Bug#780388: RM: trafficserver/5.0.1-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: rm Hello, Considering that trafficserver is currently affected by 3 security bugs (CVE-2014-3624, CVE-2014-10022 (#778895) and #749846) fixed in Sid but which was not uploaded on time to testing before the freeze, and that these bugs cannot be easily fixed, it would probably be better to remove it from testing as suggested by Arno Töll, the maintainer of trafficserver, on #778895: However, the Release Team was uncomfortable to unblock that package (cf. #769689). I'm afraid, that we better ask for removal of that package in Testing rather than bothering with it, as we - as maintainers - cannot guarantee for the security of it already, even less so over the lifespan of a Debian Release, and upstream is moving faster than us. Thanks in advance. Regards, -- Arnaud Fontaine signature.asc Description: PGP signature
(pre-approval) unblock: trafficserver/5.0.1-1+deb8u1
Hello,
I have prepared an NMU for trafficserver fixing #778895 RC bug
(CVE-2014-10022) and considering that a new upstream release has already
been uploaded tounstable, I would liketo upload to
testing-proposed-updates. I'm Cc'ing the maintainer of this package to
get his approval as well.
I have attached the NMU patch to this email. The package builds fine in
a Jessie chroot and all the tests ran during the build pass.
Regards,
--
Arnaud Fontaine
diff -Nru trafficserver-5.0.1/debian/changelog trafficserver-5.0.1/debian/changelog
--- trafficserver-5.0.1/debian/changelog 2014-07-24 01:13:29.0 +0900
+++ trafficserver-5.0.1/debian/changelog 2015-03-10 16:18:36.0 +0900
@@ -1,3 +1,11 @@
+trafficserver (5.0.1-1+deb8u1) testing-proposed-updates; urgency=high
+
+ * Add patch to fix CVE-2014-10022 that allowed a remote attacker to
+cause a denial of service via unspecified vectors, related to internal
+buffer sizing. Closes: #778895.
+
+ -- Arnaud Fontaine ar...@debian.org Tue, 10 Mar 2015 15:26:31 +0900
+
trafficserver (5.0.1-1) unstable; urgency=medium
* New upstream release including a fix for CVE-2014-3525 that allowed
diff -Nru trafficserver-5.0.1/debian/patches/CVE-2014-10022.patch trafficserver-5.0.1/debian/patches/CVE-2014-10022.patch
--- trafficserver-5.0.1/debian/patches/CVE-2014-10022.patch 1970-01-01 09:00:00.0 +0900
+++ trafficserver-5.0.1/debian/patches/CVE-2014-10022.patch 2015-03-10 15:19:22.0 +0900
@@ -0,0 +1,59 @@
+From: Leif Hedstrom zw...@apache.org
+Date: Tue, 2 Dec 2014 20:08:40 + (-0700)
+Subject: Fix the internal buffer sizing. Thanks to Sudheer for helping isolating this bug
+X-Git-Url: https://git-wip-us.apache.org/repos/asf?p=trafficserver.git;a=commitdiff_plain;h=8b5f0345dade6b2822d9b52c8ad12e63011a5c12
+
+Fix the internal buffer sizing. Thanks to Sudheer for helping isolating this bug
+---
+
+Index: trafficserver-5.0.1/proxy/http/HttpTransact.cc
+===
+--- trafficserver-5.0.1.orig/proxy/http/HttpTransact.cc 2015-03-10 15:19:18.303880106 +0900
trafficserver-5.0.1/proxy/http/HttpTransact.cc 2015-03-10 15:19:18.299880090 +0900
+@@ -5378,9 +5378,8 @@
+ int req_length = incoming_hdr-length_get();
+ HTTP_RELEASE_ASSERT(req_length 0);
+
+- s-internal_msg_buffer_index = 0;
+- s-internal_msg_buffer_size = req_length * 2;
+ s-free_internal_msg_buffer();
++ s-internal_msg_buffer_size = req_length * 2;
+
+ if (s-internal_msg_buffer_size = max_iobuffer_size) {
+ s-internal_msg_buffer_fast_allocator_size = buffer_size_to_index(s-internal_msg_buffer_size);
+@@ -8074,7 +8073,6 @@
+ s-free_internal_msg_buffer();
+ s-internal_msg_buffer = new_msg;
+ s-internal_msg_buffer_size = len;
+- s-internal_msg_buffer_index = 0;
+ s-internal_msg_buffer_fast_allocator_size = -1;
+
+ s-hdr_info.client_response.value_set(MIME_FIELD_CONTENT_TYPE, MIME_LEN_CONTENT_TYPE, body_type, strlen(body_type));
+@@ -8157,7 +8155,6 @@
+ //
+ // set descriptive text //
+ //
+- s-internal_msg_buffer_index = 0;
+ s-free_internal_msg_buffer();
+ s-internal_msg_buffer_fast_allocator_size = -1;
+ s-internal_msg_buffer = body_factory-fabricate_with_old_api_build_va(redirect#moved_temporarily, s, 8192,
+Index: trafficserver-5.0.1/proxy/http/HttpTransact.h
+===
+--- trafficserver-5.0.1.orig/proxy/http/HttpTransact.h 2015-03-10 15:19:18.303880106 +0900
trafficserver-5.0.1/proxy/http/HttpTransact.h 2015-03-10 15:19:18.299880090 +0900
+@@ -912,7 +912,6 @@
+ char *internal_msg_buffer_type; // out
+ int64_t internal_msg_buffer_size; // out
+ int64_t internal_msg_buffer_fast_allocator_size;
+-int64_t internal_msg_buffer_index; // out
+
+ bool icp_lookup_success;// in
+ struct sockaddr_in icp_ip_result; // in
+@@ -1051,7 +1050,6 @@
+ internal_msg_buffer_type(NULL),
+ internal_msg_buffer_size(0),
+ internal_msg_buffer_fast_allocator_size(-1),
+-internal_msg_buffer_index(0),
+ icp_lookup_success(false),
+ scheme(-1),
+ next_hop_scheme(scheme),
diff -Nru trafficserver-5.0.1/debian/patches/series trafficserver-5.0.1/debian/patches/series
--- trafficserver-5.0.1/debian/patches/series 2014-07-05 21:41:59.0 +0900
+++ trafficserver-5.0.1/debian/patches/series 2015-03-10 15:19:15.0 +0900
@@ -0,0 +1 @@
+CVE-2014-10022.patch
signature.asc
Description: PGP signature
Re: (pre-approval) unblock: trafficserver/5.0.1-1+deb8u1
Ivo De Decker iv...@debian.org writes: Please file a proper unblock request, so that it's easy to track. On Tue, Mar 10, 2015 at 04:24:13PM +0900, Arnaud Fontaine wrote: I have prepared an NMU for trafficserver fixing #778895 RC bug (CVE-2014-10022) and considering that a new upstream release has already been uploaded tounstable, I would liketo upload to testing-proposed-updates. I'm Cc'ing the maintainer of this package to get his approval as well. I have attached the NMU patch to this email. The package builds fine in a Jessie chroot and all the tests ran during the build pass. Please go ahead, but use jessie as distribution instead of testing-proposed-updates. Ok, before uploading and filing a proper unblock request, I will wait for the maintainer ACK until Friday if that's ok with you. Cheers, -- Arnaud Fontaine signature.asc Description: PGP signature
Bug#773852: unblock: zodb/1:3.9.7-5 (pre-approval)
Hi, Adam D. Barratt a...@adam-barratt.org.uk writes: Control: tags -1 + confirmed moreinfo On 2014-12-24 3:25, Arnaud Fontaine wrote: Some time ago I uploaded python-zodb to fix RC bug #767554 but I forgot to remove some headers files, sorry about that. Would it be possible to upload python-zodb with the (really straightforward) diff attached? Please go ahead, and remove the moreinfo tag once the package has been accepted. Thank you very much. I have just uploaded it and removed the moreinfo tag. Cheers, -- Arnaud Fontaine -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/874msilhio@duckcorp.org
Bug#773852: unblock: zodb/1:3.9.7-5 (pre-approval)
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Hello,
Some time ago I uploaded python-zodb to fix RC bug #767554 but I forgot
to remove some headers files, sorry about that. Would it be possible to
upload python-zodb with the (really straightforward) diff attached?
Thank you very much in advance.
Regards,
--
Arnaud Fontaine
diff -Nru zodb-3.9.7/debian/changelog zodb-3.9.7/debian/changelog
--- zodb-3.9.7/debian/changelog 2014-12-16 17:16:27.0 +0900
+++ zodb-3.9.7/debian/changelog 2014-12-24 12:17:32.0 +0900
@@ -1,3 +1,11 @@
+zodb (1:3.9.7-5) unstable; urgency=medium
+
+ * Team upload.
+ * persistent module was removed in the previous upload, but some headers
+were not. Thanks to Kirill Smelkov. Closes: #773699.
+
+ -- Arnaud Fontaine ar...@debian.org Wed, 24 Dec 2014 12:16:03 +0900
+
zodb (1:3.9.7-4) unstable; urgency=medium
* Team upload.
diff -Nru zodb-3.9.7/debian/patches/persistent-module-4.x-no-headers.patch zodb-3.9.7/debian/patches/persistent-module-4.x-no-headers.patch
--- zodb-3.9.7/debian/patches/persistent-module-4.x-no-headers.patch 1970-01-01 09:00:00.0 +0900
+++ zodb-3.9.7/debian/patches/persistent-module-4.x-no-headers.patch 2014-12-24 12:15:57.0 +0900
@@ -0,0 +1,25 @@
+Description: Don't provide persistent headers in python-zodb
+ python-zodb now depends on separate python-persistent and to be compatible
+ with that in python-zodb, after building the package, we remove installed
+ persistent completely. However ZODB also used to install persistent headers in
+ ZODB namespace which were left and now correspond to nothing provided in
+ python-zodb and duplicate persistent headers in python-persistent.
+After splitting persistent into separate package, upstream already removed
+ that 'headers install' in zodb package:
+- 57dca750 (Fixed: An unneeded left-over setting in setup.py caused
+ installation with pip to fail).
+- f5b98e96 (ZODB w/ externally-distributed 'persistent'.)
+ so do it here too.
+
+--- zodb-3.9.7.orig/setup.py
zodb-3.9.7/setup.py
+@@ -188,9 +188,6 @@ setup(name=ZODB3,
+ packages = find_packages('src'),
+ package_dir = {'': 'src'},
+ ext_modules = exts,
+- headers = ['src/persistent/cPersistence.h',
+- 'src/persistent/py24compat.h',
+- 'src/persistent/ring.h'],
+ license = ZPL 2.1,
+ platforms = [any],
+ description = doclines[0],
diff -Nru zodb-3.9.7/debian/patches/series zodb-3.9.7/debian/patches/series
--- zodb-3.9.7/debian/patches/series 2014-12-16 16:51:28.0 +0900
+++ zodb-3.9.7/debian/patches/series 2014-12-24 12:15:57.0 +0900
@@ -1,5 +1,6 @@
lp_135108.patch
persistent-module-4.x-compat.patch
+persistent-module-4.x-no-headers.patch
test-spurious-failure-under-python27.patch
testUtils.patch
new-transaction.patch
Bug#769853: /769854: unblock: python-persistent and python-zodb
Hi,
Julien Cristau jcris...@debian.org writes:
On Fri, Dec 12, 2014 at 12:44:08 +0900, Arnaud Fontaine wrote:
I have attached the debdiff with the packages currently in unstable,
would you consider unblocking these changes if I upload the packages to
unstable?
Yes, I would.
Thanks! I have just uploaded both packages to unstable. Compared to my
previous debdiff, I have just merged the work done by Gediminas for the
next version of ZODB (basically only patch filenames are different and
the changelog entry has been modified accordingly), but the content of
python-zodb binary package is exactly the same.
I have attached debdiffs for both packages in case of.
Adam D. Barratt a...@adam-barratt.org.uk writes:
Control: tags 769854 + confirmed moreinfo
Control: tags 769853 + confirmed moreinfo
If the upload can be made soon, that should be fine. Please remove the
moreinfo tags once the packages are in unstable.
Done.
Cheers,
--
Arnaud Fontaine
diff -Nru python-persistent-4.0.8/debian/changelog python-persistent-4.0.8/debian/changelog
--- python-persistent-4.0.8/debian/changelog 2014-11-14 18:30:25.0 +0900
+++ python-persistent-4.0.8/debian/changelog 2014-12-10 17:41:09.0 +0900
@@ -1,3 +1,13 @@
+python-persistent (4.0.8-3) unstable; urgency=medium
+
+ * Team upload.
+ * Revert change in previous upload in favor of removing persistent
+module from python-zodb and make it depend upon this package (with
+upstream ACK). Closes: #767554.
++ d/control: Add Breaks/Replaces against python-zodb 1:3.9.7-4~.
+
+ -- Arnaud Fontaine ar...@debian.org Wed, 10 Dec 2014 17:33:13 +0900
+
python-persistent (4.0.8-2) unstable; urgency=medium
* Team upload.
diff -Nru python-persistent-4.0.8/debian/control python-persistent-4.0.8/debian/control
--- python-persistent-4.0.8/debian/control 2014-11-14 18:31:01.0 +0900
+++ python-persistent-4.0.8/debian/control 2014-12-10 17:37:40.0 +0900
@@ -22,7 +22,8 @@
Package: python-persistent
Architecture: any
Depends: ${misc:Depends}, ${python:Depends}, ${shlibs:Depends}
-Conflicts: python-zodb ( 3.11.0~)
+Breaks: python-zodb ( 1:3.9.7-4~)
+Replaces: python-zodb ( 1:3.9.7-4~)
Description: Automatic persistence for Python objects
This package contains a generic persistence implementation for Python. It
forms the core protocol for making objects interact transparently with
diff -Nru zodb-3.9.7/debian/changelog zodb-3.9.7/debian/changelog
--- zodb-3.9.7/debian/changelog 2014-11-17 12:10:50.0 +0900
+++ zodb-3.9.7/debian/changelog 2014-12-16 17:16:27.0 +0900
@@ -1,3 +1,29 @@
+zodb (1:3.9.7-4) unstable; urgency=medium
+
+ * Team upload.
+ * Revert change in previous upload in favor of removing persistent
+module from this package and make it depend upon python-persistent
+(with upstream ACK). Closes: #767554.
++ d/control: Add Depends against python-persistent.
++ d/rules: Delete persistent module from final package.
++ d/p/persistent-module-4.x-compat.patch: persistent 4.x uses bytes
+ instead of repr() but ZODB 4.0.0a4 still uses repr() which is
+ incompatible.
++ d/tests/all: Remove persistent from the list of tests being ran.
++ d/tests/control: zope.testing.doctest has been removed in
+ python-zope.testing 4.0.0 and tests cannot be ran anymore. So update
+ Depends accordingly even though 4.0.0~ is only in stable instead of
+ backporting many patches. Fix this issue properly when packing NUR
+ after the release of Jessie.
+ * d/p/test-spurious-failure-under-python27.patch: Fix python2.7 tests.
+
+ [ Gediminas Paulauskas ]
+ * d/p/new-transaction.patch: Fix test failure with new transaction.
+ * d/p/testUtils.patch: Fix test failure with python2.7 (= 2.7.6).
+ * d/tests: Switch to zope.testrunner.
+
+ -- Arnaud Fontaine ar...@debian.org Tue, 16 Dec 2014 17:12:06 +0900
+
zodb (1:3.9.7-3) unstable; urgency=medium
* Team upload.
@@ -237,4 +263,3 @@
* Initial release (Closes: #158552, #159072, #188435)
-- Fabio Tranchitella kob...@debian.org Thu, 18 Aug 2005 21:49:17 +
-
diff -Nru zodb-3.9.7/debian/control zodb-3.9.7/debian/control
--- zodb-3.9.7/debian/control 2014-11-17 12:09:52.0 +0900
+++ zodb-3.9.7/debian/control 2014-12-16 16:40:16.0 +0900
@@ -19,13 +19,12 @@
Depends: ${pydeb:Depends},
${python:Depends},
${misc:Depends},
- ${shlibs:Depends}
+ ${shlibs:Depends},
+ python-persistent
Provides: ${pydeb:Provides},
${python:Provides},
- python-persistent
Suggests: ${pydeb:Suggests}
-Conflicts: zope3,
- python-persistent
+Conflicts: zope3
Description: Zope Object Database (ZODB)
The Zope Object Database is an object-oriented database for Python that
provides a high-degree of transparency. Applications can take advantage of
diff -Nru zodb-3.9.7/debian/patches/new-transaction.patch zodb-3.9.7/debian/patches/new
Bug#769853: /769854: unblock: python-persistent and python-zodb
Hi,
Julien Cristau jcris...@debian.org writes:
I don't think that's ok. Can't you remove the conflicting files from
python-zodb, and make it depend on python-persistent?
Thanks for the suggestion. I talked with upstream authors and this
should be fine. However, python-persistent in the archive (4.x) is
incompatible with ZODB 4.0.0a4 and thus with the version available in
the archive (3.9.7). Therefore, I had to backport some patches from
upstream so that python-zodb could depend on python-persistent.
With these patches, all the unit tests of python-zodb pass when being
ran with python-persistent and python-zodb installed (even though, they
only ran with python-zope.testing from stable, due to change in the unit
tests framework only from zope.testing 4.x).
Here are the changelog entries for both packages:
python-persistent (4.0.8-3) unstable; urgency=medium
* Team upload.
* Revert change in previous upload in favor of removing persistent
module from python-zodb and make it depend upon this package (with
upstream ACK). Closes: #767554.
+ d/control: Add Breaks/Replaces against python-zodb 1:3.9.7-4~.
-- Arnaud Fontaine ar...@debian.org Wed, 10 Dec 2014 17:33:13 +0900
zodb (1:3.9.7-4) unstable; urgency=medium
* Team upload.
* Revert change in previous upload in favor of removing persistent
module from this package and make it depend upon python-persistent
(with upstream ACK). Closes: #767554.
+ d/control: Add Depends against python-persistent.
+ d/rules: Delete persistent module from final package.
+ d/p/fix_persistent_module_4.x_incompatibilities.patch: persistent 4.x
uses bytes instead of repr() but ZODB 4.0.0a4 still uses repr() which
is incompatible.
+ d/tests/all: Remove persistent from the list of tests being ran.
+ d/tests/control: zope.testing.doctest has been removed in
python-zope.testing 4.0.0 and tests cannot be ran anymore. So update
Depends accordingly even though 4.0.0~ is only in stable instead of
backporting many patches. Fix this issue properly when packing NUR
after the release of Jessie.
* d/p/debian/patches/fix_unit_tests.patch: Fix python2.7 tests failures.
-- Arnaud Fontaine ar...@debian.org Fri, 12 Dec 2014 11:47:47 +0900
I have attached the debdiff with the packages currently in unstable,
would you consider unblocking these changes if I upload the packages to
unstable?
Regards,
--
Arnaud Fontaine
diff -Nru python-persistent-4.0.8/debian/changelog python-persistent-4.0.8/debian/changelog
--- python-persistent-4.0.8/debian/changelog 2014-11-14 18:30:25.0 +0900
+++ python-persistent-4.0.8/debian/changelog 2014-12-10 17:41:09.0 +0900
@@ -1,3 +1,13 @@
+python-persistent (4.0.8-3) unstable; urgency=medium
+
+ * Team upload.
+ * Revert change in previous upload in favor of removing persistent
+module from python-zodb and make it depend upon this package (with
+upstream ACK). Closes: #767554.
++ d/control: Add Breaks/Replaces against python-zodb 1:3.9.7-4~.
+
+ -- Arnaud Fontaine ar...@debian.org Wed, 10 Dec 2014 17:33:13 +0900
+
python-persistent (4.0.8-2) unstable; urgency=medium
* Team upload.
diff -Nru python-persistent-4.0.8/debian/control python-persistent-4.0.8/debian/control
--- python-persistent-4.0.8/debian/control 2014-11-14 18:31:01.0 +0900
+++ python-persistent-4.0.8/debian/control 2014-12-10 17:37:40.0 +0900
@@ -22,7 +22,8 @@
Package: python-persistent
Architecture: any
Depends: ${misc:Depends}, ${python:Depends}, ${shlibs:Depends}
-Conflicts: python-zodb ( 3.11.0~)
+Breaks: python-zodb ( 1:3.9.7-4~)
+Replaces: python-zodb ( 1:3.9.7-4~)
Description: Automatic persistence for Python objects
This package contains a generic persistence implementation for Python. It
forms the core protocol for making objects interact transparently with
diff -Nru zodb-3.9.7/debian/changelog zodb-3.9.7/debian/changelog
--- zodb-3.9.7/debian/changelog 2014-11-17 12:10:50.0 +0900
+++ zodb-3.9.7/debian/changelog 2014-12-12 12:00:34.0 +0900
@@ -1,3 +1,24 @@
+zodb (1:3.9.7-4) unstable; urgency=medium
+
+ * Team upload.
+ * Revert change in previous upload in favor of removing persistent
+module from this package and make it depend upon python-persistent
+(with upstream ACK). Closes: #767554.
++ d/control: Add Depends against python-persistent.
++ d/rules: Delete persistent module from final package.
++ d/p/fix_persistent_module_4.x_incompatibilities.patch: persistent 4.x
+ uses bytes instead of repr() but ZODB 4.0.0a4 still uses repr() which
+ is incompatible.
++ d/tests/all: Remove persistent from the list of tests being ran.
++ d/tests/control: zope.testing.doctest has been removed in
+ python-zope.testing 4.0.0 and tests cannot be ran anymore. So update
+ Depends accordingly even
Bug#769853: unblock: python-persistent/4.0.8-2
Hi, Julien Cristau jcris...@debian.org writes: Please confirm you really meant to use Conflicts (and why). Otherwise please use Replaces+Breaks instead. After discussing on #767554 with other maintainers, there is really no other solution, at least for Jessie. Here is the relevant discussion about this on #767554: From upstream point of view, ZODB3 (aka python-zodb in Debian) used to include persistent, BTrees, ZODB and ZEO modules. However, since ZODB3 3.11.0a1, upstream has split it up into 4 distinct packages (one for each module), bump the version to 4.0 and made ZODB3 a metapackage depending on all of them. As of fixing this RC bug for Jessie: Among the four, only persistent package is currently available in Debian, so there is no way to get rid of ZODB3 (at least for Jessie). Barry: If persistent = 4.0 Debian package is useful on its own to anyone (and thus should not be removed From testing), then can I add a Conflict on both packages and upload them to fix this bug? And here is the reply from Barry Warsaw (maintainer of python-persistent): I think a Conflicts is the right way to handle this for now, given where we are in the Jessie release cycle. After releasing Jessie, we plan to update python-zodb and upload split up modules (namely python-zeo and python-btrees which are not in the archive yet). I don't think that's ok. Can't you remove the conflicting files from python-zodb, and make it depend on python-persistent? I didn't think about that and that would be the best indeed, especially considering that nothing Build-Depends on python-zodb. Gediminas: what do you think? Cheers, -- Arnaud Fontaine signature.asc Description: PGP signature
Bug#769497: unblock: slapos.core/1.2.4.1-2
retitle 769497 unblock: slapos.core/1.2.4.1-2
thanks
Hi,
Niels Thykier ni...@thykier.net writes:
Ack, please upload those changes to unstable (with a reasonable
changelog entry) and let us know once it has been accepted.
I have just uploaded it to unstable and I have attached the debdiff to
this email. Thank you very much in advance.
unblock slapos.core/1.2.4.1-2
Cheers,
--
Arnaud Fontaine
diff -Nru slapos.core-1.2.4.1/debian/changelog slapos.core-1.2.4.1/debian/changelog
--- slapos.core-1.2.4.1/debian/changelog 2014-10-16 11:34:13.0 +0900
+++ slapos.core-1.2.4.1/debian/changelog 2014-11-20 15:49:53.0 +0900
@@ -1,3 +1,12 @@
+slapos.core (1.2.4.1-2) unstable; urgency=medium
+
+ * d/control: Depends on python-psutil = 2.0.0 due to API change leading
+to AttributeError when running 'slapos node collect' subcommand.
+ * d/slapos-node-unofficial.cron.d: Fix wrong crontab making the package
+unuseable with master node.
+
+ -- Arnaud Fontaine ar...@debian.org Thu, 20 Nov 2014 15:49:53 +0900
+
slapos.core (1.2.4.1-1) unstable; urgency=medium
* New upstream release.
diff -Nru slapos.core-1.2.4.1/debian/control slapos.core-1.2.4.1/debian/control
--- slapos.core-1.2.4.1/debian/control 2014-10-16 11:07:17.0 +0900
+++ slapos.core-1.2.4.1/debian/control 2014-11-20 15:46:30.0 +0900
@@ -52,7 +52,8 @@
# slapos.format
bridge-utils,
uml-utilities,
- python-netaddr (= 0.7.5~)
+ python-netaddr (= 0.7.5~),
+ python-psutil (= 2.0.0),
Breaks: ${python:Breaks},
slapos-client ( 1.0.2.1-1~)
# slapos.grid
diff -Nru slapos.core-1.2.4.1/debian/slapos-node-unofficial.cron.d slapos.core-1.2.4.1/debian/slapos-node-unofficial.cron.d
--- slapos.core-1.2.4.1/debian/slapos-node-unofficial.cron.d 2014-04-26 18:30:35.0 +0900
+++ slapos.core-1.2.4.1/debian/slapos-node-unofficial.cron.d 2014-11-20 15:48:36.0 +0900
@@ -2,7 +2,18 @@
PATH=/usr/bin:/usr/sbin:/sbin:/bin
MAILTO=root
-*/5 * * * * root /usr/bin/slapos node software --log-file=/var/log/slapos/slapos-node-software.log
-*/5 * * * * root /usr/bin/slapos node instance --log-file=/var/log/slapos/slapos-node-instance.log
-0 0 * * * root /usr/bin/slapos node report --log-file=/var/log/slapos/slapos-node-report.log
-0 0 * * * root /usr/bin/slapos node format
+# Run Installation/Destruction of Software Releases and Deploy/Start/Stop Partitions once per minute
+* * * * * root/usr/bin/slapos node software --verbose --logfile=/var/log/slapos/slapos-node-software.log --pidfile=/var/run/slapos-node-software.pid /dev/null 21
+* * * * * root/usr/bin/slapos node instance --promise-timeout 20 --verbose --log-file=/var/log/slapos/slapos-node-instance.log --pidfile=/var/run/slapos-node-instance.pid /dev/null 21
+
+# Run Destroy Partitions to be destroyed once per hour
+0 * * * * root/usr/bin/slapos node report --maximal_delay=3600 --verbose --logfile=/var/log/slapos/slapos-node-report.log /dev/null 21
+
+# Run Check/add IPs and so on once per hour
+0 * * * * root/usr/bin/slapos node format /var/log/slapos/slapos-node-format.log 21
+
+# Run Booting on every system start
+@reboot root/usr/bin/slapos node boot /var/log/slapos/slapos-node-boot.log 21
+
+# Run Collect once a minute
+* * * * * root/usr/bin/slapos node collect /var/log/slapos/slapos-node-collect.log 21
signature.asc
Description: PGP signature
Re: too lax shlibs dependency? (newly added pcre_stack_guard needs = 1:8.35)
Hello, What about the attached patch? BTW, while looking at libpcre3 package, I thought it would be a good idea to add a .symbols file and here is what I came up with (anyone could review it?): libpcre.so.3 libpcre3 #MINVER# pcre_assign_jit_stack@Base 1:8.30-4~ pcre_callout@Base 1:8.30-4~ pcre_compile2@Base 1:8.30-4~ pcre_compile@Base 1:8.30-4~ pcre_config@Base 1:8.30-4~ pcre_copy_named_substring@Base 1:8.30-4~ pcre_copy_substring@Base 1:8.30-4~ pcre_dfa_exec@Base 1:8.30-4~ pcre_exec@Base 1:8.30-4~ pcre_free@Base 1:8.30-4~ pcre_free_study@Base 1:8.30-4~ pcre_free_substring@Base 1:8.30-4~ pcre_free_substring_list@Base 1:8.30-4~ pcre_fullinfo@Base 1:8.30-4~ pcre_get_named_substring@Base 1:8.30-4~ pcre_get_stringnumber@Base 1:8.30-4~ pcre_get_stringtable_entries@Base 1:8.30-4~ pcre_get_substring@Base 1:8.30-4~ pcre_get_substring_list@Base 1:8.30-4~ pcre_info@Base 1:8.30-4~ pcre_jit_exec@Base 1:8.35 pcre_jit_free_unused_memory@Base 1:8.35 pcre_jit_stack_alloc@Base 1:8.30-4~ pcre_jit_stack_free@Base 1:8.30-4~ pcre_maketables@Base 1:8.30-4~ pcre_malloc@Base 1:8.30-4~ pcre_pattern_to_host_byte_order@Base 1:8.30-4~ pcre_refcount@Base 1:8.30-4~ pcre_stack_free@Base 1:8.30-4~ pcre_stack_guard@Base 1:8.35 pcre_stack_malloc@Base 1:8.30-4~ pcre_study@Base 1:8.30-4~ pcre_version@Base 1:8.30-4~ libpcreposix.so.3 libpcre3 #MINVER# pcreposix_regcomp@Base 1:8.30-4~ pcreposix_regerror@Base 1:8.30-4~ pcreposix_regexec@Base 1:8.30-4~ pcreposix_regfree@Base 1:8.30-4~ I don't think that could be considered for Jessie, but I think it would be worth asking anyway? Cheers, -- Arnaud Fontaine diff -urN pcre3-8.35.orig/debian/rules pcre3-8.35/debian/rules --- pcre3-8.35.orig/debian/rules 2014-11-20 16:04:51.630416683 +0900 +++ pcre3-8.35/debian/rules 2014-11-20 16:05:03.666453116 +0900 @@ -110,7 +110,7 @@ rm debian/libpcre3-dbg/usr/lib/debug/usr/lib/libpcre* dh_compress -a dh_fixperms -a - dh_makeshlibs -plibpcre3 --add-udeb=libpcre3-udeb -V 'libpcre3 (= 8.10)' + dh_makeshlibs -plibpcre3 --add-udeb=libpcre3-udeb -V 'libpcre3 (= 1:8.35)' dh_makeshlibs -plibpcrecpp0 -V 'libpcrecpp0 (= 7.7)' dh_installdeb -a # dh_perl -a signature.asc Description: PGP signature
Bug#769854: unblock: zodb/1:3.9.7-3
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package zodb
This fixes an error when trying to install it together with
python-persistent and also add a Provides, here is the changelog entry
with further explanations:
diff -Nru zodb-3.9.7/debian/changelog zodb-3.9.7/debian/changelog
--- zodb-3.9.7/debian/changelog 2011-11-08 22:53:42.0 +0900
+++ zodb-3.9.7/debian/changelog 2014-11-17 12:10:50.0 +0900
@@ -1,3 +1,14 @@
+zodb (1:3.9.7-3) unstable; urgency=medium
+
+ * Team upload.
+ * d/control: ZODB3 = 3.11a1 (python-zodb in Debian) has been split up
+into distinct packages (persistent, BTrees, ZODB and ZEO), so until
+python-zodb is updated to at least that version (eg after Jessie), add
+a Conflicts and Provides of python-persistent. Thanks to Andreas
+Beckmann. Closes: #767554.
+
+ -- Arnaud Fontaine ar...@debian.org Fri, 14 Nov 2014 18:34:36 +0900
+
zodb (1:3.9.7-2) unstable; urgency=low
* Team upload.
diff -Nru zodb-3.9.7/debian/control zodb-3.9.7/debian/control
--- zodb-3.9.7/debian/control 2011-10-21 14:24:36.0 +0900
+++ zodb-3.9.7/debian/control 2014-11-17 12:09:52.0 +0900
@@ -20,9 +20,12 @@
${python:Depends},
${misc:Depends},
${shlibs:Depends}
-Provides: ${pydeb:Provides}, ${python:Provides}
+Provides: ${pydeb:Provides},
+ ${python:Provides},
+ python-persistent
Suggests: ${pydeb:Suggests}
-Conflicts: zope3
+Conflicts: zope3,
+ python-persistent
Description: Zope Object Database (ZODB)
The Zope Object Database is an object-oriented database for Python that
provides a high-degree of transparency. Applications can take advantage of
Thanks in advance!
unblock zodb/1:3.9.7-3
Regards,
--
Arnaud Fontaine
signature.asc
Description: PGP signature
Bug#769853: unblock: python-persistent/4.0.8-2
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package python-persistent
This fixes an error when trying to install it together with python-zodb,
here is the changelog entry with further explanations:
diff -Nru python-persistent-4.0.8/debian/changelog
python-persistent-4.0.8/debian/changelog
--- python-persistent-4.0.8/debian/changelog 2014-06-26 04:29:59.0
+0900
+++ python-persistent-4.0.8/debian/changelog 2014-11-14 18:30:25.0
+0900
@@ -1,3 +1,13 @@
+python-persistent (4.0.8-2) unstable; urgency=medium
+
+ * Team upload.
+ * d/control: ZODB3 = 3.11a1 (python-zodb in Debian) has been split up
+into distinct packages (persistent, BTrees, ZODB and ZEO), so until
+python-zodb is updated to at least that version (eg after Jessie), add
+a Conflicts. Thanks to Andreas Beckmann. Closes: #767554.
+
+ -- Arnaud Fontaine ar...@debian.org Fri, 14 Nov 2014 18:22:35 +0900
+
python-persistent (4.0.8-1) unstable; urgency=medium
* Initial release. (Closes: #752679)
diff -Nru python-persistent-4.0.8/debian/control
python-persistent-4.0.8/debian/control
--- python-persistent-4.0.8/debian/control2014-06-26 00:34:29.0
+0900
+++ python-persistent-4.0.8/debian/control2014-11-14 18:31:01.0
+0900
@@ -22,6 +22,7 @@
Package: python-persistent
Architecture: any
Depends: ${misc:Depends}, ${python:Depends}, ${shlibs:Depends}
+Conflicts: python-zodb ( 3.11.0~)
Description: Automatic persistence for Python objects
This package contains a generic persistence implementation for Python. It
forms the core protocol for making objects interact transparently with
Thanks in advance!
unblock python-persistent/4.0.8-2
Regards,
--
Arnaud Fontaine
signature.asc
Description: PGP signature
Bug#769856: unblock: mariadb-10.0/10.0.14-3
++--replace_result $replace drop user USER + eval drop user $USER; + + --echo # + +=== modified file 'mysql-test/t/failed_auth_unixsocket.test' +--- a/mysql-test/t/failed_auth_unixsocket.test 2014-03-24 19:02:00 + b/mysql-test/t/failed_auth_unixsocket.test 2014-11-12 10:10:13 + +@@ -16,11 +16,17 @@ change_user $USER; + + eval install plugin unix_socket soname '$AUTH_SOCKET_SO'; + +---replace_result $MASTER_MYSOCK MASTER_SOCKET $MASTER_MYPORT MASTER_PORT $USER USER ++# Make sure that the replace works, even if $USER is 'user' or something else ++# that matches other parts of the error message. ++--echo connect(localhost,USER,,test,MASTER_PORT,MASTER_SOCKET); ++--let $replace=Access denied for user '$USER' ++--replace_result $MASTER_MYSOCK MASTER_SOCKET $MASTER_MYPORT MASTER_PORT $replace Access denied for user 'USER' ++--disable_query_log + --error ER_ACCESS_DENIED_NO_PASSWORD_ERROR + connect (fail,localhost,$USER); ++--enable_query_log + +---replace_result $USER USER ++--replace_result $replace Access denied for user 'USER' + --error ER_ACCESS_DENIED_NO_PASSWORD_ERROR + change_user $USER; Thanks in advance! unblock mariadb-10.0/10.0.14-3 Regards, -- Arnaud Fontaine signature.asc Description: PGP signature
Bug#769853: unblock: python-persistent/4.0.8-2
Niels Thykier ni...@thykier.net writes: If files have been moved around, you need Replaces: python-zodb ( 3.11.0~) Breaks: python-zodb ( 3.11.0~) And not conflicts. There is rarely a need for (lone) Conflict these days (notable exception being Policy §7.5.2[1]). Please confirm you really meant to use Conflicts (and why). Otherwise please use Replaces+Breaks instead. After discussing on #767554 with other maintainers, there is really no other solution, at least for Jessie. Here is the relevant discussion about this on #767554: From upstream point of view, ZODB3 (aka python-zodb in Debian) used to include persistent, BTrees, ZODB and ZEO modules. However, since ZODB3 3.11.0a1, upstream has split it up into 4 distinct packages (one for each module), bump the version to 4.0 and made ZODB3 a metapackage depending on all of them. As of fixing this RC bug for Jessie: Among the four, only persistent package is currently available in Debian, so there is no way to get rid of ZODB3 (at least for Jessie). Barry: If persistent = 4.0 Debian package is useful on its own to anyone (and thus should not be removed From testing), then can I add a Conflict on both packages and upload them to fix this bug? And here is the reply from Barry Warsaw (maintainer of python-persistent): I think a Conflicts is the right way to handle this for now, given where we are in the Jessie release cycle. After releasing Jessie, we plan to update python-zodb and upload split up modules (namely python-zeo and python-btrees which are not in the archive yet). Cheers, -- Arnaud Fontaine signature.asc Description: PGP signature
Re: About uploading slapos.core for stable
Niels Thykier ni...@thykier.net writes: Would you be so kind as to file this as an unblock bug (using reportbug). It is vastly easier for us to track and handle. You are welcome to use unblock requests as pre-approval requests as well (simply mention in the body or subject of the bug that is a pre-approval request). Sure, I have just done that. Thank you very much! Cheers, -- Arnaud Fontaine -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/87lhnea3un@duckcorp.org
Bug#769497: unblock: slapos.core/1.2.4.1-2 (pre-approval)
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
unblock slapos.core/1.2.4.1-2
slapos-node-unofficial currently in unstable should Depends on at least
version = 2.0.0 of python-psutil (because of API change in
python-psutil) but it does not currently and this makes subcommands
fails (with AttributeError because of psutil API change) when using it
on stable (where only psutil 0.5.1 is available).
Also, I noticed that the crontab is wrong and makes the package
unuseable with a master node (which is one of the main usage at the end)
because one script is only ran once a day and this is not enough.
I have attached a diff and would like to know if I could get an unblock
for this? Thanks in advance!
Cheers,
--
Arnaud Fontaine
Index: debian/control
===
--- debian/control (revision 11537)
+++ debian/control (working copy)
@@ -52,7 +52,8 @@
# slapos.format
bridge-utils,
uml-utilities,
- python-netaddr (= 0.7.5~)
+ python-netaddr (= 0.7.5~),
+ python-psutil (= 2.0.0),
Breaks: ${python:Breaks},
slapos-client ( 1.0.2.1-1~)
# slapos.grid
Index: debian/slapos-node-unofficial.cron.d
===
--- debian/slapos-node-unofficial.cron.d (revision 11537)
+++ debian/slapos-node-unofficial.cron.d (working copy)
@@ -2,7 +2,18 @@
PATH=/usr/bin:/usr/sbin:/sbin:/bin
MAILTO=root
-*/5 * * * * root /usr/bin/slapos node software --log-file=/var/log/slapos/slapos-node-software.log
-*/5 * * * * root /usr/bin/slapos node instance --log-file=/var/log/slapos/slapos-node-instance.log
-0 0 * * * root /usr/bin/slapos node report --log-file=/var/log/slapos/slapos-node-report.log
-0 0 * * * root /usr/bin/slapos node format
+# Run Installation/Destruction of Software Releases and Deploy/Start/Stop Partitions once per minute
+* * * * * root/usr/bin/slapos node software --verbose --logfile=/var/log/slapos/slapos-node-software.log --pidfile=/var/run/slapos-node-software.pid /dev/null 21
+* * * * * root/usr/bin/slapos node instance --promise-timeout 20 --verbose --log-file=/var/log/slapos/slapos-node-instance.log --pidfile=/var/run/slapos-node-instance.pid /dev/null 21
+
+# Run Destroy Partitions to be destroyed once per hour
+0 * * * * root/usr/bin/slapos node report --maximal_delay=3600 --verbose --logfile=/var/log/slapos/slapos-node-report.log /dev/null 21
+
+# Run Check/add IPs and so on once per hour
+0 * * * * root/usr/bin/slapos node format /var/log/slapos/slapos-node-format.log 21
+
+# Run Booting on every system start
+@reboot root/usr/bin/slapos node boot /var/log/slapos/slapos-node-boot.log 21
+
+# Run Collect once a minute
+* * * * * root/usr/bin/slapos node collect /var/log/slapos/slapos-node-collect.log 21
signature.asc
Description: PGP signature
Bug#769227: unblock: python-chameleon/2.16-4
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package python-chameleon
python-chameleon binary package has been split up into python-chameleon
and python-chameleon-doc but the latter does not define Breaks/Replaces
against the previous version. Thus, installation of python-chameleon-doc
fails on current stable (bug #768205).
The version I have just uploaded only fix this issue and nothing else. I
have attached to this email the debdiff with the version currently in
testing. Thank you very much!
unblock python-chameleon/2.16-4
diff -Nru python-chameleon-2.16/debian/changelog python-chameleon-2.16/debian/changelog
--- python-chameleon-2.16/debian/changelog 2014-06-29 05:01:35.0 +0900
+++ python-chameleon-2.16/debian/changelog 2014-11-12 16:50:58.0 +0900
@@ -1,3 +1,11 @@
+python-chameleon (2.16-4) unstable; urgency=medium
+
+ * Team upload.
+ * d/control: Add missing python-chameleon-doc Breaks/Replaces against
+python-chameleon. Thanks to Andreas Beckmann. Closes: #768205.
+
+ -- Arnaud Fontaine ar...@debian.org Wed, 12 Nov 2014 16:37:07 +0900
+
python-chameleon (2.16-3) unstable; urgency=medium
* d/tests:
diff -Nru python-chameleon-2.16/debian/control python-chameleon-2.16/debian/control
--- python-chameleon-2.16/debian/control 2014-07-01 07:23:12.0 +0900
+++ python-chameleon-2.16/debian/control 2014-11-12 16:36:56.0 +0900
@@ -53,6 +53,8 @@
Section: doc
Architecture: all
Depends: ${misc:Depends}
+Breaks: python-chameleon ( 2.16-1~)
+Replaces: python-chameleon ( 2.16-1~)
Description: XML-based template compiler
Chameleon compiles templates to Python byte-code. It includes a complete
implementation of the Zope Page Templates (ZPT) language.
signature.asc
Description: PGP signature
About uploading slapos.core for stable
Hello,
slapos-node-unofficial currently in unstable should Depends on at least
version = 2.0.0 of python-psutil (because of API change in
python-psutil) but it does not currently and this makes subcommands
fails (with AttributeError because of psutil API change) when using it
on stable (where only psutil 0.5.1 is available).
Also, I noticed that the crontab is wrong and makes the package
unuseable with a master node (which is one of the main usage at the end)
because one script is only ran once a day and this is not enough.
I have attached a diff and would like to know if I could get an unblock
for this? Thanks in advance!
Cheers,
--
Arnaud Fontaine
Index: debian/control
===
--- debian/control (revision 11537)
+++ debian/control (working copy)
@@ -52,7 +52,8 @@
# slapos.format
bridge-utils,
uml-utilities,
- python-netaddr (= 0.7.5~)
+ python-netaddr (= 0.7.5~),
+ python-psutil (= 2.0.0),
Breaks: ${python:Breaks},
slapos-client ( 1.0.2.1-1~)
# slapos.grid
Index: debian/slapos-node-unofficial.cron.d
===
--- debian/slapos-node-unofficial.cron.d (revision 11537)
+++ debian/slapos-node-unofficial.cron.d (working copy)
@@ -2,7 +2,18 @@
PATH=/usr/bin:/usr/sbin:/sbin:/bin
MAILTO=root
-*/5 * * * * root /usr/bin/slapos node software --log-file=/var/log/slapos/slapos-node-software.log
-*/5 * * * * root /usr/bin/slapos node instance --log-file=/var/log/slapos/slapos-node-instance.log
-0 0 * * * root /usr/bin/slapos node report --log-file=/var/log/slapos/slapos-node-report.log
-0 0 * * * root /usr/bin/slapos node format
+# Run Installation/Destruction of Software Releases and Deploy/Start/Stop Partitions once per minute
+* * * * * root/usr/bin/slapos node software --verbose --logfile=/var/log/slapos/slapos-node-software.log --pidfile=/var/run/slapos-node-software.pid /dev/null 21
+* * * * * root/usr/bin/slapos node instance --promise-timeout 20 --verbose --log-file=/var/log/slapos/slapos-node-instance.log --pidfile=/var/run/slapos-node-instance.pid /dev/null 21
+
+# Run Destroy Partitions to be destroyed once per hour
+0 * * * * root/usr/bin/slapos node report --maximal_delay=3600 --verbose --logfile=/var/log/slapos/slapos-node-report.log /dev/null 21
+
+# Run Check/add IPs and so on once per hour
+0 * * * * root/usr/bin/slapos node format /var/log/slapos/slapos-node-format.log 21
+
+# Run Booting on every system start
+@reboot root/usr/bin/slapos node boot /var/log/slapos/slapos-node-boot.log 21
+
+# Run Collect once a minute
+* * * * * root/usr/bin/slapos node collect /var/log/slapos/slapos-node-collect.log 21
signature.asc
Description: PGP signature
Bug#714266: RM: zope-maildrophost_2.3-1, zope-mysqlda_3.1.1-1, zope-quotafolder_1:0.1.1-1, zope-replacesupport_1.0.3-6
Hello, Luca Falavigna dktrkr...@debian.org writes: Please remove these packages from Jessie: * zope-maildrophost 2.3-1 * zope-mysqlda 3.1.1-1 * zope-quotafolder 1:0.1.1-1 * zope-replacesupport 1.0.3-6 They depend on zope2.12, which has been removed from unstable, and will block python2.6 removal from testing when it will be removed from unstable (#714116). They will be probably become installable in unstable again when zope2.13 will enter unstable; if that will not happen, packages will be removed from unstable as well. Also, could you please remove zope2.12 from testing as well as it's completely unuseable (#714339)? zope2.12 should have been removed only when zope2.13 package would have reached the archive (as there is no currently no working Zope package available in the archive). For this reason and even though I should have said something against zope2.12 removal from unstable, I'm still a bit surprised to see that python2.6 is still available in testing and especially that python2.6 packages (such as zope2.12) are completely broken because some basic python packages (python-pkg-resources with python2.7 only for example) were migrated to testing (too soon probably?). Is there any solution to avoid such breakage in the future? Nonetheless, thanks Luca for pushing forward python2.6 removal! Cheers, -- Arnaud Fontaine -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/87obaqwzgf@duckcorp.org
Bug#699944: RM: slapos.core/0.25-2
Package: release.debian.org User: release.debian@packages.debian.org Usertags: rm Severity: normal Hello, slapos.core currently available in testing is too outdated and the changes introduced in later releases are too significant, thus upstream would prefer not having the package released with wheezy. So, could you please remove the package from testing? Thanks! Regards, -- Arnaud Fontaine pgpf59pIy5lwJ.pgp Description: PGP signature
Upload of xcb-util* libraries
Hello, Some xcb-util* libraries have been released (mainly maintenance fixes), so here are a few things I would like to discuss before uploading anything: - xcb-util: The SONAME was bumped so this would require a library transition, but considering that the freeze should happen soon and this is library is used by libstartup-notification0 used in turn by evolution and xulrunner where a library transition is already ongoing, this is probably not possible to upload it. - xcb-util-wm: EWMH library SONAME was bumped. However, this package is only used by unagi which I maintain, so I can take care of that and also add MultiArch support. - xcb-util-image: There has been no SONAME bump so I guess this package could perhaps be uploaded with MultiArch support. - xcb-util-keysyms: Same as xcb-util-image. Cheers, -- Arnaud Fontaine pgpxFVzyrecX7.pgp Description: PGP signature
Bug#650601: transition: libpng 1.5
Nobuhiro Iwamatsu iwama...@debian.org writes: And it is necessary to change Build-depends of almost all packages into libpng-dev from libpng12-dev. The present status is as follows. [...] tuxonice-userui: FTBFS 648125 I wrote a patch and have a package ready to upload as soon as libpng 1.5 is in unstable. Cheers, -- Arnaud Fontaine pgpCFbEeK2NwJ.pgp Description: PGP signature
Zope2 packaging
Hello, Once upon a time, zope2.X could be easily installed on Debian (until 2.10), and thanks to dzhandle, it was pretty easy and straightforward to use. Unfortunately it is not anymore since the upstream decided to move to a modularized approach (with ZTK) ratherthan having a monolithic tarball, which is a good thing, in most cases at least. Unfortunately, it has became a nightmare from a packager point of view, because each released version of Zope depends upon specific versions of these modules, which sometimes (often?) include backward-incompatible changes, thus leading to conflicting dependencies between each released version. Moreover, as of Zope 2.12, there are about 89 eggs pulled down as dependencies when using the regular build process and the number is growing because more and more duplicated code with ZTK is being moved out of Zope2. In addition, several Zope applications, like Plone, require a specific Zope version. Therefore, we also would like to be able to offer, at the same time, several major versions of Zope (2.12 and 2.13 for example), like we once did for Zope 2.9 and 2.10, and like we do for versions of Python. We thought about two solutions to address these issues: 1/ Versionning each component of the ztk so we can install at the same time zope-foo 1.2.1 and zope-foo 1.3.0. 2/ Packaging inside a zope2.12 package all the requirements of zope2.12 which are not the current mainstream ztk. Even if we don't really like it, the second solution seems the only viable solution because of the number of modules and the breakage in backward-compatibility. Not doing so would require versionned packages for the 89 eggs required by Zope 2.12, and the same for those required by Zope 2.13. The purpose of this email is actually to let the debian-release and debian-security teams know before finalizing the package, thus we can make sure that the package gets accepted and gets advices as well. We realize that's a big burden for those teams because of the duplicated modules, but we are willing to take care of that as much as possible. On behalf of the Zope2 packagers, Arnaud Fontaine and Gaël Le Mignot pgp3ot22z9kSV.pgp Description: PGP signature
Re: Bug#528527: Package candidate for removal for GNOME transition
Adeodato Simó d...@net.com.org.es writes: Hello, That's excellent, Arnaud. Thank you for your effort, and good luck with your exams! Thanks. I have just uploaded gwget 1.0.1, thus fixing this bug. Cheers, Arnaud pgp23jBVZGNOy.pgp Description: PGP signature
Re: Bug#528527: Package candidate for removal for GNOME transition
Adeodato Simó d...@net.com.org.es writes: Hello, Hello, gwget2, evolution-rss, evolution-jescs and icewm are all RC buggy and are being considered for removal in order to get GNOME 2.24/26 migrate to testing. I note that the RC bugs of gwget2 and evolution-jescs have only been filed minutes ago, so if the maintainers express they intend to upload very soon, effort will be put in getting it built quickly and in time in order for it not to be removed. However, the RC bugs have existed unfiled for more than a week, so we'll also take that into account if everything else gets ready. I am quite busy at the moment with my exams but I think I can upload version 1.0.1 of gwget before the end of the week-end (I hope that would be ok this way?). This new upstream version ships support for epiphany 2.26, thus fixing this RC bug. Regards, Arnaud Fontaine pgpBPByvbkGEH.pgp Description: PGP signature
Re: pcapy upload for Lenny?
Luk Claes l...@debian.org writes: Please upload to unstable. Done, but maybe too late for Lenny, isn't it? Cheers, Arnaud Fontaine pgpH5yCusYmm3.pgp Description: PGP signature
Re: please unblock twill-0.9-1
Neil == Neil McGovern ne...@debian.org writes: Hi, Neil 102 files changed, 12933 insertions(+), 12292 deletions(-) Neil Sorry, we don't have time to review this at this late Neil stage. Could you make a targeted upload to TPU for any RC bugs Neil please? Sorry, I forgot to mention that the upstream author actually renames directories and modules in twill/other_packages (to improve distribution packaging but actually it doesn't, thus I sent an email to the upstream author about that), that's why you get such a big changeset. But in fact, all these files are not installed within the binary because it is a duplicate of existing python modules (such as mechanize and ClientForm). Consequently, excluding this directory and also the tests/ directory (not included either) from the diff returns the following result (including 216 lines concerning debian/copyright): 28 files changed, 600 insertions(+), 227 deletions(-) Is it too much? Cheers, Arnaud Fontaine pgpz1MQbSwYWM.pgp Description: PGP signature
Please unblock pyme-0.8.1+clean-1
Hello, Could you please unblock pyme-0.8.1+clean-1? Basically, this upstream release is just a bug fixes release (eliminate a memory leak, add examples...) and also repacked the upstream tarball because it contained a debian/ directory. Cheers, Arnaud Fontaine pgpt44Jb3tnHH.pgp Description: PGP signature
Please unblock genshi-0.5.1-1
Hello, Could you please unblock genshi-0.5.1-1 (bug fixes upstream release)? There are now two packages: for the Python module and for documentation (quite big). In addition, the documentation package depends on libjs-jquery to avoid shipping jquery.js (in examples) from genshi upstream tarball. Cheers, Arnaud Fontaine pgpvTdM0RrcUh.pgp Description: PGP signature
Please unblock planet-2.0.15
Hello, Could you please unblock planet-2.0-15 as this upload fixes an important bug? Here is the changelog entry: planet (2.0-15) unstable; urgency=low * Add lintian override because planet ships its own version of feedparser. * debian/patches/03_fix_isPermaLink.diff: + Add missing space before attribute leading to incorrect template being generated. Thanks to Raphaël Hertzog. Cheers, Arnaud Fontaine pgpnu5HQjKQSn.pgp Description: PGP signature
Re: please unblock planet-2.0-14
Hello, Could you please unblock planet-2.0-14 as this upload adds a translation? Here is the changelog entry: planet (2.0-14) unstable; urgency=low * debian/po: + Add Brazilian Portuguese translation. Thanks to Adriano Rafael Gomes. Closes: #487416. Cheers, Arnaud Fontaine pgpFkOT7FNLgk.pgp Description: PGP signature
Re: please unblock planet-2.0-14
Adeodato == Adeodato Simó [EMAIL PROTECTED] writes: Hi, Adeodato Unblocked. (It would've been nice to mention the lintian Adeodato override in the changelog. And, I guess it's a heavily Adeodato modified copy of feedparser?) Thanks. Indeed, the lintian override is mentioned in the changelog but I didn't paste this entry in the mail I sent (was a bit tired this morning, sorry ;)). Cheers, Arnaud Fontaine pgpwCOCscCk8l.pgp Description: PGP signature
Re: please unblock emms-3.0-4
Hello, Could you please unblock emms-3.0-4 as this version adds emacs-snapshot in Depends to handle private installations? Here is the changelog entry: emms (3.0-4) unstable; urgency=low * debian/control: + Add emacs-snapshot to Depends as some people are using private emacs-snapshot package. Closes: #499595. -- Arnaud Fontaine [EMAIL PROTECTED] Wed, 24 Sep 2008 18:58:20 +0100 Cheers, Arnaud Fontaine pgpAe2unh0VA6.pgp Description: PGP signature
please unblock emms-3.0-3
Hello, Could you please unblock emms-3.0-3 as this version fixes a serious bug and several others problems? Here is the changelog entry: emms (3.0-3) unstable; urgency=low * debian/control: + Bump Standards-Version to 3.8.0. No changes needed. + Don't install files for emacs21 as 'url' package is not provided by emacs21. Closes: #498115. * debian/doc-base: + Update section to Sounds. * debian/patches/fix-alsaplayer.patch: + Fix alsaplayer backend which didn't work at all. Thanks to Igor B. Poretsky. Closes: #466949. * Use quilt to manage patches and add it to Build-Depends. * debian/copyright: + Update copyright years. Cheers, Arnaud Fontaine pgpAG2Jr3TzPz.pgp Description: PGP signature
please unblock netenv-0.94.3-24
Hello, Could you please unblock netenv-0.94.3-24 as this version fixes a bashism and lintian warnings and also update a translation? Here is the changelog entry: netenv (0.94.3-24) unstable; urgency=low * debian/po/sv.po: + Update swedish translation to fix a fuzzy string. Thanks to Martin Bagge. Closes: #492184. * debian/patches/netenv_fix_bashism.diff: + Add patch to fix bashisms. Thanks to Raphael Geissert and Chris Lamb. Closes: #489641. * debian/control: + Build-Depends on cdbs 0.4.27 instead of depending on first revision. * debian/doc-base*: + Convert doc-base.de to UTF-8. + Update doc-base section from admin to System/Administration. * debian/copyright: + Convert to UTF-8. Cheers, Arnaud Fontaine pgpHW5ZjbnVYT.pgp Description: PGP signature
please unblock pyme-0.8.0-2
Hello, Could you please unblock pyme-0.8.0-2 as this version only fixes a FTBFS with dash? Regards, Arnaud Fontaine diff -urN pyme-0.8.0.orig/debian/changelog pyme-0.8.0/debian/changelog --- pyme-0.8.0.orig/debian/changelog 2008-08-16 17:22:32.0 +0200 +++ pyme-0.8.0/debian/changelog 2008-08-16 17:22:47.0 +0200 @@ -1,3 +1,10 @@ +pyme (0.8.0-2) unstable; urgency=low + + * Apply patch which fixes FTBFS with dash. Thanks to Adrien +Cunin. Closes: #493110. + + -- Arnaud Fontaine [EMAIL PROTECTED] Fri, 15 Aug 2008 18:51:26 +0200 + pyme (0.8.0-1) unstable; urgency=low * New upstream release. diff -urN pyme-0.8.0.orig/setup.py pyme-0.8.0/setup.py --- pyme-0.8.0.orig/setup.py 2006-04-13 00:20:38.0 +0200 +++ pyme-0.8.0/setup.py 2008-08-16 17:22:47.0 +0200 @@ -31,7 +31,7 @@ import version def getconfig(what): -cmd = os.popen(sh gpgme-config --%s % what, r) +cmd = os.popen(sh -c 'gpgme-config --%s' % what, r) confdata = cmd.read() confdata = confdata.replace(\n, ) assert cmd.close() == None, error getting GPG config pgpRrPoaotCVv.pgp Description: PGP signature
Re: tomcat5.5 5.5.20-3 in stable?
Adeodato == Adeodato Simó [EMAIL PROTECTED] writes: Hello, Thanks for your answer. Adeodato If you can verify #401713 happens in stable, you'll want Adeodato to talk to its maintainers so that they prepare an upload Adeodato to s-p-u containing only that fix, and send a proposed Adeodato debdiff to this list for approval and later upload. Actually, the users I put in Cc has had this bug in stable. I should have mentioned that in the previous mail... ;) Regards, Arnaud Fontaine pgpCCFwWhH8wb.pgp Description: PGP signature
tomcat5.5 5.5.20-3 in stable?
Hello, Bug #401713 (severity: grave) has been fixed in tomcat5.5 5.5.20-3, but the version currently in stable is 5.5.20-2, I wonder if there is a reason why tomcat5.5 5.5.20-2 hasn't reached stable or at least s-p-u yet? Regards, Arnaud Fontaine pgpmsnQ4aqfOm.pgp Description: PGP signature
hint for squashfs 3.2r2?
Hello, I have prepared squashfs 3.2r2 package and I wonder if the new upstream release of squashfs could be hinted for testing. This release includes some importants fixes as mentioned in the CHANGES file: [...] 4. Squashfs kernel code has been hardened against accidently or maliciously corrupted Squashfs filesystems. [...] 5. Race condition occurring on S390 in readpage() fixed. 6. Odd behaviour of MIPS memcpy in read_data() routine worked-around. 7. Missing cache_flush in Squashfs symlink_readpage() added. Regards, Arnaud Fontaine pgpSaQq97NpoZ.pgp Description: PGP signature
Re: Please hint suspend2-userui 0.6.4-3
Marc == Marc 'HE' Brockschmidt [EMAIL PROTECTED] writes: Hello, Marc Erm, the version in etch is 0.6.3-1 and the FTBFS bug was Marc filed on 0.6.4-1 - is the bug really present in etch? It Marc doesn't look like it, at least and I'm not willing to let in Marc this new upstream version with a lot of code changes just for Marc the fun of it. You're right, sorry. Regards, Arnaud Fontaine -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Please hint suspend2-userui 0.6.4-3
Hello, Could you please unlock suspend2-userui 0.6.4-3 for etch? It fixes a FTBFS on ia64. Regards, Arnaud Fontaine -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Please hint planet 2.0-6
Luk == Luk Claes [EMAIL PROTECTED] writes: Hello, Luk Unblocked. Luk Cheers It doesn't seem to be unblocked because the package haven't entered yet in etch. Regards, Arnaud Fontaine -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Please hint planet 2.0-6
Hello, Could you please unlock planet 2.0-6 for etch? It renames /usr/bin/planet to /usr/bin/planetplanet due to name conflict with drscheme (already in stable and testing). Regards, Arnaud Fontaine pgpzIzYw6CvDo.pgp Description: PGP signature
Please hint netenv 0.94.3-21
Hello, Could you please unlock netenv 0.94.3-21 for etch? It fixes typo in the debconf template and it updates the german translation too. Regards, Arnaud Fontaine pgpI9mtgymlgm.pgp Description: PGP signature
