov 2017 00:09:28 +0100 Raphael Geissert wrote: > Hi, > > On 9 October 2017 at 19:47, Markus Koschany wrote: > [...] > > If the bug is reported against a package with a version number that > > indicates a security update like +deb7u1 or ~deb8u3, both team mailing > > lists should be added to CC after the bug reporter confirms that this > > is a regression caused by a security update. > > Perhaps reportbug could check the package's changelog to determine > whether the latest update was a security or LTS one. It could do so by > looking for the sec team's or LTS' snippet on the latest version. > > Then and only then it could also ask for confirmation, as in: "is the > bug a recent regression?", and CC the corresponding team. For > instance, there's no need to CC the security team for regressions by > LTS updates. Adding both teams to CC was intentional because a regression might affect more than one Debian distribution at the same time and sometimes people just detect it in stable/oldstable/oldoldstable first but the same bug affects the rest as well. Of course if we communicate such regressions between both teams, we can change this behavior. I don't see any mechanism or code in reportbug that deals with parsing the changelog at the moment which means this idea is rather intrusive. If we really want to go this route then we have to make sure that those changelog strings are unambiguous like "Non-maintainer upload by the security team" or "Non-maintainer upload by the LTS team". External contributors which are not part of both teams also have to adhere to this naming scheme. I would prefer this solution. At the moment we check for the version string and I think that's sufficient for an initial check. The following actions should be triggered by the user himself by answering specific questions. What do you think about adding a second question after "Do you want to report a regression because of a security update?" Is this regression in Debian's LTS release? Yes, this bug is in the LTS release. -> only CC the LTS team No, this bug is not in the LTS release -> CC the security team What do you think about that? Please also ask the other team members for their opinion. Cheers, Markus signature.asc Description: OpenPGP digital signature
Bug#883087: consolation: very slow restart
* Bill Allombert , 2017-11-29, 17:43: # time /etc/init.d/consolation stop real0m30.028s user0m0.336s sys 0m1.100s Does consolation works correctly otherwise ? Yes. I took a look at the init script, and it does this: start-stop-daemon --stop --quiet --retry=TERM/30/KILL/5 --pidfile $PIDFILE --name $NAME But consolation doesn't create any pidfile, so I can't see how could it work. -- Jakub Wilk
Bug#883107: octicons: Ships binaries without building them
Source: octicons Version: 4.4.0-1 Severity: serious Hi, the octicons package ships font binary files directly copied from the upstream tarball without building them from source. This is problematic for two reasons: 1. it is not trivial to verify that the source code upstream supplies is indeed the source for the binaries that we ship. Maybe a README.Source could be added that explains how this can be verified manually? 2. the package is distributed under the MIT license but our users will not be able to make use of the freedoms this license is granting them (specifically, modify the files we ship) using just the tools in Debian main, instead they need tools outside of Debian. It is violating the spirit of the DFSG if we are shipping files that our users are unable to modify. Both issues would be fixed if opticons would build the fonts from source. Thanks! cheers, josch
Bug#883106: mutt: null pointer dereference in mbox_to_udomain()
Package: mutt
Version: 1.9.1-5
Mutt crashes on this mbox:
$ printf 'From Wed Nov 0 0: 0\nTo:=??B??=:\n' > nullptr.mbox
$ mutt -R -f nullptr.mbox >/dev/null 2>&1
GDB says it's a null pointer dereference in mbox_to_udomain():
(gdb) up
#1 0x566ffd01 in mbox_to_udomain (mbx=,
user=user@entry=0xffe2b4f0, domain=domain@entry=0xffe2b4f4) at ../../mutt_idna.c:53
53p = strchr (buff, '@');
(gdb) print buff
$1 = 0x0
(gdb) bt
#0 __strchr_sse2_bsf () at
../sysdeps/i386/i686/multiarch/strchr-sse2-bsf.S:97
#1 0x566ffd01 in mbox_to_udomain (mbx=,
user=user@entry=0xffe2b4f0, domain=domain@entry=0xffe2b4f4) at ../../mutt_idna.c:53
#2 0x56700556 in mutt_addr_for_display (a=0x57eb3190) at
../../mutt_idna.c:293
#3 0x566c8e60 in mutt_get_name (a=0x57eb3190) at ../../sort.c:104
#4 0x5668dfb7 in make_from (hdr=0x57eaeea8, buf=buf@entry=0xffe2b63c "Oct 31",
do_lists=, do_lists@entry=1, len=1024) at ../../hdrline.c:121
#5 0x5668f4be in hdr_format_str (dest=0xffe2bbec "", destlen=1024, col=16, cols=80, op=76 'L', src=0x57ea9fa0 "
(%?l?%4l&%4c?) %s", prefix=0xffe2baec "-15.15", ifstring=0xffe2bb6c "", elsestring=0xffe2bfec
"", data=4293051440, flags=(MUTT_FORMAT_MAKEPRINT | MUTT_FORMAT_ARROWCURSOR | MUTT_FORMAT_INDEX)) at ../../hdrline.c:494
#6 0x566d3ee8 in mutt_FormatString (dest=0xffe2c50c " 1 N F Oct 31 \254\311\342\377",
destlen=1023, col=, cols=80, src=, callback=0x5668e280
, data=4293051440, flags=(MUTT_FORMAT_MAKEPRINT | MUTT_FORMAT_ARROWCURSOR |
MUTT_FORMAT_INDEX)) at ../../muttlib.c:1513
#7 0x5668f7e0 in _mutt_make_string (dest=0xffe2c50c " 1 N F Oct 31 \254\311\342\377",
destlen=1024, s=0x57ea9f88 "%4C %Z %{%b %d} %-15.15L (%?l?%4l&%4c?) %s", ctx=0x57eaebf8,
hdr=0x57eb30a8, flags=(MUTT_FORMAT_MAKEPRINT | MUTT_FORMAT_ARROWCURSOR | MUTT_FORMAT_INDEX)) at
../../hdrline.c:779
#8 0x56673794 in index_make_entry (s=0xffe2c50c " 1 N F Oct 31
\254\311\342\377", l=1024, menu=0x57eb3210, num=0) at ../../curs_main.c:253
#9 0x56697b02 in menu_make_entry (s=s@entry=0xffe2c50c " 1 N F Oct 31
\254\311\342\377", menu=menu@entry=0x57eb3210, i=i@entry=0, l=1024) at
../../menu.c:188
#10 0x56697ebf in menu_redraw_index (menu=0x57eb3210) at ../../menu.c:263
#11 0x56674049 in index_menu_redraw (menu=0x57eb3210) at ../../curs_main.c:521
#12 0x56674569 in mutt_index_menu () at ../../curs_main.c:676
#13 0x56658de3 in main (argc=, argv=,
environ=) at ../../main.c:1252
This was fixed a while ago in NeoMutt[0], but upstream Mutt is still
affected.
[0] https://github.com/neomutt/neomutt/issues/778
-- System Information:
Architecture: i386
Versions of packages mutt depends on:
ii libassuan02.4.4-1
ii libc6 2.25-2
ii libcomerr21.43.7-1
ii libgnutls30 3.5.16-1
ii libgpg-error0 1.27-5
ii libgpgme111.9.0-6
ii libgssapi-krb5-2 1.15.2-2
ii libidn11 1.33-2
ii libk5crypto3 1.15.2-2
ii libkrb5-3 1.15.2-2
ii libncursesw5 6.0+20171125-1
ii libsasl2-22.1.27~101-g0780600+dfsg-3
ii libtinfo5 6.0+20171125-1
ii libtokyocabinet9 1.4.48-11+b1
--
Jakub Wilk
Bug#858538: RFS: fadecut/0.2.1-1
Hi Marco, sorry I forgot about this package. I will review it ASAP, Best regards Anton 2017-11-29 19:32 GMT+01:00 Marco Balmer : > Dear mentors, > > I am still looking for a sponsor for my package "fadecut" > > * Package name: fadecut > Version : 0.2.1-1 > Upstream Author : Martin Gafner, Marco Balmer > * URL : https://github.com/fadecut/fadecut > * License : GPL-3.0 > Section : sound > > It builds those binary packages: > > fadecut - toolset to rip audiostreams, cut, fade in/out and tag > > To access further information about this package, please visit the > following URL: > > https://mentors.debian.net/package/fadecut > https://github.com/fadecut/fadecut/tree/debian > > Alternatively, one can download the package with dget using this > command: > > dget -x > https://mentors.debian.net/debian/pool/main/f/fadecut/fadecut_0.2.1-1.dsc > > Changes since the last upload: > > fadecut (0.2.1-1) unstable; urgency=low > > * New 0.2.1 upstream release > * Standards bumped to 4.1.1 > * Add pandoc to build-depends > * Add opus-tools to depends > * Add gzip to build-depends > * Add mediainfo to depends and build-depends > * Change watch-file url > * Replace with new Vcs-Git to github url > * Integrate changes from NMU two years ago (to be consistend d/changelog) > * Bump compat level 10 and debhelper >=10 > > Thank you in advance, > Marco Balmer
Bug#883105: thunderbird crashes when started
Package: thunderbird Version: 1:52.4.0-1 Severity: important Dear Maintainer, thunderbird crashes when started: ExceptionHandler::GenerateDump cloned child 8733 ExceptionHandler::SendContinueSignalToChild sent continue signal to child ExceptionHandler::WaitForContinueSignal waiting for continue signal... *** Error in `/usr/lib/thunderbird/crashreporter': double free or corruption (fasttop): 0x55d38585c780 *** Best regards Heinrich Schuchardt -- System Information: Debian Release: buster/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 4.13.0-1-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US:en (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages thunderbird depends on: ii debianutils 4.8.3 ii fontconfig2.12.6-0.1 ii libatk1.0-0 2.26.0-2 ii libc6 2.25-2 ii libcairo-gobject2 1.15.8-2 ii libcairo2 1.15.8-2 ii libdbus-1-3 1.12.2-1 ii libdbus-glib-1-2 0.108-3 ii libevent-2.1-62.1.8-stable-4 ii libffi6 3.2.1-6 ii libfontconfig12.12.6-0.1 ii libfreetype6 2.8.1-0.1 ii libgcc1 1:7.2.0-16 ii libgdk-pixbuf2.0-02.36.11-1 ii libglib2.0-0 2.54.1-1 ii libgtk-3-03.22.24-3 ii libhunspell-1.6-0 1.6.2-1 ii libpango-1.0-01.40.12-1 ii libpangocairo-1.0-0 1.40.12-1 ii libpangoft2-1.0-0 1.40.12-1 ii libpixman-1-0 0.34.0-1 ii libstartup-notification0 0.12-4+b2 ii libstdc++67.2.0-16 ii libvpx4 1.6.1-3 ii libx11-6 2:1.6.4-3 ii libx11-xcb1 2:1.6.4-3 ii libxcb-shm0 1.12-1 ii libxcb1 1.12-1 ii libxcomposite11:0.4.4-2 ii libxdamage1 1:1.1.4-3 ii libxext6 2:1.3.3-1+b2 ii libxfixes31:5.0.3-1 ii libxrender1 1:0.9.10-1 ii libxt61:1.1.5-1 ii psmisc23.1-1 ii x11-utils 7.7+3+b1 ii zlib1g1:1.2.8.dfsg-5 Versions of packages thunderbird recommends: ii hunspell-en-us [hunspell-dictionary] 1:2017.08.24 ii lightning 1:52.4.0-1 Versions of packages thunderbird suggests: ii apparmor 2.11.1-3 pn fonts-lyx ii libgssapi-krb5-2 1.15.2-2 -- no debconf information
Bug#858538: RFS: fadecut/0.2.1-1
Dear mentors, I am still looking for a sponsor for my package "fadecut" * Package name: fadecut Version : 0.2.1-1 Upstream Author : Martin Gafner, Marco Balmer * URL : https://github.com/fadecut/fadecut * License : GPL-3.0 Section : sound It builds those binary packages: fadecut - toolset to rip audiostreams, cut, fade in/out and tag To access further information about this package, please visit the following URL: https://mentors.debian.net/package/fadecut https://github.com/fadecut/fadecut/tree/debian Alternatively, one can download the package with dget using this command: dget -x https://mentors.debian.net/debian/pool/main/f/fadecut/fadecut_0.2.1-1.dsc Changes since the last upload: fadecut (0.2.1-1) unstable; urgency=low * New 0.2.1 upstream release * Standards bumped to 4.1.1 * Add pandoc to build-depends * Add opus-tools to depends * Add gzip to build-depends * Add mediainfo to depends and build-depends * Change watch-file url * Replace with new Vcs-Git to github url * Integrate changes from NMU two years ago (to be consistend d/changelog) * Bump compat level 10 and debhelper >=10 Thank you in advance, Marco Balmer signature.asc Description: PGP signature
Bug#882027: Problem solved
Hi, the solution is allready reportet nad nothing to do with systemd: https://wiki.debian.org/KernelModesetting -> section nVidia GfxCards. Regards Torsten
