[Pkg-utopia-maintainers] Bug#895291: libdbus-glib-1-dev: is deprecated

2018-04-09 Thread Simon McVittie 
Package: libdbus-glib-1-dev
Version: 0.100.2-1
Severity: important
Tags: upstream wontfix

dbus-glib is deprecated and should not be used in new software. It is
not at all thread-safe and has some nasty design flaws that cannot be
fixed compatibly.

For general-purpose uses of D-Bus, the recommended replacement is GDBus,
part of the libgio library shipped with GLib. This is a higher-level,
thread-safe D-Bus library. libdbus-glib-1-dev already depends on a
version of libglib2.0-dev that contains the GDBus APIs.

For uses that require GLib main-loop integration for the low-level
reference implementation of D-Bus (libdbus), the recommended replacement
is the dbus-gmain module, which is provided as a branch in dbus-glib
upstream git and can be bundled in larger software projects as a git
subtree or submodule (for example, dbus-python since 1.2.6 uses this).

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

Re: [Pkg-utopia-maintainers] Systemd user instance equivalent of dh_systemd_enable?

2018-04-08 Thread Simon McVittie 
On Sun, 08 Apr 2018 at 08:26:13 -0600, Daniele Nicolodi wrote:
> the package is dbus-broker, a replacement for dbus-deamon. You may have
> heard of it: there has been a short exchange about its packaging for
> Debian with its developers with the Debian dbus maintainers in Cc.

Sorry, I didn't see that conversation until now. Please use the role address
@packages.debian.org if you want to reach package maintainers:
mailing lists used to represent team maintenance often don't have
the entire team subscribed, particularly if the team maintains many
not-entirely-related packages (as pkg-utopia does), because the list
receives all the "messages to the maintainer" for every package that it
maintains, making it inconveniently high-traffic.

If dbus-broker is uploaded to Debian as an optional dbus-daemon
replacement, it will definitely need to be coordinated with the dbus
source package. Having the two packages coexist is probably not going to
be straightforward to set up, and if any diversions, alternatives etc.
are going on, all maintainers of the dbus package will need to be aware
of them.

I do not expect that dbus-broker will be compatible with every D-Bus
service in Debian. The one incompatibility that I'm reasonably sure exists
is that if the Exec= for an activatable service points to a command that
will fork (background itself) and exit 0, dbus-daemon tolerates this
(at the cost of worse error behaviour because it cannot tell whether
the service subsequently fails), while dbus-broker almost certainly does
not. This is inadvisable behaviour even with the reference dbus-daemon,
so I'd consider it to be a bug in the service, but unfortunately it can't
be detected statically.

It's unfortunate that current Debian infrastructure conflates the
concepts of "should receive every communication about all of these
packages" and "is a team": hopefully current/near-future work being done
on tracker.debian.org will address that.

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted policykit-1 0.105-20 (source) into unstable

2018-03-27 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Tue, 27 Mar 2018 13:50:28 +0100
Source: policykit-1
Binary: policykit-1 policykit-1-doc libpolkit-gobject-1-0 
libpolkit-gobject-1-dev libpolkit-agent-1-0 libpolkit-agent-1-dev 
libpolkit-backend-1-0 libpolkit-backend-1-dev gir1.2-polkit-1.0
Architecture: source
Version: 0.105-20
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 gir1.2-polkit-1.0 - GObject introspection data for PolicyKit
 libpolkit-agent-1-0 - PolicyKit Authentication Agent API
 libpolkit-agent-1-dev - PolicyKit Authentication Agent API - development files
 libpolkit-backend-1-0 - PolicyKit backend API
 libpolkit-backend-1-dev - PolicyKit backend API - development files
 libpolkit-gobject-1-0 - PolicyKit Authorization API
 libpolkit-gobject-1-dev - PolicyKit Authorization API - development files
 policykit-1 - framework for managing administrative policies and privileges
 policykit-1-doc - documentation for PolicyKit-1
Closes: 894205
Changes:
 policykit-1 (0.105-20) unstable; urgency=medium
 .
   * Team upload
   * d/p/0.108/build-Fix-.gir-generation-for-parallel-make.patch:
 Add patch from upstream to fix parallel builds (Closes: #894205)
Checksums-Sha1:
 f26d9461fb02879ebd67191a90dda3e12ac686c0 2889 policykit-1_0.105-20.dsc
 dcc1d86fa51b566b28ebed723471afad6376c2e5 44168 
policykit-1_0.105-20.debian.tar.xz
 fc1ca80702d84891a26027bd20ab81b5a8eb1f92 8813 
policykit-1_0.105-20_source.buildinfo
Checksums-Sha256:
 0eec257b86116384c132d3c43dd08be0a4466fdfe9b2e74f4ed5e03ad745619c 2889 
policykit-1_0.105-20.dsc
 c891c814ff9daabdb0e81cdabe19f50be1db49749c4cecacdf50a3e67782e9fe 44168 
policykit-1_0.105-20.debian.tar.xz
 5c825aa4fc13b23cecd31e92aeb3d0b8ce7f4b74de05a8a0b4da4ec84c27e019 8813 
policykit-1_0.105-20_source.buildinfo
Files:
 152f47353546eb7089dbfad3c19215e5 2889 admin optional policykit-1_0.105-20.dsc
 7ab603418dce135bc054ed494c5a6eac 44168 admin optional 
policykit-1_0.105-20.debian.tar.xz
 1a7fec49ed5cbcd59dbdd7237df08e44 8813 admin optional 
policykit-1_0.105-20_source.buildinfo

-BEGIN PGP SIGNATURE-
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=X0D4
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#894205: policykit-1: frequent parallel FTBFS

2018-03-27 Thread Simon McVittie 
Control: tags -1 + fixed-upstream pending
Control: forwarded -1 https://bugs.freedesktop.org/show_bug.cgi?id=57077

On Tue, 27 Mar 2018 at 13:41:03 +0300, Adrian Bunk wrote:
> libtool:   error: cannot find the library 'libpolkit-gobject-1.la' or 
> unhandled argument 'libpolkit-gobject-1.la'
[...]
> This is due to dh compat 10 defaulting to parallel building.

I hope I've found the upstream commit that fixes this. If it turns out
not to, I'll apply the workaround that you suggested instead.

Thanks,
smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted ostree 2018.4-1 (source) into unstable

2018-03-24 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Sat, 24 Mar 2018 19:20:08 +
Source: ostree
Binary: gir1.2-ostree-1.0 libostree-1-1 libostree-dev libostree-doc ostree 
ostree-tests
Architecture: source
Version: 2018.4-1
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 gir1.2-ostree-1.0 - content-addressed filesystem for operating system binaries 
(intro
 libostree-1-1 - content-addressed filesystem for operating system binaries 
(libra
 libostree-dev - Development files for the libostree library
 libostree-doc - Development documentation for the libostree library
 ostree - content-addressed filesystem for operating system binaries
 ostree-tests - content-addressed filesystem for operating system binaries - 
test
Changes:
 ostree (2018.4-1) unstable; urgency=medium
 .
   * New upstream release
   * Update symbols file
   * Drop all patches, including one that was previously considered to
 be Debian-specific (moving to Python 3 for tests)
   * d/copyright: Update
Checksums-Sha1:
 1f6f0871c09dc3c6193c1bdae5a2439ef6073445 2979 ostree_2018.4-1.dsc
 c374c78f9e93a6790add1bd45d173fc9038dbe4d 1942120 ostree_2018.4.orig.tar.xz
 c3538d8df774c009bf3870f0d5cfdbcf718bdc4d 22840 ostree_2018.4-1.debian.tar.xz
 27c3f2c3ce04357dc5bcb18c57366cad852bce56 10470 ostree_2018.4-1_source.buildinfo
Checksums-Sha256:
 640b64ba5345c301facd6682a23047d6ec89b3834bb7b71170efc6d8ef2d1036 2979 
ostree_2018.4-1.dsc
 f5b1e083ed630fd32a263731fe9595ecdd07cfd5cba3e354931f481c4181de1c 1942120 
ostree_2018.4.orig.tar.xz
 cbcd9fc445201009b1de7af1561cea74b322d5c81c6b120d742d9b0d53b901a5 22840 
ostree_2018.4-1.debian.tar.xz
 8712d17e1ab05f763c804734c59a29bb818e1d3793eb53d0202e26ecc0447070 10470 
ostree_2018.4-1_source.buildinfo
Files:
 15eef5272bbee6d0085020e1e1b1a42f 2979 admin optional ostree_2018.4-1.dsc
 43c78c951534207d4ecad0cebd85a209 1942120 admin optional 
ostree_2018.4.orig.tar.xz
 0d4b455e19b6a19f7db246218b2439cc 22840 admin optional 
ostree_2018.4-1.debian.tar.xz
 22008564327496ac1110a0f70ae00d7f 10470 admin optional 
ostree_2018.4-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=m7fk
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

Re: [Pkg-utopia-maintainers] How to determine the license of D-Bus interface spec files (XML)?

2018-03-19 Thread Simon McVittie 
The usual term of art for the D-Bus interface descriptions you're talking
about here is "introspection XML".

On Mon, 19 Mar 2018 at 16:09:02 +0800, Boyuan Yang wrote:
> * Vala source code files are generated from D-Bus interface spec files
> (XML format) using "vala-dbus-binding-tool" (exist in Debian Archive)
> * Some of XML spec files are generated using "dbus-send" tool (exist
> in Debian Archive)

dbus-send doesn't "generate" anything. It sends a message and prints
the reponse. Saying that dbus-send generates introspection XML is like
saying that wget generates the content of a web page.

Depending on the service you're using as the destination in your
dbus-send request, the introspection XML might either have been copied
from the source code into the service binary as a large string literal, or
constructed on-demand from data structures like GLib's GDBusInterfaceInfo.
I've seen both approaches used.

> * Other XML files are copied from Freedesktop.org website [4] and gnome-shell
> source code

> Now, here is the problem: contents in fd.o website has no licensing
> information. I asked (daniels) at irc #freedesktop and the person said
> that the status quo is "undefined" and it is not likely to change in
> near future.

If a particular freedesktop.org specification (in your case the File
Manager interface) doesn't have copyright/licensing information at its
upstream source, the only people who can give you that information are
the authors of that specification. The fact that a specification is
hosted on freedesktop.org isn't really any more significant here than
the fact that something else is hosted on Github.

> However, I'm not sure about the license of D-Bus interface itself as
> well as the XML file that describes such interface.

There is no single required license for D-Bus introspection XML, in the
same way that there is no single required license for C source code.

The org.freedesktop.DBus interface is defined by the D-Bus Specification
and its reference implementation "dbus", which are both available
under a dual-license: GPL-2.0 or any later version, or AFL-2.1 (see
/usr/share/doc/dbus/copyright); so the most restrictive terms that could
possibly be applied are that dual license.

The freedesktop.org File Manager interface is presumably defined by some
freedesktop.org specification: you know as much about this one as I do.

The org.gnome.Shell Screencast interface is presumably defined by GNOME
Shell and released under the same licensing terms as the rest of Shell.

> Anyway, it is an interface, not any concrete implementation.

I am not a lawyer, but I suspect that a bare interface description without
documentation, like
 and
,
might be considered to be sufficiently un-creative that it is not
protected by copyright: it's a purely functional description of what
is necessary to interoperate with a fd.o file manager.

An interface description that contains comments/documentation should
probably be treated like source code, though. Ideally the upstream
developers of GNOME Shell would put copyright/licensing information in
their introspection XML just like they should for any other source code.

> P.S. I'm asking this question looking for an answer to make sure that
> this package won't get rejected during the NEW process by ftp-masters
> due to licensing problems.

Only the ftp team can tell you whether they would accept or reject a
package and why. The debian-legal mailing list has no authority over
the ftp team.

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#892854: Hostname resolution getting stuck for many seconds

2018-03-14 Thread Simon McVittie 
On Wed, 14 Mar 2018 at 20:01:07 +0100, Eduard Bloch wrote:
> I cannot remember having touched [nsswitch.conf] on this system. And I
> guess that if you have a record of all versions installed in the past
> then it should be easy to detect a pristine copy of that file and
> update/replace it as needed.

Unfortunately, no, we can't. Each line of nsswitch.conf is collaboratively
maintained by glibc and every relevant nsswitch plugin (libnss-*)
by editing it in-place. So the expected contents of the hosts line
depend which other nsswitch hosts plugins you have, and there is no
single history.

In a more opinionated distribution, the distro's core maintainers might
maintain a single nsswitch.conf containing all the supported plugins in
some reasonable order; but this is Debian, where all configurations are
considered valid, even the ones that make little sense.

> Still, I think this problem deserves a better solution. Because it's not
> really obvious for the user what is going on in case of such trouble.

I'm open to suggestions for how we can improve things for pre-2013
installations, within the constraints that I can't change the past,
and I don't want to violate Policy by overriding sysadmin configuration.

Post-2013 installations should be OK already (the purge/reinstall cycle
that I suggested gives you the equivalent of a post-2013 installation).

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#892854: Hostname resolution getting stuck for many seconds

2018-03-13 Thread Simon McVittie 
On Tue, 13 Mar 2018 at 20:52:28 +0100, Eduard Bloch wrote:
> I checked the process with strace and saw something weird. My DNS was
> accessed, was queried, it returned data, then the connection was closed
> and then it started doing something with your library and THAT is where
> it didn't continue anymore.

What's in the hosts: line in your /etc/nsswitch.conf?

New installations of nss-mdns will set it up with

mdns4_minimal [NOTFOUND=return]

just before either resolve or dns, whichever is seen first. That means
only names in the .local domain are resolved this way. For example, on
a machine with systemd-resolved and various other non-standard modules,
I have:

hosts:  files mymachines gw_name myhostname mdns4_minimal 
[NOTFOUND=return] resolve [!UNAVAIL=return] dns

However, we don't edit nsswitch.conf if there is already a mention
of mdns (because that way there'd be a risk of overwriting sysadmin
configuration or otherwise breaking stuff), so in particular old
installations that already had nss-mdns installed before 2013 can have
a no-longer-recommended configuration left over.

>From your strace showing libnss_mdns4.so.2 being loaded, I think you
have mdns4 instead of mdns4_minimal. mdns{,4,6} tries to look up more
names in mDNS, and because of how mDNS works, will cause an arbitrary
delay for each name that cannot be resolved by any means (hosts file,
DNS, mDNS, whatever). I don't think there's much we can do about that
without making it impossible to choose the "non-minimal" behaviour.

If you purge and reinstall libnss-mdns, it should come back with a
better configuration that doesn't cause arbitrary delays (unless you
specifically ask to resolve a .local name that doesn't exist).

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted d-feet 0.3.13-2 (source) into unstable

2018-03-12 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 12 Mar 2018 08:31:30 +
Source: d-feet
Binary: d-feet
Architecture: source
Version: 0.3.13-2
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 d-feet - D-Bus object browser, viewer and debugger
Closes: 892670
Changes:
 d-feet (0.3.13-2) unstable; urgency=medium
 .
   * Remove Thomas Bechtold from Uploaders (Closes: #892670)
   * d/gbp.conf: Configure for DEP-14 branch names
   * Standards-Version: 4.1.3 (no changes required)
Checksums-Sha1:
 56410ddf0be501f2a66e88932c3da34db4de240c 2172 d-feet_0.3.13-2.dsc
 01f494bb0c0f4eda1be2d54c5a046967d863cf76 6980 d-feet_0.3.13-2.debian.tar.xz
 4ae2cac6a055233bd2102daa5db495565dff7a33 14824 d-feet_0.3.13-2_source.buildinfo
Checksums-Sha256:
 b4bd8ef482becdfdb11721f18892126764c82f8e965eb9afa13c9088a22ba222 2172 
d-feet_0.3.13-2.dsc
 6b8a2b0ec7b88df0bf6b53110cf61ec6820f850c90d133be148a3fb9d3218e8f 6980 
d-feet_0.3.13-2.debian.tar.xz
 1ba14a37add7cb0e3f8d572f7c15812d605bf9c46e8a44ad67362b36fcfc437a 14824 
d-feet_0.3.13-2_source.buildinfo
Files:
 beb582b63fc43183b49a7347c5152536 2172 devel optional d-feet_0.3.13-2.dsc
 dcb10257ad9e74aa5e305dc7e47f1f9a 6980 devel optional 
d-feet_0.3.13-2.debian.tar.xz
 efa2ca67a7e960c542f4b6a200d6bbd3 14824 devel optional 
d-feet_0.3.13-2_source.buildinfo

-BEGIN PGP SIGNATURE-
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=t/IT
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#892670: Updating the d-feet Uploaders list

2018-03-11 Thread Simon McVittie 
Control: tags -1 + pending

On Sun, 11 Mar 2018 at 21:59:02 +0100, Tobias Frost wrote:
> Thomas Bechtold  wishes no longer to be uploader of 
> d-feet.

I've updated d/control in the git repository for the next upload,
removing Thomas from the Uploaders list.

Thanks,
smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted flatpak 0.11.3-3 (source) into unstable

2018-03-11 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Sun, 11 Mar 2018 16:00:02 +
Source: flatpak
Binary: flatpak flatpak-tests gir1.2-flatpak-1.0 libflatpak-dev libflatpak-doc 
libflatpak0
Architecture: source
Version: 0.11.3-3
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 flatpak- Application deployment framework for desktop apps
 flatpak-tests - Application deployment framework for desktop apps (tests)
 gir1.2-flatpak-1.0 - Application deployment framework for desktop apps 
(introspection)
 libflatpak-dev - Application deployment framework for desktop apps 
(development)
 libflatpak-doc - Application deployment framework for desktop apps 
(documentation)
 libflatpak0 - Application deployment framework for desktop apps (library)
Closes: 892583
Changes:
 flatpak (0.11.3-3) unstable; urgency=medium
 .
   * Add Recommends: policykit-1. This is required when installing apps and
 runtimes system-wide, which is the default for the CLI, but is not
 required when installing into your own home directory with
 "flatpak --user install...". (Closes: #892583)
Checksums-Sha1:
 27b6fadbd05fff1276cd6142888bf7d95a994989 3180 flatpak_0.11.3-3.dsc
 b87f024afd9dd4cdd8ae12f09b9365edb50cf27b 23480 flatpak_0.11.3-3.debian.tar.xz
 b031ed653cd740d285bead2e96b1b49d24b13577 11507 
flatpak_0.11.3-3_source.buildinfo
Checksums-Sha256:
 c5c631522e07916e9614a3ce8b16e68a9bd7faa0ebccbeb0e585bdfad7ecff86 3180 
flatpak_0.11.3-3.dsc
 a9c50a64cf795f74fb5bae5782c4ba4cc98c0bfa6cbbb0f514e3e35559a962df 23480 
flatpak_0.11.3-3.debian.tar.xz
 7e75bb9195476633899c8691fc3e034bc3550bbf7feb9be402c73381937faea1 11507 
flatpak_0.11.3-3_source.buildinfo
Files:
 0f11e5bbbf85992c84f9751b96aa1472 3180 admin optional flatpak_0.11.3-3.dsc
 14fd9294d69f10867e7fe4f775c5e6e8 23480 admin optional 
flatpak_0.11.3-3.debian.tar.xz
 aaacde90b6339fe09cfa7d415a8a1ad2 11507 admin optional 
flatpak_0.11.3-3_source.buildinfo

-BEGIN PGP SIGNATURE-
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=ol7G
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#892583: flatpak: should recommend policykit-1 so that it works without --user

2018-03-10 Thread Simon McVittie 
Package: flatpak
Version: 0.11.3-2
Severity: important

Adrian Bunk pointed out on IRC that at least some uses of Flatpak need
policykit-1, but it doesn't have any dependency relationship with
policykit-1.

I haven't checked yet, but I think "flatpak --user" (installing apps
for just yourself) should work OK without polkit. The part that won't
work is running flatpak without --user to install apps system-wide.
If that guess is right, then this is a bug but not release-critical -
I think having flatpak Recommends: policykit-1 would be proportionate.

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted dbus 1.10.26-0+deb9u1 (source) into proposed-updates->stable-new, proposed-updates

2018-03-03 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Fri, 02 Mar 2018 08:59:25 +
Source: dbus
Binary: dbus dbus-1-dbg dbus-1-doc dbus-tests dbus-udeb dbus-user-session 
dbus-x11 libdbus-1-3 libdbus-1-3-udeb libdbus-1-dev
Architecture: source
Version: 1.10.26-0+deb9u1
Distribution: stretch
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 dbus   - simple interprocess messaging system (daemon and utilities)
 dbus-1-dbg - simple interprocess messaging system (debug symbols)
 dbus-1-doc - simple interprocess messaging system (documentation)
 dbus-tests - simple interprocess messaging system (test infrastructure)
 dbus-udeb  - simple interprocess messaging system (minimal runtime) (udeb)
 dbus-user-session - simple interprocess messaging system (systemd --user 
integration)
 dbus-x11   - simple interprocess messaging system (X11 deps)
 libdbus-1-3 - simple interprocess messaging system (library)
 libdbus-1-3-udeb - simple interprocess messaging system (minimal library) 
(udeb)
 libdbus-1-dev - simple interprocess messaging system (development headers)
Changes:
 dbus (1.10.26-0+deb9u1) stretch; urgency=medium
 .
   * New upstream stable release
 - bus/bus.c: Raise file descriptor limit sooner, while we still can
   (before we drop privileges), fixing a regression in 1.10.18 which
   negated a previous fix for local denial of service via resource
   exhaustion
 - test/*, build system: Add a regression test for the above
   * d/tests/root: Re-run test-dbus-daemon as root, since it now contains
 tests that are skipped as non-root
   * d/tests/root: Allow stderr output, because test-dbus-daemon emits
 some (and it is not a problem)
Checksums-Sha1:
 bf53921069a610dcdcd812671ca25cc1e648 3101 dbus_1.10.26-0+deb9u1.dsc
 8f71a1b7322af88dc47a36d7276dbdec8a6a0ea2 1992385 dbus_1.10.26.orig.tar.gz
 01abc801a117c060de93f99b2cde5134bd215afc 56916 
dbus_1.10.26-0+deb9u1.debian.tar.xz
 b6e629c7639076fd5f7a2a8ba597c077b93ee765 7743 
dbus_1.10.26-0+deb9u1_source.buildinfo
Checksums-Sha256:
 94613920acebc29acae80a32e95b31ae078c2a92d663eaee58fd44e793d53f0a 3101 
dbus_1.10.26-0+deb9u1.dsc
 358abe5db6a24128c3ffd1242b26774f6c9877429c15aa1df9294e917ae1ac01 1992385 
dbus_1.10.26.orig.tar.gz
 d077aa44c738d5101a9292db503fd751fdc50afbb2d72eac2a034eeca8d5b9c2 56916 
dbus_1.10.26-0+deb9u1.debian.tar.xz
 6a05d55c6d324945a7c6295cd8a30eaf9a81b1417e4b40f6e41150720d844a4e 7743 
dbus_1.10.26-0+deb9u1_source.buildinfo
Files:
 c4fcac44715b75360d91898371219a2a 3101 admin optional dbus_1.10.26-0+deb9u1.dsc
 5a068adf7811e53dd061866ecfd4d689 1992385 admin optional 
dbus_1.10.26.orig.tar.gz
 857143c0867bb4f43d689b32b45fab46 56916 admin optional 
dbus_1.10.26-0+deb9u1.debian.tar.xz
 bd6d4721bc20b87dcc7d6a106702bed2 7743 admin optional 
dbus_1.10.26-0+deb9u1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=8mzS
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted dbus 1.12.6-2 (source) into unstable

2018-03-02 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Fri, 02 Mar 2018 01:36:20 +
Source: dbus
Binary: dbus dbus-1-doc dbus-tests dbus-udeb dbus-user-session dbus-x11 
libdbus-1-3 libdbus-1-3-udeb libdbus-1-dev
Architecture: source
Version: 1.12.6-2
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 dbus   - simple interprocess messaging system (daemon and utilities)
 dbus-1-doc - simple interprocess messaging system (documentation)
 dbus-tests - simple interprocess messaging system (test infrastructure)
 dbus-udeb  - simple interprocess messaging system (minimal runtime) (udeb)
 dbus-user-session - simple interprocess messaging system (systemd --user 
integration)
 dbus-x11   - simple interprocess messaging system (X11 deps)
 libdbus-1-3 - simple interprocess messaging system (library)
 libdbus-1-3-udeb - simple interprocess messaging system (minimal library) 
(udeb)
 libdbus-1-dev - simple interprocess messaging system (development headers)
Changes:
 dbus (1.12.6-2) unstable; urgency=medium
 .
   * New upstream stable release 1.12.6
   * d/tests/root: Re-run test-dbus-daemon as root, since it now contains
 tests that are skipped as non-root
   * There was no 1.12.6-1 due to a mistake with `git tag`
Checksums-Sha1:
 065ab0715f91c968616ed08e13c1f9f262c7bd22 3431 dbus_1.12.6-2.dsc
 e578a932e9f47ff23b0b8b5a2133c9edf1a86f1e 2068612 dbus_1.12.6.orig.tar.gz
 5ea8ee9cfcb7799693d284a5bd2cdaf04da70441 60112 dbus_1.12.6-2.debian.tar.xz
 ae6b1afbce603538cbe23bc30d0bacc40e2aeafe 7107 dbus_1.12.6-2_source.buildinfo
Checksums-Sha256:
 7196a0e61646037ddd3a5356a6bd7335322733f359b51595168edaab4c32cc0f 3431 
dbus_1.12.6-2.dsc
 621b902a07badec16c9e43eda43903cd0e1e69e11b13143da71c1889b062f116 2068612 
dbus_1.12.6.orig.tar.gz
 68db689e99b98b88bb35323bb79d5c7991f1a9290833e65a4a7844e6d0fac115 60112 
dbus_1.12.6-2.debian.tar.xz
 5754d4ba1e1113ac97d38ae8df9d4e708b060cf2d310c51666ea1dd258dd2c8a 7107 
dbus_1.12.6-2_source.buildinfo
Files:
 5f665d21170cb0b6a59d098afbcae1d3 3431 admin optional dbus_1.12.6-2.dsc
 32a607e47b82ab11702355bf02502f20 2068612 admin optional dbus_1.12.6.orig.tar.gz
 f1cc1d008c28fcdf764bab5c407add35 60112 admin optional 
dbus_1.12.6-2.debian.tar.xz
 9ec9490a6269bd94cfade1b1618d1cfa 7107 admin optional 
dbus_1.12.6-2_source.buildinfo

-BEGIN PGP SIGNATURE-
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=Vu1J
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted dbus 1.13.2-1 (source) into experimental

2018-03-01 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Thu, 01 Mar 2018 22:55:32 +
Source: dbus
Binary: dbus dbus-1-doc dbus-tests dbus-udeb dbus-user-session dbus-x11 
libdbus-1-3 libdbus-1-3-udeb libdbus-1-dev
Architecture: source
Version: 1.13.2-1
Distribution: experimental
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 dbus   - simple interprocess messaging system (daemon and utilities)
 dbus-1-doc - simple interprocess messaging system (documentation)
 dbus-tests - simple interprocess messaging system (test infrastructure)
 dbus-udeb  - simple interprocess messaging system (minimal runtime) (udeb)
 dbus-user-session - simple interprocess messaging system (systemd --user 
integration)
 dbus-x11   - simple interprocess messaging system (X11 deps)
 libdbus-1-3 - simple interprocess messaging system (library)
 libdbus-1-3-udeb - simple interprocess messaging system (minimal library) 
(udeb)
 libdbus-1-dev - simple interprocess messaging system (development headers)
Changes:
 dbus (1.13.2-1) experimental; urgency=medium
 .
   * New upstream development release
   * Update symbols file for new ABI
   * d/tests/root: Re-run test-dbus-daemon as root, since it now contains
 tests that are skipped as non-root
Checksums-Sha1:
 c9f2fa2bb39f4ecd2e117990469543a1154bf390 3685 dbus_1.13.2-1.dsc
 17d3d3683a52a0f07ad49e7ea28a2332d49f9f71 2107990 dbus_1.13.2.orig.tar.gz
 de3d0f619890d7b294de240e7ba85108537b4a8e 833 dbus_1.13.2.orig.tar.gz.asc
 80dc9411e7c5dc8e0d539deb6a7f3a44fe4d799b 60128 dbus_1.13.2-1.debian.tar.xz
 5278887618f099ec0ff224450d4ff31b8aa5a128 7107 dbus_1.13.2-1_source.buildinfo
Checksums-Sha256:
 9f24c567ba1241c4063332d9bd18b6d8f20c7e017bb08f40fdf713db34a53caa 3685 
dbus_1.13.2-1.dsc
 945deb349a7e2999184827c17351c1bf93c6395b9c3ade0c91cad42cb93435b1 2107990 
dbus_1.13.2.orig.tar.gz
 9f14c5811a4b47811a1063342e88b86d086d195c51e55dd3cdbe144d5ab8025c 833 
dbus_1.13.2.orig.tar.gz.asc
 60ac2d38fbea7fd82268f985be9f6e68588570a673e0f3fb071d6e05fd1b7c67 60128 
dbus_1.13.2-1.debian.tar.xz
 88f1f9b8835500bb72984c3d9a09430fe3c3ff3bac89bd23cca8859174246baa 7107 
dbus_1.13.2-1_source.buildinfo
Files:
 bda97f9d1cdd0accc63c789e5bd7dece 3685 admin optional dbus_1.13.2-1.dsc
 35afd282451718b274a1d32bf1a56bb1 2107990 admin optional dbus_1.13.2.orig.tar.gz
 1bf7d360e648adab1540b5c619c6e0a9 833 admin optional dbus_1.13.2.orig.tar.gz.asc
 69e3bbf83a00976138f3484c56f0c8e7 60128 admin optional 
dbus_1.13.2-1.debian.tar.xz
 0bd1bde393f8b7d5de2520a3e278718d 7107 admin optional 
dbus_1.13.2-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=7GB+
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted flatpak 0.11.3-2 (source) into unstable

2018-03-01 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Thu, 01 Mar 2018 09:21:46 +
Source: flatpak
Binary: flatpak flatpak-tests gir1.2-flatpak-1.0 libflatpak-dev libflatpak-doc 
libflatpak0
Architecture: source
Version: 0.11.3-2
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 flatpak- Application deployment framework for desktop apps
 flatpak-tests - Application deployment framework for desktop apps (tests)
 gir1.2-flatpak-1.0 - Application deployment framework for desktop apps 
(introspection)
 libflatpak-dev - Application deployment framework for desktop apps 
(development)
 libflatpak-doc - Application deployment framework for desktop apps 
(documentation)
 libflatpak0 - Application deployment framework for desktop apps (library)
Changes:
 flatpak (0.11.3-2) unstable; urgency=medium
 .
   * Merge from experimental to unstable
   * d/p/Update-*-translation.patch: Update Czech and Indonesian
 translations from upstream
   * d/p/Fix-assertion-when-no-gsettings-schema-installed.patch:
 Add patch from upstream fixing an assertion failure if no
 GSettings schemas are installed
Checksums-Sha1:
 6ef2cb368d127da7d23990fc5f4bf26707ae087a 3180 flatpak_0.11.3-2.dsc
 88abc5f5dd8e0009c0a75da61f59e4ed058a144a 23384 flatpak_0.11.3-2.debian.tar.xz
 2bc049ef7e13fcfed120048a462ced30f7966d2b 11492 
flatpak_0.11.3-2_source.buildinfo
Checksums-Sha256:
 073f85f29c84d52d357656f13cd45f3bbdf7f56e843c31d2acb8ec4224c187e0 3180 
flatpak_0.11.3-2.dsc
 11136eba1ef0362cf602ef78d7aa801bccaf45885ae6b5e33c02be0cdfeb3d4d 23384 
flatpak_0.11.3-2.debian.tar.xz
 c2fe75c8d04b1adcae63301320f9a5e40b675d26323df69afed5b27ffcaf8059 11492 
flatpak_0.11.3-2_source.buildinfo
Files:
 8800337a264b771436de8edbd716ebae 3180 admin optional flatpak_0.11.3-2.dsc
 aa390eca3cea93f679fe7f0e71004754 23384 admin optional 
flatpak_0.11.3-2.debian.tar.xz
 cc13363602901342fd3c68f5629d2115 11492 admin optional 
flatpak_0.11.3-2_source.buildinfo

-BEGIN PGP SIGNATURE-
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=aTNB
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted flatpak-builder 0.10.9-1~bpo9+1 (source) into stretch-backports

2018-03-01 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 19 Feb 2018 10:18:28 +
Source: flatpak-builder
Binary: flatpak-builder flatpak-builder-tests
Architecture: source
Version: 0.10.9-1~bpo9+1
Distribution: stretch-backports
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 flatpak-builder - Flatpak application building helper
 flatpak-builder-tests - Application deployment framework for desktop apps 
(tests)
Closes: 890722
Changes:
 flatpak-builder (0.10.9-1~bpo9+1) stretch-backports; urgency=medium
 .
   * Rebuild for stretch-backports.
 - debian/gbp.conf: Adjust for this branch
 .
 flatpak-builder (0.10.9-1) unstable; urgency=medium
 .
   * New upstream release
   - Includes patch from Aurelien Jarno to fix FTBFS with glibc 2.27
 (Closes: #890722)
 .
 flatpak-builder (0.10.8-1~bpo9+1) stretch-backports; urgency=medium
 .
   * Rebuild for stretch-backports.
 - debian/gbp.conf: Adjust for this branch
 .
 flatpak-builder (0.10.8-1) unstable; urgency=medium
 .
   * New upstream release
 .
 flatpak-builder (0.10.7-1) unstable; urgency=medium
 .
   * New upstream release
Checksums-Sha1:
 a5d8596a7b8245c803c68e2b43f1dec966018392 2790 
flatpak-builder_0.10.9-1~bpo9+1.dsc
 c5f6dbacf8cf86feccc1a04e18bbda4e14868b82 5400 
flatpak-builder_0.10.9-1~bpo9+1.debian.tar.xz
 c598572e11f8dfc674b0d0997b86e1d307fc4aca 10026 
flatpak-builder_0.10.9-1~bpo9+1_source.buildinfo
Checksums-Sha256:
 15423af89763716ce18c9253dad9ee45a69cdde76a49096f9d7bbd270517451d 2790 
flatpak-builder_0.10.9-1~bpo9+1.dsc
 a59921b730e0edbfeba8d6fde1ff5319bac3a2041809697a8bf33fc5f662747a 5400 
flatpak-builder_0.10.9-1~bpo9+1.debian.tar.xz
 dcb834a0e67ce58ef7284f682ea8ca6130391363d7b35132cf8f427d6a99d148 10026 
flatpak-builder_0.10.9-1~bpo9+1_source.buildinfo
Files:
 c48573fd8e0824fd2f18f91fde49ba26 2790 devel optional 
flatpak-builder_0.10.9-1~bpo9+1.dsc
 294133fce364d6c2434c1475cc23f012 5400 devel optional 
flatpak-builder_0.10.9-1~bpo9+1.debian.tar.xz
 1cebe6c7749295e07a2fcdc29f9e4ca5 10026 devel optional 
flatpak-builder_0.10.9-1~bpo9+1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=I17K
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted xdg-desktop-portal 0.10-4~bpo9+1 (all amd64 source) into stretch-backports, stretch-backports

2018-02-28 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Tue, 20 Feb 2018 08:41:10 +
Source: xdg-desktop-portal
Binary: xdg-desktop-portal xdg-desktop-portal-dev xdg-desktop-portal-tests
Architecture: all amd64 source
Version: 0.10-4~bpo9+1
Distribution: stretch-backports
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description: 
 xdg-desktop-portal - desktop integration portal for Flatpak
 xdg-desktop-portal-dev - desktop integration portal for Flatpak - development 
files
 xdg-desktop-portal-tests - desktop integration portal for Flatpak - automated 
tests
Changes:
 xdg-desktop-portal (0.10-4~bpo9+1) stretch-backports; urgency=medium
 .
   * Rebuild for stretch-backports.
 - debian/gbp.conf: Adjust for this branch
 .
 xdg-desktop-portal (0.10-4) unstable; urgency=medium
 .
   * Merge from experimental, with autopkgtests included
   * d/p/build-Run-install-test-data-hook-as-intended.patch:
 Mark patch as applied upstream
 .
 xdg-desktop-portal (0.10-3) experimental; urgency=medium
 .
   * Reinstate xdg-desktop-portal-tests package and autopkgtests
   * d/p/build-Run-install-test-data-hook-as-intended.patch:
 Run the tests' install hook to set up enough symlinks that they
 will pass
   * Upload to experimental to wait for NEW processing
Checksums-Sha1: 
 143b0d7e6423c9a122b62da4dfa8a45eb2092df2 2307 
xdg-desktop-portal_0.10-4~bpo9+1.dsc
 3d25d2b2ed0de2a4ca0919d0b27a6250ab228cf8 4288 
xdg-desktop-portal_0.10-4~bpo9+1.debian.tar.xz
 8f85e45fb896f3d1bb81d3b956d3d9233c074528 6625 
xdg-desktop-portal_0.10-4~bpo9+1_source.buildinfo
 bc04b7382d02d3759632e56d6617fa81776806c0 787950 
xdg-desktop-portal-dbgsym_0.10-4~bpo9+1_amd64.deb
 a134741c003ffdc95765d3b87b4f8b3f6b52120f 109508 
xdg-desktop-portal-tests-dbgsym_0.10-4~bpo9+1_amd64.deb
 c7573264d8def9ea49574c9c38b19989ed60b6c4 35044 
xdg-desktop-portal-tests_0.10-4~bpo9+1_amd64.deb
 b94be71b71f3a7fbea2e18706479d5bb17c4ceb6 6716 
xdg-desktop-portal_0.10-4~bpo9+1_amd64.buildinfo
 5f1821a2d193c1433fa918f368fed7ae1ac2d601 160184 
xdg-desktop-portal_0.10-4~bpo9+1_amd64.deb
 93a15b3b3c98615ddb564cd63b3a4457645cdcd9 28226 
xdg-desktop-portal-dev_0.10-4~bpo9+1_all.deb
 5db5d5a76d7f91884e6d6c2f9cd5422a6e94a65a 5766 
xdg-desktop-portal_0.10-4~bpo9+1_all.buildinfo
Checksums-Sha256: 
 7c6342f62cd5dac594f164d13f90a8ea09eb67f0029da7fe4b66deb4b1eb3824 2307 
xdg-desktop-portal_0.10-4~bpo9+1.dsc
 ae593468efb88010d150f8f3322b17124881bcd4d53f551a28dcf06a970b4db2 4288 
xdg-desktop-portal_0.10-4~bpo9+1.debian.tar.xz
 027f0ef2c101ebea6cca5aacac4f6d77f7a6e89140271e15cb1fa391cf760428 6625 
xdg-desktop-portal_0.10-4~bpo9+1_source.buildinfo
 b5ff2948e50a1269b7611da9ca479ffcd44fe129d26395dda7abfcba4531e183 787950 
xdg-desktop-portal-dbgsym_0.10-4~bpo9+1_amd64.deb
 d03eabbf7df5ce48d467b851a937dea8642f980bc6eaacee1c5346297514c6bd 109508 
xdg-desktop-portal-tests-dbgsym_0.10-4~bpo9+1_amd64.deb
 902e33c18995365974aaeefc43462de9ddf9f2ee8b8725757fb62db32fbf3273 35044 
xdg-desktop-portal-tests_0.10-4~bpo9+1_amd64.deb
 b25cd8fc2c07613576331f5272592fd98f5cc46ddb9a8d13fb7b21ddfc32851f 6716 
xdg-desktop-portal_0.10-4~bpo9+1_amd64.buildinfo
 b133441505283e4d642bfd8ba12c8b8fe9f5f25628c00c0b1605926720e6dacf 160184 
xdg-desktop-portal_0.10-4~bpo9+1_amd64.deb
 79e5a5a839f50abb8be171c29f119aab2e129d8fbeb9ce6efaa67e9c3d2c613a 28226 
xdg-desktop-portal-dev_0.10-4~bpo9+1_all.deb
 4ca74ca21c87a85f462f88b64b8a4386225d66c4ba06152dc7fee4c38a4bd29c 5766 
xdg-desktop-portal_0.10-4~bpo9+1_all.buildinfo
Files: 
 ef07b3cd14ff04fcc92cb578d78244ab 2307 admin optional 
xdg-desktop-portal_0.10-4~bpo9+1.dsc
 271f5ecfd45fa824e64d5659c108ff97 4288 admin optional 
xdg-desktop-portal_0.10-4~bpo9+1.debian.tar.xz
 1d8ef6299b0f8cf2c6d72970dcb28150 6625 admin optional 
xdg-desktop-portal_0.10-4~bpo9+1_source.buildinfo
 002f7875838efae42831f718402143fe 787950 debug extra 
xdg-desktop-portal-dbgsym_0.10-4~bpo9+1_amd64.deb
 249b363c79b9ef851c0fc6b4cb187339 109508 debug extra 
xdg-desktop-portal-tests-dbgsym_0.10-4~bpo9+1_amd64.deb
 8ccb5c816bda1676902d027d1c9fdfc0 35044 admin optional 
xdg-desktop-portal-tests_0.10-4~bpo9+1_amd64.deb
 259b2a9873a280a2d600ba9faaac4f1b 6716 admin optional 
xdg-desktop-portal_0.10-4~bpo9+1_amd64.buildinfo
 acfd9e43f39b21d797cc786bcde15710 160184 admin optional 
xdg-desktop-portal_0.10-4~bpo9+1_amd64.deb
 954498744883204d16b49164447faaa7 28226 admin optional 
xdg-desktop-portal-dev_0.10-4~bpo9+1_all.deb
 b8cfecc3be2bfadc440a20e414064d8c 5766 admin optional 
xdg-desktop-portal_0.10-4~bpo9+1_all.buildinfo

-BEGIN PGP SIGNATURE-

iQIzBAEBCAAdFiEENuxaZEik9e95vv6Y4FrhR4+BTE8FAlqT3xcACgkQ4FrhR4+B
TE/EUg//WdtpD4YQUlXlySF0kB26ZvkIoV0GP1lkgzRyK6shWUlUlr4r1FO6upUj
I1cNQJH6TAdy8PlE+OW0yqap6qDVWndixXhxmulZa5TXttVWQgCDGTy1Uj77Sp3L
dOQfMvAoGfkPGXnhbL+1PC208jsOBwMayfvUCZYYEKozdzp2YmQor6LSNRz8Bytq
4PdnjZgjOaupLgYKt3NfppnR4Si0iGYG6sDlqugw/g+sm56c/0lpV2HepurzUc8d
YaX77nyZ6sqUwSuUVagggTzYj+z2kMlzEiat6zErtodrH8UwzIr3LSptqPldwj

[Pkg-utopia-maintainers] Accepted flatpak 0.8.9-0+deb9u1~bpo8+1 (all source) into jessie-backports->backports-policy, jessie-backports

2018-02-28 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Wed, 31 Jan 2018 18:33:27 +
Source: flatpak
Binary: flatpak flatpak-builder flatpak-tests gir1.2-flatpak-1.0 libflatpak-dev 
libflatpak-doc libflatpak0
Architecture: all source
Version: 0.8.9-0+deb9u1~bpo8+1
Distribution: jessie-backports
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Closes: 880451 42
Description: 
 flatpak- Application deployment framework for desktop apps
 flatpak-builder - Flatpak application building helper
 flatpak-tests - Application deployment framework for desktop apps (tests)
 gir1.2-flatpak-1.0 - Application deployment framework for desktop apps 
(introspection)
 libflatpak0 - Application deployment framework for desktop apps (library)
 libflatpak-dev - Application deployment framework for desktop apps 
(development)
 libflatpak-doc - Application deployment framework for desktop apps 
(documentation)
Changes:
 flatpak (0.8.9-0+deb9u1~bpo8+1) jessie-backports; urgency=medium
 .
   * Rebuild for jessie-backports.
 - debian/gbp.conf: adjust for this branch
 - debian/control: (build-)depend on libgtk-3-bin, not
   gtk-update-icon-cache
 - d/p/debian/Try-gtk-3.0-version-of-the-icon-cache-utility-first.patch:
   try to use gtk-update-icon-cache-3.0 before gtk-update-icon-cache
 - d/p/backport/*.patch, d/control: Relax GLib dependency to 2.42
 .
 flatpak (0.8.9-0+deb9u1) stretch; urgency=medium
 .
   * New upstream release backporting the following fixes from 0.10.x:
 - common/flatpak-run.c: Ignore unrecognised permission strings
   instead of failing, for forwards compatibility
 - dbus-proxy/flatpak-proxy.c: Fix a D-Bus filtering bypass in
   flatpak-dbus-proxy (Closes: #42)
 - profile/flatpak.sh.in: Simplify and improve profile.d snippet
   (already done in Debian since 0.8.4-1, no practical effect)
   * Drop our patch to profile/flatpak.sh.in, no longer necessary
   * debian/control: Update Vcs-* metadata for salsa.d.o migration
 .
 flatpak (0.8.8-0+deb9u1~bpo8+1) jessie-backports; urgency=medium
 .
   * Rebuild for jessie-backports.
 - debian/gbp.conf: adjust for this branch
 - debian/control: (build-)depend on libgtk-3-bin, not
   gtk-update-icon-cache
 - d/p/debian/Try-gtk-3.0-version-of-the-icon-cache-utility-first.patch:
   try to use gtk-update-icon-cache-3.0 before gtk-update-icon-cache
 - d/p/backport/*.patch, d/control: Relax GLib dependency to 2.42
 .
 flatpak (0.8.8-0+deb9u1) stretch; urgency=medium
 .
   * d/watch: Watch for new 0.8.x versions
   * New upstream release from 0.8.x branch, backporting the following
 fixes from 0.10.x:
 - Add compatibility with ostree ≥ 2017.7 (in Debian, the same
   changes were already in 0.8.7-2)
 - Security: Do not allow legacy eavesdropping on the D-Bus
   session bus (Closes: #880451)
 - Ensure that LD_LIBRARY_PATH is in the correct order, respecting
   extensions' priorities
 - Ensure that extensions are mounted in the correct order even if
   they have differing priorities, fixing Steam
 - Remove PYTHONPATH, PERLLIB, PERL5LIB, XCURSOR_PATH from the
   environment given to sandboxed apps
 - Give each app a persistent cache directory for fontconfig
 - Make /usr/share/icons available in the sandbox so that sandboxed
   apps can use the host's icon theme
 - Disable debug-level FUSE logging for the document portal
 - Make the * wildcard at the end of a D-Bus filtering rule match
   zero or more components, so --talk="com.example.Foo.*" behaves
   the same as D-Bus' arg0namespace="com.example.Foo". Previously,
   it would only match exactly one component. This matches a proposed
   design for integrating equivalent filtering into future dbus
   versions.
   * d/p/0.8.8/: Drop patches that added compatibility with
 ostree ≥ 2017.7, no longer necessary
Checksums-Sha1: 
 d1a7635a10ed383d3b1f9b94a0748aa6a44de08e 35960 
libflatpak-doc_0.8.9-0+deb9u1~bpo8+1_all.deb
 84f8fbe20e995773cb3f20bd03bde4f222742aa1 2962 flatpak_0.8.9-0+deb9u1~bpo8+1.dsc
 52bea036c40f6357c0873a36d3d8b80a1ed28cde 21644 
flatpak_0.8.9-0+deb9u1~bpo8+1.debian.tar.xz
Checksums-Sha256: 
 b17347dd08bd872db4e55b549d2748daebfeca94360cb020ed5d3cb0158c1d32 35960 
libflatpak-doc_0.8.9-0+deb9u1~bpo8+1_all.deb
 a172cde088f52e5cd41b6befefd483016c913db550bd90f33497784d0e30b1ce 2962 
flatpak_0.8.9-0+deb9u1~bpo8+1.dsc
 26a70cf42c2c7ebc305a430c236dfea7d3c6bb7e4c4e584b539cf4b833b1fdff 21644 
flatpak_0.8.9-0+deb9u1~bpo8+1.debian.tar.xz
Files: 
 ab6e106b6c90bed08b378e13257f7f2e 35960 doc optional 
libflatpak-doc_0.8.9-0+deb9u1~bpo8+1_all.deb
 ad510b96a8b316e7296cd1cc94a57993 2962 admin optional 
flatpak_0.8.9-0+deb9u1~bpo8+1.dsc
 186ee2278e5cd78b28181b538b246ac9 21644 admin optional 
flatpak_0.8.9-0+deb9u1~bpo8+1.debian.tar.xz

-BEGIN PGP SIGNATURE-

iQI

[Pkg-utopia-maintainers] Accepted flatpak 0.8.9-0+deb9u1 (source) into proposed-updates->stable-new, proposed-updates

2018-02-25 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Tue, 30 Jan 2018 14:49:40 +
Source: flatpak
Binary: flatpak flatpak-builder flatpak-tests gir1.2-flatpak-1.0 libflatpak-dev 
libflatpak-doc libflatpak0
Architecture: source
Version: 0.8.9-0+deb9u1
Distribution: stretch
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 flatpak- Application deployment framework for desktop apps
 flatpak-builder - Flatpak application building helper
 flatpak-tests - Application deployment framework for desktop apps (tests)
 gir1.2-flatpak-1.0 - Application deployment framework for desktop apps 
(introspection)
 libflatpak-dev - Application deployment framework for desktop apps 
(development)
 libflatpak-doc - Application deployment framework for desktop apps 
(documentation)
 libflatpak0 - Application deployment framework for desktop apps (library)
Closes: 42
Changes:
 flatpak (0.8.9-0+deb9u1) stretch; urgency=medium
 .
   * New upstream release backporting the following fixes from 0.10.x:
 - common/flatpak-run.c: Ignore unrecognised permission strings
   instead of failing, for forwards compatibility
 - dbus-proxy/flatpak-proxy.c: Fix a D-Bus filtering bypass in
   flatpak-dbus-proxy (Closes: #42)
 - profile/flatpak.sh.in: Simplify and improve profile.d snippet
   (already done in Debian since 0.8.4-1, no practical effect)
   * Drop our patch to profile/flatpak.sh.in, no longer necessary
   * debian/control: Update Vcs-* metadata for salsa.d.o migration
Checksums-Sha1:
 d4bc6ad8d04104c6f8960a1f98d0b42a8b7b2ece 3021 flatpak_0.8.9-0+deb9u1.dsc
 d52bd785423ea882df548aa71d6fcd2f4db09e83 750480 flatpak_0.8.9.orig.tar.xz
 49cafbd9250e54f8b9a480e2591fcda37a4f9110 17472 
flatpak_0.8.9-0+deb9u1.debian.tar.xz
 30557a01efbbac3e135f0d692ddbca21fa60cc6c 10692 
flatpak_0.8.9-0+deb9u1_source.buildinfo
Checksums-Sha256:
 c11b4a27f51c6e9909b486e175552a09e756132713ccb67a504a315a159f82e9 3021 
flatpak_0.8.9-0+deb9u1.dsc
 9df2823e12461c96c87d1e3cadf49963b5fefb6be8ad04dafb84c58b8bcbbf50 750480 
flatpak_0.8.9.orig.tar.xz
 92a4f709d0b7c2c659ec78d47de178a2ab2b72cea81a8e49b5c0a6f4c6f2b992 17472 
flatpak_0.8.9-0+deb9u1.debian.tar.xz
 fa65e63fd5668b51e758b1da5c2b87e3e43604974e59bd368cde1df735f6de21 10692 
flatpak_0.8.9-0+deb9u1_source.buildinfo
Files:
 44c8b5dcea855ed5530e703ddcd7cb8c 3021 admin optional flatpak_0.8.9-0+deb9u1.dsc
 9e4dd45c0b7082063bab9fc688a5b26e 750480 admin optional 
flatpak_0.8.9.orig.tar.xz
 f534975d96b2412e4d7899bd7e583acd 17472 admin optional 
flatpak_0.8.9-0+deb9u1.debian.tar.xz
 8054097cd2df861987d211595e903a13 10692 admin optional 
flatpak_0.8.9-0+deb9u1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=0159
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted ostree 2018.2-1~bpo9+1 (source) into stretch-backports

2018-02-24 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 19 Feb 2018 10:17:18 +
Source: ostree
Binary: gir1.2-ostree-1.0 libostree-1-1 libostree-dev libostree-doc ostree 
ostree-tests
Architecture: source
Version: 2018.2-1~bpo9+1
Distribution: stretch-backports
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 gir1.2-ostree-1.0 - content-addressed filesystem for operating system binaries 
(intro
 libostree-1-1 - content-addressed filesystem for operating system binaries 
(libra
 libostree-dev - Development files for the libostree library
 libostree-doc - Development documentation for the libostree library
 ostree - content-addressed filesystem for operating system binaries
 ostree-tests - content-addressed filesystem for operating system binaries - 
test
Changes:
 ostree (2018.2-1~bpo9+1) stretch-backports; urgency=medium
 .
   * Rebuild for stretch-backports.
 - debian/gbp.conf: Adjust for this branch
 .
 ostree (2018.2-1) unstable; urgency=medium
 .
   * New upstream release
 - d/copyright: Update
 - d/libostree-1-1.symbols: Update
   * Mark patches as forwarded
   * Add gnupg to build-time test dependencies (and ostree-tests
 dependencies) as it is no longer transitively build-essential
Checksums-Sha1:
 dfa986b2372706f489e34343cc4e05449f6d38be 3007 ostree_2018.2-1~bpo9+1.dsc
 ce5edc79b0b93bd259bfbef284e8e774c92adc18 24692 
ostree_2018.2-1~bpo9+1.debian.tar.xz
 810e17b6ce8aae2d4642baad997093c4624e64b7 9539 
ostree_2018.2-1~bpo9+1_source.buildinfo
Checksums-Sha256:
 635aa56c5ca8ff1e3aa8db62f2b6dc04df4956cd7bf859358c74ab80b5a50415 3007 
ostree_2018.2-1~bpo9+1.dsc
 e3a1dfbdeb0fe50b10b525f7b2448deeeb498bb0c5211c88662bd87f6e1bd84d 24692 
ostree_2018.2-1~bpo9+1.debian.tar.xz
 28ab76da4461d9a973a98603b1c1b6b90843d68a539cc2ceb4b49b4efc3317c9 9539 
ostree_2018.2-1~bpo9+1_source.buildinfo
Files:
 605ceb5359901ba8c57dda04439abcfb 3007 admin optional ostree_2018.2-1~bpo9+1.dsc
 ca966159e8cf85ef393f6c9f1c19d233 24692 admin optional 
ostree_2018.2-1~bpo9+1.debian.tar.xz
 ac9972b5d1957c9c1c39e2942f0d588a 9539 admin optional 
ostree_2018.2-1~bpo9+1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=50Kx
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted flatpak-builder 0.10.9-1 (source) into unstable

2018-02-22 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 19 Feb 2018 09:56:47 +
Source: flatpak-builder
Binary: flatpak-builder flatpak-builder-tests
Architecture: source
Version: 0.10.9-1
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 flatpak-builder - Flatpak application building helper
 flatpak-builder-tests - Application deployment framework for desktop apps 
(tests)
Closes: 890722
Changes:
 flatpak-builder (0.10.9-1) unstable; urgency=medium
 .
   * New upstream release
   - Includes patch from Aurelien Jarno to fix FTBFS with glibc 2.27
 (Closes: #890722)
Checksums-Sha1:
 f065bebe98140c2062f5423138cb32b5871a392c 2762 flatpak-builder_0.10.9-1.dsc
 7b75f8259db5ba8e545f0f50b426ee5419abda69 441620 
flatpak-builder_0.10.9.orig.tar.xz
 dc0c9da0b65efb962375638575c59cf6eb1eb7b2 5224 
flatpak-builder_0.10.9-1.debian.tar.xz
 bf6531184b13e698d702e921e34789f048764dca 9979 
flatpak-builder_0.10.9-1_source.buildinfo
Checksums-Sha256:
 9aab94a85c2eb5846aff35a731610b41253652846e894f28913630590d910cf6 2762 
flatpak-builder_0.10.9-1.dsc
 b8253b327d9901cf20a5a0167674377be192012b90bfdc62d54d1c8621cfdd2a 441620 
flatpak-builder_0.10.9.orig.tar.xz
 bb8b78efcddbf9d8ed198b1714555ef8371be82d0b321f3ad6effe419fa2d849 5224 
flatpak-builder_0.10.9-1.debian.tar.xz
 9e665d93a8355f604ae01949af85d991b5d6b39986be480f6d33e0bbbe218b7e 9979 
flatpak-builder_0.10.9-1_source.buildinfo
Files:
 a3c684fba8da569fe4f9ac68b934c8a7 2762 devel optional 
flatpak-builder_0.10.9-1.dsc
 5a783fd3431a683bb9913aa6e2375686 441620 devel optional 
flatpak-builder_0.10.9.orig.tar.xz
 cdc31745e3b5e525d48bf3ca69fe98cd 5224 devel optional 
flatpak-builder_0.10.9-1.debian.tar.xz
 161c32d77a877de18047bb149709c177 9979 devel optional 
flatpak-builder_0.10.9-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=7gtR
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted flatpak-builder 0.10.8-1~bpo9+1 (source) into stretch-backports

2018-02-22 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Fri, 16 Feb 2018 15:54:07 +
Source: flatpak-builder
Binary: flatpak-builder flatpak-builder-tests
Architecture: source
Version: 0.10.8-1~bpo9+1
Distribution: stretch-backports
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 flatpak-builder - Flatpak application building helper
 flatpak-builder-tests - Application deployment framework for desktop apps 
(tests)
Changes:
 flatpak-builder (0.10.8-1~bpo9+1) stretch-backports; urgency=medium
 .
   * Rebuild for stretch-backports.
 - debian/gbp.conf: Adjust for this branch
 .
 flatpak-builder (0.10.8-1) unstable; urgency=medium
 .
   * New upstream release
 .
 flatpak-builder (0.10.7-1) unstable; urgency=medium
 .
   * New upstream release
Checksums-Sha1:
 12b81aa04abcd2df328cbe41dffc360152261f6c 2790 
flatpak-builder_0.10.8-1~bpo9+1.dsc
 2f5a517ca90e90ab65a5d36e0ea8f9585927d1d2 5340 
flatpak-builder_0.10.8-1~bpo9+1.debian.tar.xz
 1ad226fbb10685a8d3fd86d9308b4dbd9113d76d 10026 
flatpak-builder_0.10.8-1~bpo9+1_source.buildinfo
Checksums-Sha256:
 8a705732ffaaab1d3074de210744cd42f098d86e4fa750195c2f5cf5cf46aa48 2790 
flatpak-builder_0.10.8-1~bpo9+1.dsc
 dae40f30321f6771d6f037a567fde33cc9121e546857fbbe684620349094adf1 5340 
flatpak-builder_0.10.8-1~bpo9+1.debian.tar.xz
 11b0800e1fdd52a732e28c5b8e258a7be4f52d52bffe519ec1c724937599a6da 10026 
flatpak-builder_0.10.8-1~bpo9+1_source.buildinfo
Files:
 709a0494475819eee947b26a0da14ba6 2790 devel optional 
flatpak-builder_0.10.8-1~bpo9+1.dsc
 37408d988f6787c4d9ab9a3f772cafc6 5340 devel optional 
flatpak-builder_0.10.8-1~bpo9+1.debian.tar.xz
 2d4b00baef4d141817aa2e680bab08e0 10026 devel optional 
flatpak-builder_0.10.8-1~bpo9+1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=XiyY
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted xdg-desktop-portal 0.10-2~bpo9+1 (all amd64 source) into stretch-backports, stretch-backports

2018-02-21 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Thu, 15 Feb 2018 16:21:51 +
Source: xdg-desktop-portal
Binary: xdg-desktop-portal xdg-desktop-portal-dev
Architecture: all amd64 source
Version: 0.10-2~bpo9+1
Distribution: stretch-backports
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description: 
 xdg-desktop-portal - desktop integration portal for Flatpak
 xdg-desktop-portal-dev - desktop integration portal for Flatpak - development 
files
Changes:
 xdg-desktop-portal (0.10-2~bpo9+1) stretch-backports; urgency=medium
 .
   * Rebuild for stretch-backports, to support flatpak (>= 0.10.4)
 - debian/gbp.conf: Adjust for this branch
Checksums-Sha1: 
 06571f5ab5abe359c15397ba5a3d7b6b0e7524af 2168 
xdg-desktop-portal_0.10-2~bpo9+1.dsc
 7a984a061d2339e8b16ffea0ce439fb951929897 3588 
xdg-desktop-portal_0.10-2~bpo9+1.debian.tar.xz
 78a7296ec9cbbe521217a0703a8fec0875ea8bc8 6600 
xdg-desktop-portal_0.10-2~bpo9+1_source.buildinfo
 20d4e44471cc6e5f982a3d95bbde3ba5b880d638 788164 
xdg-desktop-portal-dbgsym_0.10-2~bpo9+1_amd64.deb
 b967a459d86e8aed4ec04c342e276162d00b6d36 6053 
xdg-desktop-portal_0.10-2~bpo9+1_amd64.buildinfo
 86eb329f85239ea0162839289a01322ea3e5d2b2 159322 
xdg-desktop-portal_0.10-2~bpo9+1_amd64.deb
 215568e5c1b3477fea93f2d4f4178c644df8e8b2 28056 
xdg-desktop-portal-dev_0.10-2~bpo9+1_all.deb
 fd89934dbf1d73845c3e38a3a1880bddbee86824 5741 
xdg-desktop-portal_0.10-2~bpo9+1_all.buildinfo
Checksums-Sha256: 
 c0084ce9ea39fe4ece6a8873476eb9cdafc342992092b1a70c84e305905648c4 2168 
xdg-desktop-portal_0.10-2~bpo9+1.dsc
 5f4b6dcab74fa88a62d416fae00ab6dba5ff0395470893776fdd3a9ea8212a19 3588 
xdg-desktop-portal_0.10-2~bpo9+1.debian.tar.xz
 1f2bd9b56148e994ee7bac810eeea93034608b071736fe46a7f480054b6c824a 6600 
xdg-desktop-portal_0.10-2~bpo9+1_source.buildinfo
 3452634cf5884f2a40015ba58b23178a342f4a436bd76cfdcb9befc4980d980b 788164 
xdg-desktop-portal-dbgsym_0.10-2~bpo9+1_amd64.deb
 209c95e5efb76e790e351be31c46190e8b120933f2bbb9022198defe1ddcd7b6 6053 
xdg-desktop-portal_0.10-2~bpo9+1_amd64.buildinfo
 bf94bdd2b25a73c22b0884bd7134538b2c892bad9ac945f5a29d182ae54662a3 159322 
xdg-desktop-portal_0.10-2~bpo9+1_amd64.deb
 e7a13afc8ae8a76526f7d30ffc2aa34cb8b51c3d95d3b3b28070329cf1b32ded 28056 
xdg-desktop-portal-dev_0.10-2~bpo9+1_all.deb
 649186e5ee410a9257609f2779e7ddff5637f72dbe53a0f2e11c31228ef3c629 5741 
xdg-desktop-portal_0.10-2~bpo9+1_all.buildinfo
Files: 
 839bd8d849ca45fe7ba00b4d42067a08 2168 admin optional 
xdg-desktop-portal_0.10-2~bpo9+1.dsc
 86f388026038ca8b2f87491fe9f58bc7 3588 admin optional 
xdg-desktop-portal_0.10-2~bpo9+1.debian.tar.xz
 d263e0b558c2772b076eb337276ec4cf 6600 admin optional 
xdg-desktop-portal_0.10-2~bpo9+1_source.buildinfo
 e40cf27498d40851490152e77c660947 788164 debug extra 
xdg-desktop-portal-dbgsym_0.10-2~bpo9+1_amd64.deb
 ccbe09e91cb35f2b9626e65e85d2aa79 6053 admin optional 
xdg-desktop-portal_0.10-2~bpo9+1_amd64.buildinfo
 b2f5eb8f2161ca2fee5a66847ea43d05 159322 admin optional 
xdg-desktop-portal_0.10-2~bpo9+1_amd64.deb
 90eb95f97a663f38c75c7d575003e1be 28056 admin optional 
xdg-desktop-portal-dev_0.10-2~bpo9+1_all.deb
 f6157031550e371f2460391baa932218 5741 admin optional 
xdg-desktop-portal_0.10-2~bpo9+1_all.buildinfo

-BEGIN PGP SIGNATURE-

iQIzBAEBCAAdFiEENuxaZEik9e95vv6Y4FrhR4+BTE8FAlqL6BQACgkQ4FrhR4+B
TE+RqA//aRNLv2kNCdrR0Sb/P9CDfqajq348viFwKEJjWeI1xWlY16fF8fe3wclX
tW3kPc5y3mlOnVAtSyer9b6/HwVL5XJt67et2EvdvHv64w8vQ81mJS7ylO97w9EX
AKtmiw9/VPHXhbn3cIZbTt2JOxqdT5iPaQvEfGAQFbAEk0j4hPW8gPpw8XhsmOiM
R8PoVooDWY8oWMZLtbF1nnuuPzZvXH3YjEYvDJUJyDo8oNryDC73VJOIyRYeId+S
zI9W/FwS57yeufEtWCbpV9ceToAszPRruNGP82L2cVxtQtNBc0sa3sDk9ZwEYc6h
TBiGYghwTpe4oX91Sqcf7ZCl+Lfw77PTV8sD+vUsYCNyiRvC5yltcpFmgHmsjSBd
aHBttOxwoAu7vzmYoYwFq1VksZ7TH3DwEsh3xK17Jzcss/pKgJLt/XpichGpXIeg
y/4gX8ZSughJup0uIwsNN/9UU1MelmWPAfAEz4lYaBWWXuXJ9KbLoiAo9jsNb8sC
YmZWjb+SjAv+KKvY9f5GZDLHDcoTxjCo4D1Km701gUaFekx+Tyh7b0vj6jbjEW9V
PBfLjvJojYCTLlqSu7jPGG+pEQCKqdVe1Bj/hGQ1PLbQuaCzBC5CfnTbqKkK1F7x
sayMyorELqZyUpHgk1KGNt+xL6cLu5cK7uGP+um8oewBgJV6alY=
=bbQK
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#890975: dbus: test-server-oom fails on reproducible-builds infrastructure: org.freedesktop.DBus.Error.AddressInUse

2018-02-21 Thread Simon McVittie 
Source: dbus
Version: 1.12.4-1
Severity: normal

The 4th of 4 test cases in test/internals/server-oom is failing on the
reproducible-builds infrastructure, causing FTBFS, due to the unexpected
error org.freedesktop.DBus.Error.AddressInUse:

**
ERROR:../../../test/internals/server-oom.c:78:test_new_tcp: assertion failed 
(error.name == DBUS_ERROR_NO_MEMORY): 
("org.freedesktop.DBus.Error.AddressInUse" == 
"org.freedesktop.DBus.Error.NoMemory")
../../../build-aux/tap-driver.sh: line 639: 28655 Aborted "$@"
# random seed: R02S603b8549a89b53876cf9b1988c4b3759
1..4
# Start of server tests
ok 1 /server/new-tcp
PASS: test-server-oom 1 /server/new-tcp
ok 2 /server/new-nonce-tcp
PASS: test-server-oom 2 /server/new-nonce-tcp
ok 3 /server/new-tcp-star
PASS: test-server-oom 3 /server/new-tcp-star
# ERROR:../../../test/internals/server-oom.c:78:test_new_tcp: assertion failed 
(error.name == DBUS_ERROR_NO_MEMORY): 
("org.freedesktop.DBus.Error.AddressInUse" == 
"org.freedesktop.DBus.Error.NoMemory")
ERROR: test-server-oom - too few tests run (expected 4, got 3)
ERROR: test-server-oom - exited with status 134 (terminated by signal 6?)

(DBUS_ERROR_NO_MEMORY is allowed here because the point of this test is
to simulate malloc() returning NULL.)

This does not seem to happen on production buildds or in my local
testing. I don't know what's different about the reproducible-builds
workers.

The failing test is /server/new-tcp-v4, and the failure mode is that
_dbus_server_new_for_tcp_socket ("localhost", "localhost", "0", "ipv4",
&error, FALSE) fails with the given error. That means that approximately
this call sequence failed, when done repeatedly:

getaddrinfo ("localhost", "0",
 {ai_family=AF_INET, ai_protocol=IPPROTO_TCP,
  ai_socktype=SOCK_STREAM, ai_flags=AI_ADDRCONFIG | AI_PASSIVE},
 &ai);
fd = socket (ai->ai_family, SOCK_STREAM, 0);
setsockopt (fd, SOL_SOCKET, SO_REUSEADDR, &one, sizeof(one));
setsockopt (fd, IPPROTO_TCP, TCP_NODELAY, &one, sizeof(one));
bind (fd, ai->ai_addr, ai->ai_addrlen);

Possibly the reproducible builds worker has only a few transient TCP ports
available and so runs out sooner than a production buildd? I would have
expected SO_REUSEADDR to mitigate this, but perhaps it doesn't?

Not setting a release-critical severity since I've never seen this failure
mode outside the reproducible builds infrastructure.

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted flatpak 0.8.8-0+deb9u1~bpo8+1 (all source) into jessie-backports->backports-policy, jessie-backports

2018-02-21 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Wed, 31 Jan 2018 18:25:52 +
Source: flatpak
Binary: flatpak flatpak-builder flatpak-tests gir1.2-flatpak-1.0 libflatpak-dev 
libflatpak-doc libflatpak0
Architecture: all source
Version: 0.8.8-0+deb9u1~bpo8+1
Distribution: jessie-backports
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Closes: 880451
Description: 
 flatpak- Application deployment framework for desktop apps
 flatpak-builder - Flatpak application building helper
 flatpak-tests - Application deployment framework for desktop apps (tests)
 gir1.2-flatpak-1.0 - Application deployment framework for desktop apps 
(introspection)
 libflatpak0 - Application deployment framework for desktop apps (library)
 libflatpak-dev - Application deployment framework for desktop apps 
(development)
 libflatpak-doc - Application deployment framework for desktop apps 
(documentation)
Changes:
 flatpak (0.8.8-0+deb9u1~bpo8+1) jessie-backports; urgency=medium
 .
   * Rebuild for jessie-backports.
 - debian/gbp.conf: adjust for this branch
 - debian/control: (build-)depend on libgtk-3-bin, not
   gtk-update-icon-cache
 - d/p/debian/Try-gtk-3.0-version-of-the-icon-cache-utility-first.patch:
   try to use gtk-update-icon-cache-3.0 before gtk-update-icon-cache
 - d/p/backport/*.patch, d/control: Relax GLib dependency to 2.42
 .
 flatpak (0.8.8-0+deb9u1) stretch; urgency=medium
 .
   * d/watch: Watch for new 0.8.x versions
   * New upstream release from 0.8.x branch, backporting the following
 fixes from 0.10.x:
 - Add compatibility with ostree ≥ 2017.7 (in Debian, the same
   changes were already in 0.8.7-2)
 - Security: Do not allow legacy eavesdropping on the D-Bus
   session bus (Closes: #880451)
 - Ensure that LD_LIBRARY_PATH is in the correct order, respecting
   extensions' priorities
 - Ensure that extensions are mounted in the correct order even if
   they have differing priorities, fixing Steam
 - Remove PYTHONPATH, PERLLIB, PERL5LIB, XCURSOR_PATH from the
   environment given to sandboxed apps
 - Give each app a persistent cache directory for fontconfig
 - Make /usr/share/icons available in the sandbox so that sandboxed
   apps can use the host's icon theme
 - Disable debug-level FUSE logging for the document portal
 - Make the * wildcard at the end of a D-Bus filtering rule match
   zero or more components, so --talk="com.example.Foo.*" behaves
   the same as D-Bus' arg0namespace="com.example.Foo". Previously,
   it would only match exactly one component. This matches a proposed
   design for integrating equivalent filtering into future dbus
   versions.
   * d/p/0.8.8/: Drop patches that added compatibility with
 ostree ≥ 2017.7, no longer necessary
Checksums-Sha1: 
 eb49f38a3b3b1336a8c2753c81e5e8e9c2ba9274 35752 
libflatpak-doc_0.8.8-0+deb9u1~bpo8+1_all.deb
 9929a1471e49c1897378c9c049e4d93d34f5a8cc 2991 flatpak_0.8.8-0+deb9u1~bpo8+1.dsc
 23a4ac99b9d4f066734a54d9feeb16401cceb61f 22140 
flatpak_0.8.8-0+deb9u1~bpo8+1.debian.tar.xz
Checksums-Sha256: 
 0beb47ae094bc84a392a47d9f2dde4a2ac93f9a06258cecceacad03c0b9d61fd 35752 
libflatpak-doc_0.8.8-0+deb9u1~bpo8+1_all.deb
 b0f492b112c9622f1138771b1b05cbb5f96afdc0b4d073df2bb6a01d3a5b4f0f 2991 
flatpak_0.8.8-0+deb9u1~bpo8+1.dsc
 68a48454ee28ea5c935e1595944d78bde0ba3da3f21ae5d3a0bdb33c6e1884ee 22140 
flatpak_0.8.8-0+deb9u1~bpo8+1.debian.tar.xz
Files: 
 d73ecc6ee49204cba712cd827720d6f6 35752 doc optional 
libflatpak-doc_0.8.8-0+deb9u1~bpo8+1_all.deb
 34064cd18364041cb18ef128f3277e45 2991 admin optional 
flatpak_0.8.8-0+deb9u1~bpo8+1.dsc
 96c1612127328e6a35a3af870856e49e 22140 admin optional 
flatpak_0.8.8-0+deb9u1~bpo8+1.debian.tar.xz

-BEGIN PGP SIGNATURE-
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=sAG9
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted xdg-desktop-portal 0.10-4 (source) into unstable

2018-02-20 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Fri, 16 Feb 2018 14:50:44 +
Source: xdg-desktop-portal
Binary: xdg-desktop-portal xdg-desktop-portal-dev xdg-desktop-portal-tests
Architecture: source
Version: 0.10-4
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 xdg-desktop-portal - desktop integration portal for Flatpak
 xdg-desktop-portal-dev - desktop integration portal for Flatpak - development 
files
 xdg-desktop-portal-tests - desktop integration portal for Flatpak - automated 
tests
Changes:
 xdg-desktop-portal (0.10-4) unstable; urgency=medium
 .
   * Merge from experimental, with autopkgtests included
   * d/p/build-Run-install-test-data-hook-as-intended.patch:
 Mark patch as applied upstream
Checksums-Sha1:
 1a97eff3b3b8b4818efc661c6f68d2011d750a5a 2279 xdg-desktop-portal_0.10-4.dsc
 c9797453f5f631de2446ae3916a72ae2fe26a7ab 4212 
xdg-desktop-portal_0.10-4.debian.tar.xz
 19817fe1856c065dd3f196e29da848991ff7f553 6558 
xdg-desktop-portal_0.10-4_source.buildinfo
Checksums-Sha256:
 d137ddd814aada30c5f1528d7f3507898adf3db32a574d505a52509cae60b979 2279 
xdg-desktop-portal_0.10-4.dsc
 7d5556342752be726add7e8ff5fa9ce6a200514cf85aee6e4a57578671d16de2 4212 
xdg-desktop-portal_0.10-4.debian.tar.xz
 253a616c3b5b5a619ccd9abbb482f1a9639d61ad70c5a40ad13f93e30744a800 6558 
xdg-desktop-portal_0.10-4_source.buildinfo
Files:
 90231c33640f520f6b375eec6abb6bf0 2279 admin optional 
xdg-desktop-portal_0.10-4.dsc
 338a6a8bda2059ce89140fb0ac6bc1a0 4212 admin optional 
xdg-desktop-portal_0.10-4.debian.tar.xz
 476b5d79e55fe7a5c3ff1f7140d87dfc 6558 admin optional 
xdg-desktop-portal_0.10-4_source.buildinfo

-BEGIN PGP SIGNATURE-
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=T2VK
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted flatpak 0.10.4-1~bpo9+1 (source) into stretch-backports

2018-02-20 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Thu, 15 Feb 2018 16:23:37 +
Source: flatpak
Binary: flatpak flatpak-tests gir1.2-flatpak-1.0 libflatpak-dev libflatpak-doc 
libflatpak0
Architecture: source
Version: 0.10.4-1~bpo9+1
Distribution: stretch-backports
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 flatpak- Application deployment framework for desktop apps
 flatpak-tests - Application deployment framework for desktop apps (tests)
 gir1.2-flatpak-1.0 - Application deployment framework for desktop apps 
(introspection)
 libflatpak-dev - Application deployment framework for desktop apps 
(development)
 libflatpak-doc - Application deployment framework for desktop apps 
(documentation)
 libflatpak0 - Application deployment framework for desktop apps (library)
Changes:
 flatpak (0.10.4-1~bpo9+1) stretch-backports; urgency=medium
 .
   * Rebuild for stretch-backports.
 - debian/gbp.conf: Adjust for this branch
 - Remove Rules-Requires-Root: no, which is not supported by stable's
   gobject-introspection, debhelper, dpkg
 - Revert gobject-introspection dependency to be unversioned, since
   the version was only required for Rules-Requires-Root
 .
 flatpak (0.10.4-1) unstable; urgency=medium
 .
   * New upstream release
   * Don't install documents portal or permission store. Depend on
 xdg-desktop-portal (>= 0.10) instead: they have moved there.
   * d/p/Only-require-FUSE-if-we-re-still-building-the-document-po.patch:
 Don't depend on FUSE at build-time
Checksums-Sha1:
 031e6a109097129dbff78069b606e035e14c2bd1 3175 flatpak_0.10.4-1~bpo9+1.dsc
 cd7abf17995cac83ea511bfd21776fe2e9041a1f 19956 
flatpak_0.10.4-1~bpo9+1.debian.tar.xz
 811f9890b9f265a51b9e8665590bfb14853389a5 10690 
flatpak_0.10.4-1~bpo9+1_source.buildinfo
Checksums-Sha256:
 3a95ecca973c07e50a5c983511a71ad4f36ffa158df08cb6a46ea34ce146ee59 3175 
flatpak_0.10.4-1~bpo9+1.dsc
 55f98a6b825b49d5ea5c391013e8bd6cafc7de185576fc595530591daa9e34b9 19956 
flatpak_0.10.4-1~bpo9+1.debian.tar.xz
 2515cf9321a48d99243aa926750bafe1d68b00d83117b1e3af5b676f35f13772 10690 
flatpak_0.10.4-1~bpo9+1_source.buildinfo
Files:
 d2c123b3ee29d21178d81c229615d0b8 3175 admin optional 
flatpak_0.10.4-1~bpo9+1.dsc
 dec0eb82efd3f240ebc3f339bd712215 19956 admin optional 
flatpak_0.10.4-1~bpo9+1.debian.tar.xz
 00bf1e3a1a666e21a646ee412558d24c 10690 admin optional 
flatpak_0.10.4-1~bpo9+1_source.buildinfo

-BEGIN PGP SIGNATURE-

iQIzBAEBCAAdFiEENuxaZEik9e95vv6Y4FrhR4+BTE8FAlqL3f0ACgkQ4FrhR4+B
TE8Hvw/7BLfG5K6YZJheMtV531uTMyAy8G14bnABsVbjt7St45wVDC1Ti2Hi1tbz
xnN+ujKhOebM/fSxIA2ICOnX6nD/L//NIHgZ9J++3RZe44CYdW0rqQHdeSfhKx17
RDgTy5JQ5AjIVg5Y5ijBK6IwVHkkY+qD9rkXY9BrL48qzl2VwtU1Vp2TagU7xH4T
dt8NGqfGuPHgNbCQ9d0LSlkkgLf9uXaPYaJ5kN1XgQNLztbx+/IUVD+qX5d8a/eF
DqoV86qluVfeEul8d06KgWzUGPnO5OtH7eryXRxYZPmZR6DHrWNbocMd1W8173Gd
9l/anXCg3whsITXcvgUgE0Vcl3oTh/0AuobsX/fmKNQSrH0IKFtds3NLZyTNB27F
Lt8kUqWQE++aXcaTnhbd8STi27Dqt6esF1rtXjSJrAA/VTknJpDVEYTlu3Atm62k
7er+obP8jJy1D35KEfWXr/i86lgArrFwdIqUTDXAjaZC0LswioX0UWPSG12NRD+0
vMekk2JoU9V+7a9kArWEkxcVg4wgRtmH23vWPXmjkJOJKrHIC8nHruyp/0WxuUPj
s2+Yddnw++rZ5eDO4EoPs+VjrtWBxdYRe4dxYrZXZHUeTSaR8yhmPGlrec9X3EHQ
rfpW5xxxlyDqPRCoXI0vPwRktcfQPJDJjohWkkajGBnzVjgbIyo=
=DbGQ
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted flatpak 0.11.3-1 (source) into experimental

2018-02-19 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 19 Feb 2018 15:18:05 +
Source: flatpak
Binary: flatpak flatpak-tests gir1.2-flatpak-1.0 libflatpak-dev libflatpak-doc 
libflatpak0
Architecture: source
Version: 0.11.3-1
Distribution: experimental
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 flatpak- Application deployment framework for desktop apps
 flatpak-tests - Application deployment framework for desktop apps (tests)
 gir1.2-flatpak-1.0 - Application deployment framework for desktop apps 
(introspection)
 libflatpak-dev - Application deployment framework for desktop apps 
(development)
 libflatpak-doc - Application deployment framework for desktop apps 
(documentation)
 libflatpak0 - Application deployment framework for desktop apps (library)
Changes:
 flatpak (0.11.3-1) experimental; urgency=medium
 .
   * New upstream release
 - d/p/Remove-unused-FUSE-build-dependency.patch:
   Drop, applied upstream
Checksums-Sha1:
 bea5640f86c0d81bfcdaab80402fc4a19d10b195 3180 flatpak_0.11.3-1.dsc
 868e9b6adb45f0ac3c58095c48742f5b53b52cf5 843540 flatpak_0.11.3.orig.tar.xz
 f949c46b4730c97dc768476c972dbb9a4ae4f788 19540 flatpak_0.11.3-1.debian.tar.xz
 a99349ac234bfdfa3f43069824f582d8e66c9b98 11031 
flatpak_0.11.3-1_source.buildinfo
Checksums-Sha256:
 aa31b2e4a669c1b661ea75e946965a19928a6481d10b1dbccbb4239ff3aacaa6 3180 
flatpak_0.11.3-1.dsc
 ae580c8ef7b82e3501c36625ebf6b8421e67629ea4862b1233c292a3f548b672 843540 
flatpak_0.11.3.orig.tar.xz
 4c3287f8deeabb56cf781b35fd4f3eef38bc8316ee84986cd047744f2c97684c 19540 
flatpak_0.11.3-1.debian.tar.xz
 7819d081a6d8c49c5efa8ef7781babef6638a72a6241af7a74fb203bdf2fb497 11031 
flatpak_0.11.3-1_source.buildinfo
Files:
 85d64914fcafef29fa7d3e24542310dd 3180 admin optional flatpak_0.11.3-1.dsc
 0fa123088e64ae733fea210ce1005772 843540 admin optional 
flatpak_0.11.3.orig.tar.xz
 3a0f40b73f5aacf47c45fd3c74cc534b 19540 admin optional 
flatpak_0.11.3-1.debian.tar.xz
 5c838967af6f66ad84d6ff7d9a614ae0 11031 admin optional 
flatpak_0.11.3-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=nR8c
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#890721: flatpak: FTBFS with glibc 2.27: error: static declaration of 'copy_file_range' follows non-static declaration

2018-02-19 Thread Simon McVittie 
Version: 0.11.3-1

On Mon, 19 Feb 2018 at 09:53:14 +, Simon McVittie wrote:
> flatpak 0.11.0 has the upstream fix that you described, so this is
> certainly fixed in experimental.

Just to make sure, I built the version I'm about to upload against glibc
2.27 and it seems fine. I'll do the same check for 0.10.4 shortly.

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted ostree 2018.2-1 (source) into unstable

2018-02-19 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 19 Feb 2018 09:01:47 +
Source: ostree
Binary: gir1.2-ostree-1.0 libostree-1-1 libostree-dev libostree-doc ostree 
ostree-tests
Architecture: source
Version: 2018.2-1
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 gir1.2-ostree-1.0 - content-addressed filesystem for operating system binaries 
(intro
 libostree-1-1 - content-addressed filesystem for operating system binaries 
(libra
 libostree-dev - Development files for the libostree library
 libostree-doc - Development documentation for the libostree library
 ostree - content-addressed filesystem for operating system binaries
 ostree-tests - content-addressed filesystem for operating system binaries - 
test
Changes:
 ostree (2018.2-1) unstable; urgency=medium
 .
   * New upstream release
 - d/copyright: Update
 - d/libostree-1-1.symbols: Update
   * Mark patches as forwarded
   * Add gnupg to build-time test dependencies (and ostree-tests
 dependencies) as it is no longer transitively build-essential
Checksums-Sha1:
 40ca6badbf6923773cf7679ce699197b6ade6994 2979 ostree_2018.2-1.dsc
 1a51174bdf5e3370ee6a72b3ee04e93ec73d9123 1938368 ostree_2018.2.orig.tar.xz
 126c6b82c837377475be4d08f1413001eee27ede 24540 ostree_2018.2-1.debian.tar.xz
 0f88afc14f2aebb61860da1d08bebfea1dbb7a66 10441 ostree_2018.2-1_source.buildinfo
Checksums-Sha256:
 8548910640d752e20b04968c057850034e148cdccbf92998fa0b21815f856024 2979 
ostree_2018.2-1.dsc
 37661de4a0ac73af5d921f494f17dd052ae2844111ba7c5aaeb1cbc4aae94bea 1938368 
ostree_2018.2.orig.tar.xz
 975a82f97b4d935a8f556970bea0bcffe9dbad79daa989fd5d759e35ee0ed17a 24540 
ostree_2018.2-1.debian.tar.xz
 5660f6deb75b54e2b48a77af1172ca9a84467b08078dffbb5f7604cdc86abe74 10441 
ostree_2018.2-1_source.buildinfo
Files:
 e3b0893f79e2830423737af6b71e1872 2979 admin optional ostree_2018.2-1.dsc
 912eed5f9f420e9101d8c3f24945a576 1938368 admin optional 
ostree_2018.2.orig.tar.xz
 6ffb15d675eb1a59c972d305fc0f 24540 admin optional 
ostree_2018.2-1.debian.tar.xz
 568012fa32cec41529303f25cb4cbee5 10441 admin optional 
ostree_2018.2-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=I/th
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#890721: flatpak: FTBFS with glibc 2.27: error: static declaration of 'copy_file_range' follows non-static declaration

2018-02-19 Thread Simon McVittie 
Control: tags -1 + confirmed moreinfo

On Sat, 17 Feb 2018 at 23:57:48 +0100, Aurelien Jarno wrote:
> flatpak 0.10.3-1 (and version 0.10.4-1 currently in sid) fails to build
> with glibc 2.27 (2.27-0experimental0 from experimental)

Did you test 0.10.4-1 unsuccessfully, or is that based on extrapolation
from 0.10.3-1? I can confirm that 0.10.3-1 FTBFS in the way you described,
but 0.10.4-1 builds OK for me with glibc 2.27-0experimental0.

> glibc 2.27 added support for copy_file_range. Unfortunately flatpak,
> or rather the included libglnx library, also has such a function to
> wrap the corresponding syscall.
> 
> The issue has already been fixed upstream in commit 3e16d4ef with an
> update of the libglnx submodule. The corresponding libglnx commit is
> 4577dc82.

flatpak 0.11.0 has the upstream fix that you described, so this is
certainly fixed in experimental.

flatpak 0.10.4 has commit 084164a20ad2ea5a02ed7e9a915cb3539a8828ba
which is meant to fix copy_file_range detection with the older libglnx
submodule: . So I believe
this should also be fixed in unstable already?

Thanks,
smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#890722: flatpack-builder: FTBFS with glibc 2.27: error: static declaration of 'memfd_create' follows non-static declaration

2018-02-19 Thread Simon McVittie 
Control: forwarded -1 https://github.com/GNOME/libglnx/pull/103
Control: tags -1 + fixed-upstream pending

On Sat, 17 Feb 2018 at 23:57:53 +0100, Aurelien Jarno wrote:
> flatpack-builder 0.10.8-1 fails to build with glibc 2.27
> (2.27-0experimental0 from experimental):
> | ./libglnx/glnx-missing-syscall.h:105:19: error: static declaration of 
> 'memfd_create' follows non-static declaration
> 
> glibc 2.27 added support for memfd_create. Unfortunately
> flatpak-builder, or rather the included libglnx library, also has such a
> function to wrap the corresponding syscall. It correctly tries to detect
> it in the configure script to disabled the wrapper in case glibc
> provides it. However it doesn't work due to a missing include. The
> attached patch fixes that.

Thanks, I've sent this upstream to libglnx (where it was accepted)
and applied it in Debian. Upstream is in the process of releasing
flatpak-builder 0.10.9 anyway, with the updated libglnx included, so
I'll probably wait for that version instead of uploading with your patch.

Regards,
smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#890721: flatpak: FTBFS with glibc 2.27: error: static declaration of 'copy_file_range' follows non-static declaration

2018-02-17 Thread Simon McVittie 
Control: tags -1 + fixed-upstream

On Sat, 17 Feb 2018 at 23:57:48 +0100, Aurelien Jarno wrote:
> flatpak 0.10.3-1 (and version 0.10.4-1 currently in sid) fails to build
> with glibc 2.27 (2.27-0experimental0 from experimental)
...
> The issue has already been fixed upstream in commit 3e16d4ef with an
> update of the libglnx submodule. The corresponding libglnx commit is
> 4577dc82.

Thanks, I'll look at patching this in after 0.10.4-1 migrates to testing,
which should happen next week (it needs to go through in lockstep with
xdg-desktop-portal 0.10, so I don't want to delay that migration more
than I have to).

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted xdg-desktop-portal-gtk 0.10-1 (source) into unstable

2018-02-16 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Fri, 16 Feb 2018 12:51:59 +
Source: xdg-desktop-portal-gtk
Binary: xdg-desktop-portal-gtk
Architecture: source
Version: 0.10-1
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 xdg-desktop-portal-gtk - GTK+/GNOME portal backend for xdg-desktop-portal
Changes:
 xdg-desktop-portal-gtk (0.10-1) unstable; urgency=medium
 .
   * New upstream release
 - Drop patches, merged upstream
 - d/copyright: Update
   * d/p/configure-Add-gio-unix-2.0.pc-dependency.patch:
 Add patch from upstream adding missing gio-unix-2.0 dependency
   * Depend and build-depend on xdg-desktop-portal 0.10
Checksums-Sha1:
 30fad4db166d03f90b50cd462b97a4cd8182f7a8 2157 xdg-desktop-portal-gtk_0.10-1.dsc
 59427977afb8b5d5a485b7ed5afe680344465e6e 333948 
xdg-desktop-portal-gtk_0.10.orig.tar.xz
 07d25c855a8ed1f4a1223094306432b12e4ca578 3332 
xdg-desktop-portal-gtk_0.10-1.debian.tar.xz
 f3a6558a819d406b7bdfc67055863c440b46f528 13318 
xdg-desktop-portal-gtk_0.10-1_source.buildinfo
Checksums-Sha256:
 8ab3b2d41ee7d398d973166fd008734181439fa86ba5b35aa1daaf8892dbbd29 2157 
xdg-desktop-portal-gtk_0.10-1.dsc
 637bbc17e02e2f076a750a8175f8936227de044099d1b1be163490419a899263 333948 
xdg-desktop-portal-gtk_0.10.orig.tar.xz
 88bcd88c37d1e793a9dc25c63f67114483e365f053b0181b732031cc28f13608 3332 
xdg-desktop-portal-gtk_0.10-1.debian.tar.xz
 893f5e76756426f6e75fe2557995f2166d28136fdcf1f8e2e56d3f5d680f51c6 13318 
xdg-desktop-portal-gtk_0.10-1_source.buildinfo
Files:
 383654c04bd456f9705de6e48664a215 2157 gnome optional 
xdg-desktop-portal-gtk_0.10-1.dsc
 e9a60136ee823a8b7dc18f46562fbf91 333948 gnome optional 
xdg-desktop-portal-gtk_0.10.orig.tar.xz
 449b20fa15ee7945c14f1881391b6847 3332 gnome optional 
xdg-desktop-portal-gtk_0.10-1.debian.tar.xz
 aafcc00add7cd0232d8243f95f32cae4 13318 gnome optional 
xdg-desktop-portal-gtk_0.10-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=DOeI
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted flatpak-builder 0.10.8-1 (source) into unstable

2018-02-16 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Fri, 16 Feb 2018 12:41:32 +
Source: flatpak-builder
Binary: flatpak-builder flatpak-builder-tests
Architecture: source
Version: 0.10.8-1
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 flatpak-builder - Flatpak application building helper
 flatpak-builder-tests - Application deployment framework for desktop apps 
(tests)
Changes:
 flatpak-builder (0.10.8-1) unstable; urgency=medium
 .
   * New upstream release
Checksums-Sha1:
 46894605edfb954ab262763fd164aece9db3b81d 2762 flatpak-builder_0.10.8-1.dsc
 43773265a994ea9d4a4aadb4aafcc4f4b9b17dd1 441368 
flatpak-builder_0.10.8.orig.tar.xz
 0888b47e7b6bd37e7bb49b74acd3b087be15e2f4 5168 
flatpak-builder_0.10.8-1.debian.tar.xz
 7a0f5be68bf01f22ef8db26d34cc186adb060966 9980 
flatpak-builder_0.10.8-1_source.buildinfo
Checksums-Sha256:
 5b661986e27270fcaa078b473309f8f095d766c1a30ed8003176c75c4e69511e 2762 
flatpak-builder_0.10.8-1.dsc
 b0a371c17f3dab8401b216029097e304c6431efb54d0f12731e1e610fb931161 441368 
flatpak-builder_0.10.8.orig.tar.xz
 ced6d8d8c11c72d227329d4f773a2dd0490c3d57086fd3e5cbdeec086aca86b2 5168 
flatpak-builder_0.10.8-1.debian.tar.xz
 97c46f1ab13324b3613ebe55ac69458325bf2f7317e6dcd10e90cdd15826a642 9980 
flatpak-builder_0.10.8-1_source.buildinfo
Files:
 a84b33115941a908f123f5e42659ac14 2762 devel optional 
flatpak-builder_0.10.8-1.dsc
 db44ab3e9637fed812dec9247aa1f1cc 441368 devel optional 
flatpak-builder_0.10.8.orig.tar.xz
 01d5a599cf18a523f23b52e6e3294254 5168 devel optional 
flatpak-builder_0.10.8-1.debian.tar.xz
 149f0297ac9bea61bcfc09ba60dedb22 9980 devel optional 
flatpak-builder_0.10.8-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=BYAg
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted xdg-desktop-portal 0.10-3 (all amd64 source) into experimental, experimental

2018-02-16 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Thu, 15 Feb 2018 00:30:01 +
Source: xdg-desktop-portal
Binary: xdg-desktop-portal xdg-desktop-portal-dev xdg-desktop-portal-tests
Architecture: all amd64 source
Version: 0.10-3
Distribution: experimental
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description: 
 xdg-desktop-portal - desktop integration portal for Flatpak
 xdg-desktop-portal-dev - desktop integration portal for Flatpak - development 
files
 xdg-desktop-portal-tests - desktop integration portal for Flatpak - automated 
tests
Changes:
 xdg-desktop-portal (0.10-3) experimental; urgency=medium
 .
   * Reinstate xdg-desktop-portal-tests package and autopkgtests
   * d/p/build-Run-install-test-data-hook-as-intended.patch:
 Run the tests' install hook to set up enough symlinks that they
 will pass
   * Upload to experimental to wait for NEW processing
Checksums-Sha1: 
 d98e88db893d338e7f8841b9fb0406510970578b 2279 xdg-desktop-portal_0.10-3.dsc
 3b3a068306016f6f073bf42cffb898dd745ed894 4104 
xdg-desktop-portal_0.10-3.debian.tar.xz
 7f7d42c54dc4b9ae12d84a128a83a989aee334cd 6557 
xdg-desktop-portal_0.10-3_source.buildinfo
 cd4965135324caab68d5700ee98a8dd577684908 781188 
xdg-desktop-portal-dbgsym_0.10-3_amd64.deb
 e1513a96d424bb568e5e0efa7ae6c4ca0fe2de0a 109056 
xdg-desktop-portal-tests-dbgsym_0.10-3_amd64.deb
 a0138ed0e8f692a6506a191df0e53243ca732c66 36388 
xdg-desktop-portal-tests_0.10-3_amd64.deb
 03922671b4176ea97a32c7d2d254680cd3a1f8ce 6585 
xdg-desktop-portal_0.10-3_amd64.buildinfo
 aa575cbc4b4580c9019d904d487bb26cbb02a0a5 163720 
xdg-desktop-portal_0.10-3_amd64.deb
 611f0f061ab572c52103937f8c356bcabf77366f 28104 
xdg-desktop-portal-dev_0.10-3_all.deb
 3d7d82909e0f7d9dcff130dd3b59a90345c52f35 5698 
xdg-desktop-portal_0.10-3_all.buildinfo
Checksums-Sha256: 
 227bf2a461eba98163fac32cc9edc4a463221ce3d1e26b6be41f542248e23387 2279 
xdg-desktop-portal_0.10-3.dsc
 c986c1b8e2fc79fb5e9d16e13ac3feb03c62006cb8052b4b500d5e1510071b2b 4104 
xdg-desktop-portal_0.10-3.debian.tar.xz
 f20b2a80135701c75d4b5c2680542a8fcb3592bbcfb5747b1da935902e86a509 6557 
xdg-desktop-portal_0.10-3_source.buildinfo
 6e7aa3bbd385e60479254546bb615c0f5689ccf2ddec55ef1db30f8fbe64c627 781188 
xdg-desktop-portal-dbgsym_0.10-3_amd64.deb
 2d7571e1729cbc9d57122155f42d42534919b6bac961ef03df31477bd7bf8a7b 109056 
xdg-desktop-portal-tests-dbgsym_0.10-3_amd64.deb
 449a16e2cc3a21fa536c4cf9af326a3869fc375af5881ee15c80c2833050bad6 36388 
xdg-desktop-portal-tests_0.10-3_amd64.deb
 5b03928637d30cf6b69b818777373c71698985d8047670fda8b15d3ca639ffc7 6585 
xdg-desktop-portal_0.10-3_amd64.buildinfo
 dd7f4e3176e59279416458bb288a5b8b3e464364646dd4eaae6d322d418b76a1 163720 
xdg-desktop-portal_0.10-3_amd64.deb
 d405904a53e58f94c1c161e6df5bf9cbc698b60919f09facc0f6251a8e761ef7 28104 
xdg-desktop-portal-dev_0.10-3_all.deb
 615e9b555f276b24a6cb6d5be7c85ef44345baa2b5fbb13b72377564b783d97e 5698 
xdg-desktop-portal_0.10-3_all.buildinfo
Files: 
 b4a082c842c2092c345ceb69da41f2be 2279 admin optional 
xdg-desktop-portal_0.10-3.dsc
 464dae21d575b6e0b6bf3685291d07e0 4104 admin optional 
xdg-desktop-portal_0.10-3.debian.tar.xz
 87021305d6eeeb09621bf242b93158ef 6557 admin optional 
xdg-desktop-portal_0.10-3_source.buildinfo
 cea202fd2697b40a8d2fd7a10645afd6 781188 debug optional 
xdg-desktop-portal-dbgsym_0.10-3_amd64.deb
 4a30bd6fa33c70554e9b4e353803e648 109056 debug optional 
xdg-desktop-portal-tests-dbgsym_0.10-3_amd64.deb
 10cbf31f977dbd0bf5011d75542cc0ed 36388 admin optional 
xdg-desktop-portal-tests_0.10-3_amd64.deb
 2115f35180d2895ef1632c5264f00ba5 6585 admin optional 
xdg-desktop-portal_0.10-3_amd64.buildinfo
 167c36f41d4b409fbc145b690d5a141e 163720 admin optional 
xdg-desktop-portal_0.10-3_amd64.deb
 611e2ca45bb55791c0eee929b3b46567 28104 admin optional 
xdg-desktop-portal-dev_0.10-3_all.deb
 84af4a89412c70ae88f95384f569d392 5698 admin optional 
xdg-desktop-portal_0.10-3_all.buildinfo

-BEGIN PGP SIGNATURE-
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=52ze
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-u

[Pkg-utopia-maintainers] Accepted flatpak 0.11.1-1 (source) into experimental

2018-02-15 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Thu, 15 Feb 2018 09:26:09 +
Source: flatpak
Binary: flatpak flatpak-tests gir1.2-flatpak-1.0 libflatpak-dev libflatpak-doc 
libflatpak0
Architecture: source
Version: 0.11.1-1
Distribution: experimental
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 flatpak- Application deployment framework for desktop apps
 flatpak-tests - Application deployment framework for desktop apps (tests)
 gir1.2-flatpak-1.0 - Application deployment framework for desktop apps 
(introspection)
 libflatpak-dev - Application deployment framework for desktop apps 
(development)
 libflatpak-doc - Application deployment framework for desktop apps 
(documentation)
 libflatpak0 - Application deployment framework for desktop apps (library)
Changes:
 flatpak (0.11.1-1) experimental; urgency=medium
 .
   * d/gbp.conf: Target experimental
   * d/watch: Track development versions
   * New upstream development release
   * d/p/Only-require-FUSE-if-we-re-still-building-the-document-po.patch:
 Drop, not applicable to 0.11.x
   * d/p/Remove-unused-FUSE-build-dependency.patch:
 Remove unnecessary check for FUSE
   * Build-depend on gnupg, needed to run tests
Checksums-Sha1:
 064e4320d43b3791a6a43be2d61f93be42675bdb 3180 flatpak_0.11.1-1.dsc
 defbf6500c945d59b3564e5428a3a64ddbaca638 843464 flatpak_0.11.1.orig.tar.xz
 b763b95197a78e0e93bcbeeae9a8ff4c1738e1e9 19752 flatpak_0.11.1-1.debian.tar.xz
 cbba562a58c248132758b376392f6ed65cd1b57a 11007 
flatpak_0.11.1-1_source.buildinfo
Checksums-Sha256:
 ca2d49db3e9d333b8be3fd44d9be910e28dee6acf2654c0e67ee0dcbfd5d9126 3180 
flatpak_0.11.1-1.dsc
 97d675283a8d6184fdb4620c657066b9138e6ec3e0169382a9e78210f51f5819 843464 
flatpak_0.11.1.orig.tar.xz
 bc488f8e82d76dad1bf807d7644ce443b484e74d57afc18dea9a87d57048cf7d 19752 
flatpak_0.11.1-1.debian.tar.xz
 fa9cf41a23f86e218c5757efeac36de8d466bbc641053862926d758b0d7c24aa 11007 
flatpak_0.11.1-1_source.buildinfo
Files:
 45bf4ff033d793e0df4d3a9829a2c458 3180 admin optional flatpak_0.11.1-1.dsc
 34bf8ea77445169d806a4ef49d5f90e8 843464 admin optional 
flatpak_0.11.1.orig.tar.xz
 cfc029a9d77d7baa7efc0b26f0b96e0d 19752 admin optional 
flatpak_0.11.1-1.debian.tar.xz
 3b2e54c734472ce55280b2f0b531378e 11007 admin optional 
flatpak_0.11.1-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=KEIv
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted xdg-desktop-portal 0.10-2 (source) into unstable

2018-02-14 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Thu, 15 Feb 2018 00:54:15 GMT
Source: xdg-desktop-portal
Binary: xdg-desktop-portal xdg-desktop-portal-dev
Architecture: source
Version: 0.10-2
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description: 
 xdg-desktop-portal - desktop integration portal for Flatpak
 xdg-desktop-portal-dev - desktop integration portal for Flatpak - development 
files
Changes:
 xdg-desktop-portal (0.10-2) unstable; urgency=medium
 .
   * Really remove xdg-desktop-portal-tests stanza from d/control
 .
 xdg-desktop-portal (0.10-1) unstable; urgency=medium
 .
   * New upstream release
   * Add Breaks/Replaces for flatpak (<< 0.10.4-1~) since this package
 has taken over the permission store and documents portal
   * Disable Pipewire support for now (ITP: #874089)
   * Add new build-dependencies for FUSE
   * Install the permission store and documents portal
   * d/copyright: Update
   * Drop flatpak build-dependency, no longer needed
   * Remove patches, applied upstream
   * Depend on FUSE
   * Build installed-tests, but don't install them for now to avoid the
 NEW queue
   * Use dh_missing --fail-missing instead of dh_install --fail-missing
Checksums-Sha256: 
 43d366bef9b69ac9241296f7abfcabc40dd41d8ab150dad5fa91602d5359 2140 
xdg-desktop-portal_0.10-2.dsc
 f5623f57db0776a037e2d975d29e26eada5727a0aa09b973e38868906d34ae02 3532 
xdg-desktop-portal_0.10-2.debian.tar.xz
 8ec41268b807562efabd11097848448ad55e0378c12f94ff37daefbc1761f713 6536 
xdg-desktop-portal_0.10-2_source.buildinfo
 cdcae14b8797ad840362f4bea3c6e1c74790a6a6201d800ee36577f2b989e54e 377160 
xdg-desktop-portal_0.10.orig.tar.xz
Checksums-Sha1: 
 c4b120384f3b6b07ab67e69dcd141db4468ca7ec 2140 xdg-desktop-portal_0.10-2.dsc
 68f993b808d7805ba29df83b3d19b42cd2b9758d 3532 
xdg-desktop-portal_0.10-2.debian.tar.xz
 5f73fc210a3f721c818648ffd9aef4b8f0a43fce 6536 
xdg-desktop-portal_0.10-2_source.buildinfo
 3195b930be151855ff18166b19e753d342a589d0 377160 
xdg-desktop-portal_0.10.orig.tar.xz
Files: 
 d08d31942aec8b25d8865b1cf3ae8b7f 2140 admin optional 
xdg-desktop-portal_0.10-2.dsc
 ae69ecb9986304632e6de6d4be4b3086 3532 admin optional 
xdg-desktop-portal_0.10-2.debian.tar.xz
 4c6e76a37c0e03504e32bd1b05b29268 6536 admin optional 
xdg-desktop-portal_0.10-2_source.buildinfo
 5161bb113c9aa3bd8133e2ec3df578dc 377160 admin optional 
xdg-desktop-portal_0.10.orig.tar.xz

-BEGIN PGP SIGNATURE-
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=Rtvu
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted flatpak-builder 0.10.7-1 (source) into unstable

2018-02-14 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Wed, 14 Feb 2018 18:25:05 +
Source: flatpak-builder
Binary: flatpak-builder flatpak-builder-tests
Architecture: source
Version: 0.10.7-1
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 flatpak-builder - Flatpak application building helper
 flatpak-builder-tests - Application deployment framework for desktop apps 
(tests)
Changes:
 flatpak-builder (0.10.7-1) unstable; urgency=medium
 .
   * New upstream release
Checksums-Sha1:
 ee66c19e95e35a08267a4b00b1b6ecb87a2d4171 2762 flatpak-builder_0.10.7-1.dsc
 f1556a67a82cd80e5ed41e6c1f3e21ffcb45a1e8 437780 
flatpak-builder_0.10.7.orig.tar.xz
 ea0695448e9c91eb0e788cac54eb5f69e9549022 5152 
flatpak-builder_0.10.7-1.debian.tar.xz
 dd88778d3714326144ca7db6ae17c2c1d01605ba 9983 
flatpak-builder_0.10.7-1_source.buildinfo
Checksums-Sha256:
 e96ea6d8f562caf2254b7a4e5d73b01776fa5b5c85f5597b257122d2bbb05204 2762 
flatpak-builder_0.10.7-1.dsc
 54b934770f6e77cc06885156cb8a8a0e9b069f2eb9d189d15b59d586e6dc9b3e 437780 
flatpak-builder_0.10.7.orig.tar.xz
 d567e40af7448b914cd1914e62b2369f009ec93aadb28a0ec3019823e8513fc5 5152 
flatpak-builder_0.10.7-1.debian.tar.xz
 f9429201600b824f3959e2f9f6c5b182e4d8e10154532e7d59238eea4c95d0f5 9983 
flatpak-builder_0.10.7-1_source.buildinfo
Files:
 cc41e086bc3553dea4d59159dfe65d64 2762 devel optional 
flatpak-builder_0.10.7-1.dsc
 4e657ebb182b1dd171ef55655a7a 437780 devel optional 
flatpak-builder_0.10.7.orig.tar.xz
 893071c688ea1cefc8391fe6b15f1297 5152 devel optional 
flatpak-builder_0.10.7-1.debian.tar.xz
 45b1cecd19bae14d521817dae3193527 9983 devel optional 
flatpak-builder_0.10.7-1_source.buildinfo

-BEGIN PGP SIGNATURE-

iQIzBAEBCAAdFiEENuxaZEik9e95vv6Y4FrhR4+BTE8FAlqE2awACgkQ4FrhR4+B
TE+NYQ//Y5FpWiilpmNrDZAfgKueyp4hSF7dq19ieZ9JhWK1f10BlmWHT/dmxzkV
603E0CO12a636uQAujNc5Hy3dRN8asATmEw08Uc7Bseoa3PmfECvOtlN+n0Kkf7u
wRlg2no0qswEYoJ3qrn+KQ5sxf6BKbKZyZOteMUgboJ8rDwVjtClhgoUO1L5H7nR
BWj8LBr711LQiIVey7ynd8SeXaeqdK7nckbK79RGgzlTG1t+UG1SDZ0GlumZUPve
7UOntCDTd2zRCQXbr7SZ42ry6EUu+JosggocatrMPl7ZeK0FCOnypqfcanChiPY5
x1Ey0xY9A0ABK/a72i3QE+rmX0XFwAnz8k8oulNzfcFVwORhkoGsKQyAV1DWD+JE
Jp6jVagaFIAVd18oPJl7DaJNx1thTOmaXcHqC8wmUEzF9W42hB5FgZWQqBq4LmIC
ooPzl/q7y8sW1z7KCxb8OvS17LBCcWqLMZ8x7lZyv2leK6w/JWI1ROhpXzrCjmzv
Qy7w1RMTGOdW41NFwuqFg7z9B/wLipvb1TdE6aEiphRBuAvTf2RL1ZXCwugjPGnw
Ovl4M454CfKyYYs/YI33g8zQYg+GjhmHoWf7mpAkYr6I5rnJPeMbhul126x9ULvp
l/TISvNQhNX1g4awMhSKlDqUk2MBi6gE4ls3iEKWL2qfM8aoKsM=
=l45G
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted flatpak 0.8.8-0+deb9u1 (source) into proposed-updates->stable-new, proposed-updates

2018-02-14 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Tue, 31 Oct 2017 18:51:01 +
Source: flatpak
Binary: flatpak flatpak-builder flatpak-tests gir1.2-flatpak-1.0 libflatpak-dev 
libflatpak-doc libflatpak0
Architecture: source
Version: 0.8.8-0+deb9u1
Distribution: stretch
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 flatpak- Application deployment framework for desktop apps
 flatpak-builder - Flatpak application building helper
 flatpak-tests - Application deployment framework for desktop apps (tests)
 gir1.2-flatpak-1.0 - Application deployment framework for desktop apps 
(introspection)
 libflatpak-dev - Application deployment framework for desktop apps 
(development)
 libflatpak-doc - Application deployment framework for desktop apps 
(documentation)
 libflatpak0 - Application deployment framework for desktop apps (library)
Closes: 880451
Changes:
 flatpak (0.8.8-0+deb9u1) stretch; urgency=medium
 .
   * d/watch: Watch for new 0.8.x versions
   * New upstream release from 0.8.x branch, backporting the following
 fixes from 0.10.x:
 - Add compatibility with ostree ≥ 2017.7 (in Debian, the same
   changes were already in 0.8.7-2)
 - Security: Do not allow legacy eavesdropping on the D-Bus
   session bus (Closes: #880451)
 - Ensure that LD_LIBRARY_PATH is in the correct order, respecting
   extensions' priorities
 - Ensure that extensions are mounted in the correct order even if
   they have differing priorities, fixing Steam
 - Remove PYTHONPATH, PERLLIB, PERL5LIB, XCURSOR_PATH from the
   environment given to sandboxed apps
 - Give each app a persistent cache directory for fontconfig
 - Make /usr/share/icons available in the sandbox so that sandboxed
   apps can use the host's icon theme
 - Disable debug-level FUSE logging for the document portal
 - Make the * wildcard at the end of a D-Bus filtering rule match
   zero or more components, so --talk="com.example.Foo.*" behaves
   the same as D-Bus' arg0namespace="com.example.Foo". Previously,
   it would only match exactly one component. This matches a proposed
   design for integrating equivalent filtering into future dbus
   versions.
   * d/p/0.8.8/: Drop patches that added compatibility with
 ostree ≥ 2017.7, no longer necessary
Checksums-Sha1:
 f75e557f0767771138ead79a4dafbee4282a4340 3050 flatpak_0.8.8-0+deb9u1.dsc
 a2aaeced6ca28308e3208640f7a33b36d476c6fb 749940 flatpak_0.8.8.orig.tar.xz
 7600207e7a2c0e7e3aa99cf0f0fd5d18c2107671 18052 
flatpak_0.8.8-0+deb9u1.debian.tar.xz
 fcb4a238a8c5f91cc0a92a8bb7a0d8bcde3a6672 10615 
flatpak_0.8.8-0+deb9u1_source.buildinfo
Checksums-Sha256:
 e3bb014465ebcb9829b494915053e177d924896faa644afbe7f901fc1e66d8b9 3050 
flatpak_0.8.8-0+deb9u1.dsc
 4fb500ad371e6693a9a68f4511665f6ac3c0ec18ef0ffd882409d90366386a36 749940 
flatpak_0.8.8.orig.tar.xz
 9c432b725a8c2b83caad9d6df9835400401fe7ac4c9fe59b15067d140db16f8f 18052 
flatpak_0.8.8-0+deb9u1.debian.tar.xz
 ec03a04382327959572de3ec26ed87b3e996ed18363094b543f90c41ede3998c 10615 
flatpak_0.8.8-0+deb9u1_source.buildinfo
Files:
 1e41574f66cf4af733e0492183387ee8 3050 admin optional flatpak_0.8.8-0+deb9u1.dsc
 295f69da11e034a8abff8ed5e017ea90 749940 admin optional 
flatpak_0.8.8.orig.tar.xz
 7dd07869924228a4f83b3f0d5b67f1e1 18052 admin optional 
flatpak_0.8.8-0+deb9u1.debian.tar.xz
 f488c41c0c2405b594854448eca10e74 10615 admin optional 
flatpak_0.8.8-0+deb9u1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=HppI
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted flatpak 0.10.4-1 (source) into unstable

2018-02-14 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Wed, 14 Feb 2018 17:44:47 +
Source: flatpak
Binary: flatpak flatpak-tests gir1.2-flatpak-1.0 libflatpak-dev libflatpak-doc 
libflatpak0
Architecture: source
Version: 0.10.4-1
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 flatpak- Application deployment framework for desktop apps
 flatpak-tests - Application deployment framework for desktop apps (tests)
 gir1.2-flatpak-1.0 - Application deployment framework for desktop apps 
(introspection)
 libflatpak-dev - Application deployment framework for desktop apps 
(development)
 libflatpak-doc - Application deployment framework for desktop apps 
(documentation)
 libflatpak0 - Application deployment framework for desktop apps (library)
Changes:
 flatpak (0.10.4-1) unstable; urgency=medium
 .
   * New upstream release
   * Don't install documents portal or permission store. Depend on
 xdg-desktop-portal (>= 0.10) instead: they have moved there.
   * d/p/Only-require-FUSE-if-we-re-still-building-the-document-po.patch:
 Don't depend on FUSE at build-time
Checksums-Sha1:
 ad1ea3c1efed55bf99c5faef3929e40acccea199 3162 flatpak_0.10.4-1.dsc
 d92b8b26bb8ff6f4ee6af730533c7afcdc1180b2 871336 flatpak_0.10.4.orig.tar.xz
 2c11f827681024d2d063ec5b56a99168482110ef 19708 flatpak_0.10.4-1.debian.tar.xz
 8bc6e996f2924cb840f86022e30cd1f3957e3723 11446 
flatpak_0.10.4-1_source.buildinfo
Checksums-Sha256:
 2dff2d33b0f1f80bd0d50eda6403d45fdd20dcf656031a63f14161c8cbe683c5 3162 
flatpak_0.10.4-1.dsc
 9e60561e2ccd3abf3f3a6d499b416851767b0b6f2762799bf48802527dba 871336 
flatpak_0.10.4.orig.tar.xz
 781b8cacce8a2598f7ab4452c85f7dda99a17455e5513654eccfe4bac7a045ff 19708 
flatpak_0.10.4-1.debian.tar.xz
 7d72e029f64dbecbfa806bfa544081fd0536048cb051e18915dc4e290bffe157 11446 
flatpak_0.10.4-1_source.buildinfo
Files:
 05bd526b0d4d4be3a3b38e26416a9087 3162 admin optional flatpak_0.10.4-1.dsc
 0ddda3713129fa640c73cfa573c97b65 871336 admin optional 
flatpak_0.10.4.orig.tar.xz
 1d56788b1b17a594ee440b87ebf2a801 19708 admin optional 
flatpak_0.10.4-1.debian.tar.xz
 732fe1976f5292b20e6778faed91ca34 11446 admin optional 
flatpak_0.10.4-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=ywEf
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted dbus 1.13.0-1 (source) into experimental

2018-02-08 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Thu, 08 Feb 2018 18:13:38 +
Source: dbus
Binary: dbus dbus-1-doc dbus-tests dbus-udeb dbus-user-session dbus-x11 
libdbus-1-3 libdbus-1-3-udeb libdbus-1-dev
Architecture: source
Version: 1.13.0-1
Distribution: experimental
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 dbus   - simple interprocess messaging system (daemon and utilities)
 dbus-1-doc - simple interprocess messaging system (documentation)
 dbus-tests - simple interprocess messaging system (test infrastructure)
 dbus-udeb  - simple interprocess messaging system (minimal runtime) (udeb)
 dbus-user-session - simple interprocess messaging system (systemd --user 
integration)
 dbus-x11   - simple interprocess messaging system (X11 deps)
 libdbus-1-3 - simple interprocess messaging system (library)
 libdbus-1-3-udeb - simple interprocess messaging system (minimal library) 
(udeb)
 libdbus-1-dev - simple interprocess messaging system (development headers)
Changes:
 dbus (1.13.0-1) experimental; urgency=medium
 .
   * New upstream development release
Checksums-Sha1:
 b545d5bd36a435414218032763b8e4bc79fb6471 3685 dbus_1.13.0-1.dsc
 e00bd3861d65601c89114808df30bfb4247890ff 2105239 dbus_1.13.0.orig.tar.gz
 68751e5104e063103dad46676109951b3705c261 833 dbus_1.13.0.orig.tar.gz.asc
 ae8eb4cbb6f2982000fe554af83192d5ff9cf325 59920 dbus_1.13.0-1.debian.tar.xz
 7c2e4c704028bb5beaa3bdda0b343ce5157ee5a7 7096 dbus_1.13.0-1_source.buildinfo
Checksums-Sha256:
 d834ed0d9cb828a9e62590f2bca84e5b8713b48f3d7ba63d107eea28b0da61ab 3685 
dbus_1.13.0-1.dsc
 837abf414c0cdac4c8586ea6f93a999446470b10abcfeefe19ed8a7921854d2e 2105239 
dbus_1.13.0.orig.tar.gz
 c1e308f02c598e937b393d12f764f98f471eac7d0d96cbbd197423f68df29903 833 
dbus_1.13.0.orig.tar.gz.asc
 7fc9dd1daad12b240aaa4a71d34425325eccb0e0dfd9f9e5b5a6f52b88c01c80 59920 
dbus_1.13.0-1.debian.tar.xz
 fbd868c31225d25a0653b5fc140d6171ecf58cd3cddb1087623ca02d760d376d 7096 
dbus_1.13.0-1_source.buildinfo
Files:
 8ddb825cad91824a200eb707b6f5f502 3685 admin optional dbus_1.13.0-1.dsc
 dc7d850d186604e77a911a1c842c7ce9 2105239 admin optional dbus_1.13.0.orig.tar.gz
 6104b70bf50bdb31a012dc13dd24ba90 833 admin optional dbus_1.13.0.orig.tar.gz.asc
 e4da1e4d3eb4678db6e4e254d5e8c844 59920 admin optional 
dbus_1.13.0-1.debian.tar.xz
 35835f2d33e94de2b9b4be607cd5e38e 7096 admin optional 
dbus_1.13.0-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=sRNk
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted dbus 1.12.4-1 (source) into unstable

2018-02-08 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Thu, 08 Feb 2018 15:05:57 +
Source: dbus
Binary: dbus dbus-1-doc dbus-tests dbus-udeb dbus-user-session dbus-x11 
libdbus-1-3 libdbus-1-3-udeb libdbus-1-dev
Architecture: source
Version: 1.12.4-1
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 dbus   - simple interprocess messaging system (daemon and utilities)
 dbus-1-doc - simple interprocess messaging system (documentation)
 dbus-tests - simple interprocess messaging system (test infrastructure)
 dbus-udeb  - simple interprocess messaging system (minimal runtime) (udeb)
 dbus-user-session - simple interprocess messaging system (systemd --user 
integration)
 dbus-x11   - simple interprocess messaging system (X11 deps)
 libdbus-1-3 - simple interprocess messaging system (library)
 libdbus-1-3-udeb - simple interprocess messaging system (minimal library) 
(udeb)
 libdbus-1-dev - simple interprocess messaging system (development headers)
Changes:
 dbus (1.12.4-1) unstable; urgency=medium
 .
   * New upstream stable release 1.12.4
 - d/copyright: Update
   * Standards-Version: 4.1.3 (no changes required)
   * Use debhelper compat level 11
 - Build-depend on debhelper 11.1~ for #885998 to be fixed
   * Rely on dh_installman's compat level 11 behaviour instead of
 installing man pages by hand. This reduces the amount of dh-exec
 use needed.
   * Adapt Vcs-* for migration to salsa.debian.org Gitlab
Checksums-Sha1:
 525fa3356912e99bd30abb490444a85faefcc3bc 3669 dbus_1.12.4-1.dsc
 8e083d0128c882c79dd7f2c519a2740411e96a90 2067402 dbus_1.12.4.orig.tar.gz
 b47743455cabf1985cecc10298e9706bc707a2b8 833 dbus_1.12.4.orig.tar.gz.asc
 22c84c7b1dcdbb058011c2706fb4ad54af6bb608 59908 dbus_1.12.4-1.debian.tar.xz
 dcb9aafaeed8eb8ebd63ca71ddd6136faeaa0e56 7100 dbus_1.12.4-1_source.buildinfo
Checksums-Sha256:
 0d1d346301cac23f26ba5fe6d733fcbd97f7afbd162418be5f4f9fe850677afd 3669 
dbus_1.12.4-1.dsc
 f9756b68ec68065ae2dafcf1191ee40b4cb06e9534a01f6a74d5a4d7894221c7 2067402 
dbus_1.12.4.orig.tar.gz
 d777b1f1dff2963562bcd192535d356a97c245e188bb3984cb6dea69d046b86b 833 
dbus_1.12.4.orig.tar.gz.asc
 62b7027790c6a3dfa4909f677b7dc503e1fb9016dee2d8a2238d7fd04520a96a 59908 
dbus_1.12.4-1.debian.tar.xz
 276ceb395c4c91e12aa1254de1b5ffc1d13e1a63510a7e12c7d2497af2dab819 7100 
dbus_1.12.4-1_source.buildinfo
Files:
 0b6c4a2069c4056455e91988c72d5f73 3669 admin optional dbus_1.12.4-1.dsc
 89745b5a6c45c26751dcf673d912f745 2067402 admin optional dbus_1.12.4.orig.tar.gz
 05c2df4679ad9b1d6c483bc2cd51344f 833 admin optional dbus_1.12.4.orig.tar.gz.asc
 0a29d52d6c48f14c3c8720a986adde16 59908 admin optional 
dbus_1.12.4-1.debian.tar.xz
 93764918d59b3f893e4e505f014a7aec 7100 admin optional 
dbus_1.12.4-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=EjTc
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#888816: Acknowledgement (libdbus-glib-1-doc: fails to upgrade from 'stable' to 'sid' - trying to overwrite /usr/share/doc/libdbus-glib-1-dev/AUTHORS)

2018-02-01 Thread Simon McVittie 
On Fri, 02 Feb 2018 at 00:27:23 +0100, Andreas Beckmann wrote:
> This is probably fixed in latest debhelper, #888294

Thanks, but I think the dbus-glib one was actually my fault: I
bumped debhelper compat to 11, but didn't add Breaks/Replaces for the
documentation having moved around as a result. It seems fixed now, so
unless piuparts is still sad, I'm hoping not to touch dbus-glib again
for a while.

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted flatpak 0.10.3-1 (source) into unstable

2018-01-30 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Tue, 30 Jan 2018 14:38:24 +
Source: flatpak
Binary: flatpak flatpak-tests gir1.2-flatpak-1.0 libflatpak-dev libflatpak-doc 
libflatpak0
Architecture: source
Version: 0.10.3-1
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 flatpak- Application deployment framework for desktop apps
 flatpak-tests - Application deployment framework for desktop apps (tests)
 gir1.2-flatpak-1.0 - Application deployment framework for desktop apps 
(introspection)
 libflatpak-dev - Application deployment framework for desktop apps 
(development)
 libflatpak-doc - Application deployment framework for desktop apps 
(documentation)
 libflatpak0 - Application deployment framework for desktop apps (library)
Closes: 42
Changes:
 flatpak (0.10.3-1) unstable; urgency=medium
 .
   * New upstream bugfix release
 - Fixes a D-Bus filtering bypass in flatpak-dbus-proxy
   (Closes: #42)
Checksums-Sha1:
 2be6813c91659313cdf53235b63b43adcac434c1 3192 flatpak_0.10.3-1.dsc
 e815620d3321bd17af59c2212256ee3471874ed8 870152 flatpak_0.10.3.orig.tar.xz
 a3558d85de41593e2958ed5278f7ae61f522c19a 19376 flatpak_0.10.3-1.debian.tar.xz
 b71e59f75b79d5fd17b378f5098cbbde7f7b7884 11465 
flatpak_0.10.3-1_source.buildinfo
Checksums-Sha256:
 b50a32e42dbc80a003ef576bb5d1cbe565fa663d54662106a75af11623e423d8 3192 
flatpak_0.10.3-1.dsc
 d08616cfa7f0e0a5f0234a9859b67450e35377b95929b118a1b7ca7497e91b00 870152 
flatpak_0.10.3.orig.tar.xz
 e8ba3a4086b493d5e36328ea503a976ce1f4981e2e046b56e6f799d4e2dfee75 19376 
flatpak_0.10.3-1.debian.tar.xz
 89c7bfe3daeafcbaf81e8f36894e86dad1ffc4c1defa0103881fe7b7f593419b 11465 
flatpak_0.10.3-1_source.buildinfo
Files:
 1158cf8344ce4b69d7bd598cb8657f4b 3192 admin optional flatpak_0.10.3-1.dsc
 3aff127e150c4195682479eb96c14b18 870152 admin optional 
flatpak_0.10.3.orig.tar.xz
 fb5adc33e2ea6d3a951b673debb9cf57 19376 admin optional 
flatpak_0.10.3-1.debian.tar.xz
 9c354dbe582ac0e69d6282b7a87f1ce9 11465 admin optional 
flatpak_0.10.3-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=HAWh
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#888842: flatpak: D-Bus filtering can be bypassed by a crafted authentication handshake

2018-01-30 Thread Simon McVittie 
Package: flatpak
Version: 0.6.0-1
Severity: important
Tags: security

Many Flatpak apps ship with sandboxing metadata that gives them filtered
access to the D-Bus session and/or system bus. Gabriel Campana of the
Google security team discovered that a malicious app could bypass the
intended filtering by crafting an authentication message that will be
processed as end-of-authentication by the dbus-daemon, but not recognised
as end-of-authentication by flatpak-dbus-proxy.

This has been fixed upstream in versions 0.10.3 and 0.8.9, which I'm
going to package now.

The Debian security team has not generally treated Flatpak sandboxing
bypasses as security vulnerabilities, on the basis that the sandboxed
app provides its own security policy, so no privilege boundary is crossed
(in the absence of a curated "app store" where changes to security policy
are audited, or a software-downloading UI that highlights security policy
changes, neither of which is widely deployed right now). I assume this
is still the case, but I'm cc'ing the security team for their information
(please let me know if you would like me to prepare a security update).

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted dbus-glib 0.110-2 (source) into unstable

2018-01-30 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Tue, 30 Jan 2018 10:37:38 +
Source: dbus-glib
Binary: libdbus-glib-1-2 libdbus-glib-1-dev libdbus-glib-1-doc
Architecture: source
Version: 0.110-2
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 libdbus-glib-1-2 - deprecated library for D-Bus IPC
 libdbus-glib-1-dev - deprecated library for D-Bus IPC (development files)
 libdbus-glib-1-doc - deprecated library for D-Bus IPC (API documentation)
Closes: 16
Changes:
 dbus-glib (0.110-2) unstable; urgency=medium
 .
   * d/rules: Transcode to UTF-8
   * libdbus-glib-1-doc Breaks/Replaces libdbus-glib-1-dev (<< 0.110)
 due to the documentation rearrangement in debhelper compat level 11
 (Policy §12.3) (Closes: #16)
Checksums-Sha1:
 c8cced6ab9b8abca3fabdf9ed61f96608682dfd8 2601 dbus-glib_0.110-2.dsc
 15dd9efa4cebde2e142313d4771b76305b46c14e 31200 dbus-glib_0.110-2.debian.tar.xz
 c45520f74d3ba8bb1b9f2140e9b5f93524718b35 6840 
dbus-glib_0.110-2_source.buildinfo
Checksums-Sha256:
 c9174cc67a04dd43ab5cc0811940836a4f1cf884c1c61b42da8acad1b42452bf 2601 
dbus-glib_0.110-2.dsc
 d5bbfd3eb875f8625b8a096f2e6ad2d95065e14dc2c4893b21fefa66f1c21aec 31200 
dbus-glib_0.110-2.debian.tar.xz
 6fafb64227b4dd9bb8a77ba09366d88282af63ed769181c8cce30c27f9ba2489 6840 
dbus-glib_0.110-2_source.buildinfo
Files:
 dfedbd7fa00809ca08a08d63baa6b090 2601 devel optional dbus-glib_0.110-2.dsc
 9bf2e5b1f98f9ff04e498cb51c72a5af 31200 devel optional 
dbus-glib_0.110-2.debian.tar.xz
 92e34415d6b19a0a2014fce3d72b2020 6840 devel optional 
dbus-glib_0.110-2_source.buildinfo

-BEGIN PGP SIGNATURE-

iQIzBAEBCAAdFiEENuxaZEik9e95vv6Y4FrhR4+BTE8FAlpwTRsACgkQ4FrhR4+B
TE+gGA//XVdatSZC3ltme6fXgymwkVNenjo9wp4m39ugSnOiOPLHDdXLDVsL9/cN
QLBPVdlQ5TE/siMTnsutTj6RJH4tUgIhMSxB0mjHT6jVvtHwxYtgUfmbUCUvosql
f6V+Jiek4ZeDL9SxS4lDE6hTSgwBeRzszFy5M2+uD66pA+wRH8jSkFbLK8s5CAec
piMMC4Lh0Q5rvqVpr9Wlp8sWY4nDst6MAWmhzRBhcuA57mEB9WDtMAznJOHFziQp
O8fDJnCtcRydKs55UbakAgt0WqhuPpNvKDTXALTZ1RwHRYg3RvzkCxvPDoseW6BL
wdDZwdcikjOkUu6cv9V0RQvJ0ZTU9N/ZRLM2Akof+/Ye+S9r+39LMvFfBNLCKuIf
tDa+1/sU1Mxzp8NeOemqhBbONwATS35kXa7x2WTHaAel/CvIno3TbdAywhqeRzkA
h8cFyOZZXDAFRC6qDLpdDZY50SoHg4BIxKqjjKnKd7AnXcMHHe5eSLwHErQYPdE9
uctJux9pNXXuKBrTM9KeNZDIJwm0ISg2X9TJi/QFEdLS/I0M8C2hBQn6DcFv04+m
lldQzslKl38pUkZ73INSPSuDkR6yXzCOAn460rBnElTA9/X9gSJfPfde5YbyLqwz
vcG6mkIZPa5vkujT2u9+7lKYxapeDgEWSmWBHtAJvIVaxwDPc4w=
=M23U
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Accepted dbus-python 1.2.6-1 (source) into unstable

2018-01-29 Thread Simon McVittie 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 29 Jan 2018 19:57:57 +
Source: dbus-python
Binary: python-dbus python-dbus-dbg python-dbus-dev python-dbus-doc 
python-dbus-tests python3-dbus python3-dbus-dbg python3-dbus-tests
Architecture: source
Version: 1.2.6-1
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 

Changed-By: Simon McVittie 
Description:
 python-dbus - simple interprocess messaging system (Python interface)
 python-dbus-dbg - debug build of the D-Bus Python 2 interface
 python-dbus-dev - main loop integration development files for python-dbus
 python-dbus-doc - Documentation for the D-Bus Python interface
 python-dbus-tests - simple interprocess messaging system (Python interface - 
tests)
 python3-dbus - simple interprocess messaging system (Python 3 interface)
 python3-dbus-dbg - debug build of the D-Bus Python 3 interface
 python3-dbus-tests - simple interprocess messaging system (Python 3 interface 
- tests)
Changes:
 dbus-python (1.2.6-1) unstable; urgency=medium
 .
   * New upstream release
 - d/copyright: Update
 - d/control: Update dependencies
 - dbus-glib is no longer required
   * debian/gbp.conf: use DEP-14 branch names
   * Standards-Version: 4.1.3
 - Promote -dbg packages from extra to optional priority
   * Advance to debhelper compat level 11
 - do not explicitly use dh-autoreconf, it is now the default
   * debian/copyright: Fully switch to machine-readable format
   * debian/watch: Use https
   * debian/watch, debian/upstream/signing-key.asc: Look for a signature
   * debian/python-dbus.postinst: Remove cleanup code for very old
 (pre-2006) versions. Upgrades that skip a stable release are not
 supported, so upgrades that skip 5 stable releases are right out.
   * Set Rules-Requires-Root to no
   * d/control: Set Vcs-* to point to salsa.debian.org
   * d/rules: Prefer "set -e; ..." over "set -e && ..." due to the
 side-effects of && under set -e
   * python3-dbus-dbg: Depend on ${python3:Depends}, not ${python:Depends}
   * Install .pc file into /usr/share to be nice to cross-compilers.
 It does not actually contain anything architecture-specific.
   * Enable bindnow hardening
   * Install most documentation in /u/s/d/python-dbus-doc with symlinks
 in /u/s/d/python{,3}-dbus
Checksums-Sha1:
 82c4e6e18a1315692154fa48b3294b4985933538 3278 dbus-python_1.2.6-1.dsc
 07a7a7ea5442e777b7908c3cdcb6913d59fd74ff 778893 dbus-python_1.2.6.orig.tar.gz
 5f6532edc24a1a246c97a2f665f9753bcca07932 833 dbus-python_1.2.6.orig.tar.gz.asc
 63802dba7d894fc7d66aba2d7bb909151fd2397c 32772 
dbus-python_1.2.6-1.debian.tar.xz
 8121d10b339c0135e79b78f5861aa3b24398b772 7644 
dbus-python_1.2.6-1_source.buildinfo
Checksums-Sha256:
 a81fd35d3ca142910d1f7e3f8de57b99596d6e927173a57a44a2917c57eeb72f 3278 
dbus-python_1.2.6-1.dsc
 32f29c17172cdb9cb61c68b1f1a71dfe7351506fc830869029c47449bd04faeb 778893 
dbus-python_1.2.6.orig.tar.gz
 f8a1a9bd38a96361d000f8b69a29201356869a995c0a2b4ce8b47063c53801c3 833 
dbus-python_1.2.6.orig.tar.gz.asc
 d342f25b63dbddb8664e6e1bdf400d8c7da081919124b8f56e27252d313a0533 32772 
dbus-python_1.2.6-1.debian.tar.xz
 6db0bb0b089479f56217b5e90d83c51f7f73243c6cd2d2007046048d4e3375b8 7644 
dbus-python_1.2.6-1_source.buildinfo
Files:
 c4d51ac546eacd46f11ee6f8143f52de 3278 devel optional dbus-python_1.2.6-1.dsc
 1ce1ddf2582060f8f971652ea54cc17e 778893 devel optional 
dbus-python_1.2.6.orig.tar.gz
 1d363b1aaeef974cb95d9d46ad3bd724 833 devel optional 
dbus-python_1.2.6.orig.tar.gz.asc
 86b5cb720741d576257b1c4ab657c802 32772 devel optional 
dbus-python_1.2.6-1.debian.tar.xz
 cf4a24c4319a26eab3ad42cfd832a13a 7644 devel optional 
dbus-python_1.2.6-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=K+jO
-END PGP SIGNATURE-


___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#886325: dbus daemon does not start with error "undefined symbol: XML_SetHashSalt"

2018-01-04 Thread Simon McVittie 
On Thu, 04 Jan 2018 at 14:37:53 +0100, Alberto Brosich wrote:
> dbus-daemon[1350]: /usr/bin/dbus-daemon: symbol lookup error:
> /usr/bin/dbus-daemon: undefined symbol: XML_SetHashSalt
...
> ii  libexpat1:amd642.2.0-2+deb9u1

According to /var/lib/dpkg/info/libexpat1:amd64.symbols on my stable
system, libexpat1 has provided that symbol since version 2.1~beta3, which
is older than oldoldstable. Do you have an outdated copy of libexpat.so.1
in /usr/local/lib or some similar location?

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#886218: ostree: FTBFS on big-endian CPUs: test failure in tests/test-basic-user-only.sh

2018-01-03 Thread Simon McVittie 
Source: ostree
Version: 2017.15-1
Severity: serious
Tags: patch pending upstream
Justification: fails to build from source (but built successfully in the past)
Forwarded: https://github.com/ostreedev/ostree/issues/1392

ostree fails to build from source on mips, s390x, hppa, powerpc, ppc64
and sparc64. I believe those are exactly the architectures that are
big-endian and do not disable build-time tests.

(powerpcspe and m68k are also BE, but they don't run build-time tests,
which IMO is a bad idea; those ports ship an ostree package but don't
check whether it works.)

Patch at https://github.com/ostreedev/ostree/pull/1393.

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#885976: flatpak: fails to run on symlinked path locations

2018-01-01 Thread Simon McVittie 
On Mon, 01 Jan 2018 at 10:51:13 +0530, Ritesh Raj Sarraf wrote:
> It seems flatpak has very fragile path assumptions. I have a basic setup
> with 2 HDDs, where in I have my /var/tmp/ as a symlink pointing to a
> secondary location. This shouldn't be tagged an unusual setup.

I would recommend preferring bind-mounts over symlinks when redirecting
paths that are significant to the OS to some other drive. Flatpak is not
the only tool that benefits from this: anything that uses a rearranged
view of the filesystem (mostly container technologies) will be simpler
and more reliable if it can rely on directories being directories.

> bwrap: Can't make symlink at /var/tmp: File exists

This is trying to create a symlink as the sandbox's /var/tmp, not in
your real system's filesystem namespace; but Flatpak always creates a
/var/tmp directory anyway, so that symlink creation fails.

What's in ~/.local/share/flatpak/app/${app_id}/current/active/metadata
or /var/lib/flatpak/app/${app_id}/current/active/metadata for the app
in question?

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#884897: dbus-x11: .xinitrc requires "dbus-update-activation-environment --all"

2017-12-21 Thread Simon McVittie 
Control: tags -1 + moreinfo

On Thu, 21 Dec 2017 at 01:34:32 -0200, Carlos Eduardo M. Santos wrote:
> The following problems started after dist-upgrading from jessie to buster

I hope you upgraded from jessie to stretch first, and then from stretch
to buster. Upgrades that skip a release are not supported by Debian.
(If it worked, then it's *probably* OK, but please go via stretch on any
other machines you upgrade in the same way.)

> 1. startx takes a lot of time to launch X;
> 2. gnome-terminal doesn't start.

How do you get into the environment from which you run startx? Is it a
text-mode console (getty/login) or something else?

Is dbus-user-session installed? Is libpam-systemd installed?

What's in your /etc/X11/Xsession.options?

If you drop a script into /etc/X11/Xsession.d/01debug-early or similar
that runs

env | LC_ALL=C sort | logger -t Xsession-early

then look at the systemd journal, what environment variables are set
there? (In particular LANG, LANGUAGE, LC_anything, DBUS_anything,
XDG_RUNTIME_DIR)

Similarly, if you put

env | LC_ALL=C sort | logger -t Xsession-late

right at the beginning of 95dbus_update-activation-env, what happens there?

> In journalctl, I found 2 famous messages:
> - gnome-terminal-server[18005]: Unable to init server: Could not connect: 
> Connection refused
> - Failed to activate service 'org.gnome.Terminal': timed out 
> (service_start_timeout=12ms)

I'm sure you get more messages than just those two. Please show me the
rest of what's logged when you:

- start from not being logged in
- log in at the text-mode prompt, or whatever else you do to get into the
  environment from which you want to run startx
- put a marker in the log: logger -t marker "now I am logged in"
- run startx

The output of systemd-cgls after you get into your GUI session (use
a non-D-Bus-related terminal like xterm) would also be useful
information.

Regards,
smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#883756: dbus-user-session: blocks upgrades; installing dbus-user-session yields a change of the init system

2017-12-07 Thread Simon McVittie 
(Please keep the PulseAudio maintainers in Cc: if this is a bug at all,
then it's in pulseaudio, not dbus. But I don't think it's a bug.)

On Thu, 07 Dec 2017 at 15:08:20 +0100, Vincent Lefevre wrote:
> On 2017-12-07 11:57:05 +, Debian Bug Tracking System wrote:
> > You have (apparently deliberately) chosen to not use Debian's default
> > init system,
> 
> This is not completely true: When the machine was installed in 2010,
> systemd was not Debian's default init system. I chose not to switch
> because I do not want to silently break config that was done for
> the init system currently used on the machine (this is not my main
> machine, and I still use it mainly for old non-desktop stuff on it,
> sometimes for testing regressions).

During the wheezy-to-jessie upgrade, the sysvinit "real" binary package
from wheezy was replaced by a transitional package that depended on
systemd-sysv|sysvinit-core. You made a choice not to follow the project's
default at that point, by installing the non-default/non-preferred
alternative, sysvinit-core, rather than the default/preferred alternative,
systemd-sysv.

> I'm wondering. Instead of recommending dbus-user-session, shouldn't
> pulseaudio recommend "default-dbus-session-bus | dbus-session-bus"
> (this is what evince does)?

I can see why you'd think so, but no. pulseaudio is not an ordinary
D-Bus client (like evince) or an ordinary D-Bus service (like
gnome-terminal-server), because it gets started "eagerly" for its
side-effects, not just on-demand.

In recent pulseaudio versions on systemd systems, the pulseaudio
service is started by `systemd --user`. This is outside the scope of the
per-X11-session instance of `dbus-daemon --session` created by dbus-x11
(one pulseaudio per uid, not one per X11 session), so the pulseaudio
service would have no DBUS_SESSION_BUS_ADDRESS and no D-Bus session
bus connection, making it impossible for session clients to communicate
with it via D-Bus (which I assume some of them want to do). With
dbus-user-session, the scope of the session bus expands to be the same
as the scope of `systemd --user` and pulseaudio, so pulseaudio can use
it again.

Historically, the scope of the pulseaudio instance was <= the scope
of the X11 session, which was <= the scope of the `dbus-daemon --session`,
so we didn't have this problem - except when not using X11, in which
case it would just not work.

The recommendation should ideally be something like
"dbus-user-session | NOT(booted using systemd)", but we don't have the
syntax to express that.

pulseaudio having "Recommends: dbus-user-session | sysvinit-core" is
probably the closest it could get. However, pulseaudio has degraded
functionality on systems without `systemd --user` anyway (to have its
historical functionality back, it would need reconfiguration to turn
autostarting back on), so it might not be wise to give it a Recommends
that appears to advocate use with sysvinit.

Arguably pulseaudio's Recommends on libpam-systemd (added for #882142)
was insufficient and should have been
"Recommends: systemd-sysv, libpam-systemd", because that's what you need
to have a `systemd --user`. That way you'd still find yourself breaking
a Recommends, but I think that's a reasonable representation of how well
pulseaudio-as-currently-packaged is supported on this particular system.

> I was using aptitude, which signaled the broken Recommends. But I don't
> want to break Recommends (the choices and consequences are not always
> clear, and this can confuse future upgrades).

If you're in an unusual/non-default situation, and you're having to
intervene to make things work as expected (for example by deleting or
editing /etc/pulse/client.conf.d/00-disable-autospawn.conf) then I think
an unsatisfied Recommends is a reasonable representation of that.

(I have about 100 unsatisfied Recommends on my development laptop and
haven't found it to be a significant problem, although admittedly
that's mostly because check-all-the-things and diffoscope are rather
enthusiastic with their use of Recommends.)

> FYI, I was wondering that if a Recommends needed to be broken, which
> one should be broken: the pulseaudio → dbus-user-session one, or the
> dbus-user-session → systemd-sysv one. As you see, this was not clear
> without your explanations.

I hope my explanation made it clear why it's the
pulseaudio → dbus-user-session recommendation that would have to break.

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#805449: Amplification

2017-11-26 Thread Simon McVittie 
On Sun, 27 Aug 2017 at 10:45:30 +0100, Barak A. Pearlmutter wrote:
> If I might ask, how is this currently handled with
> unattended-upgrades? [...] Just leaving the system vulnerable
> until a coincidental reboot doesn't seem appropriate.

It is (or should be) handled the same way as upgrading the kernel, which
cannot be replaced in-place; display managers like gdm, which cannot
be replaced in-place without disrupting user sessions; and in general
anything that isn't conveniently restartable by a systemd unit or
init script, like user sessions and user-provided code.

dbus.postinst touches /var/run/reboot-required, which is apparently
used by unattended-upgrades to detect that a reboot is needed
(/etc/kernel/postinst.d/unattended-upgrades does the same thing).
If there are other APIs for notifying the rest of the system that a
reboot is needed, I'd be happy to add them - please file a wishlist bug
with a link to their API documentation. #867263 suggests that there
might be some other API that provides more information than "a reboot
is needed", but doesn't specify who consumes that information or what
its "API" is, so is not currently actionable.

In general, unattended upgrade infrastructure can't know for sure that
a reboot isn't needed. If there's a bad enough security vulnerability
to be seriously concerned about it, the safe thing to do is to reboot
the system, to ensure that there can't be any lurking libraries or
configurations from before the upgrade. I know this is disruptive,
particularly on systems that have been designed with the assumption
that reboots don't often happen, but it's also the only way to be
sure; and system designs have to be able to cope with semi-frequent
reboots *anyway*, because the kernel semi-frequently has exploitable
vulnerabilities fixed.

This is one of the main reasons that non-apt OS deployment mechanisms
like OSTree require a reboot to apply an upgrade. The other is that
their designers want to perform an atomic cut-over from one
good/consistent state to another, eliminating the transitional
undefined/broken state that occurs during apt/rpm/etc. upgrades, which
could cause incorrect behaviour when related code runs during the upgrade
or if the upgrade is interrupted by a power failure, an unexpected reboot
or sysadmin action.

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#882739: Bug#882739: dbus: Unsupported command "stopping"

2017-11-26 Thread Simon McVittie 
On Sun, 26 Nov 2017 at 15:14:26 +0100, Michael Biebl wrote:
> Am 26.11.2017 um 13:02 schrieb Alex:
> >  invoke-rc.d dbus restart
...
> Your/the script which restarts the services should probably
> redirect the output of the restarts to /dev/null

Also, please note that restarting the system dbus-daemon is not a
supported action (#805449). Restarting it, other than by rebooting,
breaks system services' assumptions.

The only supported way to restart the system dbus-daemon for a physical
machine or VM is to reboot; the only supported way to restart the system
dbus-daemon for a container is to restart the container.

(If a system has been updated to resolve security vulnerabilities,
rebooting is probably a good idea anyway - that guarantees that nothing
still has the old versions of services or libraries mapped into memory.)

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#882607: libdbus-1-3: steam crashes at start with latest libdbus update

2017-11-24 Thread Simon McVittie 
Control: reassign -1 steam
Control: forwarded -1 
https://github.com/ValveSoftware/steam-for-linux/issues/5201

On Fri, 24 Nov 2017 at 18:45:10 +0100, Axel R. wrote:
> Updating libdbus-1-3:i386 (1.12.0-1, 1.12.2-1) led to steam client crashes 
> with:
> dbus[4877]: arguments to dbus_message_new_method_call() were incorrect, 
> assertion "path != NULL" failed in file ../../../dbus/dbus-message.c line 
> 1362.
> This is normally a bug in some application using the D-Bus library.
> D-Bus not built with -rdynamic so unable to print a backtrace

This is a bug in Steam, which I think is specifically in the bundled
copy of SDL 2.0.6 that it uses. It will crash in this way on everything
that isn't a Debian derivative.

On Debian derivatives, until recently a Debian-specific patch downgraded
the response to failing the precondition check to a warning (this was
done "temporarily" 11 years ago). "export DBUS_FATAL_WARNINGS=0" before
running Steam would do the same thing as that patch. This will avoid the
crash and just spam warnings instead, unless you are unlucky with the
contents of uninitialized memory, in which case it might still crash.

Workarounds:

* don't have or use ibus ("unset XMODIFIERS" before launching Steam
  is said to work)
* or, export DBUS_FATAL_WARNINGS=0

I think this would be better worked around in /usr/games/steam than in
libdbus, unless the same failure mode is very widespread (but hopefully
it isn't, because if it was, the same code would crash on non-Debian).

Steam will hopefully pick up SDL 2.0.7 soon, which is believed to fix
the crash.

Regards,
smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#881342: dbus: apt-get install hangs when DBUS is setup, on a Minimal system

2017-11-10 Thread Simon McVittie 
On Fri, 10 Nov 2017 at 20:28:55 +0530, Veek M wrote:
> Nov 10 19:52:01 deathstar dbus-daemon[17738]: Failed to start message bus: 
> Could not get UID and GID for username "messagebus"

Your username database seems to be missing the dbus-daemon's required system
user. What do these commands output?

cat /etc/nsswitch.conf
getent passwd messagebus
getent group messagebus
ls -l /usr/lib/dbus-1.0/dbus-daemon-launch-helper

dbus.postinst invokes adduser(8) to create that user before
it starts the dbus-daemon. If you are using LDAP, NIS or other
remote/centralized/unusual sources of usernames and groups, you will
likely need to make sure the messagebus user is available on the local
system (even before networking comes up) to avoid circular dependencies
during boot.

Trying to run

bash -x /var/lib/dpkg/info/dbus.postinst configure 1.10.22-0+deb9u1

might also provide useful information.

Trying to run

adduser --system --home /nonexistent --no-create-home --disabled-password 
--group messagebus

might also be interesting; it might work around the issue, or it might
produce output that indicates what is wrong.

> Nov 10 19:52:26 deathstar systemd[1]: dbus.service: Main process exited, 
> code=exited, status=1/FAILURE
> Nov 10 19:52:26 deathstar systemd[1]: dbus.service: Unit entered failed state.
> Nov 10 19:52:26 deathstar systemd[1]: dbus.service: Failed with result 
> 'exit-code'.

If the messagebus user is not available, then this (and the rest of
the failures you quoted) is expected. The system dbus-daemon runs as a
dedicated system user (messagebus) for privilege-separation, and will
not work without it. The only way it could work without that user would
be to run as root, which is a significant security risk.

> Nov 10 19:51:02 deathstar systemd-udevd[233]: specified user 'usbmux' unknown

udev also complains about a missing user, although unlike for dbus, this
isn't immediately fatal, because udev doesn't immediately need to run a
daemon as that user.

Regards,
smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#880451: flatpak: older flatpak-dbus-proxy versions allowed legacy D-Bus eavesdropping

2017-10-31 Thread Simon McVittie 
Package: flatpak
Version: 0.8.5-2
Severity: important
Tags: security

In Flatpak versions prior to 0.9.9 (mainline) and 0.8.8 (0.8.x), the
flatpak-dbus-proxy that is optionally used to filter D-Bus traffic did not
forbid match rules with eavesdrop="true", as used by dbus-monitor versions
prior to 1.9.10. Such match rules could be used by a sandboxed app to
spy on non-sandboxed apps' D-Bus session bus method calls (a local
confidentiality breach).

Apps that are configured to have unrestricted D-Bus access
([Context] sockets=session-bus;, see flatpak-metadata(5)) can do this even
in later versions, but this is not considered to be a bug: unrestricted
D-Bus access is just as unrestricted as you might expect it to be.

Mitigations:
* The apps that could exploit this are not entirely untrusted (the user
  has chosen to install and run them, and in particular has given them
  access to the attack surface of the Linux kernel)
* In practical sandboxed apps, the ability to spy on X11 (which
  everything is going to need to have until Wayland is ubiquitous)
  is more sensitive than the ability to spy on D-Bus
* We can't spy on the system bus like this, because of the security
  boundary between users

My guess is that the security team is not interested in issuing a DSA
for this vulnerability and would prefer me to issue a stable update
(I'm going to ask the SRMs whether they'll accept 0.8.8 into stable,
and if not, propose a 0.8.7-2~deb9u2 version). Is my guess correct?

Thanks,
smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#880043: flatpak: Autopkgtests always fail on Ubuntu

2017-10-29 Thread Simon McVittie 
Control: tags -1 pending

On Sat, 28 Oct 2017 at 17:01:32 -0400, Jeremy Bicha wrote:
> The autopkgtest for flatpak has never succeeded on Ubuntu.
...
> Do you think this might be similar to the proxy issue we had with ostree?

Almost certainly: the logs show HTTP 503 errors, presumably from the
proxy. I've applied the same change as for ostree, and will upload when
the current flatpak migrates to testing.

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#879898: dbus: memory leak in dbus-daemon consumes over 5GB memory

2017-10-27 Thread Simon McVittie 
On Fri, 27 Oct 2017 at 13:06:32 -0400, Nicholas D Steeves wrote:
> Would using memleax help?  I'm 90% done packaging it, in case it looks
> useful.  Packaged because vagrant can't attach to an existing process.

>From the other information you've given I can tell you with reasonable
certainty that (at least a large part of) the "leaked" memory is not
leaked, but is really still in use - the dbus-daemon is genuinely
trying to process millions of messages to kded5. I can't say why,
though.

> Is it possible for dbus-daemon to signal to the calling application
> that a queue is full?

In principle it might have been if it was defined 10 years ago, but
there is no protocol defined for communicating that fact, and it isn't
clear what an application would do about it anyway. Popping up messages
to annoy the user is generally frowned upon if there is nothing that
most users can do about it...

The dbus 1.11.x development branch (from which a 1.12.0 stable version
will be released soon) does log this information to syslog or the
systemd Journal, but 1.10.x didn't.

The system bus (which has finite limits) responds to excessive messages in
an incoming queue by slowing down reading from that sender, and responds
to excessive messages in an outgoing queue by dropping messages on the
floor. It might be a good idea for the session bus to have a rather smaller
limit on its incoming queues than the 1 GB limit that it has now, perhaps
the 127 MiB that the system bus uses (which tbh could probably also be
reduced) - then floods of messages would get slowed down, but eventually
be processed. Individual messages are allowed to exceed that limit by
up to 1 message, so maximally-sized messages could still be processed
anyway.

> :1.7.stats: variant uint32 100016

That is indeed slightly more than the arbitrary 1 GB limit that the
session bus has. The limit is conceptually only there to stop byte
counts overflowing a signed 32-bit integer, because session bus users
are trusted to not carry out deliberate denial-of-service attacks on each
other; but I think there would probably be value in turning down the
incoming message limit a bit to prevent accidental denial-of-service.
That would throttle reading from very spammy peers, but wouldn't help
when dealing with peers that read messages slower than they should.

Turning down the *outgoing* message limit is dangerous (it results in
messages being discarded unrecoverably) so we have to be very cautious
about reducing it.

> > dbus-send --session --dest=org.freedesktop.DBus --type=method_call \
> > --print-reply /org/freedesktop/DBus \
> > org.freedesktop.DBus.Debug.Stats.GetStats
> 
> I tried this just now and dbus-send seems to have errored with exit
> status 130:
> Must use org.mydomain.Interface.Method notation, no dot in
> "/org/freedesktop/DBus"

You have an extra argument somewhere, possibly a space after one of the
backslashes.

> Plasma's NM frontend wouldn't reconnect to the
> network, and I before I realised it I had killed plasmashell ; sleep
> 3; kstart plasmashell.  The dbus-daemon and kded5 daemon seem to be
> unaffected, as expected, but maybe this causes problems with dbus?

Terminating random processes shouldn't be a problem in general (other
than to those processes and anything that was relying on them), but
if some component has a bug and has responded to the unexpected
disappearance by going into a busy-loop, it's possible that the
busy-loop could result in it sending a flood of messages.

Or the inability to reconnect to the network might itself have been a
symptom of a flood of messages, rather than part of the cause.

However, I will say this: if you have a serious problem (like a key
desktop component getting stuck), and you respond to it by killing
individual components rather than by terminating the whole session
(e.g. logging out and back in), then you are certainly in uncharted
territory. This is the sort of thing that in principle ought to work,
but it is never going to be systematically tested, so it is not at all
surprising if it has or exposes bugs.

> IIRC, a couple of days ago kded5 consumed 100%
> of one core for quite some time.  Maybe that's when it was making all
> of these dbus connections?

Lots of messages rather than lots of connections, I think, but most
likely yes.

> I'm honestly not sure if kded5 is truly at
> fault, of if it became overwhelmed when an application spammed [one
> of] its dbus interfaces.

It could be either one.

> Can we keep these two bugs unmerged but associate them somehow?

As far as I know there is no machine-readable way to do this. Just
mention each one in a mail to the other.

Looking at the dbus-daemon stats:

>  string "ListMemPoolUsedBytes"
>  variant uint32 947456112
>  string "ListMemPoolCachedBytes"
>  variant uint32 3086736
>  string "ListMemPoolAllocatedBytes"
>  variant uint32 1610

[Pkg-utopia-maintainers] Bug#879898: dbus: memory leak in dbus-daemon consumes over 5GB memory

2017-10-27 Thread Simon McVittie 
On Thu, 26 Oct 2017 at 23:58:59 -0400, Nicholas D Steeves wrote:
> I hope to hear back from you soon, because Monday I will need to use
> my laptop and I will have to kill the misbehaving dbus-daemon to
> reclaim memory at that time.

This will end your KDE login session rather unceremoniously. If
possible, log out from KDE rather than letting the dbus-daemon die
from the OOM killer or a manual kill command. This should make the
dbus-daemon exit automatically, but if it doesn't, log in to a
text console (as your ordinary user or as root) and kill the
`dbus-daemon --session` process (process 958) from there.

Please make sure you don't kill `dbus-daemon --system` by mistake
(only root can do this); if you do, you'll have to reboot to fix it.

> Here is the only section that jumps out to me:
>   0x7f87feb730d3 in __epoll_wait_nocancel () at 
> ../sysdeps/unix/syscall-template.S:84
>   84  ../sysdeps/unix/syscall-template.S: No such file or directory.
>   #0  0x7f87feb730d3 in __epoll_wait_nocancel () at 
> ../sysdeps/unix/syscall-template.S:84

Unfortunately this backtrace only indicates "dbus-daemon is idle and
waiting for something interesting to happen". It should normally be in
this state 99% of the time. If it was in a busy-loop that was consuming
all the CPU, a backtrace might be more interesting, but for memory
consumption it's unlikely to help.

The process using all the memory is the standard session bus (dbus-daemon
--session), which has essentially no resource limits (everything on it
is considered equally trusted), so the root cause is probably that some
misbehaving applications or services in your user login session have
used a calling pattern that makes the dbus-daemon use a lot of memory
on their behalf. Sending messages very rapidly to a service that is slow
to process them is one thing that is known to have this effect.

As far as I know, all ways to trigger rapid memory consumption involve
rapid message sending and receiving, so if the dbus-daemon's memory
use is still growing, you can probably see what's happening by running
dbus-monitor, or by looking at top and seeing which other D-Bus-related
processes are actively running. While debugging, you can use "kill -STOP"
and "kill -CONT" to pause and resume the dbus-daemon (which will pause
message processing, so many applications and services will not work
while it is paused, in particular many graphical applications and
dbus-send).

You can correlate bus names (the things that look like :1.23 or
org.gnome.Software) with process IDs by using:

dbus-send --session --dest=org.freedesktop.DBus --type=method_call \
--print-reply /org/freedesktop/DBus \
org.freedesktop.DBus.GetConnectionCredentials "string:$name"

where $name is the bus name.

The dbus-daemon also records some potentially useful statistics for
memory consumption and related things, and this feature is compiled in
to Debian's dbus-daemon. Please try running this:

dbus-send --session --dest=org.freedesktop.DBus --type=method_call \
--print-reply /org/freedesktop/DBus \
org.freedesktop.DBus.Debug.Stats.GetStats

and send the results to this bug report. You could also try retrieving
details of individual connections:

dir="$(mktemp -d)"
echo "Look in $dir for connection details"
dbus-send --session --dest=org.freedesktop.DBus --type=method_call \
--print-reply /org/freedesktop/DBus org.freedesktop.DBus.ListNames | \
perl -ne 'print("$1\n") if /^\s*string "(.*)"$/' | \
while read name; do \
dbus-send --session --dest=org.freedesktop.DBus --type=method_call \
--print-reply /org/freedesktop/DBus \
org.freedesktop.DBus.Debug.Stats.GetConnectionStats "string:$name" \
> "$dir/$name.stats"
done

(It is expected that you get an error message "Error
org.freedesktop.DBus.Error.InvalidArgs: GetConnectionStats is not
meaningful for the message bus "org.freedesktop.DBus" itself",
and it is also OK to get a small number of messages like "Error
org.freedesktop.DBus.Error.NameHasNoOwner: Could not get statistics of
name ':1.92': no such name".)

This will leave a lot of text files in $dir/*.stats (in my GNOME session
there are 127 of them). Then look in $dir/*.stats for a connection or
connections with much larger numbers than the rest. Again, you can use
GetConnectionCredentials to correlate them with process IDs.

Regards,
smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#878878: default-dbus-session-bus: Not installable on non-Linux

2017-10-17 Thread Simon McVittie 
On Tue, 17 Oct 2017 at 15:46:27 +0100, James Clarke wrote:
> On 17 Oct 2017, at 15:12, Simon McVittie  wrote:
> > I can't help wondering whether the non-Linux ports should configure their
> > buildds to use the aptitude dependency resolver (as used in -backports)
> > or the aspcud resolver (as used in experimental) to get out of this
> > situation. Surely this can't be the first time this has happened?
> 
> They could, but then the resolvers differ across architectures, and that will
> likely cause its own set of confusing problems. I'm not aware of many cases
> where using apt has been a problem like this, though I could be wrong.

The resolvers already differ between suites and cause different confusing
problems, but I get your point.

> > Can you point me to an example of buildd logs where the Linux build
> > succeeded and !Linux builds failed as a result of this?
> 
> OpenCV currently suffers from this[0] (hence why Mattia is Cc'ed).

Thanks. Hmm, so the error is:

sbuild-build-depends-opencv-dummy : Depends: libgtk-3-dev but it is not 
going to be installed

which is amazingly helpful. Some versions of sbuild run a solver or
dose-depcheck to try to work out why, but it looks like this one doesn't.

This buildd appears to be running sbuild 0.65.2, which is oldstable. Is
this a known issue on kFreeBSD? I would have assumed that porters
would want to stay close to what the release architectures have, which
is 0.73.0?

The dependency chain:

libgtk-3-dev Depends dconf-gsettings-backend | gsettings-backend
dconf-gsettings-backend Depends dconf-service
dconf-service Depends d-d-s-b | d-s-b

so we already have two layers of "if you accepted the alternative you'd
be fine". I thought sbuild's allergy to alternatives only extended as
far as direct dependencies?

> it's a shame
> wanna-build's use of dose-builddebcheck doesn't match apt's behaviour)

It is. If the buildd was running a newer sbuild, I think its log would
at least explain the situation in more detail.

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#878878: default-dbus-session-bus: Not installable on non-Linux

2017-10-17 Thread Simon McVittie 
On Tue, 17 Oct 2017 at 15:12:11 +0100, Simon McVittie wrote:
> On Tue, 17 Oct 2017 at 13:41:31 +0100, James Clarke wrote:
> > Please modify dbus, either with more complicated Provides
> 
> This requires dbus-user-session to become Architecture: linux-any
> instead of all

Seems to work, so I've pushed it to git. In the next upload, we'll
have:

dbus-user-session (Architecture: linux-any) Provides: d-d-s-b
dbus-x11 (Architecture: any) Provides: d-d-s-b [!linux-any]

so every architecture will have exactly one d-d-s-b implementation.

Build-time tests are still responsible for starting a dbus-daemon
if they need one: the API guarantee of the dbus-session-bus virtual
package is only for "normal" GUI logins (deliberately left a bit vague
so that dbus-x11 can be an implementation of it), and buildds are not
one of those. The preferred interfaces for this are to use the
dbus-run-session "adverb":

dbus-run-session -- make check

or invoke dbus-daemon directly if more control is needed:


https://sources.debian.net/src/flatpak/0.8.5-2%2Bdeb9u1/tests/libtest.sh/#L259

Regards,
smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#878878: default-dbus-session-bus: Not installable on non-Linux

2017-10-17 Thread Simon McVittie 
Control: tags -1 confirmed pending
Control: severity -1 wishlist

On Tue, 17 Oct 2017 at 13:41:31 +0100, James Clarke wrote:
> Please modify dbus, either with more complicated Provides

This requires dbus-user-session to become Architecture: linux-any
instead of all (lots of duplicate per-Linux-architecture copies of
the same thing), but at least it doesn't involve going through NEW,
and arguably making it linux-any is more correct. In principle I'm OK
with doing this, although I'll need to try a build on a porterbox to
check I've done the architecture specifier syntax correctly.

It's a pity we don't have a way to express "this is
architecture-independent, but should only appear in a subset of the
apt Packages files". If we did, dbus-user-session could be
"all [linux-any]" or whatever the syntax was, and continue to provide
d-d-s-b.

Alternatively, I'd review patches if someone wants to teach
dbus-user-session how to support non-systemd, although that would almost
certainly mean someone writing a PAM module to do the work (an alternative
to libpam-systemd) and being its upstream and Debian maintainer. Sorry,
I'm not willing to maintain that part, only "glue" analogous to what's
already in the package for systemd.

The design requirements for dbus-user-session are:

* one `dbus-daemon --session` per uid
* after the PAM login stack has run, either or both (preferably both):
  - XDG_RUNTIME_DIR must be set to a unique directory per uid on a
tmpfs (or non-Linux equivalent) with a listening socket at
$XDG_RUNTIME_DIR/bus
  - DBUS_SESSION_BUS_ADDRESS must be set to the right thing
* connecting to the given address must result in a connection to the
  `dbus-daemon --session` (it can be started lazily with socket
  activation, like systemd does, or eagerly, like dbus-launch does)
* after the PAM logout stack has run, if and only if this was the uid's
  last parallel login session, the dbus-daemon should be terminated
  and the XDG_RUNTIME_DIR should be deleted

In systemd-land, pam_systemd (which is misnamed, it's really part of
logind) notifies logind about the login/logout, logind creates/destroys
the XDG_RUNTIME_DIR if this is the first login/last logout, logind tells
systemd-as-pid-1 to start `systemd --user` if this is the first login or
stop it if this is the last logout, and `systemd --user` loads the
dbus.socket and dbus.service provided by dbus-user-session.

Ubuntu used to have a PAM module to set up and tear down XDG_RUNTIME_DIR,
but they were its upstream, so now that they use systemd-logind it's
unmaintained.

> or by making default-dbus-session-bus an actual
> meta-package

When I proposed (default-)dbus-session-bus I was told not to use a
real package, for reasons that were never particularly clear to me.
(Thread: ,
related Policy bug documenting the metapackages:
)

If I had used real packages, the real package would have been
dbus-session-bus, which would have had alternative dependencies
on dbus-user-session | hypothetical-future-kdbus-thing | dbus-x11
(with [linux-any] scattered around where appropriate). However,
the virtual package approach has been widely adopted now, so I'll
go the other way.

> This has recently become a problem because dconf-service
> 0.26.1-1 now depends on default-dbus-session-bus | dbus-session-bus,
> making it uninstallable on the buildds for non-Linux unless their build
> deps happen to have something else depending on dbus-session-bus (or
> dbus-x11).

I can't help wondering whether the non-Linux ports should configure their
buildds to use the aptitude dependency resolver (as used in -backports)
or the aspcud resolver (as used in experimental) to get out of this
situation. Surely this can't be the first time this has happened?

Can you point me to an example of buildd logs where the Linux build
succeeded and !Linux builds failed as a result of this?

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#876980: bubblewrap: feline mascot is non-Free

2017-09-27 Thread Simon McVittie 
Package: bubblewrap
Version: 0.1.8-3
Severity: serious
Tags: upstream fixed-upstream pending
Justification: Policy 2.2.1

The cat picture displayed in the HTMLized README on Github
(bubblewrap.jpg) is a CC-BY-ND photo sourced from Flickr. This is not a
DFSG-compliant license, and the prevailing interpretation of the Debian
social contract is that the DFSG is intended to be applied to all parts
of all works in main, however inconsequential.

It seems rather absurd that this is a release-critical bug, but whatever.
Fixing it will not change the contents of the binary package, since we do
not actually install the offending cat picture.

If you are disappointed by this change and have (or can take) a Free
photo of a kitten or similarly adorable pet enjoying bubble wrap, please
send it upstream.

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#876880: flatpak: FTBFS on hppa: tests/test-oci.sh: expected GVariant of type 'ay' but received value has type 'a{sv}'

2017-09-26 Thread Simon McVittie 
Source: flatpak
Version: 0.9.98-1
Severity: important

On Tue, 26 Sep 2017 at 14:41:58 +0200, Helge Deller wrote:
> That has happened in the meantime.
> All buildds (beside mx3210?) have full namespace support.

I find it amusing that PA-RISC, an architecture that has fallen out of
Debian for being too old, is the only one where recent namespace features
can actually be exercised during build-time testing...

> Now flatpack on hppa fails in two tests only:
> ERROR: tests/test-oci.sh - too few tests run (expected 6, got 2)
> ERROR: tests/test-oci.sh - exited with status 133 (terminated by signal 5?)

That's really only one test, but yes.

> Maybe it's related to this log entry:
> + flatpak install --user -v oci-remote org.test.Hello
> (flatpak install:18217): GLib-ERROR **: g_variant_new: expected GVariant of 
> type 'ay' but received value has type 'a{sv}'

Looks like it. I'm opening a new bug number for this.

Regards,
smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#876743: flatpak: FTBFS on hppa: Creating new namespace failed: Invalid argument

2017-09-25 Thread Simon McVittie 
On Mon, 25 Sep 2017 at 17:29:04 -0400, John David Anglin wrote:
> In the recent successful builds on panama, it seems bwrap fails and the
> tests were skipped.

That's normal on official buildds and machines that resemble them,
unfortunately. Flatpak uses bubblewrap (bwrap) for lightweight containers,
which is fine in a normal directory on a VM or real machine, but often
can't work when already inside a container or chroot, which is why
the Flatpak tests try a trivial bwrap run first to see whether they
can proceed.

I think the FTBFS that prompted this bug report was on a machine where
container syscalls work a bit better than on panama and on release
architectures' official buildds (so the tests aren't skipped completely),
but not as well as they do on my test VM (so the tests don't actually
*pass* either).

Official buildds are also locked-down for security reasons, and that
interferes with Flatpak's tests, causing some of them to be skipped
(kernel module loading isn't allowed, so no FUSE, for example).

> The bell and physik buildds have more memory (8 and 12 GB, respectively).

Flatpak doesn't need anywhere near that much RAM (I test it successfully
on an amd64 autopkgtest-virt-qemu VM with the default 1G RAM), so that's
unlikely to be relevant.

> I doubt the age of the kernels is the problem as current upstream kernels
> (e.g., v4.13.x) run on hppa.

OK, good to know. I thought I remembered some of the non-release
architectures needing very specific old kernels, but I'm glad to hear
hppa isn't one of those.

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#876743: flatpak: FTBFS on hppa: Creating new namespace failed: Invalid argument

2017-09-25 Thread Simon McVittie 
On Mon, 25 Sep 2017 at 22:00:51 +0200, Helge Deller wrote:
> We have stability problems with latest debian kernels.
> That's why I've compiled a 4.9.50 (stable series) kernel and run it now
> on our buildds.
> Flatpack did built successfully in the past:
>  https://buildd.debian.org/status/logs.php?pkg=flatpak&arch=hppa
> So, I think in general there are no problems with flatpak on hppa.

Either that, or the build-time tests that would have indicated a problem
were skipped because the buildd environment didn't allow them to run
(which in fact they seem to have been in for example
,
which is functionally the same code as the failing 0.9.12-2 - so we can't
actually know whether flatpak works on hppa or on the majority of Debian
architectures until someone tries it).

Unfortunately, we can't rely on either buildds or autopkgtest having
an environment where container technologies like bubblewrap can be
tested meaningfully, and autopkgtests are only run for a couple of
architectures (and certainly not non-release architectures like hppa).

> I plan to rebuild a new 4.9.50 kernel with all kernel namespace features
> enabled soon, and then I can give-back flatpak.
> Maybe it will succeed then?

Either enable all the namespace features that Debian does, or disable
enough namespaces that bwrap just can't run. Both extremes are fine,
it's the middle that has caused this FTFBS :-)

Regards,
smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#867263: #867263: dbus: /var/log/reboot-required.pgks not updated when /var/log/reboot-required is touched

2017-09-25 Thread Simon McVittie 
Control: noowner -1
Control: severity -1 wishlist

On Wed, 05 Jul 2017 at 09:35:14 +, sam penny wrote:
> reassign 867263 dbus 1.10.18-1

When you reassign bugs, please cc the maintainer of the new package and
give a summary of any information they might need, or quote the original
report. We are not automatically sent a copy of your bug report.

> # I'm not sure this is the right thing to do, but I figure a potentially
> incorrect ownership is better than none, right?
> owner 867263 pkg-utopia-maintainers@lists.alioth.debian.org

FYI, setting the owner is rarely appropriate unless you are the owner (or
possibly their employer). It is meant to indicate "this person has taken
responsibility for dealing with this bug". Setting the package's maintainer
as the owner of a bug is somewhat redundant, because in the absence of
an owner, the normal assumption is that the maintainer (in this case a
team) is responsible for dealing with bugs.

smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#867263: dbus: /var/log/reboot-required.pgks not updated when /var/log/reboot-required is touched

2017-09-25 Thread Simon McVittie 
On Wed, 05 Jul 2017 at 09:24:51 +, sam penny wrote:
> A message "A reboot is required to replace the running dbus-daemon." was shown
> and /var/run/reboot-required was touched, but /var/run/reboot-required.pgks
> remained unchanged (absent in this case)

Which package reads that file? Is its desired content documented
anywhere? I'm happy to change the postinst to append to it, but I need
to know what the "API" is.

I'm considering #867263 to refer to the feature request "please append
 to /var/run/reboot-required.pkgs".

> As a secondary issue, I would vote for a fix for 
> https://bugs.debian.org/805449
> but if we do need a reboot, it should be clear why to facilitate an informed
> decision about when the reboot should be scheduled

Sorry, you do not get a vote on this: everyone involved agrees that
#805449 is a bug, but there is no shortage of bug-fixing and other work
that people can spend their time on. The people who know the code well
enough that they could solve #805449 have assessed the cost/benefit
and decided to work on something else instead (you can tell this has
happened because otherwise, there would be a proposed change to fix it).

The only form of "vote" that is useful here would be to propose a tested
solution, or hire a consultant to do so. However, the upstream maintainers
of dbus would still need to review it and be confident that it was not a
net backward step, which is itself a significant investment of time.

Consensus among the upstream maintainers of dbus is that fixing
#805449 is too difficult to be feasible. It would be a large amount of
rarely-tested, error-prone code, and bugs in that code (which are more
or less inevitable) could easily result in the dbus-daemon crashing or
becoming non-functional, most likely requiring an immediate (unscheduled)
boot to recover. Requiring an immediate reboot because a bug brings down
the dbus-daemon seems considerably worse than requiring a reboot at a
time convenient to you, so #805449 is the lesser evil.

Of course, in an ideal world, there would be a bug-free solution to
#805449, but we are very far from that ideal world.

> As a tertiary issue, but I can't work out where to report it (pointers
> welcome!) the contents of the reboot-required.pkgs file in general could 
> really
> do with some more information about the package versions and the timing of the
> request

dbus cannot solve this. Please identify which package defines the
contents of this file and send any feature requests there, as a
separate report.

> (eg. if if the update fixes a typo in a rare error
> message but dbus can't be replaced without a reboot, that reboot is going to
> wait until I have a better reason to reboot - if it fixes a major security
> issue, that reboot will happen as soon as reasonably possible)

dbus provides approximately this information in
/usr/share/doc/dbus/changelog.Debian.gz, including the urgency field
(normally medium, sometimes low or high). The same is true for every
other Debian package. Doing something with that information is a feature
request for something involved in the package update process, rather
than for the package being updated.

If you are running testing/unstable, try apt-listchanges - perhaps it
already does what you need.

If you are running stable/oldstable, in addition to the availability of
apt-listchanges, updates are announced on the debian-security-announce
and debian-announce mailing lists, and every update is likely to be
important (because we wouldn't spend the time and take the regression
risk of doing a stable update if it wasn't important). If in doubt,
reboot as soon as is convenient anyway, whether dbus tells you to or not.

Regards,
smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#495005: libdbus complaining unconditionally on stderr

2017-09-25 Thread Simon McVittie 
Control: tags 495005 + wontfix

Sorry to resurrect an ancient bug report, but I'm trying to do some
triaging on src:dbus bugs.

On Sun, 29 Nov 2009 at 10:14:41 +0100, Julien BLACHE wrote:
> Michael Biebl  wrote:
> > Could you actually show me, where (lib)dbus is at fault here?
> 
> #516982 msg#35

which quotes a message from #20, further up the bug:

process 20186: arguments to dbus_connection_send() were incorrect,
assertion "connection != NULL" failed in file dbus-connection.c line 3099.
This is normally a bug in some application using the D-Bus library.

> Debug messages shouldn't be printed by the library unless it's a debug
> build or the application asked for (allowed) them.

This is not a debug message, it's a warning of undefined behaviour having
been reached. In the default upstream configuration of libdbus it would
immediately have been followed by abort() (although Debian's libdbus is
patched to make these "checks" non-fatal by default; it isn't entirely
clear to me why this was done, and one day I might take that patch out).
Think of it as analogous to how glibc writes to stderr when it detects
memory corruption.

Something in the process in question is calling
dbus_connection_send(NULL, ?, ?), which is considered to be invalid in
the same way as (for example) fprintf(NULL, "hello") (which segfaults,
at least on my system).

If users of libdbus don't want undefined behaviour (which could include
messages on stderr, abort(), NULL pointer dereferences or whatever) then
they should not pass NULL to a function that is conceptually a method on
a (non-NULL) connection.

>From comments on #516982 it seems that the cause is failure to connect to
the dbus-daemon, so dbus_bus_get() or dbus_bus_get_private() returned
NULL. The correct response to that happening is to stop trying to
interact with D-Bus, and either exit unsuccessfully (if interacting with
D-Bus is a required part of this program's functionality) or skip the
D-Bus bits (if interacting with D-Bus is not critical for this program).

Regards,
smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#876743: flatpak: FTBFS on hppa: Creating new namespace failed: Invalid argument

2017-09-25 Thread Simon McVittie 
Control: retitle 876743 flatpak: FTBFS on hppa: Creating new namespace failed: 
Invalid argument

On Mon, 25 Sep 2017 at 09:40:39 -0400, Aaron M. Ucko wrote:
> Source: flatpak
> Version: 0.9.12-2
> Severity: important
> Tags: upstream
> Justification: fails to build from source (but built successfully in the past)
> 
> The flatpak build for hppa (admittedly not a release architecture) has
> started failing:
> 
>   ERROR: tests/test-run.sh - too few tests run (expected 12, got 0)

Unfortunately this part of the log is relatively useless. As with all recent
Automake packages, please scroll down to just after the summary

# TOTAL: 57
# PASS:  35
# SKIP:  12
# XFAIL: 0
# FAIL:  0
# XPASS: 0
# ERROR: 10

where you will see full logs quoted for the skipped and failing tests,
with underlined headers like

ERROR: tests/test-run.sh


followed by logged output. Unfortunately, because stdout and stderr have
different levels of buffering, the logged output is not particularly
easy to read in this case :-(

I think the real error might be this:

> ++ bwrap --ro-bind / / /bin/true
> (no error here)
... but then later
> Creating new namespace failed: Invalid argument

This indicates that, unlike most Debian buildds, your hppa buildd allows
enough namespace creation that bwrap (bubblewrap) can work at all; but
then it does not allow enough namespace creation that Flatpak's more
complicated uses of bwrap also work.

This probably means the upstream test suite should have a better check for
whether bwrap works, so that these tests can be skipped on your buildd's
kernel (they can't pass there, and Flatpak won't work on that kernel).

Do hppa machines have recent enough kernels available that Flatpak is
of any practical use, for example able to install and run GNOME Recipes
from https://flathub.org/apps.html on a test machine? The jessie kernel
should work. If a recent enough kernel is available, please run it on
hppa buildds. If not, then IMO it's a positive thing that Flatpak FTBFS
on hppa, and the old (non-functional) binaries should probably be removed.

Regards,
smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#876442: Failure to reload during/after distupgrade: circular inclusion of file '/etc/dbus-1/system.conf'

2017-09-22 Thread Simon McVittie 
On Fri, 22 Sep 2017 at 22:31:11 +0200, Michael Biebl wrote:
> So, the image was not created with the final stretch ISO.
> I can confirm that it contains those said symlinks and that after the
> dist-upgrade the symlinks have been removed.

OK, so not jessie, but before the removal of those symlinks - same thing
really.

For now I've reinstated the patch that makes session.conf and system.conf
include /etc/dbus-1/*.conf.dpkg-bak instead. Keeping that until after
buster is released wouldn't be awful, although perhaps moving the
remaining cleanup code from postinst to preinst would be cleaner.

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#876442: Failure to reload during/after distupgrade: circular inclusion of file '/etc/dbus-1/system.conf'

2017-09-22 Thread Simon McVittie 
On Fri, 22 Sep 2017 at 13:04:23 +0200, Michael Biebl wrote:
> During a dist-upgrade from stretch to sid, I get hundreds of messages
> like this:
> Sep 22 12:31:24 debian dbus-daemon[493]: Unable to reload configuration: 
> Circular inclusion of file '/etc/dbus-1/session.conf'
> Sep 22 12:31:24 debian dbus-daemon[5061]: Unable to reload configuration: 
> Circular inclusion of file '/etc/dbus-1/session.conf'
> Sep 22 12:31:32 debian dbus[414]: [system] Unable to reload configuration: 
> Circular inclusion of file '/etc/dbus-1/system.conf'

I'm going to ignore the session bus and consider only the system bus,
since the two are equivalent and you seem to have the same issue for both.
When we know how to fix this for the system bus, we can solve it for the
session bus equally well.

On a machine that was installed with stretch, there is not going to be a
problem:

user@host:~$ dpkg-query -W |grep dbus
dbus1.10.18-1
libdbus-1-3:amd64   1.10.18-1
user@host:~$ dpkg -L dbus | grep conf
/usr/lib/tmpfiles.d/dbus.conf
/usr/share/dbus-1/session.conf
/usr/share/dbus-1/system.conf
user@host:~$ grep include /usr/share/dbus-1/system.conf
  /etc/dbus-1/system.conf.dpkg-bak
  system.d
  /etc/dbus-1/system.d

[Pkg-utopia-maintainers] Bug#876138: ostree: FTBFS as root (with unusual umask?): "-00664 1 0 4 /baz/cow" doesn't match regexp '-00644 1 0'"

2017-09-18 Thread Simon McVittie 
Package: ostree
Version: 2017.11-1
Severity: normal

ostree fails to build from source on debomatic:

http://debomatic-amd64.debian.net/distribution#experimental/ostree/2017.11-1/buildlog
(as of "Build started Monday, 18 September 2017 15:06 - finished
Monday, 18 September 2017 15:28" - I am not aware of a more permanent
URL for that specific log)

This appears to be because debomatic runs sbuild as root, so
tests/test-basic-root.sh runs and fails (it's normally skipped). The
failure cause seems to be

> + assert_file_has_content ls.txt '-00644 1 0'
...
> + ls -al ls.txt
> -rw-rw-r-- 1 root root 27 Sep 18 14:09 ls.txt
> + sed -e 's/^/# /'
> # -00664 1 0  4 /baz/cow
...
> File 'ls.txt' doesn't match regexp '-00644 1 0'

which seems to be because that test blindly assumes umask 022:

> echo moo > baz/cow
[there is no chmod here]

This is a FTBFS, but I don't consider it to be release-critical,
because building as root is a weird thing to do. I've opened
debomatic issue .

Regards,
smcv

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#873839: dbus: test-relay fails on hurd-i386: Aborted

2017-08-31 Thread Simon McVittie 
Source: dbus
Version: 1.11.16+really1.11.16-2
Severity: normal

(X-Debbugs-Cc to debian-hurd)

I recently enabled build-time tests for dbus, after fixing the home
directory issue that had previously meant they failed on all Debian
buildds. Unfortunately this led to a build failure on hurd-i386.
Because it's reasonably clear that nobody with an interest in Hurd
is currently contributing to dbus upstream, and the test results indicate
that dbus does basically work, I'm going to ignore the test failures on
!linux for the moment.

The bug I'm describing in this bug report manifests as a failure of
the test case test-relay:

> ../../../build-aux/tap-driver.sh: line 639: 11727 Aborted "$@"
> # random seed: R02Sd75850b6e61c3dffc4f87cea493f
> 1..3
> ok 1 /connect
> PASS: test-relay 1 /connect
> ok 2 /relay
> PASS: test-relay 2 /relay
> # Bug Reference: https://bugs.freedesktop.org/show_bug.cgi?id=34393
> ERROR: test-relay - too few tests run (expected 3, got 2)
> ERROR: test-relay - exited with status 134 (terminated by signal 6?)

The crash here must be somewhere in test_limit(), which sends 8192
messages all at once, with a low resource limit, in an attempt to
reproduce fd.o#34393, then waits for their replies. I don't know why
or where it aborts: I would have expected to see something on stderr if
it's hitting an assertion failure in either libdbus or GLib.

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#873837: dbus: test-refs fails on hurd-i386: Error creating thread: Resource temporarily unavailable

2017-08-31 Thread Simon McVittie 
Source: dbus
Version: 1.11.16+really1.11.16-2
Severity: normal

(X-Debbugs-Cc to debian-hurd)

I recently enabled build-time tests for dbus, after fixing the home
directory issue that had previously meant they failed on all Debian
buildds. Unfortunately this led to a build failure on hurd-i386.
Because it's reasonably clear that nobody with an interest in Hurd
is currently contributing to dbus upstream, and the test results indicate
that dbus does basically work, I'm going to ignore the test failures on
!linux for the moment.

The bug I'm describing in this bug report manifests as a failure of
the test case test-refs:

> (/<>/dbus-1.11.16+really1.11.16/debian/build-main/test/.libs/test-refs:11704):
>  GLib-ERROR **: creating thread '': Error creating thread: Resource 
> temporarily unavailable
> ../../../build-aux/tap-driver.sh: line 639: 11704 Trace/breakpoint trap   "$@"
> # random seed: R02S2177400da32c2ff3132d8939e29fddec
> 1..4
> # Start of refs tests
> # GLib-FATAL-ERROR: creating thread '': Error creating thread: Resource 
> temporarily unavailable
> ERROR: test-refs - too few tests run (expected 4, got 0)
> ERROR: test-refs - exited with status 133 (terminated by signal 5?)

For context, test-refs is a stress-test intended to confirm that the
atomic operations that we use for thread-safe reference counting are
actually working.

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#873835: dbus: test-fdpass fails on hurd-i386: Segmentation fault

2017-08-31 Thread Simon McVittie 
Source: dbus
Version: 1.11.16+really1.11.16-2
Severity: normal

(X-Debbugs-Cc to debian-hurd)

I recently enabled build-time tests for dbus, after fixing the home
directory issue that had previously meant they failed on all Debian
buildds. Unfortunately this led to a build failure on hurd-i386.
Because it's reasonably clear that nobody with an interest in Hurd
is currently contributing to dbus upstream, and the test results indicate
that dbus does basically work, I'm going to ignore the test failures on
!linux for the moment.

The bug I'm describing in this bug report manifests as a failure of
the test case test-fdpass:

> ../../../build-aux/tap-driver.sh: line 639: 11349 Segmentation fault  
> (core dumped) "$@"
> # random seed: R02Sa14e10402ff7fc6a46cf59cfb61d4976
> 1..15
> ok 1 /unsupported
> PASS: test-fdpass 1 /unsupported
> ok 2 /relay
> PASS: test-fdpass 2 /relay
> ok 3 /limit
> PASS: test-fdpass 3 /limit
> # Start of too-many tests
> ok 4 /too-many/plus1
> PASS: test-fdpass 4 /too-many/plus1
> ok 5 /too-many/plus2
> PASS: test-fdpass 5 /too-many/plus2
> ERROR: test-fdpass - too few tests run (expected 15, got 5)
> ERROR: test-fdpass - exited with status 139 (terminated by signal 11?)

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#873833: dbus: test-fdpass fails on kfreebsd-amd64: test_odd_limit: assertion failed: (dbus_message_contains_unix_fds (incoming)

2017-08-31 Thread Simon McVittie 
Source: dbus
Version: 1.11.16+really1.10.22
Severity: normal

(X-Debbugs-Cc to debian-bsd)

I recently enabled build-time tests for dbus, after fixing the home
directory issue that had previously meant they failed on all Debian
buildds. Unfortunately this led to a build failure on kfreebsd-amd64.
Because it's reasonably clear that nobody with an interest in FreeBSD
is currently contributing to dbus, and the test results indicate that
dbus does basically work, I'm going to ignore the test failures on
!linux for the moment.

On the kfreebsd porterbox fala, this is easy to reproduce by building
dbus, then running:

make VERBOSE=1 -C debian/build-debug -k check

or:

./debian/build-debug/test/test-fdpass --tap

Interestingly, this is fine on kfreebsd-i386 (confirmed on fischer)
so perhaps it's an alignment issue?

The bug I'm describing in this bug report manifests as a failure of
the test case test-fdpass. The log in debian/build-debug/test/test-fdpass.log
says:

> # Start of odd-limit tests
> ok 12 /odd-limit/minus1
> PASS: test-fdpass 12 /odd-limit/minus1
> # ERROR:../../../test/fdpass.c:772:test_odd_limit: assertion failed: 
> (dbus_message_contains_unix_fds (incoming))

This test asserts that when the maximum number of Unix fds allowed per
message is set to 7, and we send a message containing exactly 7 fds,
it works. Other test-cases in the same executable assert that with the
limit set to 7, we can send 6 fds but cannot send 8 or 9. Perhaps there
is an off-by-one or an alignment error in the FreeBSD code paths around
SCM_RIGHTS and/or CMSG_*?

For context, this test was added for CVE-2014-3635 aka
https://bugs.freedesktop.org/show_bug.cgi?id=83622
which was a denial of service (remote crash) on Linux.

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#873827: dbus: test-bus fails on kfreebsd-*: activation times out while simulating OOM

2017-08-31 Thread Simon McVittie 
Source: dbus
Version: 1.11.16+really1.10.22
Severity: normal

(X-Debbugs-Cc to debian-bsd)

I recently enabled build-time tests for dbus, after fixing the home
directory issue that had previously meant they failed on all Debian
buildds. Unfortunately this led to build failures on kfreebsd-*.
Because it's reasonably clear that nobody with an interest in FreeBSD
is currently contributing to dbus, and the test results indicate that
dbus does basically work, I'm going to ignore the test failures on
!linux for the moment.

On the kfreebsd porterboxes fala and fischer, this is easy to reproduce
by building dbus, then running:

make VERBOSE=1 -C debian/build-debug -k check

The bug I'm describing in this bug report manifests as a failure of
the test case test-bus.sh. The log in debian/build-debug/test/test-bus.log
says:

> Failed to activate service 'org.freedesktop.DBus.TestSuiteEchoService': timed 
> out
> Did not expect error org.freedesktop.DBus.Error.TimedOut

Unfortunately test-bus is a bit of a minefield: it's part of the old
unit tests, from before I started to add more focused test coverage. I
believe this failure is in an area where we spam a particular operation
(in this case repeatedly activating an activatable service) while making
increasingly many malloc() calls appear to fail (simulating an OOM
condition).

Any help with debugging and fixing this would be appreciated.

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#873823: dbus: FTBFS on sparc64: test-dbus-daemon: FATAL-ERROR: timed out

2017-08-31 Thread Simon McVittie 
Source: dbus
Version: 1.11.16+really1.11.16-2
Severity: normal

I recently enabled build-time tests for dbus, having first fixed the
home directory issue that made them fail on all buildds. They pass on
most Linux architectures, but fail on sparc64.

https://buildd.debian.org/status/fetch.php?pkg=dbus&arch=sparc64&ver=1.11.16%2Breally1.11.16-2&stamp=1501416799&raw=0
> ** 
> (/<>/dbus-1.11.16+really1.11.16/debian/build-debug/test/.libs/test-dbus-daemon:7617):
>  ERROR **: timed out

This test times out after 60 seconds:

>   /* Prevent tests from hanging forever. This is intended to be long enough
>* that any reasonable regression test on any reasonable hardware would
>* have finished. */
> #define TIMEOUT 60
— test/test-utils-glib.c

I think the timeout is during the /echo/limited test-case, which severely
cuts down the number of messages that the dbus-daemon is willing to keep
in-flight at a time, cutting throughput from 250 to 200 messages per
second. This seems really slow: on my 5 year old x86-64 laptop I get
more than 20 times that throughput.

If sparc64 is really that slow, it's just an arbitrary timeout and could
be increased (the only purpose is to make each test take a finite time
to fail if something gets wedged). Is it?

(X-Debbugs-Cc to debian-sparc)

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#873820: dbus: FTBFS on hppa: test-refs aborts

2017-08-31 Thread Simon McVittie 
Source: dbus
Version: 1.11.16+really1.11.16-2
Severity: normal

https://buildd.debian.org/status/fetch.php?pkg=dbus&arch=hppa&ver=1.11.16%2Breally1.11.16-2&stamp=1501422552&raw=0
> ERROR: test-refs
> 
>
> ../../../build-aux/tap-driver.sh: line 639: 11685 Aborted "$@"
> # random seed: R02S3aee6c27b1ef4471256e645d3109eb90
> 1..4
> # Start of refs tests
> ok 1 /refs/connection
> PASS: test-refs 1 /refs/connection
> ok 2 /refs/message
> PASS: test-refs 2 /refs/message
> ok 3 /refs/pending-call
> PASS: test-refs 3 /refs/pending-call
> ERROR: test-refs - too few tests run (expected 4, got 3)
> ERROR: test-refs - exited with status 134 (terminated by signal 6?)

For context, test-refs is a threaded stress-test exercising reference
counting. It is possible that the hppa buildd triggers some rare race
condition; it is also possible that the hppa buildd just can't do
threads or atomic operations correctly.

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#873617: libdbus-glib-1-dev: Multi-Arch issue

2017-08-29 Thread Simon McVittie 
On Tue, 29 Aug 2017 at 16:11:24 +0200, W. Martin Borgert wrote:
> I cannot install libdbus-glib-1-dev for more than one architecture
> at the same time. I assume, that Multi-Arch: same should be set,
> and that dbus-binding-tool must go in a new package
> libdbus-glib-1-dev-bin with Multi-Arch: foreign, right?

That would be one solution. Another solution would be to stop using
dbus-glib, which was officially deprecated in 2015, has been discouraged
since before that, and is essentially unmaintained. Wherever possible,
please use GDBus (part of libglib2.0-dev) instead.

Fixing multiarch development issues in a deprecated library, with a
trip through the NEW queue and an extra Packages stanza required to
apply the solution, is far from the top of my priority list.

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#870312: flatpak FTBFS on amd64/arm64: ERROR: testlibrary - missing test plan

2017-08-29 Thread Simon McVittie 
On Tue, 01 Aug 2017 at 00:38:58 +0300, Adrian Bunk wrote:
> Some recent change in unstable makes flatpak FTBFS on amd64/arm64:
> 
> https://tests.reproducible-builds.org/debian/history/flatpak.html
> https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/flatpak.html

I can't reproduce this in my local sbuild, but it's still happening on
the reproducible-builds infrastructure. It might be related to the use
of pbuilder on reproducible-builds?

Have you reproduced this yourself, or are you reporting it purely based on
what you see on reproducible-builds.org?

> # random seed: R02Sbf4ab0218f9346d8617da03c0d7234c9
> # flatpak:ERROR:tests/testlibrary.c:668:add_remote: assertion failed (status 
> == 0): (256 == 0)

This is status from:

  g_spawn_sync (NULL, (char **)argv, NULL, flags, NULL, NULL, NULL, NULL, 
&status, &error);

where argv is { "flatpak", "remote-add", ... } and error indicates that
g_spawn_sync() did not immediately fail (therefore status is a waitpid()
result). Applying WIFEXITED() and WEXISTATUS() indicates that
"flatpak remote-add ..." exited 1.

The next step is to make this fail in an environment where g_test_verbose()
would return true (or patch out that check), so that we see flatpak's stderr.
I'm not entirely sure why upstream suppressed its stderr here.

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#805449: Amplification

2017-08-26 Thread Simon McVittie 
On Sat, 26 Aug 2017 at 09:07:55 +0100, Barak A. Pearlmutter wrote:
> This behaviour really is unacceptable, and this bug should be elevated
> in priority.

I agree that in a perfect world, D-Bus would be restartable. However,
we do not live in that perfect world. If we did, many things would work
differently. If it was as simple as "raise the bug priority and someone
will solve the problem", then it would have been resolved a decade ago.

You are welcome to try to fix this behaviour while respecting the various
constraints that exist. However, consensus among the upstream maintainers
of D-Bus (the protocol) and dbus (the reference implementation of that
protocol) is that attempting to implement state handover (re-exec) would
be sufficiently complex that the most likely result would be worse bugs
than the need to restart. In particular, it is plausible that bugs in
the re-exec handover would themselves cause security vulnerabilities.
As a result, I would suggest that your time (and the D-Bus maintainers'
time, for either implementation or review) would be better spent
elsewhere.

> I'd
> suggest that it might be easier to try to ensure that dbus is
> "crashable" or "crash-only", meaning that if the daemon is
> unexpectedly terminated with prejudice, it will be restarted
> automatically and its clients will all reestablish appropriate
> connections.

That would be an incompatible change: D-Bus implementations (both the
reference implementation dbus, and compatible reimplementations like
systemd's sd-bus and GLib's GDBus) do not reconnect, and that change
would break them. The D-Bus protocol was frozen more than 10 years
ago, so incompatible changes cannot be accepted.

Also, the application-facing API of D-Bus signals (broadcasts) cannot
work across a reconnection, because there is no way to know whether you
have missed a signal during the time between disconnection and
reconnection, and many higher-level APIs that use D-Bus rely on never
missing a signal for their correctness. A hypothetical protocol that
resembles D-Bus but is crash-safe would require application code to be
aware of reconnections, and resynchronize state after reconnection;
the lower-level code that implements the D-Bus protocol does not have
enough domain-specific knowledge to be able to resynchronize.

If you want a crash-safe IPC protocol, you are welcome to design and
implement one, but D-Bus is not and will not be that protocol. A broadly
similar but crash-safe protocol would be sufficiently different, from
an application's point of view, that it would need to have a separate
name (evencalling it something like "D-Bus 2.0" would be deeply
misleading) and would need to be implemented separately.

I know this is not the answer you want, but it's the only one I have.

Regards,
S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#872144: dbus: DBUS handles only 30 connections. SOMAXCONN

2017-08-15 Thread Simon McVittie 
Control: forwarded -1 https://bugs.freedesktop.org/show_bug.cgi?id=95264
Control: tags -1 + fixed-upstream patch
Control: found -1 1.8.16-1
Control: found -1 1.10.18-1
Control: fixed -1 1.11.4-1

On Mon, 14 Aug 2017 at 14:36:48 +, Oleg Obleukhov wrote:
> Debian Jessie has outdated version of DBUS which contains the bug, described 
> here:
> https://gitlab.com/gitlab-com/infrastructure/issues/290

Debian oldstable will always contain an outdated version of everything.
If you want non-outdated versions, please use a newer suite like stable
(currently stretch), which is outdated but stable, or testing/unstable,
which is up-to-date but changes frequently.

This issue has been fixed in the development branch of dbus. Lennart
didn't fix it in the 1.10.x stable branch at the time like I suggested,
but I have now cherry-picked the commit for 1.10.24, which I plan to
release soon; it will hopefully go into stretch if the release team
approve.

This is unlikely to be fixed in jessie, because the 1.8.x branch only
receives security fixes since the release of 1.10.x, and not other
changes. We have to draw a line somewhere - if we backported every fix
from stable to oldstable then there would be little point in having
separate releases.

Regards,
S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#869922: Bug#869922: policykit-1: members of group sudo become root with pkexec while ignoring /etc/sudoers

2017-07-27 Thread Simon McVittie 
On Thu, 27 Jul 2017 at 18:00:27 +0200, Michael Biebl wrote:
> Granting root-like access via group sudo is intended and not a security
> hole and the policykit policy is in line with the sudo policy here.

This is also as documented in base-passwd, which is the central
authority on what the predefined groups in Debian mean:

sudo

Members of this group may run any command as any user when using sudo or
pkexec (from the policykit-1 package, independently of whether the sudo
package is installed).

—/usr/share/doc/base-passwd/users-and-groups.txt.gz

If you don't want a user to be root-equivalent, don't add them to the
sudo group. Users who are meant to be able to run certain specific
commands (but not others) via sudo should not be in that group;
membership of that group is not required to use sudo.

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

Re: [Pkg-utopia-maintainers] stretch-pu: package flatpak, maybe want debdiff against security?

2017-07-16 Thread Simon McVittie 
On Sun, 16 Jul 2017 at 21:13:58 +0100, Ian Jackson wrote:
> Would you mind if I took those aspects of your mail to debian-devel ?

Nothing in this thread is private, and I believe all of it is already
cc'd to the public bug report #864028.

I suspect that contradicting how we have always asked upstreams and
Debian maintainers of Autotools-built packages to behave is at best an
unproductive and tedious "boil the ocean" task and at worst actively
harmful to our relationship with major upstreams like GNU, but if you
think there will be consensus that current practice is wrong, go ahead
and try to establish that consensus...

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

Re: [Pkg-utopia-maintainers] stretch-pu: package flatpak, maybe want debdiff against security?

2017-07-16 Thread Simon McVittie 
On Sun, 16 Jul 2017 at 10:24:36 +0100, Ian Jackson wrote:
> Simon McVittie writes ("Re: stretch-pu: package flatpak, maybe want debdiff 
> against security?"):
> > gtk-doc.make is copied in from gtk-doc-tools by gtkdocize during the
> > upstream autogen.sh run. It isn't currently replaced by dh_autoreconf.
> > I could re-run gtkdocize with Debian's gtk-doc-tools at dh_autoreconf
> > time if the release team want, but my assumption had been that this
> > non-minimal change would be rejected.
> 
> It seems to me that this means that the source code for your proposed
> updated package is not entirely within Debian.  That is, your source
> code includes the source in gtk-doc-tools which produces gtk-doc.make.

The source code for gtk-doc.make is itself. The canonical copy is in
gtk-doc (Debian package gtk-doc-tools) and is copied into packages that
consume it by gtkdocize, but it isn't compiled or machine-edited: the
version in gtk-doc is no more or less the preferred form for editing
than the version in flatpak_*.orig.tar.xz.

Before you object on the grounds of embedded code copies, gtk-doc.make
is a convenience copy specifically intended to be used in this way
(Policy §4.13). If it wasn't intended to be used in this way, then the
Autotools integration recommended by the gtk-doc maintainers (a large
part of which *is* gtk-doc.make) wouldn't arrange for gtk-doc.make to
be copied into distributed tarballs.

> But the
> relevant gtk-doc-tools is not in Debian, because it's the one upstream
> used to prepare their flatpak "source" package.
> 
> So this is, technically, a violation of the licence and of policy.

If this is something you feel strongly about, I would suggest that bugs
filed against either release.debian.org or individual Autotools packages
like Flatpak are not a suitable place to arrive at a solution; and there
seems to be consensus that Autotools "make dist" tarballs are something
we want to use as our source code.

If we want to treat upstream's tarball releases as privileged and use them
wherever possible (Devref §6.7.8.1) then upstreams will have a limited
supply of patience and goodwill if we start to insist on those tarball
releases being prepared in a specific way or on a specific distribution. I
think we should avoid expending that goodwill unnecessarily, particularly
if we want upstreams to pay attention when we ask them to remove non-Free
files. Flatpak upstream uses Autotools and gtk-doc according to their
documentation on some arbitrary non-Debian distribution (I think Alex
uses Fedora, and in practice he makes all the releases).

For anything built with Autotools, if we want "orig" tarballs to contain
exactly those files that upstream prefers to modify (all files in the
upstream VCS and no files not in the upstream VCS) then we cannot obey
Devref §6.7.8.1 in its current form. We have to pick one, and obeying
Devref is the common practice.

codesearch.debian.net says Flatpak is one of around 3234 source packages
using something resembling Automake's "make dist" (search terms:
"path:configure M4sh\ Initialization"). If it is preferable to recommend
some derivative of git-archive output (in Flatpak's case it would have
to be a submodule-aware variation of git-archive) then that is a rather
extensive change, and one that contradicts what we have traditionally
asked our upstreams to do. A number of upstreams that produce tarballs
specifically because Debian has asked them to would likely be rather
upset to be told that their tarballs are in fact unacceptable to Debian,
so this is not something I am willing to do without clear project
consensus, and in particular not something I am going to mess with in
a stable-update.

> > Yes. Blame Autotools.
> 
> I think that's unfair on autotools...

It is primarily Autotools from which we get this convention that upstream
source releases contain additional files beyond what was written by the
upstream of this particular package (in this case Flatpak). gtk-doc.make
is, if anything, more source-like than aclocal.m4, which we seem to be
willing to tolerate in thousands of packages (aclocal.m4 is not source
in the strictest possible sense, but it is a trivial concatenation of
files that are source).

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

Re: [Pkg-utopia-maintainers] stretch-pu: package flatpak, maybe want debdiff against security?

2017-07-16 Thread Simon McVittie 
On Sat, 15 Jul 2017 at 22:13:14 +0100, Ian Jackson wrote:
> Simon McVittie writes ("Re: stretch-pu: package flatpak, maybe want debdiff 
> against security?"):
> > Yes, this update was proposed while stretch was still in freeze,
> > and I didn't want to annoy the release team with more pings if they
> > were deliberately leaving it dormant until after r1. Diff against
> > stretch-security attached (diffing patched tree against patched tree,
> > and excluding Autotools noise, translations, HTML docs, and the patches
> > that were dropped but not their effects).
> 
> Thanks.  This is IMO much better.  I looked at the diff and almost
> everything in it is covered by your changelog entries.  However:
> 
>  * document-portal/xdp-dbus.c was generated by a version of
>gdbus-codegen which seems to be only in Debian experimental. !

This is regenerated at build time. I sent patches upstream to exclude
it from the distributed orig.tar.gz, which were accepted, so this won't
be an issue in 0.9.x; but that patch isn't going to be included in the
0.8.x stable branch (unless someone from the stable release team asks
for it) because it isn't a fix for a user-observable bug.

I can exclude it from future diffs if desired.

>  * gtk-doc.make has some noise (which seems to be just whitespace
>changes but which is a bit hard to review as-is)

gtk-doc.make is copied in from gtk-doc-tools by gtkdocize during the
upstream autogen.sh run. It isn't currently replaced by dh_autoreconf.
I could re-run gtkdocize with Debian's gtk-doc-tools at dh_autoreconf
time if the release team want, but my assumption had been that this
non-minimal change would be rejected.

I can confirm that

git diff --ignore-space-change debian/stretch..debian/stretch-proposed -- 
gtk-doc.make

eliminates all the changes except for deletion of one blank line,
and the re-wrapping in the last patch band.

> This is a bit odd.  Are these generated files even though they are in
> the source package ?

Yes. Blame Autotools.

It's possible that Flatpak upstream will eventually follow GNOME into
using Meson instead of Autotools, at which point their source releases
will probably become a submodule-aware version of `git archive`; but I
don't think they are in any hurry to do so.

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#867847: bubblewrap: Can't use --unshare-user when the procfs is mounted with hidepid=1

2017-07-10 Thread Simon McVittie 
Control: forwarded 867847 https://github.com/projectatomic/bubblewrap/issues/198

On Mon, 10 Jul 2017 at 16:16:28 +0300, Guilhem Moulin wrote:
> Actually I don't have an account there so if you don't mind forwarding
> this report that would be great ;-)

Done, see URL above.

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#867847: bubblewrap: Can't use --unshare-user when the procfs is mounted with hidepid=1

2017-07-10 Thread Simon McVittie 
Control: tags 867847 + upstream

On Sun, 09 Jul 2017 at 22:16:06 +0200, Guilhem Moulin wrote:
> I noticed that bubblewrap refuses to create a new user namespace when
> the procfs is mounted (outside the container) with hidepid≥1.

Would you mind reporting this upstream at
? I don't think I'm
going to be able to add much value to this bug report by forwarding
messages between you and upstream.

I suspect that the issue is less bubblewrap refusing to create a new
userns, and more the kernel refusing to let it.

I'll copy the text of your bug report to an upstream issue report at
some point if you haven't got there first.

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#867408: upgrade logged me out, stopped network-manager; kernel: dbus-daemon[650]: segfault at 0 ip 0000562c3192e620 sp 00007ffd9c679798 error 6 in dbus-daemon

2017-07-06 Thread Simon McVittie 
On Thu, 06 Jul 2017 at 09:58:35 -0400, Joey Hess wrote:
> I ran apt-get dist-upgrade to unstable today

What state were you upgrading from?

What version of `dbus-daemon --system` was running on your system? Your
apt logs might help to work this out - it will be whatever version was
present during the most recent boot before the problematic upgrade.

I would also like to know the sequence of upgrades of the dbus package
since that boot (again, please look in your apt logs).

(This might be related to me recently removing maintainer script code in
sid that was intended to handle upgrades from jessie to stretch.)

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#867408: upgrade logged me out, stopped network-manager; kernel: dbus-daemon[650]: segfault at 0 ip 0000562c3192e620 sp 00007ffd9c679798 error 6 in dbus-daemon

2017-07-06 Thread Simon McVittie 
On Thu, 06 Jul 2017 at 09:58:35 -0400, Joey Hess wrote:
> Jul 06 09:16:38 darkstar dbus[650]: [system] Unable to reload configuration: 
> (null)
> Jul 06 09:16:38 darkstar dbus-daemon[650]: Unable to reload configuration: 
> (null)
> Jul 06 09:16:39 darkstar systemd[1]: dbus.service: Main process exited, 
> code=killed, status=11/SEGV

Huh, weird. Do you have any unusual/local/non-standard configuration in
/etc/dbus-1/system.conf, /etc/dbus-1/system.d/*.conf,
/etc/dbus-1/system-local.conf or /usr/share/dbus-1/system.d/*.conf?

> Jul 06 09:16:39 darkstar kernel: dbus-daemon[650]: segfault at 0 ip 
> 562c3192e620 sp 7ffd9c679798 error 6 in dbus-daemon 
> (deleted)[562c31912000+

I don't suppose you have a core or backtrace for this, from corekeeper
or systemd-coredump or similar?

> Looks like an upgrade of something, perhaps bluez caused the dbus
> trigger to run, and the reload failed for whatever reason,
> apparently somehow involving a null pointer dereference by dbus,
> segfaulting it and hosing the system.

Seems plausible. Given that root cause, the rest of your log looks like
the expected cascade of errors as everything else falls off the bus.

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#865413: flatpak: Flatpak security issue #845 involving setuid/world-writable files

2017-06-21 Thread Simon McVittie 
On Wed, 21 Jun 2017 at 18:52:25 +0200, Salvatore Bonaccorso wrote:
> I requested a CVE for this issue, and it got assigned CVE-2017-9780.
> Since you are more in in the source package, can you do a post to
> oss-security so other are informed as well (in case not anyway already
> known?).

I've contacted upstream via the GitHub issue for comment on a draft
advisory.

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#865413: flatpak: Flatpak security issue #845 involving setuid/world-writable files

2017-06-21 Thread Simon McVittie 
On Wed, 21 Jun 2017 at 17:08:03 +0200, Moritz Mühlenhoff wrote:
> On Wed, Jun 21, 2017 at 12:35:43PM +0100, Simon McVittie wrote:
> > Here is a proposed minimal backport for stretch in case you want one.
> > I have source and binaries for this ready for upload.
> 
> Please go ahead.
[...]
> source only uploads should work fine

  Uploading flatpak_0.8.5-2+deb9u1_source.changes: done.

Regards,
S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#865413: flatpak: Flatpak security issue #845 involving setuid/world-writable files

2017-06-21 Thread Simon McVittie 
On Wed, 21 Jun 2017 at 09:46:21 +0100, Simon McVittie wrote:
> Security team: do you want a backport/DSA for stretch-security, or do
> you consider the mitigations to be sufficient to fix this through
> a stable update instead? I am hoping to get 0.8.7 into stretch r1 as a
> stable update, but 0.8.6 contains unrelated bug fixes that I realise
> you won't necessarily want in stretch-security (proposed-update tracked
> at <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864028>).

Here is a proposed minimal backport for stretch in case you want one.
I have source and binaries for this ready for upload. Does the security
archive still want source packages built with debuild -sa, and do you
accept source-only uploads for stretch-security?

Thanks,
S
diffstat for flatpak-0.8.5 flatpak-0.8.5

 changelog   |   14 
 patches/Ensure-we-don-t-install-world-writable-dirs-or-setuid-fil.patch |  178 ++
 patches/dir-Ensure-.local-share-flatpak-is-0700.patch   |   79 
 patches/series  |2 
 4 files changed, 273 insertions(+)

diff -Nru flatpak-0.8.5/debian/changelog flatpak-0.8.5/debian/changelog
--- flatpak-0.8.5/debian/changelog	2017-04-24 12:59:09.0 +0100
+++ flatpak-0.8.5/debian/changelog	2017-06-21 12:05:49.0 +0100
@@ -1,3 +1,17 @@
+flatpak (0.8.5-2+deb9u1) stretch-security; urgency=high
+
+  * d/p/Ensure-we-don-t-install-world-writable-dirs-or-setuid-fil.patch:
+Patch from upstream stable release 0.8.7.
+Prevent deploying files with inappropriate permissions
+(world-writable, setuid, etc.) (Closes: #865413)
+  * d/p/dir-Ensure-.local-share-flatpak-is-0700.patch:
+Patch from upstream stable release 0.8.7.
+Make ~/.local/share/flatpak private to user to defend against app
+vendors that might have released files with inappropriate permissions
+in the past
+
+ -- Simon McVittie   Wed, 21 Jun 2017 12:05:49 +0100
+
 flatpak (0.8.5-2) unstable; urgency=medium
 
   * flatpak Recommends xdg-desktop-portal-gtk | xdg-desktop-portal-backend,
diff -Nru flatpak-0.8.5/debian/patches/dir-Ensure-.local-share-flatpak-is-0700.patch flatpak-0.8.5/debian/patches/dir-Ensure-.local-share-flatpak-is-0700.patch
--- flatpak-0.8.5/debian/patches/dir-Ensure-.local-share-flatpak-is-0700.patch	1970-01-01 01:00:00.0 +0100
+++ flatpak-0.8.5/debian/patches/dir-Ensure-.local-share-flatpak-is-0700.patch	2017-06-21 12:05:49.0 +0100
@@ -0,0 +1,79 @@
+From: Colin Walters 
+Date: Thu, 8 Jun 2017 10:24:48 -0400
+Subject: dir: Ensure ~/.local/share/flatpak is 0700
+
+This goes into a big old topic about Unix homedir permissions; it's not uncommon
+for general purpose OS vendors to have homedirs be 0755. In that case,
+applications need to ensure confidentiality for data requiring it (classically
+e.g. `~/.ssh`) by making the dirs `0700`.
+
+While most of the data in the flatpak per-user dir probably isn't confidential
+(debatably) we have a different issue; if container content includes suid or
+world-writable files/dirs, then having that data accessible to other users
+is obviously problematic.
+
+We're going to fix flatpak/ostree to not create files with those modes
+to begin with, but this simple fix closes off the attack route for
+the per-user directory.
+
+A different fix will be necessary for the system-wide repo.
+
+See: https://github.com/flatpak/flatpak/pull/837
+(cherry picked from commit daf36ba2afab407c488c456952eecba16f79020e)
+
+Origin: upstream, 0.8.7, commit:02a299f5c0321ae807c128812ddaf7d0b71abe1f
+Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865413
+---
+ common/flatpak-dir.c | 39 ++-
+ 1 file changed, 38 insertions(+), 1 deletion(-)
+
+diff --git a/common/flatpak-dir.c b/common/flatpak-dir.c
+index 4ae1ab1..8c057eb 100644
+--- a/common/flatpak-dir.c
 b/common/flatpak-dir.c
+@@ -1306,7 +1306,44 @@ flatpak_dir_ensure_path (FlatpakDir   *self,
+  GCancellable *cancellable,
+  GError  **error)
+ {
+-  return flatpak_mkdir_p (self->basedir, cancellable, error);
++  /* In the system case, we use default perms */
++  if (!self->user)
++return flatpak_mkdir_p (self->basedir, cancellable, error);
++  else
++{
++  /* First make the parent */
++  g_autoptr(GFile) parent = g_file_get_parent (self->basedir);
++  if (!flatpak_mkdir_p (parent, cancellable, error))
++return FALSE;
++  glnx_fd_close int parent_dfd = -1;
++  if (!glnx_opendirat (AT_FDCWD, flatpak_file_get_path_cached (parent), TRUE,
++   &parent_dfd, error))
++return FALSE;
++  g_autofree char *name = g_file_get_basename (self->basedir);
++  /* Use 0700 in the user case to neuter any suid or world-writable
++   * bits that hap

[Pkg-utopia-maintainers] Bug#865413: flatpak: Flatpak security issue #845 involving setuid/world-writable files

2017-06-21 Thread Simon McVittie 
Package: flatpak
Version: 0.8.5-2
Severity: critical
Tags: security fixed-upstream
Forwarded: https://github.com/flatpak/flatpak/issues/845
Justification: potentially (in worst case) root security hole

The Flatpak developers recently released version 0.8.7 fixing a security
issue. A third-party app repository could include malicious apps that
contain files with inappropriate permissions, for example setuid or
world-writable. Older Flatpak versions would deploy the files with those
permissions, which would let a local attacker run the setuid executable
or write to the world-writable location.

In the case of the "system helper", files deployed as part of the app
are owned by root, so in the worst case they could be setuid root.

Mitigations:
* If you are running apps from a third party already, then there is
  already a trust relationship (the app is sandboxed, but the sandbox
  is not very strict in practice, and the third-party vendor chooses
  what permissions the app will have)
* The default polkit policies will not allow apps to be installed
  system-wide unless a privileged (root-equivalent) user has added
  the third-party app repository, which indicates that the privileged
  user trusts the operator of that repository
* The attacker exploiting the wrong permissions needs to be local

It seems that upstream consider this to be a minor security issue due
to those mitigations.

For the buster and sid suites, this will be fixed in 0.8.7-1 shortly.

For the experimental suite, this will be fixed in 0.9.6-1. That will
take a bit longer because it needs a newer version of libostree.

Security team: do you want a backport/DSA for stretch-security, or do
you consider the mitigations to be sufficient to fix this through
a stable update instead? I am hoping to get 0.8.7 into stretch r1 as a
stable update, but 0.8.6 contains unrelated bug fixes that I realise
you won't necessarily want in stretch-security (proposed-update tracked
at ).

For a stretch-security backport with just this fix, I could optionally
also include these security-hardening-related commits from 0.8.6:
https://github.com/flatpak/flatpak/commit/6265200c83f23acceb3c9b192ebc1ffa9db140de
https://github.com/flatpak/flatpak/commit/414d699621664913dadebcf5db39732b99268c37
Please let me know whether you would prefer those included or excluded.

S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

[Pkg-utopia-maintainers] Bug#864479: boot failure due to ambiguous SELinux config

2017-06-09 Thread Simon McVittie 
Control: reassign 864479 dbus,selinux-utils

On Fri, 09 Jun 2017 at 10:33:37 +0200, Christian Göttsche wrote:
> When booting with a kernel cmdline 'security=selinux' and a
> /etc/selinux/config setting 'SELINUX=disabled', dbus fails to start
> and thereby systemd-logind and the system is unusable:
> 
> Jun 08 16:23:43 server02 systemd[1]: Started D-Bus System Message Bus.
> Jun 08 16:23:43 server02 dbus-daemon[703]: Failed to set up security
> class mapping (selinux_set_mapping():Invalid argument).
> Jun 08 16:24:08 server02 systemd[1]: dbus.service: Main process
> exited, code=exited, status=1/FAILURE

I'm very tempted to say "you asked for it, you got it" - you seem to have
tried to arrange for SELinux to be both enabled and disabled.

SELinux maintainers: please try to work out what should happen here, and
what needs to change to make that happen? If the answer is that changes in
dbus are needed, I'm happy to apply properly justified patches, but I need
to know what those changes are and why they are correct.

I am an upstream maintainer of dbus, so if a proposed change is justified
properly and someone who knows SELinux approves it, I can apply it
upstream; but conversely I am not going to be applying downstream
changes to dbus in Debian if they are not good enough for upstream.

Thanks,
S

___
Pkg-utopia-maintainers mailing list
Pkg-utopia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-utopia-maintainers

  1   2   3   4   >