Control: retitle -1 race condition: init-bottom script doesn't abort/cleanup
configure_networking()
Control: tag -1 pending
On Fri, 25 Oct 2019 at 02:26:39 +0200, Guilhem Moulin wrote:
> Ah right, I understand the problem now. Whether configure_networking()
> is run (at premount st
Control: retitle -1 ITP: dropbear-rescue -- A set of initramfs scripts to add
and run dropbear when the system boots in rescue mode
Control: tag -1 - pending
On Sat, 26 Oct 2019 at 01:50:02 +0200, Guilhem Moulin wrote:
> Control: retitle -1 race condition: init-bottom script doesn'
Package: chkrootkit
Version: 0.52-3
Severity: normal
File: /etc/cron.daily/chkrootkit
Tags: patch
Dear Maintainer,
As of Buster, chkrootkit's cron.daily script contains the following line [0]
eval $CHKROOTKIT $RUN_DAILY_OPTS | egrep -v -f "${IGNORE_FILE}" >
$LOG_DIR/log.today.raw 2>&1
egre
Hi Jonas,
On Tue, 05 Nov 2019 at 13:55:59 +0100, Jonas Smedegaard wrote:
> $ interimap --config hb INBOX
> remote: ERROR: UIDVALIDITY changed! (1571588814 != 1154884797) Need to
> invalidate the UID cache.
>
> ..and it seems the --repair option doesn't do its job:
I guess naming that command ‘
On Wed, 06 Nov 2019 at 12:44:08 +0100, Jonas Smedegaard wrote:
> It seems that interimap would do far better in such an extreme
> scenario, as it seems to syncronize small chunks at a time which would
> make it possible to continue-where-left-off in far smaller chunks than
> possible (or rather com
Control: tag -1 pending
On Mon, 21 Oct 2019 at 00:26:58 +0200, Jonas Smedegaard wrote:
>> I can certainly add an option with a simple printf-like format to
>> customize the log :-)
>
> I was thinking something along the lines of printf-like hack, yes.
I took a hammer for this, and added a new o
On Thu, 14 Nov 2019 at 14:01:33 +0100, Jonas Smedegaard wrote:
> interimap --config hb --delete --target=database,local INBOX
> interimap --config hb
>
> ..which seemingly succeeded in throwing away local copy of INBOX
That confuses me even more, ‘--target=database,local’ is a no-op for
0.4-1 beca
On Thu, 14 Nov 2019 at 19:13:59 +0100, Jonas Smedegaard wrote:
> Heh. What actually happened was that at first I ran
>
> interimap --config hb --delete --target=database INBOX
> […]
> Seems to me both local and remote INBOX UIDVALIDITY is now 1571588814:
I see, that explains it. No magic with r
On Fri, 15 Nov 2019 at 19:10:56 +0100, Jonas Smedegaard wrote:
> Use of uninitialized value $length in numeric eq (==) at /usr/bin/interimap
> line 955.
> remote(INBOX.olpc): WARNING: Ignoring new 0-length message (UID 97)
>
> Wanted to let you know in case it is a bug in your code (rather than
>
Control: tag -1 - moreinfo
Control: retitle -1 unblock: signing-party/2.10-2
Hi Ivo,
On Sun, 05 May 2019 at 14:44:31 +0200, Ivo De Decker wrote:
> On Wed, May 01, 2019 at 01:44:08PM +0200, Guilhem Moulin wrote:
>> On Wed, 01 May 2019 at 12:46:12 +0200, Guilhem Moulin wrote:
>>
Hi Dimitri,
On Tue, 07 May 2019 at 15:46:25 +0100, Dimitri John Ledkov wrote:
> On Tue, 7 May 2019 14:16:43 +0100 Dimitri John Ledkov wrote:
>> This issue concerns me a lot at the moment. I am currently trying to
>> upgrade OpenSSL from 1.1.0 to 1.1.1 in Ubuntu 18.04 LTS (bionic). And
>> as far a
Thanks for your analysis, Steffen. Dropping the Debian-specific patch
is definitely the way to go for libwww/LWP. However I still believe
IO::Socket::SSL should provide a way to clear SSL_MODE_AUTO_RETRY in
order to fix applications relying on the former OpenSSL defaults, as
suggested in the Open
On Mon, 13 May 2019 at 06:31:26 +0200, Steffen Ullrich wrote:
> Applications which relied on blocking I/O in connection with select could
> also hang before,
Uh, what? “Before” meaning with ≤TLSv1.2, or with OpenSSL <1.1.1a's
default flags? libssl mentions no such thing beside the new default
mo
On Mon, 13 May 2019 at 06:31:26 +0200, Steffen Ullrich wrote:
> Additionally switching off SSL_MODE_AUTO_RETRY would actually just add
> a different unexpected behavior: that sysread might return with EAGAIN
> on a blocking socket.
FWIW as shown below that's always been the case, until OpenSSL 1.1
On Mon, 13 May 2019 at 22:24:55 +0200, Steffen Ullrich wrote:
> On Mon, May 13, 2019 at 03:18:14PM +0200, Guilhem Moulin
> wrote:
>> Uh, what? “Before” meaning with ≤TLSv1.2, or with OpenSSL <1.1.1a's
>> default flags? libssl mentions no such thing beside the new def
Hi,
On Mon, 13 May 2019 at 21:43:23 +0200, Salvatore Bonaccorso wrote:
> On Sun, Apr 21, 2019 at 10:25:22PM +0200, Moritz Muehlenhoff wrote:
>> Source: roundcube
>> Severity: important
>> Tags: security
>>
>> This was assigned CVE-2019-10740:
>> https://github.com/roundcube/roundcubemail/issues/6
On Tue, 14 May 2019 at 03:57:46 +0200, Steffen Ullrich wrote:
>> Ah I see, thanks for the clarification. I thought you meant it could
>> yield a deadlock. Aren't temporary failures also possible on plain
>> sockets (though of course the extra SSL layer make it strictly more
>> likely to happen)?
Hi Xavier,
# Load session data into object
if ($data) {
+if ( $self->kind ) {
+unless ( $data->{_session_kind} eq $self->kind ) {
+$self->error("Session kind mistmatch");
+return undef;
+}
+}
Doesn't that break CDA
On Wed, 22 May 2019 at 07:34:06 +0200, Xavier wrote:
> It seems that Clément has fixed something related to that feature.
> Could you try
> https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/commit/deff50f072c64898d1204daa28c01fdcc7275ea4
> ?
That solves the issue indeed, thanks for the pointer!
Control: retitle -1 roundcube-core: Needs versioned dependency on
libjs-bootstrap4: >=4.4.1+dfsg1-1.
Control: tag -1 pending
Hi,
On Fri, 03 Jan 2020 at 11:10:06 +0100, Frederik Himpe wrote:
> I installed libjs-bootstrap4=4.4.1+dfsg1-1 which also pulled in an upgrade of
> libjs-popper.js=1.16.0+d
Control: tag -1 moreinfo
Hi,
On Fri, 10 Jan 2020 at 01:40:56 +0900, Marc Dequènes wrote:
> libjs-less is missing for the new Elastic theme.
Are clients being served .less files? The intention is to use the .css
files (compiled from the .less sources) instead. AFAICT .less files are
only used u
On Fri, 10 Jan 2020 at 00:15:25 +0100, Guilhem Moulin wrote:
> But I guess we could ship symlinks though in case someone wants to
> manually install libjs-less.
Didn't recall I did precisely that last summer:
https://salsa.debian.org/roundcube-team/round
Control: tag -1 unreproducible moreinfo
On Thu, 09 Jan 2020 at 23:39:57 +0900, Marc Dequènes wrote:
> The new Elastic theme dependencies cannot be loaded.
Works just fine for me with the supplied apache2 and lighttpd config
files, and also on nginx. Please use reportbug(1) next time, or at
least
Hi OdyX,
On Sat, 11 Jan 2020 at 11:56:35 +, Didier 'OdyX' Raboud wrote:
> From diffing the initramfs'es, I see that kernel/arch/x86/crypto/aes-x86_64.ko
> was present in 5.3.0-3 kernels, but not present anymore in 5.4.0-1 or 5.4.0-2
> kernels.
kernel/arch/x86/crypto/aes-x86_64.ko isn't in 5.4
Control: retitle -1 cryptsetup-initramfs: Can't open aes-cbc-essiv:sha256
dm-crypt targets with a 5.4 kernel and an initramfs built with MODULES=dep
Control: found -1 2:1.6.6-5
Control: tag -1 pending
Hi,
On Mon, 13 Jan 2020 at 08:47:43 +0100, Didier 'OdyX' Raboud wrote:
>> Devices formatted sin
Hi Guillem!
On Tue, 14 Jan 2020 at 02:01:09 +0100, Guillem Jover wrote:
> The problem I've got is that I upgraded to gcc-10 from experimental,
> which pulled in libgcc1-s1 and libgcc1 (that I later removed), neither
> of which install libgcc_s.so.1 under /lib/$MULTIARCH anymore. The first
> instal
Control: retitle -1 unsupported upgrade from ```
> dpkg: error processing archive
> /var/cache/apt/archives/cryptsetup_2%3a2.2.2-3_deb (--unpack):
> trying to overwrite '/usr/sbin/luksformat', which is also in package
> cryptsetup-bin 2:1.7.0-2
> ```
That seems to be an upgrade from a package ver
On Thu, 27 Feb 2020 at 23:55:49 +, jnq...@gmail.com wrote:
> It is thus not a question of 'FrankenDebian' but of how old a sid
> installation upgrading is supported for.
The starting baseline doesn't matter, if you start from sid and don't
upgrade for longer than a full recycle, then most of y
On Fri, 28 Feb 2020 at 05:40:10 +, jnq...@gmail.com wrote:
> edit: ah, so I see there were two reorganisations, one in June 2018 and
> one more in June 2019...
More precisely, one two-steps reorganisation with a Debian release in
between ;-)
> Indeed if I had performed a stable->stable->stab
Control: tag -1 patch
On Fri, 06 Mar 2020 at 17:50:38 +0100, Guilhem Moulin wrote:
> Also, calling exit() in fillbuf() is the wrong approach as the buffer
> might not have been drained yet.
The enclosed patch seems to work for me. (Untested though, so not
pushing just yet.) Since f
Hi josch,
On Wed, 20 Nov 2019 at 11:21:31 +0100, Johannes Schauer wrote:
> Indeed it would not. The autopkgtest does not even test upgrades. But when I
> re-installed the system after the upgrade failed I also was unsure in many
> points of how to do it correctly. The autopkgtest does not only ser
Control: tag -1 pending
Control: retitle -1 interimap: typo in documentation: though → through
Hi,
On Sat, 14 Dec 2019 at 21:06:14 +0100, Jonas Smedegaard wrote:
> Reads more sensible to me with word "though" replaced by "through".
Ah yeah, thanks! Removed “html” in the title: the source, in pa
Hi Sandro,
On Tue, 24 Dec 2019 at 17:21:40 +0100, Sandro Knauß wrote:
> An IMAP server may have temporally issues, like to much load and roundcube
> fails with
> "Empty startup gretting".
Did you try to upstream that patch? Also FWIW the code snippet seems to
be unchanged since <1.0.0, AFAICT n
Hi Christoph,
On Mon, 27 Jan 2020 at 07:23:02 +0100, Christoph Biedl wrote:
> As far as I understand however, while such a situation _can_ happen, it
> is not very likely.
FWIW our last heavy refactoring was in spring/summer 2018. We obviously
won't change the internal interface just “for fun”,
Hi,
On Sun, 26 Jan 2020 at 17:34:50 +, hede wrote:
> I've switched to Authenticated Encryption, i.e:
> […]
> Nevertheless, the initramfs doesn't get created as expected.
Given upstream's loud warning in cryptsetup(8) “WARNING: All support for
authenticated modes is experimental”, fixing this
On Wed, 29 Jan 2020 at 21:25:02 +0100, hede wrote:
> On Wed, 29 Jan 2020 20:17:28 +0100 Guilhem Moulin wrote:
>
>> Given upstream's loud warning in cryptsetup(8) “WARNING: All support for
>> authenticated modes is experimental”, fixing this is not personally
>> r
Package: initramfs-tools
Version: 0.136
Severity: wishlist
Dear Maintainer,
libthread appears to load libgcc_s via dlopen, so copy_exec() won't copy
it to the initramfs image. This causes pthread_cancel to fail with
LIBGCC_S_SO must be installed for pthread_cancel to work
https://sourc
Control: tag -1 pending
Hi there,
I believe
https://salsa.debian.org/cryptsetup-team/cryptsetup/commit/863e91f0e763b92a5f70d84278116a28357e74eb
should fix this, but I had to refactor a bit so would appreciate some
extra tests before releasing the fix. You can apply the above manually
(aft
On Tue, 14 Jan 2020 at 03:22:20 +0100, Guilhem Moulin wrote:
> If there is a need for a complex logic I guess this could be done once
> and for all in /usr/share/initramfs-tools/hook-functions.
Quick follow up about this: asked Ben for feedback and he agreed that it
would make sense to do
On Mon, 03 Feb 2020 at 13:22:44 +0100, Vincent Bernat wrote:
> The hack in cryptroot hook doesn't find it anymore.
FWIW a mitigation was meanwhile uploaded as cryptsetup-initramfs 2:2.2.2-3,
cf. #950628.
--
Guilhem.
signature.asc
Description: PGP signature
Hej Jonas!
On Sun, 20 Oct 2019 at 17:54:39 +0200, Jonas Smedegaard wrote:
> I happily use interimap with multiple configs.
\o/ I'd be interested to hear about the topology of your system. I
confess that running multiple instances in parallel haven't crossed my
mind until a few months ago when a
Control: tag -1 moreinfo
On Sun, 20 Oct 2019 at 17:58:55 +0200, Jonas Smedegaard wrote:
> Apparently interimap treats some mailboxes specially:
It shouldn't, one can trim the output of the LIST command with the
‘list-*’ options, and perform further filtering with ‘ignore-mailbox’,
but then all ma
Hi Anton,
[dropbear package maintainer here.]
On Mon, 21 Oct 2019 at 16:07:11 -0400, Anton Avramov wrote:
> For a long time now I've maintained servers remotely. One problem that
> I've faced is what when there is problem booting I lose ability to login
> remotely and help the person on premises.
On Mon, 21 Oct 2019 at 00:26:58 +0200, Jonas Smedegaard wrote:
> I syncronize multiple accounts into subdirs below ~/Maildir and track
> them as a whole using a single notmuch database.
AFAIK notmuch doesn't speak IMAP so unfortunately that approach breaks
layering. I'm unsure how well IMAP serv
On Wed, 23 Oct 2019 at 16:04:31 -0400, Anton Avramov wrote:
> On Mon., Oct. 21, 2019, 21:08 Guilhem Moulin, wrote:
>> Given the scope of this package, I strongly believe it'd make more sense
>> to merge it with src:dropbear rather than shipping a separate source
>> pack
Control: clone -1 -2
Control: reassign -2 dropbear-initramfs 2019.78-2
Control: retitle -2 race condition: init-bottom doesn't abort/cleanup
run_networking()
Control: severity -2 normal
On Thu, 24 Oct 2019 at 18:48:12 -0400, Anton Avramov wrote:
> However I've ran into a problem where if there i
Control: merge -1 916649
Hi,
On Wed, 02 Jan 2019 at 11:03:17 +0100, Thorsten Glaser wrote:
> Stopping remaining crypto disks...sda5_crypt (busy)... sda5_crypt busy…
Based on this message I assume you're using SysV init, hence merge this
bug with
#916649 `/etc/init.d/cryptdisks stop` should
On Wed, 02 Jan 2019 at 13:16:41 +0100, Thorsten Glaser wrote:
> In our use case, we have / on LVM on crypto, so this is multiply
> indirect anyway.
No problem with that. (You could also throw MD in that stack, and apply
an arbitrary permutation.) We have this logic in our initramfs hook
already
Control: tag -1 confirmed pending
On Sat, 16 Nov 2019 at 15:57:16 +0100, Jonas Smedegaard wrote:
> Seems interimap can generate commands exceeding what Dovecot can handle.
Ack, that's a long-standing bug which breaks syncronisation in some
scenarios, such as large mailboxes with many non-contiguo
On Sat, 16 Nov 2019 at 16:25:15 +0100, Jonas Smedegaard wrote:
> jonas@auryn:~$ interimap --config debian --repair --debug INBOX.olpc 2>&1 |
> grep -Fw 97
> […]
> local(INBOX.olpc): WARNING: No match for modified remote UID 97. Downloading
> again.
> remote(INBOX.olpc): C: 04 UID FETCH 97 (MO
On Sat, 16 Nov 2019 at 18:19:37 +0100, Jonas Smedegaard wrote:
> Quoting Guilhem Moulin (2019-11-16 17:50:14)
>> On Sat, 16 Nov 2019 at 16:25:15 +0100, Jonas Smedegaard wrote:
>>> jonas@auryn:~$ interimap --config debian --repair --debug INBOX.olpc 2>&1 |
>>
On Sat, 16 Nov 2019 at 20:47:53 +0100, Jonas Smedegaard wrote:
> Doesn't seem succesful (I creatively prepended "a EXAMINE INBOX.olpc",
> hope that is correct):
Yup, sorry for the incomplete commands ;-)
> a UID FETCH 97 MODSEQ
> * OK [HIGHESTMODSEQ 17] Highest
> a OK Fetch completed (0.001 + 0
Control: severity -1 minor
On Sat, 16 Nov 2019 at 23:35:31 +0100, Jonas Smedegaard wrote:
> I guess you mean this:
> […]
> * 3396 FETCH (UID 97 MODSEQ (1) FLAGS ())
> jonas@auryn:~$ ssh jonas-deb...@xayide.jones.dk 'doveadm -f flow fetch "uid
> modseq flags" mailbox INBOX.olpc' | grep -w 97
> u
On Sun, 17 Nov 2019 at 14:38:43 +0100, Jonas Smedegaard wrote:
> doveadm is easier to run as a oneliner (please do tell if interesting
> for you to have also the output of the raw imap commands):
In this case I'd like to see the IMAP server response so I can push a
fix for the “uninitialized valu
On Sun, 17 Nov 2019 at 15:20:51 +0100, Jonas Smedegaard wrote:
> Quoting Guilhem Moulin (2019-11-16 17:26:29)
>> On Sat, 16 Nov 2019 at 15:57:16 +0100, Jonas Smedegaard wrote:
>>> Seems interimap can generate commands exceeding what Dovecot can
>>> handle.
> [...
Control: tag -1 pending
On Sun, 17 Nov 2019 at 16:07:38 +0100, Jonas Smedegaard wrote:
> * 3396 FETCH (UID 97 MODSEQ (1) FLAGS () INTERNALDATE "01-Jan-1970 00:00:00
> +" BODY[] NIL)
Many thanks, that's the first time I see ‘BODY[] NIL’ in an untagged
FETCH response :-) That explains the war
On Sun, 17 Nov 2019 at 17:12:54 +0100, Jonas Smedegaard wrote:
> local(INBOX.olpc): WARNING: No match for 1 vanished remote UID(s) 97.
> Ignoring.
This means the remote server send a VANISHED response for a message in
the “known range” (ie with UID strictly lower than the remote's cache
UIDNEXT v
On Sun, 17 Nov 2019 at 17:54:23 +0100, Jonas Smedegaard wrote:
> Seems the "force-repair" command didn't make any change:
Grmbl, but seems you typoed the mailbox name:
> jonas@auryn:~$ ssh jonas-deb...@xayide.jones.dk 'doveadm force-resync
> INBOXolpc'
If it still doesn't work with the right na
On Sun, 17 Nov 2019 at 19:35:51 +0100, Jonas Smedegaard wrote:
> Seems you edited above quote: I had a dot between INBOX and olpc - is
> that the "typo" you are talking about then the command I ran included
> that dot (as did the email I sent).
Oh sorry for that, my finger must have ripped as I
On Sun, 17 Nov 2019 at 20:54:47 +0100, Jonas Smedegaard wrote:
> Ohh - problem seems gone indeed now:
Woo! \o/
--
Guilhem.
signature.asc
Description: PGP signature
Hi Jonas,
On Sun, 17 Nov 2019 at 21:19:21 +0100, Jonas Smedegaard wrote:
> I would love something geared towards standards-compliant IMAP,
> enabled by adding one interimap config line pointing to my notmuch
> database.
Such a MUA-specific feature is most likely a won't fix I'm afraid,
because in
Control: severity -1 minor
Control: retitle -1 gpg-key2ps should list curve names for ECC keys rather than
$ALGO$LENGTH
Hi,
On Thu, 28 Nov 2019 at 21:59:18 +0200, Mikaela Suomalainen wrote:
> my key is printed as eddsa256/BAE30723, while I believe it should be
> ed25519 as reported by `gpg --lis
Hi Scott,
On Mon, 19 Jun 2017 at 16:56:28 -0400, Scott Kitterman wrote:
> I need to think a bit about how best to address this, but I have the
> information I need.
I'd like to flag that this bug causes every postfix upgrade since
3.2.2-1 to fail on systems with a non-default ‘alias_database’ typ
Hi there,
On Mon, 01 Jul 2019 at 04:21:46 +0200, Cyril Brulebois wrote:
> Roger Shimizu (2019-06-30):
>> Thank for the above doc, which is quite easy understanding and
>> straightforward!
>> […]
>> I confirmed with /boot set up in LUKS1, everything works fine.
>> It‘d configure non encrypted /bo
On Mon, 01 Jul 2019 at 04:45:47 +0200, Guilhem Moulin wrote:
> Sure, I even planned to do that when I heard about your post-mini-DebConf
> “hiccup” ;-) I remained on the road for another 3 weeks and unfortunately
> didn't find time since the mini Debconf. Thanks for the poke, I
Control: reassign -1 cryptsetup-initramfs 2:2.1.0
Control: tag -1 moreinfo
Hi,
On Tue, 09 Jul 2019 at 13:00:52 +, Luke Flinders wrote:
> Error message is;
> Error: Timeout reached while waiting for askpass
>
> Command run is;
> cryptroot-unlock
Are you running `cryptroot-unlock` from an ini
On Tue, 09 Jul 2019 at 14:47:04 +, Luke Flinders wrote:
> cat /etc/crypttab
> sda5_crypt UUID=ec7880bc-c758-4681-8e94-b21f13752b48 none luks,discard
Is there an entry for ‘sda5_crypt’ in the initramfs' ‘/cryptroot/crypttab’?
And, is ‘/scripts/local-top/cryptroot’ running by the time you start
ge depending on
cryptsetup-run and cryptsetup-initramfs.
-- Guilhem Moulin Wed, 16 May 2018 23:39:20 +0200
So if you remove the transition package you'll also need to `apt mark
manual` the dependencies. I guess deborphan could do that
automatically?
For what it's worth in your cas
Package: irssi-plugin-xmpp
Version: 0.54-3
Severity: important
Hi there,
I got bit by this bug after the upgrade to Buster:
irssi-xmpp 0.54 fails to connect to jabber server with irssi-1.2.0
I upgraded irssi to 1.2.0. After the upgrade irssi-xmpp fails to
connect to jabber server. T
Hi,
On Wed, 10 Jul 2019 at 09:24:16 +, Luke Flinders wrote:
> So have done some more testing and it seems that the removal of
> cryptsetup-nuke-password resolves the issue.
What is that? There is no such package in Debian.
> I had however tested this before and had it all functioning.
> Hop
On Fri, 31 May 2019 at 14:55:04 +0200, Guilhem Moulin wrote:
> And your proposed logic won't work well with detached headers, which
> might be long gone by the time the initramfs image is created.
My bad, on second read your proposal doesn't affect detached headers at
all, as you
angelog
--- cryptsetup-2.1.0/debian/changelog 2019-04-30 21:20:47.0 +0200
+++ cryptsetup-2.1.0/debian/changelog 2019-05-28 17:04:16.0 +0200
@@ -1,3 +1,22 @@
+cryptsetup (2:2.1.0-4) unstable; urgency=medium
+
+ [Guilhem Moulin]
+ * d/initramfs/hooks/cryptroot: Always add userspac
Control: reassign 904916 -1 cryptsetup
Control: forcemerge 904916 -1
Hi Peter,
I guess #904916 would be #0 so I'm (force)merging with that bug. We'll
need to chase which files dh_installdocs(1) installs compressed but
appear without ‘.gz’ suffix in user messages and/or documentation.
dh_compres
Control: tag -1 pending
Hi there,
On Sun, 24 Feb 2019 at 15:07:54 +0300, Oleg Strikov wrote:
> I expected to see $config['language'] = 'ru_RU' in the configuration
> file after setting debconf option roundcube/language accordingly,
> but that's not what happened:
There were two problems:
1.
Control: tag -1 pending
Hi Rob,
On Thu, 03 Jan 2019 at 11:08:40 -0500, Rob wrote:
> It is a small relatively simple plugin that I didn't see a reason for
> leaving it out.
I believe it was simply forgotten when we packaged 1.0. Same thing with
a few other plugins: 'example_addressbook', 'identi
On Sat, 09 Jun 2018 at 15:16:31 +1200, stven jones wrote:
> * What exactly did you do (or not do) that was effective (or ineffective)?
>
> reset the debian database config to the remote mysql server's IP after the
> patching wiped this.
What *exactly* did you do: which file, and its diff?
--
Thanks for the fast feedback :-)
On Thu, 06 Jun 2019 at 00:37:46 +, Steven Jones wrote:
> I edited the file as below to make it work with a remote mysql server
> I already had running,
And that broke Roundcube? I'm confused between the title of this bug
and your earlier “What was the outcome
Package: finish-install
Version: 2.100
Severity: wishlist
Tags: patch
Hi there,
Since 2:2.0.3-1 the ‘cryptsetup’ package is a transitional dummy package
for ‘cryptsetup-run’ (various scripts and helpers/wrappers) and
‘cryptsetup-initramfs’ (initramfs integration, depending on the former).
h
Package: partman-crypto
Version: 103
Severity: wishlist
Hi there,
Since 2:2.0.3-1 the ‘cryptsetup’ package is a transitional dummy package
for ‘cryptsetup-run’ (various scripts and helpers/wrappers) and
‘cryptsetup-initramfs’ (initramfs integration, depending on the former).
https://tracker
Also if #930228 is fixed before #930229 (if ‘partman-crypto’ installs
‘cryptsetup-initramfs’ iff. there are devices to be unlocked early in
the boot process), then #930229's Severity should raise to ≥important.
Otherwise if the resume devices(s) and the device(s) holding / and /usr
are not encrypt
Hi there,
On Mon, 15 Apr 2019 at 23:24:19 +0200, Cyril Brulebois wrote:
>>> One could argue that cryptodisk support has never been supported by
>>> d-i anyway,
>>
>> Yup, and I suppose that's why I overlooked this in my mail to
>> debian-boot :-P Jonathan Carter had a similar report last week
>>
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Tags: d-i
Hi there,
During a chat last at MiniDebConf Hamburg last week-end we (cryptsetup
package maintainers + KiBi + ivodd) discussed a path forward for #927165
(debian-installer: improv
Control: severity -1 minor
Hi,
On Tue, 18 Jun 2019 at 20:35:47 +0200, Jernej Jakob wrote:
> Any keyfiles configured in /etc/cryptsetup-initramfs/conf-hook
> KEYFILE_PATTERN are not added to the initramfs if the target in
> /etc/crypttab also has keyscript set.
As crypttab(5) reads,
“In case
Package: signify-openbsd-keys
Version: 2018.4
Severity: wishlist
Dear Maintainer,
I noticed you prepared a release with the keys for OpenBSD 66
https://salsa.debian.org/debian/signify-openbsd-keys/commit/14edcb216bf56cbeec6cf872042350488a75b1ab
but didn't follow with an upload to sid. Cou
Control: retitle -1 cryptsetup-initramfs: hook files should give hints about
missing packages to install
Control: severity -1 minor
Hi,
On Sun, 04 Aug 2019 at 10:45:33 +0200, Sebastian Mohr wrote:
> After some debugging, I found out, that this script copies the file
> "/bin/keyctl" to the initra
Control: severity -1 minor
Control: tag -1 pending
On Wed, 07 Aug 2019 at 09:16:33 -0400, Ian Kelling wrote:
> "You can unlock your rootfs on bootup remotely, using SSH to log in to
> the booting system while it's running with the initramfs mounted.
> Consult cryptsetup's /usr/share/doc/cryptsetup
Package: libcryptsetup12
Version: 2:2.1.0-7
Severity: important
Tags: upstream
(Cloning upstream issue #466 so we can track it for Buster, Bullseye and sid.)
Even when all (bound) key slots were removed from a LUKS header, the header is
still salvageable given a copy of the master key.
The crypt
Package: apticron-systemd
Version: 1.2.1
Severity: normal
Dear Maintainer,
‘debian/dirs’ and ‘debian/manpages’ are only installed into the first
binary package acted on, namely apticron. Hence apticron-systemd is
lacking /usr/share/man/man1/apticron.1.gz and /var/lib/apticron/.
The latter in pa
Hi Matt,
On Fri, 18 Jan 2019 at 15:01:59 -0800, Matt Taggart wrote:
> There was some discussion on the debian-boot list during the
> libcryptsetup transition about the format
>
> https://lists.debian.org/debian-boot/2017/12/msg00231.html
>
> including a comment,
>
> "feel free to poke us again
Package: wnpp
Severity: wishlist
Owner: Guilhem Moulin
* Package name: interimap
Version : 0.4
Upstream Author : Guilhem Moulin
* URL : https://git.guilhem.org/interimap/about/
* License : GPL-3+
Programming Lang: Perl
Description : Fast bidirectional
Package: wnpp
Severity: wishlist
Owner: Guilhem Moulin
* Package name: pullimap
Version : 0.4
Upstream Author : Guilhem Moulin
* URL : https://git.guilhem.org/interimap/about/
* License : GPL-3+
Programming Lang: Perl
Description : Pull mails from an
Package: wnpp
Severity: wishlist
Owner: Guilhem Moulin
* Package name: libinterimap
Version : 0.4
Upstream Author : Guilhem Moulin
* URL : https://git.guilhem.org/interimap/about/
* License : GPL-3+
Programming Lang: Perl
Description : Net::IMAP
On Sun, 20 Jan 2019 at 18:07:15 +0100, Jonas Smedegaard wrote:
> As you know, I have been looking forward to this one :-)
Better late than never :-P But wasn't it the bidirectional
synchronization program (#919904) we discussed about?
--
Guilhem.
signature.asc
Description: PGP signature
Hi,
On Mon, 21 Jan 2019 at 12:40:47 +0200, Peter Pentchev wrote:
> Hmm, as a Perl programmer, I do understand the spirit of "there's more
> than one way to do it", so please do not take this as an objection of
> any kind, but still I feel curious: what are pullimap's advantages over
> fetchmail?
Control: tag -1 moreinfo
Hi Dimitri,
On Thu, 14 Mar 2019 at 12:36:13 +, Dimitri John Ledkov wrote:
> Currently the new cryptsetup defaults to LUKS2 format with the
> following parameters:
>
> Default PBKDF for LUKS2: argon2i
> Iteration time: 2000, Memory required: 1048576kB, Parallel thread
Control: tag -1 + wontfix
Control: tag -1 - moreinfo
Control: severity -1 normal
On Thu, 14 Mar 2019 at 17:31:05 +, Dimitri John Ledkov wrote:
> On Thu, 14 Mar 2019 at 16:55, Guilhem Moulin wrote:
>> AFAICT it does. What I guess doesn't is if the machine's resources a
Hi Milan,
On Thu, 14 Mar 2019 at 19:22:42 +0100, Milan Broz wrote:
>>> I think diverging from upstream (and other distros) with respect to
>>> default algorithms requires careful consideration. And in that case,
>>> compared to PBKDF2 Argon2 has interesting properties (such as resistance
>>> to G
Thanks, uploaded! Hope this makes it to 10.1 :-)
And again, many thanks for your work on Buster!
--
Guilhem.
signature.asc
Description: PGP signature
Package: qemu-system-x86
Version: 1:4.1-1
Severity: normal
File: qemu-system
Dear Maintainer,
Using a pre-opened file descriptor to a disk image no longer work as
documented (and as it used to with ≤1:3.1+dfsg-8~deb10u1):
$ touch /tmp/disk.img
$ qemu-system-x86_64 -display none \
On Wed, 04 Sep 2019 at 19:54:51 +0200, Guilhem Moulin wrote:
> $ qemu-system-x86_64 -display none \
> -add-fd "fd=3,set=0" \
> -drive "file=/dev/fdset/0,format=raw,media=disk" \
> 3<>/tmp/disk.img
> qemu-system-x86_64: -drive file=/dev/fd
701 - 800 of 1080 matches
Mail list logo