Bug#1071759: firebird4.0 FTBFS with libre2-dev 20240501
Source: firebird4.0 Version: 4.0.4.3010.ds6-3 Severity: serious Tags: ftbfs patch Forwarded: https://github.com/FirebirdSQL/firebird/commit/936e045d50f4f6632017e1cb0edea6ef960fc80c https://buildd.debian.org/status/logs.php?pkg=firebird4.0=4.0.4.3010.ds6-3%2Bb1 ... In file included from /usr/include/absl/base/config.h:86, from /usr/include/absl/base/internal/invoke.h:40, from /usr/include/absl/base/call_once.h:34, from /usr/include/re2/re2.h:222, from /<>/src/common/../common/SimilarToRegex.h:25, from /<>/src/common/SimilarToRegex.cpp:22: /usr/include/absl/base/policy_checks.h:79:2: error: #error "C++ versions less than C++14 are not supported." 79 | #error "C++ versions less than C++14 are not supported." | ^ ...
Bug#1070852: transition: gdal
On Fri, May 24, 2024 at 11:29:46AM +0200, Emilio Pozuelo Monfort wrote: > On 24/05/2024 11:02, Sebastiaan Couwenberg wrote: > > On 5/24/24 9:30 AM, Emilio Pozuelo Monfort wrote: > > > If that's the case, gdal should probably break older versions of > > > libgdal-grass so that that combination is not possible. That will > > > also make britney happy, otherwise it will block gdal due to the > > > test regression. > > > > gdal, grass, and libgdal-grass just need to be tested together. > > > > I'd rather drop the autopkgtest test than having to maintain the Breaks in > > gdal. > > *shrug*. If that's a runtime check, then there's an issue with the > dependencies/breaks, as one could have old libgdal-grass with newer gdal (as > is happening in the autopkgtest) and then libgdal-grass is broken. > > If it's a check that's being done in libgdal-grass, then maybe that check > can be dropped? > > With the information that autopkgtest has, the current situation is broken > and testing migration will be (rightly) blocked. This is the old problem that the release team wants smooth transitions, but mixing several so-versions of a library in one binary works only sometimes. Symbol versions fix some cases, but even that is not sufficient in all cases. Package: libgdal35 Breaks: libgdal34t64, libgdal32 would be the safe way to ensure no breakage during upgrades or after a partial upgrade from bookworm or trixie. > Cheers, > Emilio cu Adrian
Bug#1070256: closed by Debian FTP Masters (reply to Alec Leamas ) (Bug#1070256: fixed in libcxx-serial 1.2.1-6)
Control: reopen -1 On Sun, May 12, 2024 at 07:09:07PM +, Debian Bug Tracking System wrote: >... > Changes: > libcxx-serial (1.2.1-6) trixie; urgency=medium > . >* Avoid crash when running with nocheck profile. Closes: #1070256 >... 1.2.1-7 does still FTBFS: https://buildd.debian.org/status/fetch.php?pkg=libcxx-serial=sh4=1.2.1-7=1715548569=0 ifeq (,$(findstring nocheck,$(DEB_BUILD_PROFILES))) ENABLE_TESTS := ON else ENABLE_TESTS := OFF endif This should be DEB_BUILD_OPTIONS, not DEB_BUILD_PROFILES. cu Adrian
Bug#1071680: ocaml-linenoise FTBFS on bytecode architectures
Source: ocaml-linenoise Version: 1.5.1-1 Severity: important Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=ocaml-linenoise=1.5.1-1 ... dh_missing -a -O--buildsystem=ocaml_dune dh_missing: warning: usr/lib/ocaml/linenoise/liblinenoise_stubs.a exists in debian/tmp but is not installed to anywhere dh_missing: error: missing files, aborting The following debhelper tools have reported what they installed (with files per package) * dh_install: liblinenoise-ocaml (3), liblinenoise-ocaml-dev (7) * dh_installdocs: liblinenoise-ocaml (0), liblinenoise-ocaml-dev (2) * dh_installexamples: liblinenoise-ocaml (0), liblinenoise-ocaml-dev (2) If the missing files are installed by another tool, please file a bug against it. When filing the report, if the tool is not part of debhelper itself, please reference the "Logging helpers and dh_missing" section from the "PROGRAMMING" guide for debhelper (10.6.3+). (in the debhelper package: /usr/share/doc/debhelper/PROGRAMMING.md.gz) Be sure to test with dpkg-buildpackage -A/-B as the results may vary when only a subset is built If the omission is intentional or no other helper can take care of this consider adding the paths to debian/not-installed. make: *** [debian/rules:7: binary-arch] Error 255
Bug#1064938: isospec - maintainer does not access email from ftp-master
Hi Bastian, The Debichem Group maintains ~ 140 packages with this maintainer address at lists.alioth.debian.org. Was this any misconfiguration on the debian.org side, or is/was this any issue at alioth-lists.debian.net, or what else might have gone wrong here? Thanks Adrian On Tue, Feb 27, 2024 at 11:23:14PM +0100, Bastian Blank wrote: > Package: isospec > Severity: serious > > - Forwarded message from debichem-devel-ow...@alioth-lists.debian.net > - > > From: debichem-devel-ow...@alioth-lists.debian.net > To: ftpmas...@ftp-master.debian.org > Subject: Processing of isospec_2.2.1-4.1~exp2_source.changes > > You are not allowed to post to this mailing list From: a domain which > publishes a DMARC policy of reject or quarantine, and your message has > been automatically rejected. If you think that your messages are > being rejected in error, contact the mailing list owner at > debichem-devel-ow...@alioth-lists.debian.net. > > > Date: Sat, 24 Feb 2024 02:03:38 + > From: Debian FTP Masters > To: debichem-de...@lists.alioth.debian.org > Subject: Processing of isospec_2.2.1-4.1~exp2_source.changes > > isospec_2.2.1-4.1~exp2_source.changes uploaded successfully to localhost > along with the files: > isospec_2.2.1-4.1~exp2.dsc > isospec_2.2.1-4.1~exp2.debian.tar.xz > isospec_2.2.1-4.1~exp2_source.buildinfo > > Greetings, > > Your Debian queue daemon (running on host usper.debian.org) > > > > - End forwarded message - > > -- > Hailing frequencies open, Captain.
Bug#1059133: dogecoin: FTBFS: error: invalid ‘static_cast’ from type ‘boost::detail::function::function_buffer_members::obj_ptr_t’ {aka ‘void*’} to type ‘void (*)(bool, const CBlockIndex*)’
Control: reassign -1 libboost1.83-dev 1.83.0-2.1 Control: retitle -1 libboost1.83-dev: Please add upstream fix needed for dogecoin Control: affects -1 src:dogecoin Control: tags -1 patch Control: forwarded -1 https://github.com/boostorg/function/pull/47 On Tue, Jan 09, 2024 at 06:37:44PM -0500, Chad Jacob Milios wrote: > Please see https://github.com/boostorg/function/pull/47 and let us know if > that minor modification helps you out. Yes, it does. cu Adrian
Bug#1028634: closed by Sergio Durigan Junior (Re: Bug#1028634: tiledarray: FTBFS: Could not find a package configuration file provided by "blaspp")
On Wed, Jan 24, 2024 at 08:09:03PM +, Debian Bug Tracking System wrote: >... > Date: Wed, 24 Jan 2024 14:59:30 -0500 > From: Sergio Durigan Junior > To: 1028634-cl...@bugs.debian.org > Subject: Re: Bug#1028634: tiledarray: FTBFS: Could not find a package > configuration file provided by "blaspp" > > On Tuesday, January 24 2023, Adrian Bunk wrote: > > > On Fri, Jan 13, 2023 at 11:59:48PM +0100, Sebastian Ramacher wrote: > >> Source: tiledarray > >> Version: 1.0.0-1 > >> Severity: serious > >> Tags: ftbfs > >>... > >> blasppConfig.cmake > >> blaspp-config.cmake > >> > >> Add the installation prefix of "blaspp" to CMAKE_PREFIX_PATH or set > >> "blaspp_DIR" to a directory containing one of the above files. If > >> "blaspp" > >> provides a separate development package or SDK, be sure it has been > >> installed. > >> Call Stack (most recent call first): > >> /usr/lib/cmake/BTAS/btas-config.cmake:104 (find_dependency) > >> cmake/modules/FindOrFetchBTAS.cmake:1 (find_package) > >> CMakeLists.txt:279 (include) > > > > This looks like a problem in libbtas-dev (unpackaged dependency blaspp?). > > The package is building correctly now. Closing the bug. >... It does still FTBFS: https://buildd.debian.org/status/logs.php?pkg=tiledarray=1.0.0-1 cu Adrian
Bug#1071643: horizon-eda: Missing build dependency on cppzmq-dev
On Thu, May 23, 2024 at 09:34:48AM +0200, Uwe Steinmann wrote: > Thanks Adrian! > > Quite strange. It does have a build depend on cppzmq-dev ... No, it does not: https://tracker.debian.org/media/packages/h/horizon-eda/control-2.6.0-2 >... > So I restarted from ground in pbuilder and > 1. copied >horizon-eda_2.6.0-3.debian.tar.xz, >... 2.6.0-3 is not in the archive. cu Adrian
Bug#1071643: horizon-eda: Missing build dependency on cppzmq-dev
Source: horizon-eda Version: 2.6.0-2 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=horizon-eda=2.6.0-2 ... Has header "zmq.hpp" : NO ../meson.build:46:8: ERROR: Problem encountered: cppzmq not found I haven't checked whether this is the only missing build dependency. BTW: The build dependency on libzmq5 looks wrong and is already covered by the build dependency on libzmq3-dev, please remove libzmq5 since this will break with the next soname change of libzmq.
Bug#1071452: dnsdbq FTBFS on 32bit with 64bit time_t
Source: dnsdbq Version: 2.6.6-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=dnsdbq=2.6.6-1 ... time.c: In function ‘timeval_str’: time.c:83:36: error: format ‘%ld’ expects argument of type ‘long int’, but argument 3 has type ‘__suseconds64_t’ {aka ‘long long int’} [-Werror=format=] 83 | sprintf(dst, ".%03ld", src->tv_usec % 1000); |^ ~~~ ||| |long int __suseconds64_t {aka long long int} |%03lld time.c:85:36: error: format ‘%ld’ expects argument of type ‘long int’, but argument 3 has type ‘__suseconds64_t’ {aka ‘long long int’} [-Werror=format=] 85 | sprintf(dst, ".%06ld", src->tv_usec % 100); |^ ~~ ||| |long int __suseconds64_t {aka long long int} |%06lld cc1: all warnings being treated as errors make[1]: *** [Makefile:76: time.o] Error 1
Bug#1071277: petsc4py: binary-all FTBFS
Source: petsc4py Version: 3.20.5-2 Severity: serious Tags: ftbfs https://buildd.debian.org/status/package.php?p=petsc4py=sid ... debian/rules execute_after_dh_auto_build-indep make[1]: Entering directory '/<>' PYTHONPATH=/<>/.pybuild/cpython3_3.11_petsc4py_real3.20/build http_proxy='127.0.0.1:9' sphinx-build -N -bhtml docs/source build/html # HTML generator Running Sphinx v7.2.6 Using PETSC inventory from https://petsc.org/release/objects.inv making output directory... done [autosummary] generating autosummary for: citing.rst, demo/demo.rst, demo/poisson2d/poisson2d.rst, documentation_standards.rst, index.rst, install.rst, overview.rst, petsc_options.rst, petsc_python_types.rst, reference.rst WARNING: [autosummary] failed to import petsc4py. Possible hints: * ValueError: not enough values to unpack (expected 2, got 1) * ModuleNotFoundError: No module named 'petsc4py' * KeyError: 'petsc4py' Extension error (sphinx.ext.autosummary): Handler for event 'builder-inited' threw an exception (exception: no module named petsc4py) make[1]: *** [debian/rules:78: execute_after_dh_auto_build-indep] Error 2
Bug#1071193: libqt6core6t64/experimental breaks ABI
On Wed, May 15, 2024 at 11:27:25PM +0300, Adrian Bunk wrote: > Package: libqt6core6t64 > Version: 6.6.2+dfsg-7 > Severity: serious > Tags: ftbfs > Control: affects -1 libqt6core5compat6 src:kf6-kwallet > > https://buildd.debian.org/status/logs.php?pkg=kf6-kwallet=6.0.0-1 > > ... > Get:32 https://deb.debian.org/debian experimental/main arm64 libqt6core6t64 > arm64 6.6.2+dfsg-7 [1579 kB] > ... > Get:291 https://deb.debian.org/debian unstable/main arm64 libqt6core5compat6 > arm64 6.4.2-4+b2 [126 kB] > ... > /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined > reference to `QUtf16::convertToUnicode(QByteArrayView, > QStringConverterBase::State*, DataEndianness)@Qt_6' > /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined > reference to `QUtf16::convertFromUnicode(QStringView, > QStringConverterBase::State*, DataEndianness)@Qt_6' > /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined > reference to `QUtf32::convertToUnicode(QByteArrayView, > QStringConverterBase::State*, DataEndianness)@Qt_6' > /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined > reference to `QUtf8::convertFromUnicode(QStringView)@Qt_6' > /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined > reference to `QUtf32::convertFromUnicode(QStringView, > QStringConverterBase::State*, DataEndianness)@Qt_6' > /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined > reference to `QUtf8::convertFromUnicode(QStringView, > QStringConverterBase::State*)@Qt_6' > /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined > reference to `QUtf8::convertToUnicode(QChar*, QByteArrayView)@Qt_6' > /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined > reference to `QUtf8::convertToUnicode(QByteArrayView, > QStringConverterBase::State*)@Qt_6' > collect2: error: ld returned 1 exit status > > > This is due to: > https://salsa.debian.org/qt-kde-team/qt6/qt6-base/-/commit/b1d2e462c65933b577ec49b4e4156ec8ad426b26 Apparently the symbols were moved to PRIVATE_API: _ZN5QUtf816convertToUnicodeE14QByteArrayViewPN20QStringConverterBase5StateE@@Qt_6_PRIVATE_API _ZN5QUtf816convertToUnicodeEPDs14QByteArrayView@@Qt_6_PRIVATE_API _ZN6QUtf1616convertToUnicodeE14QByteArrayViewPN20QStringConverterBase5StateE14DataEndianness@@Qt_6_PRIVATE_API _ZN6QUtf3216convertToUnicodeE14QByteArrayViewPN20QStringConverterBase5StateE14DataEndianness@@Qt_6_PRIVATE_API _ZN5QUtf818convertFromUnicodeE11QStringView@@Qt_6_PRIVATE_API _ZN5QUtf818convertFromUnicodeE11QStringViewPN20QStringConverterBase5StateE@@Qt_6_PRIVATE_API _ZN6QUtf1618convertFromUnicodeE11QStringViewPN20QStringConverterBase5StateE14DataEndianness@@Qt_6_PRIVATE_API _ZN6QUtf3218convertFromUnicodeE11QStringViewPN20QStringConverterBase5StateE14DataEndianness@@Qt_6_PRIVATE_API This is an upstream(?) ABI break, but since libqt6core5compat6 seems to be the only affected package something like Breaks: libqt6core5compat6 (<< 6.6) might be the best available option to avoid issues when upgrading from bookworm. cu Adrian
Bug#1071193: libqt6core6t64/experimental breaks ABI
Package: libqt6core6t64 Version: 6.6.2+dfsg-7 Severity: serious Tags: ftbfs Control: affects -1 libqt6core5compat6 src:kf6-kwallet https://buildd.debian.org/status/logs.php?pkg=kf6-kwallet=6.0.0-1 ... Get:32 https://deb.debian.org/debian experimental/main arm64 libqt6core6t64 arm64 6.6.2+dfsg-7 [1579 kB] ... Get:291 https://deb.debian.org/debian unstable/main arm64 libqt6core5compat6 arm64 6.4.2-4+b2 [126 kB] ... /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined reference to `QUtf16::convertToUnicode(QByteArrayView, QStringConverterBase::State*, DataEndianness)@Qt_6' /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined reference to `QUtf16::convertFromUnicode(QStringView, QStringConverterBase::State*, DataEndianness)@Qt_6' /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined reference to `QUtf32::convertToUnicode(QByteArrayView, QStringConverterBase::State*, DataEndianness)@Qt_6' /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined reference to `QUtf8::convertFromUnicode(QStringView)@Qt_6' /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined reference to `QUtf32::convertFromUnicode(QStringView, QStringConverterBase::State*, DataEndianness)@Qt_6' /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined reference to `QUtf8::convertFromUnicode(QStringView, QStringConverterBase::State*)@Qt_6' /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined reference to `QUtf8::convertToUnicode(QChar*, QByteArrayView)@Qt_6' /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined reference to `QUtf8::convertToUnicode(QByteArrayView, QStringConverterBase::State*)@Qt_6' collect2: error: ld returned 1 exit status This is due to: https://salsa.debian.org/qt-kde-team/qt6/qt6-base/-/commit/b1d2e462c65933b577ec49b4e4156ec8ad426b26
Bug#1071191: elfkickers attempts to write to /usr/local during the build
Source: elfkickers Version: 0+git20240221+ds-1 Severity: serious Tags: ftbfs X-Debbugs-Cc: Gürkan Myczko https://buildd.debian.org/status/logs.php?pkg=elfkickers=0%2Bgit20240221%2Bds-1 ... dh_auto_install --destdir=debian/elfkickers/ -a make -j4 install DESTDIR=/<>/elfkickers-0\+git20240221\+ds/debian/elfkickers AM_UPDATE_INFO_DIR=no "INSTALL=install --strip-program=true" make[1]: Entering directory '/<>' mkdir -p /usr/local/bin cp bin/* /usr/local/bin/. cp: cannot create regular file '/usr/local/bin/./ebfc': Permission denied cp: cannot create regular file '/usr/local/bin/./elfls': Permission denied cp: cannot create regular file '/usr/local/bin/./elftoc': Permission denied cp: cannot create regular file '/usr/local/bin/./infect': Permission denied cp: cannot create regular file '/usr/local/bin/./objres': Permission denied cp: cannot create regular file '/usr/local/bin/./rebind': Permission denied cp: cannot create regular file '/usr/local/bin/./sstrip': Permission denied make[1]: *** [Makefile:28: install] Error 1
Bug#1071138: falkon/experimental FTBFS: missing build dependencies
Source: falkon Version: 24.04.80-2 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=falkon=24.04.80-2 ... CMake Error at CMakeLists.txt:108 (find_package): By not providing "FindKF6I18n.cmake" in CMAKE_MODULE_PATH this project has asked CMake to find a package configuration file provided by "KF6I18n", but CMake did not find one. Could not find a package configuration file provided by "KF6I18n" with any of the following names: KF6I18nConfig.cmake kf6i18n-config.cmake Add the installation prefix of "KF6I18n" to CMAKE_PREFIX_PATH or set "KF6I18n_DIR" to a directory containing one of the above files. If "KF6I18n" provides a separate development package or SDK, be sure it has been installed. -- Configuring incomplete, errors occurred! This is likely a missing build dependency on libkf6i18n-dev (untested). Looking at CMakeLists.txt, there are also optional dependencies where packages are now available in experimental.
Bug#1071137: pytorch-audio FTBFS with pytorch 2.1.2
Source: pytorch-audio Version: 0.13.1-1 Severity: serious Tags: ftbfs trixie sid patch Forwarded: https://github.com/pytorch/audio/commit/d1cc1da6a4d6cb2fa44eda457c141aa2ac73e11a https://buildd.debian.org/status/logs.php?pkg=pytorch-audio=0.13.1-1%2Bb3 ... In file included from /usr/include/torch/csrc/api/include/torch/types.h:3, from /usr/include/torch/script.h:3, from /<>/torchaudio/csrc/rnnt/compute_alphas.cpp:1: /usr/include/ATen/ATen.h:4:2: error: #error C++17 or later compatible compiler is required to use ATen. 4 | #error C++17 or later compatible compiler is required to use ATen. | ^ ...
Bug#1071133: firebird4.0: binary-all FTBFS
Source: firebird4.0 Version: 4.0.4.3010.ds6-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=firebird4.0=all ... dh_lintian sed -i -e "s/TRIPLET/x86_64-linux-gnu/g" \ debian/libib-util/usr/share/lintian/overrides/libib-util sed: can't read debian/libib-util/usr/share/lintian/overrides/libib-util: No such file or directory make[1]: *** [debian/rules:185: override_dh_lintian] Error 2
Bug#1071132: ovito accesses the internet during the build
Source: ovito Version: 3.10.5~ds-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/fetch.php?pkg=ovito=all=3.10.5~ds-1=1713769268=0 ... Running Sphinx v7.2.6 loading intersphinx inventory from https://ovito.org/docs/current/python/objects.inv... loading intersphinx inventory from https://docs.scipy.org/doc/scipy/objects.inv... Warning, treated as error: failed to reach any of the inventories with the following issues: intersphinx inventory 'https://ovito.org/docs/current/python/objects.inv' not fetchable due to : HTTPSConnectionPool(host='ovito.org', port=443): Max retries exceeded with url: /docs/current/python/objects.inv (Caused by NewConnectionError(': Failed to establish a new connection: [Errno -3] Temporary failure in name resolution')) ...
Bug#1071131: pytorch-geometric FTBFS (several reasons)
Source: pytorch-geometric Version: 2.3.1-2 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=pytorch-geometric=all
Bug#1058130: closed by Debian FTP Masters (reply to Ulises Vitulli ) (Bug#1058130: fixed in python-nmea2 1.19.0-1)
Control: reopen -1 On Mon, Feb 12, 2024 at 10:57:03PM +, Debian Bug Tracking System wrote: >... > python-nmea2 (1.19.0-1) unstable; urgency=medium > . >* New upstream release (Closes: #1058130). >... > Relevant part (hopefully): > > fakeroot debian/rules clean > > dh clean --with python3 --buildsystem=pybuild > >dh_auto_clean -O--buildsystem=pybuild > > I: pybuild base:310: python3.12 setup.py clean > > Traceback (most recent call last): > > File "/<>/setup.py", line 3, in > > import imp > > ModuleNotFoundError: No module named 'imp' > > E: pybuild pybuild:395: clean: plugin distutils failed with: exit code=1: > > python3.12 setup.py clean > > dh_auto_clean: error: pybuild --clean -i python{version} -p "3.12 3.11" > > returned exit code 13 > > make: *** [debian/rules:7: clean] Error 25 >... The fix is not included in 1.19.0-2: https://buildd.debian.org/status/fetch.php?pkg=python-nmea2=all=1.19.0-2=1715629490=0 cu Adrian
Bug#1070854: clc-intercal FTBFS: dpkg-genbuildinfo: error: binary build with no binary artifacts found
On Tue, May 14, 2024 at 11:16:28AM +0100, Mark Brown wrote: > On Fri, May 10, 2024 at 05:25:35PM +0300, Adrian Bunk wrote: > > > chmod +x `pwd`/debian/clc-intercal/usr/bin/* > > dpkg-genbuildinfo --build=any > > -O../clc-intercal_1.00-1_ppc64el-buildd.buildinfo > > dpkg-genbuildinfo: error: binary build with no binary artifacts found; > > .buildinfo is meaningless > > dpkg-buildpackage: error: dpkg-genbuildinfo --build=any > > -O../clc-intercal_1.00-1_ppc64el-buildd.buildinfo subprocess returned exit > > status 25 > > I can't reproduce this, and nothing about the build I'm seeing in the > log looks meaningfully different to what I get when I build locally. I can reproduce it with dpkg-buildpackage -B > AFAICT there are .so files being installed among the various perl things > and dpkg-genbuildinfo runs happily. ... build-arch: build-indep: build-stamp ... # Build architecture-dependent files here. binary-arch: build install # We have nothing to do by default. # Build architecture-independent files here. binary-indep: build install ... This looks wrong for a package that builds no Architecture: all packages. cu Adrian
Bug#1071081: phpunit-environment/experimental FTBFS: Error: Call to undefined method SebastianBergmann\Environment\Runtime::getRawBinary()
Source: phpunit-environment Version: 7.1.0-1 Severity: serious Tags: ftbfs Forwarded: https://github.com/sebastianbergmann/environment/commit/ff8e9b0dc10315e13f3a7951eec6b227e66997e7 https://buildd.debian.org/status/fetch.php?pkg=phpunit-environment=all=7.1.0-1=1715633007=0 ... There was 1 error: 1) SebastianBergmann\Environment\RuntimeTest::testRawBinaryCanBeRetrieved Error: Call to undefined method SebastianBergmann\Environment\Runtime::getRawBinary() /<>/tests/RuntimeTest.php:48 ERRORS! Tests: 22, Assertions: 13, Errors: 1, Skipped: 8. make[1]: *** [debian/rules:12: override_dh_auto_test] Error 2
Bug#1063004: synfig: NMU diff for 64-bit time_t transition
On Sat, Feb 24, 2024 at 12:41:14PM -0800, Steve Langasek wrote: > Control: tags -1 - pending > Control: severity -1 serious > > Unfortunately, it appears synfig ftbfs in unstable and experimental: > > [...] > checking for Magick++ >= 6.4.2... configure: error: *** Unable to find > Magick++ > cd synfig-core && tail -v -n \+0 config.log > [...] > > > (https://buildd.debian.org/status/fetch.php?pkg=synfig=amd64=1.5.1%2Bdfsg-3.1%7Eexp1=1707063449=0) > > Therefore we will not be able to NMU this. Marking the bug serious as the > mass NMUs are imminent within a few days and this becomes a serious bug once > the toolchain changes land. This is due to experimental using a different dependency resolver than unstable, and graphicsmagick-libmagick-dev-compat also providing libmagick++-dev An upload to unstable will likely build fine, but technically it would in any case be more correct to Build-Depends: libmagick++-dev (>= 7:6.4.2) cu Adrian
Bug#1071075: python-easydev accesses the internet during the build
Source: python-easydev Version: 0.13.2+dfsg1-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/fetch.php?pkg=python-easydev=all=0.13.2%2Bdfsg1-1=1714380640=0 ... === FAILURES === __ test_isurl __ def test_isurl(): > assert isurl_reachable("www.google.com") == True E AssertionError: assert False == True E+ where False = isurl_reachable('www.google.com') test/test_url.py:7: AssertionError === short test summary info FAILED test/test_url.py::test_isurl - AssertionError: assert False == True = 1 failed, 56 passed in 2.36s = ...
Bug#1071039: iptux FTBFS on 32bit with 64bit time_t
Source: iptux Version: 0.9.1-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=iptux=0.9.1-1 ... FAILED: src/iptux-core/libiptux-core.so.0.9.1.p/internal_SendFileData.cpp.o c++ -Isrc/iptux-core/libiptux-core.so.0.9.1.p -Isrc/iptux-core -I../src/iptux-core -Isrc -I../src -Isrc/api -I../src/api -I/usr/include/glib-2.0 -I/usr/lib/arm-linux-gnueabihf/glib-2.0/include -I/usr/include/sysprof-6 -I/usr/include/jsoncpp -I/usr/include/sigc++-2.0 -I/usr/lib/arm-linux-gnueabihf/sigc++-2.0/include -fdiagnostics-color=always -D_GLIBCXX_ASSERTIONS=1 -Wall -Winvalid-pch -Wextra -Wpedantic -std=c++14 -Werror=format -g -O2 -ffile-prefix-map=/<>=. -fstack-protector-strong -fstack-clash-protection -Wformat -Werror=format-security -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -D_TIME_BITS=64 -Wdate-time -D_FORTIFY_SOURCE=2 -fPIC -pthread -MD -MQ src/iptux-core/libiptux-core.so.0.9.1.p/internal_SendFileData.cpp.o -MF src/iptux-core/libiptux-core.so.0.9.1.p/internal_SendFileData.cpp.o.d -o src/iptux-core/libiptux-core.so.0.9.1.p/internal_SendFileData.cpp.o -c ../src/iptux-core/internal/SendFileData.cpp ../src/iptux-core/internal/SendFileData.cpp: In member function ‘void iptux::SendFileData::SendDirFiles()’: ../src/iptux-core/internal/SendFileData.cpp:205:16: error: format ‘%lx’ expects argument of type ‘long unsigned int’, but argument 8 has type ‘__time64_t’ {aka ‘long long int’} [-Werror=format=] 205 |":%s:%.9" PRIx64 ":%lx:%lx=%lx:%lx=%lx:", dirname, |^~~~ ../src/iptux-core/internal/SendFileData.cpp:205:16: error: format ‘%lx’ expects argument of type ‘long unsigned int’, but argument 10 has type ‘__time64_t’ {aka ‘long long int’} [-Werror=format=] 205 |":%s:%.9" PRIx64 ":%lx:%lx=%lx:%lx=%lx:", dirname, |^~~~ ../src/iptux-core/internal/SendFileData.cpp:243:36: error: format ‘%lx’ expects argument of type ‘long unsigned int’, but argument 6 has type ‘__time64_t’ {aka ‘long long int’} [-Werror=format=] 243 |":.:0:%lx:%lx=%lx:%lx=%lx:", IPMSG_FILE_RETPARENT, | ~~^ || |long unsigned int | %llx ../src/iptux-core/internal/SendFileData.cpp:243:44: error: format ‘%lx’ expects argument of type ‘long unsigned int’, but argument 8 has type ‘__time64_t’ {aka ‘long long int’} [-Werror=format=] 243 |":.:0:%lx:%lx=%lx:%lx=%lx:", IPMSG_FILE_RETPARENT, | ~~^ || |long unsigned int | %llx ../src/iptux-core/internal/SendFileData.cpp:264:32: warning: cast between incompatible function types from ‘int (*)(DIR*)’ to ‘GFunc’ {aka ‘void (*)(void*, void*)’} [-Wcast-function-type] 264 | g_queue_foreach(, GFunc(closedir), NULL); |^~~ cc1plus: some warnings being treated as errors ... FAILED: src/iptux-core/libiptux-core.so.0.9.1.p/internal_TcpData.cpp.o c++ -Isrc/iptux-core/libiptux-core.so.0.9.1.p -Isrc/iptux-core -I../src/iptux-core -Isrc -I../src -Isrc/api -I../src/api -I/usr/include/glib-2.0 -I/usr/lib/arm-linux-gnueabihf/glib-2.0/include -I/usr/include/sysprof-6 -I/usr/include/jsoncpp -I/usr/include/sigc++-2.0 -I/usr/lib/arm-linux-gnueabihf/sigc++-2.0/include -fdiagnostics-color=always -D_GLIBCXX_ASSERTIONS=1 -Wall -Winvalid-pch -Wextra -Wpedantic -std=c++14 -Werror=format -g -O2 -ffile-prefix-map=/<>=. -fstack-protector-strong -fstack-clash-protection -Wformat -Werror=format-security -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -D_TIME_BITS=64 -Wdate-time -D_FORTIFY_SOURCE=2 -fPIC -pthread -MD -MQ src/iptux-core/libiptux-core.so.0.9.1.p/internal_TcpData.cpp.o -MF src/iptux-core/libiptux-core.so.0.9.1.p/internal_TcpData.cpp.o.d -o src/iptux-core/libiptux-core.so.0.9.1.p/internal_TcpData.cpp.o -c ../src/iptux-core/internal/TcpData.cpp ../src/iptux-core/internal/TcpData.cpp: In member function ‘void iptux::TcpData::RecvSublayer(uint32_t)’: ../src/iptux-core/internal/TcpData.cpp:146:35: error: format ‘%lx’ expects argument of type ‘long unsigned int’, but argument 7 has type ‘time_t’ {aka ‘long long int’} [-Werror=format=] 146 | snprintf(path, MAX_PATHLEN, "%s" PIC_PATH "/%" PRIx32 "-%" PRIx32 "-%lx", | ^~~~ 147 |g_get_user_cache_dir(), inAddrToUint32(pal->ipv4()), count++, 148 |time(NULL)); |~~ || |time_t {aka long long int}
Bug#1070956: octave-fits FTBFS with Octave 9.1.0
Source: octave-fits Version: 1.0.7-7 Severity: serious Tags: ftbfs trixie sid https://buildd.debian.org/status/fetch.php?pkg=octave-fits=amd64=1.0.7-7%2Bb4=1715454563=0 ... g++ -c -Wdate-time -D_FORTIFY_SOURCE=2 -fPIC -I/usr/include/octave-9.1.0/octave/.. -I/usr/include/octave-9.1.0/octave -pthread -fopenmp -g -O2 -ffile-prefix-map=/<>=. -fstack-protector-strong -fstack-clash-protection -Wformat -Werror=format-security -fcf-protection -Wall save_fits_image_multi_ext.cc -o /tmp/oct-bxJQR8.o save_fits_image_multi_ext.cc: In function ‘octave_value_list Fsave_fits_image_multi_ext(const octave_value_list&, int)’: save_fits_image_multi_ext.cc:140:60: error: passing ‘const NDArray’ as ‘this’ argument discards qualifiers [-fpermissive] 140 | double * datap = const_cast( image.fortran_vec() ); | ~^~ In file included from /usr/include/octave-9.1.0/octave/../octave/Array-util.h:31, from /usr/include/octave-9.1.0/octave/../octave/MSparse.h:31, from /usr/include/octave-9.1.0/octave/../octave/MatrixType.h:33, from /usr/include/octave-9.1.0/octave/../octave/mx-base.h:33, from /usr/include/octave-9.1.0/octave/../octave/Matrix.h:34, from /usr/include/octave-9.1.0/octave/../octave/oct.h:33, from save_fits_image_multi_ext.cc:19: /usr/include/octave-9.1.0/octave/../octave/Array.h:666:20: note: in call to ‘T* Array::fortran_vec() [with T = double; Alloc = std::allocator]’ 666 | OCTARRAY_API T * fortran_vec (); |^~~ save_fits_image.cc: In function ‘octave_value_list Fsave_fits_image(const octave_value_list&, int)’: save_fits_image.cc:132:58: error: passing ‘const NDArray’ as ‘this’ argument discards qualifiers [-fpermissive] 132 | double * datap = const_cast( image.fortran_vec() ); | ~^~ In file included from /usr/include/octave-9.1.0/octave/../octave/Array-util.h:31, from /usr/include/octave-9.1.0/octave/../octave/MSparse.h:31, from /usr/include/octave-9.1.0/octave/../octave/MatrixType.h:33, from /usr/include/octave-9.1.0/octave/../octave/mx-base.h:33, from /usr/include/octave-9.1.0/octave/../octave/Matrix.h:34, from /usr/include/octave-9.1.0/octave/../octave/oct.h:33, from save_fits_image.cc:19: /usr/include/octave-9.1.0/octave/../octave/Array.h:666:20: note: in call to ‘T* Array::fortran_vec() [with T = double; Alloc = std::allocator]’ 666 | OCTARRAY_API T * fortran_vec (); |^~~ make[1]: *** [Makefile:9: save_fits_image_multi_ext.oct] Error 1
Bug#1070915: hiredict: Circular build dependency with redict
Source: hiredict Version: 1.3.1-1 Severity: important Tags: ftbfs X-Debbugs-Cc: Debian Redict Maintainers , Maytham Alsudany Control: affects -1 src:redict https://buildd.debian.org/status/package.php?p=redict=sid https://buildd.debian.org/status/package.php?p=hiredict=sid Circular build dependencies are a pain since they require bootstrapping on every single architecture. I would suggest to drop the buildtime test in hiredict, and run it as autopkgtest instead.
Bug#1070912: libuv1: latest upload reverts time_t transition
Source: libuv1 Version: 1.48.0-2 Severity: serious The latest upload reverts the the time_t transition rename from libuv1 to libuv1t64.
Bug#1070872: libm.a lost fmod + fmodf on i386 + m68k
Package: libc6-dev Version: 2.38-7 Severity: serious Tags: ftbfs Control: affects -1 src:zsh https://buildd.debian.org/status/logs.php?pkg=zsh=5.9-6%2Bb1 ... gcc -static -o zsh main.o `cat stamp-modobjs` -lpcre2-8 -lgdbm -lcap -lncursesw -ltinfo -ltinfo -lrt -lm -lc ... ./obj-static/Src/../../Src/math.c:1260:(.text+0x1d8e): undefined reference to `fmod' collect2: error: ld returned 1 exit status make[3]: *** [Makefile:228: zsh] Error 1 $ objdump -t /usr/lib/i386-linux-gnu/libm.a | grep fmod w_fmodl_compat.o: file format elf32-i386 w_fmod_compat.o: file format elf32-i386 w_fmodf_compat.o: file format elf32-i386 e_fmodl.o: file format elf32-i386 g F .text 0013 __ieee754_fmodl w_fmodl.o: file format elf32-i386 g F .text 0085 __fmodl *UND* __ieee754_fmodl wF .text 0085 fmodf64x wF .text 0085 fmodl e_fmod.o: file format elf32-i386 g F .text 0013 __ieee754_fmod w_fmod.o: file format elf32-i386 e_fmodf.o: file format elf32-i386 g F .text 0013 __ieee754_fmodf w_fmodf.o: file format elf32-i386 e_fmodf128.o: file format elf32-i386 g F .text 0c9b __ieee754_fmodf128 *UND* __ieee754_fmodf128 *UND* __ieee754_fmodf128 w_fmodf128.o: file format elf32-i386 g F .text 0237 __fmodf128 *UND* __ieee754_fmodf128 wF .text 0237 fmodf128 $ With 2.37-13 this is instead: $ objdump -t /usr/lib/i386-linux-gnu/libm.a | grep fmod w_fmodl_compat.o: file format elf32-i386 w_fmod_compat.o: file format elf32-i386 w_fmodf_compat.o: file format elf32-i386 e_fmodl.o: file format elf32-i386 g F .text 0013 __ieee754_fmodl w_fmodl.o: file format elf32-i386 g F .text 0085 __fmodl *UND* __ieee754_fmodl wF .text 0085 fmodf64x wF .text 0085 fmodl e_fmod.o: file format elf32-i386 g F .text 0013 __ieee754_fmod w_fmod.o: file format elf32-i386 g F .text 006b __fmod *UND* __ieee754_fmod wF .text 006b fmodf32x wF .text 006b fmodf64 wF .text 006b fmod e_fmodf.o: file format elf32-i386 g F .text 0013 __ieee754_fmodf w_fmodf.o: file format elf32-i386 g F .text 0063 __fmodf *UND* __ieee754_fmodf wF .text 0063 fmodf32 wF .text 0063 fmodf e_fmodf128.o: file format elf32-i386 g F .text 0cc5 __ieee754_fmodf128 *UND* __ieee754_fmodf128 *UND* __ieee754_fmodf128 w_fmodf128.o: file format elf32-i386 g F .text 0237 __fmodf128 *UND* __ieee754_fmodf128 wF .text 0237 fmodf128 $
Bug#1070853: strace: test failures on 32bit with 64bit time_t
Control: retitle -1 strace: test failures on 32bit The tests also fail on i386, so do not seem to be related to time_t. cu Adrian
Bug#1070865: webkit2gtk/experimental FTBFS on big endian
Source: webkit2gtk Version: 2.45.1-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=webkit2gtk=2.45.1-1 ... In file included from /<>/Source/ThirdParty/skia/include/private/base/SkAPI.h:11, from /<>/Source/ThirdParty/skia/include/private/base/SkAssert.h:11, from /<>/Source/ThirdParty/skia/src/base/SkArenaAlloc.h:11, from /<>/Source/ThirdParty/skia/src/base/SkArenaAlloc.cpp:8: /<>/Source/ThirdParty/skia/include/private/base/SkLoadUserConfig.h:57:6: error: #error "The Skia team is not endian-savvy enough to support big-endian CPUs." 57 | #error "The Skia team is not endian-savvy enough to support big-endian CPUs." | ^ /<>/Source/ThirdParty/skia/include/private/base/SkLoadUserConfig.h:58:6: error: #error "If you still want to use Skia," 58 | #error "If you still want to use Skia," | ^ /<>/Source/ThirdParty/skia/include/private/base/SkLoadUserConfig.h:59:6: error: #error "please define I_ACKNOWLEDGE_SKIA_DOES_NOT_SUPPORT_BIG_ENDIAN." 59 | #error "please define I_ACKNOWLEDGE_SKIA_DOES_NOT_SUPPORT_BIG_ENDIAN." | ^ ...
Bug#1070854: clc-intercal FTBFS: dpkg-genbuildinfo: error: binary build with no binary artifacts found
Source: clc-intercal Version: 1:1.00-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=clc-intercal=1%3A1.00-1 ... chmod +x `pwd`/debian/clc-intercal/usr/bin/* dpkg-genbuildinfo --build=any -O../clc-intercal_1.00-1_ppc64el-buildd.buildinfo dpkg-genbuildinfo: error: binary build with no binary artifacts found; .buildinfo is meaningless dpkg-buildpackage: error: dpkg-genbuildinfo --build=any -O../clc-intercal_1.00-1_ppc64el-buildd.buildinfo subprocess returned exit status 25
Bug#1070853: strace: test failures on 32bit with 64bit time_t
Source: strace Version: 6.8-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/fetch.php?pkg=strace=armhf=6.8-1=1715348223=0 https://buildd.debian.org/status/fetch.php?pkg=strace=armel=6.8-1=1715346678=0 https://buildd.debian.org/status/fetch.php?pkg=strace=powerpc=6.8-1=1715349316=0 ... FAIL: strace-k.test PASS: umovestr_cached.test FAIL: strace-k-with-depth-limit.test FAIL: strace-k-demangle.test PASS: strace-DD.test FAIL: strace-k-p.test PASS: strace--tips-full.test PASS: qual_fault-syscall.test PASS: qual_fault.test PASS: filtering_syscall-syntax.test PASS: looping_threads.test == strace 6.8: tests/test-suite.log == # TOTAL: 1350 # PASS: 1057 # SKIP: 289 # XFAIL: 0 # FAIL: 4 # XPASS: 0 # ERROR: 0 ... FAIL: strace-k == + ../src/strace -V + TIMEOUT=timeout -k 5 -s XCPU 1500 + timeout -k 5 -s XCPU 1500 true + [ 1 -eq 0 ] + exec timeout -k 5 -s XCPU 1500 ../../tests/strace-k.test + : 0 + : -k + : --stack-trace + : + [ -f /proc/self/maps ] + check_prog grep + type grep + check_prog readlink + type readlink + check_prog sed + type sed + check_prog tr + type tr + command -v sed + path_to_sed=/usr/bin/sed + [ -x /usr/bin/sed ] + readlink -ev -- /usr/bin/sed + path_to_sed=/usr/bin/sed + /usr/bin/sed -n s/^[^/]\+[[:space:]]\(\/.*\)$/\1/p /proc/self/maps + grep -F -x -e /usr/bin/sed + run_prog ../stack-fcall + [ 1 -eq 0 ] + args=../stack-fcall + ../stack-fcall + [ x0 = x1 ] + run_strace -e chdir -k ../stack-fcall + + args=-e chdir -k ../stack-fcall + ../../src/strace -o log -e chdir -k ../stack-fcall + expected=../../../tests/strace-k.expected + awk_script_common= /^[^ ]/ { if (out != "") print out syscall = gensub(/^([[:alnum:]_]+)\(.*/, "\\1", 1) signal = gensub(/^--- ([A-Z]+) .*/, "\\1", 1) if (syscall != $0) { out = syscall stop = 0 } else if (signal != $0) { out = signal stop = 0 } else { out = "" } } /^ > too many stack frames/ { out = out " _too_many_stack_frames_" stop = 1 } + awk_script_symbol= /^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) / && !stop { sym = gensub(/^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) .*$/, "\\1", 1) out = out " " sym if (sym == "main") stop = 1 } + awk_script_source= /^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) \[0x[a-f0-9]+\] ([^:]+):([0-9]+)$/ && !stop { sym = gensub(/^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) .*$/, "\\1", 1) if (sym == "main" || sym ~ /f[0-9]/) { file = gensub(/^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) \[0x[a-f0-9]+\] ([^:]+):([0-9]+)$/, "\\2", 1) line = gensub(/^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) \[0x[a-f0-9]+\] ([^:]+):([0-9]+)$/, "\\3", 1) sub(".*/", "", file) out = out " " sym "<" file ":" line ">" if (sym == "main") stop = 1 } } + [ --stack-trace = --stack-trace ] + awk_script= /^[^ ]/ { if (out != "") print out syscall = gensub(/^([[:alnum:]_]+)\(.*/, "\\1", 1) signal = gensub(/^--- ([A-Z]+) .*/, "\\1", 1) if (syscall != $0) { out = syscall stop = 0 } else if (signal != $0) { out = signal stop = 0 } else { out = "" } } /^ > too many stack frames/ { out = out " _too_many_stack_frames_" stop = 1 } /^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) / && !stop { sym = gensub(/^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) .*$/, "\\1", 1) out = out " " sym if (sym == "main") stop = 1 } + awk /^[^ ]/ { if (out != "") print out syscall = gensub(/^([[:alnum:]_]+)\(.*/, "\\1", 1) signal = gensub(/^--- ([A-Z]+) .*/, "\\1", 1) if (syscall != $0) { out = syscall stop = 0 } else if (signal != $0) { out = signal stop = 0 } else { out = "" } } /^ > too many stack frames/ { out = out " _too_many_stack_frames_" stop = 1 } /^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) / && !stop { sym = gensub(/^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) .*$/, "\\1", 1) out = out " " sym if (sym == "main") stop = 1 } log + LC_ALL=C grep -E -x -f ../../../tests/strace-k.expected + cat ../../../tests/strace-k.expected + cat out + cat Failed pattern of expected output: ^chdir (__kernel_vsyscall )?(__)?chdir f3 f2 f1 f0 main ^SIGURG (__kernel_vsyscall )?(__)?kill f3 f2 f1 f0 main Actual output: chdir chdir f3 SIGURG kill f3 + pattern= + pattern=No DWARF information found + [ -n No DWARF information found ] + LC_ALL=C grep -x > No DWARF information found + dump_log_and_fail_with ../../src/strace -e chdir -k ../stack-fcall
Bug#1070838: xine-lib-1.2 FTBFS with glibc 2.38
Source: xine-lib-1.2 Version: 1.2.13+hg20230710-2 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=xine-lib-1.2=1.2.13%2Bhg20230710-2%2Bb6 ... dh_makeshlibs -a dpkg-gensymbols: error: some symbols or patterns disappeared in the symbols file: see diff output below dpkg-gensymbols: warning: debian/libxine2-bin/DEBIAN/symbols doesn't match completely debian/libxine2-bin.symbols --- debian/libxine2-bin.symbols (libxine2-bin_1.2.13+hg20230710-2+b6_amd64) +++ dpkg-gensymbolsgeNc6J 2024-05-10 10:16:36.253605552 + @@ -404,8 +404,8 @@ xine_post_wire@Base 1.2.0 xine_post_wire_audio_port@Base 1.2.0 xine_post_wire_video_port@Base 1.2.0 - xine_private_strlcat@Base 1.2.9 - xine_private_strlcpy@Base 1.2.9 +#MISSING: 1.2.13+hg20230710-2+b6# xine_private_strlcat@Base 1.2.9 +#MISSING: 1.2.13+hg20230710-2+b6# xine_private_strlcpy@Base 1.2.9 xine_profiler_allocate_slot@Base 1.2.0 xine_profiler_init@Base 1.2.0 xine_profiler_print_results@Base 1.2.0 dh_makeshlibs: error: failing due to earlier errors make: *** [debian/rules:43: binary-arch] Error 25
Bug#1070777: onscripter: Please use the same build dependencies on all architectures
Package: onscripter Version: 20220816-1 Severity: normal Build-Depends: ... libvorbis-dev [!arm64 !armel !armhf !mips !mipsel], libvorbisidec-dev [arm64 armel armhf mips mipsel], libsmpeg-dev [!arm64 !armel !armhf !mips !mipsel], libmad0-dev [arm64 armel armhf mips mipsel], ... mips and mipsel are no longer built in unstable. Using libvorbisidec on armhf or arm64 sounds wrong, these architectures do have an FPU in their baseline. Using libvorbisidec on armel sounds justifiable since there is not FPU in the baseline, but since it's unlikely that there are actual users of this package (left) on armel it might be an option to also use libvorbis there. I don't see a good justification for libmad0 instead of libsmpeg, especially on arm64 which has quite powerful processors (e.g. in some Lenovo laptops).
Bug#1070766: gcc-13: Please add sparc64 to gcc-as-needed.diff
Package: gcc-13 Severity: normal Tags: patch X-Debbugs-Cc: debian-sp...@lists.debian.org sparc64 has some spurios library dependencies due to gcc-as-needed.diff currently only adding --as-needed to 32bit-only sparc builds, please append the attached patch to gcc-as-needed.diff Thanks in advance --- a/src/gcc/config/sparc/linux64.h +++ b/src/gcc/config/sparc/linux64.h @@ -90,7 +90,7 @@ along with GCC; see the file COPYING3. If not see { "link_arch_default", LINK_ARCH_DEFAULT_SPEC }, \ { "link_arch",LINK_ARCH_SPEC }, -#define LINK_ARCH32_SPEC "-m elf32_sparc %{shared:-shared} \ +#define LINK_ARCH32_SPEC "-m elf32_sparc %{shared:-shared} %{!fsanitize=*:--as-needed} \ %{!shared: \ %{!static: \ %{rdynamic:-export-dynamic} \ @@ -98,7 +98,7 @@ along with GCC; see the file COPYING3. If not see %{static:-static}} \ " -#define LINK_ARCH64_SPEC "-m elf64_sparc %{shared:-shared} \ +#define LINK_ARCH64_SPEC "-m elf64_sparc %{shared:-shared} %{!fsanitize=*:--as-needed} \ %{!shared: \ %{!static: \ %{rdynamic:-export-dynamic} \
Bug#1064516: Debdifffs for ruby-rack DSA
Hi, attached are debdiffs for a ruby-rack DSA, with the same fixes as in sid and buster. cu Adrian diffstat for ruby-rack-2.1.4 ruby-rack-2.1.4 changelog | 10 + patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch | 51 ++ patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch | 46 + patches/0003-Fixing-ReDoS-in-header-parsing.patch | 30 + patches/series |3 5 files changed, 140 insertions(+) diff -Nru ruby-rack-2.1.4/debian/changelog ruby-rack-2.1.4/debian/changelog --- ruby-rack-2.1.4/debian/changelog2023-06-08 00:52:23.0 +0300 +++ ruby-rack-2.1.4/debian/changelog2024-05-02 23:46:12.0 +0300 @@ -1,3 +1,13 @@ +ruby-rack (2.1.4-3+deb11u2) bullseye-security; urgency=medium + + * Non-maintainer upload. + * CVE-2024-25126: ReDoS in Content Type header parsing + * CVE-2024-26141: Reject Range headers which are too large + * CVE-2024-26146: ReDoS in Accept header parsing + * Closes: #1064516 + + -- Adrian Bunk Thu, 02 May 2024 23:46:12 +0300 + ruby-rack (2.1.4-3+deb11u1) bullseye-security; urgency=high * Add patch to restrict broken mime parsing. diff -Nru ruby-rack-2.1.4/debian/patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch ruby-rack-2.1.4/debian/patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch --- ruby-rack-2.1.4/debian/patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch 1970-01-01 02:00:00.0 +0200 +++ ruby-rack-2.1.4/debian/patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch 2024-05-02 23:46:12.0 +0300 @@ -0,0 +1,51 @@ +From bad2b5be29349b285e08d343f060f7c18065d416 Mon Sep 17 00:00:00 2001 +From: Jean Boussier +Date: Wed, 6 Dec 2023 18:32:19 +0100 +Subject: Avoid 2nd degree polynomial regexp in MediaType + +--- + lib/rack/media_type.rb | 13 + + 1 file changed, 9 insertions(+), 4 deletions(-) + +diff --git a/lib/rack/media_type.rb b/lib/rack/media_type.rb +index 41937c99..7fc1e39d 100644 +--- a/lib/rack/media_type.rb b/lib/rack/media_type.rb +@@ -4,7 +4,7 @@ module Rack + # Rack::MediaType parse media type and parameters out of content_type string + + class MediaType +-SPLIT_PATTERN = %r{\s*[;,]\s*} ++SPLIT_PATTERN = /[;,]/ + + class << self + # The media type (type/subtype) portion of the CONTENT_TYPE header +@@ -15,7 +15,11 @@ module Rack + # http://www.w3.org/Protocols/rfc2616/rfc2616-sec3.html#sec3.7 + def type(content_type) + return nil unless content_type +-content_type.split(SPLIT_PATTERN, 2).first.tap &:downcase! ++if type = content_type.split(SPLIT_PATTERN, 2).first ++ type.rstrip! ++ type.downcase! ++ type ++end + end + + # The media type parameters provided in CONTENT_TYPE as a Hash, or +@@ -27,9 +31,10 @@ module Rack + return {} if content_type.nil? + + content_type.split(SPLIT_PATTERN)[1..-1].each_with_object({}) do |s, hsh| ++ s.strip! + k, v = s.split('=', 2) +- +- hsh[k.tap(&:downcase!)] = strip_doublequotes(v) ++ k.downcase! ++ hsh[k] = strip_doublequotes(v) + end + end + +-- +2.30.2 + diff -Nru ruby-rack-2.1.4/debian/patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch ruby-rack-2.1.4/debian/patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch --- ruby-rack-2.1.4/debian/patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch 1970-01-01 02:00:00.0 +0200 +++ ruby-rack-2.1.4/debian/patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch 2024-05-02 23:46:12.0 +0300 @@ -0,0 +1,46 @@ +From ef52af28b6ac43789fd8fc05df098b56f220f0fa Mon Sep 17 00:00:00 2001 +From: Aaron Patterson +Date: Tue, 13 Feb 2024 13:34:34 -0800 +Subject: Return an empty array when ranges are too large + +If the sum of the requested ranges is larger than the file itself, +return an empty array. In other words, refuse to respond with any bytes. + +[CVE-2024-26141] +--- + lib/rack/utils.rb | 3 +++ + test/spec_utils.rb | 4 + 2 files changed, 7 insertions(+) + +diff --git a/lib/rack/utils.rb b/lib/rack/utils.rb +index 16457f90..87c2a946 100644 +--- a/lib/rack/utils.rb b/lib/rack/utils.rb +@@ -382,6 +382,9 @@ module Rack + end + ranges << (r0..r1) if r0 <= r1 + end ++ ++ return [] if ranges.map(&:size).sum > size ++ + ranges + end + module_function :get_byte_ranges +diff --git a/test/spec_utils.rb b/test/spec_utils.rb +index 5fd92241..67b77b0d 100644 +--- a/test/spec_utils.rb b/test/spec_utils.rb +@@ -548,6 +548,10 @@ describe Rack::Utils, "cookies" do + end + + describe Rack::Utils, "byte_range" do ++ it "returns
Bug#1070720: tpm2-tss: test/unit/tcti-spidev failure on 32bit with 64bit time_t
Source: tpm2-tss Version: 4.1.0-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=tpm2-tss=4.1.0-1 ... SKIP: test/unit/tcti-libtpms WARNING:test:test/unit/tcti-libtpms.c:1793:main() _FILE_OFFSET == 64 would produce cmocka errors. SKIP test/unit/tcti-libtpms (exit status: 77) SKIP: test/unit/tcti-device === WARNING:tests:test/unit/tcti-device.c:454:main() _FILE_OFFSET == 64 would produce cmocka errors. SKIP test/unit/tcti-device (exit status: 77) SKIP: test/unit/tcti-pcap = WARNING:tests:test/unit/tcti-pcap.c:736:main() _FILE_OFFSET == 64 would produce cmocka errors. SKIP test/unit/tcti-pcap (exit status: 77) FAIL: test/unit/tcti-spidev === [==] tests: Running 1 test(s). [ RUN ] tcti_spi_init_test ERROR:tcti:src/tss2-tcti/tcti-spidev.c:48:platform_spi_acquire() SPI acquire failed: Bad file descriptor ERROR:tcti:src/tss2-tcti/tcti-spi-helper.c:164:spi_tpm_helper_log_register_access() READ register 0xd40f00 (4 bytes) failed in transaction start ERROR:tcti:src/tss2-tcti/tcti-spidev.c:68:platform_spi_release() SPI release failed: Bad file descriptor ERROR:tcti:src/tss2-tcti/tcti-spidev.c:48:platform_spi_acquire() SPI acquire failed: Bad file descriptor ERROR:tcti:src/tss2-tcti/tcti-spi-helper.c:164:spi_tpm_helper_log_register_access() READ register 0xd40f00 (4 bytes) failed in transaction start ERROR:tcti:src/tss2-tcti/tcti-spidev.c:68:platform_spi_release() SPI release failed: Bad file descriptor ERROR:tcti:src/tss2-tcti/tcti-spidev.c:48:platform_spi_acquire() SPI acquire failed: Bad file descriptor ERROR:tcti:src/tss2-tcti/tcti-spi-helper.c:164:spi_tpm_helper_log_register_access() READ register 0xd40f00 (4 bytes) failed in transaction start ERROR:tcti:src/tss2-tcti/tcti-spidev.c:68:platform_spi_release() SPI release failed: Bad file descriptor ... ERROR:tcti:src/tss2-tcti/tcti-spi-helper.c:164:spi_tpm_helper_log_register_access() READ register 0xd40f00 (4 bytes) failed in transaction start ERROR:tcti:src/tss2-tcti/tcti-spidev.c:68:platform_spi_release() SPI release failed: Bad file descriptor ERROR:tcti:src/tss2-tcti/tcti-spi-helper.c:728:Tss2_Tcti_Spi_Helper_Init() Probing TPM failed [ ERROR ] --- 0xa000a != 0 [ LINE ] --- test/unit/tcti-spidev.c:200: error: Failure! [ FAILED ] tcti_spi_init_test [==] tests: 1 test(s) run. [ PASSED ] 0 test(s). [ FAILED ] tests: 1 test(s), listed below: [ FAILED ] tcti_spi_init_test 1 FAILED TEST(S) FAIL test/unit/tcti-spidev (exit status: 1) SKIP: test/unit/fapi-io === WARNING:tests:test/unit/fapi-io.c:370:main() _FILE_OFFSET == 64 would produce cmocka errors. SKIP test/unit/fapi-io (exit status: 77) Testsuite summary for tpm2-tss 4.1.0 # TOTAL: 61 # PASS: 56 # SKIP: 4 # XFAIL: 0 # FAIL: 1 # XPASS: 0 # ERROR: 0 See ./test-suite.log Please report to https://github.com/tpm2-software/tpm2-tss/issues make[3]: *** [Makefile:33547: test-suite.log] Error 1
Bug#1070715: libboost-regex: Is the libboost-regex*-icu* Provides still needed?
Package: libboost-regex1.83.0 Severity: normal This is something to be checked, perhaps for the next Boost transition. libboost_regex.so is no longer linked with libicu*, likely due to[1]: Regex: Regex is now header only except in C++03 mode. Support for C++03 is now deprecated. [1] https://www.boost.org/users/history/version_1_76_0.html
Bug#1070659: transition: re2
On Mon, May 06, 2024 at 01:09:37PM -0400, Stefano Rivera wrote: >... > included a new dependency on abseil. This broke most of the > reverse-dependencies. It also means that transitions will get more > frequent, as every abseil transition will change re2's ABI. >... Could this be solved through Provides, so that it could be handled with binNMUs during abseil transitions? Example: Package: libboost-regex1.74.0 Depends: ..., libicu72 (>= 72.1~rc-1~),... Provides: libboost-regex1.74.0-icu72 $ cat /var/lib/dpkg/info/libboost-regex1.74.0\:amd64.shlibs libboost_regex 1.74.0 libboost-regex1.74.0-icu72 $ > Stefano cu Adrian
Bug#1070490: libc6: Unpacking libc6:amd64 2.28-10+deb10u3 over 2.28-10+deb10u2 breaks system
On Mon, May 06, 2024 at 05:37:37PM +0100, Adam D. Barratt wrote: > On Mon, 2024-05-06 at 13:02 +0200, Jan Krčmář wrote: > > Package: libc6 > > Version: 2.28-10+deb10u3 > > > > Upgrading the system (Debian 10/Buster) causes corrupted system, > > ending with kernel panic and unbootable system. > > > [...] > > The following packages will be upgraded: > > apt apt-transport-https apt-utils base-files ca-certificates > > The fact that APT is being upgraded here seems strange - APT hasn't > changed in buster for 3 years. What's your base system? There's also > > Unpacking base-files (10.3+deb10u13) over (10.3+deb10u5) ... That's outdated since September 2020. > > Unpacking libc6:amd64 (2.28-10+deb10u3) over (2.28-10+deb10u2) ... > > Replaced by files in installed package libcrypt1:amd64 (1:4.4.18-4) > > ... > > This, on the other hand, looks like you've done something odd to your > system. libcrypt1 doesn't exist until bullseye, so at some point you > have partially upgraded your base system. In conjunction with your pre- > upgrade system apparently having an APT version that's /older/ than the > one in buster, this feels odd. There is related nastiness with partial upgrades from buster to bullseye, see the last two items at [1]. I am not sure whether it is the root cause here, but it's at least plausible that not being able to have the Breaks in libcrypt1 causes problems for such partially upgraded systems. > Regards, > > Adam cu Adrian [1] https://tracker.debian.org/news/1239066/accepted-libxcrypt-14418-3-source-into-unstable/
Bug#1070499: systemd: Please update Homepage
Source: systemd Version: 255.5-1 Severity: minor debian/control:Homepage: https://www.freedesktop.org/wiki/Software/systemd This page has been obsoleted and replaced. All the new contents are on the new website: https://systemd.io/.
Bug#1070498: libvirt attempts to write to $HOME during the build
Source: libvirt Version: 10.3.0-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/fetch.php?pkg=libvirt=amd64=10.3.0-1=1714824148=0 ... 53) completion-command... In '/<>/tests/virshtestdata/completion-command.out': Offset 6 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 54) completion-command-complete ... In '/<>/tests/virshtestdata/completion-command-complete.out': Offset 6 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 55) completion-args ... In '/<>/tests/virshtestdata/completion-args.out': Offset 47 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 56) completion-arg-partial... In '/<>/tests/virshtestdata/completion-arg-partial.out': Offset 26 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 57) completion-arg-full-bool ... In '/<>/tests/virshtestdata/completion-arg-full-bool.out': Offset 7 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 58) completion-arg-full-bool-next ... In '/<>/tests/virshtestdata/completion-arg-full-bool-next.out': Offset 47 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 59) completion-arg-full-string... In '/<>/tests/virshtestdata/completion-arg-full-string.out': Offset 10 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 60) completion-arg-full-string-next ... In '/<>/tests/virshtestdata/completion-arg-full-string-next.out': Offset 47 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 61) completion-arg-full-argv ... In '/<>/tests/virshtestdata/completion-arg-full-argv.out': Offset 10 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 62) completion-arg-full-argv-next ... In '/<>/tests/virshtestdata/completion-arg-full-argv-next.out': Offset 6 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 63) completion-argv-multiple ... In '/<>/tests/virshtestdata/completion-argv-multiple.out': Offset 5 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 64) completion-argv-multiple-next ... In '/<>/tests/virshtestdata/completion-argv-multiple-next.out': Offset 268 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 65) completion-argv-multiple-positional ... In '/<>/tests/virshtestdata/completion-argv-multiple-positional.out': Offset 5 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 66) completion-argv-multiple-positional-next ... In '/<>/tests/virshtestdata/completion-argv-multiple-positional-next.out': Offset 268 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 67) completion-arg-positional-empty ... In '/<>/tests/virshtestdata/completion-arg-positional-empty.out': Offset 19 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ]
Bug#1070497: webrtc-audio-processing/experimental FTBFS with gcc 13
Source: webrtc-audio-processing Version: 1.0-0.2 Severity: serious Tags: ftbfs https://tests.reproducible-builds.org/debian/rb-pkg/experimental/amd64/webrtc-audio-processing.html https://buildd.debian.org/status/fetch.php?pkg=webrtc-audio-processing=riscv64=1.0-0.2=1706028598=0 ... FAILED: webrtc/modules/audio_processing/libwebrtc-audio-processing-1.so.0.p/transient_file_utils.cc.o c++ -Iwebrtc/modules/audio_processing/libwebrtc-audio-processing-1.so.0.p -Iwebrtc/modules/audio_processing -I../webrtc/modules/audio_processing -Iwebrtc -I../webrtc -I/usr/include -fdiagnostics-color=always -D_FILE_OFFSET_BITS=64 -Wall -Winvalid-pch -std=c++14 -g -O2 -ffile-prefix-map=/<>=. -fstack-protector-strong -Wformat -Werror=format-security -Wdate-time -D_FORTIFY_SOURCE=2 -fPIC -pthread -DWEBRTC_LIBRARY_IMPL -DWEBRTC_ENABLE_SYMBOL_EXPORT -DNDEBUG -DWEBRTC_POSIX -DWEBRTC_LINUX -DWEBRTC_THREAD_RR -DWEBRTC_APM_DEBUG_DUMP=0 -MD -MQ webrtc/modules/audio_processing/libwebrtc-audio-processing-1.so.0.p/transient_file_utils.cc.o -MF webrtc/modules/audio_processing/libwebrtc-audio-processing-1.so.0.p/transient_file_utils.cc.o.d -o webrtc/modules/audio_processing/libwebrtc-audio-processing-1.so.0.p/transient_file_utils.cc.o -c ../webrtc/modules/audio_processing/transient/file_utils.cc In file included from ../webrtc/modules/audio_processing/transient/file_utils.cc:11: ../webrtc/modules/audio_processing/transient/file_utils.h:36:35: error: ‘uint8_t’ does not name a type 36 | int ConvertByteArrayToFloat(const uint8_t bytes[4], float* out); | ^~~ ../webrtc/modules/audio_processing/transient/file_utils.h:17:1: note: ‘uint8_t’ is defined in header ‘’; did you forget to ‘#include ’? 16 | #include "rtc_base/system/file_wrapper.h" +++ |+#include 17 | ../webrtc/modules/audio_processing/transient/file_utils.h:41:36: error: ‘uint8_t’ does not name a type 41 | int ConvertByteArrayToDouble(const uint8_t bytes[8], double* out); |^~~ ../webrtc/modules/audio_processing/transient/file_utils.h:41:36: note: ‘uint8_t’ is defined in header ‘’; did you forget to ‘#include ’? ../webrtc/modules/audio_processing/transient/file_utils.h:46:42: error: ‘uint8_t’ has not been declared 46 | int ConvertFloatToByteArray(float value, uint8_t out_bytes[4]); | ^~~ ../webrtc/modules/audio_processing/transient/file_utils.h:51:44: error: ‘uint8_t’ has not been declared 51 | int ConvertDoubleToByteArray(double value, uint8_t out_bytes[8]); |^~~ ...
Bug#1070495: Should qbe be Architecture: amd64 arm64 riscv64 ?
Source: qbe Version: 1.2-1 Severity: important Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=qbe=1.2-1 ... dh_auto_test -a make -j8 check make[1]: Entering directory '/<>' tools/test.sh all abi1.ssa... /tmp/qbe..s: Assembler messages: /tmp/qbe..s:3: Error: unrecognized opcode: `pushq' /tmp/qbe..s:4: Error: unrecognized opcode: `movq' /tmp/qbe..s:5: Error: unrecognized opcode: `movq' /tmp/qbe..s:6: Error: unrecognized opcode: `addq' /tmp/qbe..s:8: Error: unrecognized opcode: `movb' /tmp/qbe..s:9: Error: unrecognized opcode: `movq' ... 50 of 50 tests failed! make[1]: *** [Makefile:72: check] Error 50 This is due to explicit support required for every architecture, and defaulting to amd64 otherwise: https://sources.debian.org/src/qbe/1.2-1/Makefile/#L44-L54 (The package also builds on m68k/sh4 in ports since these are building with nocheck.) An explicit Architecture: amd64 arm64 riscv64 might be a better option for such a package that needs a backend written for every architecture it supports?
Bug#1070491: rust-pipewire FTBFS on 32bit with 64bit time_t
Source: rust-pipewire Version: 0.8.0-4 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=rust-pipewire=0.8.0-4 ... error[E0308]: mismatched types --> src/thread_loop.rs:142:43 | 142 | nix::sys::time::TimeSpec::new(abstime.tv_sec, abstime.tv_nsec) | - ^^ expected `i64`, found `i32` | | | arguments to this function are incorrect | note: associated function defined here --> /usr/share/cargo/registry/nix-0.27.1/src/sys/time.rs:339:18 | 339 | pub const fn new(seconds: time_t, nanoseconds: timespec_tv_nsec_t) -> Self { | ^^^ help: you can convert an `i32` to an `i64` | 142 | nix::sys::time::TimeSpec::new(abstime.tv_sec.into(), abstime.tv_nsec) | +++ error[E0308]: mismatched types --> src/thread_loop.rs:152:25 | 152 | tv_sec: abstime.tv_sec(), | expected `i32`, found `i64` For more information about this error, try `rustc --explain E0308`. error: could not compile `pipewire` (lib) due to 2 previous errors ...
Bug#1070489: rust-hypothesis FTBFS: test failures
Source: rust-hypothesis Version: 0.11.1-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=rust-hypothesis=0.11.1-1 https://buildd.debian.org/status/logs.php?pkg=rust-hypothesis=0.11.1-2 ... Running `/<>/target/x86_64-unknown-linux-gnu/release/deps/cli-60d293523176a82c --test-threads=1 --skip it_works --skip make --skip sync --skip tag_filter` running 5 tests test add_and_delete_annotation ... FAILED test create_and_leave_group ... FAILED test search_annotations ... FAILED test update_annotation ... FAILED test update_group ... FAILED failures: add_and_delete_annotation stdout Error: path not found Caused by: path not found Location: tests/cli.rs:33:5 create_and_leave_group stdout Error: path not found Caused by: path not found Location: tests/cli.rs:177:5 search_annotations stdout Error: path not found Caused by: path not found Location: tests/cli.rs:114:5 update_annotation stdout Error: path not found Caused by: path not found Location: tests/cli.rs:69:5 update_group stdout thread 'update_group' panicked at 'assertion failed: group_id.is_ok()', tests/cli.rs:218:5 stack backtrace: 0: rust_begin_unwind at /usr/src/rustc-1.70.0/library/std/src/panicking.rs:578:5 1: core::panicking::panic_fmt at /usr/src/rustc-1.70.0/library/core/src/panicking.rs:67:14 2: core::panicking::panic at /usr/src/rustc-1.70.0/library/core/src/panicking.rs:117:5 3: cli::update_group at ./tests/cli.rs:218:5 4: cli::update_group::{{closure}} at ./tests/cli.rs:212:22 5: core::ops::function::FnOnce::call_once at /usr/src/rustc-1.70.0/library/core/src/ops/function.rs:250:5 6: core::ops::function::FnOnce::call_once at /usr/src/rustc-1.70.0/library/core/src/ops/function.rs:250:5 note: Some details are omitted, run with `RUST_BACKTRACE=full` for a verbose backtrace. failures: add_and_delete_annotation create_and_leave_group search_annotations update_annotation update_group test result: FAILED. 0 passed; 5 failed; 0 ignored; 0 measured; 0 filtered out; finished in 0.04s error: test failed, to rerun pass `--test cli` Doc-tests hypothesis Running `rustdoc --edition=2021 --crate-type lib --crate-name hypothesis --test /<>/src/lib.rs --target x86_64-unknown-linux-gnu -L dependency=/<>/target/x86_64-unknown-linux-gnu/release/deps -L dependency=/<>/target/release/deps -L native=/<>/target/x86_64-unknown-linux-gnu/release/build/ring-21217903804af83c/out --test-args --test-threads=1 --test-args --skip --test-args it_works --test-args --skip --test-args make --test-args --skip --test-args sync --test-args --skip --test-args tag_filter --extern assert_cmd=/<>/target/x86_64-unknown-linux-gnu/release/deps/libassert_cmd-134b03450b103fd5.rlib --extern chrono=/<>/target/x86_64-unknown-linux-gnu/release/deps/libchrono-366b82fe4c132a7f.rlib --extern clap=/<>/target/x86_64-unknown-linux-gnu/release/deps/libclap-0253bc5809b2cb30.rlib --extern clap_complete=/<>/target/x86_64-unknown-linux-gnu/release/deps/libclap_complete-e7897de87192b73b.rlib --extern color_eyre=/<>/target/x86_64-unknown-linux-gnu/release/deps/libcolor_eyre-9811652bc2e783d9.rlib --extern derive_builder=/<>/target/x86_64-unknown-linux-gnu/release/deps/libderive_builder-b3eb91696292575e.rlib --extern dotenv=/<>/target/x86_64-unknown-linux-gnu/release/deps/libdotenv-9f37bf59e8da3298.rlib --extern eyre=/<>/target/x86_64-unknown-linux-gnu/release/deps/libeyre-913f1aee7266adfa.rlib --extern futures=/<>/target/x86_64-unknown-linux-gnu/release/deps/libfutures-badab9fb8631b2a1.rlib --extern hypothesis=/<>/target/x86_64-unknown-linux-gnu/release/deps/libhypothesis-12767b8516e42793.rlib --extern predicates=/<>/target/x86_64-unknown-linux-gnu/release/deps/libpredicates-53aab59c9f2a01ff.rlib --extern reqwest=/<>/target/x86_64-unknown-linux-gnu/release/deps/libreqwest-1c860df583615e4b.rlib --extern serde=/<>/target/x86_64-unknown-linux-gnu/release/deps/libserde-c2f81dc8b529eb86.rlib --extern serde_json=/<>/target/x86_64-unknown-linux-gnu/release/deps/libserde_json-86e653e5692938d9.rlib --extern thiserror=/<>/target/x86_64-unknown-linux-gnu/release/deps/libthiserror-a30286b97953be04.rlib --extern tokio=/<>/target/x86_64-unknown-linux-gnu/release/deps/libtokio-f2e0886742c2d315.rlib --extern url=/<>/target/x86_64-unknown-linux-gnu/release/deps/liburl-a6463baef11a8609.rlib -C embed-bitcode=no --cfg 'feature="clap"' --cfg 'feature="clap_complete"' --cfg 'feature="cli"' --cfg 'feature="color-eyre"' --cfg 'feature="default"' --cfg 'feature="eyre"' --error-format human` running 18 tests test src/annotations.rs - annotations::InputAnnotation (line 27) ... ok test src/lib.rs - (line 44) - compile ... ok test src/lib.rs - Hypothesis::create_annotation (line 213) ... FAILED test src/lib.rs -
Bug#1064516: ruby-rack: diff for NMU version 2.2.7-1.1
Control: tags 1064516 + patch Control: tags 1064516 + pending Dear maintainer, I've prepared an NMU for ruby-rack (versioned as 2.2.7-1.1) and uploaded it to DELAYED/2. Please feel free to tell me if I should cancel it. cu Adrian diffstat for ruby-rack-2.2.7 ruby-rack-2.2.7 changelog | 10 + patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch | 51 ++ patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch | 46 + patches/0003-Fixing-ReDoS-in-header-parsing.patch | 30 + patches/series |3 5 files changed, 140 insertions(+) diff -Nru ruby-rack-2.2.7/debian/changelog ruby-rack-2.2.7/debian/changelog --- ruby-rack-2.2.7/debian/changelog 2023-07-10 17:32:41.0 +0300 +++ ruby-rack-2.2.7/debian/changelog 2024-05-02 22:55:26.0 +0300 @@ -1,3 +1,13 @@ +ruby-rack (2.2.7-1.1) unstable; urgency=high + + * Non-maintainer upload. + * CVE-2024-25126: ReDoS in Content Type header parsing + * CVE-2024-26141: Reject Range headers which are too large + * CVE-2024-26146: ReDoS in Accept header parsing + * Closes: #1064516 + + -- Adrian Bunk Thu, 02 May 2024 22:55:26 +0300 + ruby-rack (2.2.7-1) unstable; urgency=medium * Team Upload diff -Nru ruby-rack-2.2.7/debian/patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch ruby-rack-2.2.7/debian/patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch --- ruby-rack-2.2.7/debian/patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch 1970-01-01 02:00:00.0 +0200 +++ ruby-rack-2.2.7/debian/patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch 2024-05-02 22:55:26.0 +0300 @@ -0,0 +1,51 @@ +From e5c0e03f70624433d7132a5eb039f5f04787d20c Mon Sep 17 00:00:00 2001 +From: Jean Boussier +Date: Wed, 6 Dec 2023 18:32:19 +0100 +Subject: Avoid 2nd degree polynomial regexp in MediaType + +--- + lib/rack/media_type.rb | 13 + + 1 file changed, 9 insertions(+), 4 deletions(-) + +diff --git a/lib/rack/media_type.rb b/lib/rack/media_type.rb +index 41937c99..7fc1e39d 100644 +--- a/lib/rack/media_type.rb b/lib/rack/media_type.rb +@@ -4,7 +4,7 @@ module Rack + # Rack::MediaType parse media type and parameters out of content_type string + + class MediaType +-SPLIT_PATTERN = %r{\s*[;,]\s*} ++SPLIT_PATTERN = /[;,]/ + + class << self + # The media type (type/subtype) portion of the CONTENT_TYPE header +@@ -15,7 +15,11 @@ module Rack + # http://www.w3.org/Protocols/rfc2616/rfc2616-sec3.html#sec3.7 + def type(content_type) + return nil unless content_type +-content_type.split(SPLIT_PATTERN, 2).first.tap &:downcase! ++if type = content_type.split(SPLIT_PATTERN, 2).first ++ type.rstrip! ++ type.downcase! ++ type ++end + end + + # The media type parameters provided in CONTENT_TYPE as a Hash, or +@@ -27,9 +31,10 @@ module Rack + return {} if content_type.nil? + + content_type.split(SPLIT_PATTERN)[1..-1].each_with_object({}) do |s, hsh| ++ s.strip! + k, v = s.split('=', 2) +- +- hsh[k.tap(&:downcase!)] = strip_doublequotes(v) ++ k.downcase! ++ hsh[k] = strip_doublequotes(v) + end + end + +-- +2.30.2 + diff -Nru ruby-rack-2.2.7/debian/patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch ruby-rack-2.2.7/debian/patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch --- ruby-rack-2.2.7/debian/patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch 1970-01-01 02:00:00.0 +0200 +++ ruby-rack-2.2.7/debian/patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch 2024-05-02 22:55:26.0 +0300 @@ -0,0 +1,46 @@ +From e4a334bba45d1f66499973d65ba4db2679129153 Mon Sep 17 00:00:00 2001 +From: Aaron Patterson +Date: Tue, 13 Feb 2024 13:34:34 -0800 +Subject: Return an empty array when ranges are too large + +If the sum of the requested ranges is larger than the file itself, +return an empty array. In other words, refuse to respond with any bytes. + +[CVE-2024-26141] +--- + lib/rack/utils.rb | 3 +++ + test/spec_utils.rb | 4 + 2 files changed, 7 insertions(+) + +diff --git a/lib/rack/utils.rb b/lib/rack/utils.rb +index c8e61ea1..72700503 100644 +--- a/lib/rack/utils.rb b/lib/rack/utils.rb +@@ -380,6 +380,9 @@ module Rack + end + ranges << (r0..r1) if r0 <= r1 + end ++ ++ return [] if ranges.map(&:size).sum > size ++ + ranges + end + +diff --git a/test/spec_utils.rb b/test/spec_utils.rb +index 90676258..6b069914 100644 +--- a/test/spec_utils.rb b/test/spec_utils.rb +@@ -590,6 +590,10 @@ describe Rack::Utils, "cookies" do + end + + describe Rack::Utils, "byte_range" do ++ it "returns
Bug#1070042: libarchive: archive_entry_stat returns zero size on mips64el with _FILE_OFFSET_BITS=64
On Mon, Apr 29, 2024 at 11:12:54AM +0200, Johannes Schauer Marin Rodrigues wrote: >... > I attached a minimal reproducer. It includes an embedded gzipped tarball with > a > single file called "myfilename" of size 10. It works fine if _FILE_OFFSET_BITS > is not set but with it, it reports a wrong archive member size of zero on > mips64el: >... > st_uid = 1000, st_gid = 1000, st_rdev = 0, st_pad2 = {0, 0, 10}, st_size = > 0, >... > As one can see, the size "10" is not in st_size but in the padding before the > st_size member. This only happens when _FILE_OFFSET_BITS=64 and only on > mips64el. > > Any idea what is going on with mips64el? The assumption that _FILE_OFFSET_BITS=64 would be a NOP on 64-bit is not true on MIPS, where stat and stat64 differ in padding and _FILE_OFFSET_BITS=64 switches stat to the stat64 padding: https://sources.debian.org/src/glibc/2.36-9%2Bdeb12u4/sysdeps/unix/sysv/linux/mips/bits/struct_stat.h/#L149-L156 AC_SYS_LARGEFILE was added to e2fsprogs configure.ac 2 years ago, therefore manual #define _FILE_OFFSET_BITS 64 #define _LARGEFILE64_SOURCE 1 should no longer be necessary for architectures where it is needed. > Thanks! > > cheers, josch cu Adrian BTW: e2fsprogs added AC_USE_SYSTEM_EXTENSIONS 10 years ago, therefore manual #define _GNU_SOURCE 1 could also be removed.
Bug#1070022: libretro-beetle-psx FTBFS on mips64el with -Werror=implicit-function-declaration
Source: libretro-beetle-psx Version: 0.9.38.6+git20151019-3 Severity: serious Tags: ftbfs patch trixie sid https://buildd.debian.org/status/fetch.php?pkg=libretro-beetle-psx=mips64el=0.9.38.6%2Bgit20151019-3%2Bb1=1714231581=0 ... libretro-common/rthreads/rthreads.c: In function ‘scond_wait_timeout’: libretro-common/rthreads/rthreads.c:410:4: error: implicit declaration of function ‘gettimeofday’ [-Werror=implicit-function-declaration] 410 |gettimeofday(, NULL); |^~~~ cc1: some warnings being treated as errors make[2]: *** [Makefile:264: libretro-common/rthreads/rthreads.o] Error 1
Bug#1070021: libretro-beetle-pce-fast FTBFS on mips64el with -Werror=implicit-function-declaration
Source: libretro-beetle-pce-fast Version: 0.9.38.7+git20160609-2 Severity: serious Tags: ftbfs patch trixie sid Forwarded: https://github.com/libretro/libretro-common/commit/20a43ba79fe6b4ec094b3b20b7bc88f4cfe916fa https://buildd.debian.org/status/fetch.php?pkg=libretro-beetle-pce-fast=mips64el=0.9.38.7%2Bgit20160609-2%2Bb1=1714231411=0 ... libretro-common/rthreads/rthreads.c: In function ‘scond_wait_timeout’: libretro-common/rthreads/rthreads.c:423:4: error: implicit declaration of function ‘gettimeofday’ [-Werror=implicit-function-declaration] 423 |gettimeofday(, NULL); |^~~~ cc1: some warnings being treated as errors make[2]: *** [Makefile:332: libretro-common/rthreads/rthreads.o] Error 1
Bug#1070002: rust-alsa FTBFS on 32bit with 64bit time_t
Source: rust-alsa Version: 0.8.1-3 Severity: serious Tags: ftbfs Control: affects -1 src:rust-cpal https://tests.reproducible-builds.org/debian/rb-pkg/unstable/armhf/rust-alsa.html https://buildd.debian.org/status/fetch.php?pkg=rust-cpal=armhf=0.15.2-3%2Bb1=1714250098=0 ... error: cannot construct `timespec` with struct literal syntax due to private fields --> /usr/share/cargo/registry/alsa-0.8.1/src/pcm.rs:1113:21 | 1113 | let mut h = timespec {tv_sec: 0, tv_nsec: 0}; | | = note: ... and other private field `__pad` that was not provided error: cannot construct `timespec` with struct literal syntax due to private fields --> /usr/share/cargo/registry/alsa-0.8.1/src/pcm.rs:1119:21 | 1119 | let mut h = timespec {tv_sec: 0, tv_nsec: 0}; | | = note: ... and other private field `__pad` that was not provided error: cannot construct `timespec` with struct literal syntax due to private fields --> /usr/share/cargo/registry/alsa-0.8.1/src/pcm.rs:1125:21 | 1125 | let mut h = timespec {tv_sec: 0, tv_nsec: 0}; | | = note: ... and other private field `__pad` that was not provided error: could not compile `alsa` due to 3 previous errors ...
Bug#1070001: rust-net2 FTBFS on 32bit with 64bit time_t
Source: rust-net2 Version: 0.2.37-1 Severity: serious Tags: ftbfs trixie sid https://buildd.debian.org/status/fetch.php?pkg=rust-net2=armhf=0.2.37-1%2Bb1=1714277125=0 ... error[E0308]: mismatched types --> src/ext.rs:902:22 | 902 | tv_usec: (d % 1000) as suseconds_t, | ^ expected `i64`, found `i32` For more information about this error, try `rustc --explain E0308`. error: could not compile `net2` due to previous error ...
Bug#1070000: rust-time-0.1 FTBFS on 32bit with 64bit time_t
Source: rust-time-0.1 Version: 0.1.44-2 Severity: serious Tags: ftbfs trixie sid https://buildd.debian.org/status/fetch.php?pkg=rust-time-0.1=armhf=0.1.44-2%2Bb1=1714295931=0 ... error: cannot construct `timespec` with struct literal syntax due to private fields --> src/sys.rs:521:26 | 521 | let mut tv = libc::timespec { tv_sec: 0, tv_nsec: 0 }; | ^^ | = note: ... and other private field `__pad` that was not provided error: cannot construct `timespec` with struct literal syntax due to private fields --> src/sys.rs:527:26 | 527 | let mut ts = libc::timespec { tv_sec: 0, tv_nsec: 0 }; | ^^ | = note: ... and other private field `__pad` that was not provided error: cannot construct `timespec` with struct literal syntax due to private fields --> src/sys.rs:555:24 | 555 | t: libc::timespec { |^^ | = note: ... and other private field `__pad` that was not provided error: could not compile `time` due to 3 previous errors ...
Bug#1069999: rust-unix-socket FTBFS on 32bit with 64bit time_t
Source: rust-unix-socket Version: 0.5.0-2 Severity: serious Tags: ftbfs trixie sid https://buildd.debian.org/status/fetch.php?pkg=rust-unix-socket=armhf=0.5.0-2%2Bb1=1714298139=0 ... error[E0308]: mismatched types --> src/lib.rs:122:30 | 122 | tv_usec: usecs, | ^ expected `i64`, found `i32` For more information about this error, try `rustc --explain E0308`. warning: `unix_socket` (lib) generated 31 warnings error: could not compile `unix_socket` due to previous error; 31 warnings emitted ...
Bug#1069998: rust-datetime FTBFS on 32bit with 64bit time_t
Source: rust-datetime Version: 0.5.2-5 Severity: serious Tags: ftbfs trixie sid Control: affects -1 src:rust-zoneinfo-compiled https://buildd.debian.org/status/fetch.php?pkg=rust-datetime=armhf=0.5.2-5%2Bb1=1714252645=0 ... error: cannot construct `timespec` with struct literal syntax due to private fields --> src/system.rs:74:18 | 74 | let mut tv = libc::timespec { tv_sec: 0, tv_nsec: 0 }; | ^^ | = note: ... and other private field `__pad` that was not provided ...
Bug#1069993: rust-filetime FTBFS on 32bit with 64bit time_t
Source: rust-filetime Version: 0.2.22-1 Severity: serious Tags: ftbfs Control: affects -1 src:rust-notify src:rust-async-tar src:rust-cargo-util src:rust-cp-r https://buildd.debian.org/status/fetch.php?pkg=rust-filetime=armhf=0.2.22-1%2Bb1=1714259218=0 ... error[E0308]: mismatched types --> src/unix/utimes.rs:117:18 | 117 | tv_usec: (ft.nanoseconds() / 1000) as libc::suseconds_t, | ^^ expected `i64`, found `i32` For more information about this error, try `rustc --explain E0308`. error: could not compile `filetime` due to previous error ...
Bug#1069992: rust-socket2 FTBFS on 32bit with 64bit time_t
Source: rust-socket2 Version: 0.5.5-1 Severity: serious Tags: ftbfs Control: affects -1 src:rust-quinn-udp src:rust-oauth2 src:rust-nispor src:rust-netlink-proto src:rust-nb-connect src:rust-debbugs src:rust-dns-lookup src:rust-erbium-net src:rust-ethtool src:rust-genetlink src:rust-git2-curl src:rust-hyper-tls src:rust-mozim src:rust-mptcp-pm src:rust-curl https://buildd.debian.org/status/fetch.php?pkg=rust-socket2=armhf=0.5.5-1%2Bb1=1714293496=0 ... error[E0308]: mismatched types --> src/sys/unix.rs:1137:22 | 1137 | tv_usec: duration.subsec_micros() as libc::suseconds_t, | ^ expected `i64`, found `i32` For more information about this error, try `rustc --explain E0308`. error: could not compile `socket2` due to previous error ...
Bug#1069980: haskell-futhark FTBFS: Missing build dependency on alex
Source: haskell-futhark Version: 0.25.15-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=haskell-futhark=0.25.15-1 ... CallStack (from HasCallStack): withMetadata, called at libraries/Cabal/Cabal/src/Distribution/Simple/Utils.hs:370:14 in Cabal-3.8.1.0:Distribution.Simple.Utils Error: hlibrary.setup: The program 'alex' is required but it could not be ...
Bug#1069834: sccache FTBFS with itoa != 0.3.4
Source: sccache Version: 0.8.0-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=sccache=0.8.0-1 ... test test_rust_cargo_cmd_readonly_preemtive_block ... FAILED failures: test_rust_cargo_cmd_readonly_preemtive_block stdout Error: Unexpected failure. code=101 stderr=`` error: failed to select a version for the requirement `itoa = \"^0.3.4\"` (locked to 0.3.4) candidate versions found which didn\'t match: 1.0.9 location searched: directory source `/<>/debian/cargo_registry` (which is replacing registry `crates-io`) required by package `test-crate v0.1.0 (/<>/tests/test-crate)` perhaps a crate was updated and forgotten to be re-vendored? ``` ``` command=`cd "tests/test-crate" && CARGO_INCREMENTAL="0" CARGO_TARGET_DIR="/<>/debian/sccache_test_rust_cargoG4h5iT/cargo" RUSTC_WRAPPER="/<>/target/x86_64-unknown-linux-gnu/release/sccache" TEST_ENV_VAR="1" "/usr/bin/cargo" "build" "--color=never"` code=101 stdout="" stderr=``` error: failed to select a version for the requirement `itoa = \"^0.3.4\"` (locked to 0.3.4) candidate versions found which didn\'t match: 1.0.9 location searched: directory source `/<>/debian/cargo_registry` (which is replacing registry `crates-io`) required by package `test-crate v0.1.0 (/<>/tests/test-crate)` perhaps a crate was updated and forgotten to be re-vendored? ``` Stack backtrace: 0: 1: 2: 3: 4: 5: 6: 7: 8: 9: 10: failures: test_rust_cargo_cmd_readonly_preemtive_block test result: FAILED. 2 passed; 1 failed; 5 ignored; 0 measured; 0 filtered out; finished in 11.18s error: test failed, to rerun pass `--test sccache_cargo` dh_auto_test: error: env DEB_BUILDDIR= /<>/debian/dh-cargo/bin/cargo test returned exit code 101 make[1]: *** [debian/rules:29: override_dh_auto_test] Error 25
Bug#1069685: haskell-language-c-quote: Missing build dependency on alex
Source: haskell-language-c-quote Version: 0.13.0.1-1 Severity: serious Tags: ftbfs X-Debbugs-Cc: Debian Haskell Group , Kari Pahula https://buildd.debian.org/status/logs.php?pkg=haskell-language-c-quote=0.13.0.1-1 ... Error: hlibrary.setup: The program 'alex' version >=3 is required but it could not be found. ...
Bug#1069607: retroarch is built without optimization
Package: retroarch Version: 1.18.0+dfsg-1 Severity: important Tags: ftbfs X-Debbugs-Cc: Jonathan McDowell debian/rules:export DEB_CXXFLAGS_MAINT_STRIP=-O2 debian/rules:export DEB_CFLAGS_MAINT_STRIP=-O2 Building without optimization makes binaries both slower and bigger. The latter is likely also the root cause of the FTBFS on m68k and powerpc.
Bug#1069309: xfractint FTBFS: error: implicit declaration of function
Source: xfractint Version: 20.4.10-4 Severity: serious Tags: ftbfs X-Debbugs-Cc: Petter Reinholdtsen https://buildd.debian.org/status/logs.php?pkg=xfractint=20.4.10-4 ... /usr/bin/gcc -I../headers -g -O2 -Werror=implicit-function-declaration -ffile-prefix-map=/<>=. -fstack-protector-strong -fstack-clash-protection -Wformat -Werror=format-security -mbranch-protection=standard -I./headers -DXFRACT -DNOBSTRING -g -DBIG_ANSI_C -DLINUX -fno-builtin -fcommon -O2 -Wdate-time -D_FORTIFY_SOURCE=2 -c -o 3d.o 3d.c 3d.c: In function ‘longvmultpersp’: 3d.c:290:20: error: implicit declaration of function ‘multiply’ [-Werror=implicit-function-declaration] 290 | tmp[j] += multiply(s[i],m[i][j],bitshift); |^~~~ 3d.c:318:20: error: implicit declaration of function ‘divide’ [-Werror=implicit-function-declaration] 318 | tmpview[0] = divide(lview[0],denom,bitshift); |^~ cc1: some warnings being treated as errors make[3]: *** [: 3d.o] Error 1
Bug#1069222: purple-xmpp-carbons: debian/shlibs.local hardcodes dependency on libpurple0
Package: purple-xmpp-carbons Version: 0.2.3-1 Severity: serious Tags: trixie sid debian/shlibs.local hardcodes a dependency on libpurple0, which makes the package uninstallable on armel/armhf due to the 64-bit time_t rename to libpurple0t64.
Bug#1069136: wabt: Typo in repacksuffix
Source: wabt Version: 1.0.34+dsfg2+~cs1.0.32-1 Severity: normal https://sources.debian.org/src/wabt/1.0.34%2Bdsfg2%2B~cs1.0.32-1/debian/watch/#L2 opts=filenamemangle=s/.+\/@ANY_VERSION@(@ARCHIVE_EXT@)$/@PACKAGE@-$1$2/,repacksuffix=+dsfg \ It's dfsg, not dsfg.
Bug#1062719: bumping qpdf 64-bit time_t for 11.9.0 in experimental
On Sat, Feb 24, 2024 at 05:36:53PM -0500, Jay Berkenbilt wrote: > I need to upload qpdf 11.9.0-1 to unstable. Since this is newer than > 11.8.0-1.1~exp1 in experimental with the 64-bit time_t NMU, it will > cause that to disappear. In an effort to avoid that and keep things in > sync with the time_t transition, I have ported the NMU forward to > 11.9.0-1 and will upload 11.9.0-2~exp1 with the time_t changes to > experimental right after I upload 11.9.0-1 to experimental. I am > hoping that I am not messing anything up with this. Please feel free > to adjust tags, do a separate NMU, or whatever is needed if I have > gotten things out of sync. In any case, I want to get 11.9.0-1 > uploaded right away since I'd like it to sync to Ubuntu before the > 24.04 feature freeze. >... It seems the new version of qpdf in experimental was by accident uploaded to unstable instead of the old version in unstable? It doesn't seem to be a problem in any way, just FYI. cu Adrian
Bug#1061300: lcm: Update to version 1.5.0
On Sat, Feb 03, 2024 at 08:23:05PM +0100, Jose Luis Rivero wrote: > Thanks Vagrant for the reply and the information. > > Updating the info about the 1.5 update, the merge-request is ready to > review and sponsored: > - https://salsa.debian.org/debian/lcm/-/merge_requests/1 It is unlikely that many people would see your merge request, please file a sponsorship request as described at https://mentors.debian.net/sponsors/rfs-howto/ cu Adrian
Bug#1062881: mia: NMU diff for 64-bit time_t transition
On Sat, Feb 03, 2024 at 09:20:05PM +, Graham Inggs wrote: > Source: mia > Version: 2.4.7-13 > Severity: serious > Tags: patch pending sid trixie > Justification: library ABI skew on upgrade > User: debian-...@lists.debian.org > Usertags: time-t >... Was this forgotten to upload to unstable, or was there a reason why it was deemed unnecessary? Thanks Adrian
Bug#1068880: fwbuilder FTBFS: error: debhelper compat level specified both in debian/compat and in debian/control
Source: fwbuilder Version: 5.3.7-7 Severity: serious Tags: ftbfs X-Debbugs-Cc: Jeremy Bícha https://buildd.debian.org/status/logs.php?pkg=fwbuilder=5.3.7-7 ... fakeroot debian/rules clean dh clean dh: warning: Please specify the debhelper compat level exactly once. dh: warning: * debian/compat requests compat 9. dh: warning: * debian/control requests compat 12 via "debhelper-compat (= 12)" dh: warning: dh: warning: Hint: If you just added a build-dependency on debhelper-compat, then please remember to remove debian/compat dh: warning: dh: error: debhelper compat level specified both in debian/compat and in debian/control make: *** [debian/rules:13: clean] Error 255
Bug#1068655: lomiri-telephony-service FTBFS with abseil 20230802.1
On Wed, Apr 10, 2024 at 09:02:50PM +, Mike Gabriel wrote: > Hi Adrian, Hi Mike, >... > I'd appreciate if you could take a look and shed some light on this. >... I would have mentioned if I had a clue about this, but I don't. In places like #debian-devel there might be people who understand at first sight what the problem might be. > Thanks! > Mike cu Adrian
Bug#1068586: ghc: Broken on arm{el,hf} because of time_t transition
[ Steve added, for the symbol list question ] On Tue, Apr 09, 2024 at 09:44:43PM +0300, Ilias Tsitsimpis wrote: > On Tue, Apr 09, 2024 at 08:53PM, Adrian Bunk wrote: > > On Tue, Apr 09, 2024 at 07:23:29PM +0300, Ilias Tsitsimpis wrote: > > > I believe it's not. haskell-hourglass used to work on arm{el,hf} just > > > before the time64 transition. > > > > before this transition x32 was the only 32bit architecture with 64bit > > time_t. > > Aha! Didn't know that, thanks for flagging this. I am surprised that we > hadn't noticed this earlier (as we see now, GHC is completely broken). I wouldn't call it "completely broken". I'm too lazy to get exact numbers, but the arm{el,hf} situation is more like 1000 packages built (a large part with tests) and 10 failed. >... > > > We need a way to identify every package that is broken. > > > > $ nm -D /usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHStime-1.12.2-ghc9.4.7.so | > > grep gettimeofday > > U gettimeofday@GLIBC_2.4 > > ... > > > > $ nm -D > > /usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHSdirectory-1.3.7.1-ghc9.4.7.so | > > grep utimensat > > ... > > U utimensat@GLIBC_2.6 > > > > $ nm -D /usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHStime-1.12.2-ghc9.4.7.so | > > grep localtime > > U __localtime64_r@GLIBC_2.34 > > Thank you! Can we maybe run this against all Haskell libraries and > identify the ones that are currently broken? Maybe we have such a script > already for the time64 transition. Steve, do you have a list of all bad symbols for the time_t transition? With this list it should be possible to just install all currently installable Haskell packages on a porterbox and do something like $ for s in gettimeofday utimensat localtime localtime_r; do for f in /usr/lib/ghc/lib/arm-linux-ghc-9.4.7/*.so /usr/lib/haskell-packages/ghc/lib/arm-linux-ghc-9.4.7/*.so; do nm -D $f | grep $s@ && echo $f; done; done U gettimeofday@GLIBC_2.4 /usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHStime-1.12.2-ghc9.4.7.so U utimensat@GLIBC_2.6 /usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHSdirectory-1.3.7.1-ghc9.4.7.so U utimensat@GLIBC_2.6 /usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHSunix-2.7.3-ghc9.4.7.so $ That last one is likely libraries/unix/System/Posix/Files/Common.hsc:foreign import ccall unsafe "utimensat" > > But the last one is the broken localtime_r one, is anything going wrong > > with the ccall from TimeZone.hs to cbits there? > > > > get_current_timezone_seconds() returning long is wrong, > > and might contribute to that bug: > > > > foreign import ccall unsafe "HsTime.h get_current_timezone_seconds" > > get_current_timezone_seconds :: > > CTime -> Ptr CInt -> Ptr CString -> IO CLong > > ... > > getTimeZoneCTime ctime = > > ... > > secs <- get_current_timezone_seconds ctime pdst pcname > > > > I don't know Haskell, but is this declaring ctime as CLong, > > and then passing it instead of a CTime? > > I believe it returns the timezone in seconds (i.e., 3600 for +1 hour > timezone), so CLong should be large enough to hold this value. My guess > right now is that it fails due to the bogus CTime value that we pass, we > need to test this. Yes, I suspect that this function with CTime -> Ptr CInt -> Ptr CString -> IO CLong gets called as CLong -> Ptr CInt -> Ptr CString -> IO CLong but I'm surprised if Haskell does not catch something like that at compile time. > Ilias cu Adrian
Bug#1068723: quickflux: binary-any FTBFS
Source: quickflux Version: 1.1.3+git20201110.2a37acf-1 Severity: serious Tags: ftbfs X-Debbugs-Cc: Debian UBports Team https://buildd.debian.org/status/logs.php?pkg=quickflux=1.1.3%2Bgit20201110.2a37acf-1 ... debian/rules override_dh_installexamples make[1]: Entering directory '/<>' dh_installexamples rm debian/quickflux-doc/usr/share/doc/quickflux-doc/examples/middleware/.gitignore rm: cannot remove 'debian/quickflux-doc/usr/share/doc/quickflux-doc/examples/middleware/.gitignore': No such file or directory make[1]: *** [debian/rules:33: override_dh_installexamples] Error 1
Bug#1068586: ghc: Broken on arm{el,hf} because of time_t transition
On Tue, Apr 09, 2024 at 07:23:29PM +0300, Ilias Tsitsimpis wrote: > Hi Adrian, Hi Ilias, > On Tue, Apr 09, 2024 at 12:56PM, Adrian Bunk wrote: > > FTR, in haskell-hourglass this is #1001686 which already failed on x32 > > for this reason. > > I believe it's not. haskell-hourglass used to work on arm{el,hf} just > before the time64 transition. before this transition x32 was the only 32bit architecture with 64bit time_t. > > My reading of the code is that this happens when > > libraries/time/lib/cbits/HsTime.c returns 0x8000 due to > > localtime_r() called in this function returning an error. > > > > The "localtime_r failed" is from > > libraries/time/lib/Data/Time/LocalTime/Internal/TimeZone.hs >... > The fix here is to backport (at least) the following patches which > change these calls to use the capi calling convention: > > * > https://gitlab.haskell.org/ghc/packages/time/-/commit/d52314edb138b6ecd7e888c588f83917b0ee2c29 > * > https://gitlab.haskell.org/ghc/packages/directory/-/commit/f6b288bd96fba5a955d1f73663eb52c1859ee765 This localtime_r issue I mentioned is not covered in the above commit in time. >... > We need a way to identify every package that is broken. $ nm -D /usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHStime-1.12.2-ghc9.4.7.so | grep gettimeofday U gettimeofday@GLIBC_2.4 ... $ nm -D /usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHSdirectory-1.3.7.1-ghc9.4.7.so | grep utimensat ... U utimensat@GLIBC_2.6 $ nm -D /usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHStime-1.12.2-ghc9.4.7.so | grep localtime U __localtime64_r@GLIBC_2.34 But the last one is the broken localtime_r one, is anything going wrong with the ccall from TimeZone.hs to cbits there? get_current_timezone_seconds() returning long is wrong, and might contribute to that bug: foreign import ccall unsafe "HsTime.h get_current_timezone_seconds" get_current_timezone_seconds :: CTime -> Ptr CInt -> Ptr CString -> IO CLong ... getTimeZoneCTime ctime = ... secs <- get_current_timezone_seconds ctime pdst pcname I don't know Haskell, but is this declaring ctime as CLong, and then passing it instead of a CTime? > Ilias cu Adrian
Bug#1068586: ghc: Broken on arm{el,hf} because of time_t transition
On Sun, Apr 07, 2024 at 05:18:06PM +0300, Ilias Tsitsimpis wrote: > Package: ghc > Version: 9.4.7-3 > Severity: grave > Justification: renders package unusable > > I recently uploaded a new version of GHC to unstable, in order to fix > #1068179. As a result, GHC got rebuilt taking into account the new size > for time_t on arm{el,hf}. This is evident from the build logs, where > we now see: > > > https://buildd.debian.org/status/fetch.php?pkg=ghc=armel=9.4.7-4=1712410679=0 > > checking Haskell type for time_t... Int64 > > whereas previously we had: > > > https://buildd.debian.org/status/fetch.php?pkg=ghc=armel=9.4.7-3=1708366014=0 > > checking Haskell type for time_t... Int32 > > > After this change, a number of Haskell packages have started to FTBFS: > > * > https://buildd.debian.org/status/fetch.php?pkg=haskell-filestore=armel=0.6.5-3%2Bb2=1712457355=0 > * > https://buildd.debian.org/status/fetch.php?pkg=haskell-fold-debounce=armel=0.2.0.11-1%2Bb2=1712466208=0 > * > https://buildd.debian.org/status/fetch.php?pkg=haskell-hourglass=armel=0.2.12-5%2Bb2=1712462130=0 FTR, in haskell-hourglass this is #1001686 which already failed on x32 for this reason. > Looking into this, I see that (at least) the getPOSIXTime method is > broken on arm{el,hf}. >... https://buildd.debian.org/status/fetch.php?pkg=haskell-lambdahack=armhf=0.11.0.0-4%2Bb1=1712562043=0 https://buildd.debian.org/status/fetch.php?pkg=haskell-hledger-lib=armhf=1.30-1%2Bb1=1712566894=0 Exception: user error (localtime_r failed) My reading of the code is that this happens when libraries/time/lib/cbits/HsTime.c returns 0x8000 due to localtime_r() called in this function returning an error. The "localtime_r failed" is from libraries/time/lib/Data/Time/LocalTime/Internal/TimeZone.hs > Ilias cu Adrian
Bug#1068657: pkcs11-provider FTBFS with openssl 3.2.1-3
Source: pkcs11-provider Version: 0.3-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/fetch.php?pkg=pkcs11-provider=ppc64el=0.3-1%2Bb2=1712517987=0 ... FAIL: basic-softhsm === Executing ./tbasic ## Raw Sign check error openssl pkeyutl -sign -inkey "${BASEURI}" -pkeyopt pad-mode:none -in ${TMPPDIR}/64Brandom.bin -out ${TMPPDIR}/raw-sig.bin Public Key operation error 00493C8EFF7F:error:027A:rsa routines:p11prov_sig_operate:data too small for key size:signature.c:894: ## Sign and Verify with provided Hash and RSA openssl dgst -sha256 -binary -out ${TMPPDIR}/sha256.bin ${SEEDFILE} openssl pkeyutl -sign -inkey "${PRIURI}" -in ${TMPPDIR}/sha256.bin -out ${TMPPDIR}/sha256-sig.bin openssl pkeyutl -verify -inkey "${PUBURI}" -pubin -in ${TMPPDIR}/sha256.bin -sigfile ${TMPPDIR}/sha256-sig.bin Signature Verified Successfully ## Sign and Verify with provided Hash and RSA with DigestInfo struct openssl dgst -sha256 -binary -out ${TMPPDIR}/sha256.bin ${SEEDFILE} openssl pkeyutl -sign -inkey "${PRIURI}" -pkeyopt digest:sha256 -in ${TMPPDIR}/sha256.bin -out ${TMPPDIR}/sha256-sig.bin openssl pkeyutl -verify -inkey "${PUBURI}" -pkeyopt digest:sha256 -pubin -in ${TMPPDIR}/sha256.bin -sigfile ${TMPPDIR}/sha256-sig.bin Signature Verified Successfully ## DigestSign and DigestVerify with RSA openssl pkeyutl -sign -inkey "${BASEURI}" -digest sha256 -in ${RAND64FILE} -rawin -out ${TMPPDIR}/sha256-dgstsig.bin openssl pkeyutl -verify -inkey "${BASEURI}" -pubin -digest sha256 -in ${RAND64FILE} -rawin -sigfile ${TMPPDIR}/sha256-dgstsig.bin Signature Verified Successfully openssl pkeyutl -verify -inkey "${PUBURI}" -pubin -digest sha256 -in ${RAND64FILE} -rawin -sigfile ${TMPPDIR}/sha256-dgstsig.bin Signature Verified Successfully RSA basic encrypt and decrypt openssl pkeyutl -encrypt -inkey "${PUBURI}" -pubin -in ${SECRETFILE} -out ${SECRETFILE}.enc openssl pkeyutl -decrypt -inkey "${PRIURI}" -in ${SECRETFILE}.enc -out ${SECRETFILE}.dec ## Test Disallow Public Export openssl pkey -in $PUBURI -pubin -pubout -text ## Test CSR generation from RSA private keys openssl req -new -batch -key "${PRIURI}" -out ${TMPPDIR}/rsa_csr.pem openssl req -in ${TMPPDIR}/rsa_csr.pem -verify -noout Certificate request self-signature verify OK ## Test fetching public keys without PIN in config files openssl pkey -in $PUBURI -pubin -pubout -out ${TMPPDIR}/rsa.pub.nopin.pem openssl pkey -in $ECPUBURI -pubin -pubout -out ${TMPPDIR}/ec.pub.nopin.pem openssl pkey -in $ECXPUBURI -pubin -pubout -out ${TMPPDIR}/ecx.pub.nopin.pem ## Test fetching public keys with a PIN in URI openssl pkey -in $BASEURIWITHPIN -pubin -pubout -out ${TMPPDIR}/rsa.pub.uripin.pem openssl pkey -in $ECBASEURIWITHPIN -pubin -pubout -out ${TMPPDIR}/ec.pub.uripin.pem openssl pkey -in $ECXBASEURIWITHPIN -pubin -pubout -out ${TMPPDIR}/ecx.pub.uripin.pem ## Test prompting without PIN in config files ## Test EVP_PKEY_eq on public RSA key both on token ## Test EVP_PKEY_eq on public EC key both on token ## Test EVP_PKEY_eq on public explicit EC key both on token Failed to load key from URI: pkcs11:type=public;id=%00%07 FAIL basic-softhsm.t (exit status: 1) ... Testsuite summary for pkcs11-provider 0.3 # TOTAL: 34 # PASS: 15 # SKIP: 18 # XFAIL: 0 # FAIL: 1 # XPASS: 0 # ERROR: 0 See tests/test-suite.log Please report to s...@redhat.com make[4]: *** [Makefile:1070: test-suite.log] Error 1
Bug#1068656: pgsql-http accesses the internet during the build
Source: pgsql-http Version: 1.6.0-1 Severity: serious Tags: ftbfs X-Debbugs-Cc: Debian PostgreSQL Maintainers https://buildd.debian.org/status/fetch.php?pkg=pgsql-http=arm64=1.6.0-1=1712600451=0 ... regression.diffs diff -U3 /<>/expected/http.out /<>/results/http.out --- /<>/expected/http.out 2023-08-10 16:17:30.0 + +++ /<>/results/http.out 2024-04-08 18:20:45.564039027 + @@ -9,11 +9,7 @@ -- Status code SELECT status FROM http_get('https://httpbun.org/status/202'); - status - -202 -(1 row) - +ERROR: Could not resolve host: httpbun.org ...
Bug#1068655: lomiri-telephony-service FTBFS with abseil 20230802.1
Source: lomiri-telephony-service Version: 0.5.3-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/fetch.php?pkg=lomiri-telephony-service=amd64=0.5.3-1%2Bb3=1712518065=0 ... /<>/libtelephonyservice/contactwatcher.cpp: In member function ‘void ContactWatcher::updateAlias()’: /<>/libtelephonyservice/contactwatcher.cpp:157:21: error: ‘dgettext’ is not a member of ‘C’; did you mean ‘dgettext’? 157 | setAlias(C::dgettext("telephony-service", "Private Number")); | ^~~~ In file included from /usr/include/x86_64-linux-gnu/c++/13/bits/messages_members.h:36, from /usr/include/c++/13/bits/locale_facets_nonio.h:2064, from /usr/include/c++/13/locale:43, from /usr/include/c++/13/iomanip:45, from /usr/include/absl/strings/internal/str_format/arg.h:23, from /usr/include/absl/strings/str_format.h:78, from /usr/include/absl/crc/crc32c.h:32, from /usr/include/absl/crc/internal/crc_cord_state.h:23, from /usr/include/absl/strings/cord.h:79, from /usr/include/absl/container/internal/hash_function_defaults.h:56, from /usr/include/absl/container/node_hash_set.h:42, from /usr/include/phonenumbers/phonenumberutil.h:33, from /<>/libtelephonyservice/phoneutils.h:27, from /<>/libtelephonyservice/contactwatcher.cpp:25: /usr/include/libintl.h:44:14: note: ‘dgettext’ declared here 44 | extern char *dgettext (const char *__domainname, const char *__msgid) | ^~~~ /<>/libtelephonyservice/contactwatcher.cpp:159:21: error: ‘dgettext’ is not a member of ‘C’; did you mean ‘dgettext’? 159 | setAlias(C::dgettext("telephony-service", "Unknown Number")); | ^~~~ /usr/include/libintl.h:44:14: note: ‘dgettext’ declared here 44 | extern char *dgettext (const char *__domainname, const char *__msgid) | ^~~~ ...
Bug#1068613: lomiri-history-service FTBFS with abseil 20230802.1
Source: lomiri-history-service Version: 0.5-1 Severity: serious Tags: ftbfs Forwarded: https://gitlab.com/ubports/development/core/history-service/-/merge_requests/35 https://buildd.debian.org/status/fetch.php?pkg=lomiri-history-service=amd64=0.5-1%2Bb2=1712518035=0 ... In file included from /usr/include/absl/base/config.h:86, from /usr/include/absl/algorithm/algorithm.h:29, from /usr/include/absl/algorithm/container.h:53, from /usr/include/absl/container/node_hash_set.h:40, from /usr/include/phonenumbers/phonenumberutil.h:33, from /<>/src/phoneutils.cpp:28: /usr/include/absl/base/policy_checks.h:79:2: error: #error "C++ versions less than C++14 are not supported." 79 | #error "C++ versions less than C++14 are not supported." | ^ ...
Bug#1068612: libopenmpi3t64: mca_pmix_pmix3x.so: undefined symbol: pmix_value_load on 32bit
Package: libopenmpi3t64 Version: 4.1.6-8 Severity: serious Tags: ftbfs Control: affects -1 src:hypre src:h5py src:fenics-dolfinx src:dune-uggrid src:dolfinx-mpc src:dolfin src:liggghts https://buildd.debian.org/status/fetch.php?pkg=dune-uggrid=i386=2.9.0-2%2Bb3=1712511034=0 ... orted: symbol lookup error: /usr/lib/i386-linux-gnu/openmpi/lib/openmpi3/mca_pmix_pmix3x.so: undefined symbol: pmix_value_load ...
Bug#1068610: dico: binary-all FTBFS
Source: dico Version: 2.11-4 Severity: serious Tags: ftbfs X-Debbugs-Cc: Helmut Grohne https://buildd.debian.org/status/logs.php?pkg=dico=all ... debian/rules execute_after_dh_installsystemd make[1]: Entering directory '/<>' ln -s dicod.service debian/dicod/`test -e debian/dicod/lib/systemd/system/dicod.service || echo usr/`lib/systemd/system/dictd.service ln: failed to create symbolic link 'debian/dicod/usr/lib/systemd/system/dictd.service': No such file or directory make[1]: *** [debian/rules:52: execute_after_dh_installsystemd] Error 1
Bug#1068483: dpkg-genbuildinfo: Should buildinfo files copy the hash of the source package?
Package: dpkg-dev Version: 1.22.6 Severity: normal X-Debbugs-Cc: reproducible-bui...@lists.alioth.debian.org A thought I already wrote in a recent debian-devel discussion: In theory source package filenames should be eternally and globally unique, but in practice there are cornercases where this assumption might break like for example: - *stable-security does not currently have a copy of the sources in the main archive, one always have to upload the source archive there and this might accidentally be a different orig.tar - dak does not keep an eternal history of everything it ever knew, e.g. RM and later re-NEW of a source version might have a different source .orig.tar or even different sources for a Debian revision - Debian and Ubuntu might have different orig.tar for the same version, if Ubuntu updated a package before Debian did, or with packages were development is completely independent in Debian and Ubuntu (e.g. OpenStack, KDE) The reason for different files might be as trivial as "git archive" not always producing the same output when running in different environments, e.g. the autogenerated tarball for a git tag on Github might have different checksums depending on whether it is downloaded today or next year despite identical contents due to slightly different gzip compression. Should buildinfo files contain the hashes of the source package, to clearly define what sources have been used?
Bug#1060407: gtkwave update for {bookworm,bullseye,buster}-security
On Thu, Apr 04, 2024 at 11:21:21AM +0200, Emilio Pozuelo Monfort wrote: > On 29/03/2024 00:06, Adrian Bunk wrote: >... > > As already mentioned in #1060407, the ghwdump tool (and manpage) was > > dropped in 3.3.110 from the upstream sources, and is now in ghdl-tools. > > For bullseye and buster it is therefore readded. > > > > As mentioned in #1060407 there are different tarballs for GTK 2 and GTK 3. > > Looking closer I realized that this is actually one tarball that > > supports GTK 1+2, and one tarball that supports GTK 2+3. > > I did stay at the GTK 1+2 tarball that was already used before > > for bullseye and buster since there was anyway a different upstream > > tarball required for the +really version that is required to avoid > > creating file conflicts with ghwdump when upgrading to bookworm. > > > > What does the security team consider the best versioning for bullseye? > > In #1060407 I suggested 3.3.104+really3.3.118-0.1, but now I ended up > > preferring 3.3.104+really3.3.118-0+deb11u1 > > I saw this earlier but I couldn't think of a better versioning scheme, > though this looked awkward. Now I have thought of a (possibly) better one, > so I'm stating it here in case we find ourselves in a similar situation in > the future and someone remembers this thread. > > I would have gone with > > 3.3.118-0.1~deb12u1 > 3.3.118+gtk2-0+deb11u1 > 3.3.118+gtk2-0+deb10u1 Rather 3.3.118~gtk2, since 3.3.118+gtk2 > 3.3.118 And as described above, +really is required due to ghwdump: Package: ghdl-tools Replaces: gtkwave (<< 3.3.110~) Breaks: gtkwave (<< 3.3.110~) Since I am readding ghwdump, the version has to be << 3.3.110~ > Cheers, > Emilio cu Adrian
Bug#1060407: gtkwave update for {bookworm,bullseye,buster}-security
On Sun, Mar 31, 2024 at 01:52:40PM +0200, Moritz Mühlenhoff wrote: > Hi Adrian, Hi Moritz, >... > > debdiffs contain only changes to debian/ > > The bookworm/bullseye debdiffs looks good, please upload to security-master, > thanks! both are now uploaded. > Note that both need -sa, but dak needs some special attention when > uploading to security-master. You'll need to wait for the ACCEPTED mail > before you can upload the next one. Done, but I am not sure this was necessary in this case since these are different upstream tarballs gtkwave_3.3.118.orig.tar.gz and gtkwave_3.3.104+really3.3.118.orig.tar.gz (The contents also differs since as mentioned one is the GTK 2+3 upstream tarball and the other one is the GTK 1+2 upstream tarball.) > Cheers, > Moritz cu Adrian
Bug#1067288: pulseaudio: FTBFS on x86: cpu-volume-test fails, segfault in svolume_orc_test
Control: reassign -1 src:pulseaudio 16.1+dfsg1-3 Control: forwarded -1 https://gitlab.freedesktop.org/pulseaudio/pulseaudio/-/issues/3803 On Fri, Mar 22, 2024 at 10:29:23AM +, Simon McVittie wrote: > Control: retitle -1 pulseaudio: FTBFS on x86: cpu-volume-test fails, segfault > in svolume_orc_test > Control: reassign -1 src:orc 1:0.4.38-1 > Control: forwarded -1 https://gitlab.freedesktop.org/gstreamer/orc/-/issues/66 > Control: tags 1067458 + ftbfs sid trixie > Control: merge 1067458 -1 > Control: affects 1067458 + src:pulseaudio > > On Wed, 20 Mar 2024 at 21:48:23 +0100, Lucas Nussbaum wrote: > > > === 47/53 > > > > > > test: cpu-volume-test > > > start time: 06:46:56 > > > duration: 2.82s > > > result: exit status 1 > > > command: > > > UBSAN_OPTIONS=halt_on_error=1:abort_on_error=1:print_summary=1:print_stacktrace=1 > > > > > > LD_LIBRARY_PATH=/<>/obj-x86_64-linux-gnu/src/pulse:/<>/obj-x86_64-linux-gnu/src/pulsecore:/<>/obj-x86_64-linux-gnu/src > > > MALLOC_PERTURB_=255 MAKE_CHECK=1 > > > ASAN_OPTIONS=halt_on_error=1:abort_on_error=1:print_summary=1 > > > /<>/obj-x86_64-linux-gnu/src/tests/cpu-volume-test > > > --- stdout > > > --- > > > Running suite(s): CPU > > > 66%: Checks: 3, Failures: 0, Errors: 1 > > > ../src/tests/cpu-volume-test.c:188:E:svolume:svolume_orc_test:0: (after > > > this point) Received signal 11 (Segmentation fault) > > > == > > This seems to be the same issue as #1067458. > > If a fix isn't obvious, could we perhaps roll back orc to 0.4.34 > (presumably versioned as 1:0.4.38+really0.4.34), or disable its use > in PulseAudio for now? According to the information in the upstream bug, PulseAudio has fixed the test now. > Thanks, > smcv cu Adrian
Bug#1068033: bookworm-pu: package gross/1.0.2-4.1~deb12u1
Package: release.debian.org Severity: normal Tags: bookworm User: release.debian@packages.debian.org Usertags: pu X-Debbugs-Cc: Antonio Radici , t...@security.debian.org * CVE-2023-52159: Stack-based buffer overflow (Closes: #1067115) This CVE is marked no-dsa. Building with the bookworm debhelper adds a preinst due to #1021027. diffstat for gross-1.0.2 gross-1.0.2 changelog| 14 patches/0001-fix-misuse-of-strncat.patch | 95 +++ patches/series |1 3 files changed, 110 insertions(+) diff -Nru gross-1.0.2/debian/changelog gross-1.0.2/debian/changelog --- gross-1.0.2/debian/changelog2014-10-25 11:20:12.0 +0300 +++ gross-1.0.2/debian/changelog2024-03-29 22:52:55.0 +0200 @@ -1,3 +1,17 @@ +gross (1.0.2-4.1~deb12u1) bookworm; urgency=medium + + * Non-maintainer upload. + * Rebuild for bookworm. + + -- Adrian Bunk Fri, 29 Mar 2024 22:52:55 +0200 + +gross (1.0.2-4.1) unstable; urgency=high + + * Non-maintainer upload. + * CVE-2023-52159: Stack-based buffer overflow (Closes: #1067115) + + -- Adrian Bunk Sat, 23 Mar 2024 23:23:34 +0200 + gross (1.0.2-4) unstable; urgency=low * debian/README: fixed a typo (Closes: 670596) diff -Nru gross-1.0.2/debian/patches/0001-fix-misuse-of-strncat.patch gross-1.0.2/debian/patches/0001-fix-misuse-of-strncat.patch --- gross-1.0.2/debian/patches/0001-fix-misuse-of-strncat.patch 1970-01-01 02:00:00.0 +0200 +++ gross-1.0.2/debian/patches/0001-fix-misuse-of-strncat.patch 2024-03-23 23:23:34.0 +0200 @@ -0,0 +1,95 @@ +From ec697f4dd5b057ad5af17468dac7955f3d1c03c6 Mon Sep 17 00:00:00 2001 +From: Dmitry Mikhirev +Date: Wed, 27 Dec 2023 03:42:29 +0400 +Subject: fix misuse of strncat + +--- + src/gross.c | 11 --- + src/worker.c | 21 - + 2 files changed, 20 insertions(+), 12 deletions(-) + +diff --git a/src/gross.c b/src/gross.c +index 6e1a277..f477845 100644 +--- a/src/gross.c b/src/gross.c +@@ -111,7 +111,9 @@ configure_grossd(configlist_t *config) + configlist_t *cp; + const char *updatestr; + struct hostent *host = NULL; +- char buffer[MAXLINELEN] = { '\0' }; ++ char buffer[MAXLINELEN]; ++ char *lineend; ++ size_t len; + params_t *pp; + + cp = config; +@@ -119,11 +121,14 @@ configure_grossd(configlist_t *config) + while (cp) { + pp = cp->params; + *buffer = '\0'; ++ lineend = buffer; ++ len = 0; + while (pp) { +- strncat(buffer, " ; ", MAXLINELEN - 1); +- strncat(buffer, pp->value, MAXLINELEN - 1); ++ len += snprintf(lineend, MAXLINELEN - len - 1, " ; %s", pp->value); ++ lineend = buffer + len; + pp = pp->next; + } ++ buffer[MAXLINELEN - 1] = '\0'; + logstr(GLOG_DEBUG, "config: %s = %s%s", cp->name, cp->value, buffer); + cp = cp->next; + } +diff --git a/src/worker.c b/src/worker.c +index 24f104b..63c0f06 100644 +--- a/src/worker.c b/src/worker.c +@@ -618,7 +618,8 @@ void + querylogwrite(querylog_entry_t *q) + { + char line[MAXLINELEN]; +- char buffer[MAXLINELEN]; ++ size_t len = 0; ++ char *lineend = line; + char *actionstr; + check_match_t *m; + +@@ -655,25 +656,27 @@ querylogwrite(querylog_entry_t *q) + if (NULL == q->recipient) + q->recipient = "N/A"; + +- snprintf(line, MAXLINELEN - 1, "a=%s d=%d w=%d c=%s s=%s r=%s", actionstr, q->delay, q->totalweight, +- q->client_ip, q->sender, q->recipient); ++ len += snprintf(line, MAXLINELEN - 1, "a=%s d=%d w=%d c=%s s=%s r=%s", actionstr, q->delay, q->totalweight, q->client_ip, q->sender, q->recipient); ++ lineend = line +len; + + if (q->helo) { +- snprintf(buffer, MAXLINELEN - 1, " h=%s", q->helo); +- strncat(line, buffer, MAXLINELEN - 1); ++ len += snprintf(lineend, MAXLINELEN - len - 1, " h=%s", q->helo); ++ lineend = line + len; + } + + m = q->match; + while (m) { +- snprintf(buffer, MAXLINELEN - 1, " m=%s", m->name); +- strncat(line, buffer, MAXLINELEN - 1); ++ len += snprintf(lineend, MAXLINELEN - len - 1, " m=%s", m->name); ++ lineend = line + len; + if (m->weight) { +- snprintf(buffer, MAXLINELEN - 1, "%+d", m->weight); +- strncat(line, buffer, MAXLINEL
Bug#1068034: bullseye-pu: package gross/1.0.2-4.1~deb11u1
Package: release.debian.org Severity: normal Tags: bullseye User: release.debian@packages.debian.org Usertags: pu X-Debbugs-Cc: Antonio Radici , t...@security.debian.org * CVE-2023-52159: Stack-based buffer overflow (Closes: #1067115) This CVE is marked no-dsa. diffstat for gross-1.0.2 gross-1.0.2 changelog| 14 patches/0001-fix-misuse-of-strncat.patch | 95 +++ patches/series |1 3 files changed, 110 insertions(+) diff -Nru gross-1.0.2/debian/changelog gross-1.0.2/debian/changelog --- gross-1.0.2/debian/changelog2014-10-25 11:20:12.0 +0300 +++ gross-1.0.2/debian/changelog2024-03-29 23:02:44.0 +0200 @@ -1,3 +1,17 @@ +gross (1.0.2-4.1~deb11u1) bullseye; urgency=medium + + * Non-maintainer upload. + * Rebuild for bullseye. + + -- Adrian Bunk Fri, 29 Mar 2024 23:02:44 +0200 + +gross (1.0.2-4.1) unstable; urgency=high + + * Non-maintainer upload. + * CVE-2023-52159: Stack-based buffer overflow (Closes: #1067115) + + -- Adrian Bunk Sat, 23 Mar 2024 23:23:34 +0200 + gross (1.0.2-4) unstable; urgency=low * debian/README: fixed a typo (Closes: 670596) diff -Nru gross-1.0.2/debian/patches/0001-fix-misuse-of-strncat.patch gross-1.0.2/debian/patches/0001-fix-misuse-of-strncat.patch --- gross-1.0.2/debian/patches/0001-fix-misuse-of-strncat.patch 1970-01-01 02:00:00.0 +0200 +++ gross-1.0.2/debian/patches/0001-fix-misuse-of-strncat.patch 2024-03-23 23:23:34.0 +0200 @@ -0,0 +1,95 @@ +From ec697f4dd5b057ad5af17468dac7955f3d1c03c6 Mon Sep 17 00:00:00 2001 +From: Dmitry Mikhirev +Date: Wed, 27 Dec 2023 03:42:29 +0400 +Subject: fix misuse of strncat + +--- + src/gross.c | 11 --- + src/worker.c | 21 - + 2 files changed, 20 insertions(+), 12 deletions(-) + +diff --git a/src/gross.c b/src/gross.c +index 6e1a277..f477845 100644 +--- a/src/gross.c b/src/gross.c +@@ -111,7 +111,9 @@ configure_grossd(configlist_t *config) + configlist_t *cp; + const char *updatestr; + struct hostent *host = NULL; +- char buffer[MAXLINELEN] = { '\0' }; ++ char buffer[MAXLINELEN]; ++ char *lineend; ++ size_t len; + params_t *pp; + + cp = config; +@@ -119,11 +121,14 @@ configure_grossd(configlist_t *config) + while (cp) { + pp = cp->params; + *buffer = '\0'; ++ lineend = buffer; ++ len = 0; + while (pp) { +- strncat(buffer, " ; ", MAXLINELEN - 1); +- strncat(buffer, pp->value, MAXLINELEN - 1); ++ len += snprintf(lineend, MAXLINELEN - len - 1, " ; %s", pp->value); ++ lineend = buffer + len; + pp = pp->next; + } ++ buffer[MAXLINELEN - 1] = '\0'; + logstr(GLOG_DEBUG, "config: %s = %s%s", cp->name, cp->value, buffer); + cp = cp->next; + } +diff --git a/src/worker.c b/src/worker.c +index 24f104b..63c0f06 100644 +--- a/src/worker.c b/src/worker.c +@@ -618,7 +618,8 @@ void + querylogwrite(querylog_entry_t *q) + { + char line[MAXLINELEN]; +- char buffer[MAXLINELEN]; ++ size_t len = 0; ++ char *lineend = line; + char *actionstr; + check_match_t *m; + +@@ -655,25 +656,27 @@ querylogwrite(querylog_entry_t *q) + if (NULL == q->recipient) + q->recipient = "N/A"; + +- snprintf(line, MAXLINELEN - 1, "a=%s d=%d w=%d c=%s s=%s r=%s", actionstr, q->delay, q->totalweight, +- q->client_ip, q->sender, q->recipient); ++ len += snprintf(line, MAXLINELEN - 1, "a=%s d=%d w=%d c=%s s=%s r=%s", actionstr, q->delay, q->totalweight, q->client_ip, q->sender, q->recipient); ++ lineend = line +len; + + if (q->helo) { +- snprintf(buffer, MAXLINELEN - 1, " h=%s", q->helo); +- strncat(line, buffer, MAXLINELEN - 1); ++ len += snprintf(lineend, MAXLINELEN - len - 1, " h=%s", q->helo); ++ lineend = line + len; + } + + m = q->match; + while (m) { +- snprintf(buffer, MAXLINELEN - 1, " m=%s", m->name); +- strncat(line, buffer, MAXLINELEN - 1); ++ len += snprintf(lineend, MAXLINELEN - len - 1, " m=%s", m->name); ++ lineend = line + len; + if (m->weight) { +- snprintf(buffer, MAXLINELEN - 1, "%+d", m->weight); +- strncat(line, buffer, MAXLINELEN - 1); ++ len += snprintf(lineend, MAXLINELEN
Bug#1067115: gross: diff for NMU version 1.0.2-4.1
On Sun, Mar 24, 2024 at 11:05:54PM +0100, Antonio Radici wrote: > On Sat, Mar 23, 2024 at 11:45:58PM +0200, Adrian Bunk wrote: > > Control: tags 1067115 + patch > > Control: tags 1067115 + pending > > > > Dear maintainer, > > > > I've prepared an NMU for gross (versioned as 1.0.2-4.1) and uploaded > > it to DELAYED/2. Please feel free to tell me if I should cancel it. > > > > Thanks for working on this, no reason to cancel it. >... Thanks, rescheduled for immediate upload. cu Adrian
Bug#1067115: gross: diff for NMU version 1.0.2-4.1
Control: tags 1067115 + patch Control: tags 1067115 + pending Dear maintainer, I've prepared an NMU for gross (versioned as 1.0.2-4.1) and uploaded it to DELAYED/2. Please feel free to tell me if I should cancel it. cu Adrian diffstat for gross-1.0.2 gross-1.0.2 changelog|7 ++ patches/0001-fix-misuse-of-strncat.patch | 95 +++ patches/series |1 3 files changed, 103 insertions(+) diff -Nru gross-1.0.2/debian/changelog gross-1.0.2/debian/changelog --- gross-1.0.2/debian/changelog 2014-10-25 11:20:12.0 +0300 +++ gross-1.0.2/debian/changelog 2024-03-23 23:23:34.0 +0200 @@ -1,3 +1,10 @@ +gross (1.0.2-4.1) unstable; urgency=high + + * Non-maintainer upload. + * CVE-2023-52159: Stack-based buffer overflow (Closes: #1067115) + + -- Adrian Bunk Sat, 23 Mar 2024 23:23:34 +0200 + gross (1.0.2-4) unstable; urgency=low * debian/README: fixed a typo (Closes: 670596) diff -Nru gross-1.0.2/debian/patches/0001-fix-misuse-of-strncat.patch gross-1.0.2/debian/patches/0001-fix-misuse-of-strncat.patch --- gross-1.0.2/debian/patches/0001-fix-misuse-of-strncat.patch 1970-01-01 02:00:00.0 +0200 +++ gross-1.0.2/debian/patches/0001-fix-misuse-of-strncat.patch 2024-03-23 23:23:34.0 +0200 @@ -0,0 +1,95 @@ +From ec697f4dd5b057ad5af17468dac7955f3d1c03c6 Mon Sep 17 00:00:00 2001 +From: Dmitry Mikhirev +Date: Wed, 27 Dec 2023 03:42:29 +0400 +Subject: fix misuse of strncat + +--- + src/gross.c | 11 --- + src/worker.c | 21 - + 2 files changed, 20 insertions(+), 12 deletions(-) + +diff --git a/src/gross.c b/src/gross.c +index 6e1a277..f477845 100644 +--- a/src/gross.c b/src/gross.c +@@ -111,7 +111,9 @@ configure_grossd(configlist_t *config) + configlist_t *cp; + const char *updatestr; + struct hostent *host = NULL; +- char buffer[MAXLINELEN] = { '\0' }; ++ char buffer[MAXLINELEN]; ++ char *lineend; ++ size_t len; + params_t *pp; + + cp = config; +@@ -119,11 +121,14 @@ configure_grossd(configlist_t *config) + while (cp) { + pp = cp->params; + *buffer = '\0'; ++ lineend = buffer; ++ len = 0; + while (pp) { +-strncat(buffer, " ; ", MAXLINELEN - 1); +-strncat(buffer, pp->value, MAXLINELEN - 1); ++len += snprintf(lineend, MAXLINELEN - len - 1, " ; %s", pp->value); ++lineend = buffer + len; + pp = pp->next; + } ++ buffer[MAXLINELEN - 1] = '\0'; + logstr(GLOG_DEBUG, "config: %s = %s%s", cp->name, cp->value, buffer); + cp = cp->next; + } +diff --git a/src/worker.c b/src/worker.c +index 24f104b..63c0f06 100644 +--- a/src/worker.c b/src/worker.c +@@ -618,7 +618,8 @@ void + querylogwrite(querylog_entry_t *q) + { + char line[MAXLINELEN]; +- char buffer[MAXLINELEN]; ++ size_t len = 0; ++ char *lineend = line; + char *actionstr; + check_match_t *m; + +@@ -655,25 +656,27 @@ querylogwrite(querylog_entry_t *q) + if (NULL == q->recipient) + q->recipient = "N/A"; + +- snprintf(line, MAXLINELEN - 1, "a=%s d=%d w=%d c=%s s=%s r=%s", actionstr, q->delay, q->totalweight, +- q->client_ip, q->sender, q->recipient); ++ len += snprintf(line, MAXLINELEN - 1, "a=%s d=%d w=%d c=%s s=%s r=%s", actionstr, q->delay, q->totalweight, q->client_ip, q->sender, q->recipient); ++ lineend = line +len; + + if (q->helo) { +- snprintf(buffer, MAXLINELEN - 1, " h=%s", q->helo); +- strncat(line, buffer, MAXLINELEN - 1); ++ len += snprintf(lineend, MAXLINELEN - len - 1, " h=%s", q->helo); ++ lineend = line + len; + } + + m = q->match; + while (m) { +- snprintf(buffer, MAXLINELEN - 1, " m=%s", m->name); +- strncat(line, buffer, MAXLINELEN - 1); ++ len += snprintf(lineend, MAXLINELEN - len - 1, " m=%s", m->name); ++ lineend = line + len; + if (m->weight) { +- snprintf(buffer, MAXLINELEN - 1, "%+d", m->weight); +- strncat(line, buffer, MAXLINELEN - 1); ++ len += snprintf(lineend, MAXLINELEN - len - 1, "%+d", m->weight); ++ lineend = line + len; + } + m = m->next; + } + ++ line[MAXLINELEN - 1] = '\0'; ++ + logstr(GLOG_INFO, "%s", line); + } + +-- +2.30.2 + diff -Nru gross-1.0.2/debian/patches/series gross-1.0.2/debian/patches/series --- gross-1.0.2/debian/patches/series 2014-10-25 11:07:44.0 +0300 +++ gross-1.0.2/debian/patches/series 2024-03-23 23:23:34.0 +0200 @@ -1,3 +1,4 @@ 0001-fix-manpage-errors.patch 0003-change-default-user.patch 0002-remove-getline.patch +0001-fix-misuse-of-strncat.patch
Bug#1060407: gtkwave: diff for NMU version 3.3.118-0.1
ineno, lineno); /* don't need line number it truly ends at */ @@ -233,7 +241,7 @@ func_nesting_cnt = (!endtag) ? (func_nesting_cnt+1) : (func_nesting_cnt-1); } else - if(!strncmp(pnt, "files", 5)) + if((!strncmp(pnt, "files", 5)) || (!strncmp(pnt, "module_files", 12))) { in_files = (!endtag); } @@ -293,7 +301,10 @@ { const char *fl = (*xmt)[string("fl")].c_str(); const char *nam = (*xmt)[string("name")].c_str(); - + const char *loc = (*xmt)[string("loc")].c_str(); + int loc_offset = 0; + if(!fl || !strlen(fl)) { fl = loc; loc_offset = 1; } + if(fl && nam) { mId.push(nam); @@ -303,6 +314,7 @@ while(isalpha(*s)) { *(d++) = *(s++); } *d = 0; + s += loc_offset; unsigned int lineno = atoi(s); const char *mnam = fId[fl_dup].c_str(); fprintf(fo, "++ udp %s file %s lines %d - %d\n", nam, mnam, lineno, lineno); /* don't need line number it truly ends at */ diff -Nru gtkwave-3.3.116/debian/changelog gtkwave-3.3.118/debian/changelog --- gtkwave-3.3.116/debian/changelog 2023-07-29 06:35:40.0 +0300 +++ gtkwave-3.3.118/debian/changelog 2024-03-23 21:54:30.0 +0200 @@ -1,3 +1,33 @@ +gtkwave (3.3.118-0.1) unstable; urgency=high + + * Non-maintainer upload. + * New upstream release. +- Fixes multiple vulnerabilities: + CVE-2023-32650, CVE-2023-34087, CVE-2023-34436, CVE-2023-35004, + CVE-2023-35057, CVE-2023-35128, CVE-2023-35702, CVE-2023-35703, + CVE-2023-35704, CVE-2023-35955, CVE-2023-35956, CVE-2023-35957, + CVE-2023-35958, CVE-2023-35959, CVE-2023-35960, CVE-2023-35961, + CVE-2023-35962, CVE-2023-35963, CVE-2023-35964, CVE-2023-35969, + CVE-2023-35970, CVE-2023-35989, CVE-2023-35992, CVE-2023-35994, + CVE-2023-35995, CVE-2023-35996, CVE-2023-35997, CVE-2023-36746, + CVE-2023-36747, CVE-2023-36861, CVE-2023-36864, CVE-2023-36915, + CVE-2023-36916, CVE-2023-37282, CVE-2023-37416, CVE-2023-37417, + CVE-2023-37418, CVE-2023-37419, CVE-2023-37420, CVE-2023-37442, + CVE-2023-37443, CVE-2023-37444, CVE-2023-37445, CVE-2023-37446, + CVE-2023-37447, CVE-2023-37573, CVE-2023-37574, CVE-2023-37575, + CVE-2023-37576, CVE-2023-37577, CVE-2023-37578, CVE-2023-37921, + CVE-2023-37922, CVE-2023-37923, CVE-2023-38583, CVE-2023-38618, + CVE-2023-38619, CVE-2023-38620, CVE-2023-38621, CVE-2023-38622, + CVE-2023-38623, CVE-2023-38648, CVE-2023-38649, CVE-2023-38650, + CVE-2023-38651, CVE-2023-38652, CVE-2023-38653, CVE-2023-38657, + CVE-2023-39234, CVE-2023-39235, CVE-2023-39270, CVE-2023-39271, + CVE-2023-39272, CVE-2023-39273, CVE-2023-39274, CVE-2023-39275, + CVE-2023-39316, CVE-2023-39317, CVE-2023-39413, CVE-2023-39414, + CVE-2023-39443, CVE-2023-39444 + (Closes: #1060407) + + -- Adrian Bunk Sat, 23 Mar 2024 21:54:30 +0200 + gtkwave (3.3.116-1) unstable; urgency=medium * New upstream version 3.3.116 diff -Nru gtkwave-3.3.116/LICENSE.TXT gtkwave-3.3.118/LICENSE.TXT --- gtkwave-3.3.116/LICENSE.TXT 2023-07-23 03:37:07.0 +0300 +++ gtkwave-3.3.118/LICENSE.TXT 2023-12-31 23:11:03.0 +0200 @@ -1,6 +1,6 @@ ## -GTKWave 3.3.116 Wave Viewer is Copyright (C) 1999-2023 Tony Bybell. +GTKWave 3.3.118 Wave Viewer is Copyright (C) 1999-2023 Tony Bybell. Portions of GTKWave are Copyright (C) 1999-2023 Udi Finkelstein. Context support is Copyright (C) 2007-2023 Kermin Elliott Fleming. Trace group support is Copyright (C) 2009-2023 Donald Baltus. diff -Nru gtkwave-3.3.116/share/appdata/gtkwave.appdata.xml gtkwave-3.3.118/share/appdata/gtkwave.appdata.xml --- gtkwave-3.3.116/share/appdata/gtkwave.appdata.xml 2023-07-23 03:37:07.0 +0300 +++ gtkwave-3.3.118/share/appdata/gtkwave.appdata.xml 1970-01-01 02:00:00.0 +0200 @@ -1,20 +0,0 @@ - - - -gtkwave.desktop -CC0-1.0 -Electronic waveform viewer for viewing simulation results - - -GTKWave is a fully featured GTK+ based waveform viewer which reads FST, LXT, LXT2, VZT, and GHW files as well as standard Verilog VCD/EVCD files and allows their viewing. - - -The viewer supports both post-mortem viewing of VCD files and interactive viewing of VCD data. Tcl scripting and callback capability allow for remote control by other applications. - - -http://gtkwave.sourceforge.net/ - -http://gtkwave.sourceforge.net/gtkwave-appdata.png - -byb...@rocketmail.com - diff -Nru gtkwave-3.3.116/share/appdata/io.github.gtkwave.GTKWave.metainfo.xml gtkwave-3.3.118/share/appdata/io.github.gtkwave.GTKWave.metainfo.xml --- gtkwave-3.3.116/share/appdata/io.github.gtkwave.GTKWave.metainfo.xml 1970-01-01 02:00:00.0 +0200 +++ gtkwave-3.3.118/share/appdata/io.github.gtkwave.GTKWave.metainfo.xml 2023-12-31 23:11:03.0 +0200 @@ -0,0 +1,143 @@ +
Bug#1066952: Defaulting to -Werror=implicit-function-declaration might not be a good idea
Package: dpkg-dev Version: 1.22.6 Severity: serious X-Debbugs-Cc: Steve Langasek There are at least 3 different ways how -Werror=implicit-function-declaration breaks packages: 1. Code that did emit implicit-function-declaration warnings during compilation before and does FTBFS now 2. Code that does FTBFS now due to other breakage caused by -Werror=implicit-function-declaration, e.g. in autoconf tests 3. Code that does still compile with -Werror=implicit-function-declaration but behaves differently, e.g. due to failing autoconf tests silently disabling features Cases from point 1 were always(?) bugs and it is good that they get fixed. The real-world effect of these bugs can be everywhere from "completely harmless" to "that was always broken". Debian has automation listing implicit-function-declaration warnings in all packages already running for several years: https://qa.debian.org/bls/bytag/W-implicit-declaration.html My main worry is point 3, issues like #1066394. #1066394 was found due to causing a FTBFS in a different package, but the more common case is likely that a program has some feature/plugin disabled and this won't be spotted until much later. "Much later" might be after the release of trixie a user upgrading to bookworm who uses this feature. Or it might result in a program silently using an insecure legacy codepath, e.g. after a test for getentropy() failed. A large part of the packages in unstable might not get recompiled between now and the release of trixie, creating the additional issue that any such problem might occur only after a security update or point release update if this is the next rebuild of the package in trixie.
Bug#1066003: libberkeleydb-perl: FTBFS on arm{el,hf}: Failed 1/35 test programs. 1/1861 subtests failed.
On Wed, Mar 13, 2024 at 10:48:45AM -0100, Graham Inggs wrote: >... > Ubuntu is further along in the time_t transition, so further > investigation is needed as to which package causes the change in buld > behaviour of db5.3. >... It's dpkg, Ubuntu disabled -Werror=implicit-function-declaration cu Adrian
Bug#1060407: Multiple security issues
On Wed, Jan 10, 2024 at 08:36:38PM +0100, Moritz Muehlenhoff wrote: > Source: gtkwave > Version: 3.3.116-1 > Severity: grave > Tags: security > X-Debbugs-Cc: Debian Security Team > > A very thorough security audit of gtkwave unveiled a total of 82 security > issues in gtkwave, all fixed in 3.3.118: > > CVE-2023-32650 CVE-2023-34087 CVE-2023-34436 CVE-2023-35004 > CVE-2023-35057 CVE-2023-35128 CVE-2023-35702 CVE-2023-35703 > CVE-2023-35704 CVE-2023-35955 CVE-2023-35956 CVE-2023-35957 > CVE-2023-35958 CVE-2023-35959 CVE-2023-35960 CVE-2023-35961 > CVE-2023-35962 CVE-2023-35963 CVE-2023-35964 CVE-2023-35969 > CVE-2023-35970 CVE-2023-35989 CVE-2023-35992 CVE-2023-35994 > CVE-2023-35995 CVE-2023-35996 CVE-2023-35997 CVE-2023-36746 > CVE-2023-36747 CVE-2023-36861 CVE-2023-36864 CVE-2023-36915 > CVE-2023-36916 CVE-2023-37282 CVE-2023-37416 CVE-2023-37417 > CVE-2023-37418 CVE-2023-37419 CVE-2023-37420 CVE-2023-37442 > CVE-2023-37443 CVE-2023-37444 CVE-2023-37445 CVE-2023-37446 > CVE-2023-37447 CVE-2023-37573 CVE-2023-37574 CVE-2023-37575 > CVE-2023-37576 CVE-2023-37577 CVE-2023-37578 CVE-2023-37921 > CVE-2023-37922 CVE-2023-37923 CVE-2023-38583 CVE-2023-38618 > CVE-2023-38619 CVE-2023-38620 CVE-2023-38621 CVE-2023-38622 > CVE-2023-38623 CVE-2023-38648 CVE-2023-38649 CVE-2023-38650 > CVE-2023-38651 CVE-2023-38652 CVE-2023-38653 CVE-2023-38657 > CVE-2023-39234 CVE-2023-39235 CVE-2023-39270 CVE-2023-39271 > CVE-2023-39272 CVE-2023-39273 CVE-2023-39274 CVE-2023-39275 > CVE-2023-39316 CVE-2023-39317 CVE-2023-39413 CVE-2023-39414 > CVE-2023-39443 CVE-2023-39444 > > Let's first fix unstable and then we can simple build 3.3.118 > for stable-security and oldstable-security as well. >... I looked at it for LTS, and there are at least two issues to consider: 1. GTK 2 versus GTK 3 Between bullseye and bookworm the UI switched from GTK 2 to GTK 3. The good news is that in buster both versions of 3.3.118 work with a small testcase. The bad news is that upstream has different tarballs for GTK 2 and GTK 3. 2. ghwdump moved to ghdl-tools The ghwdump tool (and manpage) was dropped in 3.3.110 from the upstream sources, and is now in ghdl-tools. My suggestion would be that I do: sid: 3.3.118-0.1 (or 3.3.118-1 if done by a maintainer) bookworm: 3.3.118-0.1~deb12u1 bullseye: 3.3.104+really3.3.118-0.1 (GTK 2 and with ghwdump re-added) buster: 3.3.104+really3.3.118-0.1~deb10u1 (or 3.3.98+really3.3.118-0.1) Any comments? Especially maintainer feedback would be appreciated. > Cheers, > Moritz cu Adrian
Bug#1064967: fontforge DSA (was: Re: Bug#1064967: fontforge: diff for NMU version 1:20230101~dfsg-1.1)
On Wed, Mar 13, 2024 at 08:39:47PM +0100, Salvatore Bonaccorso wrote: > Hi Adrian, Hi Salvatore, > On Fri, Mar 08, 2024 at 02:03:55AM +0200, Adrian Bunk wrote: > > Control: tags 1064967 + patch > > Control: tags 1064967 + pending > > > > Dear maintainer, > > > > I've prepared an NMU for fontforge (versioned as 1:20230101~dfsg-1.1) and > > uploaded it to DELAYED/2. Please feel free to tell me if I should cancel it. > > > > @Security team: > > If wanted, I could afterwards also prepare (pu or DSA) updates for > > bookworm and bullseye. > > We came to the conclusion that it warrants a DSA. Could you prepare > debdiffs for bookworm-security and bulseye-security? the debdiffs are attached. Tested on both releases with the PoCs from [1] and that opening a normal compressed font still works. > Regards, > Salvatore cu Adrian [1] https://www.canva.dev/blog/engineering/fonts-are-still-a-helvetica-of-a-problem/ diffstat for fontforge-20201107~dfsg fontforge-20201107~dfsg changelog | 10 patches/0001-fix-splinefont-shell-command-injection-5367.patch | 181 ++ patches/series |1 3 files changed, 192 insertions(+) diff -Nru fontforge-20201107~dfsg/debian/changelog fontforge-20201107~dfsg/debian/changelog --- fontforge-20201107~dfsg/debian/changelog2021-01-15 17:55:46.0 +0200 +++ fontforge-20201107~dfsg/debian/changelog2024-03-15 22:56:38.0 +0200 @@ -1,3 +1,13 @@ +fontforge (1:20201107~dfsg-4+deb11u1) bullseye-security; urgency=medium + + * Non-maintainer upload. + * CVE-2024-25081: Spline Font command injection via crafted filenames + * CVE-2024-25082: Spline Font command injection via crafted archives +or compressed files + * Closes: #1064967 + + -- Adrian Bunk Fri, 15 Mar 2024 22:56:38 +0200 + fontforge (1:20201107~dfsg-4) unstable; urgency=medium * Rename extended to extendeddbl to avoid FTBFS on Hurd. diff -Nru fontforge-20201107~dfsg/debian/patches/0001-fix-splinefont-shell-command-injection-5367.patch fontforge-20201107~dfsg/debian/patches/0001-fix-splinefont-shell-command-injection-5367.patch --- fontforge-20201107~dfsg/debian/patches/0001-fix-splinefont-shell-command-injection-5367.patch 1970-01-01 02:00:00.0 +0200 +++ fontforge-20201107~dfsg/debian/patches/0001-fix-splinefont-shell-command-injection-5367.patch 2024-03-15 22:48:11.0 +0200 @@ -0,0 +1,181 @@ +From 216eb14b558df344b206bf82e2bdaf03a1f2f429 Mon Sep 17 00:00:00 2001 +From: Peter Kydas +Date: Tue, 6 Feb 2024 20:03:04 +1100 +Subject: fix splinefont shell command injection (#5367) + +--- + fontforge/splinefont.c | 125 + + 1 file changed, 90 insertions(+), 35 deletions(-) + +diff --git a/fontforge/splinefont.c b/fontforge/splinefont.c +index 239fdc035..647daee10 100644 +--- a/fontforge/splinefont.c b/fontforge/splinefont.c +@@ -788,11 +788,14 @@ return( name ); + + char *Unarchive(char *name, char **_archivedir) { + char *dir = getenv("TMPDIR"); +-char *pt, *archivedir, *listfile, *listcommand, *unarchivecmd, *desiredfile; ++char *pt, *archivedir, *listfile, *desiredfile; + char *finalfile; + int i; + int doall=false; + static int cnt=0; ++gchar *command[5]; ++gchar *stdoutresponse = NULL; ++gchar *stderrresponse = NULL; + + *_archivedir = NULL; + +@@ -827,18 +830,30 @@ return( NULL ); + listfile = malloc(strlen(archivedir)+strlen("/" TOC_NAME)+1); + sprintf( listfile, "%s/" TOC_NAME, archivedir ); + +-listcommand = malloc( strlen(archivers[i].unarchive) + 1 + +- strlen( archivers[i].listargs) + 1 + +- strlen( name ) + 3 + +- strlen( listfile ) +4 ); +-sprintf( listcommand, "%s %s %s > %s", archivers[i].unarchive, +- archivers[i].listargs, name, listfile ); +-if ( system(listcommand)!=0 ) { +- free(listcommand); free(listfile); +- ArchiveCleanup(archivedir); +-return( NULL ); +-} +-free(listcommand); ++command[0] = archivers[i].unarchive; ++command[1] = archivers[i].listargs; ++command[2] = name; ++command[3] = NULL; // command args need to be NULL-terminated ++ ++if ( g_spawn_sync( ++ NULL, ++ command, ++ NULL, ++ G_SPAWN_SEARCH_PATH, ++ NULL, ++ NULL, ++ , ++ , ++ NULL, ++ NULL ++ ) == FALSE) { // did not successfully execute ++ ArchiveCleanup(archivedir); ++ return( NULL ); ++} ++// Write out the listfile to be read in later ++FIL
Bug#1066885: libopenmpi3t64 hardcodes libpmix2 dependency
Package: libopenmpi3t64 Version: 4.1.6-6 Severity: serious Package: libopenmpi3t64 Version: 4.1.6-6 Depends: ..., libpmix2t64 (>= 5.0.1), ..., libpmix2 This is due to: Package: libopenmpi3t64 Depends: ${shlibs:Depends}, ${misc:Depends}, libhwloc-plugins, libpmix2 This might have been added due to openmpi (3.1.1.real-4) unstable; urgency=medium * Make libopenmpi3 pull in libpmix2 >= 3.0.0-1 -- Alastair McKinstry Wed, 18 Jul 2018 11:20:16 +0100 but now the manual dependency should just be dropped.
Bug#1065845: rust-psm: Please upgrade to >= 0.1.19 for loong64 support
Source: rust-psm Version: 0.1.16-1 Severity: normal Tags: ftbfs Please upgrade rust-psm to >= 0.1.19 for loong64 support. Thanks in advance
Bug#1064967: fontforge: diff for NMU version 1:20230101~dfsg-1.1
Control: tags 1064967 + patch Control: tags 1064967 + pending Dear maintainer, I've prepared an NMU for fontforge (versioned as 1:20230101~dfsg-1.1) and uploaded it to DELAYED/2. Please feel free to tell me if I should cancel it. @Security team: If wanted, I could afterwards also prepare (pu or DSA) updates for bookworm and bullseye. cu Adrian diff -Nru fontforge-20230101~dfsg/debian/changelog fontforge-20230101~dfsg/debian/changelog --- fontforge-20230101~dfsg/debian/changelog 2023-01-18 20:05:41.0 +0200 +++ fontforge-20230101~dfsg/debian/changelog 2024-03-08 01:15:58.0 +0200 @@ -1,3 +1,13 @@ +fontforge (1:20230101~dfsg-1.1) unstable; urgency=high + + * Non-maintainer upload. + * CVE-2024-25081: Spline Font command injection via crafted filenames + * CVE-2024-25082: Spline Font command injection via crafted archives +or compressed files + * Closes: #1064967 + + -- Adrian Bunk Fri, 08 Mar 2024 01:15:58 +0200 + fontforge (1:20230101~dfsg-1) unstable; urgency=medium * New upstream version 20230101~dfsg diff -Nru fontforge-20230101~dfsg/debian/patches/0001-fix-splinefont-shell-command-injection-5367.patch fontforge-20230101~dfsg/debian/patches/0001-fix-splinefont-shell-command-injection-5367.patch --- fontforge-20230101~dfsg/debian/patches/0001-fix-splinefont-shell-command-injection-5367.patch 1970-01-01 02:00:00.0 +0200 +++ fontforge-20230101~dfsg/debian/patches/0001-fix-splinefont-shell-command-injection-5367.patch 2024-03-07 23:25:36.0 +0200 @@ -0,0 +1,181 @@ +From 216eb14b558df344b206bf82e2bdaf03a1f2f429 Mon Sep 17 00:00:00 2001 +From: Peter Kydas +Date: Tue, 6 Feb 2024 20:03:04 +1100 +Subject: fix splinefont shell command injection (#5367) + +--- + fontforge/splinefont.c | 125 + + 1 file changed, 90 insertions(+), 35 deletions(-) + +diff --git a/fontforge/splinefont.c b/fontforge/splinefont.c +index 239fdc035..647daee10 100644 +--- a/fontforge/splinefont.c b/fontforge/splinefont.c +@@ -788,11 +788,14 @@ return( name ); + + char *Unarchive(char *name, char **_archivedir) { + char *dir = getenv("TMPDIR"); +-char *pt, *archivedir, *listfile, *listcommand, *unarchivecmd, *desiredfile; ++char *pt, *archivedir, *listfile, *desiredfile; + char *finalfile; + int i; + int doall=false; + static int cnt=0; ++gchar *command[5]; ++gchar *stdoutresponse = NULL; ++gchar *stderrresponse = NULL; + + *_archivedir = NULL; + +@@ -827,18 +830,30 @@ return( NULL ); + listfile = malloc(strlen(archivedir)+strlen("/" TOC_NAME)+1); + sprintf( listfile, "%s/" TOC_NAME, archivedir ); + +-listcommand = malloc( strlen(archivers[i].unarchive) + 1 + +- strlen( archivers[i].listargs) + 1 + +- strlen( name ) + 3 + +- strlen( listfile ) +4 ); +-sprintf( listcommand, "%s %s %s > %s", archivers[i].unarchive, +- archivers[i].listargs, name, listfile ); +-if ( system(listcommand)!=0 ) { +- free(listcommand); free(listfile); +- ArchiveCleanup(archivedir); +-return( NULL ); +-} +-free(listcommand); ++command[0] = archivers[i].unarchive; ++command[1] = archivers[i].listargs; ++command[2] = name; ++command[3] = NULL; // command args need to be NULL-terminated ++ ++if ( g_spawn_sync( ++ NULL, ++ command, ++ NULL, ++ G_SPAWN_SEARCH_PATH, ++ NULL, ++ NULL, ++ , ++ , ++ NULL, ++ NULL ++ ) == FALSE) { // did not successfully execute ++ ArchiveCleanup(archivedir); ++ return( NULL ); ++} ++// Write out the listfile to be read in later ++FILE *fp = fopen(listfile, "wb"); ++fwrite(stdoutresponse, strlen(stdoutresponse), 1, fp); ++fclose(fp); + + desiredfile = ArchiveParseTOC(listfile, archivers[i].ars, ); + free(listfile); +@@ -847,22 +862,28 @@ return( NULL ); + return( NULL ); + } + +-/* I tried sending everything to stdout, but that doesn't work if the */ +-/* output is a directory file (ufo, sfdir) */ +-unarchivecmd = malloc( strlen(archivers[i].unarchive) + 1 + +- strlen( archivers[i].listargs) + 1 + +- strlen( name ) + 1 + +- strlen( desiredfile ) + 3 + +- strlen( archivedir ) + 30 ); +-sprintf( unarchivecmd, "( cd %s ; %s %s %s %s ) > /dev/null", archivedir, +- archivers[i].unarchive, +- archivers[i].extractargs, name, doall ? "" : desiredfile ); +-if ( system(unarchivecmd)!=0 ) { +- free(unarchivecmd); free(desiredfile); +- ArchiveCleanup(archivedir); +-return( NULL ); ++command[0] = archivers[i].unarchive; ++command[1] = archivers[i].extractargs; ++command[2] = name; ++command[3] = doall ? "" : desiredfile; ++com
Bug#1065548: octave-statistics: binary-any FTBFS
Source: octave-statistics Version: 1.6.4-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=octave-statistics=1.6.4-1 ... debian/rules execute_after_dh_installdeb make[1]: Entering directory '/<>' # Use local JavaScript and CSS files debian/local-url sed: can't read debian/octave-statistics-common/usr/share/doc/octave-statistics-common/docs/*.html: No such file or directory # Remove empty directory rmdir debian/octave-statistics-common/usr/share/octave/packages/statistics-*/doc/ rmdir: failed to remove 'debian/octave-statistics-common/usr/share/octave/packages/statistics-*/doc/': No such file or directory make[1]: *** [debian/rules:15: execute_after_dh_installdeb] Error 1
Bug#1065547: gst-python1.0 FTBFS: TypeError: function takes at most 0 arguments
Source: gst-python1.0 Version: 1.23.90-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=gst-python1.0=1.23.90-1 https://buildd.debian.org/status/logs.php?pkg=gst-python1.0=1.24.0-1 ... 3/3 = test: Test fundamentals start time: 12:22:01 duration: 2.03s result: exit status 1 command: ASAN_OPTIONS=halt_on_error=1:abort_on_error=1:print_summary=1 GST_OVERRIDE_BUILD_PATH=/<>/build-3.12/testsuite/../gi/overrides UBSAN_OPTIONS=halt_on_error=1:abort_on_error=1:print_summary=1:print_stacktrace=1 MALLOC_PERTURB_=73 GST_PLUGIN_LOADING_WHITELIST=gstreamer:gst-plugins-base:gst-python@/<>/build-3.12 GST_REGISTRY='/<>/build-3.12/testsuite/Test fundamentals.registry' GST_PLUGIN_PATH_1_0=/<>/build-3.12:/usr/lib/x86_64-linux-gnu/gstreamer-1.0:/usr/lib/x86_64-linux-gnu/gstreamer-1.0:/<>/build-3.12/plugin:/<>/testsuite GST_OVERRIDE_SRC_PATH=/<>/testsuite/../gi/overrides /usr/bin/python3.12 /<>/build-3.12/../testsuite/runtests.py test_types.py --- stderr --- .EE. == ERROR: testConstructor (test_types.TestBitmask.testConstructor) -- Traceback (most recent call last): File "/<>/testsuite/test_types.py", line 387, in testConstructor r = Gst.Bitmask(1 << 5) ^^^ TypeError: function takes at most 0 arguments (1 given) == ERROR: testGetValue (test_types.TestBitmask.testGetValue) -- Traceback (most recent call last): File "/<>/testsuite/test_types.py", line 393, in testGetValue self.assertEqual(Gst.Structure('test,test=(bitmask)0x20')['test'], 1 << 5) File "/<>/testsuite/../gi/overrides/Gst.py", line 330, in __getitem__ return self.get_value(key) ^^^ TypeError: function takes at most 0 arguments (1 given) == ERROR: testStr (test_types.TestBitmask.testStr) -- Traceback (most recent call last): File "/<>/testsuite/test_types.py", line 398, in testStr r = Gst.Bitmask(1 << 5) ^^^ TypeError: function takes at most 0 arguments (1 given) ... FAILED (errors=30) == Summary of Failures: 3/3 Test fundamentals FAIL2.03s exit status 1 Ok: 2 Expected Fail: 0 Fail: 1 Unexpected Pass:0 Skipped:0 Timeout:0 dh_auto_test: error: cd build-3.12 && DEB_PYTHON_INSTALL_LAYOUT=deb LC_ALL=C.UTF-8 MESON_TESTTHREADS=6 meson test returned exit code 1 make[1]: *** [debian/rules:28: override_dh_auto_test] Error 25
Bug#1065510: libnode108t64 is broken on !amd64
Package: libnode108t64 Version: 18.19.1+dfsg-3.1 Severity: serious Tags: ftbfs X-Debbugs-Cc: Benjamin Drung , Steve Langasek Control: affects -1 src:thunderbird https://buildd.debian.org/status/logs.php?pkg=thunderbird=1%3A115.8.1-1 ... 0:21.16 checking for nodejs... /usr/bin/node: error while loading shared libraries: libnode.so.108: cannot open shared object file: No such file or directory ... This is due to: $ cat debian/libnode108t64.install usr/lib/libnode.so.* usr/lib/x86_64-linux-gnu/ $
Bug#1065501: qgis FTBFS: FAILED: src/crssync/CMakeFiles/synccrsdb
Source: qgis Version: 3.34.4+dfsg-3 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=qgis=3.34.4%2Bdfsg-3 ... FAILED: src/crssync/CMakeFiles/synccrsdb /<>/debian/build/src/crssync/CMakeFiles/synccrsdb cd /<>/debian/build/src/crssync && /<>/debian/build/output/bin/crssync Could not execute: INSERT INTO tbl_srs(srs_id, description,projection_acronym,ellipsoid_acronym,parameters,srid,auth_name,auth_id,is_geo,deprecated,srs_type) VALUES (63561, 'MSL UK & Ireland VORF08 depth','','','+vunits=m +no_defs',520003561,'EPSG','10150',0,0,'Vertical') [UNIQUE constraint failed: tbl_srs.srs_id/UNIQUE constraint failed: tbl_srs.srs_id] Could not execute: INSERT INTO tbl_srs(srs_id, description,projection_acronym,ellipsoid_acronym,parameters,srid,auth_name,auth_id,is_geo,deprecated,srs_type) VALUES (63562, 'CD UK & Ireland VORF08 depth','','','+vunits=m +no_defs',520003562,'EPSG','10151',0,0,'Vertical') [UNIQUE constraint failed: tbl_srs.srs_id/UNIQUE constraint failed: tbl_srs.srs_id] Could not execute: INSERT INTO tbl_srs(srs_id, description,projection_acronym,ellipsoid_acronym,parameters,srid,auth_name,auth_id,is_geo,deprecated,srs_type) VALUES (63563, 'ETRS89 + MSL UK & Ireland VORF08 depth','longlat','longlat','+proj=longlat +ellps=GRS80 +towgs84=0,0,0,0,0,0,0 +vunits=m +no_defs',520003563,'EPSG','10156',0,0,'Compound') [UNIQUE constraint failed: tbl_srs.srs_id/UNIQUE constraint failed: tbl_srs.srs_id] Could not execute: INSERT INTO tbl_srs(srs_id, description,projection_acronym,ellipsoid_acronym,parameters,srid,auth_name,auth_id,is_geo,deprecated,srs_type) VALUES (63564, 'ETRS89 + CD UK & Ireland VORF08 depth','longlat','longlat','+proj=longlat +ellps=GRS80 +towgs84=0,0,0,0,0,0,0 +vunits=m +no_defs',520003564,'EPSG','10157',0,0,'Compound') [UNIQUE constraint failed: tbl_srs.srs_id/UNIQUE constraint failed: tbl_srs.srs_id] Could not execute: INSERT INTO tbl_srs(srs_id, description,projection_acronym,ellipsoid_acronym,parameters,srid,auth_name,auth_id,is_geo,deprecated,srs_type) VALUES (63565, 'S34J-IRF','longlat','longlat','+proj=longlat +ellps=intl +no_defs',520003565,'EPSG','10158',1,0,'Geographic2d') [UNIQUE constraint failed: tbl_srs.srs_id/UNIQUE constraint failed: tbl_srs.srs_id] Could not execute: INSERT INTO tbl_srs(srs_id, description,projection_acronym,ellipsoid_acronym,parameters,srid,auth_name,auth_id,is_geo,deprecated,srs_type) VALUES (63566, 'S34J reconstruction east-orientated','tmerc','tmerc','+proj=tmerc +lat_0=0 +lon_0=10.37 +k=1 +x_0=-210327 +y_0=-6034310 +ellps=intl +units=m +no_defs',520003566,'EPSG','10160',0,0,'Projected') [UNIQUE constraint failed: tbl_srs.srs_id/UNIQUE constraint failed: tbl_srs.srs_id] Could not execute: INSERT INTO tbl_srs(srs_id, description,projection_acronym,ellipsoid_acronym,parameters,srid,auth_name,auth_id,is_geo,deprecated,srs_type) VALUES (63567, 'JGD2011 / Japan Plane Rectangular CS I + JGD2011 (vertical) height','tmerc','tmerc','+proj=tmerc +lat_0=33 +lon_0=129.5 +k=0. +x_0=0 +y_0=0 +ellps=GRS80 +towgs84=0,0,0,0,0,0,0 +units=m +vunits=m +no_defs',520003567,'EPSG','10162',0,0,'Compound') [UNIQUE constraint failed: tbl_srs.srs_id/UNIQUE constraint failed: tbl_srs.srs_id] Could not execute: INSERT INTO tbl_srs(srs_id, description,projection_acronym,ellipsoid_acronym,parameters,srid,auth_name,auth_id,is_geo,deprecated,srs_type) VALUES (63568, 'JGD2011 / Japan Plane Rectangular CS II + JGD2011 (vertical) height','tmerc','tmerc','+proj=tmerc +lat_0=33 +lon_0=131 +k=0. +x_0=0 +y_0=0 +ellps=GRS80 +towgs84=0,0,0,0,0,0,0 +units=m +vunits=m +no_defs',520003568,'EPSG','10163',0,0,'Compound') [UNIQUE constraint failed: tbl_srs.srs_id/UNIQUE constraint failed: tbl_srs.srs_id] Could not execute: INSERT INTO tbl_srs(srs_id, description,projection_acronym,ellipsoid_acronym,parameters,srid,auth_name,auth_id,is_geo,deprecated,srs_type) VALUES (63569, 'JGD2011 / Japan Plane Rectangular CS III + JGD2011 (vertical) height','tmerc','tmerc','+proj=tmerc +lat_0=36 +lon_0=132.1667 +k=0. +x_0=0 +y_0=0 +ellps=GRS80 +towgs84=0,0,0,0,0,0,0 +units=m +vunits=m +no_defs',520003569,'EPSG','10164',0,0,'Compound') [UNIQUE constraint failed: tbl_srs.srs_id/UNIQUE constraint failed: tbl_srs.srs_id] ...