Bug#1072389: patches to make cruft-ng work without locate
* Alexandre Detiste [2024-06-03 22:01]: Le lun. 3 juin 2024 à 21:32, Jochen Sprickerhof a écrit : >The scripts in explain/ ought to be run inside the chroot. Good point. You could actually use unshare to make it work without root but I would also prefer option 2. What do you think of a slow adoption as in explain.cc set's the DPKG_ROOT variable and all explain scripts get a test -z $DPKG_ROOT || exit 0 at the top. Then we can fix them individually as far as it makes sense. Let's do that, that's the simplest. OK, I actually opted for CRUFT_ROOT to stay out of the DPKG namespace. MR is here: https://salsa.debian.org/detiste-guest/cruft-ng/-/merge_requests/1 Can you have a look before I modify more scripts? I gave you write access. Thanks, I pushed a small fixup commit. This could be team-managed but I don't know inside which team it would fit. Maybe QA ? Maybe here: https://packages.debian.org/unstable/forensics-all Maybe just move it to https://salsa.debian.org/debian I use it nowadays to guess what messy people did before me on some filesystems, they were merely lazy, not evil, they did not tried to hide their tweaks at all; I don't know if that count as forensics. Yeah, same here. Btw. what do you think of dropping explain/python3-pip? I think cruft-ng should rather report all non package files and it is easy enough for the user to filter out /usr/local if they want. signature.asc Description: PGP signature
Bug#1072389: patches to make cruft-ng work without locate
Hi Alexandre, * Alexandre Detiste [2024-06-03 10:04]: The scripts in explain/ ought to be run inside the chroot. The systemd script for example was already adapted to work without a running init. This could be done with chroot() and a bind mount of /usr/libexec/cruft or alternatively modifying every script to support DPKG_ROOT. I think option 1 will require root while option 2 will work in the non-root mode too. I slightly prerer option 2 which allows more case-by-case handling. Good point. You could actually use unshare to make it work without root but I would also prefer option 2. What do you think of a slow adoption as in explain.cc set's the DPKG_ROOT variable and all explain scripts get a test -z $DPKG_ROOT || exit 0 at the top. Then we can fix them individually as far as it makes sense. I also had a quick look into them, for those just running find and echo it should be ease to adopt. For those running dpkg-query or update-alternatives and alike there is a --root option we could use. There are also some the only make sense on a running system like WSL2 where I would just keep the exit 0 at the top. You can fork this on Salsa which is now the main repository. Right, do you prefer a merge request there? Cheers Jochen signature.asc Description: PGP signature
Bug#1072389: patches to make cruft-ng work without locate
* Alexandre Detiste [2024-06-02 12:54]:
I'm impressed ! This will get merged.
\o/
I have also implemented a --root option to check chroot, see the
attached patch.
I guess you might be interested into providing
tiny improvement for the "rules/" too
depending on your taste of packages installed on your systems.
(or just the raw cruft report and I can figure out myself
which package own which file)
Honestly I did not look into the rules yet but here is my current cruft
run with some comments:
cruft report: So 02 Jun 2024 20:38:06 CEST
missing: dpkg
unexplained: /
/etc/Muttrc.d/abook.rc
abook.postinst
/etc/X11/default-display-manager
xdm.postinst
/etc/ca-certificates.conf.dpkg-old
/etc/udev/rules.d/72-seat-backlight-pci-_00_02_0.rules
/usr/lib/modules/6.8.12-amd64/modules.weakdep
/usr/lib/x86_64-linux-gnu/libmpi_usempi_ignore_tkr-gfortranso.40
(Bug: #1070985)
/usr/share/fonts/X11/Type1/encodings.dir
/usr/share/fonts/X11/Type1/fonts.alias
/usr/share/fonts/X11/Type1/fonts.dir
/usr/share/fonts/X11/Type1/fonts.scale
/usr/share/info/dir.old
/var/lib/alsa/card0.conf.d
/var/lib/alsa/card0.conf.d/dmics-nhlt.json
/var/lib/systemd/deb-systemd-helper-masked/systemd-rfkill.socket
tlp.postinst
/var/spool/apt-listbugs/lastprefclean
end.
Cheers Jochen
From dd0e111a54525cc7fbfbbc6adeca49cfda8a Mon Sep 17 00:00:00 2001
From: Jochen Sprickerhof
Date: Sun, 2 Jun 2024 20:34:11 +0200
Subject: [PATCH] Support --root to check chroots
Only implemented for --nolocate.
---
cpigs.cc | 6 +++---
cruft.cc | 31 +--
dpkg.h | 4 ++--
dpkg_lib.cc| 8 +---
locate.h | 2 +-
mlocate.cc | 2 +-
plocate.cc | 2 +-
test_locate.cc | 2 +-
8 files changed, 35 insertions(+), 22 deletions(-)
diff --git a/cpigs.cc b/cpigs.cc
index ecd1536..fd6ea6f 100644
--- a/cpigs.cc
+++ b/cpigs.cc
@@ -160,15 +160,15 @@ int main(int argc, char *argv[])
}
vector fs;
- read_locate(fs, "/usr/share/cruft/ignore");
+ read_locate(fs, "/usr/share/cruft/ignore", "/");
elapsed("plocate");
if (csv) cout << "path;package;type;cruft;size" << endl;
vector packages;
vector dpkg;
- dpkg_start();
- read_dpkg(packages, dpkg, static_);
+ dpkg_start("/");
+ read_dpkg(packages, dpkg, static_, "/");
dpkg_end();
elapsed("dpkg");
diff --git a/cruft.cc b/cruft.cc
index 9eb5f74..995cd69 100644
--- a/cruft.cc
+++ b/cruft.cc
@@ -110,7 +110,7 @@ static void one_file(const string& path)
}
// is it a static file ?
- dpkg_start();
+ dpkg_start("/");
if (query(path.c_str())) {
dpkg_end();
exit(0);
@@ -184,6 +184,7 @@ static const char* const default_filter_dir = "/etc/cruft/filters/";
static const char* const default_ignore_file = "/etc/cruft/ignore";
static const char* const default_ruleset_file = "/usr/share/cruft/ruleset";
static const char* const default_bugs_file = "/usr/share/cruft/bugs";
+static const char* const default_root_dir = "/";
static void print_help_message()
{
@@ -199,13 +200,14 @@ static void print_help_message()
cout << "-I --ignore path for ignore file (default: " << default_ignore_file << ")\n";
cout << "-R --ruleset path for ruleset file (default: " << default_ruleset_file << ")\n";
cout << "-B --bugspath for known bugs file (default: " << default_bugs_file << ")\n";
+ cout << "-r --rootroot directory (default: " << default_root_dir << ")\n";
cout << '\n';
cout << "-h --helpthis help message\n";
}
-int read_nolocate(vector& fs, const string& ignore_path)
+int read_nolocate(vector& fs, const string& ignore_path, const string& root_dir)
{
bool debug=getenv("DEBUG") != nullptr;
@@ -220,7 +222,7 @@ int read_nolocate(vector& fs, const string& ignore_path)
for (auto entry =
filesystem::recursive_directory_iterator{
- "/",
+ root_dir,
filesystem::directory_options::skip_permission_denied};
entry != filesystem::recursive_directory_iterator(); entry++)
{
@@ -257,7 +259,7 @@ int read_nolocate(vector& fs, const string& ignore_path)
if (ignored) continue;
if (!pyc_has_py(string{filename}, debug))
- fs.emplace_back(filename);
+ fs.emplace_back(filename.substr(root_dir.length()-1));
}
sort(fs.begin(), fs.end());
@@ -271,7 +273,8 @@ static void cruft(const string& ignore_file,
Bug#1072389: patches to make cruft-ng work without locate
Source: cruft-ng
Version: 0.9.62
Severity: wishlist
Tags: patch
Hi Alexandre,
I would like to use cruft-ng on systems without having a locate
installed as it is fast enough without it on my SSD. Please find two
patches attached to implement this.
Thanks for maintaining cruft-ng!
Cheers Jochen
-- System Information:
Debian Release: trixie/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 6.8.11-amd64 (SMP w/8 CPU threads; PREEMPT)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
From d79bac0c57cab984fc2708dd7596b387bfd4d5ec Mon Sep 17 00:00:00 2001
From: Jochen Sprickerhof
Date: Sun, 2 Jun 2024 11:59:28 +0200
Subject: [PATCH 1/2] Move read_ignores to own file
Allows using it in other functions.
---
Makefile| 5 +++--
plocate.cc | 18 +-
read_ignores.cc | 23 +++
read_ignores.h | 6 ++
4 files changed, 33 insertions(+), 19 deletions(-)
create mode 100644 read_ignores.cc
create mode 100644 read_ignores.h
diff --git a/Makefile b/Makefile
index d9fe79e..5eb73be 100644
--- a/Makefile
+++ b/Makefile
@@ -7,7 +7,7 @@ CXXFLAGS ?= -O2 -fstack-protector-strong -Wformat
-Werror=format-security -Wl,-z
CXXFLAGS += -Wall -Wextra
override CXXFLAGS += $(LIBDPKG_CFLAGS)
#CXXFLAGS += -std=c++17 # clang++
-SHARED_OBJS = explain.o filters.o shellexp.o usr_merge.o python.o owner.o
+SHARED_OBJS = explain.o filters.o shellexp.o usr_merge.o python.o owner.o
read_ignores.o
CRUFT_OBJS = cruft.o dpkg_exclude.o bugs.o
sid: cruft ruleset cpigs
@@ -19,8 +19,9 @@ cpigs.o: cpigs.cc owner.h
owner.o: owner.cc owner.h
explain.o: explain.cc owner.h
filters.o: filters.cc owner.h
-plocate.o: plocate.cc locate.h
+plocate.o: plocate.cc locate.h read_ignores.h
mlocate.o: mlocate.cc locate.h
+read_ignores.o: read_ignores.cc read_ignores.h
cruft.o: cruft.cc explain.h filters.h dpkg.h python.h
dpkg_lib.o: dpkg_lib.cc dpkg.h /usr/include/dpkg/dpkg.h
diff --git a/plocate.cc b/plocate.cc
index 20cf762..9af52ce 100644
--- a/plocate.cc
+++ b/plocate.cc
@@ -9,23 +9,7 @@
#include "locate.h"
#include "python.h"
-
-static void read_ignores(vector& ignores, const string& ignore_path)
-{
- ifstream ignore_file(ignore_path);
- if (!ignore_file.is_open())
- ignore_file.open("/usr/share/cruft/ignore");
-
- for (string ignore_line; getline(ignore_file,ignore_line);)
- {
- if (ignore_line.empty()) continue;
- if (ignore_line.front() == '/') {
- if (ignore_line.back() != '/')
- ignore_line += "/";
- ignores.emplace_back(std::move(ignore_line));
- }
- }
-}
+#include "read_ignores.h"
int read_locate(vector& fs, const string& ignore_path)
{
diff --git a/read_ignores.cc b/read_ignores.cc
new file mode 100644
index 000..d3cd1e5
--- /dev/null
+++ b/read_ignores.cc
@@ -0,0 +1,23 @@
+// Copyright © 2015 Alexandre Detiste
+// SPDX-License-Identifier: GPL-2.0-or-later
+
+#include
+
+#include "read_ignores.h"
+
+void read_ignores(vector& ignores, const string& ignore_path)
+{
+ ifstream ignore_file(ignore_path);
+ if (!ignore_file.is_open())
+ ignore_file.open("/usr/share/cruft/ignore");
+
+ for (string ignore_line; getline(ignore_file,ignore_line);)
+ {
+ if (ignore_line.empty()) continue;
+ if (ignore_line.front() == '/') {
+ if (ignore_line.back() != '/')
+ ignore_line += "/";
+ ignores.emplace_back(std::move(ignore_line));
+ }
+ }
+}
diff --git a/read_ignores.h b/read_ignores.h
new file mode 100644
index 000..cb6c68b
--- /dev/null
+++ b/read_ignores.h
@@ -0,0 +1,6 @@
+#include
+#include
+
+using namespace std;
+
+void read_ignores(vector& ignores, const string& ignore_path);
--
2.45.1
>From 79e76c76202a8183d027d64b931da34c4445750f Mon Sep 17 00:00:00 2001
From: Jochen Sprickerhof
Date: Sun, 2 Jun 2024 12:00:53 +0200
Subject: [PATCH 2/2] Support running without a locate
Also move p/mlocate to Recommends.
---
Makefile | 2 +-
cruft.cc | 92 +-
debian/control | 1 +
3 files changed, 86 insertions(+), 9 deletions(-)
diff --git a/Makefile b/Makefile
index 5eb73be..5b81236 100644
--- a/Makefile
+++ b/Makefile
@@ -23,7 +23,7 @@ plocate.o: plocate.cc locate.h read_ignores.h
mlocate.o: mlocate.cc locate.h
read_ignores.o: read_ignores.cc read_ignores.h
-cruft.o: cruft.cc explain.h filters.h dpkg.h python.h
+cruft.o: cruft.cc explain.h filters.h dpkg.h python.h read_ignores.h
dpkg_lib.o: dpkg_
Bug#1072222: log viewer does not show some failed test in red
Package: debci Severity: minor Hi, for this log: https://ci.debian.net/packages/s/sbuild/testing/riscv64/47087233/#S6 test build-procenv and test unshare but only the unshare test is shown in red whereas the build-procenv is blue (indicating a successful test). Could you color the build-procenv in red as well? (I asked about this in #debci and Antonio Terceiro proposed to fill a bug.) Thanks! Jochen
Bug#1072151: src:golang-github-containerd-cgroups tries to access /sys/kernel/mm/hugepages in tests
Source: golang-github-containerd-cgroups Version: 1.0.4-1 Severity: normal Hi, src:golang-github-containerd-cgroups tries to access /sys/kernel/mm/hugepages which is not guaranteed to be there in containers: https://systemd.io/CONTAINER_INTERFACE/ This is for example the case with sbuild in unshare mode (starting with 0.85.9) due to #1071234. I would propose to either mock the path or disable the test. Cheers Jochen
Bug#1072147: test fail in sbuild+unshare
Source: golang-github-containers-buildah Version: 1.33.7+ds1-1 Severity: normal Hi, golang-github-containers-buildah is affected by #1070003 in sbuild+unshare which is not really fixable: https://buildd.debian.org/status/logs.php?pkg=golang-github-containers-buildah=1.35.3%2Bds1-1=all Can you please fix or disable the test as the buildd started using the unshare backend? Cheers Jochen
Bug#1070014: libwibble: FTBFS on arm{64,el}: (7/36) Fs: ../wibble/sys/fs.test.h: 72: assertion `i.ischr()' failed;
Hi, * Sebastian Ramacher [2024-04-28 17:11]: https://buildd.debian.org/status/fetch.php?pkg=libwibble=arm64=1.1-3%2Bb1=1714230781=0 make[5]: Entering directory '/<>/debian/build' cd /<>/debian/build/wibble && sh -c "LD_LIBRARY_PATH=/<>/debian/build/wibble /<>/debian/build/wibble/wibble-test" (1/36) Regexp: .. 6/6 ok (2/36) Process: .. 2/2 ok (3/36) Range: ... 11/11 ok (4/36) Buffer: . 5/5 ok (5/36) CommandlineEngine: .. 10/10 ok (6/36) Consumer: ... 3/3 ok (7/36) Fs: ../wibble/sys/fs.test.h: 72: assertion `i.ischr()' failed; --> FAILED: (1/11) directoryIsdir (caught signal 6) (7/36) Fs: . 10/11 ok This is due to #1070003 in sbuild+unshare which is not really fixable. As the buildd now use the unshare backend I would propose to disable the test in libwibble. Cheers Jochen signature.asc Description: PGP signature
Bug#1072146: libexplain: kill(pid = 42 "sh", sig = SIGTERM) failed, Operation not permitted (EPERM)
Source: libexplain Version: 1.4.D001-13 Severity: normal Tags: patch Hi, libexplain fails to build in sbuild+unshare now used on some of the buildd: PATH=`pwd`/bin:$PATH /bin/sh test/04/t0462a.sh 1c1 < kill(pid = 42, sig = SIGTERM) failed, Operation not permitted (EPERM) --- > kill(pid = 42 "sh", sig = SIGTERM) failed, Operation not permitted (EPERM) FAILED test of kill EPERM make[2]: *** [Makefile:42004: t0462a] Error 1 I assume this is due to the test is skipped in the schroot backend. Tagging patch as it is easy to fix from the diff above. Cheers Jochen
Bug#1072145: docker.io: Failing test Can't find mount point of /
Source: docker.io Version: 20.10.24+dfsg1-1 Severity: normal Tags: patch Hi, The docker.io package carries a patch to disable a test in pbuilder: https://sources.debian.org/src/docker.io/20.10.25%2Bdfsg1-3/debian/patches/test--skip-daemon-oci-linux-pbuilder-tests.patch/ Please skip that test unconditionally as it also fails in other environments like sbuild in unshare mode which is now used on the buildd. Cheers Jochen
Bug#1071939: taskwarrior: Naming conflict with go-task task tool
Hi Guillaume, * Guillaume Yziquel [2024-05-26 09:30]: For various development reaons on my machine, I had to install the go-task task tool. It is a task runner in the go ecosystem that has named its executable... task. https://github.com/go-task/task.git This very obviously conflicts with the name of taskwarrior's executable. Which saddens me a lot. That naming choice from go-task is most unfortunate. But I do not expect this name conflict to be of major importance to them. But I need both taskwarrior and go-task's task. Because I use go-task's task in a git repository, and use custom taskwarrior configuration to handle a local bug-tracker local to the same git repository. I would therefore appreciate, even if I do not have much hope on that front, that debian packaging and the go-task team could come up with an agreement on the name used here. As to myself, I'll be looking at a way to rename the task taskwarrior executable on my system, possibly by modifying the debian packaging. As long as go-task is not part of Debian I don't think we should act on this. Otherwise Debian policy 10.1 has something on name conflicts: https://www.debian.org/doc/debian-policy/ch-files.html#s-binaries P.S.: using ubuntu (for the moment), but I believe debian is the right place to report this bug. I would rather recommend adding symbolic links in /usr/local/bin or ~/.local/bin with the new names. Cheers Jochen signature.asc Description: PGP signature
Bug#1072085: FTBFS: PermissionError: [Errno 13] Permission denied: '/dev/stdout'
Hi Chris,
this is #1070007. I plan to upload a new version soon (just need to look
into two unrelated regressions), so I would propose to not act on this.
Cheers Jochen
* Chris Hofstaedtler [2024-05-28 10:01]:
Source: supervisor
Version: 4.2.5-1
Severity: serious
Tags: ftbfs
X-Debbugs-Cc: z...@debian.org
Dear Maintainer,
your package fails to build from source, see below and the attached
build log.
This build was done in sbuild with unshare backend. As this is now a
configuration used by the buildds, people consider such problems to be
release-critical.
Chris
==
ERROR: test_ctor_with_dev_stdout
(supervisor.tests.test_loggers.StdoutTests.test_ctor_with_dev_stdout)
--
Traceback (most recent call last):
File "/<>/supervisor/tests/test_loggers.py", line 232, in
test_ctor_with_dev_stdout
handler = self._makeOne('/dev/stdout')
File "/<>/supervisor/tests/test_loggers.py", line 37, in _makeOne
return klass(*arg, **kw)
^
File "/<>/supervisor/loggers.py", line 160, in __init__
self.stream = open(filename, mode)
PermissionError: [Errno 13] Permission denied: '/dev/stdout'
--
Ran 1369 tests in 9.365s
FAILED (errors=1)
Test failed:
error: Test failed:
E: pybuild pybuild:389: test: plugin distutils failed with: exit code=1:
python3.11 setup.py test
dh_auto_test: error: pybuild --test -i python{version} -p "3.12 3.11" returned
exit code 13
make: *** [debian/rules:4: binary] Error 25
dpkg-buildpackage: error: debian/rules binary subprocess returned exit status 2
signature.asc
Description: PGP signature
Bug#1072068: golang-github-elazarl-goproxy accesses network resources during the build
Source: golang-github-elazarl-goproxy
Version: 1.1+git20231117.7cc037d+dfsg-1
Severity: serious
Tags: sid trixie ftbfs
Justification: Policy 4.9
X-Debbugs-Cc: d...@debian.org, wb-t...@buildd.debian.org
Control: affects -1 buildd.debian.org
Hi,
golang-github-elazarl-goproxy accesses network resources during the
build:
=== RUN TestSimpleHttpRequest
serving end proxy server at localhost:5000
proxy_test.go:958: Error while requesting google with http
&{500 Internal Server Error 500 HTTP/1.1 1 1 map[Content-Length:[108]
Content-Type:[text/plain; charset=utf-8] Date:[Tue, 28 May 2024 04:36:39 GMT]
X-Content-Type-Options:[nosniff]] 0xc00053e800 108 [] false false map[]
0xcc6360 }
&{500 Internal Server Error 500 HTTP/1.1 1 1 map[Content-Length:[108]
Content-Type:[text/plain; charset=utf-8] Date:[Tue, 28 May 2024 04:36:39 GMT]
X-Content-Type-Options:[nosniff]] 0xc00053eac0 108 [] false false map[]
0xcc6c60 }
--- FAIL: TestSimpleHttpRequest (1.01s)
=== RUN TestResponseContentLength
--- PASS: TestResponseContentLength (0.00s)
FAIL
FAILgithub.com/elazarl/goproxy 4.643s
This can be tested with the sbuild unshare backend.
Cheers Jochen
Bug#1072067: golang-github-containerd-stargz-snapshotter fails to build on non tmpfs
Source: golang-github-containerd-stargz-snapshotter Version: 0.12.0-2 Severity: minor Hi, your package fails to build when the build directory is not on a tmpfs: === RUN TestOverlayView snapshot_test.go:713: expected 1 mount option but got 2 --- FAIL: TestOverlayView (0.01s) FAIL FAILgithub.com/containerd/stargz-snapshotter/snapshot 0.026s Can you please fix or disable the test? Cheers Jochen -- System Information: Debian Release: trixie/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 6.8.11-amd64 (SMP w/8 CPU threads; PREEMPT) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled
Bug#1072047: missing build dependency on passwd
Source: nsscache Version: 0.49-2 Severity: minor Tags: ftbfs patch Hi, your package fails to build when the passwd package is not installed. For the buildd this is currently still the case but will change once debootstrap 1.0.133 or later is used. Could you please add the build dependency? Cheers Jochen
Bug#1072046: missing build dependency on passwd
Source: go-dlib Version: 5.6.0.9+dfsg-4 Severity: minor Tags: ftbfs patch Hi, your package fails to build when the passwd package is not installed. For the buildd this is currently still the case but will change once debootstrap 1.0.133 or later is used. Could you please add the build dependency? Cheers Jochen -- System Information: Debian Release: trixie/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 6.8.11-amd64 (SMP w/8 CPU threads; PREEMPT) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled
Bug#1071712: RM: ros-bond-core/experimental -- ROM; not needed for t64 transition
Package: ftp.debian.org Severity: normal X-Debbugs-Cc: ros-bond-c...@packages.debian.org Control: affects -1 + src:ros-bond-core User: ftp.debian@packages.debian.org Usertags: remove
Bug#1065973: kmod: FTBFS due to time64 transition
Hi Marco, last week you offered in #debian-devel to upload kmod with tests disabled for 32 bit arm to work around the current situation. Could you please do that? Cheers Jochen * Simon McVittie [2024-03-21 12:23]: On Thu, 21 Mar 2024 at 15:45:13 +0500, Andrey Rakhmatullin wrote: On Wed, Mar 13, 2024 at 08:23:07AM +0100, Helge Deller wrote: > The patch below builds for me on the hppa platform. Unfortunately tests fail here with it in an armhf chroot, I don't know if it's generic or because the chroot is a qemu-based one on amd64. I think the root cause (both for needing to unset _FILE_OFFSET_BITS, and for the tests failing) is that kmod's test suite is interposing mock/wrapped versions of the stat() family. With the transition to 64-bit time_t, there are new members of the stat() family that will also need interposing on 32-bit architectures: __lstat64_time64() is the replacement for lstat(), and __stat64_time64() for stat(). There are also __fstat64_time64() and __fstatat64_time64(), but kmod doesn't seem to interpose fstat() or fstatat(), so those are probably unnecessary in this case. fakeroot, fakechroot and other LD_PRELOAD modules that interpose stat() will already be doing something similar, and might provide a useful reference for what is needed. Here's the equivalent in fakechroot: https://github.com/dex4er/fakechroot/pull/104/commits/dac74cd68cfb6eeaae9cd13bdc48737a44980df9 smcv signature.asc Description: PGP signature
Bug#1069904: Autopkgtests failed
Hi Elena, I have opened a MR to fix this: https://salsa.debian.org/python-team/packages/python-gnupg/-/merge_requests/1 Due to #1071561 I will not do more but it would be great if we could get this fixed. Cheers Jochen * Andrey Rakhmatullin [2024-04-27 00:32]: Package: python3-gnupg Version: 0.5.2-1 Severity: serious https://ci.debian.net/packages/p/python-gnupg/unstable/amd64/45884087/ 277s + python3.11 test_gnupg.py 493s ...F... 493s == 493s FAIL: test_search_keys (__main__.GPGTestCase.test_search_keys) 493s Test that searching for keys works 493s -- 493s Traceback (most recent call last): 493s File "/tmp/autopkgtest- lxc.s9943af9/downtmp/build.Ev1/src/test_gnupg.py", line 1252, in test_search_keys 493s self.assertEqual(0, r.returncode, 'Non-zero return code') 493s AssertionError: 0 != 2 : Non-zero return code -- System Information: Debian Release: trixie/sid APT prefers unstable-debug APT policy: (500, 'unstable-debug'), (500, 'testing-debug'), (500, 'unstable'), (500, 'testing'), (101, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 6.7.9-amd64 (SMP w/16 CPU threads; PREEMPT) Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_WARN, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=ru_RU.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages python3-gnupg depends on: ii gnupg2.2.40-3 ii python3 3.11.8-1 python3-gnupg recommends no packages. python3-gnupg suggests no packages. signature.asc Description: PGP signature
Bug#1071190: golang-github-shirou-gopsutil fails to build with no physical disks present
Source: golang-github-shirou-gopsutil Version: 3.24.1-1 Severity: normal X-Debbugs-Cc: d...@debian.org, wb-t...@buildd.debian.org Control: affects -1 buildd.debian.org Hi, golang-github-shirou-gopsutil fails to build when there are no physical drives mounted: === RUN TestDisk_partitions disk_test.go:38: error disk_test.go:40: [] disk_test.go:43: ret is empty --- FAIL: TestDisk_partitions (0.00s) This happens for example in the sbuild unshare backend. Cheers Jochen
Bug#1070952: ros-vcstools: FTBFS in bullseye
Hi Santiago, thanks for the report. This seems to be due to git 1:2.30.2-1+deb11u1 as it works with the version before (1:2.30.2-1). Give that it is a security fix and a testing only problem that could worked around easily, I would leave this as is. Cheers Jochen * Santiago Vila [2024-05-11 21:53]: Package: src:ros-vcstools Version: 0.1.42-3 Severity: serious Control: close -1 0.1.42-7 Tags: ftbfs bullseye Dear maintainer: During a rebuild of all packages in bullseye, your package failed to build: [...] debian/rules binary dh binary --with python3 --buildsystem=pybuild dh_update_autotools_config -O--buildsystem=pybuild dh_autoreconf -O--buildsystem=pybuild dh_auto_configure -O--buildsystem=pybuild I: pybuild base:232: python3.9 setup.py config /<>/setup.py:3: DeprecationWarning: the imp module is deprecated in favour of importlib; see the module's documentation for alternative uses import imp running config dh_auto_build -O--buildsystem=pybuild I: pybuild base:232: /usr/bin/python3 setup.py build /<>/setup.py:3: DeprecationWarning: the imp module is deprecated in favour of importlib; see the module's documentation for alternative uses import imp [... snipped ...] 6 files updated, 0 files merged, 0 files removed, 0 files unresolved ok test_checkout_into_subdir_without_existing_parent (test.test_hg.HGClientTest) ... updating to branch default 6 files updated, 0 files merged, 0 files removed, 0 files unresolved ok test_checkout_specific_version_and_update (test.test_hg.HGClientTest) ... updating to branch default 6 files updated, 0 files merged, 0 files removed, 0 files unresolved 0 files updated, 0 files merged, 0 files removed, 0 files unresolved pulling from /tmp/tmp18ac112f/remote searching for changes no changes found 0 files updated, 0 files merged, 2 files removed, 0 files unresolved pulling from /tmp/tmp18ac112f/remote searching for changes no changes found 2 files updated, 0 files merged, 0 files removed, 0 files unresolved pulling from /tmp/tmp18ac112f/remote searching for changes no changes found 0 files updated, 0 files merged, 2 files removed, 0 files unresolved pulling from /tmp/tmp18ac112f/remote searching for changes no changes found 2 files updated, 0 files merged, 0 files removed, 0 files unresolved ok test_get_current_version_label (test.test_hg.HGClientTest) ... updating to branch default 6 files updated, 0 files merged, 0 files removed, 0 files unresolved 0 files updated, 0 files merged, 5 files removed, 0 files unresolved pulling from /tmp/tmp18ac112f/remote searching for changes no changes found 5 files updated, 0 files merged, 0 files removed, 0 files unresolved pulling from /tmp/tmp18ac112f/remote searching for changes no changes found 1 files updated, 0 files merged, 0 files removed, 0 files unresolved ok test_get_environment_metadata (test.test_hg.HGClientTest) ... ok test_get_remote_version (test.test_hg.HGClientTest) ... updating to branch default 6 files updated, 0 files merged, 0 files removed, 0 files unresolved abort: destination '/tmp/tmp18ac112f/local' is not empty pulling from /tmp/tmp18ac112f/remote searching for changes no changes found 0 files updated, 0 files merged, 0 files removed, 0 files unresolved pulling from /tmp/tmp18ac112f/remote searching for changes no changes found 1 files updated, 0 files merged, 0 files removed, 0 files unresolved ok test_get_type_name (test.test_hg.HGClientTest) ... ok test_get_url_by_reading (test.test_hg.HGClientTest) ... updating to branch default 6 files updated, 0 files merged, 0 files removed, 0 files unresolved 0 files updated, 0 files merged, 0 files removed, 0 files unresolved ok test_get_url_nonexistant (test.test_hg.HGClientTest) ... ok marked working directory as branch test_branch (branches are permanent and global, did you want a bookmark?) updating to branch default 6 files updated, 0 files merged, 0 files removed, 0 files unresolved testStatusUntracked (test.test_hg.HGDiffStatClientTest) ... ok test_diff (test.test_hg.HGDiffStatClientTest) ... ok test_diff_relpath (test.test_hg.HGDiffStatClientTest) ... ok test_get_version_modified (test.test_hg.HGDiffStatClientTest) ... ok test_hg_diff_path_change_None (test.test_hg.HGDiffStatClientTest) ... ok test_status (test.test_hg.HGDiffStatClientTest) ... ok test_status_relpath (test.test_hg.HGDiffStatClientTest) ... ok marked working directory as branch test_branch (branches are permanent and global, did you want a bookmark?) updating to branch default 6 files updated, 0 files merged, 0 files removed, 0 files unresolved test_export_repository (test.test_hg.HGExportRepositoryClientTest) ... ok marked working directory as branch test_branch (branches are permanent and global, did you want a bookmark?) updating to branch default 6 files updated, 0 files merged, 0 files removed, 0 files unresolved test_get_branches (test.test_hg.HGGetBranchesClientTest) ... pulling from
Bug#1070973: Please add a include_optional to /etc/mpd.conf
Package: mpd Version: 0.23.14-2+b2 Severity: wishlist Tags: patch Hi, can you please add a include_optional to simplify local modifications? Something like this should do: echo 'include_optional "mpd_local.conf"' >> debian/mpd.conf Thanks! Jochen
Bug#1070332: Wont fix
Hi Thomas, * Thomas Goirand [2024-05-06 08:21]: I already explained this: I am *NOT* interested in addressing this type of failure. Designate is "OpenStack DNS as a Service", therefore, it is expected that it's going to check/use /etc/resolv.conf. If you carefully look at what's going on, you'll see that it's not even doing DNS queries to the outside, it's simply testing itself. Removing the test would mean less Q/A, which is not desirable. "Fixing" the test would mean more work, which isn't needed in this case (the package works perfectly). Feel free to bug upstream and resolve it there if you think that's valuable, though I am of the opinion it's a loss of time. Also, note that the package builds perfectly fine in the current buildd environment (and on my laptop's sbuild setup). If that was going to change, of course, I'd review my opinion. In the mean time, I see no point in this bug. Fix your build env... Note that the buildds started switching to the unshare backend so the package will FTBFS soon. Cheers Jochen signature.asc Description: PGP signature
Bug#1070436: autopkgtest-virt-schroot: error when using 'unshare --net' even though schroot allows this
Hi Richard, * Richard Lewis [2024-05-05 11:32]: If i try and run tests that use 'unshare --net' with a schroot backend they fail inside autopkgtest even though this works in the schroot being used. This works fine in a 'plain schroot' (I expect i allowed the calling user to run the schroot as root in the schroot in /etc/schroot): $ schroot --chroot chroot:unstable-amd64-sbuild --directory / --user root -- unshare --net --map-root-user ls bin boot build dev etc home lib lib64 media mnt opt proc root run sbin srv sys tmp usr var I can't reproduce this. Testing in a fresh debvm: $ debvm-create --size=2G --release=stable -- \ --include=sbuild,schroot,debootstrap,autopkgtest \ --hook-dir=/usr/share/mmdebstrap/hooks/useradd $ debvm-run # echo "inside debvm" # sbuild-createchroot unstable /srv/chroot/unstable-amd64-sbuild \ http://deb.debian.org/debian # sbuild-adduser user # su - user $ schroot --chroot chroot:unstable-amd64-sbuild --directory / --user root -- unshare --net --map-root-user ls unshare: unshare failed: Operation not permitted Do you have any idea why it works for you? But if i have an autopkgtest with eg a debian/tests/control with Test-Command: unshare --map-root-user --net ./debian/tests/foo Depends: @ Features: test-name=foo Restrictions: needs-root This looks odd. If you only want to unshare the network, as stated in the bug title, you neither need --map-root-user nor needs-root. Indeed dropping both makes it work for me. Can you give some background what you actually want to do here? then even adding '--user root' doesnt work: $ /usr/bin/autopkgtest package.changes --user root -- schroot unstable-amd64-sbuild I guess this is due to autopkgtest-virt-schroot starts an schroot session but I can't verify without reproducing your example without a session. i get errors like unshare: unshare failed: Operation not permitted This maps to unshare(2) returning EPERM. From the manpage: | CLONE_NEWUSER was specified in flags and the caller is in a chroot | environment (i.e., the caller's root directory does not match the root | directory of the mount namespace in which it resides). I think this is what happens here. Over all I think using unshare --map-root-user in autopkgtest-virt-schroot is not supported and I don't think there is a way around that except using a different autopkgtest backend. Cheers Jochen signature.asc Description: PGP signature
Bug#1070415: runc fails to build as a normal user due to cgroups access
Source: runc
Version: 1.1.12+ds1-2
Severity: important
X-Debbugs-Cc: debian-wb-t...@lists.debian.org
Usertags: unshare
Hi,
runc tries to write cgroups files during the build which fails as a
normal user:
=== RUN TestDevicesSetAllow
--- FAIL: TestDevicesSetAllow (0.00s)
panic: runtime error: index out of range [0] with length 0 [recovered]
panic: runtime error: index out of range [0] with length 0
goroutine 63 [running]:
testing.tRunner.func1.2({0x5e12c0, 0xc0001ed2c0})
/usr/lib/go-1.22/src/testing/testing.go:1631 +0x24a
testing.tRunner.func1()
/usr/lib/go-1.22/src/testing/testing.go:1634 +0x377
panic({0x5e12c0?, 0xc0001ed2c0?})
/usr/lib/go-1.22/src/runtime/panic.go:770 +0x132
github.com/opencontainers/runc/libcontainer/cgroups/fs.TestDevicesSetAllow(0xc0001fcd00)
/<>/_build/src/github.com/opencontainers/runc/libcontainer/cgroups/fs/devices_test.go:42
+0x45e
testing.tRunner(0xc0001fcd00, 0x607748)
/usr/lib/go-1.22/src/testing/testing.go:1689 +0xfb
created by testing.(*T).Run in goroutine 1
/usr/lib/go-1.22/src/testing/testing.go:1742 +0x390
FAILgithub.com/opencontainers/runc/libcontainer/cgroups/fs 0.044s
https://salsa.debian.org/go-team/packages/runc/-/blob/debian/1.1.5+ds1-1/libcontainer/cgroups/fs/devices_test.go?ref_type=tags#L42
This also fails with the sbuild unshare backend.
Cheers Jochen
Bug#1070414: fails to build when not build inside schroot
Source: kel-agent Version: 0.4.6-2 Severity: important X-Debbugs-Cc: debian-wb-t...@lists.debian.org Usertags: unshare Hi, kel-agent hard codes to skip a test when build inside schroot: https://sources.debian.org/src/kel-agent/0.4.6-2/integration/suite_test.go/#L27 But the test also fails in other environments for me, for example as a local user or in the sbuild unshare backend. Please either fix or disable the test. Cheers Jochen
Bug#1070413: sogo fails to build when test succeeds
Source: sogo Version: 5.10.0-2 Severity: important Hi, the sogo package contains a patch that hard coded the number of failing tests to two: https://sources.debian.org/src/sogo/5.10.0-2/debian/patches/0006-Update-unit-test-expected-failures.patch/ This makes the package FTBFS when more tests succeeds, for example in a local build or in sbuild with the unshare backend. Please drop this patch and fix or disable the failing tests instead. Cheers Jochen
Bug#1070412: Fails to build due to hard coded OS platform
Source: golang-github-kardianos-service Version: 1.2.0-2 Severity: important X-Debbugs-Cc: debian-wb-t...@lists.debian.org Usertags: unshare Hi, golang-github-kardianos-service fails to build when it can't detect the OS platform: === RUN TestPlatformName name_test.go:15: Platform is unix-systemv name_test.go:18: Platform() want: /^linux-.*$/, got: unix-systemv --- FAIL: TestPlatformName (0.00s) This happens for example in the sbuild unshare bachend. The problem is that in the test: https://sources.debian.org/src/golang-github-kardianos-service/1.2.1-1/name_test.go/?hl=13#L13 runtime.GOOS is hard coded to linux. Cheers Jochen
Bug#1070411: containerd fails to build as a normal user due to sysctl
Source: containerd Version: 1.6.20~ds1-1 Severity: important X-Debbugs-Cc: debian-wb-t...@lists.debian.org Usertags: unshare Hi, containerd uses sysctl during the build which fails as a normal user: === RUN TestLinuxSandboxContainerSpec sandbox_run_linux_test.go:241: TestCase "spec should reflect original config" sandbox_run_linux_test.go:71: Check PodSandbox annotations sandbox_run_linux_test.go:124: Error Trace: /<>/_build/src/github.com/containerd/containerd/pkg/cri/server/sandbox_run_linux_test.go:124 /<>/_build/src/github.com/containerd/containerd/pkg/cri/server/sandbox_run_linux_test.go:259 Error: "" does not contain "0 2147483647" Test: TestLinuxSandboxContainerSpec sandbox_run_linux_test.go:241: TestCase "host namespace" sandbox_run_linux_test.go:71: Check PodSandbox annotations sandbox_run_linux_test.go:241: TestCase "should set supplemental groups correctly" sandbox_run_linux_test.go:71: Check PodSandbox annotations sandbox_run_linux_test.go:241: TestCase "should overwrite default sysctls" sandbox_run_linux_test.go:71: Check PodSandbox annotations sandbox_run_linux_test.go:241: TestCase "sandbox sizing annotations should be set if LinuxContainerResources were provided" sandbox_run_linux_test.go:71: Check PodSandbox annotations sandbox_run_linux_test.go:241: TestCase "sandbox sizing annotations should not be set if LinuxContainerResources were not provided" sandbox_run_linux_test.go:71: Check PodSandbox annotations sandbox_run_linux_test.go:241: TestCase "sandbox sizing annotations are zero if the resources are set to 0" sandbox_run_linux_test.go:71: Check PodSandbox annotations --- FAIL: TestLinuxSandboxContainerSpec (0.00s) https://salsa.debian.org/go-team/packages/containerd/-/blob/debian/sid/pkg/cri/server/sandbox_run_linux_test.go#L124 This make the build fail for example in the sbuild unshare backend. Cheers Jochen
Bug#1070410: golang-github-pion-webrtc.v3 accesses the internet during build
Source: golang-github-pion-webrtc.v3
Version: 3.1.56-2
Severity: serious
Justification: Policy 4.9
X-Debbugs-Cc: d...@debian.org, wb-t...@buildd.debian.org
Control: affects -1 buildd.debian.org
Hi,
golang-github-pion-webrtc.v3 attempts network access during build.
This is forbidden by Policy 4.9:
For packages in the main archive, required targets must not attempt
network access, except, via the loopback interface, to services on the
build host that have been started by the build.
This can be tested with the sbuild unshare backend:
=== NAME TestDataChannelParamters_Go
util.go:41: Unexpected routines on test end:
goroutine 34 [select]:
github.com/pion/interceptor/pkg/nack.(*GeneratorInterceptor).loop(0xc240a0,
{0x9f4b80, 0xc3ec30})
/<>/_build/src/github.com/pion/interceptor/pkg/nack/generator_interceptor.go:139
+0x12d
created by
github.com/pion/interceptor/pkg/nack.(*GeneratorInterceptor).BindRTCPWriter in
goroutine 16
/<>/_build/src/github.com/pion/interceptor/pkg/nack/generator_interceptor.go:74
+0x115
goroutine 35 [select]:
github.com/pion/interceptor/pkg/report.(*ReceiverInterceptor).loop(0xc0001303c0,
{0x9f4b80, 0xc3ec30})
/<>/_build/src/github.com/pion/interceptor/pkg/report/receiver_interceptor.go:97
+0x19c
created by
github.com/pion/interceptor/pkg/report.(*ReceiverInterceptor).BindRTCPWriter in
goroutine 16
/<>/_build/src/github.com/pion/interceptor/pkg/report/receiver_interceptor.go:86
+0x115
goroutine 36 [select]:
github.com/pion/interceptor/pkg/report.(*SenderInterceptor).loop(0xc000130420,
{0x9f4b80, 0xc3ec30})
/<>/_build/src/github.com/pion/interceptor/pkg/report/sender_interceptor.go:98
+0x19c
created by
github.com/pion/interceptor/pkg/report.(*SenderInterceptor).BindRTCPWriter in
goroutine 16
/<>/_build/src/github.com/pion/interceptor/pkg/report/sender_interceptor.go:87
+0x115
[...]
Cheers Jochen
Bug#1070409: golang-github-pion-ice.v2: accesses the internet during build
Source: golang-github-pion-ice.v2 Version: 2.3.1-1 Severity: serious Justification: Policy 4.9 X-Debbugs-Cc: d...@debian.org, wb-t...@buildd.debian.org Control: affects -1 buildd.debian.org Hi, golang-github-pion-ice.v2 attempts network access during build. This is forbidden by Policy 4.9: For packages in the main archive, required targets must not attempt network access, except, via the loopback interface, to services on the build host that have been started by the build. This can be tested with the sbuild unshare backend: === RUN TestConnectionStateCallback goroutine profile: total 16 2 @ 0x43f36e 0x40999f 0x4095d2 0x71a847 0x476061 # 0x71a846 github.com/pion/ice/v2.(*Agent).startOnConnectionStateChangeRoutine.func1+0x46 /<>/_build/src/github.com/pion/ice/v2/agent.go:424 2 @ 0x43f36e 0x438057 0x470a85 0x4a1ec7 0x4a4f0a 0x4a4ef3 0x565516 0x5a2004 0x5a568e 0x5a567c 0x5a8745 0x476061 # 0x470a84internal/poll.runtime_pollWait+0x84 /usr/lib/go-1.22/src/runtime/netpoll.go:345 # 0x4a1ec6internal/poll.(*pollDesc).wait+0x26 /usr/lib/go-1.22/src/internal/poll/fd_poll_runtime.go:84 # 0x4a4f09internal/poll.(*pollDesc).waitRead+0x129 /usr/lib/go-1.22/src/internal/poll/fd_poll_runtime.go:89 # 0x4a4ef2internal/poll.(*FD).RawRead+0x112 /usr/lib/go-1.22/src/internal/poll/fd_unix.go:708 # 0x565515net.(*rawConn).Read+0x35 /usr/lib/go-1.22/src/net/rawconn.go:44 # 0x5a2003golang.org/x/net/internal/socket.(*Conn).recvMsg+0x143 /<>/_build/src/golang.org/x/net/internal/socket/rawconn_msg.go:27 # 0x5a568dgolang.org/x/net/internal/socket.(*Conn).RecvMsg+0x4ad /<>/_build/src/golang.org/x/net/internal/socket/socket.go:247 # 0x5a567bgolang.org/x/net/ipv4.(*payloadHandler).ReadFrom+0x49b /<>/_build/src/golang.org/x/net/ipv4/payload_cmsg.go:31 # 0x5a8744github.com/pion/mdns.(*Conn).start+0xe4 /<>/_build/src/github.com/pion/mdns/conn.go:295 2 @ 0x43f36e 0x4510c5 0x4ea5b8 0x476061 # 0x4ea5b7context.(*cancelCtx).propagateCancel.func2+0x97 /usr/lib/go-1.22/src/context/context.go:510 2 @ 0x43f36e 0x4510c5 0x719098 0x476061 # 0x719097github.com/pion/ice/v2.(*Agent).taskLoop+0x137 /<>/_build/src/github.com/pion/ice/v2/agent.go:230 2 @ 0x43f36e 0x4510c5 0x71a5c5 0x476061 # 0x71a5c4 github.com/pion/ice/v2.(*Agent).startOnConnectionStateChangeRoutine.func2+0xa4 /<>/_build/src/github.com/pion/ice/v2/agent.go:433 2 @ 0x43f36e 0x4510c5 0x71b113 0x476061 # 0x71b112 github.com/pion/ice/v2.(*Agent).connectivityChecks+0x1b2 /<>/_build/src/github.com/pion/ice/v2/agent.go:550 1 @ 0x434a31 0x4706bd 0x531871 0x5316a5 0x52e4cb 0x7748bd 0x476061 # 0x4706bcruntime/pprof.runtime_goroutineProfileWithLabels+0x1c /usr/lib/go-1.22/src/runtime/mprof.go:1079 # 0x531870runtime/pprof.writeRuntimeProfile+0xb0 /usr/lib/go-1.22/src/runtime/pprof/pprof.go:774 # 0x5316a4runtime/pprof.writeGoroutine+0x44 /usr/lib/go-1.22/src/runtime/pprof/pprof.go:734 # 0x52e4caruntime/pprof.(*Profile).WriteTo+0x14a /usr/lib/go-1.22/src/runtime/pprof/pprof.go:369 # 0x7748bc github.com/pion/ice/v2.TestConnectionStateCallback.TimeOut.func2+0x3c /<>/_build/src/github.com/pion/transport/test/util.go:21 1 @ 0x43f36e 0x40999f 0x4095b2 0x4faeeb 0x4fd037 0x4fa01b 0x4fcf25 0x4fb92b 0x77c2ac 0x43ef1d 0x476061 # 0x4faeeatesting.(*T).Run+0x3aa /usr/lib/go-1.22/src/testing/testing.go:1750 # 0x4fd036testing.runTests.func1+0x36 /usr/lib/go-1.22/src/testing/testing.go:2161 # 0x4fa01atesting.tRunner+0xfa /usr/lib/go-1.22/src/testing/testing.go:1689 # 0x4fcf24testing.runTests+0x444 /usr/lib/go-1.22/src/testing/testing.go:2159 # 0x4fb92atesting.(*M).Run+0x68a /usr/lib/go-1.22/src/testing/testing.go:2027 # 0x77c2abmain.main+0x16b _testmain.go:225 # 0x43ef1cruntime.main+0x29c /usr/lib/go-1.22/src/runtime/proc.go:271 1 @ 0x43f36e 0x4510c5 0x73a965 0x766c5b 0x766c32 0x746425 0x4fa01b 0x476061 # 0x73a964github.com/pion/ice/v2.(*Agent).connect+0x124 /<>/_build/src/github.com/pion/ice/v2/transport.go:53 # 0x766c5agithub.com/pion/ice/v2.(*Agent).Dial+0xfa /<>/_build/src/github.com/pion/ice/v2/transport.go:15 # 0x766c31github.com/pion/ice/v2.connect+0xd1 /<>/_build/src/github.com/pion/ice/v2/transport_test.go:219 # 0x746424
Bug#1070334: libnet-frame-device-perl needs network access during build
Source: libnet-frame-device-perl Version: 1.12-1 Severity: serious Justification: Policy 4.9 X-Debbugs-Cc: d...@debian.org, wb-t...@buildd.debian.org Control: affects -1 buildd.debian.org Hi, libnet-frame-device-perl fails to build with no network connection: 1..1 # Running under perl version 5.038002 for linux # Current time local: Sat Apr 27 12:53:04 2024 # Current time GMT: Sat Apr 27 12:53:04 2024 # Using Test.pm version 1.31 ok 1 # skip Test::Pod 1.00 required for testing ok Net::Frame::Device: updateFromDefault: unable to get dnet This can be tested with the sbuild unshare backend. Cheers Jochen
Bug#1070333: python-eventlet fails to build with an empty /etc/resolv.conf
Source: python-eventlet
Version: 0.35.1-1
Severity: normal
X-Debbugs-Cc: d...@debian.org, wb-t...@buildd.debian.org
Control: affects -1 buildd.debian.org
Hi,
python-eventlet fails to build with no nameserver specified in
/etc/resolv.conf:
=== FAILURES ===
_ TestProxyResolver.test_clear _
self =
def test_clear(self):
rp = greendns.ResolverProxy()
assert rp._cached_resolver is None
> resolver = rp._resolver
tests/greendns_test.py:304:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
eventlet/support/greendns.py:347: in _resolver
self.clear()
eventlet/support/greendns.py:355: in clear
self._resolver = dns.resolver.Resolver(filename=self._filename)
/usr/lib/python3/dist-packages/dns/resolver.py:944: in __init__
self.read_resolv_conf(filename)
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
self =
f = <_io.TextIOWrapper name='/etc/resolv.conf' mode='r' encoding='UTF-8'>
def read_resolv_conf(self, f: Any) -> None:
"""Process *f* as a file in the /etc/resolv.conf format. If f is
a ``str``, it is used as the name of the file to open; otherwise it
is treated as the file itself.
Interprets the following items:
- nameserver - name server IP address
- domain - local domain name
- search - search list for host-name lookup
- options - supported options are rotate, timeout, edns0, and ndots
"""
nameservers = []
if isinstance(f, str):
try:
cm: contextlib.AbstractContextManager = open(f)
except OSError:
# /etc/resolv.conf doesn't exist, can't be read, etc.
raise NoResolverConfiguration(f"cannot open {f}")
else:
cm = contextlib.nullcontext(f)
with cm as f:
for l in f:
if len(l) == 0 or l[0] == "#" or l[0] == ";":
continue
tokens = l.split()
# Any line containing less than 2 tokens is malformed
if len(tokens) < 2:
continue
if tokens[0] == "nameserver":
nameservers.append(tokens[1])
elif tokens[0] == "domain":
self.domain = dns.name.from_text(tokens[1])
# domain and search are exclusive
self.search = []
elif tokens[0] == "search":
# the last search wins
self.search = []
for suffix in tokens[1:]:
self.search.append(dns.name.from_text(suffix))
# We don't set domain as it is not used if
# len(self.search) > 0
elif tokens[0] == "options":
for opt in tokens[1:]:
if opt == "rotate":
self.rotate = True
elif opt == "edns0":
self.use_edns()
elif "timeout" in opt:
try:
self.timeout = int(opt.split(":")[1])
except (ValueError, IndexError):
pass
elif "ndots" in opt:
try:
self.ndots = int(opt.split(":")[1])
except (ValueError, IndexError):
pass
if len(nameservers) == 0:
> raise NoResolverConfiguration("no nameservers")
E dns.resolver.NoResolverConfiguration: no nameservers
/usr/lib/python3/dist-packages/dns/resolver.py:1038: NoResolverConfiguration
This fails in sbuild with the unshare backend.
Cheers Jochen
Bug#1070332: designate fails to build with no nameserver specified in /etc/resolv.conf
Source: designate
Version: 1:18.0.0-1
Severity: normal
X-Debbugs-Cc: d...@debian.org, wb-t...@buildd.debian.org
Control: affects -1 buildd.debian.org
Hi,
designate fails to build with no nameserver specified in
/etc/resolv.conf:
==
FAIL: designate.tests.unit.mdns.test_handler.MdnsHandleTest.test_notify
designate.tests.unit.mdns.test_handler.MdnsHandleTest.test_notify
--
testtools.testresult.real._StringException: Traceback (most recent call last):
File "/usr/lib/python3.12/unittest/mock.py", line 1390, in patched
return func(*newargs, **newkeywargs)
^
File "/<>/designate/tests/unit/mdns/test_handler.py", line 79,
in test_notify
self.assertEqual(dns.rcode.NOERROR, tuple(response)[0].rcode())
^^^
File "/<>/designate/mdns/handler.py", line 142, in _handle_notify
resolver = dns.resolver.Resolver()
^^^
File "/usr/lib/python3/dist-packages/dns/resolver.py", line 944, in __init__
self.read_resolv_conf(filename)
File "/usr/lib/python3/dist-packages/dns/resolver.py", line 1038, in
read_resolv_conf
raise NoResolverConfiguration("no nameservers")
dns.resolver.NoResolverConfiguration: no nameservers
This fails in sbuild with the unshare backend. Please disable the
failing tests:
designate.tests.unit.mdns.test_handler.MdnsHandleTest.test_notify
designate.tests.unit.mdns.test_handler.MdnsHandleTest.test_notify_same_serial
Cheers Jochen
Bug#1070325: fails to build without a non local IP
Source: servefile Version: 0.5.4-3 Severity: normal Tags: patch X-Debbugs-Cc: d...@debian.org, wb-t...@buildd.debian.org Control: affects -1 buildd.debian.org Hi, servefile fails to build when self.getIPs() does not return an IP: Traceback (most recent call last): File "", line 198, in _run_module_as_main File "", line 88, in _run_code File "/<>/.pybuild/cpython3_3.12_servefile/build/servefile/__main__.py", line 3, in servefile.main() File "/<>/.pybuild/cpython3_3.12_servefile/build/servefile/servefile.py", line 1289, in main server.serve() File "/<>/.pybuild/cpython3_3.12_servefile/build/servefile/servefile.py", line 1008, in serve self.server.append(self._createServer(self.handler)) File "/<>/.pybuild/cpython3_3.12_servefile/build/servefile/servefile.py", line 982, in _createServer self.genKeyPair() File "/<>/.pybuild/cpython3_3.12_servefile/build/servefile/servefile.py", line 927, in genKeyPair for ip in self.getIPs() + ["127.0.0.1", "::1"]: ~~^~ TypeError: unsupported operand type(s) for +: 'NoneType' and 'list' This fails in sbuild with the unshare backend. A simple fix would be: --- servefile-0.5.4.orig/servefile/servefile.py +++ servefile-0.5.4/servefile/servefile.py @@ -890,7 +890,7 @@ class ServeFile(): ips = [ip for ip in ips if ':' in ip] return ips -return None +return [] def setSSLKeys(self, cert, key): """ Set SSL cert/key. Can be either path to file or pyopenssl X509/PKey object. """ Cheers Jochen
Bug#1070324: fails to build when no local ssh server is running
Source: python-scrapli
Version: 2023.7.30-2
Severity: normal
X-Debbugs-Cc: d...@debian.org, wb-t...@buildd.debian.org
Control: affects -1 buildd.debian.org
Hi,
python-scrapli has a test that tries to connect to localhost port 22:
https://sources.debian.org/src/python-scrapli/2023.7.30-2/tests/unit/transport/base/test_base_socket.py/#L6
This fails in sbuild with the unshare backend:
=== FAILURES ===
test_socket_open_close_isalive
self =
socket_address_families = {}
def _connect(self, socket_address_families: Set["socket.AddressFamily"]) ->
None:
"""
Try to open socket to host using all possible address families
It seems that very occasionally when resolving a hostname (i.e.
localhost during functional
tests against vrouter devices), a v6 address family will be the first
af the socket
getaddrinfo returns, in this case, because the qemu hostfwd is not
listening on ::1, instead
only listening on 127.0.0.1 the connection will fail. Presumably this
is something that can
happen in real life too... something gets resolved with a v6 address
but is denying
connections or just not listening on that ipv6 address. This little
connect wrapper is
intended to deal with these weird scenarios.
Args:
socket_address_families: set of address families available for the
provided host
really only should ever be v4 AND v6 if providing a hostname
that resolves with
both addresses, otherwise if you just provide a v4/v6 address
it will just be a
single address family for that type of address
Returns:
None
Raises:
ScrapliConnectionNotOpened: if socket refuses connection on all
address families
ScrapliConnectionNotOpened: if socket connection times out on all
address families
"""
for address_family_index, address_family in
enumerate(socket_address_families, start=1):
self.sock = socket.socket(address_family, socket.SOCK_STREAM)
self.sock.settimeout(self.timeout)
try:
> self.sock.connect((self.host, self.port))
E ConnectionRefusedError: [Errno 111] Connection refused
scrapli/transport/base/base_socket.py:82: ConnectionRefusedError
The above exception was the direct cause of the following exception:
socket_transport =
def test_socket_open_close_isalive(socket_transport):
"""Test socket initialization/opening"""
assert socket_transport.host == "localhost"
assert socket_transport.port == 22
assert socket_transport.timeout == 10.0
> socket_transport.open()
Please disable those tests tests:
tests/unit/transport/base/test_base_socket.py::test_socket_open_close_isalive
tests/unit/transport/base/test_base_socket.py::test_socket_bool
Cheers Jochen
Bug#1070317: fails to build without a non lo IP address
* Jochen Sprickerhof [2024-05-03 18:55]: This fails in sbuild with the chroot backend: I mean the unshare backend. signature.asc Description: PGP signature
Bug#1070319: fails to build without a non lo IP address
Source: google-guest-agent Version: 2026.00-6 Severity: normal X-Debbugs-Cc: d...@debian.org, wb-t...@buildd.debian.org Control: affects -1 buildd.debian.org Hi, google-guest-agent has a test that depends on having an IP address available in the build environment: https://sources.debian.org/src/google-guest-agent/2026.00-6/google_guest_agent/wsfc_test.go/#L206 This fails in sbuild with the unshare backend: === RUN TestWsfcRunAgentE2E wsfc_test.go:207: health check failed with , got = , want 1 wsfc_test.go:209: EOF --- FAIL: TestWsfcRunAgentE2E (1.00s) Cheers Jochen
Bug#1070317: fails to build without a non lo IP address
Source: golang-github-likexian-gokit Version: 0.25.9-3 Severity: normal X-Debbugs-Cc: d...@debian.org, wb-t...@buildd.debian.org Control: affects -1 buildd.debian.org Hi, golang-github-likexian-gokit has a test that depends on having an IP address available in the build environment: https://sources.debian.org/src/golang-github-likexian-gokit/0.25.9-3/xip/xip_test.go/#L213 This fails in sbuild with the chroot backend: === RUN TestGetEthIPv4 assert.go:197: /<>/obj-x86_64-linux-gnu/src/github.com/likexian/gokit/xip/xip_test.go:213 assert.go:172: ! expected true, but got false --- FAIL: TestGetEthIPv4 (0.00s) Cheers Jochen
Bug#1069809: xhtml2pdf accesses network resources during the build
Source: xhtml2pdf Version: 0.2.15+dfsg-1 Severity: serious Tags: sid trixie ftbfs xhtml2pdf accesses network resources during the build: == FAIL: test_document_cannot_identify_image (tests.test_document.DocumentTest.test_document_cannot_identify_image) Test that images which cannot be identified don't cause stack trace to be printed -- Traceback (most recent call last): File "/build/package/package/.pybuild/cpython3_3.11_xhtml2pdf/build/tests/test_document.py", line 189, in test_document_cannot_identify_image self.assertEqual( AssertionError: Lists differ: ['WAR[16 chars]ags:Could not get image data from src attribut[265 chars]>\''] != ['WAR[16 chars]ags:Cannot identify image file:\n\'\'' + ['WARNING:xhtml2pdf.tags:Cannot identify image file:\n' - ['WARNING:xhtml2pdf.tags:Could not get image data from src attribute: ' - 'https://raw.githubusercontent.com/python-pillow/Pillow/7921da54a73dd4a30c23957369b79cda176005c6/Tests/images/zero_width.gif\n' "'https://raw.githubusercontent.com/python-pillow/Pillow/7921da54a73dd4a30c23957369b79cda176005c6/Tests/images/zero_width.gif"/>\''] == FAIL: test_document_with_broken_image (tests.test_document.DocumentTest.test_document_with_broken_image) Test that broken images don't cause unhandled exception -- Traceback (most recent call last): File "/build/package/package/.pybuild/cpython3_3.11_xhtml2pdf/build/tests/test_document.py", line 169, in test_document_with_broken_image self.assertEqual( AssertionError: Lists differ: [] != ["WARNING:xhtml2pdf.xhtml2pdf_reportlab:SV[151 chars]ml'"] Second list contains 1 additional elements. First extra element 0: "WARNING:xhtml2pdf.xhtml2pdf_reportlab:SVG drawing could not be resized: 'https://raw.githubusercontent.com/xhtml2pdf/xhtml2pdf/b01b1d8f9497dedd0f2454409d03408bdeea997c/tests/samples/images.html'" - [] + ['WARNING:xhtml2pdf.xhtml2pdf_reportlab:SVG drawing could not be resized: ' + "'https://raw.githubusercontent.com/xhtml2pdf/xhtml2pdf/b01b1d8f9497dedd0f2454409d03408bdeea997c/tests/samples/images.html'"]
Bug#1069805: scikit-build tries pip install during build
Source: scikit-build
Version: 0.17.6-1
Severity: serious
Tags: trixie sid ftbfs
scikit-build accesses network resources during the build:
process =
stdout = None, stderr = None, retcode = 1
def run(*popenargs,
input=None, capture_output=False, timeout=None, check=False,
**kwargs):
"""Run command with arguments and return a CompletedProcess instance.
The returned instance will have attributes args, returncode, stdout and
stderr. By default, stdout and stderr are not captured, and those
attributes
will be None. Pass stdout=PIPE and/or stderr=PIPE in order to capture
them,
or pass capture_output=True to capture both.
If check is True and the exit code was non-zero, it raises a
CalledProcessError. The CalledProcessError object will have the return
code
in the returncode attribute, and output & stderr attributes if those
streams
were captured.
If timeout is given, and the process takes too long, a TimeoutExpired
exception will be raised.
There is an optional argument "input", allowing you to
pass bytes or a string to the subprocess's stdin. If you use this
argument
you may not also use the Popen constructor's "stdin" argument, as
it will be used internally.
By default, all communication is in bytes, and therefore any "input"
should
be bytes, and the stdout and stderr will be bytes. If in text mode, any
"input" should be a string, and stdout and stderr will be strings
decoded
according to locale encoding, or by "encoding" if set. Text mode is
triggered by setting any of text, encoding, errors or
universal_newlines.
The other arguments are the same as for the Popen constructor.
"""
if input is not None:
if kwargs.get('stdin') is not None:
raise ValueError('stdin and input arguments may not both be
used.')
kwargs['stdin'] = PIPE
if capture_output:
if kwargs.get('stdout') is not None or kwargs.get('stderr') is not
None:
raise ValueError('stdout and stderr arguments may not be used '
'with capture_output.')
kwargs['stdout'] = PIPE
kwargs['stderr'] = PIPE
with Popen(*popenargs, **kwargs) as process:
try:
stdout, stderr = process.communicate(input, timeout=timeout)
except TimeoutExpired as exc:
process.kill()
if _mswindows:
# Windows accumulates the output in a single blocking
# read() call run on child threads, with the timeout
# being done in a join() on those threads. communicate()
# _after_ kill() is required to collect that and add it
# to the exception.
exc.stdout, exc.stderr = process.communicate()
else:
# POSIX _communicate already populated the output so
# far into the TimeoutExpired exception.
process.wait()
raise
except: # Including KeyboardInterrupt, communicate handled that.
process.kill()
# We don't call process.wait() as .__exit__ does that for us.
raise
retcode = process.poll()
if check and retcode:
> raise CalledProcessError(retcode, process.args,
output=stdout, stderr=stderr)
E subprocess.CalledProcessError: Command '['/usr/bin/python3.12',
'-m', 'pip', 'wheel', '--wheel-dir',
'/tmp/pytest-of-jspricke/pytest-21/wheelhouse0', '/build/package/package']'
returned non-zero exit status 1.
Bug#1069804: rust-mio-0.6 accesses network resources during the build
Source: rust-mio-0.6
Version: 0.6.23-3
Severity: serious
Tags: sid trixie ftbfs
rust-mio-0.6 accesses network resources during the build:
Test executable failed (exit status: 101).
stderr:
thread 'main' panicked at 'called `Result::unwrap()` on an `Err` value: Os {
code: 101, kind: NetworkUnreachable, message: "Network is unreachable" }',
src/sys/unix/ready.rs:22:16
stack backtrace:
0: rust_begin_unwind
at /usr/src/rustc-1.70.0/library/std/src/panicking.rs:578:5
1: core::panicking::panic_fmt
at /usr/src/rustc-1.70.0/library/core/src/panicking.rs:67:14
2: core::result::unwrap_failed
at /usr/src/rustc-1.70.0/library/core/src/result.rs:1687:5
3: core::result::Result::unwrap
4: rust_out::main
5: core::ops::function::FnOnce::call_once
note: Some details are omitted, run with `RUST_BACKTRACE=full` for a verbose
backtrace.
failures:
src/poll.rs - poll::Poll (line 267)
src/poll.rs - poll::Poll::deregister (line 877)
src/poll.rs - poll::Poll::register (line 735)
src/poll.rs - poll::Poll::reregister (line 820)
src/sys/unix/ready.rs - sys::unix::ready::UnixReady (line 66)
test result: FAILED. 74 passed; 5 failed; 0 ignored; 0 measured; 0 filtered
out; finished in 4.37s
Bug#1069803: php-codeigniter-framework tries pip install during build
Source: php-codeigniter-framework
Version: 3.1.13+dfsg1-3
Severity: serious
Tags: sid trixie ftbfs
php-codeigniter-framework accesses network resources during the build:
python3 -m venv --system-site-packages --without-pip debian/build-doc/pythonvenv
if ! debian/build-doc/pythonvenv/bin/python -m pip show pycilexer; then \
echo "Installing pycilexer" && \
cd user_guide_src/cilexer && \
../../debian/build-doc/pythonvenv/bin/python -m pip install .; \
fi
WARNING: Package(s) not found: pycilexer
Installing pycilexer
Processing /build/package/package/user_guide_src/cilexer
Installing build dependencies: started
Installing build dependencies: finished with status 'error'
error: subprocess-exited-with-error
× pip subprocess to install build dependencies did not run successfully.
│ exit code: 1
╰─> [7 lines of output]
WARNING: Retrying (Retry(total=4, connect=None, read=None, redirect=None,
status=None)) after connection broken by
'NewConnectionError(': Failed to establish a new connection: [Errno -3] Temporary
failure in name resolution')': /simple/setuptools/
WARNING: Retrying (Retry(total=3, connect=None, read=None, redirect=None,
status=None)) after connection broken by
'NewConnectionError(': Failed to establish a new connection: [Errno -3] Temporary
failure in name resolution')': /simple/setuptools/
WARNING: Retrying (Retry(total=2, connect=None, read=None, redirect=None,
status=None)) after connection broken by
'NewConnectionError(': Failed to establish a new connection: [Errno -3] Temporary
failure in name resolution')': /simple/setuptools/
WARNING: Retrying (Retry(total=1, connect=None, read=None, redirect=None,
status=None)) after connection broken by
'NewConnectionError(': Failed to establish a new connection: [Errno -3] Temporary
failure in name resolution')': /simple/setuptools/
WARNING: Retrying (Retry(total=0, connect=None, read=None, redirect=None,
status=None)) after connection broken by
'NewConnectionError(': Failed to establish a new connection: [Errno -3] Temporary
failure in name resolution')': /simple/setuptools/
ERROR: Could not find a version that satisfies the requirement
setuptools>=40.8.0 (from versions: none)
ERROR: No matching distribution found for setuptools>=40.8.0
[end of output]
note: This error originates from a subprocess, and is likely not a problem
with pip.
error: subprocess-exited-with-error
× pip subprocess to install build dependencies did not run successfully.
│ exit code: 1
╰─> See above for output.
note: This error originates from a subprocess, and is likely not a problem with
pip.
Bug#1065193: RFS: libhx/4.23-1 [RC] -- C library providing queue, tree, I/O and utility functions
Hi Jörg, I have fixed the old debian/changelog entry and uploaded the new version to DELAYED/7. Please feel free to tell me if I should delay it longer. The patch is attached. Cheers Jochen * Jochen Sprickerhof [2024-04-10 07:25]: Hi Jörg, is there anything I can help with to get libhx updated? (I agree with what Tobias said below.) Cheers Jochen * Tobias Frost [2024-03-17 20:22]: Control: tags -1 moreinfo On Sun, Mar 17, 2024 at 04:57:54PM +0100, Jörg Frings-Fürst wrote: tags 1065193 - moreinfo thanks Hi Tobias, Am Sonntag, dem 17.03.2024 um 14:39 +0100 schrieb Tobias Frost: Hi Jörg, "debcheckout libhx" still gives me 4.17-1 as head. After looking at your repo, I think I should point you to DEP-14 as a recommended git layout for packaging. As the branch name indicates you are using per-package-revision branches: IMHO It makes little sense to have one branch per debian package version/revision; (I had a similiar discussion on vzlogger lately, so to avoid repetiions: #1064344#28) Please clarify how you want to manage the package in git, as this needs to be reflected in d/control's VCS-* fields correctly. (this is now blocking the upload.) I have been using Vincent Driessen's branching model and the corresponding git extension gitflow-avh for at least 7 years with Debian and for a long time at work. The default branch is master and development takes place in the develop branch. The release candidates are managed in the branch release. The extension debian/debian-version is used as a tag during the transfer. The master branch always contains the last published executable version to which the git tag in debian/control points. a> The procedure is described in the README.debian. ok, won't further argue about how to organize your git repo, but I can only tell the Debian perspective: It is breaking expectations as a debcheckout libhx does today NOT give me a state that represents the package in unstable. VCS-Git specifies where the (package) development is happening [1]. [1] Policy 5.6.26 But as I am not using the git repo as base for the sponsoring, lets put that topic to rest. (The current fields say the package is maintained in the default branch of your repo. I see a debian/ directory there, but that one is missing released (it is at 4.17-1, while unstable is at 4.19-1.1) The review is based on the .dsc, timestamped on mentors.d.n 2024-03-17 12:00 d/changelog is *STILL* changing history for the 4.19-1 changelog block. (This issue must be fixed before upload.) I think these were artifacts because my changes to the NMU were not adopted. Has been corrected. No it has not. I expect old changelog entries to be *identical* to the ones that have been uploaded, and they still are not, so I fear we are talking past each other. Please let me know what you think that you have fixed, so that we can spot the different expectations. For my perspective: This is the diff from debian/changelog from the current version in the archives and the dsc uploaded to mentors at 2024-03-17 14:45 You are still rewriting history (second hunk of this diff), this hunk should not exists. diff -Naur archive/libhx-4.19/debian/changelog mentors/libhx-4.23/debian/changelog --- archive/libhx-4.19/debian/changelog 2024-02-28 13:48:09.0 +0100 +++ mentors/libhx-4.23/debian/changelog 2024-03-17 15:23:31.0 +0100 @@ -1,3 +1,17 @@ +libhx (4.23-1) unstable; urgency=medium + + * New upstream release (Closes: #1064734). + * Add debian/.gitignore + * Remove not longer needed debian/libhx-dev.lintian-overrides. + * Fix debian/libhx32t64.lintian-overrides. + * debian/copyright: +- Add 2024 to myself. + * debian/control: +- Readd BD dpkg-dev (>= 1.22.5). + Thanks to Tobias Frost + + -- Jörg Frings-Fürst Sun, 17 Mar 2024 15:23:31 +0100 + libhx (4.19-1.1) unstable; urgency=medium * Non-maintainer upload. @@ -9,11 +23,8 @@ * New upstream release. - Refresh symbols files. - * Remove empty debian/libhx-dev.symbols. - * debian/rules: -- Remove build of libhx-dev.symbols. - -- Jörg Frings-Fürst Sun, 17 Dec 2023 14:44:39 +0100 + -- Jörg Frings-Fürst Tue, 21 Nov 2023 10:41:07 +0100 libhx (4.14-1) unstable; urgency=medium From e82f0d623be16aad21807a7a5089fbfdbbd8ba05 Mon Sep 17 00:00:00 2001 From: Jochen Sprickerhof Date: Sun, 21 Apr 2024 09:03:28 +0200 Subject: [PATCH] Fix old debian/changelog entry --- debian/changelog | 5 - 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/debian/changelog b/debian/changelog index 5471467..e4c0c41 100644 --- a/debian/changelog +++ b/debian/changelog @@ -23,8 +23,11 @@ libhx (4.19-1) unstable; urgency=medium * New upstream release. - Refresh symbols files. + * Remove empty debian/libhx-dev.symbols. + * debian/rules: +- Remove build of libhx-dev.symbols. - -- Jörg Frings-Fürst Tue, 21 Nov 2023 10:41:07 +0100 + -- Jörg Frings-Fürst Sun, 17 Dec 2023 14:44:39 +0100 libhx (
Bug#1068798: bookworm-pu: package fdroidserver/2.2.1-1
Forgot the patch..
diff --git a/debian/changelog b/debian/changelog
index a990dc45..05aabd67 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+fdroidserver (2.2.1-1+deb12u1) bookworm; urgency=medium
+
+ * Team upload.
+ * Add patch to fix security issue in certificate checks
+
+ -- Jochen Sprickerhof Thu, 11 Apr 2024 11:20:33 +0200
+
fdroidserver (2.2.1-1) unstable; urgency=medium
* New upstream version 2.2.1
diff --git a/debian/patches/0004-Fix-signer-certificate-checks.patch b/debian/patches/0004-Fix-signer-certificate-checks.patch
new file mode 100644
index ..8830d788
--- /dev/null
+++ b/debian/patches/0004-Fix-signer-certificate-checks.patch
@@ -0,0 +1,72 @@
+From: "FC (Fay) Stegerman"
+Date: Thu, 11 Apr 2024 11:11:46 +0200
+Subject: Fix signer certificate checks
+
+This fixes the order the signatures are checked to be the same as
+Android does them and monkey patches androguard to handle duplicate
+signing blocks.
+
+This was reported as:
+
+https://www.openwall.com/lists/oss-security/2024/04/08/8
+
+Patch taken from:
+
+https://github.com/obfusk/fdroid-fakesigner-poc/blob/master/fdroidserver.patch
+---
+ fdroidserver/common.py | 33 -
+ 1 file changed, 20 insertions(+), 13 deletions(-)
+
+diff --git a/fdroidserver/common.py b/fdroidserver/common.py
+index bc4265e..bd1a4c8 100644
+--- a/fdroidserver/common.py
b/fdroidserver/common.py
+@@ -3001,28 +3001,35 @@ def signer_fingerprint(cert_encoded):
+
+ def get_first_signer_certificate(apkpath):
+ """Get the first signing certificate from the APK, DER-encoded."""
++class FDict(dict):
++def __setitem__(self, k, v):
++if k not in self:
++super().__setitem__(k, v)
++
+ certs = None
+ cert_encoded = None
+-with zipfile.ZipFile(apkpath, 'r') as apk:
+-cert_files = [n for n in apk.namelist() if SIGNATURE_BLOCK_FILE_REGEX.match(n)]
+-if len(cert_files) > 1:
+-logging.error(_("Found multiple JAR Signature Block Files in {path}").format(path=apkpath))
+-return None
+-elif len(cert_files) == 1:
+-cert_encoded = get_certificate(apk.read(cert_files[0]))
+-
+-if not cert_encoded and use_androguard():
++if use_androguard():
+ apkobject = _get_androguard_APK(apkpath)
+-certs = apkobject.get_certificates_der_v2()
++apkobject._v2_blocks = FDict()
++certs = apkobject.get_certificates_der_v3()
+ if len(certs) > 0:
+-logging.debug(_('Using APK Signature v2'))
++logging.debug(_('Using APK Signature v3'))
+ cert_encoded = certs[0]
+ if not cert_encoded:
+-certs = apkobject.get_certificates_der_v3()
++certs = apkobject.get_certificates_der_v2()
+ if len(certs) > 0:
+-logging.debug(_('Using APK Signature v3'))
++logging.debug(_('Using APK Signature v2'))
+ cert_encoded = certs[0]
+
++if not cert_encoded:
++with zipfile.ZipFile(apkpath, 'r') as apk:
++cert_files = [n for n in apk.namelist() if SIGNATURE_BLOCK_FILE_REGEX.match(n)]
++if len(cert_files) > 1:
++logging.error(_("Found multiple JAR Signature Block Files in {path}").format(path=apkpath))
++return None
++elif len(cert_files) == 1:
++cert_encoded = get_certificate(apk.read(cert_files[0]))
++
+ if not cert_encoded:
+ logging.error(_("No signing certificates found in {path}").format(path=apkpath))
+ return None
diff --git a/debian/patches/series b/debian/patches/series
index ab17e6df..8e2df116 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -1,3 +1,4 @@
debian-java-detection.patch
ignore-irrelevant-test.patch
scanner-tests-need-dexdump.patch
+0004-Fix-signer-certificate-checks.patch
signature.asc
Description: PGP signature
Bug#1068798: bookworm-pu: package fdroidserver/2.2.1-1
Package: release.debian.org Severity: normal Tags: bookworm X-Debbugs-Cc: fdroidser...@packages.debian.org, Hans-Christoph Steiner Control: affects -1 + src:fdroidserver User: release.debian@packages.debian.org Usertags: pu [ Reason ] There was a security problem reported against fdroidserver: https://www.openwall.com/lists/oss-security/2024/04/08/8 [ Impact ] Stable users of fdroidserver running their own repo could be tricked into providing wrongly signed files. [ Tests ] Manual test on F-Droid internal datasets as well as automated tests inside fdroidserver. [ Risks ] Low, the relevant code is only used to extract and verify signatures. [ Checklist ] [X] *all* changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in (old)stable [ ] the issue is verified as fixed in unstable [ Changes ] The patch reorders the code as well as changes the code of the imported androguard library. [ Other info ] Upstream is still working on a long term fix that will be uploaded to unstable later. I agreed with upstream to use use the patch provided in the mail on oss-security already now.
Bug#1065193: RFS: libhx/4.23-1 [RC] -- C library providing queue, tree, I/O and utility functions
Hi Jörg, is there anything I can help with to get libhx updated? (I agree with what Tobias said below.) Cheers Jochen * Tobias Frost [2024-03-17 20:22]: Control: tags -1 moreinfo On Sun, Mar 17, 2024 at 04:57:54PM +0100, Jörg Frings-Fürst wrote: tags 1065193 - moreinfo thanks Hi Tobias, Am Sonntag, dem 17.03.2024 um 14:39 +0100 schrieb Tobias Frost: > Hi Jörg, > > "debcheckout libhx" still gives me 4.17-1 as head. > > After looking at your repo, I think I should point you to DEP-14 > as a recommended git layout for packaging. > As the branch name indicates you are using per-package-revision > branches: > IMHO It makes little sense to have one branch per debian package > version/revision; (I had a similiar discussion on vzlogger lately, > so to avoid repetiions: #1064344#28) > > Please clarify how you want to manage the package in git, as > this needs to be reflected in d/control's VCS-* fields correctly. > (this is now blocking the upload.) I have been using Vincent Driessen's branching model and the corresponding git extension gitflow-avh for at least 7 years with Debian and for a long time at work. The default branch is master and development takes place in the develop branch. The release candidates are managed in the branch release. The extension debian/debian-version is used as a tag during the transfer. The master branch always contains the last published executable version to which the git tag in debian/control points. a> The procedure is described in the README.debian. ok, won't further argue about how to organize your git repo, but I can only tell the Debian perspective: It is breaking expectations as a debcheckout libhx does today NOT give me a state that represents the package in unstable. VCS-Git specifies where the (package) development is happening [1]. [1] Policy 5.6.26 But as I am not using the git repo as base for the sponsoring, lets put that topic to rest. > > (The current fields say the package is maintained in the default branch > of your repo. I see a debian/ directory there, but that one is missing > released (it is at 4.17-1, while unstable is at 4.19-1.1) > > The review is based on the .dsc, timestamped on mentors.d.n > 2024-03-17 12:00 > > d/changelog is *STILL* changing history for the 4.19-1 changelog > block. (This issue must be fixed before upload.) > I think these were artifacts because my changes to the NMU were not adopted. Has been corrected. No it has not. I expect old changelog entries to be *identical* to the ones that have been uploaded, and they still are not, so I fear we are talking past each other. Please let me know what you think that you have fixed, so that we can spot the different expectations. For my perspective: This is the diff from debian/changelog from the current version in the archives and the dsc uploaded to mentors at 2024-03-17 14:45 You are still rewriting history (second hunk of this diff), this hunk should not exists. diff -Naur archive/libhx-4.19/debian/changelog mentors/libhx-4.23/debian/changelog --- archive/libhx-4.19/debian/changelog 2024-02-28 13:48:09.0 +0100 +++ mentors/libhx-4.23/debian/changelog 2024-03-17 15:23:31.0 +0100 @@ -1,3 +1,17 @@ +libhx (4.23-1) unstable; urgency=medium + + * New upstream release (Closes: #1064734). + * Add debian/.gitignore + * Remove not longer needed debian/libhx-dev.lintian-overrides. + * Fix debian/libhx32t64.lintian-overrides. + * debian/copyright: +- Add 2024 to myself. + * debian/control: +- Readd BD dpkg-dev (>= 1.22.5). + Thanks to Tobias Frost + + -- Jörg Frings-Fürst Sun, 17 Mar 2024 15:23:31 +0100 + libhx (4.19-1.1) unstable; urgency=medium * Non-maintainer upload. @@ -9,11 +23,8 @@ * New upstream release. - Refresh symbols files. - * Remove empty debian/libhx-dev.symbols. - * debian/rules: -- Remove build of libhx-dev.symbols. - -- Jörg Frings-Fürst Sun, 17 Dec 2023 14:44:39 +0100 + -- Jörg Frings-Fürst Tue, 21 Nov 2023 10:41:07 +0100 libhx (4.14-1) unstable; urgency=medium signature.asc Description: PGP signature
Bug#1067934: jameica: Jameica cannot load plugins | service "database" not found
Control: severity -1 normal Hi Ferdinand, * Ferdinand Rau [2024-03-29 08:51]: * What led up to the situation? The plugin Hibiscus, arguably the most important plugin for jameica, was updated. Version 2.10.15 used to work fine and still does work fine with the jameica packages in Debian Bookworm and Trixie. Versions 2.10.16 and the current version 2.10.17 do not work with either Debian package, but do work fine with the latest version of jameica (2.10.4) downloaded from the upstream source willuhn.de: https://www.willuhn.de/products/hibiscus/download.php Plugin-updates/installs were performed using the integrated plugin management of jameica. That is expected, software in stable is only supported with other software in stable, i.e. with the Hibiscus plugin in stable. Staying with hibiscus 2.10.15 is not an option in the long term, because updates introduce bug fixes and, most importantly, fix access for several German banks that changed their online access to different servers and protocols. Without the update to hibiscus 2.10.17, lots of bank accounts are inaccessible for the users. This is too unspecific to call for an update in stable. From my understanding all updates are configuration changes that can be done with the stable version as well. Downgrading the bug accordingly. Note that Debian stable updates have a strict policy noted here: https://lists.debian.org/debian-devel-announce/2019/08/msg0.html * Ferdinand Rau [2024-03-29 12:41]: The upstream author suggests that the issue may be related to the "H2 Database Engine" (Debian package: jameica-h2database) in a similar, but not identical case here: https://homebanking-hilfe.de/forum/topic.php?p=170111#real170111 Upstream H2 is at version 2.2.224, whereas Debian is at 1.4.197-7, which is approx. six years old. An update of jameica-h2database will likely fix this issue? Sadly no, while upstream H2 is at 2.2.224 and the Debian package (libh2-java) is at 2.2.220, Jameica ships 1.4.199, this is why the jameica-h2database was created in the first first place. I will update it to 1.4.199 together with Jameica in unstable. Cheers Jochen signature.asc Description: PGP signature
Bug#1067444: FileNotFoundError: [Errno 2] ... /usr/lib/python3/dist-packages/bugwarrior/docs/configuration.rst
Control: severity -1 normal Hi Andreas, * Andreas Beckmann [2024-03-24 10:23]: On Thu, 21 Mar 2024 18:39:00 +0100 Jochen Sprickerhof wrote: dpkg -S configuration.rst bugwarrior: /usr/share/doc/bugwarrior/html/_sources/common_configuration.rst.txt bugwarrior: /usr/share/doc/bugwarrior/html/_sources/configuration.rst.txt The second one is the same file. I will push new version with a fixed path. Does the package work with /usr/share/doc excluded from installation? https://www.debian.org/doc/debian-policy/ch-docs.html#additional-documentation. "Packages must not require the existence of any files in /usr/share/doc/ in order to function. [6] Any files that are used or read by programs but are also useful as stand alone documentation should be installed elsewhere, such as under /usr/share/package/, and then included via symbolic links in /usr/share/doc/package." It works fine. The only missing bit is printing an example configuration if the config is wrong, which I think is not RC and fine if the documentation is not installed. Thus downgrading the bug. Cheers Jochen signature.asc Description: PGP signature
Bug#1067444: FileNotFoundError: [Errno 2] ... /usr/lib/python3/dist-packages/bugwarrior/docs/configuration.rst
Hi Tj,
* Tj [2024-03-21 16:08]:
Severity: grave
Justification: renders package unusable
I disagree here. Any reason why you did it?
With a fresh install and manually creating the user's configuration file
I hit this error. The path reported seems to indicate the package is not
shipping the file mentioned. I tried moving the user config directory and
saw the error caused by it being missing, put it back, and hit this package
config file issue agian.
$ bugwarrior-pull
CRITICAL:bugwarrior.command:Could not load configuration. Maybe you have not
created a configuration file.
FileNotFoundError: [Errno 2] No such file or directory:
'/home/tj/.config/bugwarrior/bugwarriorrc'
$ mv ~/.config/bugwarrior{.bak,}
$ bugwarrior-pull
CRITICAL:bugwarrior.command:Could not load configuration. Maybe you have not
created a configuration file.
FileNotFoundError: [Errno 2] No such file or directory:
'/usr/lib/python3/dist-packages/bugwarrior/docs/configuration.rst'
$ cat ~/.config/bugwarrior/bugwarriorrc
[general]
targets = debianbts my_github
Delete my_github here, as you don't have a section on it.
[debianbts]
service = bts
bts.email = deb...@iam.tj
Add bts.udd = True to get your bugs ;).
$ dpkg -S docs/configuration.rst
dpkg-query: no path found matching pattern *docs/configuration.rst*
$ apt-file search docs/configuration.rst
$
dpkg -S configuration.rst
bugwarrior: /usr/share/doc/bugwarrior/html/_sources/common_configuration.rst.txt
bugwarrior: /usr/share/doc/bugwarrior/html/_sources/configuration.rst.txt
The second one is the same file. I will push new version with a fixed
path.
Cheers Jochen
signature.asc
Description: PGP signature
Bug#1063096: python3-webview: proxy_tools dependency not found
Hi Jeremy, you uploaded python3-webview recently which seem to be broken (see below). As I currently don't use the package, are you interested in taking over maintainership? Cheers Jochen * David Purton [2024-02-05 13:18]: Package: python3-webview Version: 4.4.1+dfsg-1 Severity: important Dear Maintainer, With the upgrade to python3-webview from 3.3.5 to 4.4.1, the package is no longer usable. The package is unable to find the module proxy_tools. For example, a simple script using webview fails: --- #!/bin/python3 import webview webview.create_window(title = 'Captive Portal Login', url = 'http://network-test.debian.org/nm', width = 1024, height = 768, min_size = (1024, 768), resizable = False) webview.start() --- The error is: --- Traceback (most recent call last): File "/home/user/bin/captiveportal.py", line 3, in import webview File "/usr/lib/python3/dist-packages/webview/__init__.py", line 23, in from proxy_tools import module_property ModuleNotFoundError: No module named 'proxy_tools' --- Presumably, python3-proxy_tools needs to be packaged and added to the dependencies of python3-webview. Thanks! David -- System Information: Debian Release: trixie/sid APT prefers testing APT policy: (500, 'testing'), (400, 'unstable'), (300, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 6.6.13-amd64 (SMP w/8 CPU threads; PREEMPT) Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8), LANGUAGE=en_AU:en Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages python3-webview depends on: ii gir1.2-webkit2-4.1 2.42.4-1 ii python3 [python3-supported-min] 3.11.6-1 ii python3-bottle 0.12.25-1 ii python3-gi 3.46.0-3 ii python3-gi-cairo 3.46.0-3 ii python3-typing-extensions4.7.1-2 python3-webview recommends no packages. python3-webview suggests no packages. -- no debconf information signature.asc Description: PGP signature
Bug#1066409: Linker fails to find libraries in unstable but succeeds in testing
Hi Andreas, * Andreas Tille [2024-03-15 07:31]: Hi, thanks to the next round of Lucas' FTBFS QA rebuilds (at least) one package of the R pkg team is affected by some strange linker issue #1066409 r-cran-v8: FTBFS: ld: cannot find -lv8: No such file or directory which boils down to[1] g++ -std=gnu++17 -shared -L/usr/lib/R/lib -Wl,-z,relro -o V8.so RcppExports.o bindings.o -lv8 -lv8_libplatform -L/usr/lib/R/lib -lR /usr/bin/ld: cannot find -lv8: No such file or directory /usr/bin/ld: cannot find -lv8_libplatform: No such file or directory The Build-Depends libnode-dev provides both libraries and when I try to build the package under testing all is fine. Is there any linker issue involved that might be introduced in unstable? I guess that's the same as #1066399. libnode-dev: libv8.so -> libnode.so libnode.so -> libnode.so.108t64 But libnode.so.108t64 does not exist Cheers Jochen signature.asc Description: PGP signature
Bug#1064139: Bug #1064139 ogre-1.12: FTBFS: error: ‘BuildFontAtlas’ is not a member of ‘ImGuiFreeType’
Hi Flavien, * Flavien Bridault [2024-03-07 08:07]: I just cloned the repository to open the MR but then I realized there is already a branch opened two weeks ago exactly with the fix I proposed... So I guess it is on its way ? I guess you mean: https://salsa.debian.org/games-team/ogre/-/tree/fix_imgui That was my try to fix it but it fails later on in the build (as can be seen in CI). Help appreciated. Cheers Jochen signature.asc Description: PGP signature
Bug#1064882: Wrong order of changelog entries
Package: apt-listchanges Version: 4.4 Severity: normal Hi Jonathan, I just found that the changelog entries for cryptsetup are in the wrong order: $ mmdebstrap --include=cryptsetup-bin,apt-listchanges \ --chrooted-customize-hook="sed -i 's/testing/experimental/' \ /etc/apt/sources.list; apt update; apt install apt-listchanges/experimental; \ sed -i 's/news/both/' /etc/apt/listchanges.conf; \ sed -i 's/experimental/unstable/' /etc/apt/sources.list; apt update; \ apt upgrade --yes" testing /dev/null [..] apt-listchanges: Changelogs --- expat (2.6.0-1) unstable; urgency=high * New upstream release: - fixes CVE-2023-52425: fix quadratic runtime issues with big tokens that can cause denial of service (closes: #1063238), - fixes CVE-2023-52426: fix billion laughs attacks for users compiling without XML_DTD defined (which is not common) (closes: #1063240). -- Laszlo Boszormenyi (GCS) Tue, 06 Feb 2024 22:00:26 +0100 lvm2 (2.03.22-1) unstable; urgency=medium * New upstream release. -- Bastian Blank Sat, 24 Feb 2024 16:41:00 +0100 cryptsetup (2:2.7.0-1+exp) experimental; urgency=medium * New upstream release. [ Guilhem Moulin ] * d/control: cryptsetup Depends: Bump minimum cryptsetup-bin version to 2.7~. * d/control: Build-Depends: Replace pkg-config with pkgconf. * d/cryptsetup-suspend.lintian-overrides: Remove alien tag. * d/cryptsetup.lintian-overrides: Remove unused overrides. * d/cryptsetup.lintian-overrides: Add override ‘conflicts-with-version cryptsetup-nuke-password’. * d/t/cryptroot-*: Fix DEP-8 tests with QEMU 8.2. [ Helmut Grohne ] * /lib/cryptsetup/askpass: coordinated move to /usr for DEP17. (Closes: #1060270) -- Guilhem Moulin Mon, 26 Feb 2024 11:57:19 +0100 cryptsetup (2:2.7.0-1) unstable; urgency=medium * Upload to unstable. * Revert "d/gbp.conf: Set ‘debian-branch = debian/experimental’." * Revert "Use OpenSSL's own argon2 implementation" (since sid doesn't have OpenSSL 3.2 yet). * Revert "d/control: cryptsetup Depends: Bump minimum cryptsetup-bin version to 2.7~." * Revert "d/cryptsetup.lintian-overrides: Ignore ‘conflicts-with-version cryptsetup-nuke-password’." * Revert "d/cryptsetup.lintian-overrides: Remove unused overrides." * Revert "/lib/cryptsetup/askpass: coordinated move to /usr for DEP17" -- Guilhem Moulin Mon, 26 Feb 2024 12:50:46 +0100 cryptsetup (2:2.7.0~rc1-1) experimental; urgency=medium * New upstream release candidate. * d/gbp.conf: Set ‘debian-branch = debian/experimental’. * Add new DEP-8 test to check crypto backend flags. (And whether system libargon2 is used.) * Use OpenSSL's own argon2 implementation rather than libargon2. This drops libargon2 from (Build-)Depends and bumps the minimum required OpenSSL version to 3.2. -- Guilhem Moulin Wed, 20 Dec 2023 18:28:36 +0100 cryptsetup (2:2.7.0~rc0-2) experimental; urgency=medium Rebuild for experimental. -- Guilhem Moulin Tue, 05 Dec 2023 21:11:42 +0100 I.e. 2:2.7.0-1+exp is listed before 2:2.7.0-1 whereas /usr/share/doc/cryptsetup-bin/changelog.Debian.gz lists them the other way round (and 2:2.7.0-1 is actually installed). Cheers Jochen -- Package-specific info: ==> /etc/apt/listchanges.conf <== [apt] frontend=pager which=news email_address=root email_format=text confirm=false headers=false reverse=false save_seen=/var/lib/apt/listchanges capture_snapshots=auto snapshot_dir=/var/lib/apt/listchanges-snapshots ==> /etc/apt/listchanges.conf.d/jo-tools.conf <== [apt] which=both email_address=none headers=true reverse=true no_network=false -- System Information: Debian Release: trixie/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 6.6.15-amd64 (SMP w/8 CPU threads; PREEMPT) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages apt-listchanges depends on: ii apt2.7.12 ii debconf [debconf-2.0] 1.5.86 ii python33.11.6-1 ii python3-apt2.7.6 ii python3-debconf1.5.86 ii sensible-utils 0.0.22 ii ucf3.0043+nmu1 apt-listchanges recommends no packages. Versions of packages apt-listchanges suggests: ii chromium [www-browser] 122.0.6261.57-1 pn default-mta | mail-transport-agent ii firefox [www-browser] 123.0-1 ii lynx [www-browser] 2.9.0rel.0-2 ii python3-gi 3.47.0-3 ii w3m [www-browser] 0.5.3+git20230121-2+b2 pn x-terminal-emulator -- debconf information: * apt-listchanges/no-network: false * apt-listchanges/confirm: false * apt-listchanges/email-format: text * apt-listchanges/which: news * apt-listchanges/frontend: pager * apt-listchanges/reverse: false *
Bug#1064734: libhx/hxtools: FTBFS: ./smath/./smath/graph-fanout.c:263:(.text.startup+0x139): undefined reference to `BUILD_BUG_ON_EXPR'
Control: reassign -1 src:libhx 4.19-1 Control: retitle -1 Please include upstream patch Control: affects -1 src:hxtools Hi Jörg, can you please upload a new libhx either containing this upstream patch or the new upstream release to unbreak hxtools? https://codeberg.org/jengelh/libhx/commit/e55e06348d1e5b531c8bffe435bddc31e2010ab1 Thanks! Jochen * Lucas Nussbaum [2024-02-25 20:27]: Source: hxtools Version: 20231224-2 Severity: serious Justification: FTBFS Tags: trixie sid ftbfs User: lu...@debian.org Usertags: ftbfs-20240224 ftbfs-trixie Hi, During a rebuild of all packages in sid, your package failed to build on amd64. Relevant part (hopefully): /usr/bin/ld: graph-fanout.o: in function `fanout_get_options': ./smath/./smath/graph-fanout.c:263:(.text.startup+0x139): undefined reference to `BUILD_BUG_ON_EXPR' collect2: error: ld returned 1 exit status The full build log is available from: http://qa-logs.debian.net/2024/02/24/hxtools_20231224-2_unstable.log All bugs filed during this archive rebuild are listed at: https://bugs.debian.org/cgi-bin/pkgreport.cgi?tag=ftbfs-20240224;users=lu...@debian.org or: https://udd.debian.org/bugs/?release=na=ign=7=7=only=ftbfs-20240224=lu...@debian.org=1=1=1=1#results A list of current common problems and possible solutions is available at http://wiki.debian.org/qa.debian.org/FTBFS . You're welcome to contribute! If you reassign this bug to another package, please mark it as 'affects'-ing this package. See https://www.debian.org/Bugs/server-control#affects If you fail to reproduce this, please provide a build log and diff it with mine so that we can identify if something relevant changed in the meantime. signature.asc Description: PGP signature
Bug#1063777: Error: pg_wrapper: pgbench was not found in /usr/lib/postgresql/16/bin
Package: postgresql-client Version: 16+257 Severity: normal Hi Christoph, on a fresh system: # apt install postgresql-client $ pgbench Error: pg_wrapper: pgbench was not found in /usr/lib/postgresql/16/bin The executable is in postgresql-16. So I would propose to either move /usr/bin/pgbench to postgresql or /usr/lib/postgresql/16/bin/pgbench to postgresql-client-16. Cheers Jochen -- System Information: Debian Release: trixie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 6.6.13-amd64 (SMP w/8 CPU threads; PREEMPT) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages postgresql-client depends on: ii postgresql-client-16 16.2-1 postgresql-client recommends no packages. postgresql-client suggests no packages. -- no debconf information
Bug#1063677: experimental version does not sho binNMU changelogs
Package: apt-listchanges Version: 4.4 Severity: normal As title says. -- Package-specific info: ==> /etc/apt/listchanges.conf <== [apt] frontend=pager which=news email_address=root email_format=text confirm=false headers=false reverse=false save_seen=/var/lib/apt/listchanges capture_snapshots=auto snapshot_dir=/var/lib/apt/listchanges-snapshots ==> /etc/apt/listchanges.conf.d/jo-tools.conf <== [apt] which=both email_address=none headers=true reverse=true no_network=false -- System Information: Debian Release: trixie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 6.6.13-amd64 (SMP w/8 CPU threads; PREEMPT) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages apt-listchanges depends on: ii apt2.7.10 ii debconf [debconf-2.0] 1.5.85 ii python33.11.6-1 ii python3-apt2.7.5 ii python3-debconf1.5.85 ii sensible-utils 0.0.22 ii ucf3.0043+nmu1 apt-listchanges recommends no packages. Versions of packages apt-listchanges suggests: ii chromium [www-browser] 121.0.6167.160-1 pn default-mta | mail-transport-agent ii firefox [www-browser] 122.0.1-1 ii lynx [www-browser] 2.9.0rel.0-2 ii python3-gi 3.46.0-3 ii w3m [www-browser] 0.5.3+git20230121-2+b2 pn x-terminal-emulator -- debconf information: * apt-listchanges/frontend: pager * apt-listchanges/confirm: false * apt-listchanges/email-format: text * apt-listchanges/headers: false * apt-listchanges/email-address: root * apt-listchanges/no-network: false * apt-listchanges/save-seen: true * apt-listchanges/reverse: false * apt-listchanges/which: news
Bug#1063516: transition: pcl
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition X-Debbugs-Cc: p...@packages.debian.org Control: affects -1 + src:pcl Hi release team, I would like to transition to the new pcl version. The auto generated ben file looks fine and the reverse build dependency builds fine. Cheers Jochen
Bug#1063410: ros-bloom's autopkg tests fail with Python 3.12
Control: tag -1 moreinfo Hi Matthias, * Matthias Klose [2024-02-07 20:55]: Package: src:ros-bloom Version: 0.11.2-6 Severity: important Tags: sid trixie ftbfs User: debian-pyt...@lists.debian.org Usertags: python3.12 ros-bloom's autopkg tests fail with Python 3.12 [...] 578s /usr/lib/python3/dist-packages/rosdistro/distribution.py:35: in 578s from .manifest_provider.git import git_manifest_provider, git_source_manifest_provider 578s /usr/lib/python3/dist-packages/rosdistro/manifest_provider/git.py:44: in 578s from rosdistro.vcs import Git, ref_is_hash 578s /usr/lib/python3/dist-packages/rosdistro/vcs.py:39: in 578s from distutils.version import LooseVersion 578s E ModuleNotFoundError: No module named 'distutils' This looks like the same as #1061840 and was already fixed in ros-bloom and ros-rosdistro. Can you please retry with the versions in testing? I can't reproduce this and debci is also all green. Cheers Jochen signature.asc Description: PGP signature
Bug#1061771: Can't hear other people on meet.google.com
Package: chromium Version: 121.0.6167.85-1 Severity: normal Hi, I can't hear others on meet.google.com, though I hear the connected ping and others seem to hear me as well. Also Jitsi works. Downgrading to the version in testing makes it work again. Cheers Jochen -- System Information: Debian Release: trixie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 6.6.13-amd64 (SMP w/8 CPU threads; PREEMPT) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages chromium depends on: ii chromium-common121.0.6167.85-1 ii libasound2 1.2.10-3 ii libatk-bridge2.0-0 2.50.0-1+b1 ii libatk1.0-02.50.0-1+b1 ii libatomic1 14-20240127-1 ii libatspi2.0-0 2.50.0-1+b1 ii libc6 2.37-14 ii libcairo2 1.18.0-1+b1 ii libcups2 2.4.7-1+b1 ii libdbus-1-31.14.10-4 ii libdouble-conversion3 3.3.0-1+b1 ii libdrm22.4.120-1 ii libevent-2.1-7 2.1.12-stable-8 ii libexpat1 2.5.0-2+b2 ii libflac12 1.4.3+ds-2+b1 ii libfontconfig1 2.14.2-6+b1 ii libfreetype6 2.13.2+dfsg-1+b1 ii libgbm123.3.4-1 ii libgcc-s1 14-20240127-1 ii libglib2.0-0 2.78.3-2 ii libgtk-3-0 3.24.40-2 ii libjpeg62-turbo1:2.1.5-2+b2 ii libjsoncpp25 1.9.5-6+b2 ii liblcms2-2 2.14-2 ii libminizip11:1.3.dfsg-3+b1 ii libnspr4 2:4.35-1.1 ii libnss32:3.96.1-1 ii libopenh264-7 2.4.0+dfsg-1 ii libopenjp2-7 2.5.0-2+b2 ii libopus0 1.4-1 ii libpango-1.0-0 1.51.0+ds-4 ii libpng16-161.6.40-3 ii libpulse0 16.1+dfsg1-3 ii libsnappy1v5 1.1.10-1 ii libstdc++6 14-20240127-1 ii libwebp7 1.3.2-0.3 ii libwebpdemux2 1.3.2-0.3 ii libwebpmux31.3.2-0.3 ii libwoff1 1.0.2-2 ii libx11-6 2:1.8.7-1 ii libxcb11.15-1 ii libxcomposite1 1:0.4.5-1 ii libxdamage11:1.1.6-1 ii libxext6 2:1.3.4-1+b1 ii libxfixes3 1:6.0.0-2 ii libxkbcommon0 1.6.0-1 ii libxml22.9.14+dfsg-1.3+b2 ii libxnvctrl0525.125.06-1 ii libxrandr2 2:1.5.2-2+b1 ii libxslt1.1 1.1.35-1 ii zlib1g 1:1.3.dfsg-3+b1 Versions of packages chromium recommends: ii chromium-sandbox 121.0.6167.85-1 Versions of packages chromium suggests: pn chromium-driver pn chromium-l10n pn chromium-shell Versions of packages chromium-common depends on: ii libc6 2.37-14 ii libjsoncpp25 1.9.5-6+b2 ii libstdc++614-20240127-1 ii libx11-6 2:1.8.7-1 ii libxnvctrl0 525.125.06-1 ii x11-utils 7.7+6 ii xdg-utils 1.1.3-4.1 ii zlib1g1:1.3.dfsg-3+b1 Versions of packages chromium-common recommends: ii chromium-sandbox 121.0.6167.85-1 ii fonts-liberation 1:2.1.5-3 ii libgl1-mesa-dri23.3.4-1 pn libu2f-udev pn notification-daemon pn system-config-printer pn upower Versions of packages chromium-sandbox depends on: ii libc6 2.37-14 -- no debconf information
Bug#1061365: RM: ros-python-qt-binding -- ROM; No longer used in Debian and depends on broken sip4
Package: ftp.debian.org Severity: normal User: ftp.debian@packages.debian.org Usertags: remove X-Debbugs-Cc: ros-python-qt-bind...@packages.debian.org Control: affects -1 + src:ros-python-qt-binding
Bug#1061364: RM: ros-wstool -- ROM; deprecated upstream in favour of vcstool
Package: ftp.debian.org Severity: normal User: ftp.debian@packages.debian.org Usertags: remove X-Debbugs-Cc: ros-wst...@packages.debian.org Control: affects -1 + src:ros-wstool
Bug#1061363: RM: ros-rosinstall -- ROM; deprecated upstream in favour of vcstool
Package: ftp.debian.org Severity: normal User: ftp.debian@packages.debian.org Usertags: remove X-Debbugs-Cc: ros-rosinst...@packages.debian.org Control: affects -1 + src:ros-rosinstall
Bug#1057867: Acknowledgement (python-matrix-nio: New version 0.23 available)
* Martin [2024-01-08 09:05]: To me, it looks like the package builds and works with both jsonschema 4.10.3-1 and 4.19.2-1, despite the version in pyproject.toml. But maybe I'm just lucky with my use case? Looks like there was no real need to bump the version. I've uploaded a new package to unstable. Cheers Jochen signature.asc Description: PGP signature
Bug#1057867: Acknowledgement (python-matrix-nio: New version 0.23 available)
Hi Martin, * Martin [2024-01-07 10:52]: Dears, would you mind an NMU 0.23-0.1? I prepared it for my own use anyway, so it's no extra-work for me. The new version needs jsonschema = "^4.14.0" which is only in experimental and blocked by #1055516. Did you find a work around for that? Cheers Jochen signature.asc Description: PGP signature
Bug#999989: poco 1.1 uses PCRE3, Mumble 1.5 depends on poco
* Chris Knadle [2024-01-07 00:29]: The main thing I'd like to understand is how to do coordinate the transition (i.e. the release) with the Release Team. I found some hints about that here: https://www.debian.org/doc/manuals/debmake-doc/ch05.en.html#lib-trans The wiki page linked there seems correct. Please ask if you have more specific questions. There is also Debian Mentors to help: https://wiki.debian.org/DebianMentors Cheers Jochen signature.asc Description: PGP signature
Bug#999989: poco 1.2 uses PCRE2, Mumble 1.5 depends on poco
* Chris Knadle [2024-01-02 16:53]: The way to orphan a package is to do an upload and setting the maintainer to be . Until that's done the package ends up in maintainership limbo. See the bottom of Policy 3.3, and Developer's Reference section 5.9.4. Agreed but I think that is something for the Maintainer: to do, who seems to be active in Debian, otherwise. I may be able to prepare an updated version to upload as an NMU (i.e. it would be Debian version 1.13.0-0.1), but I can't take over maintaining this package long-term because I don't use it and am not familiar with it -- I only maintain a package that has it as a required build dependency. I also haven't maintained a library yet, but I've been in this situation of needing to upload a newer version of a library before so I might be able to figure out what's required to prepare an upload. It would be interesting to upload a new version as an NMU with the maintainer marked as but strangely that seems to be what's called for here. Feel free to ask if you have questions regarding maintaining a library. Cheers Jochen signature.asc Description: PGP signature
Bug#1041275: sbuild: Using eatmydata with the unshare backend
Hi Andrea, * Andrea Pappacoda [2023-07-16 21:35]: One thing that is a bit less nice than schroot, though, is the inability of the unshare backend to use eatmydata to speed up package builds. Not only speed, but I also fear that continuous (and unnecessary) disk writes may degrade my disk's lifespan ever so slightly. Is there a way possible to use eatmydata with the unshare backend? So far I tried to start the build with `eatmydata sbuild`, but it doesn't seem to work. The eatmydata package is installed in the tarball. Given enough RAM you can use a tmpfs like this: $unshare_tmpdir_template = '/dev/shm/tmp.sbuild.XX'; According to my tests that was even faster then eatmydata (and adding eatmydata did not improve it. Cheers Jochen signature.asc Description: PGP signature
Bug#999989: poco 1.2 uses PCRE2, Mumble 1.5 depends on poco
Hi Chris, * Chris Knadle [2024-01-02 03:06]: Can the poco library be updated? Can I help in some way? poco is basically orphaned, as I dropped myself from Uploaders in git and did not hear from the other maintainers for some time. The best way to help is to step up as a maintainer and update it ;). Unless the Poco library can be updated the only way to save Mumble will be to introduce an epoch in the package version to upload the now well outdated mumble 1.3.4 again which upstream cannot support anymore. Nit: please don't use epochs for that, also see Policy 5.6.12.1. Cheers Jochen signature.asc Description: PGP signature
Bug#1042244: Bug#1056419: [Help] Re: python-future: FTBFS: dh_auto_test: error: pybuild --test --test-pytest -i python{version} -p 3.11 returned exit code 13
Hi Andreas, * Andreas Tille [2023-12-11 16:42]: Control: tags -1 help [Bug #1056419 in CC since the issue seems to be caused by python-future] Hi Vincent, I tried to upgrade python-future to the latest upstream version in the hope that this would solve the issue reported in bug #1042244. Unfortunately this is not the case and now with Python3.12 we also have to deal with the removal of imp (which affects bug #1056419). I'd like to ask for help on debian-python list since I'm pretty overworked with other stuff. Please also review my rude patch[1] to hack around a shinx issue. It would be great to have some better solution here. You can find a full build log of the latest upstream version in Salsa CI[2]. I think the right thing here is to package the new uncertainties version which drops the past import: https://github.com/lebigot/uncertainties/releases/tag/3.1.7 Also we should probably get rid of python-future at some point. Cheers Jochen signature.asc Description: PGP signature
Bug#1057977: RM: python-pcl -- ROM; no longer maintained upstream
Package: ftp.debian.org Severity: normal User: ftp.debian@packages.debian.org Usertags: remove X-Debbugs-Cc: python-...@packages.debian.org Control: affects -1 + src:python-pcl ..also now rdeps, low popcon and FTBFS.
Bug#1056866: python-pcl: ftbfs with cython 3.0.x
Hi Bas, * Sebastiaan Couwenberg [2023-12-10 12:22]: Control: tags -1 patch On Sun, 26 Nov 2023 10:06:32 + Matthias Klose wrote: If the package cannot be built with cython 3.0.5, please change the build dependency from cython3 to cython3-legacy (available now in unstable). There is no replacement for cython3-dbg. The attached patch switches to cython3-legacy as the short term workaround. Feel free to NMU (or team upload) python-pcl. Honestly I'm thinking of removing it form the archive as upstream is no longer maintained and I don't have a use anymore either (it also has a low popcon and no rdeps). Do you want to maintain it? Cheers Jochen signature.asc Description: PGP signature
Bug#1056385: in unshare mode, ischroot returns false
* Johannes Schauer Marin Rodrigues [2023-11-24 20:57]: this is is only invoked for --chrooted-*-hooks but CLONE_NEWNS is also what mmdebstrap unshares by default here: Ah, I only tested with your: --chroot-setup-commands='ischroot && echo "is chroot" || echo "is not chroot" Example. This is already done here: https://sources.debian.org/src/sbuild/0.85.4/lib/Sbuild/ChrootUnshare.pm/#L279 What made you think that CLONE_NEWNS was responsible? It should be unshared for both sbuild and mmdebstrap hooks. I think it is due to mmdebstrap having extra process and maybe doing the CLONE_NEWNS in a different process? Since the problem does not happen with mmdebstrap, I think this might just be a bug in sbuild. I also suspect that your thoughts about PID 1 go into the right direction because sbuild and mmdebstrap set up the unshared processes slightly differently. Look at the complex dance of processes that mmdebstrap does: https://sources.debian.org/src/mmdebstrap/1.4.0-1/mmdebstrap/#L486 I think that is part of why it works with mmdebstrap. Compare: $ sbuild -d unstable --starting-build-commands='ps auxf' --add-depends=procps hello USER PID %CPU %MEMVSZ RSS TTY STAT START TIME COMMAND root 1 0.0 0.0 4536 2816 ?S+ 20:17 0:00 /sbin/runuser -u root -- sh -c cd "$1" && shift && "$@" -- /build/package /bin/sh -c ps auxf root 41 0.0 0.0 2580 1408 ?S+ 20:17 0:00 sh -c cd "$1" && shift && "$@" -- /build/package /bin/sh -c ps auxf root 42 0.0 0.0 2580 1408 ?S+ 20:17 0:00 \_ /bin/sh -c ps auxf root 43 0.0 0.0 8116 4096 ?R+ 20:17 0:00 \_ ps auxf and: $ mmdebstrap --chrooted-customize-hook='ps auxf' --variant=essential --include=procps unstable /dev/null USER PID %CPU %MEMVSZ RSS TTY STAT START TIME COMMAND root 1 0.5 0.1 32616 25252 ?S+ 20:15 0:00 /usr/bin/perl /usr/bin/mmdebstrap --chrooted-customize-hook=ps auxf --variant=essential --include=procps unstable /dev/null root1716 0.0 0.1 32616 23956 ?S+ 20:15 0:00 /usr/bin/perl /usr/bin/mmdebstrap --chrooted-customize-hook=ps auxf --variant=essential --include=procps unstable /dev/null root1717 0.0 0.0 2580 1536 ?S+ 20:15 0:00 \_ sh -c ps auxf root1718 0.0 0.0 8116 3968 ?R+ 20:15 0:00 \_ ps auxf And note that for mmdebstrap PID 1 has a different mountinfo as PID 1716 and below. Cheers Jochen signature.asc Description: PGP signature
Bug#1056385: in unshare mode, ischroot returns false
Hi josch, * Johannes Schauer Marin Rodrigues [2023-11-22 07:22]: steps to reproduce: --chroot-setup-commands='ischroot && echo "is chroot" || echo "is not chroot" in contrast to mmdebstrap unshare mode, the contents of /proc/1/mountinfo and /proc/self/mountinfo are the same in sbuild. See https://sources.debian.org/src/debianutils/latest/ischroot.c/ The difference is due to mmdebstrap opening a extra namespace here: https://sources.debian.org/src/mmdebstrap/1.4.0-1/mmdebstrap/#L1707 I tried to adding an unshare --mount to sbuild here but did not manage: https://sources.debian.org/src/sbuild/0.85.4/lib/Sbuild/ChrootUnshare.pm/#L324 Maybe you have an idea where to put it? While at it I also researched a bit into ischroot: # How does ischroot work: ischroot assumes that a chroot changes the mountinfo file and that the one of PID 1 is not chrooted. This is true for a chroot set up by schroot for example. sbuild+unshare instead also mounts a new proc and thus it is becoming PID 1, or rather the runuser in ChrootUnshare.pm. So one way around this would be to mount the outside proc, as in: - mount -t proc proc \"\$rootdir/proc\"; + mount -o rbind /proc \"\$rootdir/proc\"; in: https://sources.debian.org/src/sbuild/0.85.4/lib/Sbuild/ChrootUnshare.pm/#L323 But that means that the package build in sbuild can list outside processes which seems suboptimal. # How is ischroot used I looked at the results at: https://codesearch.debian.net/search?q=ischroot And it is used rather seldom (besides some testing code): https://codesearch.debian.net/search?q=ischroot+package%3A%5CQdebootstrap%5CE https://codesearch.debian.net/search?q=ischroot+package%3A%5CQglibc%5CE https://codesearch.debian.net/search?q=ischroot+package%3A%5CQsysvinit%5CE https://codesearch.debian.net/search?q=ischroot+package%3A%5CQcdist%5CE https://codesearch.debian.net/search?q=ischroot+package%3A%5CQmini-buildd%5CE mini-buildd btw. also uses systemd-detect-virt as an alternative (though not with --chroot). And there is at least one package that does the same as ischroot manually: https://codesearch.debian.net/search?q=ischroot+package%3A%5CQsalt%5CE On the other hand it considered second-class in debianutils: https://sources.debian.org/src/debianutils/5.14/CONTRIBUTING/?hl=28#L28 So maybe it should be replaced by systemd-detect-virt but that compares the inodes of /proc/1/root and / which seems even more brittle as /proc/1/root is not readable by everyone and seems to have the same issues as ischroot, otherwise. # telinit behaviour From #debian-bootstrap I understood that this is actually an issue during cross compiling something when `libc6.postinst configure` is called resulting in an endless loop of telinit. There are two implementations of telinit in Debian. The one in sysvinit-core does not seem to trigger this behaviour, whereas the one in systemd-sysv does seems to wait forever. On the other hand telinit(8) from systemd-sysv states that it should not be used anymore. So maybe libc6.postinst should use a different interface and/or do something else to check if PID 1 is actually an init? Or should sbuild run some init as PID 1? Cheers Jochen signature.asc Description: PGP signature
Bug#1056070: hibiscus: Please package new version
Hi Tony, * tony mancill [2023-11-18 12:18]: Since this is a team-maintained package, I prepared an update; no packaging changes required. I have uploaded it to DELAYED-5 out of deference to Jochen, who has performed all of the uploads prior to now. Jochen, let me know if you would like me to dcut my upload. Otherwise, I will the push the updated branches to the packaging repo. Thanks for working on it! Did you also update hbci4java to the version used by hibiscus? If yes, then feel free change the delay to 0. Otherwise I can take care of both in the next days. Cheers Jochen signature.asc Description: PGP signature
Bug#1054536: cyrus-sasl2 FTBFS: sphinx failure: AttributeError("'str' object has no attribute 'attributes'")
Hi Helmut,
* Helmut Grohne [2023-10-25 11:47]:
Source: cyrus-sasl2
Version: 2.1.28+dfsg1-3
Severity: serious
Tags: ftbfs
User: helm...@debian.org
Usertags: rebootstrap
cyrus-sasl2 fails to build from source in unstable. A non-parallel build
ends as follows:
| /usr/bin/sphinx-build -d docsrc/.doctrees -n -q -D today=2023-08-03 -b html
./docsrc ./doc/html
| WARNING: extlinks: Sphinx-6.0 will require a caption string to contain
exactly one '%s' and all other '%' need to be escaped as '%%'.
| WARNING: extlinks: Sphinx-6.0 will require a caption string to contain
exactly one '%s' and all other '%' need to be escaped as '%%'.
|
| Theme error:
| An error happened in rendering the page developer.
| Reason: AttributeError("'str' object has no attribute 'attributes'")
| make[2]: *** [Makefile:1165: doc/html/.sphinx-build.stamp] Error 2
| make[2]: Leaving directory '/<>/build-mit'
| dh_auto_build: error: cd build-mit && make -j1
sasldir=/usr/lib/x86_64-linux-gnu/sasl2 all doc-html returned exit code 2
| make[1]: *** [debian/rules:166: override_dh_auto_build] Error 25
| make[1]: Leaving directory '/<>'
| make: *** [debian/rules:127: build] Error 2
| dpkg-buildpackage: error: debian/rules build subprocess returned exit status 2
I don't quit see the cause of this failure just yet, maybe someone else
does?
This is due to this line:
https://sources.debian.org/src/cyrus-sasl2/2.1.28%2Bdfsg1-3/docsrc/_templates/layout.html/#L2
and a simple workaround is to remove it.
I think a proper fix is to add
html_css_files = ['cyrus.css']
to docsrc/conf.py instead, as per
https://docs.readthedocs.io/en/stable/guides/adding-custom-css.html
But I have not verified that it gives the same result.
Cheers Jochen
signature.asc
Description: PGP signature
Bug#1053224: Please sync supported MIME types with nsxiv.desktop
Package: nsxiv Version: 31-1 Severity: minor Tags: patch Hi, can you please upload the attached patch to sync the MIME types? Thanks! Jochen -- System Information: Debian Release: trixie/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 6.5.0-1-amd64 (SMP w/8 CPU threads; PREEMPT) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages nsxiv depends on: ii libc6 2.37-11 ii libexif12 0.6.24-1+b1 ii libfontconfig1 2.14.2-6 ii libimlib2 1.12.0-2 ii libx11-62:1.8.6-1 ii libxft2 2.3.6-1 nsxiv recommends no packages. Versions of packages nsxiv suggests: ii imagemagick-6.q16 [imagemagick] 8:6.9.11.60+dfsg-1.6 pn libjpeg-progs pn rawtherapee ii xclip0.13-2 -- no debconf information >From 323c680387a91825c6da4ecbb3faded623820c77 Mon Sep 17 00:00:00 2001 From: Jochen Sprickerhof Date: Fri, 29 Sep 2023 18:01:21 +0200 Subject: [PATCH] debian/nsxiv.mime: sync supported MIME types with nsxiv.desktop --- debian/nsxiv.mime | 8 1 file changed, 8 insertions(+) diff --git a/debian/nsxiv.mime b/debian/nsxiv.mime index 21e35a3..f43c959 100644 --- a/debian/nsxiv.mime +++ b/debian/nsxiv.mime @@ -1,10 +1,18 @@ +image/avif; nsxiv %s; test=test -n "$DISPLAY" image/bmp; nsxiv %s; test=test -n "$DISPLAY" image/gif; nsxiv %s; test=test -n "$DISPLAY" +image/heic; nsxiv %s; test=test -n "$DISPLAY" +image/heif; nsxiv %s; test=test -n "$DISPLAY" +image/jp2; nsxiv %s; test=test -n "$DISPLAY" image/jpeg; nsxiv %s; test=test -n "$DISPLAY" image/jpg; nsxiv %s; test=test -n "$DISPLAY" +image/jxl; nsxiv %s; test=test -n "$DISPLAY" +image/postscript; nsxiv %s; test=test -n "$DISPLAY" image/png; nsxiv %s; test=test -n "$DISPLAY" +image/svg+xml; nsxiv %s; test=test -n "$DISPLAY" image/tiff; nsxiv %s; test=test -n "$DISPLAY" image/webp; nsxiv %s; test=test -n "$DISPLAY" +image/x-bmp; nsxiv %s; test=test -n "$DISPLAY" image/x-portable-anymap; nsxiv %s; test=test -n "$DISPLAY" image/x-portable-bitmap; nsxiv %s; test=test -n "$DISPLAY" image/x-portable-graymap; nsxiv %s; test=test -n "$DISPLAY" -- 2.42.0
Bug#1052698: bookworm-pu: package flann/1.9.2+dfsg-1
Package: release.debian.org
Severity: normal
Tags: bookworm
User: release.debian@packages.debian.org
Usertags: pu
X-Debbugs-Cc: fl...@packages.debian.org
Control: affects -1 + src:flann
[ Reason ]
The flann.pc pkg-config contains a stray semicolon in Libs.
[ Impact ]
It is hard to use on the command line, as reported in #1052649.
[ Tests ]
pkg-config --libs flann
[ Risks ]
None.
[ Checklist ]
[X] *all* changes are documented in the d/changelog
[X] I reviewed all changes and I approve them
[X] attach debdiff against the package in (old)stable
[X] the issue is verified as fixed in unstable
[ Changes ]
Drop @LZ4_STATIC_LDFLAGS@ from Libs: as lz4 is already listed in
Requires: and thus pkg-config will add a -llz4 automatically.
diff --git a/debian/changelog b/debian/changelog
index 2a56dc0..0abc5f0 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+flann (1.9.2+dfsg-1+deb12u1) bookworm; urgency=medium
+
+ * Drop extra -llz4 from flann.pc (already in Requires:) (Closes: #1052649)
+
+ -- Jochen Sprickerhof Tue, 26 Sep 2023 12:15:32 +0200
+
flann (1.9.2+dfsg-1) unstable; urgency=medium
* New upstream version 1.9.2+dfsg
diff --git
a/debian/patches/0005-Fix-lz4-missing-from-flann.pc-Requires-line.patch
b/debian/patches/0005-Fix-lz4-missing-from-flann.pc-Requires-line.patch
index 3359424..cbb3bcf 100644
--- a/debian/patches/0005-Fix-lz4-missing-from-flann.pc-Requires-line.patch
+++ b/debian/patches/0005-Fix-lz4-missing-from-flann.pc-Requires-line.patch
@@ -14,7 +14,8 @@ are not made available.
---
CMakeLists.txt | 5 +
cmake/CMakeLists.txt | 9 +
- 2 files changed, 14 insertions(+)
+ cmake/flann.pc.in| 2 +-
+ 3 files changed, 15 insertions(+), 1 deletion(-)
diff --git a/CMakeLists.txt b/CMakeLists.txt
index 06963fb..15f09dc 100644
@@ -64,3 +65,15 @@ index fb70f4c..be6c1dc 100644
set(pkg_conf_file ${CMAKE_CURRENT_BINARY_DIR}/flann.pc)
configure_file(flann.pc.in ${pkg_conf_file} @ONLY)
install(FILES ${pkg_conf_file}
+diff --git a/cmake/flann.pc.in b/cmake/flann.pc.in
+index 07b8d64..82eee5e 100644
+--- a/cmake/flann.pc.in
b/cmake/flann.pc.in
+@@ -8,6 +8,6 @@ Name: @PROJECT_NAME@
+ Description: @PKG_DESC@
+ Version: @FLANN_VERSION@
+ Requires: @PKG_EXTERNAL_DEPS@
+-Libs: -L${libdir} @LZ4_STATIC_LDFLAGS@ -lflann -lflann_cpp
++Libs: -L${libdir} -lflann -lflann_cpp
+ Cflags: -I${includedir}
+
Bug#1041885: rust-multihash: please upgrade to v0.19
Hi Jonas, sorry for the late reply. * Jonas Smedegaard [2023-08-03 21:13]: Quoting Peter Green (2023-08-03 20:49:57) > Please upgrade or separately provide newer upstream branch v0.19, > needed by rust-multiaddr (bug#1041880). The new version of rust-multihash depends on the core2 crate which is not currently in debian. Nor does anyone appear to be working on packaging it Sometimes maintaining a package involves packaging new dependencies. Do the Rust team have an interest in maintaining rust-multihash? Otherwise please say so, and I will consider adopting it. I have prepared the update but it depends on parity-scale-codec-derive and parity-scale-codec in NEW. Will push it once they are in unstable. Cheers Jochen signature.asc Description: PGP signature
Bug#1050530: closed by Debian FTP Masters (reply to Matthias Klose ) (Bug#1050530: fixed in python3.11 3.11.5-2)
Hi Matthias, I think it would be enough to add the tzdata-legacy dependency to libpython3.11-testsuite. I've also send a patch upstream to switch to the normal name: https://github.com/python/cpython/pull/108533 Cheers Jochen * Debian Bug Tracking System [2023-08-26 19:09]: This is an automatic notification regarding your Bug report which was filed against the src:python3.11 package: #1050530: python3.11: autopkgtest needs update for new version of tzdata It has been closed by Debian FTP Masters (reply to Matthias Klose ). Their explanation is attached below along with your original report. If this explanation is unsatisfactory and you have not received a better one in a separate message then please contact Debian FTP Masters (reply to Matthias Klose ) by replying to this email. -- 1050530: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1050530 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems Date: Sat, 26 Aug 2023 19:05:36 + To: 1050530-cl...@bugs.debian.org Reply-To: Matthias Klose From: Debian FTP Masters Subject: Bug#1050530: fixed in python3.11 3.11.5-2 Date: Fri, 25 Aug 2023 21:08:52 +0200 To: sub...@bugs.debian.org User-Agent: Mozilla Thunderbird From: Paul Gevers Subject: python3.11: autopkgtest needs update for new version of tzdata Source: python3.11 Version: 3.11.4-1 Severity: serious X-Debbugs-CC: tzd...@packages.debian.org Tags: sid trixie User: debian...@lists.debian.org Usertags: needs-update Control: affects -1 src:tzdata Dear maintainer(s), With a recent upload of tzdata the autopkgtest of python3.11 fails in testing when that autopkgtest is run with the binary packages of tzdata from unstable. It passes when run with only packages from testing. In tabular form: passfail tzdata from testing2023c-10 python3.11 from testing3.11.4-1 all others from testingfrom testing I copied some of the output at the bottom of this report. I note that src:tzdata recently introduced a tzdata-legacy package although I don't know if that has to do with the failure. Currently this regression is blocking the migration of tzdata to testing [1]. Of course, tzdata shouldn't just break your autopkgtest (or even worse, your package), but it seems to me that the change in tzdata was intended and your package needs to update to the new situation. More information about this bug and the reason for filing it can be found on https://wiki.debian.org/ContinuousIntegration/RegressionEmailInformation Paul [1] https://qa.debian.org/excuses.php?package=tzdata https://ci.debian.net/data/autopkgtest/testing/amd64/p/python3.11/37127326/log.gz 1107s == 1107s FAIL: test_variable_tzname (test.test_email.test_utils.LocaltimeTests.test_variable_tzname) 1107s -- 1107s Traceback (most recent call last): 1107s File "/usr/lib/python3.11/test/support/__init__.py", line 847, in inner 1107s return func(*args, **kwds) 1107s^^^ 1107s File "/usr/lib/python3.11/test/test_email/test_utils.py", line 155, in test_variable_tzname 1107s self.assertEqual(t1.tzname(), 'MSK') 1107s AssertionError: 'Europe' != 'MSK' 1107s - Europe 1107s + MSK signature.asc Description: PGP signature
Bug#756120: gcc-defaults: Please provide libstdc++-doc metapackage
Source: gcc-defaults
Followup-For: Bug #756120
Control: tags -1 patch
Hi doko,
please find a patch for this attached.
Cheers Jochen
>From 9a3dc5402a8cc2a20fafee8ce9eb9898d33f3b6f Mon Sep 17 00:00:00 2001
From: Jochen Sprickerhof
Date: Sat, 19 Aug 2023 21:22:26 +0200
Subject: [PATCH] Add libstdc++-doc package
---
debian/control | 9 +
debian/control.native.in | 9 +
debian/rules | 2 +-
3 files changed, 19 insertions(+), 1 deletion(-)
diff --git a/debian/control b/debian/control
index dac97d2..38b5b7a 100644
--- a/debian/control
+++ b/debian/control
@@ -423,6 +423,15 @@ Description: GCC offloading compiler to AMD GCN
.
This is a dependency package providing the default AMD GCN offload compiler.
+Package: libstdc++-doc
+Section: doc
+Priority: optional
+Architecture: all
+Depends: libstdc++-${pv:gpp}-doc ${reqv:gpp}, ${misc:Depends}
+Description: GNU Standard C++ Library v3 (documentation files)
+ This is a dependency package providing the default documentation files for the
+ GNU stdc++ library.
+
Package: gcc-hppa64-linux-gnu
Priority: optional
Architecture: amd64 hppa i386 x32
diff --git a/debian/control.native.in b/debian/control.native.in
index 2fbf2ed..b7c40d9 100644
--- a/debian/control.native.in
+++ b/debian/control.native.in
@@ -411,3 +411,12 @@ Description: GCC offloading compiler to AMD GCN
This package contains libgomp plugin for offloading to AMD GCN
.
This is a dependency package providing the default AMD GCN offload compiler.
+
+Package: libstdc++-doc
+Section: doc
+Priority: optional
+Architecture: all
+Depends: libstdc++-${pv:gpp}-doc ${reqv:gpp}, ${misc:Depends}
+Description: GNU Standard C++ Library v3 (documentation files)
+ This is a dependency package providing the default documentation files for the
+ GNU stdc++ library.
diff --git a/debian/rules b/debian/rules
index 212fd83..3725f0d 100755
--- a/debian/rules
+++ b/debian/rules
@@ -1247,7 +1247,7 @@ ifeq ($(with_native),yes)
dh_testroot
# dh_installdebconf
dh_installdocs -pcpp
- for p in `dh_listpackages $(nopkgs_native) -Ncpp $(if $(filter
yes,$(with_gfdl_docs)),-Ncpp-doc -Ngcc-doc -Ngfortran-doc -Ngccgo-doc) -Ngdc
-Nlibgphobos-dev`; do \
+ for p in `dh_listpackages $(nopkgs_native) -Ncpp $(if $(filter
yes,$(with_gfdl_docs)),-Ncpp-doc -Ngcc-doc -Ngfortran-doc -Ngccgo-doc) -Ngdc
-Nlibgphobos-dev -Nlibstdc++-doc`; do \
case "$$p" in \
*-gnu*|*-kfreebsd*|gcc-hppa64-linux-gnu) continue;; \
*) t=cpp; \
--
2.40.1
Bug#1040942: rosbash: Most binary tools (roscd, rosd, rosls, ....) are unavailable in this package
Hi Dima, * Dima Kogan [2023-07-12 11:37]: Hello. I'm using the package from bookworm. rosbash The "rosbash" package should provide several commandline tools, documented here: http://wiki.ros.org/rosbash But only "rosrun" is provided in the package. This is because most of the tools are not binaries, but are shell functions. These are supposed to be defined in /usr/share/rosbash/rosbash, but our rosbash package does not ship this file. This file exists in the package sources in tools/rosbash/rosbash, but it is not installed anywhere. This is the bug. Our package does reference the tools (we include all the tab completions). And the package scripts ask for it: dima@fatty:$ source /usr/share/rosbash/catkin_env_hook/15.rosbash.bash bash: /usr/share/rosbash/rosbash: No such file or directory So if we install that file, that would probably fix this bug. The file is installed as: /usr/share/bash-completion/completions/rosbash So we could adopt the path in 15.rosbash.bash. But I wonder if we should rather source that file by default. Up to 1.15.8-1 (buster) rosbash installed that file into /etc/bash_completion.d/rosbash and it was sourced automatically when bash-completion was activated. In 1.15.8-1 this was changed to /usr/share.. because the /etc patch is deprecated (afair) but bash-completion does not source those files automatically anymore. The only option I found is adding a link in /etc/profile.d/. for fish, tcsh and zsh the respective files are sourced automatically already, so we should probably remove the corresponding catkin_env_hooks. Btw. ros-noetic-rosbash contains: /opt/ros/noetic/share/rosbash/catkin_env_hook/15.rosbash.* and /opt/ros/noetic/etc/catkin/profile.d/15.rosbash.* But I'm not sure when either are used, does someone know? Cheers Jochen signature.asc Description: PGP signature
Bug#1037698: j4-dmenu-desktop: diff for NMU version 2.16-1.1
Control: tags 1037698 + patch Dear maintainer, I've prepared an NMU for j4-dmenu-desktop (versioned as 2.16-1.1). The diff is attached to this message. Regards. Jochen diff -Nru j4-dmenu-desktop-2.16/debian/changelog j4-dmenu-desktop-2.16/debian/changelog --- j4-dmenu-desktop-2.16/debian/changelog 2018-09-10 21:26:15.0 +0200 +++ j4-dmenu-desktop-2.16/debian/changelog 2023-07-30 16:19:24.0 +0200 @@ -1,3 +1,10 @@ +j4-dmenu-desktop (2.16-1.1) unstable; urgency=medium + + * Non-maintainer upload. + * Fix build with GCC 13 (Closes: #1037698) + + -- Jochen Sprickerhof Sun, 30 Jul 2023 16:19:24 +0200 + j4-dmenu-desktop (2.16-1) unstable; urgency=medium * New upstream release diff -Nru j4-dmenu-desktop-2.16/debian/patches/0003-Fix-build-with-GCC-13.patch j4-dmenu-desktop-2.16/debian/patches/0003-Fix-build-with-GCC-13.patch --- j4-dmenu-desktop-2.16/debian/patches/0003-Fix-build-with-GCC-13.patch 1970-01-01 01:00:00.0 +0100 +++ j4-dmenu-desktop-2.16/debian/patches/0003-Fix-build-with-GCC-13.patch 2023-07-30 16:18:44.0 +0200 @@ -0,0 +1,28 @@ +From: Sam James +Date: Tue, 18 Apr 2023 11:08:53 +0100 +Subject: Fix build with GCC 13 + +GCC 13 (as usual for new compiler releases) shuffles around some internal includes so some +are no longer transitively included. + +See https://gnu.org/software/gcc/gcc-13/porting_to.html. + +Bug: https://bugs.gentoo.org/895200 +--- + src/Application.hh | 3 ++- + 1 file changed, 2 insertions(+), 1 deletion(-) + +diff --git a/src/Application.hh b/src/Application.hh +index 355be9b..d24ff1c 100644 +--- a/src/Application.hh b/src/Application.hh +@@ -19,7 +19,8 @@ + #define APPLICATION_DEF + + #include +-#include ++#include ++#include + #include + + #include "Utilities.hh" diff -Nru j4-dmenu-desktop-2.16/debian/patches/series j4-dmenu-desktop-2.16/debian/patches/series --- j4-dmenu-desktop-2.16/debian/patches/series 2018-09-10 21:26:15.0 +0200 +++ j4-dmenu-desktop-2.16/debian/patches/series 2023-07-30 16:18:48.0 +0200 @@ -1,2 +1,3 @@ 0001-remove-catch-download.patch 0002-remove-testcase-for-desktop-systems.patch +0003-Fix-build-with-GCC-13.patch signature.asc Description: PGP signature
Bug#1041924: RM: gpsbabel-gui [mipsel] -- ROM; qtwebengine5-dev no longer builds on mipsel
Package: ftp.debian.org Severity: normal User: ftp.debian@packages.debian.org Usertags: remove X-Debbugs-Cc: gpsba...@packages.debian.org Control: affects -1 + src:gpsbabel Hi ftp-masters, please remove the mipsel gpsbabel-gui package, as proposed in #1041912 (after 1.8.0+ds-6 was build). Thanks! Jochen
Bug#1037698: j4-dmenu-desktop: ftbfs with GCC-13
Control: forwared -1 https://github.com/enkore/j4-dmenu-desktop/pull/139 Hi Peter, j4-dmenu-desktop is a dependency of sxmo-utils and so I would like to prevent it's removal from testing. The patch linked above is really simple and I would be happy if you could upload a fixed version. I can also sponsor the upload, if needed. There where also multiple new upstream versions and I would be happy to help maintain this package if you would be ok with that. In case you don't have time to do the upload, I can do an NMU. If you don't answer by end of next week I will assume that you are ok with an NMU containing the above patch and will upload. Cheers Jochen * Matthias Klose [2023-06-14 09:25]: Package: src:j4-dmenu-desktop Version: 2.16-1 Severity: normal Tags: sid trixie User: debian-...@lists.debian.org Usertags: ftbfs-gcc-13 [This bug is targeted to the upcoming trixie release] Please keep this issue open in the bug tracker for the package it was filed for. If a fix in another package is required, please file a bug for the other package (or clone), and add a block in this package. Please keep the issue open until the package can be built in a follow-up test rebuild. The package fails to build in a test rebuild on at least amd64 with gcc-13/g++-13, but succeeds to build with gcc-12/g++-12. The severity of this report will be raised before the trixie release. The full build log can be found at: http://qa-logs.debian.net/2023/05/22/logs/j4-dmenu-desktop_2.16-1_unstable_gccexp.log The last lines of the build log are at the end of this report. To build with GCC 13, either set CC=gcc-13 CXX=g++-13 explicitly, or install the gcc, g++, gfortran, ... packages from experimental. apt-get -t=experimental install g++ Common build failures are new warnings resulting in build failures with -Werror turned on, or new/dropped symbols in Debian symbols files. For other C/C++ related build failures see the porting guide at http://gcc.gnu.org/gcc-13/porting_to.html [...] | ^~~ /<>/src/Application.hh:149:22: error: unable to find string literal operator ‘operator""_istr’ with ‘const char [11]’, ‘long unsigned int’ arguments 149 | case "OnlyShowIn"_istr: | ^ /<>/src/Application.hh:161:22: error: unable to find string literal operator ‘operator""_istr’ with ‘const char [10]’, ‘long unsigned int’ arguments 161 | case "NotShowIn"_istr: | ^~~~ /<>/src/Application.hh:173:22: error: unable to find string literal operator ‘operator""_istr’ with ‘const char [7]’, ‘long unsigned int’ arguments 173 | case "Hidden"_istr: | ^ /<>/src/Application.hh:174:22: error: unable to find string literal operator ‘operator""_istr’ with ‘const char [10]’, ‘long unsigned int’ arguments 174 | case "NoDisplay"_istr: | ^~~~ /<>/src/Application.hh:182:22: error: unable to find string literal operator ‘operator""_istr’ with ‘const char [9]’, ‘long unsigned int’ arguments 182 | case "Terminal"_istr: | ^~~ /<>/src/Application.hh:183:61: error: unable to find string literal operator ‘operator""_istr’ with ‘const char [5]’, ‘long unsigned int’ arguments 183 | this->terminal = make_istring(value) == "true"_istr; | ^~~ In file included from /<>/src/TestFormatters.cc:8: /<>/src/Application.hh: In member function ‘bool Application::read(const char*, char**, size_t*)’: /<>/src/Application.hh:94:19: warning: ignoring return value of ‘char* getcwd(char*, size_t)’ declared with attribute ‘warn_unused_result’ [-Wunused-result] 94 | getcwd(pwd, 100); | ~~^~ /<>/src/Main.hh: In member function ‘bool Main::read_args(int, char**)’: /<>/src/Main.hh:167:33: warning: this statement may fall through [-Wimplicit-fallthrough=] 167 | exclude_generic = true; | ^~ /<>/src/Main.hh:168:13: note: here 168 | case 'l': | ^~~~ /<>/src/Main.hh: In member function ‘void Main::collect_files()’: /<>/src/Main.hh:187:15: warning: ignoring return value of ‘char* getcwd(char*, size_t)’ declared with attribute ‘warn_unused_result’ [-Wunused-result] 187 | getcwd(original_wd, 384); | ~~^~ /<>/src/Main.hh:195:18: warning: ignoring return value of ‘int chdir(const char*)’ declared with attribute ‘warn_unused_result’ [-Wunused-result] 195 | chdir(path.c_str()); | ~^~ /<>/src/Main.hh:204:14: warning: ignoring return value of ‘int chdir(const char*)’ declared with attribute ‘warn_unused_result’ [-Wunused-result] 204 | chdir(original_wd); |
Bug#1040500: routine-update: Don't create d/salsa-ci.yml file
* Andreas Tille [2023-07-07 11:24]: Thanks for your opinion about this. What I mean with de facto standard: We have about 2000 repositories configured to check debian/salsa-ci.yml. I have not yet found a way to set the according field via gitlab API to something else. If this is scriptable I'd happily remove debian/salsa-ci.yml. For the moment I state two votes against salsa-ci.yml. ;-) echo "SALSA_TOKEN=" >> ~/.devscripts echo 'SALSA_CI_CONFIG_PATH="recipes/debian.yml@salsa-ci-team/pipeline"' >> ~/.devscripts sudo apt install devscripts salsa update_safe --group science-team --all Cheers Jochen signature.asc Description: PGP signature
Bug#1040500: routine-update: Don't create d/salsa-ci.yml file
Hi Andreas, * Andreas Tille [2023-07-07 09:20]: Am Thu, Jul 06, 2023 at 09:03:23PM +0100 schrieb Christopher Obbard: routine-update adds a file under the path "debian/salsa-ci.yml". Yes, this is intended. According to the salsa-ci-team[1], the default recommendation is to set the pipeline URL in the project settings rather than to use a standaline debian/salsa-ci.yml file. Therefore, please remove the addition of this file and instead please print a warning if this file exists for manual intervention to change the pipeline to the recommended suggestion by the Salsa CI team. I confirm routine-update is going beyond the recommendation but in those teams where I'm working (in CC) we have this de-facto standard to use this file. Before I change the behaviour of routine-update I would like to discuss this inside these teams and ask for opinions. I don't think we have a de-facto standard on that file in debian-science, at least I removed it from my packages a long time ago already and I agree with Christopher that routine-update should do the same. There is no benefit in having a file with the same content in every repo and every Debian package if we can avoid it. Cheers Jochen signature.asc Description: PGP signature
Bug#1037165: vit: Python TypeError: 'str' object does not support item assignment
Control: severity -1 normal
Hi Matthew,
On Tue, 6 Jun 2023 19:43:34 +0100 Matthew Lemon wrote:
> Traceback (most recent call last):
> File "/usr/bin/vit", line 33, in
> sys.exit(load_entry_point('vit==2.2.0', 'console_scripts', 'vit')())
> ^^
> File "/usr/lib/python3/dist-packages/vit/command_line.py", line 5, in main
> Application(options, filters)
> File "/usr/lib/python3/dist-packages/vit/application.py", line 77, in
> __init__
> self.refresh(False)
> File "/usr/lib/python3/dist-packages/vit/application.py", line 920, in
> refresh
> self.bootstrap(load_early_config)
> File "/usr/lib/python3/dist-packages/vit/application.py", line 110, in
> bootstrap
> self.load_contexts()
> File "/usr/lib/python3/dist-packages/vit/application.py", line 104, in
> load_contexts
> self.contexts = self.task_config.get_contexts()
> ^^^
> File "/usr/lib/python3/dist-packages/vit/config_parser.py", line 333, in
> get_contexts
> subtree = self.subtree('context.')
>
> File "/usr/lib/python3/dist-packages/vit/config_parser.py", line 292, in
> subtree
> tree_location[part] = {} if len(parts) else value
> ~^^
> TypeError: 'str' object does not support item assignment
I can't reproduce this in a fresh system (downgrading severity accordingly). Do
you have any taskwarrior or vit config files in your home? Judging from the
trace above I guess it is a custom taskwarrior config. Can you try without that?
Cheers Jochen
Bug#1035543: init-system-helpers: new systemd units may not get enabled on upgrades from bullseye if systemd is installed
* James Addison [2023-06-01 12:44]: Would reverting the Install.WantedBy modification[1][2], restoring e2scrub_reap enablement using 'default.target' on relevant systems, be a sensible approach for bookworm until we can figure out the debhelper-system behaviour when that setting changes? No, bookworm is frozen and done: "In the last week prior to the freeze, testing will be completely frozen and only emergency bug fixes will be considered in this period." https://lists.debian.org/debian-devel-announce/2023/04/msg7.html Cheers Jochen signature.asc Description: PGP signature
Bug#1035543: init-system-helpers: new systemd units may not get enabled on upgrades from bullseye if systemd is installed
Hi Michael, * Michael Biebl [2023-05-30 13:23]: bullseye chroot upgraded to bookworm: # find /etc/systemd/system/ -name e2scrub_reap.service /etc/systemd/system/multi-user.target.wants/e2scrub_reap.service /etc/systemd/system/default.target.wants/e2scrub_reap.service But when you use a VM: $ debvm-create -r bullseye $ debvm-run # apt install e2fsprogs # find / -name e2scrub_reap.service /var/lib/systemd/deb-systemd-helper-enabled/default.target.wants/e2scrub_reap.service /lib/systemd/system/e2scrub_reap.service /etc/systemd/system/default.target.wants/e2scrub_reap.service # cat /var/lib/systemd/deb-systemd-helper-enabled/e2scrub_reap.service.dsh-also /etc/systemd/system/default.target.wants/e2scrub_reap.service # sed -i 's/bullseye/bookworm/' /etc/apt/sources.list # apt update # apt dist-upgrade # find / -name e2scrub_reap.service /var/lib/systemd/deb-systemd-helper-enabled/multi-user.target.wants/e2scrub_reap.service /var/lib/systemd/deb-systemd-helper-enabled/default.target.wants/e2scrub_reap.service /usr/lib/systemd/system/e2scrub_reap.service /etc/systemd/system/default.target.wants/e2scrub_reap.service # cat /var/lib/systemd/deb-systemd-helper-enabled/e2scrub_reap.service.dsh-also /etc/systemd/system/default.target.wants/e2scrub_reap.service /etc/systemd/system/multi-user.target.wants/e2scrub_reap.service So what I would suggest is a if dpkg --compare-versions "$2" lt "$ver of your next upload"; then rm -f /etc/systemd/system/default.target.wants/e2scrub_reap.service fi in your postinst to clean up the stray enablement symlink. I think this would disable the service for users that upgraded from bullseye as shown above. Cheers Jochen signature.asc Description: PGP signature
Bug#1035543: init-system-helpers: new systemd units may not get enabled on upgrades from bullseye if systemd is installed
Hi Ted, * Theodore Ts'o [2023-05-27 19:45]: So sure, /etc/systemd.d/system/multi-user.target.wants/e2scrub_reap.service doesn't exist. *But* it still exists in .../default.target.wants/... which seems to be enough to keep the e2scrub_reap service enabled. Right? Yes, that's fine. In any case, I am still unclear (a) what is actually broken in this particular setup, since according to systemctl status the systemd unit is apparently still appropriate enabled, even if it isn't via the expected Wanted-b: multi-user.target. The point of piuparts is that an upgraded system is different to a newly installed system, i.e. that the e2scrub_reap.service symlink lies in a different directory. And secondly, (b) what is e2fsprogs's control scripts supposed to have done differently? That is, if this is indeed this is a bug in e2fsprogs --- what did I do wrong, and how do I fix it? Arguably nothing and init-system-helpers/dh_installsystemd should detect the change and move the symlink. And if the answer is you should never, ever, try to change a Wanted-by line in a systemd script, because debian's systemd unit file infrastructure is too fragile to handle this correctly, given that bookworm is about to ship with "Wanted-by: multi-user.target", what's the best path forward at this point? For now the best way is to do nothing and wait for the bookworm release. In general there are two things. One is to fix the immediate problem this issue is about and we can still do that in a point release. The other one is to have general support for changing Wanted-by: (or state that it is not supported). I would propose to ask the init-system-helpers/dh_installsystemd maintainers for a general solution and then apply that for a bookworm point release. Cheers Jochen signature.asc Description: PGP signature
Bug#1035933: linux-image-6.1.0-8-amd64-unsigned: fails to build (llvm-strip not found, missing dependency?)
Control: severity -1 minor Control: tags -1 + moreinfo Hi Claude, given your information and that the package builds fine on the buildds I downgrade this to minor and add a moreinfo tag. Cheers Jochen * Jochen Sprickerhof [2023-05-25 14:56]: Thanks for the information. I don't see why it should use llvm, on the other hand the kernel Makefile is rather clear when to use it. Can you check if you an still reproduce the problem? * Claude Heiland-Allen [2023-05-25 11:47]: Hi Jochen, I didn't set any non-standard compiler options as far as I recall. I certainly was not intending to build with LLVM. Unfortunately I have not kept the log of the failing build, but I remember seeing that gcc was used for the majority of the compilation. Regards, Claude signature.asc Description: PGP signature
Bug#1035933: linux-image-6.1.0-8-amd64-unsigned: fails to build (llvm-strip not found, missing dependency?)
Thanks for the information. I don't see why it should use llvm, on the other hand the kernel Makefile is rather clear when to use it. Can you check if you an still reproduce the problem? * Claude Heiland-Allen [2023-05-25 11:47]: Hi Jochen, I didn't set any non-standard compiler options as far as I recall. I certainly was not intending to build with LLVM. Unfortunately I have not kept the log of the failing build, but I remember seeing that gcc was used for the majority of the compilation. Regards, Claude PS: export output as requested: $ export declare -x ANDROID_HOME="/home/claude/opt/android" declare -x ANDROID_NDK_HOME="/home/claude/opt/android/ndk/21.4.7075529" declare -x CLUTTER_IM_MODULE="ibus" declare -x COLORTERM="truecolor" declare -x DBUS_SESSION_BUS_ADDRESS="unix:path=/run/user/1000/bus" declare -x DESKTOP_SESSION="xfce" declare -x DISPLAY=":0.0" declare -x GDMSESSION="xfce" declare -x GNOME_TERMINAL_SCREEN="/org/gnome/Terminal/screen/0b1a867e_925f_4768_96f3_643cc3c21d91" declare -x GNOME_TERMINAL_SERVICE=":1.84" declare -x GTK_IM_MODULE="ibus" declare -x GTK_MODULES="gail:atk-bridge" declare -x HOME="/home/claude" declare -x LANG="en_GB.UTF-8" declare -x LANGUAGE="en_GB:en" declare -x LD_LIBRARY_PATH="/home/claude/opt/lib" declare -x LOGNAME="claude" declare -x LS_COLORS="rs=0:di=01;34:ln=01;36:mh=00:pi=40;33:so=01;35:do=01;35:bd=40;33;01:cd=40;33;01:or=40;31;01:mi=00:su=37;41:sg=30;43:ca=00:tw=30;42:ow=34;42:st=37;44:ex=01;32:*.tar=01;31:*.tgz=01;31:*.arc=01;31:*.arj=01;31:*.taz=01;31:*.lha=01;31:*.lz4=01;31:*.lzh=01;31:*.lzma=01;31:*.tlz=01;31:*.txz=01;31:*.tzo=01;31:*.t7z=01;31:*.zip=01;31:*.z=01;31:*.dz=01;31:*.gz=01;31:*.lrz=01;31:*.lz=01;31:*.lzo=01;31:*.xz=01;31:*.zst=01;31:*.tzst=01;31:*.bz2=01;31:*.bz=01;31:*.tbz=01;31:*.tbz2=01;31:*.tz=01;31:*.deb=01;31:*.rpm=01;31:*.jar=01;31:*.war=01;31:*.ear=01;31:*.sar=01;31:*.rar=01;31:*.alz=01;31:*.ace=01;31:*.zoo=01;31:*.cpio=01;31:*.7z=01;31:*.rz=01;31:*.cab=01;31:*.wim=01;31:*.swm=01;31:*.dwm=01;31:*.esd=01;31:*.avif=01;35:*.jpg=01;35:*.jpeg=01;35:*.mjpg=01;35:*.mjpeg=01;35:*.gif=01;35:*.bmp=01;35:*.pbm=01;35:*.pgm=01;35:*.ppm=01;35:*.tga=01;35:*.xbm=01;35:*.xpm=01;35:*.tif=01;35:*.tiff=01;35:*.png=01;35:*.svg=01;35:*.svgz=01;35:*.mng=01;35:*.pcx=01;35:*.mov=01;35:*.mpg=01;35:*.mpeg=01;35 :*.m2v=01;35:*.mkv=01;35:*.webm=01;35:*.webp=01;35:*.ogm=01;35:*.mp4=01;35:*.m4v=01;35:*.mp4v=01;35:*.vob=01;35:*.qt=01;35:*.nuv=01;35:*.wmv=01;35:*.asf=01;35:*.rm=01;35:*.rmvb=01;35:*.flc=01;35:*.avi=01;35:*.fli=01;35:*.flv=01;35:*.gl=01;35:*.dl=01;35:*.xcf=01;35:*.xwd=01;35:*.yuv=01;35:*.cgm=01;35:*.emf=01;35:*.ogv=01;35:*.ogx=01;35:*.aac=00;36:*.au=00;36:*.flac=00;36:*.m4a=00;36:*.mid=00;36:*.midi=00;36:*.mka=00;36:*.mp3=00;36:*.mpc=00;36:*.ogg=00;36:*.ra=00;36:*.wav=00;36:*.oga=00;36:*.opus=00;36:*.spx=00;36:*.xspf=00;36:*~=00;90:*#=00;90:*.bak=00;90:*.old=00;90:*.orig=00;90:*.part=00;90:*.rej=00;90:*.swp=00;90:*.tmp=00;90:*.dpkg-dist=00;90:*.dpkg-old=00;90:*.ucf-dist=00;90:*.ucf-new=00;90:*.ucf-old=00;90:*.rpmnew=00;90:*.rpmorig=00;90:*.rpmsave=00;90:" declare -x OLDPWD declare -x PANEL_GDK_CORE_DEVICE_EVENTS="0" declare -x PATH="/home/claude/opt/vbcc/vbcc/bin:/opt/amiga/bin:/home/claude/opt/android/ndk/21.4.7075529:/home/claude/opt/android/platform-tools:/home/claude/opt/android/tools:/home/claude/opt/bin:/home/claude/.local/bin:/usr/local/bin:/usr/bin:/bin:/usr/local/games:/usr/games:/home/claude/opt/bin" declare -x PWD="/home/claude" declare -x QT_ACCESSIBILITY="1" declare -x QT_IM_MODULE="ibus" declare -x QT_QPA_PLATFORMTHEME="gtk2" declare -x SESSION_MANAGER="local/eiskaffee:@/tmp/.ICE-unix/1911,unix/eiskaffee:/tmp/.ICE-unix/1911" declare -x SHELL="/bin/bash" declare -x SHLVL="1" declare -x SSH_AGENT_PID="2048" declare -x SSH_AUTH_SOCK="/tmp/ssh-XXtd5uft/agent.1911" declare -x TERM="xterm-256color" declare -x USER="claude" declare -x VBCC="/opt/amiga/vbcc" declare -x VTE_VERSION="7003" declare -x XAUTHORITY="/home/claude/.Xauthority" declare -x XDG_CONFIG_DIRS="/etc/xdg" declare -x XDG_CURRENT_DESKTOP="XFCE" declare -x XDG_DATA_DIRS="/usr/share/xfce4:/usr/local/share/:/usr/share/:/usr/share" declare -x XDG_GREETER_DATA_DIR="/var/lib/lightdm/data/claude" declare -x XDG_MENU_PREFIX="xfce-" declare -x XDG_RUNTIME_DIR="/run/user/1000" declare -x XDG_SEAT="seat0" declare -x XDG_SEAT_PATH="/org/freedesktop/DisplayManager/Seat0" declare -x XDG_SESSION_CLASS="user" declare -x XDG_SESSION_DESKTOP="xfce" declare -x XDG_SESSION_ID="2" declare -x XDG_SESSION_PATH="/org/freedesktop/Display
Bug#1035933: linux-image-6.1.0-8-amd64-unsigned: fails to build (llvm-strip not found, missing dependency?)
Hi Claude, the Debian kernel is compiled with GCC: https://buildd.debian.org/status/fetch.php?pkg=linux=amd64=6.1.27-1=1683630698=0 and compiles just fine. To compile the kernel with llvm you either need to set CC or LLVM variables: https://www.kernel.org/doc/html/latest/kbuild/llvm.html Can you send the output of `export` to check what is set in your environment? Given that you don't use the default compiler and that the default toolchain is provided by the build-essential package, I don't think this is a dependency issue and I would close this bug. Cheers Jochen * Claude Heiland-Allen [2023-05-11 12:57]: Package: linux-image-6.1.0-8-amd64-unsigned Severity: serious Tags: ftbfs Justification: fails to build from source (but built successfully in the past) X-Debbugs-Cc: cla...@mathr.co.uk Dear Maintainer, * What led up to the situation? I wanted to patch the kernel source to see if it would help an issue I was having, so I followed my usual steps when changing a Debian package locally: sudo apt build-dep linux-image-6.1.0-8-amd64-unsigned mkdir linux cd linux apt source linux-image-6.1.0-8-amd64-unsigned cd linux-6.1.25 # make changes to the source code # specfically some warning prints in devices/usb/host/xhci-ring.c debuild -i -us -uc -b * What was the outcome of this action? The build failed after some time with: ... llvm-strip -g /home/claude/linux/linux-6.1.25/debian/build/build-tools/tools/bpf/bpftool/profiler.bpf.o make[4]: llvm-strip: No such file or directory make[4]: *** [Makefile:187: /home/claude/linux/linux-6.1.25/debian/build/build-tools/tools/bpf/bpftool/profiler.bpf.o] Error 127 make[4]: *** Waiting for unfinished jobs llvm-strip -g /home/claude/linux/linux-6.1.25/debian/build/build-tools/tools/bpf/bpftool/pid_iter.bpf.o make[4]: llvm-strip: No such file or directory make[4]: *** [Makefile:187: /home/claude/linux/linux-6.1.25/debian/build/build-tools/tools/bpf/bpftool/pid_iter.bpf.o] Error 127 make[4]: Leaving directory '/home/claude/linux/linux-6.1.25/tools/bpf/bpftool' make[3]: *** [/home/claude/linux/linux-6.1.25/debian/rules.d/tools/bpf/bpftool/Makefile:15: all] Error 2 make[3]: Leaving directory '/home/claude/linux/linux-6.1.25/debian/build/build-tools/tools/bpf/bpftool' make[2]: *** [debian/rules.real:538: build_bpftool] Error 2 make[2]: Leaving directory '/home/claude/linux/linux-6.1.25' make[1]: *** [debian/rules.gen:1494: build-arch_amd64_real_bpftool] Error 2 make[1]: Leaving directory '/home/claude/linux/linux-6.1.25' make: *** [debian/rules:39: build-arch] Error 2 dpkg-buildpackage: error: debian/rules binary subprocess returned exit status 2 debuild: fatal error at line 1182: dpkg-buildpackage -us -uc -ui -i -b failed * What outcome did you expect instead? I expected apt to have fetched all the build-time dependencies of the package, and the build to have succeeded. * What exactly did you do (or not do) that was effective (or ineffective)? After sudo apt install llvm then debuild -i -us -uc -b worked as expected. Thanks for your work on this package, Claude -- System Information: Debian Release: 12.0 APT prefers testing-security APT policy: (990, 'testing-security'), (990, 'testing'), (500, 'testing-debug') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 6.1.0-8-amd64 (SMP w/16 CPU threads; PREEMPT) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), LANGUAGE=en_GB:en Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages linux-image-6.1.0-8-amd64-unsigned depends on: ii initramfs-tools [linux-initramfs-tool] 0.142 ii kmod30+20221128-1 ii linux-base 4.9 Versions of packages linux-image-6.1.0-8-amd64-unsigned recommends: ii apparmor 3.0.8-3 ii firmware-linux-free 20200122-1 Versions of packages linux-image-6.1.0-8-amd64-unsigned suggests: pn debian-kernel-handbook ii extlinux3:6.04~git20190206.bf6db5b4+dfsg1-3+b1 ii grub-efi-amd64 2.06-12 pn linux-doc-6.1 signature.asc Description: PGP signature
Bug#1036720: unblock: sxmo-utils/1.12.0-7
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: sxmo-ut...@packages.debian.org
Control: affects -1 + src:sxmo-utils
Please unblock package sxmo-utils
[ Reason ]
Removing sxmo-utils but not purging it leaves behind a
/etc/profile.d/sxmo_init.sh that fails to run cause it can't find
dependent files.
[ Impact ]
Users that removed sxmo-utils can't login any longer.
[ Tests ]
Manual tests.
[ Risks ]
None
[ Checklist ]
[X] all changes are documented in the d/changelog
[X] I reviewed all changes and I approve them
[X] attach debdiff against the package in testing
unblock sxmo-utils/1.12.0-7
diff --git a/debian/changelog b/debian/changelog
index fdc3418..ffb3f4f 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+sxmo-utils (1.12.0-7) unstable; urgency=medium
+
+ * Add patch to fix login when sxmo is removed
+
+ -- Jochen Sprickerhof Wed, 24 May 2023 19:15:29 +0200
+
sxmo-utils (1.12.0-6) unstable; urgency=medium
* Replace pn by pnc
diff --git
a/debian/patches/0023-Don-t-fail-when-sxmo-utils-is-removed-but-not-purged.patch
b/debian/patches/0023-Don-t-fail-when-sxmo-utils-is-removed-but-not-purged.patch
new file mode 100644
index 000..1cfd500
--- /dev/null
+++
b/debian/patches/0023-Don-t-fail-when-sxmo-utils-is-removed-but-not-purged.patch
@@ -0,0 +1,20 @@
+From: Jochen Sprickerhof
+Date: Wed, 24 May 2023 19:12:45 +0200
+Subject: Don't fail when sxmo-utils is removed (but not purged)
+
+---
+ configs/profile.d/sxmo_init.sh | 1 +
+ 1 file changed, 1 insertion(+)
+
+diff --git a/configs/profile.d/sxmo_init.sh b/configs/profile.d/sxmo_init.sh
+index d4792e6..3906c7f 100644
+--- a/configs/profile.d/sxmo_init.sh
b/configs/profile.d/sxmo_init.sh
+@@ -4,6 +4,7 @@
+
+ # This script is meant to be sourced on login shells
+ # shellcheck source=scripts/core/sxmo_common.sh
++test -f /usr/bin/sxmo_common.sh || return 0
+ . sxmo_common.sh
+
+ _sxmo_is_running() {
diff --git a/debian/patches/series b/debian/patches/series
index 5e3ae5a..21d7a8b 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -20,3 +20,4 @@ no_doas.patch
0020-Fix-Bluetooth-toogle.patch
0021-replace-pn-with-pnc.patch
0022-add-missing-pn-pnc.patch
+0023-Don-t-fail-when-sxmo-utils-is-removed-but-not-purged.patch
Bug#1036472: unblock: ros-actionlib/1.14.0-6
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: ros-action...@packages.debian.org
Control: affects -1 + src:ros-actionlib
Please unblock package ros-actionlib
[ Reason ]
libactionlib-dev was missing a depenency.
[ Impact ]
Users would need to manually install libroscpp-dev in addition.
[ Tests ]
I verified the missing dependency manually.
[ Risks ]
None.
[ Checklist ]
[X] all changes are documented in the d/changelog
[X] I reviewed all changes and I approve them
[X] attach debdiff against the package in testing
unblock ros-actionlib/1.14.0-6
diff --git a/debian/changelog b/debian/changelog
index d3143ab..307e040 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+ros-actionlib (1.14.0-6) unstable; urgency=medium
+
+ * Add missing dependency
+
+ -- Jochen Sprickerhof Sun, 21 May 2023 21:10:12 +0200
+
ros-actionlib (1.14.0-5) unstable; urgency=medium
* Increase timeout for test on armel
diff --git a/debian/control b/debian/control
index a9d09e5..7cebce3 100644
--- a/debian/control
+++ b/debian/control
@@ -54,7 +54,7 @@ Section: libdevel
Architecture: any
Multi-Arch: same
Depends: ${misc:Depends}, libactionlib1d ( = ${binary:Version}),
- ${python3:Depends}, python3, libboost-thread-dev,
libactionlib-msgs-dev, ros-message-generation, python3-rosunit, libstd-msgs-dev
+ ${python3:Depends}, python3, libboost-thread-dev,
libactionlib-msgs-dev, ros-message-generation, python3-rosunit,
libstd-msgs-dev, libroscpp-dev,
Description: ${source:Synopsis} - development files
${source:Extended-Description}
.
Bug#1036007: unblock: opencv/4.6.0+dfsg-12
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: ope...@packages.debian.org
Control: affects -1 + src:opencv
Please unblock package opencv
[ Reason ]
This upload fixes two bugs:
1. #1035886 that adds a single Breaks: against an old library version to
easy the upgrade.
2. #1035954 that adds upstream patches for two CVEs.
[ Impact ]
For 1. users could have problems upgrading.
For 2. I'm not sure about the impact of the CVEs but I guess it is
better to get them fixed before the release.
[ Tests ]
The CVEs carry a test, I did not verify the Breaks: but I assume Andreas
tested it :).
[ Risks ]
The Breaks: means users can't keep the old version, I think that is
acceptable if apt finds a upgrade solution.
For the CVEs the patch looks reasonable but I'm not sure if there is any
risk to it. Given that it applied cleanly to the version in unstable and
that upstream accepted it, I think it is fine.
[ Checklist ]
[X] all changes are documented in the d/changelog
[X] I reviewed all changes and I approve them
[X] attach debdiff against the package in testing
[ Other info ]
The patch carries a change to debian/gbp.conf which is not imported for
the package in the archive.
unblock opencv/4.6.0+dfsg-12
diff --git a/debian/changelog b/debian/changelog
index 35b4b87d7..6ddf7e440 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,16 @@
+opencv (4.6.0+dfsg-12) unstable; urgency=medium
+
+ * Team upload.
+
+ [ Andreas Beckmann ]
+ * libopencv-core406: Add Breaks: libopencv-core4.5 for smoother upgrades
from bullseye
+(Closes: #1035886)
+
+ [ Jochen Sprickerhof ]
+ * Add upstream patches for CVE-2023-2617 and CVE-2023-2618 (Closes: #1035954)
+
+ -- Jochen Sprickerhof Fri, 12 May 2023 11:40:38 +0200
+
opencv (4.6.0+dfsg-11) unstable; urgency=medium
* Update d/rules.
diff --git a/debian/control b/debian/control
index 4b6a4c095..421f0eb14 100644
--- a/debian/control
+++ b/debian/control
@@ -168,6 +168,7 @@ Section: libs
Depends: ${misc:Depends},
${shlibs:Depends}
Pre-Depends: ${misc:Pre-Depends}
+Breaks: libopencv-core4.5 (<< 4.6),
Description: computer vision core library
This package contains the OpenCV (Open Computer Vision) core runtime
libraries.
.
diff --git a/debian/gbp.conf b/debian/gbp.conf
index b5d1dad92..f2905a065 100644
--- a/debian/gbp.conf
+++ b/debian/gbp.conf
@@ -1,3 +1,5 @@
+[DEFAULT]
+component = contrib
+
[import-orig]
pristine-tar = True
-component = contrib
diff --git
a/debian/patches/0009-fix-wechat_qrcode-Init-nBytes-after-the-count-value-.patch
b/debian/patches/0009-fix-wechat_qrcode-Init-nBytes-after-the-count-value-.patch
new file mode 100644
index 0..879403e4b
--- /dev/null
+++
b/debian/patches/0009-fix-wechat_qrcode-Init-nBytes-after-the-count-value-.patch
@@ -0,0 +1,84 @@
+From: Nano
+Date: Wed, 26 Apr 2023 15:09:52 +0800
+Subject: fix(wechat_qrcode): Init nBytes after the count value is determined
+ (#3480)
+
+* fix(wechat_qrcode): Initialize nBytes after the count value is determined
+
+* fix(wechat_qrcode): Incorrect count data repair
+
+* chore: format expr
+
+* fix(wechat_qrcode): Avoid null pointer exception
+
+* fix(wechat_qrcode): return when bytes_ is empty
+
+* test(wechat_qrcode): add test case
+
+-
+
+Co-authored-by: GZTime
+---
+ .../src/zxing/qrcode/decoder/decoded_bit_stream_parser.cpp | 13 +
+ contrib/modules/wechat_qrcode/test/test_qrcode.cpp | 11 +++
+ 2 files changed, 20 insertions(+), 4 deletions(-)
+
+diff --git
a/contrib/modules/wechat_qrcode/src/zxing/qrcode/decoder/decoded_bit_stream_parser.cpp
b/contrib/modules/wechat_qrcode/src/zxing/qrcode/decoder/decoded_bit_stream_parser.cpp
+index 05de793..b3a0a69 100644
+---
a/contrib/modules/wechat_qrcode/src/zxing/qrcode/decoder/decoded_bit_stream_parser.cpp
b/contrib/modules/wechat_qrcode/src/zxing/qrcode/decoder/decoded_bit_stream_parser.cpp
+@@ -65,7 +65,8 @@ void DecodedBitStreamParser::append(std::string& result,
string const& in,
+
+ void DecodedBitStreamParser::append(std::string& result, const char* bufIn,
size_t nIn,
+ ErrorHandler& err_handler) {
+-if (err_handler.ErrCode()) return;
++// avoid null pointer exception
++if (err_handler.ErrCode() || bufIn == nullptr) return;
+ #ifndef NO_ICONV_INSIDE
+ if (nIn == 0) {
+ return;
+@@ -190,16 +191,20 @@ void
DecodedBitStreamParser::decodeByteSegment(Ref bits_, string& res
+CharacterSetECI*
currentCharacterSetECI,
+ArrayRef >&
byteSegments,
+ErrorHandler& err_handler) {
+-int nBytes = count;
+ BitSource& bits(*bits_);
+ // Don't crash trying to read more bits than we have available.
+ int available = bits.available();
+
Bug#1035987: unblock: ros-ros-comm/1.15.15+ds-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock X-Debbugs-Cc: ros-ros-c...@packages.debian.org Control: affects -1 + src:ros-ros-comm Please unblock package ros-ros-comm [ Reason ] python3-rospy extends the Python logging system with it's own API, overwriting the findCaller() function to get the filename and line number where the logging function was called. This broke with Python 3.11, resulting in a dead lock and I fixed it by importing the Python 3.11 function back then. While this worked in a simple case, it showed the wrong source code location when logging was called inside a submodule. The new version in 1.15.15+ds-2 uses the code from ros-ros-comm again, only fixing the deadlock. This is done with two changes: 1. The while hasattr(f, "f_code") looping over the stack, gains a break once there is no more f.f_back to fix the deadlock. 2. The test to find "the right frame" does no longer work with 3.11 as the stack is different. Instead it is identified by the name "_base_logger", as it is used by the code later anyhow. [ Impact ] Wrong filenames and line numbers in logs. [ Tests ] Unit test that the function does not fail, manual tests that it returns the correct value in different cases. [ Risks ] Minimal risk, the original code is part of the project for a long time and the changes are minimal and make sure that it always terminates. The only problem could be that it still prints the wrong value which would be unfortunate but not a big problem as it is used for debugging only. [ Checklist ] [X] all changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in testing [ Other info ] This was reported outside of Debian, thus no bug number. unblock ros-ros-comm/1.15.15+ds-2 diff --git a/debian/changelog b/debian/changelog index acd2cae..5193a76 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,9 @@ +ros-ros-comm (1.15.15+ds-2) unstable; urgency=medium + + * Properly fix rospy logging in Python 3.11 + + -- Jochen Sprickerhof Wed, 10 May 2023 12:27:48 +0200 + ros-ros-comm (1.15.15+ds-1) unstable; urgency=medium * New upstream version 1.15.15+ds diff --git a/debian/patches/0015-rosgraph-update-code-from-Python-3.11.patch b/debian/patches/0015-rosgraph-update-code-from-Python-3.11.patch index dc20fa5..975aca1 100644 --- a/debian/patches/0015-rosgraph-update-code-from-Python-3.11.patch +++ b/debian/patches/0015-rosgraph-update-code-from-Python-3.11.patch @@ -3,102 +3,27 @@ Date: Sun, 13 Nov 2022 16:39:59 +0100 Subject: rosgraph: update code from Python 3.11 --- - tools/rosgraph/src/rosgraph/roslogging.py | 72 --- - 1 file changed, 47 insertions(+), 25 deletions(-) + tools/rosgraph/src/rosgraph/roslogging.py | 7 +++ + 1 file changed, 3 insertions(+), 4 deletions(-) diff --git a/tools/rosgraph/src/rosgraph/roslogging.py b/tools/rosgraph/src/rosgraph/roslogging.py -index 9ecc121..0a94b2b 100644 +index 9ecc121..2df2f22 100644 --- a/tools/rosgraph/src/rosgraph/roslogging.py +++ b/tools/rosgraph/src/rosgraph/roslogging.py -@@ -50,32 +50,58 @@ from rospkg.environment import ROS_LOG_DIR - class LoggingException(Exception): pass - - class RospyLogger(logging.getLoggerClass()): --def findCaller(self, *args, **kwargs): -+# copied from python3.11/logging/__init__.py -+# _srcfile is only used in conjunction with sys._getframe(). -+# Setting _srcfile to None will prevent findCaller() from being called. This -+# way, you can avoid the overhead of fetching caller information. -+ -+# The following is based on warnings._is_internal_frame. It makes sure that -+# frames of the import mechanism are skipped when logging at module level and -+# using a stacklevel value greater than one. -+@staticmethod -+def _is_internal_frame(frame): -+"""Signal whether the frame is a CPython or logging module internal.""" -+filename = os.path.normcase(frame.f_code.co_filename) -+return filename == logging._srcfile or ( -+"importlib" in filename and "_bootstrap" in filename -+) -+ -+ -+def findCaller(self, stack_info=False, stacklevel=1): - """ - Find the stack frame of the caller so that we can note the source - file name, line number, and function name with class name if possible. - """ --file_name, lineno, func_name = super(RospyLogger, self).findCaller(*args, **kwargs)[:3] --file_name = os.path.normcase(file_name) -- --f = inspect.currentframe() --if f is not None: --f = f.f_back --while hasattr(f, "f_code"): +@@ -62,13 +62,12 @@ class RospyLogger(logging.getLoggerClass()): + if f is not None: + f = f.f_back
Bug#1034694: gnome-core: Cannot install due to pipewire-audio dependency
Thanks for the additional information. To my understanding pipewire-alsa and pipewire-audio are put on hold on your system, not allowing it's installation. You can verify that with: apt-mark showhold But the latest gnome-core depends on pipewire-audio so apt can't find a solution. You can reset the state with: sudo apt-mark unhold pipewire-alsa pipewire-audio I can imagine apt printing a more helpful error message there but not sure what to do otherwise. I would close the bug if you agree. Cheers Jochen * Witold Baryluk [2023-05-09 21:14]: Package: gnome-core Version: 1:43+1 Followup-For: Bug #1034694 X-Debbugs-Cc: witold.bary...@gmail.com Hi Jochen. In attachment you should find debug output of apt (stdout + stderr), as well as a dpkg status file. If you want to reproduce the problem, I have a live-build iso image you can boot in qemu. wget -c http://185.108.112.63/smooth/smooth-amd64_20230421T002521Z.iso # 4.0GB sha256sums: cf8818a8989489c0314ee9cddc0650c3d33c0442fa8eb1d103879063ea41c02d smooth-amd64_20230421T002521Z.iso Run in qemu: qemu-system-x86_64 -enable-kvm -M q35 -smp 8 -m 8192 -cdrom smooth-amd64_20230421T002521Z.iso Once loaded into MATE, in terminal emulator: sudo apt update # optionally dist-upgrade sudo apt install gnome-core Hope that helps. Thanks! Witold signature.asc Description: PGP signature
Bug#1034694: gnome-core: Cannot install due to pipewire-audio dependency
Hi Witold, The friendly people in #debian-apt proposed to run: sudo apt install -o Debug::pkgProblemResolver=true -o Debug::pkgDepCache::Marker=1 -o Debug::pkgDepCache::AutoInstall=1 gnome-core And could you also send your /var/lib/dpkg/status file? More information on this: https://salsa.debian.org/apt-team/apt#debugging Thanks! Jochen * Witold Baryluk [2023-05-08 19:02]: Package: gnome-core Version: 1:43+1 Followup-For: Bug #1034694 X-Debbugs-Cc: witold.bary...@gmail.com Here: root@debian:~# sudo apt -V --simulate remove pulseaudio Reading package lists... Done Building dependency tree... Done Reading state information... Done The following packages were automatically installed and are no longer required: bind9-host (1:9.18.12-1) bind9-libs (1:9.18.12-1) libfstrm0 (0.6.1-1) libjemalloc2 (5.3.0-1) libmaxminddb0 (1.7.1-1) libprotobuf-c1 (1.4.1-1+b1) libuv1 (1.44.2-1) Use 'sudo apt autoremove' to remove them. The following additional packages will be installed: liblua5.3-0 (5.3.6-2) libpipewire-0.3-modules (0.3.65-3) libwireplumber-0.4-0 (0.4.13-1) pipewire (0.3.65-3) pipewire-bin (0.3.65-3) pipewire-pulse (0.3.65-3) wireplumber (0.4.13-1) Suggested packages: libspa-0.2-bluetooth (0.3.65-3) wireplumber-doc (0.4.13-1) The following packages will be REMOVED: libcanberra-pulse (0.30-10) pulseaudio (16.1+dfsg1-2+b1) The following NEW packages will be installed: liblua5.3-0 (5.3.6-2) libpipewire-0.3-modules (0.3.65-3) libwireplumber-0.4-0 (0.4.13-1) pipewire (0.3.65-3) pipewire-bin (0.3.65-3) pipewire-pulse (0.3.65-3) wireplumber (0.4.13-1) 0 upgraded, 7 newly installed, 2 to remove and 0 not upgraded. Remv libcanberra-pulse [0.30-10] Remv pulseaudio [16.1+dfsg1-2+b1] Inst liblua5.3-0 (5.3.6-2 Debian:testing [amd64]) Inst libpipewire-0.3-modules (0.3.65-3 Debian:testing [amd64]) Inst libwireplumber-0.4-0 (0.4.13-1 Debian:testing [amd64]) Inst pipewire-bin (0.3.65-3 Debian:testing [amd64]) Inst pipewire (0.3.65-3 Debian:testing [amd64]) Inst pipewire-pulse (0.3.65-3 Debian:testing [amd64]) Inst wireplumber (0.4.13-1 Debian:testing [amd64]) Conf liblua5.3-0 (5.3.6-2 Debian:testing [amd64]) Conf libpipewire-0.3-modules (0.3.65-3 Debian:testing [amd64]) Conf libwireplumber-0.4-0 (0.4.13-1 Debian:testing [amd64]) Conf pipewire-bin (0.3.65-3 Debian:testing [amd64]) Conf pipewire (0.3.65-3 Debian:testing [amd64]) Conf pipewire-pulse (0.3.65-3 Debian:testing [amd64]) Conf wireplumber (0.4.13-1 Debian:testing [amd64]) root@debian:~# Regards, Witold signature.asc Description: PGP signature
