Bug#987921: linbox FTBFS on 32bit with gcc 10

[Adrian Bunk]

Source: linbox
Version: 1.6.3-2
Severity: serious
Tags: ftbfs

https://tests.reproducible-builds.org/debian/rb-pkg/bullseye/i386/linbox.html

...
In file included from ../linbox/algorithms/gauss-gf2.h:244,
 from test-qlup.C:44:
../linbox/algorithms/gauss/gauss-solve-gf2.inl: In instantiation of 'Vector1& 
LinBox::GaussDomain::solveInPlace(Vector1&, SparseSeqMatrix&, 
const Vector2&) const [with SparseSeqMatrix = LinBox::ZeroOne; 
Vector1 = LinBox::BitVector; Vector2 = LinBox::BitVector]':
test-qlup.C:204:18:   required from 'bool testQLUPsolve(const Field&, size_t, 
unsigned int, int, double) [with Field = LinBox::GF2; Blackbox = 
LinBox::ZeroOne; RandStream = 
LinBox::RandomSparseStreamGF2 >; size_t = 
unsigned int]'
test-qlup.C:416:86:   required from here
../linbox/algorithms/gauss/gauss-solve-gf2.inl:75:52: error: ambiguous overload 
for 'operator+' (operand types are 'LinBox::BitVector::iterator' and 
'std::ptrdiff_t' {aka 'int'})
   75 | for(typename Vector1::iterator 
it=w.begin()+(ptrdiff_t)Rank;it!=w.end();++it)
  |   ~^~~~
In file included from ../linbox/vector/bit-vector.h:191,
 from ../linbox/field/gf2.h:39,
 from ../linbox/vector/vector-domain-gf2.h:59,
 from ../linbox/vector/vector-domain.h:1336,
 from ../linbox/matrix/matrix-domain.h:35,
 from ../linbox/matrix/sparsematrix/sparse-generic.h:80,
 from ../linbox/matrix/sparse-matrix.h:70,
 from test-qlup.C:42:
../linbox/vector/bit-vector.inl:254:12: note: candidate: 
'LinBox::BitVector::iterator 
LinBox::BitVector::iterator::operator+(LinBox::BitVector::iterator::difference_type)
 const'
  254 |   iterator operator + (difference_type i) const
  |^~~~
In file included from /usr/include/c++/10/vector:68,
 from ../linbox/util/debug.h:42,
 from ../linbox/matrix/matrix-traits.h:29,
 from ../linbox/matrix/sparse-matrix.h:40,
 from test-qlup.C:42:
/usr/include/c++/10/bits/stl_bvector.h:303:5: note: candidate: 
'std::_Bit_iterator::iterator std::operator+(const iterator&, 
std::iterator::difference_type)'
  303 | operator+(const iterator& __x, difference_type __n)
  | ^~~~
...

Bug#987920: ypbind-mt: /etc/defaultdomain should be created at installation time

[Yasuhiro Kimura]

Package: ypbind-mt
Version: 2.7.2-2
Severity: important

Dear Maintainer,

What I did:

1. Download Release Candidate 1 Debian Installer image for Bullseye.
2. Make clean install with it
3. Login as root
4. apt install ypbind-mt
5. Add 'ypserver (IP address of NIS server)' to /etc/yp.conf
6. systemctl start ypbind.service

Expected behavior:

ypbind starts successfully.

What really happens:

ypbind fails to start. `systemctl status ypbind.service` shows
following log messages

--
May 02 10:26:10 nisclienthost systemd[1]: Starting NIS Binding Service...
May 02 10:26:10 nisclienthost domainname[1234]: domainname: No such file or 
directory
May 02 10:26:10 nisclienthost systemd[1]: ypbind.service: Control process 
exited, code=exited, status=1/FAILURE
May 02 10:26:10 nisclienthost systemd[1]: ypbind.service: Failed with result 
'exit-code'.
May 02 10:26:10 nisclienthost systemd[1]: Failed to start NIS Binding Service.
--

What is the problem:

The source of the problem is that following is necessary between step
5 and 6.

5.5. cat (name of my NIS domain) > /etc/defaultdomain

But is isn't documented anywhere. So at least it should be documented
in the document of this packages. However, ypbind.service doesn't
start successfully without this file. So it should be created when
this package is installed.

-- System Information:
Debian Release: bullseye/sid
  APT prefers testing-security
  APT policy: (500, 'testing-security'), (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.10.0-6-amd64 (SMP w/4 CPU threads)
Locale: LANG=ja_JP.UTF-8, LC_CTYPE=ja_JP.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages ypbind-mt depends on:
ii  hostname   3.23
ii  libc6  2.31-11
ii  libnsl21.3.0-2
ii  libsystemd0247.3-5
ii  libtirpc3  1.3.1-1
ii  rpcbind [portmap]  1.2.5-9

Versions of packages ypbind-mt recommends:
ii  libnss-nis  3.1-4
ii  nscd2.31-11
ii  yp-tools4.2.3-3

ypbind-mt suggests no packages.

-- Configuration Files:
/etc/yp.conf changed:
ypserver 192.168.0.1


-- no debconf information

Bug#987919: iputils-tracepath: alternative for traceroute6 should have lower priority than that of /usr/bin/traceroute6.db

[Christoph Anton Mitterer]

Package: iputils-tracepath
Version: 3:20210202-1
Severity: wishlist



Hi.

AFAIU, iputils-tracepath provides only a IPv6 tracepath
(/usr/bin/traceroute6.iputils), right?

traceroute provides one (/usr/bin/traceroute.db) for both,
v4 and v6.

I would say that most people expect that if both packages are installed,
traceroute and traceroute6 come from the same "origin",
but right now,
- traceroute would be that from the traceroute package
- traceroute6 would be that from iputils-tracepath


So perhaps it would make sense to give iputils-tracepath's
tracepath6 a lower priority than traceroute's?

Cheers,
Chris.

Bug#966675: virt-v2v missing

[Wong Hoi Sing Edison]

During contribution to 
https://github.com/vagrant-libvirt/vagrant-libvirt/issues/1256, I found 
that virt-v2v would be a good choice for export/import instance as 
Vagrant Box internal format; BTW, I am using Ubuntu 20.10 and found that 
it is now missing virt-v2v package due to 
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=966675...


After follow https://wiki.debian.org/HowToPackageForDebian and 
https://www.debian.org/doc/manuals/maint-guide/first.en.html#dh-make, 
referencing changes from https://salsa.debian.org/libvirt-team/virt-p2v, 
I could create a Debian package for 
https://download.libguestfs.org/virt-v2v/1.44-stable/virt-v2v-1.44.0.tar.gz 
as below:


 * 
https://github.com/libguestfs/virt-v2v/compare/master...alvistack:debian/master.patch
 * 
https://github.com/alvistack/libguestfs-virt-v2v/releases/download/v1.44.0/virt-v2v_1.44.0-1_amd64.deb
 * https://github.com/alvistack/libguestfs-virt-v2v/releases/tag/v1.44.0

May I have some hits for contribute above progress for Debian upstream 
so it could be included in Debian 11?


Regards,

--

Edison Wong



OpenPGP_signature
Description: OpenPGP digital signature

Bug#987918: traceroute-nanog manpage shouldn't link to traceroute.db manpage

[Christoph Anton Mitterer]

Package: traceroute
Version: 1:2.1.0-2+b1
Severity: normal


Hi.

Right now the package has:
/usr/share/man/man1/traceroute-nanog.1.gz -> traceroute.db.1.gz

but AFAIU, this is plain wrong.

traceroute-nanog seems to be a shell wrapper around traceroute.db
translating the options from the actual traceroute-nanog to
traceroute.db.

The option set of traceroute-nanog doesn't seem to match that of
traceroute.db.

Cheers,
Chris.

Bug#886568: exabgp is not able to create its command pipe

[Marco d'Itri]

On Dec 23, Marco d'Itri  wrote:

> Adding this to exabgp.service will take care of it.
Do you have any plans to fix this? As far as I can see exabgp is broken 
out of the box.

-- 
ciao,
Marco


signature.asc
Description: PGP signature

Bug#987917: inkscape: libxml-xql-perl still used?

[Christoph Anton Mitterer]

Package: inkscape
Version: 1.0.2-4
Severity: minor



Hi.

I've just wondered whether inkscape still makes use of libxml-xql-perl?

The shadow effect seems to work without it (at least the one I found),
also I couldn't find any ocurrance of XML::XQL within the source package.

So perhaps one can drop the Suggests?


Cheers,
Chris.

PS: It's great that you describe the Suggests in the package description
but why not the Recommends?

Bug#695182: linux-image-3.2.0-4-686-pae: Write couple of 1GB files for OOM crash

[Paul Szabo]

I no longer use 32-bit kernels (but use the 64-bit amd64 kernel, even on
my few last remaining 32-bt machines): that seems a suitable workaround
or upgrade path. Should I try to test whether the issue with PAE
remains?

Cheers, Paul
-- 
Paul Szabo   p...@maths.usyd.edu.au   www.maths.usyd.edu.au/u/psz
School of Mathematics and Statistics   University of SydneyAustralia

I support NTEU members taking a stand for workplace rights in the face of
poorly-run change management. Visit www.nteu.org.au/sydney to learn more.

Bug#987916: openssh: Segfault or malloc_consolidate(): invalid chunk size + Aborted with GSSAPITrustDns yes

[Christoph Anton Mitterer]

Source: openssh
Version: 1:8.4p1-5
Severity: important


Hey.

This is from https://bugzilla.mindrot.org/show_bug.cgi?id=3307:

Hey there.

I've noted the two errors, with the following setup:

Locally, I have:
OpenSSH_8.4p1 Debian-5, OpenSSL 1.1.1k  25 Mar 2021

from which I connect to some internal node at CERN (hammercloud-ai-11.cern.ch) 
via some publicly available node (lxplus.cern.ch) which all have:
OpenSSH_7.4p1, OpenSSL 1.0.2k-fips  26 Jan 2017

The lxplus.cern.ch is actually a round robin DNS name, but all nodes behind 
have the same ssh server key.


Since CERN uses AFS, I have to do GSSAPI auth.
Locally I have a keytab file created with ktuil, which even works out of the 
box with SSH - that is, if I don't have a krb ticket yet, it automatically 
creates one.


My SSH config looks like the following:
Host hammercloud-ai-11.cern.ch
GSSAPIAuthentication yes
GSSAPIDelegateCredentials yes
GSSAPIRenewalForcesRekey yes
GSSAPITrustDns yes
ProxyJump   lxplus.cern.ch


Host lxplus.cern.ch
GSSAPIAuthentication yes
GSSAPIDelegateCredentials yes
GSSAPIRenewalForcesRekey yes
GSSAPITrustDns yes
#   ControlMaster   auto
#   ControlPersist  10s
#   ControlPath ~/.ssh/channel-mux/%r@%h:%p

Host *.cern.ch
User someUser
IdentityFile~/.ssh/id_ed25519
SetEnv "LANG=en_US.UTF-8"


Further, I do have a custom locale which is basically en_US.UTF-8, but with 
some international stuff like "," as decimal separator.

Now that works to login to lxplus, and from there (within an interactive 
session) to hammercloud-ai-11.

When I use the ProxyJump however and directly go to hammercloud-ai-11, I start 
to see errors.


1) with LANG=en_DE.UTF-8 it segfaults:
$ ssh hammercloud-ai-11.cern.ch -v
...
Authenticated to hammercloud-ai-11.cern.ch (via proxy).
debug1: channel 0: new [client-session]
debug1: Requesting no-more-sessi...@openssh.com
debug1: Entering interactive session.
debug1: pledge: proc
debug1: client_input_global_request: rtype hostkeys...@openssh.com want_reply 0
debug1: Sending environment.
debug1: Sending env LANG = en_DE.UTF-8
Segmentation fault
$ debug1: stdio forwarding: done

Interestingly it seems to still try to send "my" locale instead what I've 
configured above with:
SetEnv "LANG=en_US.UTF-8"



2) the same with LANG=C
$ export LANG=C
$ ssh hammercloud-ai-11.cern.ch -v
...
Authenticated to hammercloud-ai-11.cern.ch (via proxy).
debug1: channel 0: new [client-session]
debug1: Requesting no-more-sessi...@openssh.com
debug1: Entering interactive session.
debug1: pledge: proc
debug1: client_input_global_request: rtype hostkeys...@openssh.com want_reply 0
debug1: Sending environment.
debug1: Sending env LANG = C
malloc_consolidate(): invalid chunk size
Aborted
$ debug1: stdio forwarding: done


Whether or not using a Control Channel doesn't seem to matter.


When I comment the
Host hammercloud-ai-11.cern.ch
...
#   GSSAPITrustDns yes


It works in both cases.

Commeting the same for lxplus (the proxy node), doesn't solve the issue.


Any ideas?

Cheers,
Chris.



forgot:

May 01 16:38:39 heisenberg kernel: ssh[16368]: segfault at 7e0008 ip 
7f646525a86c sp 7ffd72b5fb30 error 4 in 
libc-2.31.so[7f64651f9000+14b000]
May 01 16:38:39 heisenberg kernel: Code: 43 28 00 00 00 00 48 8b 54 24 08 48 89 
ef 48 89 43 10 48 83 cf 01 48 89 7b 08 48 89 53 18 48 89 2c 2b 48 85 c9 74 87 
48 89 cb <48> 8b 43 08 89 c1 c1 e9 04 83 e9 02 49 8d 4c cc 10 49 39 cd 0f 85
May 01 16:38:50 heisenberg kernel: ssh[16375]: segfault at 7e0008 ip 
7fe602caa86c sp 7fff2ac78150 error 4 in 
libc-2.31.so[7fe602c49000+14b000]
May 01 16:38:50 heisenberg kernel: Code: 43 28 00 00 00 00 48 8b 54 24 08 48 89 
ef 48 89 43 10 48 83 cf 01 48 89 7b 08 48 89 53 18 48 89 2c 2b 48 85 c9 74 87 
48 89 cb <48> 8b 43 08 89 c1 c1 e9 04 83 e9 02 49 8d 4c cc 10 49 39 cd 0f 85




-- System Information:
Debian Release: 11.0
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 5.10.0-6-amd64 (SMP w/4 CPU threads)
Locale: LANG=en_DE.UTF-8, LC_CTYPE=en_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#987915: ITP: vim-subtitles -- Syntax highlighting for subtitle files

[Sven Wick]

Package: vim-subtitles
Severity: wishlist

* Package name  : vim-subtitles
  Version   : 1.0
  Upstream Author   : Josip Deanovic 
* URL   : https://www.linuxpages.org/projects_en.php
* License   : GPL-2
  Programming Lang  : vim-syntax
  Description   : Syntax highlighting for subtitle files

Cheers,

Sven

Bug#982904: mumble: CVE-2021-27229

[Chris Knadle]

Salvatore Bonaccorso:

Hi Chris,

On Sat, May 01, 2021 at 05:52:04PM +, Chris Knadle wrote:

Salvatore Bonaccorso:

[...]

Yes I submitted release.debian.org bug #987859 last night and did the upload
(and was "accepted"), which I think fits almost all of the criteria in the
link above except that I did a "source only" upload rather than upload a
built package; hopefully a source-only upload is acceptable here -- if it's
not let me know.


Yes defintively, in meanwhile source-only are possible (and would
encourage so) to do as well for stable (buster, and buster-security)
uploads.


I hoped as much, I've gotten into the habit of doing source-only uploads for 
everything ... the one exception I think might still exist is the very *first* 
upload of a new package (last I knew) requiring to be a built package rather 
than source-only. I forget at the moment if Debian update that (like Ubuntu).


   -- Chris

--
Chris Knadle
chris.kna...@coredump.us

Bug#987912: iaxmodem FTBFS with gcc 10 on i386

[Adrian Bunk]

Source: iaxmodem
Version: 1.2.0~dfsg-3
Severity: serious
Tags: ftbfs patch

https://tests.reproducible-builds.org/debian/rb-pkg/bullseye/i386/iaxmodem.html

...
gsm0610_rpe.c: Assembler messages:
gsm0610_rpe.c:80: Error: unsupported instruction `movq'
gsm0610_rpe.c:81: Error: unsupported instruction `movq'
gsm0610_rpe.c:82: Error: unsupported instruction `movq'
make[4]: *** [Makefile:618: gsm0610_rpe.lo] Error 1


A proper fix would be #818389 (ideally additionally #987911),
but the attached fix is the minimal fix for bullseye.
Description: Fix FTBFS with gcc 10 on i386
Author: Adrian Bunk 

--- iaxmodem-1.2.0~dfsg.orig/lib/spandsp/src/gsm0610_rpe.c
+++ iaxmodem-1.2.0~dfsg/lib/spandsp/src/gsm0610_rpe.c
@@ -58,7 +58,7 @@
 static void weighting_filter(const int16_t *e, // signal [-5..0.39.44] IN
  int16_t x[40])
 {
-#if defined(__GNUC__)  &&  defined(__i386__)
+#if 0
 /* Table 4.4   Coefficients of the weighting filter */
 /* This must be padded to a multiple of 4 for MMX to work */
 static const union

Bug#987913: libglib2.0-0: upgrade or reinstallation removes /usr/lib//gio/modules/ if empty

[Andreas Beckmann]

Package: libglib2.0-0
Version: 
Severity: serious
User: debian...@lists.debian.org
Usertags: piuparts

Hi,

during a test with piuparts I noticed your package misses two
directories after an upgrade. These directories are shipped by the
package.

Any easy way to reproduce this is in a minimal chroot with only
libglib2.0-0 but no gio modules installed:

  apt-get install --reinstall libglib2.0-0

Piupart reports:

0m27.9s DEBUG: Starting command: ['chroot', '/srv/piuparts/tmp/tmpujqyat', 
'tmp/scripts/pre_remove_40_find_missing_md5sums']
0m27.9s DUMP: 
  libglib2.0-0: MISSING OBJECT /usr/lib/x86_64-linux-gnu/gio
  libglib2.0-0: MISSING OBJECT /usr/lib/x86_64-linux-gnu/gio/modules
0m27.9s DEBUG: Command ok: ['chroot', '/srv/piuparts/tmp/tmpujqyat', 
'tmp/scripts/pre_remove_40_find_missing_md5sums']

This is caused by the postrm script which unconditionally deletes
giomodule.cache and the path to it. During upgrade (or
reinstallation), dpkg will call

old-postrm upgrade new-version

after the new package has been unpacked.

The two actions cleaning up (the path to) giomodule.cache
in postrm should probably be limited to 'remove' and 'purge'.

To properly recreate the missing directories after having
upgraded to a buggy version in the past, you need to mkdir -p
them in postinst. (The directories get deleted (again) by the
old postrm *after* the new package has been unpacked.)

Andreas

Bug#987911: iaxmodem should use libspandsp-dev instead of the vendored copy

[Adrian Bunk]

Source: iaxmodem
Version: 1.2.0~dfsg-3
Severity: important
Control: block -1 by 818389

iaxmodem should use libspandsp-dev instead of the vendored copy.

The latest upstream version of iaxmodem uses the same version 0.0.6
of spandsp.

Bug#902652: aptitude doesn't autoremove kernels

[積丹尼 Dan Jacobson]

found 902652 0.8.13-3
severity 902652 important
thanks

Proof that aptitude is not ready for

   /usr/share/doc/apt/NEWS.Debian.gz
   apt (2.1.16) unstable; urgency=medium

 Automatically remove unused kernels on apt {dist,full}-upgrade. To revert
 to previous behavior, set APT::Get::AutomaticRemove::Kernels to false or
 pass --no-auto-remove to the command. apt-get remains unchanged.

# mv /etc/apt/apt.conf.d/10jidanni ~ #See, not anything caused by me
# for i in apt apt-get aptitude; do set $i -s full-upgrade; echo === 
$@:; $@; done
=== apt -s full-upgrade:
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
Calculating upgrade... Done
The following packages will be REMOVED:
  linux-image-5.10.0-1-amd64 linux-image-5.10.0-2-amd64 
linux-image-5.10.0-3-amd64 linux-image-5.10.0-4-amd64 linux-image-5.9.0-5-amd64
0 upgraded, 0 newly installed, 5 to remove and 0 not upgraded.
Remv linux-image-5.10.0-1-amd64 [5.10.5-1]
Remv linux-image-5.10.0-2-amd64 [5.10.9-1]
Remv linux-image-5.10.0-3-amd64 [5.10.13-1]
Remv linux-image-5.10.0-4-amd64 [5.10.19-1]
Remv linux-image-5.9.0-5-amd64 [5.9.15-1]
=== apt-get -s full-upgrade:
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
Calculating upgrade... Done
The following packages were automatically installed and are no longer required:
  linux-image-5.10.0-1-amd64 linux-image-5.10.0-2-amd64 
linux-image-5.10.0-3-amd64 linux-image-5.10.0-4-amd64 linux-image-5.9.0-5-amd64
Use 'apt autoremove' to remove them.
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
=== aptitude -s full-upgrade:
No packages will be installed, upgraded, or removed.
0 packages upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
Need to get 0 B of archives. After unpacking 0 B will be used.
Would download/install/remove packages.

See also https://bugs.launchpad.net/ubuntu/+source/aptitude/+bug/1772688

Bug#987910: RM: python-netaddr-docs -- NBS; manual cruft removal of obsolete binary package

[Adrian Bunk]

Package: ftp.debian.org
Severity: normal

python-netaddr (0.7.19-5) unstable; urgency=medium
...
  * d/rules: do not build documentation (Closes: #984939)

 -- Vincent Bernat   Wed, 10 Mar 2021 19:35:08 +0100

Bug#987909: mir: Tests are flaky

[Adrian Bunk]

Source: mir
Version: 1.8.0+dfsg1-16
Severity: serious
Tags: ftbfs

https://buildd.debian.org/status/logs.php?pkg=mir=mips64el
https://buildd.debian.org/status/logs.php?pkg=mir=ppc64el
https://tests.reproducible-builds.org/debian/rb-pkg/unstable/armhf/mir.html

Running tests is fine, but please ignore test failures on all
architectures for now since the tests are flaky.

Bug#987213: pypy-stem: fails to upgrade from buster: prerm uses pypy in unconfigured state

[Adrian Bunk]

Control: clone -1 -2
Control: reassign -1 pypy 7.3.3+dfsg-1
Control: retitle -1 pypy: ${shlibs:Depends} must move to Pre-Depends
Control: affects -1 pypy-stem
Control: reassign -2 pypy3 7.3.3+dfsg-3
Control: retitle -2 pypy3: ${shlibs:Depends} must move to Pre-Depends

On Fri, Apr 30, 2021 at 01:48:34PM +0300, Adrian Bunk wrote:
> On Mon, Apr 19, 2021 at 08:41:14PM +0200, Andreas Beckmann wrote:
> >...
> >   Preparing to unpack .../pypy-stem_1.8.0-3_all.deb ...
> >   /usr/bin/pypy: /lib/x86_64-linux-gnu/libm.so.6: version `GLIBC_2.29' not 
> > found (required by /usr/lib/pypy/bin/libpypy-c.so)
> >   dpkg: warning: old pypy-stem package pre-removal script subprocess 
> > returned error exit status 1
> >   dpkg: trying script from the new package instead ...
> >   /usr/bin/pypy: /lib/x86_64-linux-gnu/libm.so.6: version `GLIBC_2.29' not 
> > found (required by /usr/lib/pypy/bin/libpypy-c.so)
> >   dpkg: error processing archive 
> > /var/cache/apt/archives/pypy-stem_1.8.0-3_all.deb (--unpack):
> >new pypy-stem package pre-removal script subprocess returned error exit 
> > status 1
> >   /usr/bin/pypy: /lib/x86_64-linux-gnu/libm.so.6: version `GLIBC_2.29' not 
> > found (required by /usr/lib/pypy/bin/libpypy-c.so)
> >   dpkg: error while cleaning up:
> >installed pypy-stem package post-installation script subprocess returned 
> > error exit status 1
> >   Errors were encountered while processing:
> >/var/cache/apt/archives/pypy-stem_1.8.0-3_all.deb
> > 
> > The problem: at the point where pypy-stem gets unpacked (und thus
> > 'prerm upgrade' is run), the new pypy has already been unpacked but 
> > the new libc6 is not yet unpacked.
> > This should be solvable by adding Pre-depends: pypy to pypy-stem
> > (to ensure pypy is in a usable state).
> > But this looks more like a general problem that could happen in all
> > pypy packages ...
> 
> The solution to the general problem would be to turn the pypy and pypy3 
> Depends into Pre-Depends?

As discussed on IRC, I am cloning and reassigning.

cu
Adrian

Bug#985141: [request-tracker-maintainers] Bug#985141: request-tracker4: Misconfigured DatabaseAdmin when using mysql

[Dominic Hargreaves]

On Sat, Mar 13, 2021 at 04:18:17PM +0100, Peter Nagel wrote:
> Package: request-tracker4
> Version: 4.4.3-2
> Severity: normal
> 
> Dear Maintainer,
> 
> When installing request-tracker4 (mariadb-server and rt4-db-mysql are already 
> installed)
> I see (during installation) the following output:
>...

FTR, a fix is being discussed in a separate mailing list thread:

Bug#987896: GUI drawing error due to Dsun.java2d.opengl=true

[Alexis PM]

Package: sweethome3d
Version: 6.1.2+dfsg-2
Severity: grave
Justification: package unusable

Widespread GUI drawing errors (entire sections of the window appear black when 
interacting with GUI elements hovering the mouse, clicking on buttons, pulling 
down menus,...) make sweethome3d unusable. This happens both on my laptop and 
inside a QEMU virtual machine on another computer.

The simple solution is delete
-Dsun.java2d.opengl=true
in
/usr/share/sweethome3d/sweethome3d.sh

If you want to keep the "-Dsun.java2d.opengl" option with value "true" for 
those computers where this option is not problematic (I don't know how to 
identify it) then a "if" conditional is necessary for JAVA_ARGS in 
/usr/share/sweethome3d/sweethome3d.sh. If in doubt, it is best to delete it 
from the file.

Best regards.

PS: java --version
openjdk 11.0.9.1 2020-11-04
OpenJDK Runtime Environment (build 11.0.9.1+1-post-Debian-1deb10u2)
OpenJDK Server VM (build 11.0.9.1+1-post-Debian-1deb10u2, mixed mode, sharing)

dpkg -l | grep -Ei 'default-jre|sweethome'
ii  default-jre  2:1.11-71  
i386 Standard Java or Java compatible Runtime   

ii  default-jre-headless 2:1.11-71  
i386 Standard Java or Java compatible Runtime (headless)

ii  sweethome3d  6.1.2+dfsg-2   all 
 Interior 2D design application with 3D preview 

Bug#987907: ganeti: fails to upgrade from buster: ganeti-2.16 is still needed, but scheduled for removal

[Andreas Beckmann]

Package: ganeti
Version: 3.0.1-2
Severity: serious
User: debian...@lists.debian.org
Usertags: piuparts

Hi,

during a test with piuparts I noticed your package fails to upgrade from
'buster'.
It installed fine in 'buster', then the upgrade to 'bullseye' fails.

In order to run 'gnt-cluster upgrade' both ganeti-3.0 and ganeti-2.16
need to be installed, but the package from buster needs to be removed
due to the removal of unversioned python and the Python 2 modules
(python-*) before the local admin could run 'gnt-cluster upgrade'

I'm not sure how a clean upgrade is intended to be performed in this
case. This may also be an interesting question for DSA.

>From the attached log (scroll to the bottom...):

  The following packages were automatically installed and are no longer 
required:
ganeti-haskell-2.16 ganeti-htools-2.16 libprocps7 libpython2-stdlib
libpython2.7-minimal libpython2.7-stdlib libreadline5 libreadline7
python-six python2 python2-minimal python2.7 python2.7-minimal
  Use 'sudo apt autoremove' to remove them.
  The following packages will be REMOVED:
ganeti-2.16 libpython-stdlib python python-asn1crypto python-bcrypt
python-bitarray python-cffi-backend python-cryptography python-enum34
python-fdsend python-ipaddr python-ipaddress python-minimal python-nacl
python-openssl python-paramiko python-psutil python-pyasn1 python-pycurl
python-pyinotify python-pyparsing python-simplejson
  The following NEW packages will be installed:
ganeti-3.0 ganeti-haskell-3.0 ganeti-htools-3.0 gcc-10-base libapt-pkg6.0
libbpf0 libbrotli1 libcbor0 libcrypt1 libffi7 libfido2-1 libgcc-s1
libgdbm-compat4 libgdbm6 libhogweed6 libmd0 libmpdec3 libnettle8 libnsl2
libpcre2-8-0 libperl5.32 libprocps8 libpython3-stdlib libpython3.9-minimal
libpython3.9-stdlib libreadline8 libtirpc-common libtirpc3 libxxhash0
logsave mailcap media-types perl perl-modules-5.32 python3 python3-bcrypt
python3-bitarray python3-cffi-backend python3-cryptography python3-minimal
python3-nacl python3-openssl python3-paramiko python3-psutil python3-pycurl
python3-pyinotify python3-pyparsing python3-simplejson python3-six python3.9
python3.9-minimal runit-helper tzdata
  The following packages will be upgraded:
[...]
  135 upgraded, 53 newly installed, 22 to remove and 0 not upgraded.
[...]
  Selecting previously unselected package ganeti-3.0.
  Preparing to unpack .../44-ganeti-3.0_3.0.1-2_all.deb ...
  Adding 'diversion of /usr/share/ganeti/2.16/ganeti/utils/version.py to 
/usr/share/ganeti/2.16/ganeti/utils/version.py.orig by ganeti-3.0'
  Unpacking ganeti-3.0 (3.0.1-2) ...
  Preparing to unpack .../45-libcurl4_7.74.0-1.2_amd64.deb ...
  Unpacking libcurl4:amd64 (7.74.0-1.2) over (7.64.0-4+deb10u2) ...
  Preparing to unpack .../46-libpcre3_2%3a8.39-13_amd64.deb ...
  Unpacking libpcre3:amd64 (2:8.39-13) over (2:8.39-12) ...
  Setting up libpcre3:amd64 (2:8.39-13) ...
  Selecting previously unselected package ganeti-haskell-3.0.
  Preparing to unpack .../ganeti-haskell-3.0_3.0.1-2_amd64.deb ...
  Unpacking ganeti-haskell-3.0 (3.0.1-2) ...
  Selecting previously unselected package ganeti-htools-3.0.
  Preparing to unpack .../ganeti-htools-3.0_3.0.1-2_amd64.deb ...
  Unpacking ganeti-htools-3.0 (3.0.1-2) ...
  Preparing to unpack .../ganeti_3.0.1-2_all.deb ...
  Unpacking ganeti (3.0.1-2) over (2.16.0-5) ...
  Removing ganeti-2.16 (2.16.0-5) ...
  dpkg: error processing package ganeti-2.16 (--remove):
   installed ganeti-2.16 package pre-removal script subprocess returned error 
exit status 30
  dpkg: python-simplejson: dependency problems, but removing anyway as you 
requested:
   ganeti-2.16 depends on python-simplejson.
  
  Removing python-simplejson (3.16.0-1) ...
  dpkg: python-fdsend: dependency problems, but removing anyway as you 
requested:
   ganeti-2.16 depends on python-fdsend.
  
  Removing python-fdsend (0.2.1-2) ...
  dpkg: python-paramiko: dependency problems, but removing anyway as you 
requested:
   ganeti-2.16 depends on python-paramiko.
  
  Removing python-paramiko (2.4.2-0.1) ...
  dpkg: python-openssl: dependency problems, but removing anyway as you 
requested:
   ganeti-2.16 depends on python-openssl.
  
  Removing python-openssl (19.0.0-1) ...
  Removing python-cryptography (2.6.1-3+deb10u2) ...
  Removing python-asn1crypto (0.24.0-1) ...
  Errors were encountered while processing:
   ganeti-2.16


cheers,

Andreas


ganeti.1.log.gz
Description: application/gzip

Bug#987906: release-notes: mention non-deterministic SCSI device probing?

[Lucas Nussbaum]

Package: release-notes
Severity: normal

Hi,

One of the change that occured in the kernel side since bullseye that is
SCSI device probing is now non-deterministic.

We have been bitten by that at $dayjob because we were still relying on
disks ordering (sda, sdb) in some stuff.

There's a discussion about that in
https://lore.kernel.org/lkml/59eedd28-25d4-7899-7c3c-89fe7fdd4...@acm.org/t/

The change occured upstream in kernel 5.3.

Lucas

Bug#985319: marked as pending in golang-gopkg-alecthomas-kingpin.v2

[Andreas Beckmann]

Hi Alois,

you you need a sponsor for uploading this fix?

Andreas

On Thu, 25 Mar 2021 12:53:25 + =?UTF-8?B?QWxvw69zIE1pY2FyZA==?= 
 wrote:

Control: tag -1 pending

Hello,

Bug #985319 in golang-gopkg-alecthomas-kingpin.v2 reported by you has been 
fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:

https://salsa.debian.org/go-team/packages/golang-gopkg-alecthomas-kingpin.v2/-/commit/92e8a3b975251d88c2e38c3855a61dcf3bb79726


Add missing B+R on g-gopkg-alecthomas-kingpin.v3-dev

Closes: #985319


(this message was generated automatically)
--
Greetings

https://bugs.debian.org/985319

Bug#987899: [Pkg-utopia-maintainers] Bug#987899: libblockdev-lvm2: possible to make thin-provisioning-tools only a recommended dependency?

[Michael Biebl]

Control: tags -1 + moreinfo

Am 01.05.2021 um 21:27 schrieb Christoph Anton Mitterer:

Package: libblockdev-lvm2
Version: 2.25-2
Severity: wishlist


Hi.

Would it be possible to make thin-provisioning-tools only a Recommends|Suggests?



I found this in git blame:


libblockdev-lvm2: depend on thin-provisioning-tools
The .._check_deps looks for the thin_metadata_size tool which is part
of thin-provisioning-tools package.




I haven't checked, if we have a proper error handling / fallback if the 
tool is missing or if this tool is actually still used.

Bug#987631: micro-evtd FTBFS with glibc 2.30

[Ryan Tandy]

Control: tag -1 pending

Thanks for the report.

I compiled the package with and without that include on buster, and the 
'objdump -d' output is the same, so I think it really was unused.

Bug#986275: libglib3.0-cil: fails to upgrade from buster: The type initializer for 'Sys' threw an exception.

[Andreas Beckmann]

On 01/05/2021 21.44, Adrian Bunk wrote:

On Sat, May 01, 2021 at 10:36:50PM +0300, Adrian Bunk wrote:

On Sat, May 01, 2021 at 09:23:23PM +0200, Andreas Beckmann wrote:

On 01/05/2021 16.05, Adrian Bunk wrote:

On Fri, Apr 02, 2021 at 11:11:45AM +0200, Andreas Beckmann wrote:
Setting up mono-runtime-sgen (6.8.0.105+dfsg-4~deb11anbe1) ...
Setting up mono-runtime (6.8.0.105+dfsg-4~deb11anbe1) ...



What local changes do you have in these packages?


My suggested patch for #985066, otherwise I wouldn't be able to test
anything depending on src:mono. But that patch only adds a dependency and
drops harmful postinst code.
...


Dropping the postinst code causes the #986275 bug.

I can reproduce #986275 with the following in unstable:
   apt-get install mono-runtime-common
   # copy the buster version of the file
   cp config /etc/mono/
   apt-get install libglib3.0-cil

A Pre-Depends might be the correct fix for #985066 (untested).


Actually not, the root cause seems to be a cycle problem:


That cycle was probably made explicit by my patch ;-)


mono-runtime-common depends on mono-gac
mono-gac does not work with a file from the buster mono-runtime-common


That's the configuration order installing the package in a
minimal sid pbuilder chroot (using unpatched mono packages):

[...]
Selecting previously unselected package libglib3.0-cil.
Preparing to unpack .../16-libglib3.0-cil_2.99.3-4_amd64.deb ...
Unpacking libglib3.0-cil (2.99.3-4) ...
Setting up libglib2.0-0:amd64 (2.66.8-1) ...
No schema files found: doing nothing.
Setting up tzdata (2021a-1) ...

Current default time zone: 'Etc/UTC'
Local time is now:  Sat May  1 20:09:17 UTC 2021.
Universal Time is now:  Sat May  1 20:09:17 UTC 2021.
Run 'dpkg-reconfigure tzdata' if you wish to change it.

Setting up cli-common (0.10) ...
Setting up mono-runtime-sgen (6.8.0.105+dfsg-3) ...
Setting up mono-runtime (6.8.0.105+dfsg-3) ...
update-alternatives: using /usr/bin/mono to provide /usr/bin/cli (cli) 
in auto mode

Setting up libmono-corlib4.5-cil (6.8.0.105+dfsg-3) ...
Setting up libmono-system-numerics4.0-cil (6.8.0.105+dfsg-3) ...
Setting up libmono-system-core4.0-cil (6.8.0.105+dfsg-3) ...
Setting up libglib3.0-cil (2.99.3-4) ...
* Installing 1 assembly from libglib3.0-cil into Mono
Setting up libmono-system4.0-cil (6.8.0.105+dfsg-3) ...
Setting up libmono-system-configuration4.0-cil (6.8.0.105+dfsg-3) ...
Setting up libmono-security4.0-cil (6.8.0.105+dfsg-3) ...
Setting up libmono-system-xml4.0-cil (6.8.0.105+dfsg-3) ...
Setting up libmono-system-security4.0-cil (6.8.0.105+dfsg-3) ...
Setting up mono-4.0-gac (6.8.0.105+dfsg-3) ...
Setting up mono-gac (6.8.0.105+dfsg-3) ...
update-alternatives: using /usr/bin/gacutil to provide 
/usr/bin/cli-gacutil (global-assembly-cache-tool) in auto mode

Setting up mono-runtime-common (6.8.0.105+dfsg-3) ...
Processing triggers for libc-bin (2.31-11) ...

Having libglib3.0-cil configured early is not really intuitive ...

Oh well, there are 6 (six) bugs with severity important open with 
"circular dependency" in their title, going back more than 10 years.
No, I don't want to look at this package. There are more interesting 
bugs to investigate.


We should probably reassign this bug to mono as well ;-(


Andreas

PS: Adrian, if you come up with a better patch for src:mono, I'll 
happily run it through my piuparts instance ;-)

Bug#987808: unblock: klibc/2.0.8-6

[Ben Hutchings]

On Sat, 2021-05-01 at 21:46 +0200, Paul Gevers wrote:
> Hi,
> 
> On 30-04-2021 04:24, Ben Hutchings wrote:
> > Please unblock package klibc
> 
> unblocked.
> 
> Paul
> 
> PS: 0001-klibc-signal-Note-another-reason-to-define-_KLIBC_NE.patch
> looked a bit overdone for the freeze, but alas.

Sorry about that.  This was a result of my uploading the signal fixes
to experimental originally and failing to do an unstable upload until
now.

Ben.

-- 
Ben Hutchings
Time is nature's way of making sure that
everything doesn't happen at once.


signature.asc
Description: This is a digitally signed message part

Bug#987905: swupdate: New upstream version

[Bastian Germann]

Source: swupdate
Severity: wishlist

Upstream released version 2021.04. I have enclosed patches for debian/* 
which enable building this version with some new features.
From 78e24709377993a65c697750786236bb5c5db7f4 Mon Sep 17 00:00:00 2001
From: Bastian Germann 
Date: Sat, 1 May 2021 16:25:18 +0200
Subject: [PATCH 1/3] Add new symbol swupdate_set_version_range

---
 debian/libswupdate0.1.symbols | 1 +
 1 file changed, 1 insertion(+)

diff --git a/debian/libswupdate0.1.symbols b/debian/libswupdate0.1.symbols
index 8771940..acc31c3 100644
--- a/debian/libswupdate0.1.symbols
+++ b/debian/libswupdate0.1.symbols
@@ -19,3 +19,4 @@ libswupdate.so.0.1 libswupdate0.1 #MINVER#
  swupdate_image_write@Base 2020.11
  swupdate_prepare_req@Base 2020.11
  swupdate_set_aes@Base 2020.11
+ swupdate_set_version_range@Base 2021.04
-- 
2.31.1

From 5b59f025993b4f273edc7e73dcede6ac9a443f00 Mon Sep 17 00:00:00 2001
From: Bastian Germann 
Date: Sat, 1 May 2021 16:28:49 +0200
Subject: [PATCH 2/3] Add diskformat and uuid handlers

---
 debian/configs/defconfig | 4 
 debian/control   | 3 +++
 2 files changed, 7 insertions(+)

diff --git a/debian/configs/defconfig b/debian/configs/defconfig
index 338fb2f..b38aa62 100644
--- a/debian/configs/defconfig
+++ b/debian/configs/defconfig
@@ -12,6 +12,10 @@ CONFIG_WEBSERVER=y
 CONFIG_MONGOOSESSL=y
 CONFIG_ZSTD=y
 CONFIG_DISKPART=y
+CONFIG_DISKFORMAT=y
+CONFIG_FAT_FILESYSTEM=y
+CONFIG_EXT_FILESYSTEM=y
+CONFIG_UNIQUEUUID=y
 CONFIG_RAW=y
 CONFIG_RDIFFHANDLER=y
 CONFIG_READBACKHANDLER=y
diff --git a/debian/control b/debian/control
index f373aaf..dd7ea57 100644
--- a/debian/control
+++ b/debian/control
@@ -12,10 +12,13 @@ Build-Depends: debhelper-compat (= 13),
libconfig-dev,
libcurl4-openssl-dev,
libarchive-dev,
+   libblkid-dev,
+   libext2fs-dev,
libjson-c-dev,
librsync-dev,
libssl-dev,
libsystemd-dev,
+   uuid-dev,
zlib1g-dev,
libzstd-dev,
libp11-kit-dev ,
-- 
2.31.1

From c2a9f844e7a23c361a88ed6f86a982c551f988a2 Mon Sep 17 00:00:00 2001
From: Bastian Germann 
Date: Sat, 1 May 2021 21:48:12 +0200
Subject: [PATCH 3/3] d/copyright: Provide more accurate info

---
 debian/copyright | 240 ---
 1 file changed, 142 insertions(+), 98 deletions(-)

diff --git a/debian/copyright b/debian/copyright
index c349aa9..1568011 100644
--- a/debian/copyright
+++ b/debian/copyright
@@ -1,53 +1,105 @@
 Format: https://www.debian.org/doc/packaging-manuals/copyright-format/1.0/
 Upstream-Name: swupdate
 Upstream-Contact: Stefano Babic 
-Source: https://github.com/sbabic/swupdate/tree/debian
+Source: https://github.com/sbabic/swupdate
 
 Files: *
-Copyright: 2014-2020 Stefano Babic 
-License:   GPL-2+
+Copyright: 2013-2020 Stefano Babic 
+License:   GPL-2
+
+Files: .editorconfig
+Copyright: 2019 Adrian Freihofer 
+License:   CC0-1.0
+
+Files: .gitignore
+   configs/*
+   handlers/lua/*
+Copyright: 2013, 2014, 2021 Stefano Babic 
+License:   CC0-1.0
+
+Files: bootloader/grub.*
+Copyright: 2017, 3mdeb
+License:   GPL-2
+
+Files: handlers/readback_handler.c
+Copyright: 2020 Bosch Sicherheitssysteme GmbH
+License:   GPL-2
+
+Files: configs/bootloader_ebg_defconfig
+   configs/with_systemd_defconfig
+Copyright: 2021 Christian Storm 
+License:   CC0-1.0
+
+Files: configs/mbedtls_defconfig
+   test/data/to-be-signed
+Copyright: 2019, 2021 Laszlo Ashin 
+License:   CC0-1.0
 
-Files: corelib/channel_curl.c
-   corelib/verify_signature.c
-   corelib/swupdate_rsa_verify.c
-   corelib/swupdate_decrypt.c
-   corelib/swupdate_cms_verify.c
-   core/cpio_utils.c
-   core/swupdate.c
-   core/parser.c
-   corelib/swupdate_verify_private.h
-Copyright: 2014-2019 Stefano Babic 
-License: GPL-2+ with OpenSSL exception
+Files: configs/with_ucfw_defconfig
+Copyright: 2021 Pierre-Jean Texier 
+License:   CC0-1.0
+
+Files: core/syslog.c
+Copyright: 2016, Denis Osterland, Diehl Connectivity Solutions GmbH, denis.osterl...@diehl.com.
+License:   GPL-2
 
 Files: mongoose/mongoose.c
mongoose/mongoose.h
-Copyright: 2014 Cesanta Software Limited
+Copyright: 2004-2013 Sergey Lyubka
+   2013-2020 Cesanta Software Limited
 License:   GPL-2
 
 Files: mongoose/mongoose_interface.c
 Copyright: 2004-2013 Sergey Lyubka
2013 DENX Software Engineering, Stefano Babic 
2017-2018 Weidmüller Interface GmbH & Co. KG, Stefan Herbrechtsmeier 
-License:   GPL-2 with OpenSSL exception
+License:   Expat and GPL-2
+
+Files: core/swupdate_dict.c
+Copyright: 2016 Stefano Babic, DENX Software Engineering, sba...@denx.de.
+   2017-2018 Weidmüller Interface GmbH & Co. KG, Stefan Herbrechtsmeier 
+License:   GPL-2
+
+Files: 

Bug#987903: RFP: tsmuxer -- Multimedia muxer and authoring tool

[Petter Reinholdtsen]

Package: wnpp
Version: N/A; reported 2002-10-15
Severity: wishlist

* Package name: tsmuxer
  Version : n/a, nightly snapshots
  Upstream Author : justdan96
* URL : https://github.com/justdan96/tsMuxer
* License : Apache
  Description : Multimedia muxer and authoring tool

tsMuxer is a transport stream muxer for remuxing/muxing elementary
streams, EVO/VOB/MPG, MKV/MKA, MP4/MOV, TS, M2TS to TS to
M2TS. Supported video codecs H.264/AVC, H.265/HEVC, VC-1,
MPEG2. Supported audio codecs AAC, AC3 / E-AC3(DD+), DTS/ DTS-HD.

In https://forum.doom9.org/showthread.php?t=176668 > the release
of tsMuxeR as free software was announced, after many years as freeware.
It is a tool useful for authoring blueray disk movies.

-- 
Happy hacking
Petter Reinholdtsen

Bug#815909: Fwd: x11vnc session unrecoverable after trying to switch user in xfce

[Bernhard Übelacker]

Hello,
just for anyone coming here through internet searches.

The "caught XIO error:" leads to this upstream bug reports:

   https://github.com/LibVNC/x11vnc/issues/147
   https://github.com/LibVNC/x11vnc/issues/154

With the mentioned option "-noxdamage" I could stop getting this error.

I received this with a i686 system updated to bullseye/testing today,
running a plasma desktop.
Unfortunately I could not reproduce this connecting to a similar 
installation inside qemu VM.


Kind regards,
Bernhard

Bug#985066: Bug#986275: libglib3.0-cil: fails to upgrade from buster: The type initializer for 'Sys' threw an exception.

[Adrian Bunk]

On Sat, May 01, 2021 at 10:36:50PM +0300, Adrian Bunk wrote:
> On Sat, May 01, 2021 at 09:23:23PM +0200, Andreas Beckmann wrote:
> > On 01/05/2021 16.05, Adrian Bunk wrote:
> > > On Fri, Apr 02, 2021 at 11:11:45AM +0200, Andreas Beckmann wrote:
> > >Setting up mono-runtime-sgen (6.8.0.105+dfsg-4~deb11anbe1) ...
> > >Setting up mono-runtime (6.8.0.105+dfsg-4~deb11anbe1) ...
> > 
> > > What local changes do you have in these packages?
> > 
> > My suggested patch for #985066, otherwise I wouldn't be able to test
> > anything depending on src:mono. But that patch only adds a dependency and
> > drops harmful postinst code.
> >...
> 
> Dropping the postinst code causes the #986275 bug.
> 
> I can reproduce #986275 with the following in unstable:
>   apt-get install mono-runtime-common
>   # copy the buster version of the file
>   cp config /etc/mono/
>   apt-get install libglib3.0-cil
> 
> A Pre-Depends might be the correct fix for #985066 (untested).

Actually not, the root cause seems to be a cycle problem:

mono-runtime-common depends on mono-gac
mono-gac does not work with a file from the buster mono-runtime-common

cu
Adrian

Bug#987901: blueman: Takes a few tries to connect to device

[Pelle]

Package: blueman
Version: 2.1.4-1+b1
Severity: normal

Dear Maintainer,

When I open `blueman-manager` and try to connect to a Bluetooth speaker by
clicking *Device* and then *Connect*, I often get the error:
> Connection failed: Software caused connection abort

This will keeps happening the first few times I try connecting, but it always
connects eventually. I was expecting that when I clicked *Connect*, than
Blueman would then connect to the device (perhaps automatically retry upon
failure) instead of me having to repeatedly click on the same menu item.

-- System Information:
Debian Release: 11.0
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 5.10.0-6-amd64 (SMP w/2 CPU threads)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8),
LANGUAGE=en_US:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages blueman depends on:
ii  adwaita-icon-theme3.38.0-1
ii  bluez 5.55-3
ii  bluez-obexd   5.55-3
ii  dbus  1.12.20-2
ii  dbus-user-session [default-dbus-session-bus]  1.12.20-2
ii  dbus-x11 [dbus-session-bus]   1.12.20-2
ii  dconf-gsettings-backend [gsettings-backend]   0.38.0-2
ii  gir1.2-ayatanaappindicator3-0.1   0.5.5-3
ii  gir1.2-gdkpixbuf-2.0  2.42.2+dfsg-1
ii  gir1.2-glib-2.0   1.66.1-1+b1
ii  gir1.2-gtk-3.03.24.24-3
ii  gir1.2-nm-1.0 1.30.0-2
ii  gir1.2-pango-1.0  1.48.2-1
ii  gnome-icon-theme  3.12.0-3
ii  libbluetooth3 5.55-3
ii  libc6 2.31-11
ii  libglib2.0-0  2.66.8-1
ii  libpulse-mainloop-glib0   14.2-2
ii  librsvg2-common   2.50.3+dfsg-1
ii  notification-daemon   3.20.0-4
ii  policykit-1   0.105-30
ii  python3   3.9.2-3
ii  python3-cairo 1.16.2-4+b2
ii  python3-gi3.38.0-2
ii  python3-gi-cairo  3.38.0-2

Versions of packages blueman recommends:
ii  pulseaudio-module-bluetooth  14.2-2

blueman suggests no packages.

Bug#985066: Bug#986275: libglib3.0-cil: fails to upgrade from buster: The type initializer for 'Sys' threw an exception.

[Adrian Bunk]

On Sat, May 01, 2021 at 09:23:23PM +0200, Andreas Beckmann wrote:
> On 01/05/2021 16.05, Adrian Bunk wrote:
> > On Fri, Apr 02, 2021 at 11:11:45AM +0200, Andreas Beckmann wrote:
> >Setting up mono-runtime-sgen (6.8.0.105+dfsg-4~deb11anbe1) ...
> >Setting up mono-runtime (6.8.0.105+dfsg-4~deb11anbe1) ...
> 
> > What local changes do you have in these packages?
> 
> My suggested patch for #985066, otherwise I wouldn't be able to test
> anything depending on src:mono. But that patch only adds a dependency and
> drops harmful postinst code.
>...

Dropping the postinst code causes the #986275 bug.

I can reproduce #986275 with the following in unstable:
  apt-get install mono-runtime-common
  # copy the buster version of the file
  cp config /etc/mono/
  apt-get install libglib3.0-cil

A Pre-Depends might be the correct fix for #985066 (untested).

> Andreas

cu
Adrian

Bug#980899: php-illuminate-database: CVE-2021-21263 Query Binding Exploitation

[Robin Gustafsson]

Control: tags -1 patch

Hi,

I've backported upstream's fixes for version 6.x. to version 5.7,
along with a few additional lines that I believe are required to
adequately fix this for 5.7. This seems to work as far as I can tell;
upstream's test suite shows no regressions and the tests they added
along with their fixes also pass.

A patch is attached.

Regards,
Robin
From f8365784a8b5d9c3ef8ad0ce316bf056ea0eef5e Mon Sep 17 00:00:00 2001
From: Robin Gustafsson 
Date: Sat, 1 May 2021 15:30:35 +0200
Subject: [PATCH] Security fix: Query Binding Exploitation

Closes: #980899
CVE-2021-21263
---
 ...01-6.x-Limit-expected-bindings-35865.patch | 98 +++
 .../0002-Limit-expected-bindingx-v2.patch | 94 ++
 ...hereDay-and-whereYear-to-clean-value.patch | 31 ++
 ...it-bindings-for-having-between-tests.patch | 22 +
 ...Clean-value-in-orWhereDay-Month-Year.patch | 42 
 debian/patches/series |  5 +
 6 files changed, 292 insertions(+)
 create mode 100644 debian/patches/0001-6.x-Limit-expected-bindings-35865.patch
 create mode 100644 debian/patches/0002-Limit-expected-bindingx-v2.patch
 create mode 100644 debian/patches/0003-Update-whereDay-and-whereYear-to-clean-value.patch
 create mode 100644 debian/patches/0004-Add-limit-bindings-for-having-between-tests.patch
 create mode 100644 debian/patches/0005-Clean-value-in-orWhereDay-Month-Year.patch
 create mode 100644 debian/patches/series

diff --git a/debian/patches/0001-6.x-Limit-expected-bindings-35865.patch b/debian/patches/0001-6.x-Limit-expected-bindings-35865.patch
new file mode 100644
index 00..a42ef10821
--- /dev/null
+++ b/debian/patches/0001-6.x-Limit-expected-bindings-35865.patch
@@ -0,0 +1,98 @@
+From: Taylor Otwell 
+Date: Wed, 13 Jan 2021 07:35:45 -0600
+Subject: [6.x] Limit expected bindings (#35865)
+
+* limit expected bindings
+
+* limit more bindings
+
+Origin: https://github.com/laravel/framework/commit/d0954f4574f315f0c2e9e65e92cc74b80eadcac1
+---
+ Query/Builder.php | 18 ++
+ 1 file changed, 14 insertions(+), 4 deletions(-)
+
+diff --git a/Query/Builder.php b/Query/Builder.php
+index 4fa3c6d..0812a70 100755
+--- a/Query/Builder.php
 b/Query/Builder.php
+@@ -654,7 +654,7 @@ class Builder
+ );
+ 
+ if (! $value instanceof Expression) {
+-$this->addBinding($value, 'where');
++$this->addBinding(is_array($value) ? head($value) : $value, 'where');
+ }
+ 
+ return $this;
+@@ -1051,7 +1051,7 @@ class Builder
+ 
+ $this->wheres[] = compact('type', 'column', 'values', 'boolean', 'not');
+ 
+-$this->addBinding($this->cleanBindings($values), 'where');
++$this->addBinding(array_slice($this->cleanBindings($values), 0, 2), 'where');
+ 
+ return $this;
+ }
+@@ -1119,6 +1119,8 @@ class Builder
+ $value, $operator, func_num_args() === 2
+ );
+ 
++$value = is_array($value) ? head($value) : $value;
++
+ if ($value instanceof DateTimeInterface) {
+ $value = $value->format('Y-m-d');
+ }
+@@ -1158,6 +1160,8 @@ class Builder
+ $value, $operator, func_num_args() === 2
+ );
+ 
++$value = is_array($value) ? head($value) : $value;
++
+ if ($value instanceof DateTimeInterface) {
+ $value = $value->format('H:i:s');
+ }
+@@ -1197,6 +1201,8 @@ class Builder
+ $value, $operator, func_num_args() === 2
+ );
+ 
++$value = is_array($value) ? head($value) : $value;
++
+ if ($value instanceof DateTimeInterface) {
+ $value = $value->format('d');
+ }
+@@ -1236,6 +1242,8 @@ class Builder
+ $value, $operator, func_num_args() === 2
+ );
+ 
++$value = is_array($value) ? head($value) : $value;
++
+ if ($value instanceof DateTimeInterface) {
+ $value = $value->format('m');
+ }
+@@ -1275,6 +1283,8 @@ class Builder
+ $value, $operator, func_num_args() === 2
+ );
+ 
++$value = is_array($value) ? head($value) : $value;
++
+ if ($value instanceof DateTimeInterface) {
+ $value = $value->format('Y');
+ }
+@@ -1581,7 +1591,7 @@ class Builder
+ $this->wheres[] = compact('type', 'column', 'operator', 'value', 'boolean');
+ 
+ if (! $value instanceof Expression) {
+-$this->addBinding($value);
++$this->addBinding((int) $value);
+ }
+ 
+ return $this;
+@@ -1714,7 +1724,7 @@ class Builder
+ $this->havings[] = compact('type', 'column', 'operator', 'value', 'boolean');
+ 
+ if (! $value instanceof Expression) {
+-$this->addBinding($value, 'having');
++$this->addBinding(is_array($value) ? head($value) : $value, 'having');
+ }
+ 
+ return $this;
diff --git a/debian/patches/0002-Limit-expected-bindingx-v2.patch 

Bug#987900: libreoffice: don't suggest openclipart2-libreoffice

[Christoph Anton Mitterer]

Package: libreoffice
Version: 1:7.0.4-3
Severity: wishlist


Hey.

openclipart2-libreoffice is long gone from Debian,... perhaps the
Suggests on it can be dropped.


Thanks,
Chris.

PS: fonts-noto-ui-core seems to contain only fonts, which are likely
also not generally required by many people. Might also be worth to
consider.

Bug#987889: Error! Bad return status for module build on kernel: 5.10.0-5-amd64 (x86_64)

[Andreas Beckmann]

On 01/05/2021 17.07, Ruben Herold wrote:

Package: nvidia-kernel-dkms
Version: 460.73.01-1



   ERROR: Kernel configuration is invalid.
  include/generated/autoconf.h or include/config/auto.conf are
missing.
  Run 'make oldconfig && make prepare' on kernel src to fix it.


I think that is another instance of what #987575 is attempting to fix.

Do you have any other *-dkms packages installed? This sounds like some 
old module that is no longer compatible with the current kernels is 
attempted to be built and causes deletion of some files from the kernel 
headers.


You could install debsums and run 'debsums -c' to find modified or 
missing files and then reinstall the affected packages (after dropping 
cruft *-dkms).



Andreas

Bug#987899: libblockdev-lvm2: possible to make thin-provisioning-tools only a recommended dependency?

[Christoph Anton Mitterer]

Package: libblockdev-lvm2
Version: 2.25-2
Severity: wishlist


Hi.

Would it be possible to make thin-provisioning-tools only a Recommends|Suggests?

Even lvm2 itself doesn't strongly depend on it, an I'd guess a good share of 
lvm2
users will never need it.


Cheers,
Chris.

Bug#986275: libglib3.0-cil: fails to upgrade from buster: The type initializer for 'Sys' threw an exception.

[Andreas Beckmann]

On 01/05/2021 16.05, Adrian Bunk wrote:

On Fri, Apr 02, 2021 at 11:11:45AM +0200, Andreas Beckmann wrote:
   Setting up mono-runtime-sgen (6.8.0.105+dfsg-4~deb11anbe1) ...
   Setting up mono-runtime (6.8.0.105+dfsg-4~deb11anbe1) ...



What local changes do you have in these packages?


My suggested patch for #985066, otherwise I wouldn't be able to test 
anything depending on src:mono. But that patch only adds a dependency 
and drops harmful postinst code. But perhaps more dependencies need to 
be bumped in other mono packages, too?



Andreas

Bug#987848: Security issue: SQL injection with Microsoft SQL

[Robin Gustafsson]

Control: tags -1 patch

Hi Thorsten,

On Fri, Apr 30, 2021 at 11:56 PM Thorsten Glaser
 wrote:
> considering you took over maintenance and know the code in
> question better, it would be _much_ appreciated if you could
> also take care of this for buster.

Upstream's fix for version 6.x seems suitable for 5.x as well. I've
applied it, looked it over, and checked for regressions with
upstream's test suite. Seems alright from what I can tell.

A patch is attached.

Regards,
Robin
From 00a499a805d8b2d1811ca16bf4f833d7b8da5eb8 Mon Sep 17 00:00:00 2001
From: Robin Gustafsson 
Date: Sat, 1 May 2021 16:24:09 +0200
Subject: [PATCH] Security fix: SQL injection with Microsoft SQL Server

Closes: #987848
---
 debian/patches/0001-cast-to-int.patch | 37 +++
 debian/patches/series |  1 +
 2 files changed, 38 insertions(+)
 create mode 100644 debian/patches/0001-cast-to-int.patch
 create mode 100644 debian/patches/series

diff --git a/debian/patches/0001-cast-to-int.patch b/debian/patches/0001-cast-to-int.patch
new file mode 100644
index 00..3ad4e6a50b
--- /dev/null
+++ b/debian/patches/0001-cast-to-int.patch
@@ -0,0 +1,37 @@
+From: Taylor Otwell 
+Date: Wed, 28 Apr 2021 08:18:19 -0500
+Subject: cast to int
+
+Origin: https://github.com/laravel/framework/commit/09bf1457e9df53e172e6fd5929cbafb539677c7c
+---
+ Query/Grammars/SqlServerGrammar.php | 8 
+ 1 file changed, 4 insertions(+), 4 deletions(-)
+
+diff --git a/Query/Grammars/SqlServerGrammar.php b/Query/Grammars/SqlServerGrammar.php
+index ed7f176..0f099c7 100755
+--- a/Query/Grammars/SqlServerGrammar.php
 b/Query/Grammars/SqlServerGrammar.php
+@@ -60,8 +60,8 @@ class SqlServerGrammar extends Grammar
+ // If there is a limit on the query, but not an offset, we will add the top
+ // clause to the query, which serves as a "limit" type clause within the
+ // SQL Server system similar to the limit keywords available in MySQL.
+-if ($query->limit > 0 && $query->offset <= 0) {
+-$select .= 'top '.$query->limit.' ';
++if (is_numeric($query->limit) && $query->limit > 0 && $query->offset <= 0) {
++$select .= 'top '.((int) $query->limit).' ';
+ }
+ 
+ return $select.$this->columnize($columns);
+@@ -221,10 +221,10 @@ class SqlServerGrammar extends Grammar
+  */
+ protected function compileRowConstraint($query)
+ {
+-$start = $query->offset + 1;
++$start = (int) $query->offset + 1;
+ 
+ if ($query->limit > 0) {
+-$finish = $query->offset + $query->limit;
++$finish = (int) $query->offset + (int) $query->limit;
+ 
+ return "between {$start} and {$finish}";
+ }
diff --git a/debian/patches/series b/debian/patches/series
new file mode 100644
index 00..9bf625b68b
--- /dev/null
+++ b/debian/patches/series
@@ -0,0 +1 @@
+0001-cast-to-int.patch
-- 
2.20.1

Bug#987898: ITP: libjxmpp-java -- Base library for XMPP based instant messaging and presence

[Sunil Mohan Adapa]

Package: wnpp
Severity: wishlist
Owner: Sunil Mohan Adapa 

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

* Package name: libjxmpp-java
  Version : 1.0.1
  Upstream Author : Florian Schmaus 
* URL : https://github.com/igniterealtime/jxmpp
* License : Apache-2.0
  Programming Lang: Java
  Description : Base library for XMPP based instant messaging and presence

JXMPP is an Open Source Java base library for XMPP. It provides often used
functionality needed to build an XMPP stack

jxmpp-core: Provides core functionality most software that interacts with XMPP
requires: XmppDateTime, XmppStringUtils, XmppStringPrepUtil.

jxmpp-jid: Provides API that abstracts XMPP JIDs with Java classes, performing
string preparation and validation.

jxmpp-stringprep-libidn: Perform XMPP's StringPrep with the help of libidn.

jxmpp-util-cache: Provides a lightweight and efficient Cache without external
dependencies used by various JXMPP Components.

jxmpp-strings-testframework: A framework to test "XMPP Strings".

This is part of a larger effort to package Jitsi Videobridge in Debian. I
intend to maintain the package as part of the Debian Java team.




-BEGIN PGP SIGNATURE-
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=4NVb
-END PGP SIGNATURE-

Bug#982904: mumble: CVE-2021-27229

[Salvatore Bonaccorso]

Hi Chris,

On Sat, May 01, 2021 at 05:52:04PM +, Chris Knadle wrote:
> Salvatore Bonaccorso:
> > Hi Chris,
> > 
> > On Fri, Apr 30, 2021 at 08:12:54PM +, Chris Knadle wrote:
> > > Salvatore Bonaccorso:
> [...]
> > > So now re-reading it, it seems the upload should target "buster" and the
> > > upload I ship should likely be to the "proposed-updates-new" queue.
> > > Probably? Somehow I find the wording a little difficult to be certain in 
> > > its
> > > parsing. If this is correct please let me know.
> > 
> > That is correct, and then one it hits there the NEW queue, a stable
> > release mnager will decide if the upload should be accepted into the
> > proposed-updates section. It should be accompanied with a respective
> > release.debian.org bugreport accordingly as mentioned in the above
> > rerference. Note there is as well this "improved" workflow:
> > https://lists.debian.org/debian-devel-announce/2019/08/msg0.html .
> 
> Yes I submitted release.debian.org bug #987859 last night and did the upload
> (and was "accepted"), which I think fits almost all of the criteria in the
> link above except that I did a "source only" upload rather than upload a
> built package; hopefully a source-only upload is acceptable here -- if it's
> not let me know.

Yes defintively, in meanwhile source-only are possible (and would
encourage so) to do as well for stable (buster, and buster-security)
uploads.

Regards,
Salvatore

Bug#987839: apt-listbugs: daily cleanup runs hourly

[Ross Boylan]

Thanks for the quick response.  Answers interspersed below.

On Fri, Apr 30, 2021 at 2:47 PM Francesco Poli
 wrote:
>
> Control: tags -1 + moreinfo
>
>
> On Fri, 30 Apr 2021 10:46:04 -0700 Ross Boylan wrote:
>
> [...]
> > Dear Maintainer,
>
> Hello Ross,
> thanks for your bug report.
>
> >
> > It would be nice to clean up this minor annoyance before buster's release.
>
> I am afraid that we are too late for *buster* release.
> Maybe you meant *bullseye*?!?;-)

Yes.

> Anyway, it's late for bullseye, as well: Debian testing is already in
> hard freeze...
>
> But I don't think there's anything really in need for a fix.
> Please read on.
>
> >
> >* What led up to the situation?
> >
> >Installed apt-listbugs and logcheck on a debian testing system.
> >Every *hour* I get email from logcheck that includes lines like this:
> >Apr 30 08:37:06 debtest systemd[1]: Starting Daily apt-listbugs
> > preferences cleanup...
> >Apr 30 08:37:06 debtest systemd[1]: Finished Daily apt-listbugs
> > preferences cleanup.
> > (Obviously logcheck and the email are incidental; the point is the
> >"Daily" cleanup is actually run hourly.  However, the emails are
> >part of why I find it annoying.)
>
> Does logcheck send e-mail messages for all the other systemd timers?
>
> As you may already know, you can get a list of active systemd timers on
> your box with the following command:
>
>   $ systemctl list-timers
>
Thanks for the tip; I wasn't familiar with list-timers.  There are 11
on my list, but the only things I see in my hourly reports from
logcheck were  apt-listbugs and complaints about time synchronization.
Of course, I don't know how many of the timers are hourly.  Note the
time sync messages reflect a real problem, and so seem appropriate.

I do get occasional messages reflecting successful runs, e.g.,
Apr 30 23:15:11 debtest systemd-timesyncd[38257]: Timed out waiting
for reply from 192.168.1.10:123 (192.168.1.10).
Apr 30 23:49:30 debtest systemd-timesyncd[38257]: Timed out waiting
for reply from 192.168.1.10:123 (192.168.1.10).
May  1 00:00:01 debtest systemd[1]: Starting exim4-base housekeeping...
May  1 00:00:01 debtest systemd[1]: Starting Daily man-db regeneration...
May  1 00:00:01 debtest systemd[1]: Finished exim4-base housekeeping.

> >
> >* What exactly did you do (or not do) that was effective (or
> >  ineffective)?
> >
> >  Investigated why this is happening.  The package has an entry in
> >/etc/cron.daily, which seems correct.  But it also has
> >/lib/systemd/system/apt-listbugs.timer which includes
> >OnCalendar=*-*-* *:20
> >I believe this is telling it to trigger something at 20 minutes
> >after the hour for every hour.  There is also
> >RandomizedDelaySec=20min
> >in the same file, which may explain why it seems to run between 20
> >and 40 minutes after the hour for me.
>
> Yes, that is correct.
> Please read bug [#932995] for a more detailed discussion about the same
> surprise you experienced.

Ah, I see: it's running, but it's mostly not *really* running (i.e.,
check but no update).

>
> [#932995]: 
>
> >
> >This seems more like a task for anacron for systems that may not be
> >up all the time, but I don't know enough about systemd to be sure
> >how to turn it off, or if it can handle these situations.
>
> If you use systemd as your init system (PID 1), please do not turn it
> off. It's the only apt-listbugs cleanup routine running, since the
> cron.daily job does nothing, if systemd is PID 1.

Good to know.  It's a standard bullseye install, and so systemd is in control.

>
> >
> >* What was the outcome of this action?
> >Only observations so far, and so no change.  I might change to
> >OnCalendar=*-*-* 20:20
> >which I think means run at 8:20pm every day.  But the VM is not up
> >all the time and so that might miss some times it should run,
> >unless the /etc/cron.daily/ entry acts as a safety net.
>
> That is exactly the reason why the cleanup is attempted hourly, but
> performed at most once a day.
> Again, see [#932995] for an explanation.
>
> >
> >* What outcome did you expect instead?
> >That a daily cleanup job would only run once a day.
>
> That's already happening: the cleanup runs at most once a day.
>

I tried this modification to apt-listbugs.timer:
[Timer]
OnActiveSec=5min
#OnCalendar=*-*-* *:20
OnUnitActiveSec=23h 50m
RandomizedDelaySec=20min

which did  fix the "running every hour" problem (even if the run is
only to check if a real  update is necessary).
But this does not entirely meet the desired behavior expressed in 932995:
 1) The "anniversary" time will be whenever the system started,
not early AM if available.
 2) At least with the current script, which just checks if it
should run, the result could be as
 much as a 48 hour delay between real updates.  This would
happen if the system was
 turned on just 

Bug#987884: ITP: git-autofixup -- Automatically fixup commits with related changes

[Daniel Gröber]

Hi Andrej,

Thanks for your quick response!

On Sat, May 01, 2021 at 07:39:22PM +0200, Andrej Shadura wrote:
> On Sat, 1 May 2021, at 14:48, Daniel Gröber wrote:
> > git-autofixup creates fixup commits from changes in the worktree. This
> > can save the tedious work of amending fixes into the appropriate
> > commits during codereview.
> > 
> > Changes to consider are parsed out of git-diff(1) and git-blame(1) is
> > used to assign hunks to commits since the revision given on the
> > commandline, which will typically represent a topic branch. Then it
> > creates fixup commits to be used with git rebase --autosquash.
> > 
> > - There is another program called git-absorb which performs
> >   essentially the same function as git-autofixup but is written in Rust
> >   instead of Perl. Since Perl is much easier to package in Debian I went
> >   for the latter ;)
> 
> Well, OTOH git-absorb already *is* in Debian :)

Could have fooled me, since the RFP is still open, haha. Guess I should
have checked in sid too :)

Another upside of the Perl implentation though: backporting to buster is
downright trivial. Though I guess with the bullseye release around the
corner that's not quite so important now.

> > - I plan to maintain this package myself, though I am looking for a
> >   sponsor.
> 
> I can probably sponsor it. Or you can ask in pkg-perl (cc'ed).

That'd be awesome, I'd be happy to put it under pkg-perl team-maintanance
as well though.

--Daniel

Bug#987896: GUI drawing error due to Dsun.java2d.opengl=true

[Markus Koschany]

Control: severity -1 normal

Hello,


On Sat, 1 May 2021 17:14:57 + (UTC) Alexis PM 
wrote:
> Package: sweethome3d
> Version: 6.1.2+dfsg-2
> Severity: grave
> Justification: package unusable
> 
> Widespread GUI drawing errors (entire sections of the window appear black
when interacting with GUI elements hovering the mouse, clicking on buttons,
pulling down menus,...) make sweethome3d unusable. This happens both on my
laptop and inside a QEMU virtual machine on another computer.
> 
> The simple solution is delete
> -Dsun.java2d.opengl=true
> in
> /usr/share/sweethome3d/sweethome3d.sh
> 
> If you want to keep the "-Dsun.java2d.opengl" option with value "true" for
those computers where this option is not problematic (I don't know how to
identify it) then a "if" conditional is necessary for JAVA_ARGS in
/usr/share/sweethome3d/sweethome3d.sh. If in doubt, it is best to delete it
from the file.

This is not a fundamental flaw which makes sweethome3d unusable on all systems
hence I set the severity to normal.

You can override this setting by executing

export _JAVA_OPTIONS='-Dsun.java2d.opengl=false'

I recommend to use sweethome3d with hardware acceleration otherwise the
performance may be rather poor, especially if you use the 3D features. The
change to activate and set sun.java2d.opengl to true was intentional. See also 

https://bugs.debian.org/854030

I believe this setting is useful for most users of sweethome3d and should be
true by default. At the moment I don't know how the script can be improved to
detect corner cases like your system. Please send patches to this bug report if
you find a solution that works best for all users.

Regards,

Markus



signature.asc
Description: This is a digitally signed message part

Bug#982904: mumble: CVE-2021-27229

[Chris Knadle]

Salvatore Bonaccorso:

Hi Chris,

On Fri, Apr 30, 2021 at 08:12:54PM +, Chris Knadle wrote:

Salvatore Bonaccorso:

[...]

So now re-reading it, it seems the upload should target "buster" and the
upload I ship should likely be to the "proposed-updates-new" queue.
Probably? Somehow I find the wording a little difficult to be certain in its
parsing. If this is correct please let me know.


That is correct, and then one it hits there the NEW queue, a stable
release mnager will decide if the upload should be accepted into the
proposed-updates section. It should be accompanied with a respective
release.debian.org bugreport accordingly as mentioned in the above
rerference. Note there is as well this "improved" workflow:
https://lists.debian.org/debian-devel-announce/2019/08/msg0.html .


Yes I submitted release.debian.org bug #987859 last night and did the upload 
(and was "accepted"), which I think fits almost all of the criteria in the link 
above except that I did a "source only" upload rather than upload a built 
package; hopefully a source-only upload is acceptable here -- if it's not let me 
know.


Thanks
   -- Chris

--
Chris Knadle
chris.kna...@coredump.us

Bug#987745: apt-listbugs: please clarify, what ruby-httpclient is needed/used for

[Christoph Anton Mitterer]

On Sat, 2021-05-01 at 19:35 +0200, Francesco Poli wrote:
> Before I can demote it to a suggestion, I need to be sure that no use
> case is harmed.
> There are a plethora of special situations (such as the strangest
> proxy
> setups, and so forth...), hence it's not easy to be sure...
> 
Could you perhaps ask the previous maintainer why he originally made a
Depends on it?

Other than that, it might still be a possibility to actually demote the
dependency (perhaps just in unstable), and wait for people to report
when they run into problems (it shouldn't be anything that wouldn't be
noticed immediately, the only thing that would be kinda "hidden" was
TLS/no-TLS, but that's anyway not a point... so if it's something like
proxy, you'd get rather soon a ticket).

Otherwise we'd probably find out never. :D


> I hope you can live with the current state of affairs (ruby-
> httpclient
> as a recommendation).

Sure... it's all just about (more or less cosmetic) improvements


Thanks,
Chris.

Bug#987884: ITP: git-autofixup -- Automatically fixup commits with related changes

[Andrej Shadura]

Hi,

On Sat, 1 May 2021, at 14:48, Daniel Gröber wrote:
> git-autofixup creates fixup commits from changes in the worktree. This
> can save the tedious work of amending fixes into the appropriate
> commits during codereview.
> 
> Changes to consider are parsed out of git-diff(1) and git-blame(1) is
> used to assign hunks to commits since the revision given on the
> commandline, which will typically represent a topic branch. Then it
> creates fixup commits to be used with git rebase --autosquash.
> 
> - There is another program called git-absorb which performs
>   essentially the same function as git-autofixup but is written in Rust
>   instead of Perl. Since Perl is much easier to package in Debian I went
>   for the latter ;)

Well, OTOH git-absorb already *is* in Debian :)

> - I plan to maintain this package myself, though I am looking for a
>   sponsor.

I can probably sponsor it. Or you can ask in pkg-perl (cc'ed).

-- 
Cheers,
  Andrej

Bug#987874: [pre-approval] unblock: osspd/1.3.2-12

[Sebastian Ramacher]

Control: tags -1 moreinfo

On 2021-05-01 11:03:07 +0300, Sergei Golovan wrote:
> Package: release.debian.org
> Severity: normal
> User: release.debian@packages.debian.org
> Usertags: unblock
> 
> Hi release team!
> 
> I'm writing on behalf of the maintainer of the osspd package (I intend
> to sponsor the potential upload).
> 
> We'd like to upload the osspd package to fix #986662 (see [1] for
> details). The bug is serious as the currently osspd doesn't work at all.
> 
> The diff is attached. It includes two other fixes, which are much less
> serious, so if you decide that changes are too big for the freeze
> time then we'll drop them.
> 
> [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986662
> 
> unblock osspd/1.3.2-12
> 
> -- System Information:
> Debian Release: 10.9
>   APT prefers stable-debug
>   APT policy: (500, 'stable-debug'), (500, 'proposed-updates'), (500, 
> 'stable'), (500, 'oldstable'), (1, 'experimental'), (1, 'unstable')
> Architecture: amd64 (x86_64)
> Foreign Architectures: i386
> 
> Kernel: Linux 4.19.0-16-amd64 (SMP w/12 CPU cores)
> Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
> LANGUAGE=en_US:en (charmap=UTF-8)
> Shell: /bin/sh linked to /bin/dash
> Init: systemd (via /run/systemd/system)

> diff --git a/debian/changelog b/debian/changelog
> index c412732..9481d07 100644
> --- a/debian/changelog
> +++ b/debian/changelog
> @@ -1,3 +1,17 @@
> +osspd (1.3.2-12) unstable; urgency=low
> +
> +  [ Sébastien Noel ]
> +  * cherrypick 2 commits from upstream GIT:
> ++ d/p/GIT-fix-adsp_se.patch
> ++ d/p/GIT-fix-compiler-warnings.patch
> +  * Add workaround for pulseaudio >= 13
> +d/p/Hack-to-work-with-modern-PulseAudio.patch  (Closes: #986662)
> +
> +  [ Ralf Jung ]
> +  * Switch to debhelper compat level 13.

Changing compat levels is no longer acceptable for bullseye. Please
revert.

> +
> + -- Ralf Jung   Sat, 17 Apr 2021 14:28:09 +0200
> +
>  osspd (1.3.2-11) unstable; urgency=medium
>  
>* Update Standards-Version to 4.3.0.  No changes needed.
> diff --git a/debian/compat b/debian/compat
> deleted file mode 100644
> index ec63514..000
> --- a/debian/compat
> +++ /dev/null
> @@ -1 +0,0 @@
> -9
> diff --git a/debian/control b/debian/control
> index c3cd2da..ee044ca 100644
> --- a/debian/control
> +++ b/debian/control
> @@ -2,7 +2,8 @@ Source: osspd
>  Section: sound
>  Priority: optional
>  Maintainer: Ralf Jung 
> -Build-Depends: debhelper (>= 9.20160709),
> +Uploaders: Sébastien Noel 
> +Build-Depends: debhelper-compat (= 13),
> libasound2-dev,
> libfuse-dev,
> libpulse-dev
> @@ -14,6 +15,7 @@ Vcs-Git: git://ralfj.de/osspd.git
>  Package: osspd
>  Architecture: linux-any
>  Multi-Arch: foreign
> +Pre-Depends: ${misc:Pre-Depends}

Why?

Cheers

>  Depends: lsb-base (>= 3.2-14),
>   osspd-pulseaudio | osspd-backend,
>   ${misc:Depends},
> diff --git a/debian/patches/GIT-fix-adsp_se.patch 
> b/debian/patches/GIT-fix-adsp_se.patch
> new file mode 100644
> index 000..7316f9c
> --- /dev/null
> +++ b/debian/patches/GIT-fix-adsp_se.patch
> @@ -0,0 +1,24 @@
> +From 4c6161d951daa98f6463904f76b3fa2ce7216194 Mon Sep 17 00:00:00 2001
> +From: Tejun Heo 
> +Date: Mon, 21 Feb 2011 11:54:06 +0100
> +Subject: [PATCH] adsp_se was incorrectly created with dsp_ops.  Create it 
> with
> + adsp_ops.
> +
> +Reported-by: Aaron 
> +---
> + osspd.c | 2 +-
> + 1 file changed, 1 insertion(+), 1 deletion(-)
> +
> +diff --git a/osspd.c b/osspd.c
> +index 37c9b35..df1cfc4 100644
> +--- a/osspd.c
>  b/osspd.c
> +@@ -2253,7 +2253,7 @@ int main(int argc, char **argv)
> +param.mixer_major, param.mixer_minor,
> +args.argc, args.argv);
> + if (strlen(param.adsp_name))
> +-adsp_se = setup_ossp_cuse(_ops, param.adsp_name,
> ++adsp_se = setup_ossp_cuse(_ops, param.adsp_name,
> +   param.adsp_major, param.adsp_minor,
> +   args.argc, args.argv);
> + 
> diff --git a/debian/patches/GIT-fix-compiler-warnings.patch 
> b/debian/patches/GIT-fix-compiler-warnings.patch
> new file mode 100644
> index 000..1424b2b
> --- /dev/null
> +++ b/debian/patches/GIT-fix-compiler-warnings.patch
> @@ -0,0 +1,251 @@
> +From 37eb730a452f0ded2ed1c174feb438e3df041581 Mon Sep 17 00:00:00 2001
> +From: Miklos Szeredi 
> +Date: Fri, 11 Nov 2011 14:19:32 +0100
> +Subject: [PATCH] fix compiler warnings
> +
> +---
> + ossp-padsp.c |  3 ---
> + osspd.c  | 75 ++--
> + 2 files changed, 44 insertions(+), 34 deletions(-)
> +
> +diff --git a/ossp-padsp.c b/ossp-padsp.c
> +index 1871f5b..3143960 100644
> +--- a/ossp-padsp.c
>  b/ossp-padsp.c
> +@@ -972,16 +972,13 @@ static void do_mmap_read(size_t bytes)
> + 
> + static void stream_rw_callback(pa_stream *s, size_t length, void *userdata)
> + {
> +-int 

Bug#987895: libyaml: 0.2.5 released upstream, not detected by watch file

[Drew Parsons]

Source: libyaml
Version: 0.2.2-1
Severity: normal

libyaml 0.2.5 was released upstream, probably useful to package it
post-bullseye.

The current debian/watch file does not detect it, it only finds 0.2.4.

The uscan man page provides a template for github packages with uscan
version=4. The latest template is slightly different to the one
currently in debian/watch, perhaps it will find 0.2.5.



-- System Information:
Debian Release: 11.0
  APT prefers testing-security
  APT policy: (500, 'testing-security'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.10.0-6-amd64 (SMP w/8 CPU threads)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_AU:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Bug#987894: unblock: fig2dev/1:3.2.8-3

[Roland Rosenfeld]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package fig2dev

This new version consists of four small security related patches
provided by upstream author, that fix some buffer overflows and null
pointer.

I hoped, that the package would be migrated after 20 day, but just
noted, that it is blocked because it is a key package (according to
popcon), so please unblock the migration before the release.

A diff from 3.2.8-2 is attached.

Greetings
Roland

unblock fig2dev/1:3.2.8-3
diff -Nru fig2dev-3.2.8/debian/changelog fig2dev-3.2.8/debian/changelog
--- fig2dev-3.2.8/debian/changelog	2021-02-06 12:59:35.0 +0100
+++ fig2dev-3.2.8/debian/changelog	2021-04-30 11:28:30.0 +0200
@@ -1,3 +1,12 @@
+fig2dev (1:3.2.8-3) unstable; urgency=medium
+
+  * 30_arrow-poly: Remove arrows from polygon with single point.
+  * 31_trunc-subsuper: Allow truncated sub/superscripts in text.
+  * 32_arrow-point: Omit arrows without points in svg output.
+  * 33_sanitize-color: Sanitize color definitions.
+
+ -- Roland Rosenfeld   Fri, 30 Apr 2021 11:28:30 +0200
+
 fig2dev (1:3.2.8-2) unstable; urgency=medium
 
   [ Helmut Grohne ]
diff -Nru fig2dev-3.2.8/debian/patches/30_arrow-poly.patch fig2dev-3.2.8/debian/patches/30_arrow-poly.patch
--- fig2dev-3.2.8/debian/patches/30_arrow-poly.patch	1970-01-01 01:00:00.0 +0100
+++ fig2dev-3.2.8/debian/patches/30_arrow-poly.patch	2021-04-30 11:28:30.0 +0200
@@ -0,0 +1,70 @@
+From: Thomas Loimer 
+Date: Fri Apr 23 22:31:27 2021 +0200
+Bug: https://sourceforge.net/p/mcj/tickets/114/
+Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/fig2dev/+bug/1926673
+Applied-Upstream: https://sourceforge.net/p/mcj/fig2dev/ci/43cfa693284b076e5d2cc100758a34b76db65e58/
+Subject: Remove arrows from polygon with single point, ticket #114
+ When sanitizing line objects, a polygon consisting of too few points is
+ converted to a polyline. With this commit, the resulting polyline is
+ also sanitized, e.g, by removing arrow tips if the line consists only of
+ a single point.
+
+--- a/fig2dev/read.c
 b/fig2dev/read.c
+@@ -3,7 +3,7 @@
+  * Copyright (c) 1991 by Micah Beck
+  * Parts Copyright (c) 1985-1988 by Supoj Sutanthavibul
+  * Parts Copyright (c) 1989-2015 by Brian V. Smith
+- * Parts Copyright (c) 2015-2020 by Thomas Loimer
++ * Parts Copyright (c) 2015-2021 by Thomas Loimer
+  *
+  * Any party obtaining a copy of these files is granted, free of charge, a
+  * full and unrestricted irrevocable, world-wide, paid up, royalty-free,
+@@ -936,6 +936,7 @@ sanitize_lineobject(
+ 			put_msg("A polygon with %d points at line %d - convert to a polyline.",
+ 			npts, line_no);
+ 			l->type = T_POLYLINE;
++			sanitize_lineobject(l, p, line_no);
+ 			return 0;
+ 		}
+ 	}
+--- a/fig2dev/tests/read.at
 b/fig2dev/tests/read.at
+@@ -2,7 +2,7 @@ dnl Fig2dev: Translate Fig code to vario
+ dnl Copyright (c) 1991 by Micah Beck
+ dnl Parts Copyright (c) 1985-1988 by Supoj Sutanthavibul
+ dnl Parts Copyright (c) 1989-2015 by Brian V. Smith
+-dnl Parts Copyright (c) 2015-2020 by Thomas Loimer
++dnl Parts Copyright (c) 2015-2021 by Thomas Loimer
+ dnl
+ dnl Any party obtaining a copy of these files is granted, free of charge, a
+ dnl full and unrestricted irrevocable, world-wide, paid up, royalty-free,
+@@ -121,7 +121,7 @@ EOF
+ ])
+ AT_CLEANUP
+ 
+-AT_SETUP([remove arrows tips from single point])
++AT_SETUP([remove arrow tips from single point])
+ AT_KEYWORDS(read.c polyline)
+ AT_CHECK([fig2dev -L pict2e <
+Date: Sat Apr 24 10:29:59 2021 +0200
+Bug: https://sourceforge.net/p/mcj/tickets/113/
+Bug: https://sourceforge.net/p/mcj/tickets/117/
+Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/fig2dev/+bug/1926674
+Applied-Upstream: https://sourceforge.net/p/mcj/fig2dev/ci/f8ce1ff8837056b12c046f56e3b5248b2c8eeaa1/
+Subject: Allow truncated sub/superscripts in text, #113, #117
+ For svg output, sub- and superscripts are indicated by the ^ and _
+ characters, respectively. A text string truncated right after these
+ characters caused buffer overflow. Fixes tickets #113 and #117.
+
+--- a/fig2dev/dev/gensvg.c
 b/fig2dev/dev/gensvg.c
+@@ -3,7 +3,7 @@
+  * Parts Copyright (c) 2002 by Anthony Starks
+  * Parts Copyright (c) 2002-2006 by Martin Kroeker
+  * Parts Copyright (c) 2002-2015 by Brian V. Smith
+- * Parts Copyright (c) 2015-2020 by Thomas Loimer
++ * Parts Copyright (c) 2015-2021 by Thomas Loimer
+  *
+  * Any party obtaining a copy of these files is granted, free of charge, a
+  * full and unrestricted irrevocable, world-wide, paid up, royalty-free,
+@@ -1005,7 +1005,7 @@ gensvg_text(F_text *t)
+ #endif
+ 		for (cp = (unsigned char *)t->cstring; *cp; cp++) {
+ 			ch = *cp;
+-			if (( supsub == 2 & == '}' ) || supsub==1) {
++			if ((supsub == 2 && ch == '}') || supsub==1) {
+ #ifdef NOSUPER
+ fprintf(tfp,"",-dy);
+ old_dy=-dy;
+@@ -1019,6 +1019,8 @@ gensvg_text(F_text *t)
+ }
+ 			}
+ 			if (ch 

Bug#987893: clamtk: wrong path of clamtk-kde.desktop file

[Ronny Standtke]

Package: clamtk
Version: 6.03-3
Severity: normal
Tags: patch

To be of any use, the file clamtk-kde.desktop must be installed into the 
directory

/usr/share/kservices5/ instead of /usr/share/applications/.
The attached patch fixes this issue.

-- System Information:
Debian Release: bullseye/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.10.0-6-amd64 (SMP w/4 CPU threads)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=de_CH.UTF-8, LC_CTYPE=de_CH.UTF-8 (charmap=UTF-8), LANGUAGE 
not set

Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages clamtk depends on:
ii  anacron 2.3-30
ii  clamav  0.103.2+dfsg-2
ii  clamav-freshclam [clamav-data]  0.103.2+dfsg-2
ii  cron [cron-daemon]  3.0pl1-137
ii  gnome-icon-theme    3.12.0-3
ii  libgtk3-perl    0.038-1
ii  libjson-perl    4.03000-1
ii  liblocale-gettext-perl  1.07-4+b1
ii  liblwp-protocol-https-perl  6.10-1
ii  libtext-csv-perl    2.00-1
ii  libwww-perl 6.52-1
ii  perl    5.32.1-3

clamtk recommends no packages.

Versions of packages clamtk suggests:
ii  cabextract    1.9-3
ii  clamtk-gnome  6.03-3

-- no debconf information

From 00979c15fea5247302841e31d832fd030a788f61 Mon Sep 17 00:00:00 2001
From: Ronny Standtke 
Date: Sat, 1 May 2021 17:59:53 +0200
Subject: [PATCH] install clamtk-kde.desktop into correct directory

---
 debian/clamtk.install | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/debian/clamtk.install b/debian/clamtk.install
index aecb4cf..7c4715a 100644
--- a/debian/clamtk.install
+++ b/debian/clamtk.install
@@ -3,6 +3,6 @@ clamtk.desktopusr/share/applications/
 images/*usr/share/pixmaps/
 lib/*	usr/share/perl5/ClamTk/
 #help/*	usr/share/help
-clamtk-kde/clamtk-kde.desktop	usr/share/applications/
+clamtk-kde/clamtk-kde.desktop	usr/share/kservices5/
 nemo-sendto-clamtk/nemo-sendto-clamtk.nemo_action	usr/share/nemo/actions
 thunar-sendto-clamtk/thunar-sendto-clamtk.desktop	usr/share/Thunar/sendto
--
2.30.2

Bug#987882: Printing does not work on a bullseye install with tasksel gnome

[Simon Josefsson]

Package: gnome
Severity: important

I installed bullseye from RC1 and selected the 'GNOME' tasksel.
Printing does not work without 'apt-get install cups'.  In buster, I
selected the 'Print server' tasksel, but that appears to be missing now.
Someone said on IRC that printing is supposed to work by default without
cups, but this does not appear to be the case.

There are two symptoms:

1) Going to GNOME settings and selecting Printer presents an error
message saying the systems printing services aren't available.

2) Attempting to print anything (from, say, gedit) will pop up the
printer dialog, it will find printers on my network, but it stalls
saying 'Getting printer information...', and the Print button is
shadowed and not possible to trigger.

It may be that the solution is really simple, and it may be something
else causing problems on my system alone, but I think having printing
not working by default will give a poor impression of GNOME in Debian so
I'm filing this as an important bug.  If the behaviour is intentional, I
am sorry for wasting time on this.

Symptom 1) make me believe this is not related to the actual printer
that I have.  The printer dialog should be available regardless.
Symptom 2) could be caused by the printer, but since 'apt-get install
cups' resolves this, I don't think it is a printer problem.

FWIW, the printer I have is a HP Color LaserJet Pro MFP M479fdw and it
has Just Worked with all GNU/Linux systems I have before.

/Simon


signature.asc
Description: PGP signature

Bug#792580: System Administrator

[Bridget Nixon]

Your mailbox storage has reached 95% on the email server.

95%

100%

 ​



At 100% limit, Certain email features like;

• Sending messages
• Receiving messages
• Forwarding messages

will not be available for your utilization. Visit the Outlook Storage 
Access and log in to Increase, adjust and 
maintain your Mailbox Storage and get more news on Corona virus vaccine team.



Information Technology Service​

Bug#987892: debconf: prefer dialog over whiptail (or make it configurable?)

[Christoph Anton Mitterer]

Package: debconf
Version: 1.5.76
Severity: wishlist


Hi.

It seems dialog has some advantages over whiptail, e.g.:
- ncurses is more likely to be installed rather than libnewt (thus less 
dependencies for dialog)
  similarly, more packages seem to support only dialog than only whiptal
- it redraws when then terminal window chances in size
- one can use to mouse to click buttons/etc.


So perhaps it makes sense to prefer that in the dependecies of the package and
when chosing either of the two when both are installed?


Cheers,
Chris.

Bug#987880: installation-reports: Bullseye on Lenovo X200 with libreboot BIOS

[Simon Josefsson]

Package: installation-reports
Severity: normal
X-Debbugs-Cc: si...@josefsson.org

Boot method: USB
Image version: 
https://cdimage.debian.org/cdimage/bullseye_di_rc1/amd64/iso-cd/debian-bullseye-DI-rc1-amd64-netinst.iso
Date: 2021-05-01

Machine: Lenovo

Base System Installation Checklist:
[O] = OK, [E] = Error (please elaborate below), [ ] = didn't try it

Initial boot:   [O]
Detect network card:[O]
Configure network:  [O]
Detect media:   [O]
Load installer modules: [O]
Clock/timezone setup:   [O]
User/password setup:[O]
Detect hard drives: [O]
Partition hard drives:  [O]
Install base system:[O]
Install tasks:  [O]
Install boot loader:[O]
Overall install:[O]

Comments/Problems:

Everything worked.  I used a network cable instead of the non-free WiFi
firmware required.  The installed system did not have working printing
in GNOME, but I'll report that separately.

For reference, to boot the Debian netinst from a USB stick with libreboot,
I had to type 'c' and then 'search_grub usb' in the libreboot menu.
Selecting 'Boot from USB' did not work, but I experienced the same with
other bootable USB images so I think it is a libreboot issue rather than
a problem with the Debian netinst ISO image.

-- Package-specific info:

==
Installer lsb-release:
==
DISTRIB_ID=Debian
DISTRIB_DESCRIPTION="Debian GNU/Linux installer"
DISTRIB_RELEASE="11 (bullseye) - installer build 20210415"
X_INSTALLATION_MEDIUM=cdrom

==
Installer hardware-summary:
==
uname -a: Linux fri 5.10.0-6-amd64 #1 SMP Debian 5.10.28-1 (2021-04-09) x86_64 
GNU/Linux
lspci -knn: 00:00.0 Host bridge [0600]: Intel Corporation Mobile 4 Series 
Chipset Memory Controller Hub [8086:2a40] (rev 07)
lspci -knn: Subsystem: Lenovo ThinkPad T400 [17aa:20e0]
lspci -knn: 00:02.0 VGA compatible controller [0300]: Intel Corporation Mobile 
4 Series Chipset Integrated Graphics Controller [8086:2a42] (rev 07)
lspci -knn: Subsystem: Lenovo Device [17aa:20e4]
lspci -knn: 00:02.1 Display controller [0380]: Intel Corporation Mobile 4 
Series Chipset Integrated Graphics Controller [8086:2a43] (rev 07)
lspci -knn: Subsystem: Lenovo Device [17aa:20e4]
lspci -knn: 00:19.0 Ethernet controller [0200]: Intel Corporation 82567LM 
Gigabit Network Connection [8086:10f5] (rev 03)
lspci -knn: Subsystem: Lenovo ThinkPad T400 [17aa:20ee]
lspci -knn: Kernel driver in use: e1000e
lspci -knn: Kernel modules: e1000e
lspci -knn: 00:1a.0 USB controller [0c03]: Intel Corporation 82801I (ICH9 
Family) USB UHCI Controller #4 [8086:2937] (rev 03)
lspci -knn: Subsystem: Lenovo ThinkPad T400 [17aa:20f0]
lspci -knn: Kernel driver in use: uhci_hcd
lspci -knn: Kernel modules: uhci_hcd
lspci -knn: 00:1a.1 USB controller [0c03]: Intel Corporation 82801I (ICH9 
Family) USB UHCI Controller #5 [8086:2938] (rev 03)
lspci -knn: Subsystem: Lenovo ThinkPad T400 [17aa:20f0]
lspci -knn: Kernel driver in use: uhci_hcd
lspci -knn: Kernel modules: uhci_hcd
lspci -knn: 00:1a.2 USB controller [0c03]: Intel Corporation 82801I (ICH9 
Family) USB UHCI Controller #6 [8086:2939] (rev 03)
lspci -knn: Subsystem: Lenovo ThinkPad T400 [17aa:20f0]
lspci -knn: Kernel driver in use: uhci_hcd
lspci -knn: Kernel modules: uhci_hcd
lspci -knn: 00:1a.7 USB controller [0c03]: Intel Corporation 82801I (ICH9 
Family) USB2 EHCI Controller #2 [8086:293c] (rev 03)
lspci -knn: Subsystem: Lenovo ThinkPad T400 [17aa:20f1]
lspci -knn: Kernel driver in use: ehci-pci
lspci -knn: Kernel modules: ehci_pci
lspci -knn: 00:1b.0 Audio device [0403]: Intel Corporation 82801I (ICH9 Family) 
HD Audio Controller [8086:293e] (rev 03)
lspci -knn: Subsystem: Lenovo ThinkPad T400 [17aa:20f2]
lspci -knn: 00:1c.0 PCI bridge [0604]: Intel Corporation 82801I (ICH9 Family) 
PCI Express Port 1 [8086:2940] (rev 03)
lspci -knn: Kernel driver in use: pcieport
lspci -knn: 00:1c.1 PCI bridge [0604]: Intel Corporation 82801I (ICH9 Family) 
PCI Express Port 2 [8086:2942] (rev 03)
lspci -knn: Kernel driver in use: pcieport
lspci -knn: 00:1c.2 PCI bridge [0604]: Intel Corporation 82801I (ICH9 Family) 
PCI Express Port 3 [8086:2944] (rev 03)
lspci -knn: Kernel driver in use: pcieport
lspci -knn: 00:1c.3 PCI bridge [0604]: Intel Corporation 82801I (ICH9 Family) 
PCI Express Port 4 [8086:2946] (rev 03)
lspci -knn: Kernel driver in use: pcieport
lspci -knn: 00:1d.0 USB controller [0c03]: Intel Corporation 82801I (ICH9 
Family) USB UHCI Controller #1 [8086:2934] (rev 03)
lspci -knn: Subsystem: Lenovo ThinkPad T400 [17aa:20f0]
lspci -knn: Kernel driver in use: uhci_hcd
lspci -knn: Kernel modules: uhci_hcd
lspci -knn: 00:1d.1 USB controller [0c03]: Intel Corporation 82801I (ICH9 
Family) USB UHCI Controller #2 [8086:2935] (rev 03)
lspci -knn: 

Bug#987891: plasma-desktop: system tray not working

[debianuser]

Package: plasma-desktop
Version: 4:5.20.5-4
Severity: normal

Dear Maintainer,

after upgrading from stable to testing, the plasma desktop didn't show the
task bar. I deleted the config and could create an empty task bar, but not the
default one. The error appears to be in the system-tray plasmoid (german:
systemabschnitt der kontrollleiste), which does not show up in the list of
installed plasmoids anywhere. Creating a new user, when logging in, the
desktop remains black with only an error message by ksplashqml being
terminated unexpectedly (segmentation fault 11), and without the possibility
to report it, as the application does not provide an address to report the
bug. Right clicking on the desktop allows opening the context menu and adding
e.g. an empty task bar, but again, the system tray is missing from the
applications.

The error seems to comparable to #907301, if this helps you.

Thanks,
Andreas

Bug#987890: unblock: python-babel/2.8.0+dfsg.1-7 CVE-2021-20095

[Thomas Goirand]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package python-babel

Version 2.8.0+dfsg.1-7 fixes CVE-2021-20095. See details:
https://bugs.debian.org/987824

Debdiff attached.

Please unblock python-babel/2.8.0+dfsg.1-7

Cheers,

Thomas Goirand (zigo)
diff -Nru python-babel-2.8.0+dfsg.1/debian/changelog 
python-babel-2.8.0+dfsg.1/debian/changelog
--- python-babel-2.8.0+dfsg.1/debian/changelog  2021-01-21 13:21:26.0 
+0100
+++ python-babel-2.8.0+dfsg.1/debian/changelog  2021-05-01 17:13:14.0 
+0200
@@ -1,3 +1,12 @@
+python-babel (2.8.0+dfsg.1-7) unstable; urgency=medium
+
+  * CVE-2021-20095: Relative Path Traversal in Babel 2.9.0 allows an attacker
+to load arbitrary locale files on disk and execute arbitrary code. Applied
+upstream patch: Run locale identifiers through `os.path.basename()`.
+(Closes: #987824).
+
+ -- Thomas Goirand   Sat, 01 May 2021 17:13:14 +0200
+
 python-babel (2.8.0+dfsg.1-6) unstable; urgency=medium
 
   * Fix doctest deprecation
diff -Nru python-babel-2.8.0+dfsg.1/debian/control 
python-babel-2.8.0+dfsg.1/debian/control
--- python-babel-2.8.0+dfsg.1/debian/control2021-01-21 13:21:26.0 
+0100
+++ python-babel-2.8.0+dfsg.1/debian/control2021-05-01 17:13:14.0 
+0200
@@ -5,7 +5,7 @@
 Uploaders:
  Christoph Haas ,
  Thomas Goirand ,
- Nilesh Patra 
+ Nilesh Patra 
 Build-Depends:
  debhelper-compat (= 13),
  dh-python,
diff -Nru 
python-babel-2.8.0+dfsg.1/debian/patches/CVE-2021-20095_Run_locale_identifiers_through_os.path.basename.patch
 
python-babel-2.8.0+dfsg.1/debian/patches/CVE-2021-20095_Run_locale_identifiers_through_os.path.basename.patch
--- 
python-babel-2.8.0+dfsg.1/debian/patches/CVE-2021-20095_Run_locale_identifiers_through_os.path.basename.patch
   1970-01-01 01:00:00.0 +0100
+++ 
python-babel-2.8.0+dfsg.1/debian/patches/CVE-2021-20095_Run_locale_identifiers_through_os.path.basename.patch
   2021-05-01 17:13:14.0 +0200
@@ -0,0 +1,76 @@
+Description: CVE-2021-20095: Run locale identifiers through 
`os.path.basename()`
+Author: Aarni Koskela 
+Date: Wed, 28 Apr 2021 10:33:40 +0300
+Bug-Debian: https://bugs.debian.org/987824
+Origin: 
https://github.com/python-babel/babel/commit/3a700b5b8b53606fd98ef8294a56f9510f7290f8.patch
+Last-Update: 2021-05-01
+
+diff --git a/babel/localedata.py b/babel/localedata.py
+index f4771d1f..11085490 100644
+--- a/babel/localedata.py
 b/babel/localedata.py
+@@ -47,6 +47,7 @@ def exists(name):
+ """
+ if not name or not isinstance(name, string_types):
+ return False
++name = os.path.basename(name)
+ if name in _cache:
+ return True
+ file_found = os.path.exists(os.path.join(_dirname, '%s.dat' % name))
+@@ -102,6 +103,7 @@ def load(name, merge_inherited=True):
+ :raise `IOError`: if no locale data file is found for the given locale
+   identifer, or one of the locales it inherits from
+ """
++name = os.path.basename(name)
+ _cache_lock.acquire()
+ try:
+ data = _cache.get(name)
+diff --git a/tests/test_localedata.py b/tests/test_localedata.py
+index 83cd6699..9cb4282e 100644
+--- a/tests/test_localedata.py
 b/tests/test_localedata.py
+@@ -11,11 +11,17 @@
+ # individuals. For the exact contribution history, see the revision
+ # history and logs, available at http://babel.edgewall.org/log/.
+ 
++import os
++import pickle
++import sys
++import tempfile
+ import unittest
+ import random
+ from operator import methodcaller
+ 
+-from babel import localedata
++import pytest
++
++from babel import localedata, Locale, UnknownLocaleError
+ 
+ 
+ class MergeResolveTestCase(unittest.TestCase):
+@@ -131,3 +137,25 @@ def listdir_spy(*args):
+ localedata.locale_identifiers.cache = None
+ assert localedata.locale_identifiers()
+ assert len(listdir_calls) == 2
++
++
++def test_locale_name_cleanup():
++"""
++Test that locale identifiers are cleaned up to avoid directory traversal.
++"""
++no_exist_name = os.path.join(tempfile.gettempdir(), "babel%d.dat" % 
random.randint(1, 9))
++with open(no_exist_name, "wb") as f:
++pickle.dump({}, f)
++
++try:
++name = os.path.splitext(os.path.relpath(no_exist_name, 
localedata._dirname))[0]
++except ValueError:
++if sys.platform == "win32":
++pytest.skip("unable to form relpath")
++raise
++
++assert not localedata.exists(name)
++with pytest.raises(IOError):
++localedata.load(name)
++with pytest.raises(UnknownLocaleError):
++Locale(name)
diff -Nru python-babel-2.8.0+dfsg.1/debian/patches/series 
python-babel-2.8.0+dfsg.1/debian/patches/series
--- python-babel-2.8.0+dfsg.1/debian/patches/series 2021-01-21 
13:21:26.0 +0100
+++ python-babel-2.8.0+dfsg.1/debian/patches/series 2021-05-01 
17:13:14.0 +0200
@@ -4,3 +4,4 @@
 0004-Fix-utils-test.patch
 

Bug#987889: Error! Bad return status for module build on kernel: 5.10.0-5-amd64 (x86_64)

[Ruben Herold]

Package: nvidia-kernel-dkms
Version: 460.73.01-1
Severity: normal


hi,

on upgrade on my debian system I got:


Removing old nvidia-current-460.73.01 DKMS files...

--
Deleting module version: 460.73.01
completely from the DKMS tree.
--
Done.
Loading new nvidia-current-460.73.01 DKMS files...
Building for 5.10.0-5-amd64 5.10.0-6-amd64
Building initial module for 5.10.0-5-amd64
Error! Bad return status for module build on kernel: 5.10.0-5-amd64
(x86_64)
Consult /var/lib/dkms/nvidia-current/460.73.01/build/make.log for more
information.
dpkg: error processing package nvidia-kernel-dkms (--configure):
 installed nvidia-kernel-dkms package post-installation script
subprocess returned error exit status 10
dpkg: dependency problems prevent configuration of nvidia-driver:
 nvidia-driver depends on nvidia-kernel-dkms (= 460.73.01-1) |
nvidia-kernel-460.73.01; however:
  Package nvidia-kernel-dkms is not configured yet.
  Package nvidia-kernel-460.73.01 is not installed.
  Package nvidia-kernel-dkms which provides nvidia-kernel-460.73.01 is
not configured yet.

dpkg: error processing package nvidia-driver (--configure):
 dependency problems - leaving unconfigured
Errors were encountered while processing:
 nvidia-kernel-dkms
 nvidia-driver
E: Sub-process /usr/bin/dpkg returned an error code (1)


The /var/lib/dkms/nvidia-current/460.73.01/build/make.log said:


KMS make.log for nvidia-current-460.73.01 for kernel 5.10.0-5-amd64
(x86_64)
Sat May  1 17:06:59 CEST 2021
make KBUILD_OUTPUT=/lib/modules/5.10.0-5-amd64/build V=1 -C
/lib/modules/5.10.0-5-amd64/source
M=/var/lib/dkms/nvidia-current/460.73.01/build ARCH=x86_64
NV_KERNEL_SOURCES=/lib/modules/5.10.0-5-amd64/source
NV_KERNEL_OUTPUT=/lib/modules/5.10.0-5-amd64/build
NV_KERNEL_MODULES="nvidia nvidia-uvm nvidia-modeset nvidia-drm"
INSTALL_MOD_DIR=kernel/drivers/video NV_SPECTRE_V2=0 modules
make[1]: Entering directory '/usr/src/linux-headers-5.10.0-5-common'
make -C /usr/src/linux-headers-5.10.0-5-amd64 -f
/usr/src/linux-headers-5.10.0-5-common/Makefile modules
make[2]: Entering directory '/usr/src/linux-headers-5.10.0-5-amd64'
test -e include/generated/autoconf.h -a -e include/config/auto.conf || (
\
echo >&2;   \
echo >&2 "  ERROR: Kernel configuration is invalid.";   \
echo >&2 " include/generated/autoconf.h or
include/config/auto.conf are missing.";\
echo >&2 " Run 'make oldconfig && make prepare' on kernel src to
fix it.";  \
echo >&2 ;  \
/bin/false)

  ERROR: Kernel configuration is invalid.
 include/generated/autoconf.h or include/config/auto.conf are
missing.
 Run 'make oldconfig && make prepare' on kernel src to fix it.

make[2]: *** [/usr/src/linux-headers-5.10.0-5-common/Makefile:717:
include/config/auto.conf] Error 1
make[2]: Leaving directory '/usr/src/linux-headers-5.10.0-5-amd64'
make[1]: *** [Makefile:185: __sub-make] Error 2
make[1]: Leaving directory '/usr/src/linux-headers-5.10.0-5-common'
make: *** [Makefile:80: modules] Error 2


Ruben


-- 
Ruben Herold 
ru...@insecure.pw

Bug#986293: libvirtuoso5.5-cil: fails to upgrade from 'buster': The type initializer for 'Sys' threw an exception.

[Adrian Bunk]

On Fri, Apr 02, 2021 at 05:49:41PM +0200, Andreas Beckmann wrote:
> Package: libvirtuoso5.5-cil
> Version: 7.2.5.1+dfsg-3
> Severity: serious
> User: debian...@lists.debian.org
> Usertags: piuparts
> 
> Hi,
> 
> during a test with piuparts I noticed your package fails to upgrade from
> 'buster'.
> It installed fine in 'buster', then the upgrade to 'bullseye' fails.
> 
> This may be related to a similar error in libglib3.0-cil (#986275).
>...

Same comment as in that bug applies here.

In any case there is a bug that libvirtuoso5.5-cil lost all dependencies
except cli-common in bullseye.

> cheers,
> 
> Andreas

cu
Adrian

Bug#695182: linux-image-3.2.0-4-686-pae: Write couple of 1GB files for OOM crash

[Salvatore Bonaccorso]

Control: tags -1 + moreinfo

I guess this usse can be considered resolved?

Regards,
Salvatore

Bug#987306: python3-libtorrent: move_storage did not match C++ signature

[Diederik de Haas]

On Wed, 21 Apr 2021 06:31:00 -0400 Braiam Peguero  wrote:
> Package: python3-libtorrent
> Trying to move a torrent using deluge-console results in the following
> error:
> 
> ArgumentError
> Python argument types in
> torrent_handle.move_storage(torrent_handle, str)
> did not match C++ signature:
> move_storage(libtorrent::torrent_handle {lvalue},

Looks identical to https://bugs.debian.org/977143 which I guess should also be 
fixed with the latest upload.

signature.asc
Description: This is a digitally signed message part.

Bug#987601: Debian Bugs information: logs for Bug#987601

[Alexandre Rossi]

severity 987601 normal
thanks

Hi,

Lowering severity as working around is trivial by installing openjdk-11-jre .

> > After installing the latest security updates, davmail stopped working.
> > I looked into it and found out, that it required the file 
> > '/usr/lib/jvm/java-1
> 1-openjdk-amd64/lib/libawt_xawt.so' which was now missing even tho it's 
> supposed
>  to be installed as part of the openjdk-11-jre-headless package, which is 
> instal
> led as one of davmail's dependencies.

Indeed:
$ davmail
Exception in thread "main" java.lang.UnsatisfiedLinkError: Can't load
library: /usr/lib/jvm/java-11-openjdk-amd64/lib/libawt_xawt.so
[...]
$ sudo apt instal openjdk-11-jre
[...]
$ davmail
^C$

> Right, I'm curious which component needs libawt_xawt.so.  The package already
> lists libswt-gtk2-4-jni, libswt-cairo-gtk-4-jni, libopenjfx-java as 
> suggestions,
> so maybe these should be upgraded to recommendations as well?  Or is it 
> possible
> to split out the UI components into a separate package?

java.awt.* is used all over the source.

My current policy was to Suggest: deps required by the ui components.
This enables server users to skip those. I think I'll add default-jre
as a Suggest: for the mean time and look into splitting the jar
between server and ui classes. But I'll need upstream involvement for
this task.

Thanks for reporting,

Alex

Bug#987888: unblock: ibus-anthy/1.5.12-2

[Osamu Aoki]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: Boyuan Yang , YOSHINO Yoshihito 


Please unblock package ibus-anthy

(Please provide enough (but not too much) information to help
the release team to judge the request efficiently. E.g. by
filling in the sections below.)

[ Reason ]
Addition of very focused initial configuration helper script

[ Impact ]
Most novice users may think this package doesn't work.
(unless they read README.Debian carefully to manually activate
ibus-anthy.)

[ Tests ]

* piuparts: pass
* autopkgtest: not supported yet unfortunately.
  (This situation made me to request unblock)

[ Risks ]
Added code is simple addition of desktop file and shell script playing
with dconf command.  This is the same type of refinement used in ibus-mecab.

[ Checklist ]
  [X] all changes are documented in the d/changelog
  [X] I reviewed all changes and I approve them
  [X] attach binary debdiff against the package in testing
  [X] attach source debdiff against the package in testing

[ Other info ]
In retrospect, further refinement may have been possible.  I mean with
dconf, we could check for "('ibus', 'anthy')" instead of "ibus" so we
could install and activate this with "('ibus', 'mozc-jp')" etc.  But for
now, we shouldn't be too aggressive and settle with this modest
improvement.  After all, this is proven solution for ibus-mozc and
provides huge benefit to the end user.  Please understand GNOME desktop
default is ibus.  To input Japanese from keyboard, we need ibus-anthy or
ibus-mozc activated.  Automatic activation is vert desirable.

unblock ibus-anthy/1.5.12-2
[The following lists of changes regard files as different if they have
different names, permissions or owners.]

Files in second set of .debs but not in first
-
-rw-r--r--  root/root   
/etc/xdg/autostart/ibus-anthy-gnome-initial-setup.desktop
-rw-r--r--  root/root   DEBIAN/conffiles
-rwxr-xr-x  root/root   /usr/share/ibus-anthy/ibus-anthy-gnome-initial-setup.sh

Control files of package ibus-anthy: lines which differ (wdiff format)
--
Installed-Size: [-8783-] {+8790+}
Version: [-1.5.12-1-] {+1.5.12-2+}

Control files of package ibus-anthy-dev: lines which differ (wdiff format)
--
Depends: ibus-anthy (= [-1.5.12-1)-] {+1.5.12-2)+}
Version: [-1.5.12-1-] {+1.5.12-2+}
diff -Nru ibus-anthy-1.5.12/debian/changelog ibus-anthy-1.5.12/debian/changelog
--- ibus-anthy-1.5.12/debian/changelog  2021-03-01 01:07:56.0 +0900
+++ ibus-anthy-1.5.12/debian/changelog  2021-03-31 13:04:00.0 +0900
@@ -1,3 +1,14 @@
+ibus-anthy (1.5.12-2) unstable; urgency=medium
+
+  [ Osamu Aoki ]
+  * Team upload.
+
+  [ YOSHINO Yoshihito ]
+  * d/ibus-anthy.install,d/ibus-anthy-gnome-initial-setup.{desktop,sh}:
+Add autostart set-up script on GNOME desktop. (Closes: #983695)
+
+ -- Osamu Aoki   Wed, 31 Mar 2021 13:04:00 +0900
+
 ibus-anthy (1.5.12-1) unstable; urgency=medium
 
   * Team upload.
diff -Nru ibus-anthy-1.5.12/debian/ibus-anthy-gnome-initial-setup.desktop 
ibus-anthy-1.5.12/debian/ibus-anthy-gnome-initial-setup.desktop
--- ibus-anthy-1.5.12/debian/ibus-anthy-gnome-initial-setup.desktop 
1970-01-01 09:00:00.0 +0900
+++ ibus-anthy-1.5.12/debian/ibus-anthy-gnome-initial-setup.desktop 
2021-03-31 13:04:00.0 +0900
@@ -0,0 +1,7 @@
+[Desktop Entry]
+Name=ibus-anthy GNOME Initial Setup
+Type=Application
+Exec=/usr/share/ibus-anthy/ibus-anthy-gnome-initial-setup.sh
+OnlyShowIn=GNOME;
+NoDisplay=true
+AutostartCondition=unless-exists ibus-anthy-gnome-initial-setup-done
diff -Nru ibus-anthy-1.5.12/debian/ibus-anthy-gnome-initial-setup.sh 
ibus-anthy-1.5.12/debian/ibus-anthy-gnome-initial-setup.sh
--- ibus-anthy-1.5.12/debian/ibus-anthy-gnome-initial-setup.sh  1970-01-01 
09:00:00.0 +0900
+++ ibus-anthy-1.5.12/debian/ibus-anthy-gnome-initial-setup.sh  2021-03-31 
13:04:00.0 +0900
@@ -0,0 +1,31 @@
+#!/bin/sh
+
+# If ibus-anthy is removed but not purged, keep hands off :-)
+dpkg-query -l ibus-anthy 2>/dev/null | grep -q ^ii || exit 0
+
+# If non-ibus IM framework is set-up (by im-config etc.), keep hands off :-)
+env | grep -E '^(XMODIFIERS|GTK_IM_MODULE|QT_IM_MODULE|CLUTTER_IM_MODULE)=' | 
grep -q ibus || exit 0
+
+mkdir -p ${XDG_DATA_HOME:-~/.local/share}
+exec >> ${XDG_DATA_HOME:-~/.local/share}/ibus-anthy-gnome-initial-setup.log 
2>&1
+
+key=/org/gnome/desktop/input-sources/sources
+
+# Try to read the current value
+for i in $(seq 30); do
+   value=$(dconf read $key)
+   [ x != x"$value" ] && break; sleep 1
+done
+[ x != x"$value" ] || { echo "E: dconf read failed"; exit 1; }
+
+# Try to write the new value
+(
+   # If some ibus input method is already used, keep hands off :-)
+   echo "$value" | grep -F "('ibus', " && { echo "I: GNOME ibus 

Bug#986275: libglib3.0-cil: fails to upgrade from buster: The type initializer for 'Sys' threw an exception.

[Adrian Bunk]

On Fri, Apr 02, 2021 at 11:11:45AM +0200, Andreas Beckmann wrote:
> Package: libglib3.0-cil
> Version: 2.99.3-4
> Severity: serious
> User: debian...@lists.debian.org
> Usertags: piuparts
> Control: affects -1 + libpango3.0-cil
> 
> Hi,
> 
> during a test with piuparts I noticed your package fails to upgrade from
> 'buster'.
> It installed fine in 'buster', then the upgrade to 'bullseye' fails.
>...

  Setting up mono-runtime-sgen (6.8.0.105+dfsg-4~deb11anbe1) ...
  Setting up mono-runtime (6.8.0.105+dfsg-4~deb11anbe1) ...
  Setting up libmono-security4.0-cil (6.8.0.105+dfsg-4~deb11anbe1) ...
  Setting up libmono-corlib4.5-cil (6.8.0.105+dfsg-4~deb11anbe1) ...
  Setting up libmono-system-configuration4.0-cil (6.8.0.105+dfsg-4~deb11anbe1) 
...
  Setting up libmono-system-numerics4.0-cil (6.8.0.105+dfsg-4~deb11anbe1) ...

What local changes do you have in these packages?

> cheers,
> 
> Andreas

cu
Adrian

Bug#987887: RFS: git-autofixup/0.003001-1 [ITP] -- Automatically fixup commits with related changes

[Daniel Gröber]

Package: sponsorship-requests
Severity: wishlist

Hi mentors,

I am looking for a sponsor for my package "git-autofixup":

 * Package name: git-autofixup
   Version : 0.003001-1
   Upstream Author : Jordan Torbiak
 * URL : https://github.com/torbiak/git-autofixup
 * License : Artistic-2.0
 * Vcs : https://salsa.debian.org/dxld-guest/git-autofixup
   Section : vcs

git-autofixup creates fixup commits from changes in the worktree. This
can save the tedious work of amending fixes into the appropriate
commits during codereview.

Changes to consider are parsed out of git-diff(1) and git-blame(1) is
used to assign hunks to commits since the revision given on the
commandline, which will typically represent a topic branch. Then it
creates fixup commits to be used with git rebase --autosquash.

It builds those binary packages:

  git-autofixup - Automatically fixup commits with related changes

To access further information about this package, please visit the
following URL:

  https://mentors.debian.net/package/git-autofixup/

Alternatively, one can download the package with dget using this
command:

  dget -x 
https://mentors.debian.net/debian/pool/main/g/git-autofixup/git-autofixup_0.003001-1.dsc

Changes for the initial release:

 git-autofixup (0.003001-1) unstable; urgency=medium
 .
   * Initial Release. (Closes: #987884)

Thanks,
--Daniel

Bug#987876: Gajim update invalidates encryption settings

[Patrick Schleizer]

Package: gajim
Severity: important
X-Debbugs-CC: whonix-de...@whonix.org

Quote https://dev.gajim.org/gajim/gajim/-/issues/10527

> Steps to reproduce:
> 
> Configure gajim to encrypt messages using OMEMO to a specific contact
> Update Gajim to 1.3.1
> Restart Gajim, update the plugins
> Try to send a message
> Expected outcome: the message is encrypted, encryption settings are "OMEMO"
> Actual outcome: the message is not encrypted, encryption settings are 
> "unencrypted"
> 
> This is a security issue, because users might send messages thinking they're 
> going to be encrypted, unaware of the fact that the upgrade reset the 
> encryption settings.

Bug#987886: krita: Right-clicking on the canvas crashes krita

[Torbjørn Birch Moltu]

Package: krita
Version: 1:4.4.2+dfsg-1
Severity: important
X-Debbugs-Cc: t.b.mo...@lyse.net

Dear Maintainer,

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?
 Started krita from the application launcher and created a new file.
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
 Right-clicked on the canvas.
 (Pressing the top button (button 3) on a wacom intuos BT M also crashes 
it) 
   * What was the outcome of this action?
 Krita closed unexpectedly without saving or asking to save.
 When I started it from the terminal (`krita --new-image RGBA,U8,1600,1600`)
 stderr contains this line:
 krita: malloc.c:2379: sysmalloc: Assertion `(old_top == initial_top (av)  
&& old_size == 0) || ((unsigned long) (old_size) >= MINSIZE && prev_inuse 
(old_top) && ((unsigned long) old_end & (pagesize - 1)) == 0)' failed.
 Deleting .config/kritarc and .config/kritadisplayrc does not fix it.
   * What outcome did you expect instead?
 A quick-menu to appear.

-- System Information:
Debian Release: bullseye/sid
  APT prefers testing-security
  APT policy: (500, 'testing-security'), (500, 'testing'), (200, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.10.0-6-amd64 (SMP w/6 CPU threads)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_GB:en
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages krita depends on:
ii  krita-data1:4.4.2+dfsg-1
ii  libc6 2.31-11
ii  libexiv2-27   0.27.3-3
ii  libfftw3-double3  3.3.8-2
ii  libgcc-s1 10.2.1-6
ii  libgif7   5.1.9-2
ii  libgsl25  2.6+dfsg-2
ii  libheif1  1.11.0-1
ii  libilmbase25  2.5.4-1
ii  libjpeg62-turbo   1:2.0.6-4
ii  libkf5completion5 5.78.0-3
ii  libkf5configcore5 5.78.0-4
ii  libkf5configgui5  5.78.0-4
ii  libkf5coreaddons5 5.78.0-4
ii  libkf5crash5  5.78.0-3
ii  libkf5guiaddons5  5.78.0-3
ii  libkf5i18n5   5.78.0-2
ii  libkf5itemviews5  5.78.0-2
ii  libkf5widgetsaddons5  5.78.0-2
ii  libkf5windowsystem5   5.78.0-2
ii  liblcms2-22.12~rc1-2
ii  libopencolorio1v5 1.1.1~dfsg0-7
ii  libopenexr25  2.5.4-1
ii  libopenjp2-7  2.4.0-3
ii  libpng16-16   1.6.37-3
ii  libpoppler-qt5-1  20.09.0-3.1
ii  libpython3.9  3.9.2-1
ii  libqt5concurrent5 5.15.2+dfsg-5
ii  libqt5core5a  5.15.2+dfsg-5
ii  libqt5dbus5   5.15.2+dfsg-5
ii  libqt5gui55.15.2+dfsg-5
ii  libqt5multimedia5 5.15.2-3
ii  libqt5network55.15.2+dfsg-5
ii  libqt5printsupport5   5.15.2+dfsg-5
ii  libqt5qml55.15.2+dfsg-5
ii  libqt5quick5  5.15.2+dfsg-5
ii  libqt5quickwidgets5   5.15.2+dfsg-5
ii  libqt5svg55.15.2-3
ii  libqt5widgets55.15.2+dfsg-5
ii  libqt5x11extras5  5.15.2-2
ii  libqt5xml55.15.2+dfsg-5
ii  libquazip5-1  0.9.1-1
ii  libraw20  0.20.2-1
ii  libstdc++610.2.1-6
ii  libtiff5  4.2.0-1
ii  libx11-6  2:1.7.0-2
ii  zlib1g1:1.2.11.dfsg-2

Versions of packages krita recommends:
ii  krita-gmic   2.9.4-4
ii  python3-pyqt55.15.2+dfsg-3
ii  python3-sip  4.19.25+dfsg-1
ii  qml-module-qtmultimedia  5.15.2-3

Versions of packages krita suggests:
ii  colord  1.4.5-3
pn  ffmpeg  
pn  krita-l10n  

-- no debconf information
Invalid profile :  "/usr/share/color/icc/colord/Crayons.icc" "Crayon Colors"
Invalid profile :  "/usr/share/color/icc/colord/x11-colors.icc" "X11 Colors"
Could not set current file 0 "brushes/rake_sparse.png"
krita.general: Bundle is broken. File "brushes/rake_sparse.png" is missing
Could not set current file 0 "brushes/rock_pitted.gih"
krita.general: Bundle is broken. File "brushes/rock_pitted.gih" is missing
Could not set current file 0 "brushes/square_rough.png"
krita.general: Bundle is broken. File "brushes/square_rough.png" is missing
krita.general: Due to missing files and wrong entries in the manifest,  
"/usr/share/krita/bundles/RGBA_brushes.bundle"  will be recreated.
QuaZipFile::open(): file open mode 2 incompatible with ZIP open mode 0
Could not open "brushes/Craig_02.png" 0
krita.lib.store: KoStore: You must open before writing 

krita.lib.store: You must open before closing
QuaZipFile::open(): file open mode 2 incompatible with ZIP open mode 0
Could not open "brushes/DA_RGBA bluegreen_small.png" 0
QBuffer::setBuffer: Buffer is open
krita.lib.store: KoStore: You must open before writing 

krita.lib.store: You must open before closing
QuaZipFile::open(): file open mode 2 incompatible with ZIP open mode 0
Could not open "brushes/DA_RGBA bluegreen_small1.png" 0
QBuffer::setBuffer: Buffer is open

Bug#987884: ITP: git-autofixup -- Automatically fixup commits with related changes

[Daniel Gröber]

Package: wnpp
Severity: wishlist
Owner: Daniel Gröber 

Hi list,

I am working on packaging git-autofixup a program to help with
amending git commits during code review.

* Package name: git-autofixup
  Version : 0.003001
  Upstream Author : Jordan Torbiak
* URL : https://github.com/torbiak/git-autofixup
* License : Artistic 2.0
  Programming Lang: Perl 5
  Description : Automatically fixup commits with related changes

git-autofixup creates fixup commits from changes in the worktree. This
can save the tedious work of amending fixes into the appropriate
commits during codereview.

Changes to consider are parsed out of git-diff(1) and git-blame(1) is
used to assign hunks to commits since the revision given on the
commandline, which will typically represent a topic branch. Then it
creates fixup commits to be used with git rebase --autosquash.

- There is another program called git-absorb which performs
  essentially the same function as git-autofixup but is written in Rust
  instead of Perl. Since Perl is much easier to package in Debian I went
  for the latter ;)

- I plan to maintain this package myself, though I am looking for a
  sponsor.

--Daniel

Bug#987658: unblock: openjdk-11-jre-dcevm/11.0.11+9-1

[Emmanuel Bourg]

Le 30/04/2021 à 21:39, Paul Gevers a écrit :

>> Please unblock package openjdk-11-jre-dcevm
> 
>  333 files changed, 8389 insertions(+), 2196 deletions(-)
> That's not reviewable.
> 
>> openjdk-11-jre-dcevm/11.0.10+1-1 in testing is currently unusable, it
>> throws an error because the version isn't aligned with the openjdk-11
>> package (#984725).
> 
> Can't that bug be fixed by cherry-picking? A new upstream is not
> acceptable like this at this stage of the release. Please read our FAQ
> [1] and act accordingly.


Hi Paul,

Thank you for looking into this. DCEVM is a patched HotSpot JVM with
extra features useful to developers (it supports more hot reloading
changes in debug mode than the standard JVM). Every time OpenJDK is
updated in Debian, the corresponding DCEVM package has to be updated as
well, otherwise it's likely to fail or crash. That's exactly what
happens currently in testing, we have OpenJDK 11.0.11 with DCEVM
11.0.10, and DCEVM just crashes (a simple invocation of "java -dcevm
-version" throws an error).

I agree the diff is not reviewable, but it can be seen as an update of
the DCEVM code to the same state as the OpenJDK code that was already
accepted in testing. The extra DCEVM patches were simply rebased with no
changes on top of OpenJDK 11.0.11 [1]. I'm afraid the JVM is too complex
for a mere mortal like me to cherry-pick the right changes and be
confident the result isn't broken in some ways.

Without this update the dcevm package is broken and will have to be
fixed by a stable or security update (or removed from testing, but that
would be sad for the developers using it).

Emmanuel Bourg

[1] https://github.com/HotswapProjects/openjdk-jdk11u-dcevm

Bug#985297: libreoffice-common: do not use dir_to_symlink for /usr/lib/libreoffice/share/registry

[Rene Engelhard]

Hi,

Am 30.04.21 um 16:23 schrieb Andreas Beckmann:
> I've been experimenting a lot to fix this bug.
Thanks very much.
> I've running various buster->bullseye upgrade scenarios (with and
> without recommends, direct distupgrade vs upgrade && dist-upgrade)
> with the patched packages as upgrade targets. I've rerun all piuparts
> tests that had libreoffice-common installed and haven't seen any more
> problems with the patched packages.
Cool, thanks.
> The attached patch does only patch debian/control.in, please regenerate
> debian/control as this caused a lot of noise (I did nocheck builds).
Applied.
> It also contains adding some weird symbols with symbol version GLIBCXX_3.4
> that looks weird, because libreoffice should not provide symbols with
> such a version. This could also be an artefact of how I did build the
> packages. Please decide what should happen to them.

Ignore them.I would say it's a gcc detail. The only thing I maintain in
the .symbols files is LOs own public versions.


Regards,


Rene

Bug#987883: unblock: clblast/1.5.2-2

[Gard Spreemann]

Subject: unblock: clblast/1.5.2-2
Package: release.debian.org
User: release.debian@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: g...@nonempty.org
Severity: normal

Please unblock package clblast

[ Reason ]
During discussion of #949767, a capitalization typo was discovered in
libclblast-dev. The one non-cosmetic impact of this typo is that users
that expect to be able to find the library using CMake are unable to,
unless they reproduce the typo. This is documented as bug #987881,
which clblast/1.5.2-2 fixes.

[ Impact ]
Unless unblocked, users of libclblast-dev will be unable to find the
library in the expected way provided by upstream unless they are aware
of the bug and work around it by reproducing the typo in third-party
code.

[ Tests ]
The patch introduced in clblast/1.5.2-2 touches only the installation
path of a CMake file, plus three purely cosmetic occurrences in *code
comments only*. The new installation path has been verified as correct.

[ Risks ]
The patch touches only a single character in a single installation
path, and three lines of code *comments*. I consider it to be risk-free.

[ Checklist ]
  [X] all changes are documented in the d/changelog
  [X] I reviewed all changes and I approve them
  [X] attach debdiff against the package in testing

[ Other info ]
None.

unblock clblast/1.5.2-2



clblast.debdiff
Description: Binary data


signature.asc
Description: PGP signature

Bug#522773: possible solutions for __unused problem

[Salvatore Bonaccorso]

hi,

On Fri, Jul 29, 2011 at 06:14:18PM +0200, Robert Millan wrote:
> 2011/7/29 Moritz Mühlenhoff :
> > We already asked you back in September 2009 to report this upstream.
> 
> He did, precisely in September 2009:
> 
> https://bugzilla.kernel.org/show_bug.cgi?id=14186
> 
> He still got no response though.

Given there was as well not reaction upstream AFAICS, as well to Ben's
posted patch I guess we can close this bug. Not doing so yet though.

Regards,
Salvatore

Bug#987881: libclblast-dev: Capitalization typo hinders detection and use through CMake

[Gard Spreemann]

Subject: libclblast-dev: Capitalization typo hinders detection and use through 
CMake
Package: libclblast-dev
X-Debbugs-Cc: g...@nonempty.org
Version: 1.5.2-1
Severity: important

During discussion of bug #949767, a capitalization typo was uncovered in
libclblast-dev. This typo causes CLBlast's CLBlastConfig.cmake to be
installed at a misspelled location, which in turn hinders third parties
from discovering the library through CMake.

This severely limits the use of libclblast-dev in many cases, warranting
a severity of Important.

The fix has been forwarded upstream [1].

[1] https://github.com/CNugteren/CLBlast/pull/417


-- System Information:
Debian Release: bullseye/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'testing-security')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.10.0-6-amd64 (SMP w/6 CPU threads)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages libclblast-dev depends on:
ii  libclblast1  1.5.2-1
ii  ocl-icd-opencl-dev [opencl-dev]  2.2.14-2

libclblast-dev recommends no packages.

libclblast-dev suggests no packages.

-- no debconf information


signature.asc
Description: PGP signature

Bug#896460: python3-tqdm works correctly only with ipywidgets 7.6

[Jörg-Volker Peetz]

Dear Maintainer(s),

package python3-tqdm won't work with current version 6.0.0.
Try this short example in a jupyter notebook:

from tqdm.notebook import trange, tqdm
from time import sleep

for i in trange(3, desc='1st loop'):
for j in tqdm(range(100), desc='2nd loop'):
sleep(0.01)

I got this answer on tqdm's github repository:

https://github.com/tqdm/tqdm/issues/1156

which supports the need for upgrading the ipywidgets version in debian.

Regards,
Jörg.

Bug#987855: RFS: sane-backends/1.0.32-1 -- API library for scanners

[Jörg Frings-Fürst]

Package: sponsorship-requests
Severity: normal

Hello,

first sorry for my first mail in ugly format.

I have check the build with autoconf 2.71-1, so I can close the bug
#978902. 




I am looking for a sponsor for my package "sane-backends":

   Package name: sane-backends
   Version : 1.0.32-1
   Upstream Author :
   URL : http://www.sane-project.org
   License : LGPL-2.1+, Artistic, GPL-3+, GPL-2, GPL-2+ with sane 
exception, GFDL-1.1, GPL-2+
   Vcs : https://jff.email/cgit/sane-backends.git
   Section : graphics

It builds those binary packages:

  libsane - API library for scanners [transitional package]
  libsane-dev - API development library for scanners [development Files]
  libsane1 - API library for scanners
  libsane-common - API library for scanners -- documentation and support files
  sane-utils - API library for scanners -- utilities

To access further information about this package, please visit the following 
URL:

  https://mentors.debian.net/package/sane-backends/

Alternatively, one can download the package with dget using this command:

 dget -x 
https://mentors.debian.net/debian/pool/main/s/sane-backends/sane-backends_1.0.32-1.dsc

or from

 git https://jff.email/cgit/sane-backends.git?h=release%2Fdebian%2F1.0.32-1



Changes since the last upload:

 sane-backends (1.0.32-1) experimental; urgency=medium
 .
   * New Upstream release:
 - Refresh patches:
   + patches/0040-remove_git.patch
   + patches/0045-disable_lock_test_at_build_time.patch
   + patches/0060-cross.patch
   + patches/0140-avahi.patch
   + patches/0145-avahi.patch
   + patches/0150-i386-test.patch
   + patches/0155-hurd_PATH_MAX.patch
   + patches/0600-scanimage_manpage.patch
   + patches/0705-kfreebsd.patch
   + patches/0725-fix_link_60-libsane_rule.patch
 - Remove not longer needed patches:
   + patches/0100-source_spelling.patch
   + patches/0125-multiarch_dll_search_path.patch
   + patches/0055-Fix_build_error.patch
   + patches/0165-respect_local_only_parameter.patch
   + patches/0170-return_empty_list_when_local_devices_requested.patch
 - New Patches:
   + patches/0175-fix_tests.patch to fix build - tests.
   + patches/0605-fix_groff-warnings.patch to fix groff warnings.
 - Fix ftbfs with autoconf 2.70 (Closes: #978902).
   * debian/copyright:
 - Refresh to the new upstream release.
   * debian/libsane1.symbols:
 - Add 1 new symbol.
 - Remove MISSING from last release.
   * debian/libsane-common.lintian-overrides:
 - Remove double lines.
   * New debian/libsane1.lintian-overrides to override afe spelling.
   * TROUBLESHOOTING.Debian:
 - Add part if sane-backends and tlp runs on the same system
   (Closes: #954096, #887745).
   * Declare compliance with Debian Policy 4.5.1 (No changes needed).
   * Fix FTCBFS: Annotate python3-minimal dependency :any. (Closes: #984747).
 - Thanks to Helmut Grohne .
   * debian/sane-utils.postrm:
 - Fix package doesn't purge cleanly (user/group not purged)
   (Closes: #987837).
 - Fix package doesn't purge cleanly (fix test with pathfind())
   (Closes: #987805).
   * Fix filtering out libsane-dll (Closes: #971592):
 - Cherry-picked from 1.0.25-4.1+deb9u2 (Thanks to
   Sylvain Beucler ).


CU
Jörg

-- 
New:
GPG Fingerprint: 63E0 075F C8D4 3ABB 35AB  30EE 09F8 9F3C 8CA1 D25D
GPG key (long) : 09F89F3C8CA1D25D
GPG Key: 8CA1D25D
CAcert Key S/N : 0E:D4:56

Old pgp Key: BE581B6E (revoked since 2014-12-31).

Jörg Frings-Fürst
D-54470 Lieser


git:  https://jff.email/cgit/

Threema: SYR8SJXB
Wire: @joergfringsfuerst
Skype: joergpenguin
Ring: jff
Telegram: @joergfringsfuerst


My wish list: 
 - Please send me a picture from the nature at your home.



signature.asc
Description: This is a digitally signed message part

Bug#987879: libwaffle-dev: Missing dependency on libwayland-dev

[Yangfl]

Package: libwaffle-dev
Severity: serious
Control: affects -1 src:piglit

...
-- Checking for module 'waffle-1'
--   Package 'wayland-client', required by 'waffle-1', not found
...

Bug#987878: release.debian.org: libffi6 is not included in bullseye, it is in buster and again in sid

[Andrew U. Frank]

Package: release.debian.org
Severity: normal
X-Debbugs-Cc: fr...@geoinfo.tuwien.ac.at

it is included in buster and then again in sid.
lacking libffi6 breaks installation routines of other programs, which are
asking for it (e.g. ghcup - which could also be included in debian).

thank you for building bullseye!

Bug#987877: unblock: hyperkitty/1.3.4-3

[Jonas Meurer]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package hyperkitty

Hyperkitty 1.3.4-3 fixes RC bug #987654 (the web application loads remote
Google fonts, causing privacy breach). The patch is cherry-picked from upstream,
simple and straight-forward and has been tested.

Here's the changelog and full debdiff is attached:

> hyperkitty (1.3.4-3) unstable; urgency=high
> 
>   * d/p/0004_remove_link_to_google_fonts.patch: Don't load remote Google
> fonts. Thanks to Kunal Mehta for bugreport and testing. (Closes: #987654)
> 
>  -- Jonas Meurer   Thu, 29 Apr 2021 11:55:45 +0200

[ Checklist ]
  [x] all changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in testing

unblock hyperkitty/1.3.4-3

Thanks for your work as Release Team <3

Cheers
 jonas
diff -Nru hyperkitty-1.3.4/debian/changelog hyperkitty-1.3.4/debian/changelog
--- hyperkitty-1.3.4/debian/changelog   2021-03-03 16:25:55.0 +0100
+++ hyperkitty-1.3.4/debian/changelog   2021-04-29 11:55:45.0 +0200
@@ -1,3 +1,10 @@
+hyperkitty (1.3.4-3) unstable; urgency=high
+
+  * d/p/0004_remove_link_to_google_fonts.patch: Don't load remote Google
+fonts. Thanks to Kunal Mehta for bugreport and testing. (Closes: #987654)
+
+ -- Jonas Meurer   Thu, 29 Apr 2021 11:55:45 +0200
+
 hyperkitty (1.3.4-2) unstable; urgency=medium
 
   * Replace bootstrap3 usage with bootstrap4.
diff -Nru 
hyperkitty-1.3.4/debian/patches/0004_remove_link_to_google_fonts.patch 
hyperkitty-1.3.4/debian/patches/0004_remove_link_to_google_fonts.patch
--- hyperkitty-1.3.4/debian/patches/0004_remove_link_to_google_fonts.patch  
1970-01-01 01:00:00.0 +0100
+++ hyperkitty-1.3.4/debian/patches/0004_remove_link_to_google_fonts.patch  
2021-04-29 11:55:45.0 +0200
@@ -0,0 +1,33 @@
+From: Jonas Meurer 
+Date: Thu, 29 Apr 2021 11:43:23 +0200
+Subject: Remove link to google fonts
+
+Author: nd notandy 
+Applied-Upstream: 
https://gitlab.com/mailman/hyperkitty/-/commit/b35d20f45aafbd152e059abe3d4052485ffae305
+Last-Update: 2021-04-29
+---
+ hyperkitty/static/hyperkitty/libs/fonts/droid/droid.css | 8 ++--
+ 1 file changed, 2 insertions(+), 6 deletions(-)
+
+diff --git a/hyperkitty/static/hyperkitty/libs/fonts/droid/droid.css 
b/hyperkitty/static/hyperkitty/libs/fonts/droid/droid.css
+index 0d90e79..dc93f12 100644
+--- a/hyperkitty/static/hyperkitty/libs/fonts/droid/droid.css
 b/hyperkitty/static/hyperkitty/libs/fonts/droid/droid.css
+@@ -2,15 +2,11 @@
+   font-family: 'Droid Sans';
+   font-style: normal;
+   font-weight: 400;
+-  src: local('Droid Sans'), local('DroidSans'),
+-   
url(https://fonts.gstatic.com/s/droidsans/v6/s-BiyweUPV0v-yRb-cjciC3USBnSvpkopQaUR-2r7iU.ttf)
 format('truetype'),
+-   url(DroidSans.ttf) format('truetype');
++  src: local('Droid Sans'), local('DroidSans'), url(DroidSans.ttf) 
format('truetype');
+ }
+ @font-face {
+   font-family: 'Droid Sans Mono';
+   font-style: normal;
+   font-weight: 400;
+-  src: local('Droid Sans Mono'), local('DroidSansMono'),
+-   
url(https://fonts.gstatic.com/s/droidsansmono/v7/ns-m2xQYezAtqh7ai59hJYW_AySPyikQrZReizgrnuw.ttf)
 format('truetype'),
+-   url(DroidSansMono.ttf) format('truetype');
++  src: local('Droid Sans Mono'), local('DroidSansMono'), 
url(DroidSansMono.ttf) format('truetype');
+ }
diff -Nru hyperkitty-1.3.4/debian/patches/series 
hyperkitty-1.3.4/debian/patches/series
--- hyperkitty-1.3.4/debian/patches/series  2021-03-03 16:25:55.0 
+0100
+++ hyperkitty-1.3.4/debian/patches/series  2021-04-29 11:55:45.0 
+0200
@@ -1,3 +1,4 @@
 0001_README_remove_embedded_images.patch
 0002_Use_python3_by_default.patch
 0003-run-sassc-at-build-time.patch
+0004_remove_link_to_google_fonts.patch

Bug#919242: fails to start with apparmor enabled

[Hendrik Jaeger]

Hi

I run into a similar problem running quassel-core with the provided
init-script as a system service.
Excerpts from the audit.log are attached.

The problem is first that the ssl keyfile in /etc/ssl/private/ can not
be read. After adding this line to
/etc/apparmor.d/local/usr.bin.quasselcore
a number of other files are becoming the issue.
Also the process cannot be handled by the init-script anymore because
it’s not allowed to receive signals, it seems.
I added the following lines the local apparmor profile before giving up:
/usr/bin/quasselcore {
  #include 

  /etc/ssl/private/quassel.example.org.key r,
  /lib/i386-linux-gnu/libdl-2.28.so rm,
  /lib/i386-linux-gnu/libz.so.1.2.11 rm,
  signal (receive),
}

I then decided to just disable the apparmor profile.

This profile is provided by the apparmor package, so I’m adding onto
this package.

As it seems to make the package unusable (or maybe just with sysvinit?)
this is IMHO not wishlist but at least serious.

Is this possibly related to and fixed by #940482?

Thanks!

Hendrik
type=AVC msg=audit(1619561765.074:5182): apparmor="DENIED" operation="open" profile="/usr/bin/quasselcore" name="/etc/ssl/private/quassel.example.org.key" pid=1006 comm="quasselcore" requested_mask="r" denied_mask="r" fsuid=103 ouid=0
type=AVC msg=audit(1619561787.225:5188): apparmor="STATUS" operation="profile_replace" profile="unconfined" name="/usr/bin/quasselcore" pid= comm="apparmor_parser"
type=AVC msg=audit(1619561792.697:5191): apparmor="DENIED" operation="signal" profile="/usr/bin/quasselcore" pid=1149 comm="start-stop-daem" requested_mask="receive" denied_mask="receive" signal=term peer="unconfined"
type=AVC msg=audit(1619561792.729:5192): apparmor="DENIED" operation="signal" profile="/usr/bin/quasselcore" pid=1173 comm="start-stop-daem" requested_mask="receive" denied_mask="receive" signal=exists peer="unconfined"
type=AVC msg=audit(1619561863.707:5203): apparmor="DENIED" operation="signal" profile="/usr/bin/quasselcore" pid=1419 comm="start-stop-daem" requested_mask="receive" denied_mask="receive" signal=term peer="unconfined"
type=AVC msg=audit(1619561863.735:5204): apparmor="DENIED" operation="signal" profile="/usr/bin/quasselcore" pid=1444 comm="start-stop-daem" requested_mask="receive" denied_mask="receive" signal=exists peer="unconfined"
type=AVC msg=audit(1619561878.338:5206): apparmor="DENIED" operation="signal" profile="/usr/bin/quasselcore" pid=17822 comm="zsh" requested_mask="receive" denied_mask="receive" signal=term peer="unconfined"
type=AVC msg=audit(1619561889.466:5207): apparmor="DENIED" operation="signal" profile="/usr/bin/quasselcore" pid=1574 comm="start-stop-daem" requested_mask="receive" denied_mask="receive" signal=term peer="unconfined"
type=AVC msg=audit(1619561899.978:5209): apparmor="DENIED" operation="signal" profile="/usr/bin/quasselcore" pid=17822 comm="zsh" requested_mask="receive" denied_mask="receive" signal=term peer="unconfined"
type=AVC msg=audit(1619561979.279:5216): apparmor="DENIED" operation="signal" profile="/usr/bin/quasselcore" pid=17822 comm="zsh" requested_mask="receive" denied_mask="receive" signal=term peer="unconfined"
type=AVC msg=audit(1619562153.658:5235): apparmor="DENIED" operation="signal" profile="/usr/bin/quasselcore" pid=2364 comm="start-stop-daem" requested_mask="receive" denied_mask="receive" signal=term peer="unconfined"
type=AVC msg=audit(1619562190.033:5241): apparmor="STATUS" operation="profile_replace" profile="unconfined" name="/usr/bin/quasselcore" pid=2568 comm="apparmor_parser"
type=AVC msg=audit(1619562193.076:5245): apparmor="DENIED" operation="mknod" profile="/usr/bin/quasselcore" name="/var/lib/quassel/quassel-storage.sqlite-journal" pid=1006 comm="quasselcore" requested_mask="c" denied_mask="c" fsuid=103 ouid=103
type=AVC msg=audit(1619562193.116:5246): apparmor="DENIED" operation="mknod" profile="/usr/bin/quasselcore" name="/var/lib/quassel/quassel-storage.sqlite-journal" pid=1006 comm="QThread" requested_mask="c" denied_mask="c" fsuid=103 ouid=103
type=AVC msg=audit(1619562193.120:5247): apparmor="DENIED" operation="mknod" profile="/usr/bin/quasselcore" name="/var/lib/quassel/quassel-storage.sqlite-journal" pid=1006 comm="QThread" requested_mask="c" denied_mask="c" fsuid=103 ouid=103
type=AVC msg=audit(1619562193.120:5248): apparmor="DENIED" operation="mknod" profile="/usr/bin/quasselcore" name="/var/lib/quassel/quassel-storage.sqlite-journal" pid=1006 comm="QThread" requested_mask="c" denied_mask="c" fsuid=103 ouid=103
type=AVC msg=audit(1619562193.124:5249): apparmor="DENIED" operation="open" profile="/usr/bin/quasselcore" name="/proc/sys/vm/overcommit_memory" pid=1006 comm="quasselcore" requested_mask="r" denied_mask="r" fsuid=103 ouid=0
type=AVC msg=audit(1619562193.124:5250): apparmor="DENIED" operation="open" profile="/usr/bin/quasselcore" name="/sys/devices/system/cpu/online" pid=1006 comm="quasselcore" requested_mask="r" denied_mask="r" fsuid=103 ouid=0
type=AVC 

Bug#987875: atril segfaults in su'ed environment

[Stefan Schaeckeler]

Package: atril
Version: 1.24.0-1
Severity: normal
X-Debbugs-Cc: schae...@gmx.net

atril dereferences a null pointer in 
./shell/ev-media-player-keys.c:ev_media_player_keys_focused() when invoked from 
su - . atril runs fine under the initial user.

To reproduce, su - into another user, may it be root or non-root, export 
DISPLAY=:0 and run atril without any further arguments.

$ atril
Segmentation fault


-- System Information:
Debian Release: bullseye/sid
  APT prefers testing-security
  APT policy: (500, 'testing-security'), (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.10.0-6-amd64 (SMP w/8 CPU threads)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, 
TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages atril depends on:
ii  atril-common 1.24.0-1
ii  dconf-gsettings-backend [gsettings-backend]  0.38.0-2
ii  libatk1.0-0  2.36.0-2
ii  libatrildocument31.24.0-1
ii  libatrilview31.24.0-1
ii  libc62.31-11
ii  libcaja-extension1   1.24.0-1
ii  libgdk-pixbuf2.0-0   2.40.2-2
ii  libglib2.0-0 2.66.8-1
ii  libgtk-3-0   3.24.24-3
ii  libice6  2:1.0.10-1
ii  libsecret-1-00.20.4-2
ii  libsm6   2:1.2.3-1
ii  libxml2  2.9.10+dfsg-6.3+b1
ii  shared-mime-info 2.0-1

Versions of packages atril recommends:
ii  dbus-user-session [default-dbus-session-bus]  1.12.20-2
ii  gvfs  1.46.2-1

Versions of packages atril suggests:
pn  caja  
ii  poppler-data  0.4.10-1
pn  unrar 

-- no debconf information

Bug#987874: [pre-approval] unblock: osspd/1.3.2-12

[Sergei Golovan]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Hi release team!

I'm writing on behalf of the maintainer of the osspd package (I intend
to sponsor the potential upload).

We'd like to upload the osspd package to fix #986662 (see [1] for
details). The bug is serious as the currently osspd doesn't work at all.

The diff is attached. It includes two other fixes, which are much less
serious, so if you decide that changes are too big for the freeze
time then we'll drop them.

[1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986662

unblock osspd/1.3.2-12

-- System Information:
Debian Release: 10.9
  APT prefers stable-debug
  APT policy: (500, 'stable-debug'), (500, 'proposed-updates'), (500, 
'stable'), (500, 'oldstable'), (1, 'experimental'), (1, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.19.0-16-amd64 (SMP w/12 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff --git a/debian/changelog b/debian/changelog
index c412732..9481d07 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,17 @@
+osspd (1.3.2-12) unstable; urgency=low
+
+  [ Sébastien Noel ]
+  * cherrypick 2 commits from upstream GIT:
++ d/p/GIT-fix-adsp_se.patch
++ d/p/GIT-fix-compiler-warnings.patch
+  * Add workaround for pulseaudio >= 13
+d/p/Hack-to-work-with-modern-PulseAudio.patch  (Closes: #986662)
+
+  [ Ralf Jung ]
+  * Switch to debhelper compat level 13.
+
+ -- Ralf Jung   Sat, 17 Apr 2021 14:28:09 +0200
+
 osspd (1.3.2-11) unstable; urgency=medium
 
   * Update Standards-Version to 4.3.0.  No changes needed.
diff --git a/debian/compat b/debian/compat
deleted file mode 100644
index ec63514..000
--- a/debian/compat
+++ /dev/null
@@ -1 +0,0 @@
-9
diff --git a/debian/control b/debian/control
index c3cd2da..ee044ca 100644
--- a/debian/control
+++ b/debian/control
@@ -2,7 +2,8 @@ Source: osspd
 Section: sound
 Priority: optional
 Maintainer: Ralf Jung 
-Build-Depends: debhelper (>= 9.20160709),
+Uploaders: Sébastien Noel 
+Build-Depends: debhelper-compat (= 13),
libasound2-dev,
libfuse-dev,
libpulse-dev
@@ -14,6 +15,7 @@ Vcs-Git: git://ralfj.de/osspd.git
 Package: osspd
 Architecture: linux-any
 Multi-Arch: foreign
+Pre-Depends: ${misc:Pre-Depends}
 Depends: lsb-base (>= 3.2-14),
  osspd-pulseaudio | osspd-backend,
  ${misc:Depends},
diff --git a/debian/patches/GIT-fix-adsp_se.patch 
b/debian/patches/GIT-fix-adsp_se.patch
new file mode 100644
index 000..7316f9c
--- /dev/null
+++ b/debian/patches/GIT-fix-adsp_se.patch
@@ -0,0 +1,24 @@
+From 4c6161d951daa98f6463904f76b3fa2ce7216194 Mon Sep 17 00:00:00 2001
+From: Tejun Heo 
+Date: Mon, 21 Feb 2011 11:54:06 +0100
+Subject: [PATCH] adsp_se was incorrectly created with dsp_ops.  Create it with
+ adsp_ops.
+
+Reported-by: Aaron 
+---
+ osspd.c | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/osspd.c b/osspd.c
+index 37c9b35..df1cfc4 100644
+--- a/osspd.c
 b/osspd.c
+@@ -2253,7 +2253,7 @@ int main(int argc, char **argv)
+  param.mixer_major, param.mixer_minor,
+  args.argc, args.argv);
+   if (strlen(param.adsp_name))
+-  adsp_se = setup_ossp_cuse(_ops, param.adsp_name,
++  adsp_se = setup_ossp_cuse(_ops, param.adsp_name,
+ param.adsp_major, param.adsp_minor,
+ args.argc, args.argv);
+ 
diff --git a/debian/patches/GIT-fix-compiler-warnings.patch 
b/debian/patches/GIT-fix-compiler-warnings.patch
new file mode 100644
index 000..1424b2b
--- /dev/null
+++ b/debian/patches/GIT-fix-compiler-warnings.patch
@@ -0,0 +1,251 @@
+From 37eb730a452f0ded2ed1c174feb438e3df041581 Mon Sep 17 00:00:00 2001
+From: Miklos Szeredi 
+Date: Fri, 11 Nov 2011 14:19:32 +0100
+Subject: [PATCH] fix compiler warnings
+
+---
+ ossp-padsp.c |  3 ---
+ osspd.c  | 75 ++--
+ 2 files changed, 44 insertions(+), 34 deletions(-)
+
+diff --git a/ossp-padsp.c b/ossp-padsp.c
+index 1871f5b..3143960 100644
+--- a/ossp-padsp.c
 b/ossp-padsp.c
+@@ -972,16 +972,13 @@ static void do_mmap_read(size_t bytes)
+ 
+ static void stream_rw_callback(pa_stream *s, size_t length, void *userdata)
+ {
+-  int dir;
+   size_t size;
+ 
+   if (s == stream[PLAY]) {
+-  dir = PLAY;
+   size = pa_stream_writable_size(s);
+   if (mmap_map[PLAY])
+   do_mmap_write(size);
+   } else if (s == stream[REC]) {
+-  dir = REC;
+   size = pa_stream_readable_size(s);
+   if (mmap_map[REC])
+   do_mmap_read(size);
+diff --git a/osspd.c 

Bug#987864: RM: trovacap -- RoQA; long dead upstream; partially obsolete data

[David Paleino]

Ciao Pino,

Il Sab 1 Mag 2021, 08:09 Pino Toscano  ha scritto:

> [..]


> Hence, I rather prefer to remove trovacap altogether than shipping an
> unmaintained and partially outdated application. CCing the maintainer
> for his opinion.
>

Please go ahead!

Thank you!
David

>

Bug#987815: MPTCP is not enabled

[Salvatore Bonaccorso]

Control: tags -1 + confirmed

Hi,

On Fri, Apr 30, 2021 at 11:18:40AM +0200, chrysn wrote:
> Source: linux
> Version: 5.10.28-1
> Severity: wishlist
> 
> 
> The current configuration does not enable the multipath TCP
> functionality provided by the kernel through the MPTCP (and the
> the-default MPTCP_IPV6) binary options.
> 
> These have been available since kernel version 5.6.
> 
> When enabled, user space applications can opt in to MPTCP behavior by
> using the new IPPROTO_MPTCP; regular TCP connections are unaffected.
> 
> Applications using this are starting slowly (outside of the Apple
> ecosystem where this has been in used for years to ensure smooth network
> handovers), but having this available widely would make it easier for
> application developers to verify MPTCP operation on systems where they
> can't easily (or don't have the experience to) rebuild their kernel with
> CONFIG_MPTCP=y.
> 
> Please consider enabling this feature.

I do agree, and there were requests as well offlist/offbts on this,
though we won't enable it anymore at this stage of the bullseye
release preparations for bullseye but will follow in a later
experimental upload.

Regards,
Salvatore

Bug#987873: RM: gadmintools-meta -- RoQA; long dead upstream; unmaintained in Debian; uses old tech/libs

[Pino Toscano]

Package: ftp.debian.org
Severity: normal
X-Debbugs-Cc: udi...@ubuntu.com
Control: block -1 by 987867 987868 987869 987870 987871 987872

Hi,

please remove gadmintools-meta from Debian.

It provides a metapackage to install the GAdmintools, which are
requested to be removed from Debian as long dead upstream and
unmaintained (and broken); see the following bugs:
#987867, #987868, #987869, #987870, #987871, #987872

Thanks,
-- 
Pino

Bug#987872: RM: gadmin-samba -- RoQA; long dead upstream; unmaintained in Debian; uses old tech/libs

[Pino Toscano]

Package: ftp.debian.org
Severity: normal
X-Debbugs-Cc: udi...@ubuntu.com

Hi,

please remove gadmin-samba from Debian.

It is part of the GAdmintools that appears to be long unmaintained
upstream (the last version is more than 7 years old), with even the
webpages [1][2] as either squatted (see #668245, #692158) or
unavailable.

It was orphaned by Daniel Baumann more than 10 years ago, and it had
practically no maintainer uploads since then.

Furthermore, it uses old technologies (GTK+ 2) not supported anymore.

The only reverse dependency is the gadmintools metapackage, whose
removal (together with the other GAdmintools) will be filed shortly.

[1] http://www.gadmintools.org/
[2] http://dalalven.dtdns.net/linux/gadmintools-webpage

Thanks,
-- 
Pino

Bug#987871: RM: gadmin-rsync -- RoQA; long dead upstream; unmaintained in Debian; uses old tech/libs

[Pino Toscano]

Package: ftp.debian.org
Severity: normal
X-Debbugs-Cc: udi...@ubuntu.com

Hi,

please remove gadmin-rsync from Debian.

It is part of the GAdmintools that appears to be long unmaintained
upstream (the last version is more than 7 years old), with even the
webpages [1][2] as either squatted (see #668245, #692158) or
unavailable.

It was orphaned by Daniel Baumann more than 10 years ago, and it had
practically no maintainer uploads since then.

Furthermore, it uses old technologies (GTK+ 2) not supported anymore.

The only reverse dependency is the gadmintools metapackage, whose
removal (together with the other GAdmintools) will be filed shortly.

[1] http://www.gadmintools.org/
[2] http://dalalven.dtdns.net/linux/gadmintools-webpage

Thanks,
-- 
Pino

Bug#987870: RM: gadmin-proftpd -- RoQA; long dead upstream; unmaintained in Debian; uses old tech/libs

[Pino Toscano]

Package: ftp.debian.org
Severity: normal
X-Debbugs-Cc: udi...@ubuntu.com

Hi,

please remove gadmin-proftpd from Debian.

It is part of the GAdmintools that appears to be long unmaintained
upstream (the last version is more than 7 years old), with even the
webpages [1][2] as either squatted (see #668245, #692158) or
unavailable.

It was orphaned by Daniel Baumann more than 10 years ago, and it had
practically no maintainer uploads since then.

In addition, it appears to have been unusable in Debian for some years
already, see #612037.

Furthermore, it uses old technologies (GTK+ 2) not supported anymore.

The only reverse dependency is the gadmintools metapackage, whose
removal (together with the other GAdmintools) will be filed shortly.

[1] http://www.gadmintools.org/
[2] http://dalalven.dtdns.net/linux/gadmintools-webpage

Thanks,
-- 
Pino

Bug#987869: RM: gadmin-openvpn-server -- RoQA; long dead upstream; unmaintained in Debian; uses old tech/libs

[Pino Toscano]

Package: ftp.debian.org
Severity: normal
X-Debbugs-Cc: udi...@ubuntu.com

Hi,

please remove gadmin-openvpn-server from Debian.

It is part of the GAdmintools that appears to be long unmaintained
upstream (the last version is more than 7 years old), with even the
webpages [1][2] as either squatted (see #668245, #692158) or
unavailable.

It was orphaned by Daniel Baumann more than 10 years ago, and it had
practically no maintainer uploads since then.

In addition, it appears to have been unusable in Debian for some years
already, see #768663 and #602870.

Furthermore, it uses old technologies (GTK+ 2) not supported anymore.

The only reverse dependency is the gadmintools metapackage, whose
removal (together with the other GAdmintools) will be filed shortly.

[1] http://www.gadmintools.org/
[2] http://dalalven.dtdns.net/linux/gadmintools-webpage

Thanks,
-- 
Pino

Bug#987866: ITP: golang-github-zeebo-wyhash -- Go port of wyhash v3

[Nilesh Patra]

On Sat, 01 May 2021 12:50:20 +0530 Nilesh Patra  wrote:
>   Programming Lang: (C, C++, C#, Perl, Python, etc.)

Programming Lang: Go

The language of this package is Go - I ran a script and did not get a
chance to check the output before it sent an ITP. Apologies for that

Nilesh


signature.asc
Description: PGP signature

Bug#987868: RM: gadmin-openvpn-client -- RoQA; long dead upstream; unmaintained in Debian; uses old tech/libs

[Pino Toscano]

Package: ftp.debian.org
Severity: normal
X-Debbugs-Cc: udi...@ubuntu.com

Hi,

please remove gadmin-openvpn-client from Debian.

It is part of the GAdmintools that appears to be long unmaintained
upstream (the last version is more than 7 years old), with even the
webpages [1][2] as either squatted (see #668245, #692158) or
unavailable.

It was orphaned by Daniel Baumann more than 10 years ago, and it had
practically no maintainer uploads since then.

Furthermore, it uses old technologies (GTK+ 2) not supported anymore.

The only reverse dependency is the gadmintools metapackage, whose
removal (together with the other GAdmintools) will be filed shortly.

[1] http://www.gadmintools.org/
[2] http://dalalven.dtdns.net/linux/gadmintools-webpage

Thanks,
-- 
Pino

Bug#987867: RM: gadmin-bind -- RoQA; long dead upstream; unmaintained in Debian; uses old tech/libs

[Pino Toscano]

Package: ftp.debian.org
Severity: normal
X-Debbugs-Cc: udi...@ubuntu.com

Hi,

please remove gadmin-bind from Debian.

It is part of the GAdmintools that appears to be long unmaintained
upstream (the last version is more than 7 years old), with even the
webpages [1][2] as either squatted (see #668245, #692158) or
unavailable.

It was orphaned by Daniel Baumann more than 10 years ago, and it had
practically no maintainer uploads since then.

Furthermore, it uses old technologies (GTK+ 2) not supported anymore.

The only reverse dependency is the gadmintools metapackage, whose
removal (together with the other GAdmintools) will be filed shortly.

[1] http://www.gadmintools.org/
[2] http://dalalven.dtdns.net/linux/gadmintools-webpage

Thanks,
-- 
Pino

Bug#987866: ITP: golang-github-zeebo-wyhash -- Go port of wyhash v3

[Nilesh Patra]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: nil...@debian.org

Subject: ITP: golang-github-zeebo-wyhash -- Go port of wyhash v3
Package: wnpp
Owner: Nilesh Patra 
Severity: wishlist

* Package name: golang-github-zeebo-wyhash
  Version : 0.0.1
  Upstream Author : Jeff Wendling
* URL : https://github.com/zeebo/wyhash
* License : public-domain
  Programming Lang: (C, C++, C#, Perl, Python, etc.)
  Description : Go port of wyhash v3
 This package is a port of the wyhash library v3 to Go.
 .
 Wyhash is a general-purpose non-cryptographic hash function.
 It produces high-quality output that passes the SMHasher
 test suite.

Remark: This package is maintained by Debian Go Packaging Team at
   https://salsa.debian.org/go-team/packages/golang-github-zeebo-wyhash

Bug#987865: unblock: libtorrent-rasterbar/1.2.9-0.3

[Petter Reinholdtsen]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

https://tracker.debian.org/pkg/libtorrent-rasterbar >

Please unblock package libtorrent-rasterbar version 1.2.9-0.3 needed by
vlc-plugin-bittorrent.  It include a patch from upstream to fix the RC
issue https://bugs.debian.org/987306 >.

Sadly I forgot to include the (Closes: #987306) part of the changelog,
but it is added into the git repo and should be included in future
uplaods.  I could do a new upload with an updated changelog if you want.

This is the complete patch between 1.2.9-0.2 and 1.2.9-0.3:

diff --git a/debian/changelog b/debian/changelog
index fac2238e8..a7a0c392a 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,11 @@
+libtorrent-rasterbar (1.2.9-0.3) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Added d/patches/ README suggesting patch ordering and naming.
+  * Added patch from upstream to make python move_storage() match C++ signature
+
+ -- Petter Reinholdtsen   Fri, 30 Apr 2021 07:51:42 +0200
+
 libtorrent-rasterbar (1.2.9-0.2) unstable; urgency=medium
 
   * Non-maintainer upload.
diff --git a/debian/patches/0001-python-move-storage.patch 
b/debian/patches/0001-python-move-storage.patch
new file mode 100644
index 0..eed013288
--- /dev/null
+++ b/debian/patches/0001-python-move-storage.patch
@@ -0,0 +1,57 @@
+Description: fix regression in python binding for move_storage()
+Origin: upstream, commit 386596aa88a19dcba3d4f5925dbce3c517065ea2
+Author: arvidn 
+Last-Update: 2021-04-30
+Bugs-Debian: https://bugs.debian.org/987306
+
+diff --git a/bindings/python/src/converters.cpp 
b/bindings/python/src/converters.cpp
+index 68ca2cf66..7d9eb1f9b 100644
+--- a/bindings/python/src/converters.cpp
 b/bindings/python/src/converters.cpp
+@@ -23,6 +23,7 @@
+ #include "libtorrent/peer_class.hpp"
+ #include "libtorrent/pex_flags.hpp"
+ #include "libtorrent/string_view.hpp"
++#include "libtorrent/storage_defs.hpp"
+ #include 
+ #include 
+ 
+@@ -342,6 +343,30 @@ struct to_strong_typedef
+ }
+ };
+ 
++template
++struct to_enum_class
++{
++   using underlying_type = typename std::underlying_type::type;
++
++   to_enum_class()
++   {
++converter::registry::push_back(
++, , type_id()
++);
++}
++
++static void* convertible(PyObject* x)
++{
++return PyNumber_Check(x) ? x : nullptr;
++}
++
++static void construct(PyObject* x, 
converter::rvalue_from_python_stage1_data* data)
++{
++void* storage = 
((converter::rvalue_from_python_storage*)data)->storage.bytes;
++data->convertible = new (storage) 
T(static_cast(static_cast(extract(object(borrowed(x));
++}
++};
++
+ template
+ struct from_bitfield_flag
+ {
+@@ -495,6 +520,7 @@ void bind_converters()
+ to_strong_typedef();
+ to_strong_typedef();
+ to_strong_typedef();
++to_enum_class();
+ to_bitfield_flag();
+ to_bitfield_flag();
+ to_bitfield_flag();
diff --git a/debian/patches/README b/debian/patches/README
new file mode 100644
index 0..80c158437
--- /dev/null
+++ b/debian/patches/README
@@ -0,0 +1,3 @@
+0xxx: Grabbed from upstream development.
+1xxx: Possibly relevant for upstream adoption.
+2xxx: Only relevant for official Debian release.
diff --git a/debian/patches/series b/debian/patches/series
index 682a66f02..91feb9475 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -1 +1,2 @@
+0001-python-move-storage.patch
 fix-html-docs.patch

-- 
Happy hacking
Petter Reinholdtsen

Bug#987842: ifenslave: non-trivial bonding configuration fails

[Michael Prokop]

Hi,

* Chris Hofstaedtler [Fri Apr 30, 2021 at 08:45:36PM +0200]:

> Only trivial configurations with no per-slave configurations seem to
> work. I.e. the example in /usr/share/doc/ifenslave/examples/two_ethernet
> works.

> However, the example in /usr/share/doc/ifenslave/examples/two_hotplug_ethernet
> does not - the slave devices are never added to the bondX device.

> I believe this is caused by ifup bringing up the slave interfaces,
> and the kernel refuses to add "UP" interfaces to a bondX device.

> Version 2.9 in buster does not exhibit this problem, and can be used
> on bullseye to demonstrate this regression from buster.

I can confirm this, I've got a working patch which I'll provide
towards the git repository at salsa and through an NMU upload soonish.

regards
-mika-


signature.asc
Description: Digital signature

Bug#987864: RM: trovacap -- RoQA; long dead upstream; partially obsolete data

[Pino Toscano]

Package: ftp.debian.org
Severity: normal
X-Debbugs-Cc: da...@debian.org

Hi,

trovacap is an application that ships an offline list of all the
Italian CAPs (that is, the Italian ZIP codes).

The first problem is that upstream is long gone: the last release was
done more than 10 years ago, and since then even the upstream web site
vanished (apparently with no public code hosting nowhere else like
github/gitlab/etc).

The second, IMHO bigger issue, is that the list of known CAPs is shipped
statically in the sources, and it was not kept up-to-date. Yes, there
were changes in the CAPs in Italy in the last decade, at least 300 from
from a quick search; while they don't seem too many compared to the list
of municipalities, IMHO providing a wrong data to the user (especially
for something important like sending mail) is not a good idea.

Hence, I rather prefer to remove trovacap altogether than shipping an
unmaintained and partially outdated application. CCing the maintainer
for his opinion.

Thanks,
-- 
Pino

Bug#982904: mumble: CVE-2021-27229

[Salvatore Bonaccorso]

Hi Chris,

On Fri, Apr 30, 2021 at 09:09:10PM +, Chris Knadle wrote:
> Note: for the three messages recently sent (Benedikt, Salvatorie, Chris/me)
> that have recently been sent, none went to #982904 because the bug had been
> archived. I've unarchived the bug since fixing it for Buster is still
> pending.

Ah right, thanks for spotting this and unarchiving the bug again.

Regards,
Salvatore

Bug#982904: mumble: CVE-2021-27229

[Salvatore Bonaccorso]

Hi Chris,

On Fri, Apr 30, 2021 at 08:12:54PM +, Chris Knadle wrote:
> Salvatore Bonaccorso:
> > Hi Benedikt,
> > 
> > On Thu, Apr 29, 2021 at 10:48:56AM +0200, Benedikt Tuchen wrote:
> > > Hello
> > > 
> > > Is this bug still observed?
> > > 
> > > We would be very happy to see this problem solved for Buster as
> > > well.
> > 
> > That would be great. For a security team perspective this is marked as
> > no-dsa, this means we think that it will not warrant a dedicated DSA,
> > but fixing the issue in buster would be possible via one of the
> > upcoming point releases.
> 
> I also want to fix this but got lost in the documentation when I was last
> doing the work. When I read the documentation in the Debian Developer's
> Reference about how to do an upload to Stable, it wasn't immediately clear
> to me which release to target and which upload queue to send the package to.
> 
> https://www.debian.org/doc/manuals/developers-reference/pkgs.en.html#upload-stable
> 
> So now re-reading it, it seems the upload should target "buster" and the
> upload I ship should likely be to the "proposed-updates-new" queue.
> Probably? Somehow I find the wording a little difficult to be certain in its
> parsing. If this is correct please let me know.

That is correct, and then one it hits there the NEW queue, a stable
release mnager will decide if the upload should be accepted into the
proposed-updates section. It should be accompanied with a respective
release.debian.org bugreport accordingly as mentioned in the above
rerference. Note there is as well this "improved" workflow:
https://lists.debian.org/debian-devel-announce/2019/08/msg0.html .

Regards,
Salvatore

Bug#971832: haskell-hoogle: autopkgtest regression on armhf: The Hoogle file /var/lib/hoogle/databases/default.hoo is truncated, probably due to an error during creation.

[Gianfranco Costamagna]

control: forwarded -1 https://github.com/ndmitchell/hoogle/issues/359
G.

Bug#922666: confirmed bug report

[Salvatore Bonaccorso]

Hi Antoine

On Fri, Apr 30, 2021 at 07:34:04PM -0400, Antoine Beaupré wrote:
> On 2021-04-30 21:04:29, Salvatore Bonaccorso wrote:
> > Control: tags -1 + moreinfo
> >
> > Hi Tollef, Antoine,
> >
> > On Wed, Sep 11, 2019 at 08:20:22PM -0400, Antoine Beaupré wrote:
> >> Control: forcemerge 922666 928189
> >> Control: severity 922666 important
> >> Control: tags 922666 +patch +confirmed
> >> 
> >> I also see a regression with touchpads and trackpoint on a Thinkpad E431
> >> after upgrading from Debian stretch to buster. My research indicates
> >> this is a kernel regression, as yet to be fixed.
> >> 
> >> This is the result of my research, as available online at:
> >> 
> >> https://anarc.at/services/upgrades/buster/#touchpad-trackpoint-freeze-after-sleep
> >> 
> >> On a Thinkpad E431, the entire mouse interface (touch, trackpoint)
> >> freezes after sleep. Keyboard still works but not mouse until a
> >> reboot.
> >> 
> >> There's [bug 922666][] in Debian buster, without a fix. It also says
> >> it eventually recovers, which is not our experience. Possible dupe is
> >> [bug 928189][].
> >> 
> >> [bug 928189]: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=928189
> >> [bug 922666]: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922666
> >> 
> >> There's also [bug 1791427][] in Ubuntu 18.04 that seems related, and
> >> which proposes the following workarounds:
> >> 
> >>  * In gsettings: `org.gnome.desktop.peripherals.touchpad click-method 
> >> disabled`
> >> 
> >>  * A .service file:
> >> 
> >> # /etc/systemd/system/touchpad-sleep.service
> >> # restore touchpad on suspend
> >> 
> >> [Unit]
> >> Description=Restore Touchpad on suspend
> >> Before=sleep.target
> >> StopWhenUnneeded=yes
> >> 
> >> [Service]
> >> #Type=oneshot
> >> Type=idle
> >> RemainAfterExit=yes
> >> ExecStart=/bin/bash -c 'echo ":00:1f.4" > 
> >> /sys/bus/pci/drivers/i801_smbus/unbind'
> >> ExecStop=/bin/bash -c 'echo ":00:1f.4" > 
> >> /sys/bus/pci/drivers/i801_smbus/bind'
> >> 
> >> [Install]
> >> WantedBy=sleep.target
> >> 
> >>  * "Maybe try xserver-xorg-input-evdev instead of 
> >> xserver-xorg-input-libinput?"
> >> 
> >>  * reloading `psmouse`:
> >>  
> >> sudo modprobe -r psmouse
> >> sudo modprobe psmouse
> >> 
> >>  * "`modprobe i2c-i801` after removing it from the `blacklist.conf` seems 
> >> to solve the issue."
> >> 
> >>  * whatever this is:
> >>  
> >> # echo 1 > /sys/devices/rmi4-00/nosleep
> >> 
> >>  * "Anyone who still affected by touchpad issues after S3. Please
> >>switch back to suspend-to-idle in BIOS if s2idle is
> >>supported. ThinkPad Carbon 6th and Yoga 3rd do support
> >>suspend-to-idle in BIOS->config->power menu."
> >> 
> >> [bug 1791427]: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1791427
> >> 
> >> There's also [bug 1442699][] in Fedora, which suggests those
> >> workarounds:
> >> 
> >>  * another module reload:
> >>  
> >> sudo rmmod i2c_hid
> >> sudo modprobe i2c_hid
> >> 
> >>  * "Just updated to kernel-4.12.5-300.fc26.x86_64 in updates-testing
> >>and this issue seems to have been resolved (for me)."
> >> 
> >>  * another `/proc` hack:
> >>  
> >> echo -n "reconnect" >  /sys/bus/serio/devices/serio1/drvctl
> >> 
> >>  * "The `psmouse.synaptics_intertouch=0` workaround still works for me."
> >> 
> >> [bug 1442699]: https://bugzilla.redhat.com/show_bug.cgi?id=1442699
> >> 
> >> Also related is this [libinput bug][] that's closed as "not our bug"
> >> because they claim it's a bug in the kernel.
> >> 
> >> [libinput bug]: https://bugs.freedesktop.org/show_bug.cgi?id=103149
> >> 
> >> There are [two][] [patches][] on the Linux kernel which apparently fix the
> >> issue, still pending approval:
> >> 
> >> [two]: https://lkml.org/lkml/2019/2/20/700
> >> [patches]: https://lkml.org/lkml/2019/2/20/701
> >> 
> >> Possibly related: https://lkml.org/lkml/2016/8/18/134
> >> 
> >> [5.1rc7][] shipped two fixes against the `synaptics-rmi4` module. A
> >> [pull request][] has been merged in mainline with two other fixes on
> >> the module./ [5.0.11][] also has fixes on the module. It's clearly a
> >> regression from Debian stretch (kernel 4.9) since it was working fine
> >> before.
> >> 
> >> Possibly related, [two-finger scrolling bug in Ubuntu][], which
> >> identifies [this commit][] as the source of the regression. [Upstream
> >> kernel bug][], still open.
> >> 
> >> [5.1rc7]: https://lkml.org/lkml/2019/4/28/270
> >> [pull request]: https://lkml.org/lkml/2019/7/12/19
> >> [5.0.11]: https://lkml.org/lkml/2019/5/2/287
> >> [Upstream kernel bug]: https://bugzilla.kernel.org/show_bug.cgi?id=196719
> >> [this commit]: 
> >> https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=e839ffab028981ac77f650faf8c84f16e1719738
> >> [two-finger scrolling bug in Ubuntu]: 
> >>