Bug#855138: marked as done (unblock: swi-prolog/7.2.3+dfsg-6)

2017-02-14 Thread Debian Bug Tracking System 
Your message dated Wed, 15 Feb 2017 06:57:00 +
with message-id 
and subject line Re: Bug#855138: unblock: swi-prolog/7.2.3+dfsg-6
has caused the Debian Bug report #855138,
regarding unblock: swi-prolog/7.2.3+dfsg-6
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
855138: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855138
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package swi-prolog

Currently testing contains swi-prolog_7.2.3+dfsg-5. This version has
an RC bug (FTBFS), #852892). Sébastien Villemot fixed it by adding a
new patch that sets LD_LIBRARY_PATH to Java library before running
test-java.sh. Sébastien uploaded NMU to DELAYED/10, but I asked him to
proceed and shorten the delay. So, unstable got
swi-prolog_7.2.3+dfsg-5.1, which was unblocked by Niels
Thykier. Unfortunately, another RC bug (again FTBFS) was found,
#854609. Together with Sébastien we decided to drop swi-prolog-java on
mips to fix the FTBFS bug, and I've uploaded
swi-prolog_7.2.3+dfsg-6. Also I've filled a request to remove
swi-prolog-java on mips in testing, #855004.

That is, the only changes between swi-prolog in testing and in
unstable are fixes for the mentioned RC bugs, as you can see in the
following source debdiff:

-=-=-=-=-

$ debdiff swi-prolog_7.2.3+dfsg-5.dsc swi-prolog_7.2.3+dfsg-6.dsc
diff -Nru swi-prolog-7.2.3+dfsg/debian/changelog 
swi-prolog-7.2.3+dfsg/debian/changelog
--- swi-prolog-7.2.3+dfsg/debian/changelog  2016-12-02 00:20:25.0 
+0500
+++ swi-prolog-7.2.3+dfsg/debian/changelog  2017-02-11 23:30:43.0 
+0500
@@ -1,3 +1,17 @@
+swi-prolog (7.2.3+dfsg-6) unstable; urgency=medium
+
+  * Drop swi-prolog-java on mips. Fixes FTBFS. (Closes: #854609)
+
+ -- Lev Lamberov   Sat, 11 Feb 2017 23:30:43 +0500
+
+swi-prolog (7.2.3+dfsg-5.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * d/p/java-ld-path.diff: new patch, sets LD_LIBRARY_PATH before running
+test-java.sh. Fixes FTBFS. (Closes: #852892)
+
+ -- Sébastien Villemot   Sun, 05 Feb 2017 14:27:07 +0100
+
 swi-prolog (7.2.3+dfsg-5) unstable; urgency=medium

   * Temporary build-depend on libssl1.0-dev (Closes: #845030).
diff -Nru swi-prolog-7.2.3+dfsg/debian/control 
swi-prolog-7.2.3+dfsg/debian/control
--- swi-prolog-7.2.3+dfsg/debian/control2016-12-02 00:20:25.0 
+0500
+++ swi-prolog-7.2.3+dfsg/debian/control2017-02-11 23:30:43.0 
+0500
@@ -12,8 +12,8 @@
libxt-dev,
x11proto-core-dev,
unixodbc-dev,
-   default-jdk [alpha amd64 arm64 i386 mips mipsel mips64el 
powerpc powerpcspe ppc64 ppc64el s390x sh4 x32],
-   junit   [alpha amd64 arm64 i386 mips mipsel mips64el 
powerpc powerpcspe ppc64 ppc64el s390x sh4 x32],
+   default-jdk [alpha amd64 arm64 i386 mipsel mips64el powerpc 
powerpcspe ppc64 ppc64el s390x sh4 x32],
+   junit   [alpha amd64 arm64 i386 mipsel mips64el powerpc 
powerpcspe ppc64 ppc64el s390x sh4 x32],
libxft-dev,
libxext-dev,
libice-dev,
@@ -106,7 +106,7 @@
  gained popularity most with Prolog.

 Package: swi-prolog-java
-Architecture: alpha amd64 arm64 i386 mips mipsel mips64el powerpc powerpcspe 
ppc64 ppc64el s390x sh4 x32
+Architecture: alpha amd64 arm64 i386 mipsel mips64el powerpc powerpcspe ppc64 
ppc64el s390x sh4 x32
 Depends: ${shlibs:Depends},
  swi-prolog-nox (= ${binary:Version}),
  ${misc:Depends},
diff -Nru swi-prolog-7.2.3+dfsg/debian/patches/java-ld-path.diff 
swi-prolog-7.2.3+dfsg/debian/patches/java-ld-path.diff
--- swi-prolog-7.2.3+dfsg/debian/patches/java-ld-path.diff  1970-01-01 
05:00:00.0 +0500
+++ swi-prolog-7.2.3+dfsg/debian/patches/java-ld-path.diff  2017-02-11 
23:30:43.0 +0500
@@ -0,0 +1,17 @@
+Description: Set LD_LIBRARY_PATH to Java binary path before running 
test-java.sh
+Author: Sébastien Villemot 
+Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=852892
+Last-Update: 2017-02-05
+---
+This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
+--- a/packages/jpl/Makefile.in
 b/packages/jpl/Makefile.in
+@@ -63,7 +63,7 @@ check_pl:jpltest.jar
+ echo "No jpltest.jar; maybe junit is not installed?" ; \
+   fi
+ check_java:   jpltest.jar
+-

Bug#855177: marked as done (unblock: matplotlib/2.0.0+dfsg1-2)

2017-02-14 Thread Debian Bug Tracking System 
Your message dated Wed, 15 Feb 2017 06:56:00 +
with message-id <17427371-1582-799b-f137-a5492b3f8...@thykier.net>
and subject line Re: Bug#855177: unblock: matplotlib/2.0.0+dfsg1-2
has caused the Debian Bug report #855177,
regarding unblock: matplotlib/2.0.0+dfsg1-2
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
855177: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855177
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package matplotlib

During the last upload there was a mistake: after removing the non-free image,
an example was left behind; examples in mpl are used to generate the
documentation, and during the doc build this example failed, causing the failure
to generate all the HTML documentation for mpl. In this upload we remove that
example file, as suggested by upstream

I didnt notice this as erroneusly we were ignoring if the doc build process was
generating any errors; this upload also fixes this

debdiff between 2.0.0+dfsg1-1 and 2.0.0+dfsg1-2 is attached

unblock matplotlib/2.0.0+dfsg1-2

-- System Information:
Debian Release: stretch/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.2.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru matplotlib-2.0.0+dfsg1/debian/changelog 
matplotlib-2.0.0+dfsg1/debian/changelog
--- matplotlib-2.0.0+dfsg1/debian/changelog 2017-02-12 16:13:26.0 
-0500
+++ matplotlib-2.0.0+dfsg1/debian/changelog 2017-02-14 19:48:20.0 
-0500
@@ -1,3 +1,13 @@
+matplotlib (2.0.0+dfsg1-2) unstable; urgency=medium
+
+  * debian/rules
+- make a failure in the doc build process also fail the package build
+  * debian/patches/0010-remove-interpolation_none_vs_nearest.py.patch
+- remove an example (which uses the removed necked_tensile_specimen.png
+  image) that made the HTML doc build to fail; Closes: #855029
+
+ -- Sandro Tosi   Tue, 14 Feb 2017 19:48:20 -0500
+
 matplotlib (2.0.0+dfsg1-1) unstable; urgency=medium
 
   * Import upstream tarball with necked_tensile_specimen.png removed
diff -Nru matplotlib-2.0.0+dfsg1/debian/.git-dpm 
matplotlib-2.0.0+dfsg1/debian/.git-dpm
--- matplotlib-2.0.0+dfsg1/debian/.git-dpm  2017-02-12 16:13:26.0 
-0500
+++ matplotlib-2.0.0+dfsg1/debian/.git-dpm  2017-02-14 19:48:20.0 
-0500
@@ -1,6 +1,6 @@
 # see git-dpm(1) from git-dpm package
-cb2f046ef7cc2dc44026a658e5a590685e122b5b
-cb2f046ef7cc2dc44026a658e5a590685e122b5b
+87576dc0ee642fc0c5a298807705eb13492d6d4f
+87576dc0ee642fc0c5a298807705eb13492d6d4f
 b358b1f4101ba66b027228d545973408d1b9
 b358b1f4101ba66b027228d545973408d1b9
 matplotlib_2.0.0+dfsg1.orig.tar.gz
diff -Nru 
matplotlib-2.0.0+dfsg1/debian/patches/0010-remove-interpolation_none_vs_nearest.py.patch
 
matplotlib-2.0.0+dfsg1/debian/patches/0010-remove-interpolation_none_vs_nearest.py.patch
--- 
matplotlib-2.0.0+dfsg1/debian/patches/0010-remove-interpolation_none_vs_nearest.py.patch
1969-12-31 19:00:00.0 -0500
+++ 
matplotlib-2.0.0+dfsg1/debian/patches/0010-remove-interpolation_none_vs_nearest.py.patch
2017-02-14 19:48:20.0 -0500
@@ -0,0 +1,81 @@
+From 87576dc0ee642fc0c5a298807705eb13492d6d4f Mon Sep 17 00:00:00 2001
+From: Sandro Tosi 
+Date: Tue, 14 Feb 2017 19:43:40 -0500
+Subject: remove interpolation_none_vs_nearest.py
+
+this example uses necked_tensile_specimen.png, which has been removed due to a
+non distributable color calibration code, and so when it is executed during the
+build process makes it fail to generate the HTML doc.
+---
+ .../interpolation_none_vs_nearest.py   | 62 --
+ 1 file changed, 62 deletions(-)
+ delete mode 100644 
examples/images_contours_and_fields/interpolation_none_vs_nearest.py
+
+diff --git 
a/examples/images_contours_and_fields/interpolation_none_vs_nearest.py 
b/examples/images_contours_and_fields/interpolation_none_vs_nearest.py
+deleted file mode 100644
+index 487b401..000
+--- a/examples/images_contours_and_fields/interpolation_none_vs_nearest.py
 /dev/null
+@@ -1,62 +0,0 @@
+-"""
+-Displays the difference between interpolation = 'none' and
+-interpolation = 'nearest'.
+-
+-Interpolation = 'none' and interpolation = 'nearest' are equivalent when
+-converting a

Bug#855177: unblock: matplotlib/2.0.0+dfsg1-2

2017-02-14 Thread Sandro Tosi 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package matplotlib

During the last upload there was a mistake: after removing the non-free image,
an example was left behind; examples in mpl are used to generate the
documentation, and during the doc build this example failed, causing the failure
to generate all the HTML documentation for mpl. In this upload we remove that
example file, as suggested by upstream

I didnt notice this as erroneusly we were ignoring if the doc build process was
generating any errors; this upload also fixes this

debdiff between 2.0.0+dfsg1-1 and 2.0.0+dfsg1-2 is attached

unblock matplotlib/2.0.0+dfsg1-2

-- System Information:
Debian Release: stretch/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.2.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru matplotlib-2.0.0+dfsg1/debian/changelog 
matplotlib-2.0.0+dfsg1/debian/changelog
--- matplotlib-2.0.0+dfsg1/debian/changelog 2017-02-12 16:13:26.0 
-0500
+++ matplotlib-2.0.0+dfsg1/debian/changelog 2017-02-14 19:48:20.0 
-0500
@@ -1,3 +1,13 @@
+matplotlib (2.0.0+dfsg1-2) unstable; urgency=medium
+
+  * debian/rules
+- make a failure in the doc build process also fail the package build
+  * debian/patches/0010-remove-interpolation_none_vs_nearest.py.patch
+- remove an example (which uses the removed necked_tensile_specimen.png
+  image) that made the HTML doc build to fail; Closes: #855029
+
+ -- Sandro Tosi   Tue, 14 Feb 2017 19:48:20 -0500
+
 matplotlib (2.0.0+dfsg1-1) unstable; urgency=medium
 
   * Import upstream tarball with necked_tensile_specimen.png removed
diff -Nru matplotlib-2.0.0+dfsg1/debian/.git-dpm 
matplotlib-2.0.0+dfsg1/debian/.git-dpm
--- matplotlib-2.0.0+dfsg1/debian/.git-dpm  2017-02-12 16:13:26.0 
-0500
+++ matplotlib-2.0.0+dfsg1/debian/.git-dpm  2017-02-14 19:48:20.0 
-0500
@@ -1,6 +1,6 @@
 # see git-dpm(1) from git-dpm package
-cb2f046ef7cc2dc44026a658e5a590685e122b5b
-cb2f046ef7cc2dc44026a658e5a590685e122b5b
+87576dc0ee642fc0c5a298807705eb13492d6d4f
+87576dc0ee642fc0c5a298807705eb13492d6d4f
 b358b1f4101ba66b027228d545973408d1b9
 b358b1f4101ba66b027228d545973408d1b9
 matplotlib_2.0.0+dfsg1.orig.tar.gz
diff -Nru 
matplotlib-2.0.0+dfsg1/debian/patches/0010-remove-interpolation_none_vs_nearest.py.patch
 
matplotlib-2.0.0+dfsg1/debian/patches/0010-remove-interpolation_none_vs_nearest.py.patch
--- 
matplotlib-2.0.0+dfsg1/debian/patches/0010-remove-interpolation_none_vs_nearest.py.patch
1969-12-31 19:00:00.0 -0500
+++ 
matplotlib-2.0.0+dfsg1/debian/patches/0010-remove-interpolation_none_vs_nearest.py.patch
2017-02-14 19:48:20.0 -0500
@@ -0,0 +1,81 @@
+From 87576dc0ee642fc0c5a298807705eb13492d6d4f Mon Sep 17 00:00:00 2001
+From: Sandro Tosi 
+Date: Tue, 14 Feb 2017 19:43:40 -0500
+Subject: remove interpolation_none_vs_nearest.py
+
+this example uses necked_tensile_specimen.png, which has been removed due to a
+non distributable color calibration code, and so when it is executed during the
+build process makes it fail to generate the HTML doc.
+---
+ .../interpolation_none_vs_nearest.py   | 62 --
+ 1 file changed, 62 deletions(-)
+ delete mode 100644 
examples/images_contours_and_fields/interpolation_none_vs_nearest.py
+
+diff --git 
a/examples/images_contours_and_fields/interpolation_none_vs_nearest.py 
b/examples/images_contours_and_fields/interpolation_none_vs_nearest.py
+deleted file mode 100644
+index 487b401..000
+--- a/examples/images_contours_and_fields/interpolation_none_vs_nearest.py
 /dev/null
+@@ -1,62 +0,0 @@
+-"""
+-Displays the difference between interpolation = 'none' and
+-interpolation = 'nearest'.
+-
+-Interpolation = 'none' and interpolation = 'nearest' are equivalent when
+-converting a figure to an image file, such as a PNG.
+-Interpolation = 'none' and interpolation = 'nearest' behave quite
+-differently, however, when converting a figure to a vector graphics file,
+-such as a PDF.  As shown, Interpolation = 'none' works well when a big
+-image is scaled down, while interpolation = 'nearest' works well when a
+-small image is blown up.
+-"""
+-
+-import numpy as np
+-import matplotlib.pyplot as plt
+-import matplotlib.cbook as cbook
+-
+-# Load big image
+-big_im_path = cbook.get_sample_data('necked_tensile_specimen.png')
+-big_im = plt.imread(big_im_path)
+-# Define small image
+-small_im = np.array([[0.25, 0.75, 1.0, 0.75], [0.1, 0.65, 0.5, 0.4],
+- [0.6, 0.3, 0.0, 0.2], [0.7, 0.9, 0.4, 0.6]])
+-
+-# Create a 2x2 table of plots
+-fig, axes = plt.subplots(figsize=[8.0, 7.5], ncols=2, nrows=2)
+-
+-axes[0,

Bug#854905: nmu: petsc_3.7.5+dfsg1-4

2017-02-14 Thread Emilio Pozuelo Monfort 
On 14/02/17 23:36, James Clarke wrote:
> You forgot to Cc control@bugs.d.o :)

I Bcc'ed it :P

Emilio

Bug#855127: marked as done (unblock: redmine/3.3.1-3)

2017-02-14 Thread Debian Bug Tracking System 
Your message dated Wed, 15 Feb 2017 00:14:45 +0100
with message-id 
and subject line Re: Bug#855127: unblock: redmine/3.3.1-3
has caused the Debian Bug report #855127,
regarding unblock: redmine/3.3.1-3
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
855127: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855127
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package redmine

It contains fixes for the following bugs:

- #852130 redmine: fails to install, purge and install again (serious)
- #852694 redmine: Bulk edit form not show fields based on target tracker and
  status (important)
- #846978 redmine: [INTL:it] Italian translation of debconf messages

the debdiff against the package in testing is attached.

unblock redmine/3.3.1-3

-- System Information:
Debian Release: 9.0
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'testing-debug'), (500, 
'unstable'), (500, 'testing'), (1, 'experimental-debug'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=pt_BR.UTF-8, LC_CTYPE=pt_BR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru redmine-3.3.1/debian/changelog redmine-3.3.1/debian/changelog
--- redmine-3.3.1/debian/changelog	2016-11-26 00:21:19.0 -0200
+++ redmine-3.3.1/debian/changelog	2017-02-13 14:19:50.0 -0200
@@ -1,3 +1,20 @@
+redmine (3.3.1-3) unstable; urgency=medium
+
+  [ Beatrice Torracca ]
+  * Italian translation update (Closes: #846978)
+
+  [ Antonio Terceiro ]
+  * debian/postrm: restore purging of configuration files created by
+dbconfig-common (Closes: #852130)
+- add a autopkgtest for install/purge/install
+
+  [ Thomas Klose ]
+  * Backport upstream patch to fix Bulk Edit functionality when changing
+between statuses that have different sets of read-only/mandatory fields.
+(Closes: #852694)
+
+ -- Antonio Terceiro   Mon, 13 Feb 2017 14:19:50 -0200
+
 redmine (3.3.1-2) unstable; urgency=medium
 
   [ Antonio Terceiro ]
diff -Nru redmine-3.3.1/debian/patches/0006-Bulk-edit-show-fields-required-after-status-tracker-.patch redmine-3.3.1/debian/patches/0006-Bulk-edit-show-fields-required-after-status-tracker-.patch
--- redmine-3.3.1/debian/patches/0006-Bulk-edit-show-fields-required-after-status-tracker-.patch	1969-12-31 21:00:00.0 -0300
+++ redmine-3.3.1/debian/patches/0006-Bulk-edit-show-fields-required-after-status-tracker-.patch	2017-02-13 14:19:50.0 -0200
@@ -0,0 +1,95 @@
+From: Jean-Philippe Lang 
+Date: Mon, 13 Feb 2017 14:07:59 -0200
+Subject: Bulk edit: show fields required after status/tracker change
+
+Backported-by: Thomas Klose 
+Debian-Bug: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=852694
+Original: http://www.redmine.org/projects/redmine/repository/revisions/15815
+
+This patch must be dropped when upgrading Redmine to version 3.4+.
+---
+ app/controllers/issues_controller.rb | 25 +
+ app/views/issues/bulk_edit.html.erb  |  6 --
+ 2 files changed, 25 insertions(+), 6 deletions(-)
+
+diff --git a/app/controllers/issues_controller.rb b/app/controllers/issues_controller.rb
+index c640aad..556425a 100644
+--- a/app/controllers/issues_controller.rb
 b/app/controllers/issues_controller.rb
+@@ -217,24 +217,41 @@ class IssuesController < ApplicationController
+   end
+ end
+ 
++edited_issues = Issue.where(:id => @issues.map(&:id)).to_a
++
+ @allowed_projects = Issue.allowed_target_projects
+ if params[:issue]
+   @target_project = @allowed_projects.detect {|p| p.id.to_s == params[:issue][:project_id].to_s}
+   if @target_project
+ target_projects = [@target_project]
++edited_issues.each {|issue| issue.project = @target_project}
+   end
+ end
+ target_projects ||= @projects
+ 
++@trackers = target_projects.map {|p| Issue.allowed_target_trackers(p) }.reduce(:&)
++if params[:issue]
++  @target_tracker = @trackers.detect {|t| t.id.to_s == params[:issue][:tracker_id].to_s}
++  if @target_tracker
++edited_issues.each {|issue| issue.tracker = @target_tracker}
++  end
++end
++
+ if @copy
+   # Copied issues will get their default statuses
+   @available_statuses = []
+ else
+-  @available_statuses =

Bug#855170: marked as done (unblock: mapserver/7.0.4-2)

2017-02-14 Thread Debian Bug Tracking System 
Your message dated Tue, 14 Feb 2017 23:13:58 +
with message-id 
and subject line unblock mapserver
has caused the Debian Bug report #855170,
regarding unblock: mapserver/7.0.4-2
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
855170: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855170
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package mapserver

The attached debdiff contains two patches.

The first fixes a DoS and was reported to me privately by Landry Breuil.

The second is not strictly required for unstable, it fixes a FTBFS issue
with PHP 5. It is required for the OSGeo-Live derivative which uses the
source package maintained in Debian.

unblock mapserver/7.0.4-2

Kind Regards,

Bas
diff -Nru mapserver-7.0.4/debian/changelog mapserver-7.0.4/debian/changelog
--- mapserver-7.0.4/debian/changelog2017-01-16 19:38:29.0 +0100
+++ mapserver-7.0.4/debian/changelog2017-02-14 18:29:54.0 +0100
@@ -1,3 +1,11 @@
+mapserver (7.0.4-2) unstable; urgency=medium
+
+  * Add patch to use include paths from php-config.
+  * Add patch by Landry Breuil to fix memory corruption/double-free
+when LAYERS parameter is specified multiple times.
+
+ -- Bas Couwenberg   Tue, 14 Feb 2017 18:29:54 +0100
+
 mapserver (7.0.4-1) unstable; urgency=high
 
   * New upstream release.
diff -Nru 
mapserver-7.0.4/debian/patches/0001-Declare-nLayerOrder-where-it-s-used.-5387.patch
 
mapserver-7.0.4/debian/patches/0001-Declare-nLayerOrder-where-it-s-used.-5387.patch
--- 
mapserver-7.0.4/debian/patches/0001-Declare-nLayerOrder-where-it-s-used.-5387.patch
 1970-01-01 01:00:00.0 +0100
+++ 
mapserver-7.0.4/debian/patches/0001-Declare-nLayerOrder-where-it-s-used.-5387.patch
 2017-02-14 18:23:46.0 +0100
@@ -0,0 +1,25 @@
+Description: Declare nLayerOrder where it's used.
+ If LAYERS is specified multiple times in the query string, nLayerOrder isnt
+ reset to 0, and this leads to memory corruption/double-free's upon exit.
+Author: Landry Breuil 
+Origin: 
https://github.com/mapserver/mapserver/commit/132695864b27bb6fced9a866f35365f445889a00
+Bug: https://github.com/mapserver/mapserver/issues/5387
+
+--- a/mapwms.c
 b/mapwms.c
+@@ -791,7 +791,6 @@ int msWMSLoadGetMapParams(mapObj *map, i
+   const char *wms_request, owsRequestObj *ows_request)
+ {
+   int i, adjust_extent = MS_FALSE, nonsquare_enabled = MS_FALSE;
+-  int nLayerOrder = 0;
+   int transparent = MS_NOOVERRIDE;
+   int bbox_pixel_is_point = MS_FALSE;
+   outputFormatObj *format = NULL;
+@@ -870,6 +869,7 @@ int msWMSLoadGetMapParams(mapObj *map, i
+ 
+ if (strcasecmp(names[i], "LAYERS") == 0) {
+   int  j, k, iLayer, *layerOrder;
++  int nLayerOrder = 0;
+   char ***nestedGroups = NULL;
+   int *numNestedGroups = NULL;
+   int *isUsedInNestedGroup = NULL;
diff -Nru mapserver-7.0.4/debian/patches/php-mapscript.patch 
mapserver-7.0.4/debian/patches/php-mapscript.patch
--- mapserver-7.0.4/debian/patches/php-mapscript.patch  1970-01-01 
01:00:00.0 +0100
+++ mapserver-7.0.4/debian/patches/php-mapscript.patch  2017-02-14 
18:24:48.0 +0100
@@ -0,0 +1,18 @@
+Description: Use include paths from php-config when include path not found.
+Author: Bas Couwenberg 
+Forwarded: https://github.com/mapserver/mapserver/pull/5370
+Applied-Upstream: 
https://github.com/mapserver/mapserver/commit/37a70fff4ab54f12619833414cb1995643f7a10d
+
+--- a/cmake/FindPHP5.cmake
 b/cmake/FindPHP5.cmake
+@@ -86,6 +86,10 @@ IF(PHP5_CONFIG_EXECUTABLE)
+ 
+   MESSAGE(STATUS ${PHP5_MAIN_INCLUDE_DIR})
+ 
++  IF(NOT PHP5_INCLUDE_PATH)
++set(PHP5_INCLUDE_PATH ${PHP5_INCLUDES})
++  ENDIF(NOT PHP5_INCLUDE_PATH)
++
+   IF(PHP5_VERSION LESS 5)
+ MESSAGE(FATAL_ERROR "PHP version is not 5 or later")
+   ENDIF(PHP5_VERSION LESS 5)
diff -Nru mapserver-7.0.4/debian/patches/series 
mapserver-7.0.4/debian/patches/series
--- mapserver-7.0.4/debian/patches/series   2017-01-07 11:15:20.0 
+0100
+++ mapserver-7.0.4/debian/patches/series   2017-02-14 18:23:42.0 
+0100
@@ -2,3 +2,5 @@
 perl-mapscript-install.patch
 ruby-mapscript-install.patch
 java-hardening.patch
+php-mapscript.patch
+0001-Declare-nLayerOrder-where-it-s-used.-5387.patch
--- End Message ---
--- Begin Message ---
Unblocked.--- End Message ---

Bug#855161: unblock: transgui/5.0.1-4.1

2017-02-14 Thread Emilio Pozuelo Monfort 
Control: tags -1 confirmed

On 14/02/17 21:57, Sebastian Andrzej Siewior wrote:
> Package: release.debian.org
> User: release.debian@packages.debian.org
> Usertags: unblock
> Severity: normal
> 
> Please unblock package transgui. The package insists on loading
> libssl+crypto 0.9.8 or 1.0.0 which are both non-existent. I added the
> 1.0.2 version and verified with strace that this library gets loaded.
> I decided against 1.1.0 because it loads some symbols which are longer
> exported by 1.1.0.
> 
> I prepared an NMU upload to /2 and will reschedule until you are fine
> with it :)

LGTM.

Emilio

Processed: Re: Bug#855161: unblock: transgui/5.0.1-4.1

2017-02-14 Thread Debian Bug Tracking System 
Processing control commands:

> tags -1 confirmed
Bug #855161 [release.debian.org] unblock: transgui/5.0.1-4.1
Added tag(s) confirmed.

-- 
855161: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855161
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#855146: marked as done (unblock: synergy/1.4.16-2)

2017-02-14 Thread Debian Bug Tracking System 
Your message dated Tue, 14 Feb 2017 23:08:43 +
with message-id 
and subject line unblock synergy
has caused the Debian Bug report #855146,
regarding unblock: synergy/1.4.16-2
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
855146: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855146
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package synergy

Bug #854567 (important)

Synergy 1.4.16-2 includes a fix for bug #854567 which is a crash on ARM in the 
synergy client during startup.

In addition changes were made to update the fields and description in
debian/control for new maintainer, version control system, and upstream URLs.
unblock synergy/1.4.16-2

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru synergy-1.4.16/debian/changelog synergy-1.4.16/debian/changelog
--- synergy-1.4.16/debian/changelog 2017-01-08 10:28:04.0 +
+++ synergy-1.4.16/debian/changelog 2017-02-08 22:08:21.0 +
@@ -1,3 +1,14 @@
+synergy (1.4.16-2) unstable; urgency=medium
+
+  * Added ensure_non00_cursor.patch to fix a crash when synergyc starts.
+Closes: #854567
+  * Updated debian/control fields: Maintainer, Homepage, Vcs-* with new
+maintainer and upstream information
+  * Changed description to indicate new upstream locations for binary and
+source releases (old URL returned page not found)
+
+ -- Joshua Honeycutt   Wed, 08 Feb 2017 16:08:21 
-0600
+
 synergy (1.4.16-1.2) unstable; urgency=medium
 
   * Non-maintainer upload.
diff -Nru synergy-1.4.16/debian/control synergy-1.4.16/debian/control
--- synergy-1.4.16/debian/control   2016-10-24 04:36:22.0 +
+++ synergy-1.4.16/debian/control   2017-02-08 22:08:21.0 +
@@ -1,10 +1,10 @@
 Source: synergy
 Section: x11
 Priority: optional
-Maintainer: Jeff Licquia 
-Homepage: http://synergy-foss.org/
-Vcs-Git: http://git.licquia.org/raw/synergy-debian.git
-Vcs-Browser: http://git.licquia.org/?p=synergy-debian.git;a=summary
+Maintainer: Joshua Honeycutt 
+Homepage: https://symless.com/synergy/
+Vcs-Git: https://github.com/epakai/synergy-debian.git
+Vcs-Browser: https://github.com/epakai/synergy-debian
 Build-Depends: debhelper (>= 7), libxt-dev, libxtst-dev, libxinerama-dev, 
cmake, docbook-utils, libcrypto++-dev, pkg-config, libqt4-dev, 
libcurl4-gnutls-dev | libcurl-dev, google-mock, libgtest-dev
 Standards-Version: 3.9.5
 
@@ -25,5 +25,8 @@
  together and, if screen locking is enabled, only one screen requires
  a password to unlock them all.
  .
- Packages for Windows/MacOS/RPM and Sources can be found at
- http://sourceforge.net/project/showfiles.php?group_id=59275
+ Packages for Windows/MacOS/RPM are available for paid members at 
+ https://symless.com/synergy/
+ .
+ Sources can be found at
+ https://github.com/symless/synergy/releases
diff -Nru synergy-1.4.16/debian/patches/ensure_non00_cursor.patch 
synergy-1.4.16/debian/patches/ensure_non00_cursor.patch
--- synergy-1.4.16/debian/patches/ensure_non00_cursor.patch 1970-01-01 
00:00:00.0 +
+++ synergy-1.4.16/debian/patches/ensure_non00_cursor.patch 2017-02-08 
22:08:21.0 +
@@ -0,0 +1,33 @@
+Description: Upstream fix for synergyc crash when createBlankCursor tries to 
create a 0x0 cursor.
+Origin: 
https://github.com/symless/synergy/commit/723a8a919570b3e3faa5ac430e675f14945e1951
+Bug-Debian: https://bugs.debian.org/854567
+Bug: https://github.com/symless/synergy/issues/5322
+Bug: https://github.com/symless/synergy/issues/5068
+Bug: https://github.com/symless/synergy/issues/5087
+Bug: https://github.com/symless/synergy/issues/5504
+Author: Joshua Honeycutt 
+Forwarded: not-needed
+Last-Update: 2017-02-09
+
+--- a/src/lib/platform/CXWindowsScreen.cpp
 b/src/lib/platform/CXWindowsScreen.cpp
+@@ -33,6 +33,7 @@
+ #include "TMethodEventJob.h"
+ #include 
+ #include 
++#include 
+ #if X_DISPLAY_MISSING
+ # error X11 is required to build synergy
+ #else
+@@ -1660,8 +1661,10 @@
+   // this seems just a bit more complicated than really necessary

Bug#855146: unblock: synergy/1.4.16-2

2017-02-14 Thread Emilio Pozuelo Monfort 
On 14/02/17 22:44, Joshua Honeycutt wrote:
> On Tue, 14 Feb 2017 18:39:11 +0100 Emilio Pozuelo Monfort
>  wrote:
>> I don't see the need to advertise that in a package description... I'm sure
>> those who are interested in them can find the information in the upstream
>> homepage...
>>
> 
> Sorry, I sent this off list before by mistake. (some edits have been made)
> 
> I made this change because I was following the previous description's
> example. I think there is some justification for including information
> about binaries for other platforms because synergy is often used to
> share input devices between computers running different operating
> systems. In any case I'm happy to yield to more experienced input and
> remove both link mentions.
> 
> If I do remove the links I will replace them with a mention of upstream's
> paid binary distribution because I think it's important for users
> considering synergy to be aware of.
> 
> I'm new to the unblock process. If this change is necessary should I
> upload a new version to unstable, and reply back to this bug once
> complete or is a new unblock bug required?

No worries, I guess that's alright-ish given the nature of the software.

Emilio

Bug#854905: nmu: petsc_3.7.5+dfsg1-4

2017-02-14 Thread James Clarke 
user release.debian@packages.debian.org
usertag 854905 nmu
thanks

On Sun, Feb 12, 2017 at 08:16:06PM +0100, Emilio Pozuelo Monfort wrote:
> user release.debian@packages.debian.org
> usertag 854905 nmu
> thanks
>
> On 11/02/17 21:41, Adrian Bunk wrote:
> > Control: reassign -1 release.debian.org
> > Control: retitle -1 nmu: petsc_3.7.5+dfsg1-4
> > Control: severity -1 normal
> > Control: tags -1 - sid
> > Control: affects -1 libpetsc3.7.5-dev
>
> You forgot to usertag it...

You forgot to Cc control@bugs.d.o :)

Regards,
James

Processed (with 2 errors): Re: [debian-mysql] Bug#855163: Missing mariadb-plugin-tokudb binary package on amd64

2017-02-14 Thread Debian Bug Tracking System 
Processing control commands:

> reassign -1 release.debian.org
Bug #855163 [src:mariadb-10.1] Missing mariadb-plugin-tokudb binary package on 
amd64
Bug reassigned from package 'src:mariadb-10.1' to 'release.debian.org'.
No longer marked as found in versions mariadb-10.1/10.1.21-5.
Ignoring request to alter fixed versions of bug #855163 to the same values 
previously set
> user release.debian@packages.debian.org
Unknown command or malformed arguments to command.

> usertags -1 binnmu
Unknown command or malformed arguments to command.

> severity -1 normal
Bug #855163 [release.debian.org] Missing mariadb-plugin-tokudb binary package 
on amd64
Severity set to 'normal' from 'serious'
> retitle -1 nmu: mariadb-10.1_10.1.21-5
Bug #855163 [release.debian.org] Missing mariadb-plugin-tokudb binary package 
on amd64
Changed Bug title to 'nmu: mariadb-10.1_10.1.21-5' from 'Missing 
mariadb-plugin-tokudb binary package on amd64'.

-- 
855163: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855163
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#855170: unblock: mapserver/7.0.4-2

2017-02-14 Thread Bas Couwenberg 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package mapserver

The attached debdiff contains two patches.

The first fixes a DoS and was reported to me privately by Landry Breuil.

The second is not strictly required for unstable, it fixes a FTBFS issue
with PHP 5. It is required for the OSGeo-Live derivative which uses the
source package maintained in Debian.

unblock mapserver/7.0.4-2

Kind Regards,

Bas
diff -Nru mapserver-7.0.4/debian/changelog mapserver-7.0.4/debian/changelog
--- mapserver-7.0.4/debian/changelog2017-01-16 19:38:29.0 +0100
+++ mapserver-7.0.4/debian/changelog2017-02-14 18:29:54.0 +0100
@@ -1,3 +1,11 @@
+mapserver (7.0.4-2) unstable; urgency=medium
+
+  * Add patch to use include paths from php-config.
+  * Add patch by Landry Breuil to fix memory corruption/double-free
+when LAYERS parameter is specified multiple times.
+
+ -- Bas Couwenberg   Tue, 14 Feb 2017 18:29:54 +0100
+
 mapserver (7.0.4-1) unstable; urgency=high
 
   * New upstream release.
diff -Nru 
mapserver-7.0.4/debian/patches/0001-Declare-nLayerOrder-where-it-s-used.-5387.patch
 
mapserver-7.0.4/debian/patches/0001-Declare-nLayerOrder-where-it-s-used.-5387.patch
--- 
mapserver-7.0.4/debian/patches/0001-Declare-nLayerOrder-where-it-s-used.-5387.patch
 1970-01-01 01:00:00.0 +0100
+++ 
mapserver-7.0.4/debian/patches/0001-Declare-nLayerOrder-where-it-s-used.-5387.patch
 2017-02-14 18:23:46.0 +0100
@@ -0,0 +1,25 @@
+Description: Declare nLayerOrder where it's used.
+ If LAYERS is specified multiple times in the query string, nLayerOrder isnt
+ reset to 0, and this leads to memory corruption/double-free's upon exit.
+Author: Landry Breuil 
+Origin: 
https://github.com/mapserver/mapserver/commit/132695864b27bb6fced9a866f35365f445889a00
+Bug: https://github.com/mapserver/mapserver/issues/5387
+
+--- a/mapwms.c
 b/mapwms.c
+@@ -791,7 +791,6 @@ int msWMSLoadGetMapParams(mapObj *map, i
+   const char *wms_request, owsRequestObj *ows_request)
+ {
+   int i, adjust_extent = MS_FALSE, nonsquare_enabled = MS_FALSE;
+-  int nLayerOrder = 0;
+   int transparent = MS_NOOVERRIDE;
+   int bbox_pixel_is_point = MS_FALSE;
+   outputFormatObj *format = NULL;
+@@ -870,6 +869,7 @@ int msWMSLoadGetMapParams(mapObj *map, i
+ 
+ if (strcasecmp(names[i], "LAYERS") == 0) {
+   int  j, k, iLayer, *layerOrder;
++  int nLayerOrder = 0;
+   char ***nestedGroups = NULL;
+   int *numNestedGroups = NULL;
+   int *isUsedInNestedGroup = NULL;
diff -Nru mapserver-7.0.4/debian/patches/php-mapscript.patch 
mapserver-7.0.4/debian/patches/php-mapscript.patch
--- mapserver-7.0.4/debian/patches/php-mapscript.patch  1970-01-01 
01:00:00.0 +0100
+++ mapserver-7.0.4/debian/patches/php-mapscript.patch  2017-02-14 
18:24:48.0 +0100
@@ -0,0 +1,18 @@
+Description: Use include paths from php-config when include path not found.
+Author: Bas Couwenberg 
+Forwarded: https://github.com/mapserver/mapserver/pull/5370
+Applied-Upstream: 
https://github.com/mapserver/mapserver/commit/37a70fff4ab54f12619833414cb1995643f7a10d
+
+--- a/cmake/FindPHP5.cmake
 b/cmake/FindPHP5.cmake
+@@ -86,6 +86,10 @@ IF(PHP5_CONFIG_EXECUTABLE)
+ 
+   MESSAGE(STATUS ${PHP5_MAIN_INCLUDE_DIR})
+ 
++  IF(NOT PHP5_INCLUDE_PATH)
++set(PHP5_INCLUDE_PATH ${PHP5_INCLUDES})
++  ENDIF(NOT PHP5_INCLUDE_PATH)
++
+   IF(PHP5_VERSION LESS 5)
+ MESSAGE(FATAL_ERROR "PHP version is not 5 or later")
+   ENDIF(PHP5_VERSION LESS 5)
diff -Nru mapserver-7.0.4/debian/patches/series 
mapserver-7.0.4/debian/patches/series
--- mapserver-7.0.4/debian/patches/series   2017-01-07 11:15:20.0 
+0100
+++ mapserver-7.0.4/debian/patches/series   2017-02-14 18:23:42.0 
+0100
@@ -2,3 +2,5 @@
 perl-mapscript-install.patch
 ruby-mapscript-install.patch
 java-hardening.patch
+php-mapscript.patch
+0001-Declare-nLayerOrder-where-it-s-used.-5387.patch

Bug#855146: unblock: synergy/1.4.16-2

2017-02-14 Thread Joshua Honeycutt 
On Tue, 14 Feb 2017 18:39:11 +0100 Emilio Pozuelo Monfort
 wrote:
> I don't see the need to advertise that in a package description... I'm sure
> those who are interested in them can find the information in the upstream
> homepage...
>

Sorry, I sent this off list before by mistake. (some edits have been made)

I made this change because I was following the previous description's
example. I think there is some justification for including information
about binaries for other platforms because synergy is often used to
share input devices between computers running different operating
systems. In any case I'm happy to yield to more experienced input and
remove both link mentions.

If I do remove the links I will replace them with a mention of upstream's
paid binary distribution because I think it's important for users
considering synergy to be aware of.

I'm new to the unblock process. If this change is necessary should I
upload a new version to unstable, and reply back to this bug once
complete or is a new unblock bug required?

Joshua Honeycutt

Bug#855161: unblock: transgui/5.0.1-4.1

2017-02-14 Thread Sebastian Andrzej Siewior 
Package: release.debian.org
User: release.debian@packages.debian.org
Usertags: unblock
Severity: normal

Please unblock package transgui. The package insists on loading
libssl+crypto 0.9.8 or 1.0.0 which are both non-existent. I added the
1.0.2 version and verified with strace that this library gets loaded.
I decided against 1.1.0 because it loads some symbols which are longer
exported by 1.1.0.

I prepared an NMU upload to /2 and will reschedule until you are fine
with it :)

unblock transgui/5.0.1-4.1

Sebastian
diff -Nru transgui-5.0.1/debian/changelog transgui-5.0.1/debian/changelog
--- transgui-5.0.1/debian/changelog	2016-03-25 19:30:44.0 +0100
+++ transgui-5.0.1/debian/changelog	2017-02-14 21:12:57.0 +0100
@@ -1,3 +1,11 @@
+transgui (5.0.1-4.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Build-depend on libssl1.0-dev and load the 1.0.2 library
+(Closes: #855007, #839863).
+
+ -- Sebastian Andrzej Siewior   Tue, 14 Feb 2017 21:12:57 +0100
+
 transgui (5.0.1-4) unstable; urgency=medium
 
   * Remove error message when opening containing folder (Closes: #811289)
diff -Nru transgui-5.0.1/debian/control transgui-5.0.1/debian/control
--- transgui-5.0.1/debian/control	2016-03-25 19:30:44.0 +0100
+++ transgui-5.0.1/debian/control	2017-02-13 08:15:56.0 +0100
@@ -14,7 +14,7 @@
libgdk-pixbuf2.0-dev,
libgtk2.0-dev,
libpango1.0-dev,
-   libssl-dev,
+   libssl1.0-dev,
libx11-dev
 Standards-Version: 3.9.6
 Homepage: http://code.google.com/p/transmisson-remote-gui/
diff -Nru transgui-5.0.1/debian/files transgui-5.0.1/debian/files
--- transgui-5.0.1/debian/files	1970-01-01 01:00:00.0 +0100
+++ transgui-5.0.1/debian/files	2017-02-14 21:12:57.0 +0100
@@ -0,0 +1 @@
+transgui_5.0.1-4.1_source.buildinfo net optional
diff -Nru transgui-5.0.1/debian/patches/force_ssl1.0.2.patch transgui-5.0.1/debian/patches/force_ssl1.0.2.patch
--- transgui-5.0.1/debian/patches/force_ssl1.0.2.patch	1970-01-01 01:00:00.0 +0100
+++ transgui-5.0.1/debian/patches/force_ssl1.0.2.patch	2017-02-14 21:12:57.0 +0100
@@ -0,0 +1,17 @@
+---
+ rpc.pas |4 ++--
+ 1 file changed, 2 insertions(+), 2 deletions(-)
+
+--- a/rpc.pas
 b/rpc.pas
+@@ -585,8 +585,8 @@ procedure TRpc.InitSSL;
+ {$ifndef darwin}
+   procedure CheckOpenSSL;
+   const
+-OpenSSLVersions: array[1..2] of string =
+-  ('0.9.8', '1.0.0');
++OpenSSLVersions: array[1..3] of string =
++  ('1.0.2', '0.9.8', '1.0.0');
+   var
+ hLib1, hLib2: TLibHandle;
+ i: integer;
diff -Nru transgui-5.0.1/debian/patches/series transgui-5.0.1/debian/patches/series
--- transgui-5.0.1/debian/patches/series	2016-03-25 19:30:44.0 +0100
+++ transgui-5.0.1/debian/patches/series	2017-02-13 08:13:22.0 +0100
@@ -1 +1,2 @@
 fix.open.patch
+force_ssl1.0.2.patch

Bug#855137: unblock: mathjax/2.7.0-2 (pre-approval)

2017-02-14 Thread Dmitry Shachnev 
Control: tags -1 -moreinfo

Hi Niels!

On Tue, Feb 14, 2017 at 04:58:00PM +, Niels Thykier wrote:
> Hi Dmitry,
>
> Thanks for bringing this up.
>
> To be honest, I think it would be unfortunate to disable the
> accessibility menu.  Is MathJax-a11y a stand-alone/single package?  If
> so and it is simple to package, I might be more tempted to grant an
> exception and go with solution A).

It is simple to package, there is no need to minify JS files, just install
them. I will also need to patch MathJax to look for the extension in the
installed path.

The unpacked tarball is 1.4 Mb, most of which (800 K) is the documentation.

The source files (.js) alone are 2440 lines of code.

> Failing that, I am inclined to go with deferring the fix to buster
> (unless an accessibility friendly alternative is found).

I am fine with whatever you decide.

--
Dmitry Shachnev


signature.asc
Description: PGP signature

Re: Package shotwell

2017-02-14 Thread Richard B. Kreckel 
On 02/13/2017 09:03 PM, Richard B. Kreckel wrote:
> Good to hear again from you regarding this package, Jörg!
> 
> On 02/13/2017 05:32 PM, Emilio Pozuelo Monfort wrote:
>> On 13/02/17 13:15, Jörg Frings-Fürst wrote:
>>> Hello,
>>>
>>>
>>> Is there a way to get the old version shotwell / 0.24.0-1 back in
>>> testing.
>>>
>>> The current version 0.25.1-1 is to buggy.
>>
>> Not surprising, given 0.25.x are from the development branch.
>>
>> There is #854912 asking to unblock 0.25.4. Going back to 0.24.x is another
>> option, but you would need to upload that with a higher version to sid (e.g.
>> 1:0.24.0-1)...
> 
> Given that it's a little late, I do propose to wait for 0.25.4 to be
> unblocked. After all, it's 7 days old and a new package would have to
> start again at 0.
> 
> Well, unless there're good reasons to do otherwise.

Now there is a reason: #854912 has been turned down.
I've just NMU'd 0.25.4+really0.24.5-0.1.
Hope that can get in now.

  -richy.
-- 
Richard B. Kreckel

Processed: Re: Bug#855137: unblock: mathjax/2.7.0-2 (pre-approval)

2017-02-14 Thread Debian Bug Tracking System 
Processing control commands:

> tags -1 -moreinfo
Bug #855137 [release.debian.org] unblock: mathjax/2.7.0-2 (pre-approval)
Removed tag(s) moreinfo.

-- 
855137: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855137
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#855146: unblock: synergy/1.4.16-2

2017-02-14 Thread Emilio Pozuelo Monfort 
On 14/02/17 18:10, Joshua Honeycutt wrote:
> @@ -25,5 +25,8 @@
>   together and, if screen locking is enabled, only one screen requires
>   a password to unlock them all.
>   .
> - Packages for Windows/MacOS/RPM and Sources can be found at
> - http://sourceforge.net/project/showfiles.php?group_id=59275
> + Packages for Windows/MacOS/RPM are available for paid members at 
> + https://symless.com/synergy/
> + .
> + Sources can be found at
> + https://github.com/symless/synergy/releases

I don't see the need to advertise that in a package description... I'm sure
those who are interested in them can find the information in the upstream
homepage...

Emilio

Bug#855109: unblock: pyrit/0.4.0-7.1

2017-02-14 Thread Emilio Pozuelo Monfort 
On 14/02/17 10:38, Gianfranco Costamagna wrote:
> Package: release.debian.org
> User: release.debian@packages.debian.org
> Usertags: unblock
> Severity: normal
> 
> Please unblock package pyrit
> 
> RC bug fixed (FTBFS). Trivial upstream patch

This failed to build on i386.

Emilio

Processed: tagging 855114

2017-02-14 Thread Debian Bug Tracking System 
Processing commands for cont...@bugs.debian.org:

> tags 855114 + moreinfo
Bug #855114 [release.debian.org] unblock (pre-approval): nginx/1.10.3-1
Added tag(s) moreinfo.
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
855114: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855114
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#855109: marked as done (unblock: pyrit/0.4.0-7.1)

2017-02-14 Thread Debian Bug Tracking System 
Your message dated Tue, 14 Feb 2017 17:28:18 +
with message-id <20170214172818.mxn6cx3vsnd53...@powdarrmonkey.net>
and subject line Re: Bug#855109: unblock: pyrit/0.4.0-7.1
has caused the Debian Bug report #855109,
regarding unblock: pyrit/0.4.0-7.1
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
855109: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855109
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
User: release.debian@packages.debian.org
Usertags: unblock
Severity: normal

Please unblock package pyrit

RC bug fixed (FTBFS). Trivial upstream patch


unblock pyrit/0.4.0-7.1

thanks

G.
diff -Nru pyrit-0.4.0/debian/changelog pyrit-0.4.0/debian/changelog
--- pyrit-0.4.0/debian/changelog	2016-04-17 16:31:10.0 +0200
+++ pyrit-0.4.0/debian/changelog	2017-02-14 10:28:20.0 +0100
@@ -1,3 +1,12 @@
+pyrit (0.4.0-7.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  [ Sophie Brun ]
+  * debian/patches/update-for-scapy-2.3.3.patch:
+- fix build failure with new python-scapy (Closes: #850692)
+
+ -- Gianfranco Costamagna   Tue, 14 Feb 2017 10:27:30 +0100
+
 pyrit (0.4.0-7) unstable; urgency=medium
 
   * d/control:
diff -Nru pyrit-0.4.0/debian/patches/series pyrit-0.4.0/debian/patches/series
--- pyrit-0.4.0/debian/patches/series	2016-03-21 22:33:10.0 +0100
+++ pyrit-0.4.0/debian/patches/series	2017-02-14 10:27:30.0 +0100
@@ -1,3 +1,4 @@
 0006-custom-config-file.patch
 0014-performancecounter-handle-empty-result-gracefully.patch
 0015-increase-timeout-in-unittests.patch
+update-for-scapy-2.3.3.patch
diff -Nru pyrit-0.4.0/debian/patches/update-for-scapy-2.3.3.patch pyrit-0.4.0/debian/patches/update-for-scapy-2.3.3.patch
--- pyrit-0.4.0/debian/patches/update-for-scapy-2.3.3.patch	1970-01-01 01:00:00.0 +0100
+++ pyrit-0.4.0/debian/patches/update-for-scapy-2.3.3.patch	2017-02-14 10:35:17.0 +0100
@@ -0,0 +1,45 @@
+Subject: Update isinstance(EnumField) for scapy 2.3.3+
+ scapy 2.3.2- requires that scapy.fields.EnumField is passed to
+ isinstance, while scapy 2.3.3+ needs scapy.fields._EnumField.
+ This patch accomodates pyrit for both versions.
+Author: Ilya Terentyev 
+Origin: https://github.com/JPaulMora/Pyrit/commit/14ec997174b8e8fd20d22b6a97c57e19633f12a0
+Bug: https://github.com/JPaulMora/Pyrit/issues/500
+Bug-Kali: https://bugs.kali.org/view.php?id=3801
+Date: Tue, 1 Nov 2016 20:40:15 +0300
+Forwarded: not-needed
+Last-Update: 2017-01-06
+
+---
+ cpyrit/pckttools.py | 13 -
+ 1 file changed, 12 insertions(+), 1 deletion(-)
+
+diff --git a/cpyrit/pckttools.py b/cpyrit/pckttools.py
+index 326829d..d58fff1 100644
+--- a/cpyrit/pckttools.py
 b/cpyrit/pckttools.py
+@@ -54,12 +54,23 @@
+ scapy.layers.dot11.PrismHeader)
+ 
+ 
++def isEnumField(f):
++"""Return True if f is an instance of EnumField.  This function tries to be
++   portable: scapy versions 2.3.2 and earlier need isinstance(EnumField),
++   while scapy 2.3.3+ requires isinstance(_EnumField).
++"""
++try:
++return isinstance(f, scapy.fields._EnumField)
++except AttributeError:
++return isinstance(f, scapy.fields.EnumField)
++
++
+ def isFlagSet(self, name, value):
+ """Return True if the given field 'includes' the given value.
+Exact behaviour of this function is specific to the field-type.
+ """
+ field, val = self.getfield_and_val(name)
+-if isinstance(field, scapy.fields.EnumField):
++if isEnumField(field):
+ if val not in field.i2s:
+ return False
+ return field.i2s[val] == value
--- End Message ---
--- Begin Message ---
On Tue, Feb 14, 2017 at 09:38:16AM +, Gianfranco Costamagna wrote:
> Please unblock package pyrit
> 
> RC bug fixed (FTBFS). Trivial upstream patch

Unblocked.

-- 
Jonathan Wiltshire  j...@debian.org
Debian Developer http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51--- End Message ---

Bug#855090: marked as done (unblock: sidedoor/0.2.0-3)

2017-02-14 Thread Debian Bug Tracking System 
Your message dated Tue, 14 Feb 2017 17:24:58 +
with message-id <20170214172458.2qf5iesuru2mv...@powdarrmonkey.net>
and subject line Re: Bug#855090: unblock: sidedoor/0.2.0-3
has caused the Debian Bug report #855090,
regarding unblock: sidedoor/0.2.0-3
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
855090: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855090
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package sidedoor

sidedoor 0.2.0-3 in unstable fixes #854720 (serious) by moving the
location of a configuration file read by ucf in postinst. A source
debdiff is attached. Thank you.

unblock sidedoor/0.2.0-3
diff -Nru sidedoor-0.2.0/debian/changelog sidedoor-0.2.0/debian/changelog
--- sidedoor-0.2.0/debian/changelog 2017-01-22 01:41:58.0 -0500
+++ sidedoor-0.2.0/debian/changelog 2017-02-09 15:37:43.0 -0500
@@ -1,3 +1,10 @@
+sidedoor (0.2.0-3) unstable; urgency=medium
+
+  * Move sudoers example to sidedoor-sudo package.
+Thanks Andreas Beckmann. (Closes: #854720)
+
+ -- Dara Adib   Thu, 09 Feb 2017 15:37:43 -0500
+
 sidedoor (0.2.0-2) unstable; urgency=medium
 
   * Fixes to sidedoor-sudo.
diff -Nru sidedoor-0.2.0/debian/control sidedoor-0.2.0/debian/control
--- sidedoor-0.2.0/debian/control   2017-01-22 01:21:16.0 -0500
+++ sidedoor-0.2.0/debian/control   2017-02-09 15:37:43.0 -0500
@@ -41,5 +41,5 @@
  sidedoor maintains an SSH connection or tunnel
  with a shell script daemon.
  .
- This empty package creates a sudoers entry to
+ This package creates a sudoers entry to
  grant the sidedoor user full root access.
diff -Nru sidedoor-0.2.0/debian/sidedoor.examples 
sidedoor-0.2.0/debian/sidedoor.examples
--- sidedoor-0.2.0/debian/sidedoor.examples 2017-01-17 20:58:41.0 
-0500
+++ sidedoor-0.2.0/debian/sidedoor.examples 2017-02-09 15:37:43.0 
-0500
@@ -1,2 +1 @@
 ssh_client_config_example
-sudoers
diff -Nru sidedoor-0.2.0/debian/sidedoor-sudo.install 
sidedoor-0.2.0/debian/sidedoor-sudo.install
--- sidedoor-0.2.0/debian/sidedoor-sudo.install 1969-12-31 19:00:00.0 
-0500
+++ sidedoor-0.2.0/debian/sidedoor-sudo.install 2017-02-09 15:37:43.0 
-0500
@@ -0,0 +1 @@
+sudoers usr/share/sidedoor-sudo
diff -Nru sidedoor-0.2.0/debian/sidedoor-sudo.postinst 
sidedoor-0.2.0/debian/sidedoor-sudo.postinst
--- sidedoor-0.2.0/debian/sidedoor-sudo.postinst2017-01-22 
01:41:58.0 -0500
+++ sidedoor-0.2.0/debian/sidedoor-sudo.postinst2017-02-09 
15:37:43.0 -0500
@@ -4,11 +4,11 @@
 
 #DEBHELPER#
 
-EXAMPLE=/usr/share/doc/sidedoor/examples/sudoers
+SOURCE=/usr/share/sidedoor-sudo/sudoers
 SUDOERS=/etc/sudoers.d/sidedoor
 
 if [ "$1" = configure ]; then
-  ucf "$EXAMPLE" "$SUDOERS"
+  ucf "$SOURCE" "$SUDOERS"
   chmod 0440 "$SUDOERS"  # for extra peace of mind
   ucfr sidedoor-sudo "$SUDOERS"
 fi
--- End Message ---
--- Begin Message ---
On Mon, Feb 13, 2017 at 06:20:28PM -0500, Dara Adib wrote:
> Please unblock package sidedoor
> 
> sidedoor 0.2.0-3 in unstable fixes #854720 (serious) by moving the
> location of a configuration file read by ucf in postinst. A source
> debdiff is attached. Thank you.

Unblocked.

-- 
Jonathan Wiltshire  j...@debian.org
Debian Developer http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51--- End Message ---

Bug#855112: marked as done (unblock: libevent/2.0.21-stable-3)

2017-02-14 Thread Debian Bug Tracking System 
Your message dated Tue, 14 Feb 2017 17:15:00 +
with message-id <2c691ab4-ebe0-68a2-5ca3-a89fc9686...@thykier.net>
and subject line Re: Bug#855112: unblock: libevent/2.0.21-stable-3
has caused the Debian Bug report #855112,
regarding unblock: libevent/2.0.21-stable-3
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
855112: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855112
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Dear Release Team,

Please unblock latest libevent in unstable.

Changes:
 libevent (2.0.21-stable-3) unstable; urgency=medium
 .
   * Fix three vulnerabilites (Closes: #854092):
 - DNS remote stack overread vulnerability (CVE-2016-10195)
 - (Stack) buffer overflow in evutil_parse_sockaddr_port()
   (CVE-2016-10196)
 - Out-of-bounds read in search_make_new() (CVE-2016-10197)
   * Add myself as an uploader
   * ACK NMU

Cheers,
Balint

unblock libevent/2.0.21-stable-3

diff -Nru libevent-2.0.21-stable/debian/changelog libevent-2.0.21-stable/debian/changelog
--- libevent-2.0.21-stable/debian/changelog	2016-11-03 08:43:46.0 +0100
+++ libevent-2.0.21-stable/debian/changelog	2017-02-12 21:45:49.0 +0100
@@ -1,3 +1,15 @@
+libevent (2.0.21-stable-3) unstable; urgency=medium
+
+  * Fix three vulnerabilites (Closes: #854092):
+- DNS remote stack overread vulnerability (CVE-2016-10195)
+- (Stack) buffer overflow in evutil_parse_sockaddr_port()
+  (CVE-2016-10196)
+- Out-of-bounds read in search_make_new() (CVE-2016-10197)
+  * Add myself as an uploader
+  * ACK NMU
+
+ -- Balint Reczey   Sun, 12 Feb 2017 21:43:18 +0100
+
 libevent (2.0.21-stable-2.1) unstable; urgency=medium
 
   [ Helmut Grohne ]
diff -Nru libevent-2.0.21-stable/debian/control libevent-2.0.21-stable/debian/control
--- libevent-2.0.21-stable/debian/control	2014-08-25 18:02:38.0 +0200
+++ libevent-2.0.21-stable/debian/control	2017-02-12 21:45:49.0 +0100
@@ -2,7 +2,8 @@
 Section: libs
 Priority: optional
 Maintainer: Anibal Monsalve Salazar 
-Uploaders: Leo Costela 
+Uploaders: Leo Costela ,
+   Balint Reczey 
 Build-Depends: dpkg-dev (>= 1.16.1~), debhelper (>= 9), libssl-dev, dh-autoreconf
 Standards-Version: 3.9.3
 Homepage: http://libevent.org/
diff -Nru libevent-2.0.21-stable/debian/patches/0001-evdns-fix-searching-empty-hostnames.patch libevent-2.0.21-stable/debian/patches/0001-evdns-fix-searching-empty-hostnames.patch
--- libevent-2.0.21-stable/debian/patches/0001-evdns-fix-searching-empty-hostnames.patch	1970-01-01 01:00:00.0 +0100
+++ libevent-2.0.21-stable/debian/patches/0001-evdns-fix-searching-empty-hostnames.patch	2017-02-12 21:45:49.0 +0100
@@ -0,0 +1,65 @@
+From ec65c42052d95d2c23d1d837136d1cf1d9ecef9e Mon Sep 17 00:00:00 2001
+From: Azat Khuzhin 
+Date: Fri, 25 Mar 2016 00:33:47 +0300
+Subject: [PATCH] evdns: fix searching empty hostnames
+
+From #332:
+  Here follows a bug report by **Guido Vranken** via the _Tor bug bounty program_. Please credit Guido accordingly.
+
+  ## Bug report
+
+  The DNS code of Libevent contains this rather obvious OOB read:
+
+  ```c
+  static char *
+  search_make_new(const struct search_state *const state, int n, const char *const base_name) {
+  const size_t base_len = strlen(base_name);
+  const char need_to_append_dot = base_name[base_len - 1] == '.' ? 0 : 1;
+  ```
+
+  If the length of ```base_name``` is 0, then line 3125 reads 1 byte before the buffer. This will trigger a crash on ASAN-protected builds.
+
+  To reproduce:
+
+  Build libevent with ASAN:
+  ```
+  $ CFLAGS='-fomit-frame-pointer -fsanitize=address' ./configure && make -j4
+  ```
+  Put the attached ```resolv.conf``` and ```poc.c``` in the source directory and then do:
+
+  ```
+  $ gcc -fsanitize=address -fomit-frame-pointer poc.c .libs/libevent.a
+  $ ./a.out
+  =
+  ==22201== ERROR: AddressSanitizer: heap-buffer-overflow on address 0x6006efdf at pc 0x4429da bp 0x7ffe1ed47300 sp 0x7ffe1ed472f8
+  READ of size 1 at 0x6006efdf thread T0
+  ```
+
+P.S. we can add a check earlier, but since this is very uncommon, I didn't add it.
+
+Fixes: #332
+---
+ evdns.c | 5 -
+ 1 file changed, 4 insertions(+), 1 deletion(-)
+
+diff --git a/evdns.c b/evdns.c
+index 905ff6b..e9dbc35 100644
+--- a/evdns.c

Bug#855114: unblock (pre-approval): nginx/1.10.3-1

2017-02-14 Thread Niels Thykier 
Control: tags -1 confirmed

Christos Trochalakis:
> Package: release.debian.org
> Severity: normal
> User: release.debian@packages.debian.org
> Usertags: unblock
> 
> *I have not yet uploaded to unstable*, and I am asking for pre-approval
> to upload 1.10.3-1.
> 
> 1.10.3-1 will only include the new upstream release (1.10.2 -> 1.10.3)
> and no packaging changes.
> 
> Nginx 1.10.3 is a stable bugfix release that handles 8 bugfixes
> including a segmentation fault.
> 
> Relevant bug report: https://bugs.debian.org/855113
> Changelog: https://nginx.org/en/CHANGES-1.10
> Diff:
> https://github.com/nginx/nginx/compare/release-1.10.2...release-1.10.3
> 
> Thank you!
> 

Ok, please go ahead and upload that to unstable (I assuming there are
not changes to the debian/ beyond on the d/changelog).

Thanks,
~Niels

Bug#855146: unblock: synergy/1.4.16-2

2017-02-14 Thread Joshua Honeycutt 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package synergy

Bug #854567 (important)

Synergy 1.4.16-2 includes a fix for bug #854567 which is a crash on ARM in the 
synergy client during startup.

In addition changes were made to update the fields and description in
debian/control for new maintainer, version control system, and upstream URLs.
unblock synergy/1.4.16-2

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru synergy-1.4.16/debian/changelog synergy-1.4.16/debian/changelog
--- synergy-1.4.16/debian/changelog 2017-01-08 10:28:04.0 +
+++ synergy-1.4.16/debian/changelog 2017-02-08 22:08:21.0 +
@@ -1,3 +1,14 @@
+synergy (1.4.16-2) unstable; urgency=medium
+
+  * Added ensure_non00_cursor.patch to fix a crash when synergyc starts.
+Closes: #854567
+  * Updated debian/control fields: Maintainer, Homepage, Vcs-* with new
+maintainer and upstream information
+  * Changed description to indicate new upstream locations for binary and
+source releases (old URL returned page not found)
+
+ -- Joshua Honeycutt   Wed, 08 Feb 2017 16:08:21 
-0600
+
 synergy (1.4.16-1.2) unstable; urgency=medium
 
   * Non-maintainer upload.
diff -Nru synergy-1.4.16/debian/control synergy-1.4.16/debian/control
--- synergy-1.4.16/debian/control   2016-10-24 04:36:22.0 +
+++ synergy-1.4.16/debian/control   2017-02-08 22:08:21.0 +
@@ -1,10 +1,10 @@
 Source: synergy
 Section: x11
 Priority: optional
-Maintainer: Jeff Licquia 
-Homepage: http://synergy-foss.org/
-Vcs-Git: http://git.licquia.org/raw/synergy-debian.git
-Vcs-Browser: http://git.licquia.org/?p=synergy-debian.git;a=summary
+Maintainer: Joshua Honeycutt 
+Homepage: https://symless.com/synergy/
+Vcs-Git: https://github.com/epakai/synergy-debian.git
+Vcs-Browser: https://github.com/epakai/synergy-debian
 Build-Depends: debhelper (>= 7), libxt-dev, libxtst-dev, libxinerama-dev, 
cmake, docbook-utils, libcrypto++-dev, pkg-config, libqt4-dev, 
libcurl4-gnutls-dev | libcurl-dev, google-mock, libgtest-dev
 Standards-Version: 3.9.5
 
@@ -25,5 +25,8 @@
  together and, if screen locking is enabled, only one screen requires
  a password to unlock them all.
  .
- Packages for Windows/MacOS/RPM and Sources can be found at
- http://sourceforge.net/project/showfiles.php?group_id=59275
+ Packages for Windows/MacOS/RPM are available for paid members at 
+ https://symless.com/synergy/
+ .
+ Sources can be found at
+ https://github.com/symless/synergy/releases
diff -Nru synergy-1.4.16/debian/patches/ensure_non00_cursor.patch 
synergy-1.4.16/debian/patches/ensure_non00_cursor.patch
--- synergy-1.4.16/debian/patches/ensure_non00_cursor.patch 1970-01-01 
00:00:00.0 +
+++ synergy-1.4.16/debian/patches/ensure_non00_cursor.patch 2017-02-08 
22:08:21.0 +
@@ -0,0 +1,33 @@
+Description: Upstream fix for synergyc crash when createBlankCursor tries to 
create a 0x0 cursor.
+Origin: 
https://github.com/symless/synergy/commit/723a8a919570b3e3faa5ac430e675f14945e1951
+Bug-Debian: https://bugs.debian.org/854567
+Bug: https://github.com/symless/synergy/issues/5322
+Bug: https://github.com/symless/synergy/issues/5068
+Bug: https://github.com/symless/synergy/issues/5087
+Bug: https://github.com/symless/synergy/issues/5504
+Author: Joshua Honeycutt 
+Forwarded: not-needed
+Last-Update: 2017-02-09
+
+--- a/src/lib/platform/CXWindowsScreen.cpp
 b/src/lib/platform/CXWindowsScreen.cpp
+@@ -33,6 +33,7 @@
+ #include "TMethodEventJob.h"
+ #include 
+ #include 
++#include 
+ #if X_DISPLAY_MISSING
+ # error X11 is required to build synergy
+ #else
+@@ -1660,8 +1661,10 @@
+   // this seems just a bit more complicated than really necessary
+ 
+   // get the closet cursor size to 1x1
+-  unsigned int w, h;
++  unsigned int w = 0, h = 0;
+   XQueryBestCursor(m_display, m_root, 1, 1, , );
++  w = std::max(1u, w);
++  h = std::max(1u, h);
+ 
+   // make bitmap data for cursor of closet size.  since the cursor
+   // is blank we can use the same bitmap for shape and mask:  all
diff -Nru synergy-1.4.16/debian/patches/series 
synergy-1.4.16/debian/patches/series
--- synergy-1.4.16/debian/patches/series2017-01-08 10:21:30.0 
+
+++ synergy-1.4.16/debian/patches/series2017-02-08 22:08:21.0 
+
@@ -1,3 +1,4 @@
+ensure_non00_cursor.patch
 debian_google-test.patch
 system-cryptopp.patch
 cprotocolutil-writef.patch

Bug#854912: unblock: shotwell/0.25.4-0.1

2017-02-14 Thread Jonathan Wiltshire 
Control: tag -1 moreinfo

Hi,

On Sat, Feb 11, 2017 at 09:52:42PM +0100, Richard B. Kreckel wrote:
> Please unblock package shotwell.
> 
> Upstream version 0.25.1 of shotwell was packaged for testing, but that
> version is unsuitable for release in stretch as it contained tons of
> temporary regressions due to a major change in the menu handling
> code, cf. Bug#849688. These bugs have been ironed out upstream in
> versin 0.25.4, which is the NMU I'm kindly requesting to be unblocked.
> 
> Oh, and BTW: I'm personally using shotwell almost daily and I can
> confirm that 0.25.4 runs smoothly while 0.25.1 is so broken it's next to
> useless.

Your upload appears still to be affected by the RC bug #850149?

You sent a binary debdiff, not source (across the .dsc files); anyway, it
comes to:

 379 files changed, 71693 insertions(+), 64987 deletions(-)

There's no way that can be reviewed, and I'm not very happy about having a
development release (0.25) in Stretch anyway.

Please revert a practical 0.24 version in unstable (you'll have to gain a
version epoch, please don't do "really"s) and update this bug when it's
ready to be unblocked.

-- 
Jonathan Wiltshire  j...@debian.org
Debian Developer http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51

Processed: Re: Bug#854912: unblock: shotwell/0.25.4-0.1

2017-02-14 Thread Debian Bug Tracking System 
Processing control commands:

> tag -1 moreinfo
Bug #854912 [release.debian.org] unblock: shotwell/0.25.4-0.1
Added tag(s) moreinfo.

-- 
854912: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854912
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Processed: Re: Bug#855114: unblock (pre-approval): nginx/1.10.3-1

2017-02-14 Thread Debian Bug Tracking System 
Processing control commands:

> tags -1 confirmed
Bug #855114 [release.debian.org] unblock (pre-approval): nginx/1.10.3-1
Added tag(s) confirmed.

-- 
855114: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855114
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#855128: marked as done (unblock: vagrant-sshfs/1.3.0-2)

2017-02-14 Thread Debian Bug Tracking System 
Your message dated Tue, 14 Feb 2017 17:05:00 +
with message-id <97c92214-bb9a-424b-eaed-1c28f828a...@thykier.net>
and subject line Re: Bug#855128: unblock: vagrant-sshfs/1.3.0-2
has caused the Debian Bug report #855128,
regarding unblock: vagrant-sshfs/1.3.0-2
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
855128: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855128
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package vagrant-sshfs

the version in unstable fixes a RC bug. It also includes a autopkgtest
smoke test, and adds a missing dependency. debdiff attached.

unblock vagrant-sshfs/1.3.0-2

-- System Information:
Debian Release: 9.0
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'testing-debug'), (500, 
'unstable'), (500, 'testing'), (1, 'experimental-debug'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=pt_BR.UTF-8, LC_CTYPE=pt_BR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru vagrant-sshfs-1.3.0/debian/changelog vagrant-sshfs-1.3.0/debian/changelog
--- vagrant-sshfs-1.3.0/debian/changelog	2017-01-06 19:52:50.0 -0200
+++ vagrant-sshfs-1.3.0/debian/changelog	2017-02-14 09:59:55.0 -0200
@@ -1,3 +1,12 @@
+vagrant-sshfs (1.3.0-2) unstable; urgency=medium
+
+  * Team upload.
+  * debian/rules: use rubygems installation layout (Closes: #854517)
+  * Add missing dependency on vagrant
+  * Add simple autopkgtest smoke test
+
+ -- Antonio Terceiro   Tue, 14 Feb 2017 09:59:55 -0200
+
 vagrant-sshfs (1.3.0-1) unstable; urgency=medium
 
   * New upstream release
diff -Nru vagrant-sshfs-1.3.0/debian/control vagrant-sshfs-1.3.0/debian/control
--- vagrant-sshfs-1.3.0/debian/control	2016-09-06 14:41:11.0 -0300
+++ vagrant-sshfs-1.3.0/debian/control	2017-02-14 09:59:55.0 -0200
@@ -19,6 +19,7 @@
 XB-Ruby-Versions: ${ruby:Versions}
 Depends: ruby | ruby-interpreter,
  openssh-sftp-server,
+ vagrant,
  ${misc:Depends},
  ${shlibs:Depends}
 Description: vagrant plugin that adds synced folder support with sshfs
diff -Nru vagrant-sshfs-1.3.0/debian/rules vagrant-sshfs-1.3.0/debian/rules
--- vagrant-sshfs-1.3.0/debian/rules	2016-09-06 10:48:19.0 -0300
+++ vagrant-sshfs-1.3.0/debian/rules	2017-02-14 09:59:55.0 -0200
@@ -3,6 +3,7 @@
 include /usr/share/dpkg/default.mk
 
 export GEM2DEB_TEST_RUNNER = --check-dependencies
+export DH_RUBY = --gem-install
 
 %:
 	dh $@ --buildsystem=ruby --with ruby
diff -Nru vagrant-sshfs-1.3.0/debian/tests/control vagrant-sshfs-1.3.0/debian/tests/control
--- vagrant-sshfs-1.3.0/debian/tests/control	1969-12-31 21:00:00.0 -0300
+++ vagrant-sshfs-1.3.0/debian/tests/control	2017-02-14 09:59:55.0 -0200
@@ -0,0 +1 @@
+Tests: smoke-test
diff -Nru vagrant-sshfs-1.3.0/debian/tests/smoke-test vagrant-sshfs-1.3.0/debian/tests/smoke-test
--- vagrant-sshfs-1.3.0/debian/tests/smoke-test	1969-12-31 21:00:00.0 -0300
+++ vagrant-sshfs-1.3.0/debian/tests/smoke-test	2017-02-14 09:59:55.0 -0200
@@ -0,0 +1,6 @@
+#!/bin/sh
+
+exec 2>&1
+set -exu
+
+vagrant global-status


signature.asc
Description: PGP signature
--- End Message ---
--- Begin Message ---
Antonio Terceiro:
> Package: release.debian.org
> Severity: normal
> User: release.debian@packages.debian.org
> Usertags: unblock
> 
> Please unblock package vagrant-sshfs
> 
> the version in unstable fixes a RC bug. It also includes a autopkgtest
> smoke test, and adds a missing dependency. debdiff attached.
> 
> unblock vagrant-sshfs/1.3.0-2
> 
> [...]

Unblocked, thanks.

~Niels--- End Message ---

Processed: Re: Bug#855137: unblock: mathjax/2.7.0-2 (pre-approval)

2017-02-14 Thread Debian Bug Tracking System 
Processing control commands:

> tags -1 moreinfo
Bug #855137 [release.debian.org] unblock: mathjax/2.7.0-2 (pre-approval)
Added tag(s) moreinfo.

-- 
855137: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855137
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#855137: unblock: mathjax/2.7.0-2 (pre-approval)

2017-02-14 Thread Niels Thykier 
Control: tags -1 moreinfo

Dmitry Shachnev:
> Package: release.debian.org
> Severity: normal
> User: release.debian@packages.debian.org
> Usertags: unblock
> 
> Dear release team,
> 
> I would like to fix bug #854399, which tells that MathJax by default downloads
> and evaluates a JS file from https://cdn.mathjax.org/.
> 
> In https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854399#10 I listed the
> three possible ways to fix it. A) is not applicable for Stretch because it
> means packaging a new source. As it turns out, C) is not possible too,
> because accessibility-menu.js is just a wrapper that loads other extensions
> from MathJax-a11y repository, and I do not want to bundle all of them.
> 
> So I would like to go with B), which means disabling the accessibility menu
> in the packaged version of MathJax.
> 
> The debdiff for what I would like to upload is attached. It is quite a long
> patch because there are many configurations. This patch can be replaced with
> (and is identical to) one sed call in debian/rules, but I prefer the patch
> because it is easier to revert after build.
> 
> Please let me know if it is OK to upload this to sid.
> 
> --
> Dmitry Shachnev
> 

Hi Dmitry,

Thanks for bringing this up.

To be honest, I think it would be unfortunate to disable the
accessibility menu.  Is MathJax-a11y a stand-alone/single package?  If
so and it is simple to package, I might be more tempted to grant an
exception and go with solution A).

Failing that, I am inclined to go with deferring the fix to buster
(unless an accessibility friendly alternative is found).

Thanks,
~Niels

Bug#855143: unblock: wpa/2.5-2+v2.4-4stretch1

2017-02-14 Thread Andrew Shadura 
On 14/02/17 17:25, Andrew Shadura wrote:
> This fix has to go through testing-proposed-updates.
> 
> Thanks for considering.
> 
> unblock wpa/2.5-2+v2.4-4stretch1

Sorry, the debdiff I attached was made against a never released version
of the package (differing only in the version number). Attaching the
correct one.

-- 
Cheers,
  Andrew
diff -Nru wpa-2.5-2+v2.4/debian/changelog wpa-2.5-2+v2.4/debian/changelog
--- wpa-2.5-2+v2.4/debian/changelog 2016-09-14 11:11:05.0 +0200
+++ wpa-2.5-2+v2.4/debian/changelog 2017-02-14 17:10:53.0 +0100
@@ -1,3 +1,17 @@
+wpa (2.5-2+v2.4-4stretch1) testing; urgency=medium
+
+  [ Vincent Danjean ]
+  * Build with libssl1.0-dev (Closes: #828601).
+  * Add an upstream patch to fix hostapd in SMPS mode (Closes: #854719).
+
+  [ Andrew Shadura ]
+  * Don't install debian/system-sleep/wpasupplicant (originally introduced
+to fix LP: #1422143), it doesn't improve the state of the things,
+introduces regressions in some cases, and at all isn't supposed to
+work with how wpa-supplicant is started these days (Closes: #835648).
+
+ -- Andrew Shadura   Tue, 14 Feb 2017 17:10:53 +0100
+
 wpa (2.5-2+v2.4-3) unstable; urgency=medium
 
   [ Helmut Grohne ]
diff -Nru wpa-2.5-2+v2.4/debian/control wpa-2.5-2+v2.4/debian/control
--- wpa-2.5-2+v2.4/debian/control   2016-08-05 20:43:38.0 +0200
+++ wpa-2.5-2+v2.4/debian/control   2017-02-14 17:02:28.0 +0100
@@ -8,7 +8,7 @@
 Priority: optional
 Build-Depends: debhelper (>> 9.20120115),
  libdbus-1-dev,
- libssl-dev,
+ libssl1.0-dev,
  libqt4-dev,
  libncurses5-dev,
  libpcsclite-dev,
diff -Nru 
wpa-2.5-2+v2.4/debian/patches/from-upstream-hostapd-fix-SMPS-mode.patch 
wpa-2.5-2+v2.4/debian/patches/from-upstream-hostapd-fix-SMPS-mode.patch
--- wpa-2.5-2+v2.4/debian/patches/from-upstream-hostapd-fix-SMPS-mode.patch 
1970-01-01 01:00:00.0 +0100
+++ wpa-2.5-2+v2.4/debian/patches/from-upstream-hostapd-fix-SMPS-mode.patch 
2017-02-14 17:07:16.0 +0100
@@ -0,0 +1,56 @@
+From: Jouni Malinen 
+Date: Fri Mar 18 16:16:40 2016 +0200
+Subject: nl80211: Do not add NL80211_ATTR_SMPS_MODE attribute if HT is disabled
+
+SMPS mode is applicable only for HT and including an attribute to
+configure it when HT is disabled could result in the AP start operation
+failing. Fix this by adding the attribute only in cases where HT is
+enabled.
+
+Upstream commit ee298f1b1f7efd7eb5fd510f36b25ff88208017c
+--- a/src/drivers/driver_nl80211.c
 b/src/drivers/driver_nl80211.c
+@@ -3419,24 +3419,26 @@
+   nla_put_u32(msg, NL80211_ATTR_CIPHER_SUITE_GROUP, suite))
+   goto fail;
+ 
+-  switch (params->smps_mode) {
+-  case HT_CAP_INFO_SMPS_DYNAMIC:
+-  wpa_printf(MSG_DEBUG, "nl80211: SMPS mode - dynamic");
+-  smps_mode = NL80211_SMPS_DYNAMIC;
+-  break;
+-  case HT_CAP_INFO_SMPS_STATIC:
+-  wpa_printf(MSG_DEBUG, "nl80211: SMPS mode - static");
+-  smps_mode = NL80211_SMPS_STATIC;
+-  break;
+-  default:
+-  /* invalid - fallback to smps off */
+-  case HT_CAP_INFO_SMPS_DISABLED:
+-  wpa_printf(MSG_DEBUG, "nl80211: SMPS mode - off");
+-  smps_mode = NL80211_SMPS_OFF;
+-  break;
++  if (params->ht_opmode != -1) {
++  switch (params->smps_mode) {
++  case HT_CAP_INFO_SMPS_DYNAMIC:
++  wpa_printf(MSG_DEBUG, "nl80211: SMPS mode - dynamic");
++  smps_mode = NL80211_SMPS_DYNAMIC;
++  break;
++  case HT_CAP_INFO_SMPS_STATIC:
++  wpa_printf(MSG_DEBUG, "nl80211: SMPS mode - static");
++  smps_mode = NL80211_SMPS_STATIC;
++  break;
++  default:
++  /* invalid - fallback to smps off */
++  case HT_CAP_INFO_SMPS_DISABLED:
++  wpa_printf(MSG_DEBUG, "nl80211: SMPS mode - off");
++  smps_mode = NL80211_SMPS_OFF;
++  break;
++  }
++  if (nla_put_u32(msg, NL80211_ATTR_SMPS_MODE, smps_mode))
++  goto fail;
+   }
+-  if (nla_put_u32(msg, NL80211_ATTR_SMPS_MODE, smps_mode))
+-  goto fail;
+ 
+   if (params->beacon_ies) {
+   wpa_hexdump_buf(MSG_DEBUG, "nl80211: beacon_ies",
diff -Nru wpa-2.5-2+v2.4/debian/patches/lowercase-mschapv2.patch 
wpa-2.5-2+v2.4/debian/patches/lowercase-mschapv2.patch
--- wpa-2.5-2+v2.4/debian/patches/lowercase-mschapv2.patch  1970-01-01 
01:00:00.0 +0100
+++ wpa-2.5-2+v2.4/debian/patches/lowercase-mschapv2.patch  2017-01-20 
21:32:38.0 +0100
@@ -0,0 +1,19 @@
+From: Andrew Shadura 
+Subject: Temporarily accept never supported MSCHAPv2 syntax and issue a 
warning.
+
+--- a/src/eap_peer/eap_ttls.c

Bug#855143: unblock: wpa/2.5-2+v2.4-4stretch1

2017-02-14 Thread Andrew Shadura 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Please unblock package wpa.

wpa-supplicant 2.6 brought some regressions making it unfit for stretch,
so I decided to keep 2.4 in testing. However, two minor fixes didn't
make it into 2.4 package, and later a grave bug was found in 2.4
compared to 2.3 jessie ships. Because of this I'm asking to unblock a
version that fixes these bugs:

  * Build with libssl1.0-dev (Closes: #828601).

Without this fix, it wouldn't be possible to build the following
fix.

  * Add an upstream patch to fix hostapd in SMPS mode (Closes: #854719).

This is a grave bug which breaks hostapd presumably for many users.

  * Don't install debian/system-sleep/wpasupplicant (originally introduced
to fix LP: #1422143), it doesn't improve the state of the things,
introduces regressions in some cases, and at all isn't supposed to
work with how wpa-supplicant is started these days (Closes: #835648).

This bug slows down shutdown for many users, and as the fix is just
not installing a single file, I don't see a reason to not ship it.

This fix has to go through testing-proposed-updates.

Thanks for considering.

unblock wpa/2.5-2+v2.4-4stretch1

- -- 
Cheers,
  Andrew

-BEGIN PGP SIGNATURE-

iQExBAEBCAAbBQJYoy+GFBxhbmRyZXdzaEBkZWJpYW4ub3JnAAoJEJ1bI/kYT6UU
1tYH/3h8eaMFB386jUQtIXvAZbruzSm29FlDlXslMgaSX1SaBqbIYS2frxJ6RfvT
lU5A5gtaNMqA+TjFeump0sHPjLiwDhNnyDJFgZx9XNqDdedBpaEDRQf6ffv02j1P
WyY7AZFT+Kw7gijwujx4Bb35oeFUgDUWQ7MvDB10gbhPmRVM2kT2YryVNIwkyGhR
mflwqXw7AsK3dcVo0BCGPrxIMy9Jl4oKxTUVLeQwtOQr5jy2HlOSyt6Vz396bkFq
aerMYFkk0m2SEITddDbwMybYD+Xv0tiLyAfOeL4HFswmCiMW26BEk2HzI5OREOdK
vtDHQ7P1mSS5BTUKbn8LNwqn2lc=
=CZE0
-END PGP SIGNATURE-
diff -Nru wpa-2.5-2+v2.4/debian/changelog wpa-2.5-2+v2.4/debian/changelog
--- wpa-2.5-2+v2.4/debian/changelog	2016-09-14 11:08:29.0 +0200
+++ wpa-2.5-2+v2.4/debian/changelog	2017-02-14 17:10:53.0 +0100
@@ -1,4 +1,18 @@
-wpa (2.5-2+v2.4-4) unstable; urgency=medium
+wpa (2.5-2+v2.4-4stretch1) testing; urgency=medium
+
+  [ Vincent Danjean ]
+  * Build with libssl1.0-dev (Closes: #828601).
+  * Add an upstream patch to fix hostapd in SMPS mode (Closes: #854719).
+
+  [ Andrew Shadura ]
+  * Don't install debian/system-sleep/wpasupplicant (originally introduced
+to fix LP: #1422143), it doesn't improve the state of the things,
+introduces regressions in some cases, and at all isn't supposed to
+work with how wpa-supplicant is started these days (Closes: #835648).
+
+ -- Andrew Shadura   Tue, 14 Feb 2017 17:10:53 +0100
+
+wpa (2.5-2+v2.4-3) unstable; urgency=medium
 
   [ Helmut Grohne ]
   * Address FTCBFS: Set PKG_CONFIG (Closes: #836074).
@@ -7,7 +21,7 @@
   * Don't run wpa_cli suspend/resume if /run/wpa_supplicant isn't around
 (Closes: #835648).
 
- -- Andrew Shadura   Wed, 14 Sep 2016 11:08:27 +0200
+ -- Andrew Shadura   Wed, 14 Sep 2016 11:11:01 +0200
 
 wpa (2.5-2+v2.4-2) unstable; urgency=medium
 
diff -Nru wpa-2.5-2+v2.4/debian/control wpa-2.5-2+v2.4/debian/control
--- wpa-2.5-2+v2.4/debian/control	2016-08-05 20:43:38.0 +0200
+++ wpa-2.5-2+v2.4/debian/control	2017-02-14 17:02:28.0 +0100
@@ -8,7 +8,7 @@
 Priority: optional
 Build-Depends: debhelper (>> 9.20120115),
  libdbus-1-dev,
- libssl-dev,
+ libssl1.0-dev,
  libqt4-dev,
  libncurses5-dev,
  libpcsclite-dev,
diff -Nru wpa-2.5-2+v2.4/debian/patches/from-upstream-hostapd-fix-SMPS-mode.patch wpa-2.5-2+v2.4/debian/patches/from-upstream-hostapd-fix-SMPS-mode.patch
--- wpa-2.5-2+v2.4/debian/patches/from-upstream-hostapd-fix-SMPS-mode.patch	1970-01-01 01:00:00.0 +0100
+++ wpa-2.5-2+v2.4/debian/patches/from-upstream-hostapd-fix-SMPS-mode.patch	2017-02-14 17:07:16.0 +0100
@@ -0,0 +1,56 @@
+From: Jouni Malinen 
+Date: Fri Mar 18 16:16:40 2016 +0200
+Subject: nl80211: Do not add NL80211_ATTR_SMPS_MODE attribute if HT is disabled
+
+SMPS mode is applicable only for HT and including an attribute to
+configure it when HT is disabled could result in the AP start operation
+failing. Fix this by adding the attribute only in cases where HT is
+enabled.
+
+Upstream commit ee298f1b1f7efd7eb5fd510f36b25ff88208017c
+--- a/src/drivers/driver_nl80211.c
 b/src/drivers/driver_nl80211.c
+@@ -3419,24 +3419,26 @@
+ 	nla_put_u32(msg, NL80211_ATTR_CIPHER_SUITE_GROUP, suite))
+ 		goto fail;
+ 
+-	switch (params->smps_mode) {
+-	case HT_CAP_INFO_SMPS_DYNAMIC:
+-		wpa_printf(MSG_DEBUG, "nl80211: SMPS mode - dynamic");
+-		smps_mode = NL80211_SMPS_DYNAMIC;
+-		break;
+-	case HT_CAP_INFO_SMPS_STATIC:
+-		wpa_printf(MSG_DEBUG, "nl80211: SMPS mode - static");
+-		smps_mode = NL80211_SMPS_STATIC;
+-		break;
+-	default:
+-		/* invalid - fallback to smps off */
+-	case HT_CAP_INFO_SMPS_DISABLED:
+-		wpa_printf(MSG_DEBUG, "nl80211: SMPS

Bug#855138: unblock: swi-prolog/7.2.3+dfsg-6

2017-02-14 Thread Lev Lamberov 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package swi-prolog

Currently testing contains swi-prolog_7.2.3+dfsg-5. This version has
an RC bug (FTBFS), #852892). Sébastien Villemot fixed it by adding a
new patch that sets LD_LIBRARY_PATH to Java library before running
test-java.sh. Sébastien uploaded NMU to DELAYED/10, but I asked him to
proceed and shorten the delay. So, unstable got
swi-prolog_7.2.3+dfsg-5.1, which was unblocked by Niels
Thykier. Unfortunately, another RC bug (again FTBFS) was found,
#854609. Together with Sébastien we decided to drop swi-prolog-java on
mips to fix the FTBFS bug, and I've uploaded
swi-prolog_7.2.3+dfsg-6. Also I've filled a request to remove
swi-prolog-java on mips in testing, #855004.

That is, the only changes between swi-prolog in testing and in
unstable are fixes for the mentioned RC bugs, as you can see in the
following source debdiff:

-=-=-=-=-

$ debdiff swi-prolog_7.2.3+dfsg-5.dsc swi-prolog_7.2.3+dfsg-6.dsc
diff -Nru swi-prolog-7.2.3+dfsg/debian/changelog 
swi-prolog-7.2.3+dfsg/debian/changelog
--- swi-prolog-7.2.3+dfsg/debian/changelog  2016-12-02 00:20:25.0 
+0500
+++ swi-prolog-7.2.3+dfsg/debian/changelog  2017-02-11 23:30:43.0 
+0500
@@ -1,3 +1,17 @@
+swi-prolog (7.2.3+dfsg-6) unstable; urgency=medium
+
+  * Drop swi-prolog-java on mips. Fixes FTBFS. (Closes: #854609)
+
+ -- Lev Lamberov   Sat, 11 Feb 2017 23:30:43 +0500
+
+swi-prolog (7.2.3+dfsg-5.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * d/p/java-ld-path.diff: new patch, sets LD_LIBRARY_PATH before running
+test-java.sh. Fixes FTBFS. (Closes: #852892)
+
+ -- Sébastien Villemot   Sun, 05 Feb 2017 14:27:07 +0100
+
 swi-prolog (7.2.3+dfsg-5) unstable; urgency=medium

   * Temporary build-depend on libssl1.0-dev (Closes: #845030).
diff -Nru swi-prolog-7.2.3+dfsg/debian/control 
swi-prolog-7.2.3+dfsg/debian/control
--- swi-prolog-7.2.3+dfsg/debian/control2016-12-02 00:20:25.0 
+0500
+++ swi-prolog-7.2.3+dfsg/debian/control2017-02-11 23:30:43.0 
+0500
@@ -12,8 +12,8 @@
libxt-dev,
x11proto-core-dev,
unixodbc-dev,
-   default-jdk [alpha amd64 arm64 i386 mips mipsel mips64el 
powerpc powerpcspe ppc64 ppc64el s390x sh4 x32],
-   junit   [alpha amd64 arm64 i386 mips mipsel mips64el 
powerpc powerpcspe ppc64 ppc64el s390x sh4 x32],
+   default-jdk [alpha amd64 arm64 i386 mipsel mips64el powerpc 
powerpcspe ppc64 ppc64el s390x sh4 x32],
+   junit   [alpha amd64 arm64 i386 mipsel mips64el powerpc 
powerpcspe ppc64 ppc64el s390x sh4 x32],
libxft-dev,
libxext-dev,
libice-dev,
@@ -106,7 +106,7 @@
  gained popularity most with Prolog.

 Package: swi-prolog-java
-Architecture: alpha amd64 arm64 i386 mips mipsel mips64el powerpc powerpcspe 
ppc64 ppc64el s390x sh4 x32
+Architecture: alpha amd64 arm64 i386 mipsel mips64el powerpc powerpcspe ppc64 
ppc64el s390x sh4 x32
 Depends: ${shlibs:Depends},
  swi-prolog-nox (= ${binary:Version}),
  ${misc:Depends},
diff -Nru swi-prolog-7.2.3+dfsg/debian/patches/java-ld-path.diff 
swi-prolog-7.2.3+dfsg/debian/patches/java-ld-path.diff
--- swi-prolog-7.2.3+dfsg/debian/patches/java-ld-path.diff  1970-01-01 
05:00:00.0 +0500
+++ swi-prolog-7.2.3+dfsg/debian/patches/java-ld-path.diff  2017-02-11 
23:30:43.0 +0500
@@ -0,0 +1,17 @@
+Description: Set LD_LIBRARY_PATH to Java binary path before running 
test-java.sh
+Author: Sébastien Villemot 
+Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=852892
+Last-Update: 2017-02-05
+---
+This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
+--- a/packages/jpl/Makefile.in
 b/packages/jpl/Makefile.in
+@@ -63,7 +63,7 @@ check_pl:jpltest.jar
+ echo "No jpltest.jar; maybe junit is not installed?" ; \
+   fi
+ check_java:   jpltest.jar
+-  JUNIT=$(JUNIT) JAVA=$(JAVA) JAVA_PRELOAD=$(JAVA_PRELOAD) 
./test-java.sh
++  $(SO_PATH)="$(JAVA_LIBRARY_PATH)" JUNIT=$(JUNIT) JAVA=$(JAVA) 
JAVA_PRELOAD=$(JAVA_PRELOAD) ./test-java.sh
+
+ jpltest.jar:
+   (cd src/java && $(MAKE) test_jar)
diff -Nru swi-prolog-7.2.3+dfsg/debian/patches/series 
swi-prolog-7.2.3+dfsg/debian/patches/series
--- swi-prolog-7.2.3+dfsg/debian/patches/series 2016-12-02 00:20:25.0 
+0500
+++ swi-prolog-7.2.3+dfsg/debian/patches/series 2017-02-11 23:30:43.0 
+0500
@@ -8,3 +8,4 @@
 java-fixes.diff
 dont-install-jquery.diff
 java-i386.diff
+java-ld-path.diff

-=-=-=-=-

Cheers!
Lev Lamberov

unblock swi-prolog/7.2.3+dfsg-6

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64

Bug#855137: unblock: mathjax/2.7.0-2 (pre-approval)

2017-02-14 Thread Dmitry Shachnev 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Dear release team,

I would like to fix bug #854399, which tells that MathJax by default downloads
and evaluates a JS file from https://cdn.mathjax.org/.

In https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854399#10 I listed the
three possible ways to fix it. A) is not applicable for Stretch because it
means packaging a new source. As it turns out, C) is not possible too,
because accessibility-menu.js is just a wrapper that loads other extensions
from MathJax-a11y repository, and I do not want to bundle all of them.

So I would like to go with B), which means disabling the accessibility menu
in the packaged version of MathJax.

The debdiff for what I would like to upload is attached. It is quite a long
patch because there are many configurations. This patch can be replaced with
(and is identical to) one sed call in debian/rules, but I prefer the patch
because it is easier to revert after build.

Please let me know if it is OK to upload this to sid.

--
Dmitry Shachnev
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,11 @@
+mathjax (2.7.0-2) unstable; urgency=medium
+
+  * Remove [Contrib]/a11y/accessibility-menu.js from all configurations,
+downloading and running JS code from web is a security breach
+(no_accessibility_menu.diff; closes: #854399).
+
+ -- Dmitry Shachnev   Tue, 14 Feb 2017 18:00:27 +0300
+
 mathjax (2.7.0-1) unstable; urgency=medium
 
   * New upstream release.
--- /dev/null
+++ b/debian/patches/no_accessibility_menu.diff
@@ -0,0 +1,340 @@
+Description: remove accessibility-menu.js from the default extensions list
+ This extension is loaded from external source, which is considered a privacy
+ breach. We will be able to re-introduce it later when it is packaged.
+ .
+ This patch was generated automatically by running:
+ sed -i 's|,"\[Contrib\]/a11y/accessibility-menu.js"||' unpacked/config/*.js
+Author: Dmitry Shachnev 
+Forwarded: not-needed
+Last-Update: 2017-02-14
+
+--- a/unpacked/config/AM_CHTML-full.js
 b/unpacked/config/AM_CHTML-full.js
+@@ -14,7 +14,7 @@
+  */
+ 
+ MathJax.Hub.Config({
+-  extensions: ["asciimath2jax.js","MathEvents.js","MathZoom.js","MathMenu.js","toMathML.js","fast-preview.js","AssistiveMML.js","[Contrib]/a11y/accessibility-menu.js"],
++  extensions: ["asciimath2jax.js","MathEvents.js","MathZoom.js","MathMenu.js","toMathML.js","fast-preview.js","AssistiveMML.js"],
+   jax: ["input/AsciiMath","output/CommonHTML","output/PreviewHTML"]
+ });
+ 
+--- a/unpacked/config/AM_CHTML.js
 b/unpacked/config/AM_CHTML.js
+@@ -14,7 +14,7 @@
+  */
+ 
+ MathJax.Hub.Config({
+-  extensions: ["asciimath2jax.js","MathEvents.js","MathZoom.js","MathMenu.js","toMathML.js","fast-preview.js","AssistiveMML.js","[Contrib]/a11y/accessibility-menu.js"],
++  extensions: ["asciimath2jax.js","MathEvents.js","MathZoom.js","MathMenu.js","toMathML.js","fast-preview.js","AssistiveMML.js"],
+   jax: ["input/AsciiMath","output/CommonHTML","output/PreviewHTML"]
+ });
+ 
+--- a/unpacked/config/AM_HTMLorMML-full.js
 b/unpacked/config/AM_HTMLorMML-full.js
+@@ -15,7 +15,7 @@
+ 
+ MathJax.Hub.Config({
+   config: ["MMLorHTML.js"],
+-  extensions: ["asciimath2jax.js","MathEvents.js","MathZoom.js","MathMenu.js","toMathML.js","fast-preview.js","AssistiveMML.js","[Contrib]/a11y/accessibility-menu.js"],
++  extensions: ["asciimath2jax.js","MathEvents.js","MathZoom.js","MathMenu.js","toMathML.js","fast-preview.js","AssistiveMML.js"],
+   jax: ["input/AsciiMath","output/HTML-CSS","output/NativeMML","output/PreviewHTML"]
+ });
+ 
+--- a/unpacked/config/AM_HTMLorMML.js
 b/unpacked/config/AM_HTMLorMML.js
+@@ -15,7 +15,7 @@
+ 
+ MathJax.Hub.Config({
+   config: ["MMLorHTML.js"],
+-  extensions: ["asciimath2jax.js","MathEvents.js","MathZoom.js","MathMenu.js","toMathML.js","fast-preview.js","AssistiveMML.js","[Contrib]/a11y/accessibility-menu.js"],
++  extensions: ["asciimath2jax.js","MathEvents.js","MathZoom.js","MathMenu.js","toMathML.js","fast-preview.js","AssistiveMML.js"],
+   jax: ["input/AsciiMath","output/HTML-CSS","output/NativeMML","output/PreviewHTML"]
+ });
+ 
+--- a/unpacked/config/AM_SVG-full.js
 b/unpacked/config/AM_SVG-full.js
+@@ -14,7 +14,7 @@
+  */
+ 
+ MathJax.Hub.Config({
+-  extensions: ["asciimath2jax.js","MathEvents.js","MathZoom.js","MathMenu.js","toMathML.js","fast-preview.js","AssistiveMML.js","[Contrib]/a11y/accessibility-menu.js"],
++  extensions: ["asciimath2jax.js","MathEvents.js","MathZoom.js","MathMenu.js","toMathML.js","fast-preview.js","AssistiveMML.js"],
+   jax: ["input/AsciiMath","output/SVG","output/PreviewHTML"]
+ });
+ 
+--- a/unpacked/config/AM_SVG.js
 b/unpacked/config/AM_SVG.js
+@@ -14,7 +14,7 @@
+  */
+ 
+ MathJax.Hub.Config({
+-  extensions:

Bug#855133: unblock (pre-approval): flatpak/0.8.3-1

2017-02-14 Thread Simon McVittie 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

I would like release team pre-approval for uploading flatpak/0.8.3-1
with the attached debdiff.

The main reason is a bug that affects the configuration in which
we use it, making it impossible for "portal" services outside
the sandbox to identify which sandbox a requesting app is in
(). The upstream fix for this is
deleting one line, which I definitely want to get into stretch,
either in 0.8.3 or as a patch.

However, since upstream stable branch 0.8.x receives cherry-picked
bugfixes from master and basically only exists for Debian's benefit,
I'd like to track it for as long as we can. Having flatpak pull in
proprietary OpenGL drivers automatically accounts for a lot of the diff,
and is arguably more feature than bugfix, but seems like something
usability of stable could really benefit from.

https://bugs.debian.org/846338 (copying the profile.d snippet into
Xsession.d) seems like a low-risk/high-utility change, but I can
drop it if you don't like it.

If there's anything here that's particularly objectionable for stable,
please let me know and I'll ask upstream to be more strict about 0.8.x.

Debdiff filtered to exclude */po/* (l10n) from the diff but not the
diffstat.

Thanks,
S
diffstat for flatpak-0.8.2 flatpak-0.8.3

 INSTALL |   55 
 Makefile.am |4 
 Makefile.in |1 
 NEWS|   23 ++
 README.md   |   56 +
 app/flatpak-builtins-build.c|7 
 app/flatpak-builtins-list.c |4 
 app/flatpak-main.c  |   11 
 app/flatpak-transaction.c   |   10 
 builder/builder-manifest.c  |   10 
 builder/builder-module.c|2 
 common/flatpak-dir.c|   68 --
 common/flatpak-run.c|   97 ++--
 common/flatpak-run.h|1 
 common/flatpak-utils.c  |  149 +++--
 common/flatpak-utils.h  |9 
 configure   |   44 +--
 configure.ac|7 
 debian/changelog|   22 +
 debian/flatpak.install  |1 
 debian/rules|3 
 doc/flatpak-builder.xml |4 
 doc/flatpak.xml |8 
 doc/reference/html/flatpak-Version-information.html |2 
 doc/reference/html/index.html   |2 
 document-portal/xdp-fuse.c  |2 
 lib/flatpak-installation.c  |   33 ++
 lib/flatpak-version-macros.h|2 
 po/de.gmo   |binary
 po/de.po|  223 ++-
 po/flatpak.pot  |  224 ++--
 po/hu.gmo   |binary
 po/hu.po|  223 ++-
 po/pl.gmo   |binary
 po/pl.po|  223 ++-
 po/pt_BR.gmo|binary
 po/pt_BR.po |  223 ++-
 po/ru.gmo   |binary
 po/ru.po|  223 ++-
 po/sk.gmo   |binary
 po/sk.po|  223 ++-
 po/sv.gmo   |binary
 po/sv.po|  223 ++-
 po/uk.gmo   |binary
 po/uk.po|  223 ++-
 tests/package_version.txt   |2 
 46 files changed, 1549 insertions(+), 1098 deletions(-)

diff -Nru flatpak-0.8.2/app/flatpak-builtins-build.c flatpak-0.8.3/app/flatpak-builtins-build.c
--- flatpak-0.8.2/app/flatpak-builtins-build.c	2017-01-27 09:50:41.0 +
+++ flatpak-0.8.3/app/flatpak-builtins-build.c	2017-02-14 10:13:28.0 +
@@ -215,13 +215,14 @@
 
   envp = flatpak_run_get_minimal_env (TRUE);
   envp = flatpak_run_apply_env_vars (envp, app_context);
-  flatpak_run_add_environment_args (argv_array, NULL, , NULL, NULL, app_id,
-app_context, NULL);

Bug#855128: unblock: vagrant-sshfs/1.3.0-2

2017-02-14 Thread Antonio Terceiro 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package vagrant-sshfs

the version in unstable fixes a RC bug. It also includes a autopkgtest
smoke test, and adds a missing dependency. debdiff attached.

unblock vagrant-sshfs/1.3.0-2

-- System Information:
Debian Release: 9.0
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'testing-debug'), (500, 
'unstable'), (500, 'testing'), (1, 'experimental-debug'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=pt_BR.UTF-8, LC_CTYPE=pt_BR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru vagrant-sshfs-1.3.0/debian/changelog vagrant-sshfs-1.3.0/debian/changelog
--- vagrant-sshfs-1.3.0/debian/changelog	2017-01-06 19:52:50.0 -0200
+++ vagrant-sshfs-1.3.0/debian/changelog	2017-02-14 09:59:55.0 -0200
@@ -1,3 +1,12 @@
+vagrant-sshfs (1.3.0-2) unstable; urgency=medium
+
+  * Team upload.
+  * debian/rules: use rubygems installation layout (Closes: #854517)
+  * Add missing dependency on vagrant
+  * Add simple autopkgtest smoke test
+
+ -- Antonio Terceiro   Tue, 14 Feb 2017 09:59:55 -0200
+
 vagrant-sshfs (1.3.0-1) unstable; urgency=medium
 
   * New upstream release
diff -Nru vagrant-sshfs-1.3.0/debian/control vagrant-sshfs-1.3.0/debian/control
--- vagrant-sshfs-1.3.0/debian/control	2016-09-06 14:41:11.0 -0300
+++ vagrant-sshfs-1.3.0/debian/control	2017-02-14 09:59:55.0 -0200
@@ -19,6 +19,7 @@
 XB-Ruby-Versions: ${ruby:Versions}
 Depends: ruby | ruby-interpreter,
  openssh-sftp-server,
+ vagrant,
  ${misc:Depends},
  ${shlibs:Depends}
 Description: vagrant plugin that adds synced folder support with sshfs
diff -Nru vagrant-sshfs-1.3.0/debian/rules vagrant-sshfs-1.3.0/debian/rules
--- vagrant-sshfs-1.3.0/debian/rules	2016-09-06 10:48:19.0 -0300
+++ vagrant-sshfs-1.3.0/debian/rules	2017-02-14 09:59:55.0 -0200
@@ -3,6 +3,7 @@
 include /usr/share/dpkg/default.mk
 
 export GEM2DEB_TEST_RUNNER = --check-dependencies
+export DH_RUBY = --gem-install
 
 %:
 	dh $@ --buildsystem=ruby --with ruby
diff -Nru vagrant-sshfs-1.3.0/debian/tests/control vagrant-sshfs-1.3.0/debian/tests/control
--- vagrant-sshfs-1.3.0/debian/tests/control	1969-12-31 21:00:00.0 -0300
+++ vagrant-sshfs-1.3.0/debian/tests/control	2017-02-14 09:59:55.0 -0200
@@ -0,0 +1 @@
+Tests: smoke-test
diff -Nru vagrant-sshfs-1.3.0/debian/tests/smoke-test vagrant-sshfs-1.3.0/debian/tests/smoke-test
--- vagrant-sshfs-1.3.0/debian/tests/smoke-test	1969-12-31 21:00:00.0 -0300
+++ vagrant-sshfs-1.3.0/debian/tests/smoke-test	2017-02-14 09:59:55.0 -0200
@@ -0,0 +1,6 @@
+#!/bin/sh
+
+exec 2>&1
+set -exu
+
+vagrant global-status


signature.asc
Description: PGP signature

Bug#855127: unblock: redmine/3.3.1-3

2017-02-14 Thread Antonio Terceiro 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package redmine

It contains fixes for the following bugs:

- #852130 redmine: fails to install, purge and install again (serious)
- #852694 redmine: Bulk edit form not show fields based on target tracker and
  status (important)
- #846978 redmine: [INTL:it] Italian translation of debconf messages

the debdiff against the package in testing is attached.

unblock redmine/3.3.1-3

-- System Information:
Debian Release: 9.0
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'testing-debug'), (500, 
'unstable'), (500, 'testing'), (1, 'experimental-debug'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=pt_BR.UTF-8, LC_CTYPE=pt_BR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru redmine-3.3.1/debian/changelog redmine-3.3.1/debian/changelog
--- redmine-3.3.1/debian/changelog	2016-11-26 00:21:19.0 -0200
+++ redmine-3.3.1/debian/changelog	2017-02-13 14:19:50.0 -0200
@@ -1,3 +1,20 @@
+redmine (3.3.1-3) unstable; urgency=medium
+
+  [ Beatrice Torracca ]
+  * Italian translation update (Closes: #846978)
+
+  [ Antonio Terceiro ]
+  * debian/postrm: restore purging of configuration files created by
+dbconfig-common (Closes: #852130)
+- add a autopkgtest for install/purge/install
+
+  [ Thomas Klose ]
+  * Backport upstream patch to fix Bulk Edit functionality when changing
+between statuses that have different sets of read-only/mandatory fields.
+(Closes: #852694)
+
+ -- Antonio Terceiro   Mon, 13 Feb 2017 14:19:50 -0200
+
 redmine (3.3.1-2) unstable; urgency=medium
 
   [ Antonio Terceiro ]
diff -Nru redmine-3.3.1/debian/patches/0006-Bulk-edit-show-fields-required-after-status-tracker-.patch redmine-3.3.1/debian/patches/0006-Bulk-edit-show-fields-required-after-status-tracker-.patch
--- redmine-3.3.1/debian/patches/0006-Bulk-edit-show-fields-required-after-status-tracker-.patch	1969-12-31 21:00:00.0 -0300
+++ redmine-3.3.1/debian/patches/0006-Bulk-edit-show-fields-required-after-status-tracker-.patch	2017-02-13 14:19:50.0 -0200
@@ -0,0 +1,95 @@
+From: Jean-Philippe Lang 
+Date: Mon, 13 Feb 2017 14:07:59 -0200
+Subject: Bulk edit: show fields required after status/tracker change
+
+Backported-by: Thomas Klose 
+Debian-Bug: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=852694
+Original: http://www.redmine.org/projects/redmine/repository/revisions/15815
+
+This patch must be dropped when upgrading Redmine to version 3.4+.
+---
+ app/controllers/issues_controller.rb | 25 +
+ app/views/issues/bulk_edit.html.erb  |  6 --
+ 2 files changed, 25 insertions(+), 6 deletions(-)
+
+diff --git a/app/controllers/issues_controller.rb b/app/controllers/issues_controller.rb
+index c640aad..556425a 100644
+--- a/app/controllers/issues_controller.rb
 b/app/controllers/issues_controller.rb
+@@ -217,24 +217,41 @@ class IssuesController < ApplicationController
+   end
+ end
+ 
++edited_issues = Issue.where(:id => @issues.map(&:id)).to_a
++
+ @allowed_projects = Issue.allowed_target_projects
+ if params[:issue]
+   @target_project = @allowed_projects.detect {|p| p.id.to_s == params[:issue][:project_id].to_s}
+   if @target_project
+ target_projects = [@target_project]
++edited_issues.each {|issue| issue.project = @target_project}
+   end
+ end
+ target_projects ||= @projects
+ 
++@trackers = target_projects.map {|p| Issue.allowed_target_trackers(p) }.reduce(:&)
++if params[:issue]
++  @target_tracker = @trackers.detect {|t| t.id.to_s == params[:issue][:tracker_id].to_s}
++  if @target_tracker
++edited_issues.each {|issue| issue.tracker = @target_tracker}
++  end
++end
++
+ if @copy
+   # Copied issues will get their default statuses
+   @available_statuses = []
+ else
+-  @available_statuses = @issues.map(&:new_statuses_allowed_to).reduce(:&)
++  @available_statuses = edited_issues.map(&:new_statuses_allowed_to).reduce(:&)
+ end
+-@custom_fields = @issues.map{|i|i.editable_custom_fields}.reduce(:&)
++if params[:issue]
++  @target_status = @available_statuses.detect {|t| t.id.to_s == params[:issue][:status_id].to_s}
++  if @target_status
++edited_issues.each {|issue| issue.status = @target_status}
++  end
++end
++
++@custom_fields = edited_issues.map{|i|i.editable_custom_fields}.reduce(:&)
+ @assignables = target_projects.map(&:assignable_users).reduce(:&)
+-@trackers = target_projects.map {|p| Issue.allowed_target_trackers(p) }.reduce(:&)
+ @versions = target_projects.map {|p| p.shared_versions.open}.reduce(:&)
+ @categories = target_projects.map {|p|

Bug#855114: unblock (pre-approval): nginx/1.10.3-1

2017-02-14 Thread Christos Trochalakis 

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

*I have not yet uploaded to unstable*, and I am asking for pre-approval
to upload 1.10.3-1.

1.10.3-1 will only include the new upstream release (1.10.2 -> 1.10.3)
and no packaging changes.

Nginx 1.10.3 is a stable bugfix release that handles 8 bugfixes
including a segmentation fault.

Relevant bug report: https://bugs.debian.org/855113
Changelog: https://nginx.org/en/CHANGES-1.10
Diff: https://github.com/nginx/nginx/compare/release-1.10.2...release-1.10.3

Thank you!

Bug#855112: unblock: libevent/2.0.21-stable-3

2017-02-14 Thread Balint Reczey 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Dear Release Team,

Please unblock latest libevent in unstable.

Changes:
 libevent (2.0.21-stable-3) unstable; urgency=medium
 .
   * Fix three vulnerabilites (Closes: #854092):
 - DNS remote stack overread vulnerability (CVE-2016-10195)
 - (Stack) buffer overflow in evutil_parse_sockaddr_port()
   (CVE-2016-10196)
 - Out-of-bounds read in search_make_new() (CVE-2016-10197)
   * Add myself as an uploader
   * ACK NMU

Cheers,
Balint

unblock libevent/2.0.21-stable-3

diff -Nru libevent-2.0.21-stable/debian/changelog libevent-2.0.21-stable/debian/changelog
--- libevent-2.0.21-stable/debian/changelog	2016-11-03 08:43:46.0 +0100
+++ libevent-2.0.21-stable/debian/changelog	2017-02-12 21:45:49.0 +0100
@@ -1,3 +1,15 @@
+libevent (2.0.21-stable-3) unstable; urgency=medium
+
+  * Fix three vulnerabilites (Closes: #854092):
+- DNS remote stack overread vulnerability (CVE-2016-10195)
+- (Stack) buffer overflow in evutil_parse_sockaddr_port()
+  (CVE-2016-10196)
+- Out-of-bounds read in search_make_new() (CVE-2016-10197)
+  * Add myself as an uploader
+  * ACK NMU
+
+ -- Balint Reczey   Sun, 12 Feb 2017 21:43:18 +0100
+
 libevent (2.0.21-stable-2.1) unstable; urgency=medium
 
   [ Helmut Grohne ]
diff -Nru libevent-2.0.21-stable/debian/control libevent-2.0.21-stable/debian/control
--- libevent-2.0.21-stable/debian/control	2014-08-25 18:02:38.0 +0200
+++ libevent-2.0.21-stable/debian/control	2017-02-12 21:45:49.0 +0100
@@ -2,7 +2,8 @@
 Section: libs
 Priority: optional
 Maintainer: Anibal Monsalve Salazar 
-Uploaders: Leo Costela 
+Uploaders: Leo Costela ,
+   Balint Reczey 
 Build-Depends: dpkg-dev (>= 1.16.1~), debhelper (>= 9), libssl-dev, dh-autoreconf
 Standards-Version: 3.9.3
 Homepage: http://libevent.org/
diff -Nru libevent-2.0.21-stable/debian/patches/0001-evdns-fix-searching-empty-hostnames.patch libevent-2.0.21-stable/debian/patches/0001-evdns-fix-searching-empty-hostnames.patch
--- libevent-2.0.21-stable/debian/patches/0001-evdns-fix-searching-empty-hostnames.patch	1970-01-01 01:00:00.0 +0100
+++ libevent-2.0.21-stable/debian/patches/0001-evdns-fix-searching-empty-hostnames.patch	2017-02-12 21:45:49.0 +0100
@@ -0,0 +1,65 @@
+From ec65c42052d95d2c23d1d837136d1cf1d9ecef9e Mon Sep 17 00:00:00 2001
+From: Azat Khuzhin 
+Date: Fri, 25 Mar 2016 00:33:47 +0300
+Subject: [PATCH] evdns: fix searching empty hostnames
+
+From #332:
+  Here follows a bug report by **Guido Vranken** via the _Tor bug bounty program_. Please credit Guido accordingly.
+
+  ## Bug report
+
+  The DNS code of Libevent contains this rather obvious OOB read:
+
+  ```c
+  static char *
+  search_make_new(const struct search_state *const state, int n, const char *const base_name) {
+  const size_t base_len = strlen(base_name);
+  const char need_to_append_dot = base_name[base_len - 1] == '.' ? 0 : 1;
+  ```
+
+  If the length of ```base_name``` is 0, then line 3125 reads 1 byte before the buffer. This will trigger a crash on ASAN-protected builds.
+
+  To reproduce:
+
+  Build libevent with ASAN:
+  ```
+  $ CFLAGS='-fomit-frame-pointer -fsanitize=address' ./configure && make -j4
+  ```
+  Put the attached ```resolv.conf``` and ```poc.c``` in the source directory and then do:
+
+  ```
+  $ gcc -fsanitize=address -fomit-frame-pointer poc.c .libs/libevent.a
+  $ ./a.out
+  =
+  ==22201== ERROR: AddressSanitizer: heap-buffer-overflow on address 0x6006efdf at pc 0x4429da bp 0x7ffe1ed47300 sp 0x7ffe1ed472f8
+  READ of size 1 at 0x6006efdf thread T0
+  ```
+
+P.S. we can add a check earlier, but since this is very uncommon, I didn't add it.
+
+Fixes: #332
+---
+ evdns.c | 5 -
+ 1 file changed, 4 insertions(+), 1 deletion(-)
+
+diff --git a/evdns.c b/evdns.c
+index 905ff6b..e9dbc35 100644
+--- a/evdns.c
 b/evdns.c
+@@ -3175,9 +3175,12 @@ search_set_from_hostname(struct evdns_base *base) {
+ static char *
+ search_make_new(const struct search_state *const state, int n, const char *const base_name) {
+ 	const size_t base_len = strlen(base_name);
+-	const char need_to_append_dot = base_name[base_len - 1] == '.' ? 0 : 1;
++	char need_to_append_dot;
+ 	struct search_domain *dom;
+ 
++	if (!base_len) return NULL;
++	need_to_append_dot = base_name[base_len - 1] == '.' ? 0 : 1;
++
+ 	for (dom = state->head; dom; dom = dom->next) {
+ 		if (!n--) {
+ 			/* this is the postfix we want */
+-- 
+2.1.4
+
diff -Nru libevent-2.0.21-stable/debian/patches/0002-test-dns-regression-for-empty-hostname.patch libevent-2.0.21-stable/debian/patches/0002-test-dns-regression-for-empty-hostname.patch
---

Bug#855109: unblock: pyrit/0.4.0-7.1

2017-02-14 Thread Gianfranco Costamagna 
Package: release.debian.org
User: release.debian@packages.debian.org
Usertags: unblock
Severity: normal

Please unblock package pyrit

RC bug fixed (FTBFS). Trivial upstream patch


unblock pyrit/0.4.0-7.1

thanks

G.
diff -Nru pyrit-0.4.0/debian/changelog pyrit-0.4.0/debian/changelog
--- pyrit-0.4.0/debian/changelog	2016-04-17 16:31:10.0 +0200
+++ pyrit-0.4.0/debian/changelog	2017-02-14 10:28:20.0 +0100
@@ -1,3 +1,12 @@
+pyrit (0.4.0-7.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  [ Sophie Brun ]
+  * debian/patches/update-for-scapy-2.3.3.patch:
+- fix build failure with new python-scapy (Closes: #850692)
+
+ -- Gianfranco Costamagna   Tue, 14 Feb 2017 10:27:30 +0100
+
 pyrit (0.4.0-7) unstable; urgency=medium
 
   * d/control:
diff -Nru pyrit-0.4.0/debian/patches/series pyrit-0.4.0/debian/patches/series
--- pyrit-0.4.0/debian/patches/series	2016-03-21 22:33:10.0 +0100
+++ pyrit-0.4.0/debian/patches/series	2017-02-14 10:27:30.0 +0100
@@ -1,3 +1,4 @@
 0006-custom-config-file.patch
 0014-performancecounter-handle-empty-result-gracefully.patch
 0015-increase-timeout-in-unittests.patch
+update-for-scapy-2.3.3.patch
diff -Nru pyrit-0.4.0/debian/patches/update-for-scapy-2.3.3.patch pyrit-0.4.0/debian/patches/update-for-scapy-2.3.3.patch
--- pyrit-0.4.0/debian/patches/update-for-scapy-2.3.3.patch	1970-01-01 01:00:00.0 +0100
+++ pyrit-0.4.0/debian/patches/update-for-scapy-2.3.3.patch	2017-02-14 10:35:17.0 +0100
@@ -0,0 +1,45 @@
+Subject: Update isinstance(EnumField) for scapy 2.3.3+
+ scapy 2.3.2- requires that scapy.fields.EnumField is passed to
+ isinstance, while scapy 2.3.3+ needs scapy.fields._EnumField.
+ This patch accomodates pyrit for both versions.
+Author: Ilya Terentyev 
+Origin: https://github.com/JPaulMora/Pyrit/commit/14ec997174b8e8fd20d22b6a97c57e19633f12a0
+Bug: https://github.com/JPaulMora/Pyrit/issues/500
+Bug-Kali: https://bugs.kali.org/view.php?id=3801
+Date: Tue, 1 Nov 2016 20:40:15 +0300
+Forwarded: not-needed
+Last-Update: 2017-01-06
+
+---
+ cpyrit/pckttools.py | 13 -
+ 1 file changed, 12 insertions(+), 1 deletion(-)
+
+diff --git a/cpyrit/pckttools.py b/cpyrit/pckttools.py
+index 326829d..d58fff1 100644
+--- a/cpyrit/pckttools.py
 b/cpyrit/pckttools.py
+@@ -54,12 +54,23 @@
+ scapy.layers.dot11.PrismHeader)
+ 
+ 
++def isEnumField(f):
++"""Return True if f is an instance of EnumField.  This function tries to be
++   portable: scapy versions 2.3.2 and earlier need isinstance(EnumField),
++   while scapy 2.3.3+ requires isinstance(_EnumField).
++"""
++try:
++return isinstance(f, scapy.fields._EnumField)
++except AttributeError:
++return isinstance(f, scapy.fields.EnumField)
++
++
+ def isFlagSet(self, name, value):
+ """Return True if the given field 'includes' the given value.
+Exact behaviour of this function is specific to the field-type.
+ """
+ field, val = self.getfield_and_val(name)
+-if isinstance(field, scapy.fields.EnumField):
++if isEnumField(field):
+ if val not in field.i2s:
+ return False
+ return field.i2s[val] == value

Re: Various unblock-udebs

2017-02-14 Thread Emilio Pozuelo Monfort 
On 14/02/17 03:48, Cyril Brulebois wrote:
> Hello,
> 
> Emilio asked me on IRC to have a look at a bunch of packages which both
> have block-udeb and RC bug fixes. Here's a list with comments, I'm OK
> with unblock-udeb'ing most of them (which doesn't mean you shouldn't
> review as usual for the unblock part), except hw-detect and wpa, which
> have commented out unblock-udeb lines.

Thanks. I'll review them in the evening if noone beats me to it.

> ,---[ review as of 2017-02-14 ]---
> 
> # lots of noise due to git-dpm; l10n + Sledge-changes, trusting him:
> unblock-udeb grub2/2.02~beta3-5
> 
> # lots of noise due to .gitignore removal (included in a previous
> # upload by error), plus l10, plus dpkg-maintscript-helper fix:
> unblock-udeb console-setup/1.160
> 
> # compile-time option change, shouldn't be an issue for d-i:
> unblock-udeb bind9/1:9.10.3.dfsg.P4-11.1
> 
> # RC bug fix (FTBFS):
> unblock-udeb installation-locale/1.7
> 
> # fix for multipath support, but some more work is needed anyway,
> # maybe wait until related unblocks are put together?
> # unblock-udeb hw-detect/1.123
> 
> # doesn't seem to have udev/udeb changes, basic testing is fine, and
> # the RC/seccomp bug fix is most welcome:
> unblock-udeb systemd/232-18
> 
> # trivial bug fix, successfully tested by submitter:
> unblock-udeb grub-installer/1.137
> 
> # trivial bug fix, succesfully run-tested:
> unblock-udeb clock-setup/0.132
> 
> # can't comment, just too huge:
> # unblock-udeb wpa/2.6-3

Unfortunately this one has some regressions:

Updating wpa introduces new bugs: #849077, #849122
Updating wpa fixes old bugs: #828601, #854719

Cheers,
Emilio