Bug#906473: marked as done (ipsec-tools: FTBFS in buster/sid ('%s' directive output may be truncated))

[Debian Bug Tracking System]

Your message dated Sat, 18 Aug 2018 17:49:30 +0000
with message-id <e1fr5lu-000cd6...@fasolo.debian.org>
and subject line Bug#906473: fixed in ipsec-tools 1:0.8.2+20140711-12
has caused the Debian Bug report #906473,
regarding ipsec-tools: FTBFS in buster/sid ('%s' directive output may be 
truncated)
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
906473: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=906473
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Package: src:ipsec-tools
Version: 1:0.8.2+20140711-11
Severity: serious
Tags: ftbfs

Dear maintainer:

I tried to build this package in buster but it failed:

--------------------------------------------------------------------------------
[...]
 debian/rules build-arch
dh build-arch
   dh_update_autotools_config -a
   dh_autoreconf -a
libtoolize: putting auxiliary files in '.'.
libtoolize: copying file './ltmain.sh'
libtoolize: putting macros in AC_CONFIG_MACRO_DIRS, '.'.
libtoolize: copying file './libtool.m4'
libtoolize: copying file './ltoptions.m4'
libtoolize: copying file './ltsugar.m4'
libtoolize: copying file './ltversion.m4'
libtoolize: copying file './lt~obsolete.m4'
libtoolize: Consider adding 'AC_CONFIG_MACRO_DIRS([m4])' to configure.ac and
libtoolize: rerunning libtoolize, to keep the correct libtool macros in-tree.

[... snipped ...]

libtool: compile:  x86_64-linux-gnu-gcc -DHAVE_CONFIG_H -I. -I../.. 
-D_GNU_SOURCE -include ./src/include-glibc/glibc-bugs.h -I./src/include-glibc 
-I./src/include-glibc -Wdate-time -D_FORTIFY_SOURCE=2 -isystem 
/usr/include/mit-krb5 -I../../src/racoon/missing -include 
../../src/include-glibc/glibc-bugs.h -I../../src/include-glibc 
-I../../src/include-glibc -g -O2 
-fdebug-prefix-map=/<<BUILDDIR>>/ipsec-tools-0.8.2+20140711=. 
-fstack-protector-strong -Wformat -Werror=format-security -Wall -Werror 
-Wno-unused -MT ipsec_dump_policy.lo -MD -MP -MF .deps/ipsec_dump_policy.Tpo -c 
ipsec_dump_policy.c  -fPIC -DPIC -o .libs/ipsec_dump_policy.o
ipsec_dump_policy.c: In function 'set_address.constprop':
ipsec_dump_policy.c:416:26: error: '%s' directive output may be truncated 
writing up to 31 bytes into a region of size between 0 and 1024 
[-Werror=format-truncation=]
   snprintf(buf, len, "%s[%s]", host, serv);
                          ^~          ~~~~
In file included from /usr/include/stdio.h:862,
                 from ipsec_dump_policy.c:47:
/usr/include/x86_64-linux-gnu/bits/stdio2.h:64:10: note: 
'__builtin___snprintf_chk' output between 3 and 1058 bytes into a destination 
of size 1025
   return __builtin___snprintf_chk (__s, __n, __USE_FORTIFY_LEVEL - 1,
          ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
        __bos (__s), __fmt, __va_arg_pack ());
        ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
ipsec_dump_policy.c: In function 'ipsec_dump_policy1.part.1':
ipsec_dump_policy.c:371:29: error: '%s' directive output may be truncated 
writing up to 2051 bytes into a region of size between 1007 and 1017 
[-Werror=format-truncation=]
   snprintf(buf, len, "%s/%s/%s/%s%c%u", proto, mode, abuf, level,
                             ^~                       ~~~~
In file included from /usr/include/stdio.h:862,
                 from ipsec_dump_policy.c:47:
/usr/include/x86_64-linux-gnu/bits/stdio2.h:64:10: note: 
'__builtin___snprintf_chk' output between 14 and 2088 bytes into a destination 
of size 1024
   return __builtin___snprintf_chk (__s, __n, __USE_FORTIFY_LEVEL - 1,
          ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
        __bos (__s), __fmt, __va_arg_pack ());
        ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
ipsec_dump_policy.c:363:29: error: '%s' directive output may be truncated 
writing up to 2051 bytes into a region of size between 1007 and 1017 
[-Werror=format-truncation=]
   snprintf(buf, len, "%s/%s/%s/%s", proto, mode, abuf, level);
                             ^~                   ~~~~
In file included from /usr/include/stdio.h:862,
                 from ipsec_dump_policy.c:47:
/usr/include/x86_64-linux-gnu/bits/stdio2.h:64:10: note: 
'__builtin___snprintf_chk' output between 12 and 2077 bytes into a destination 
of size 1024
   return __builtin___snprintf_chk (__s, __n, __USE_FORTIFY_LEVEL - 1,
          ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
        __bos (__s), __fmt, __va_arg_pack ());
        ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
cc1: all warnings being treated as errors
make[5]: *** [Makefile:517: ipsec_dump_policy.lo] Error 1
make[5]: Leaving directory 
'/<<BUILDDIR>>/ipsec-tools-0.8.2+20140711/src/libipsec'
make[4]: *** [Makefile:406: all] Error 2
make[4]: Leaving directory 
'/<<BUILDDIR>>/ipsec-tools-0.8.2+20140711/src/libipsec'
make[3]: *** [Makefile:367: all-recursive] Error 1
make[3]: Leaving directory '/<<BUILDDIR>>/ipsec-tools-0.8.2+20140711/src'
make[2]: *** [Makefile:425: all-recursive] Error 1
make[2]: Leaving directory '/<<BUILDDIR>>/ipsec-tools-0.8.2+20140711'
make[1]: *** [Makefile:351: all] Error 2
make[1]: Leaving directory '/<<BUILDDIR>>/ipsec-tools-0.8.2+20140711'
dh_auto_build: make -j1 returned exit code 2
make: *** [debian/rules:26: build-arch] Error 2
dpkg-buildpackage: error: debian/rules build-arch subprocess returned exit 
status 2
--------------------------------------------------------------------------------

The build was made with "dpkg-buildpackage -B" in my autobuilder.
Most probably, it also fails here in reproducible builds:

https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/ipsec-tools.html

where you can get a full build log if you need it.

If this is really a bug in one of the build-depends, please use reassign and 
affects,
so that this is still visible in the BTS web page for this package.

Thanks.

--- End Message ---

--- Begin Message ---

Source: ipsec-tools
Source-Version: 1:0.8.2+20140711-12

We believe that the bug you reported is fixed in the latest version of
ipsec-tools, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 906...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Chris Hofstaedtler <z...@debian.org> (supplier of updated ipsec-tools package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sat, 18 Aug 2018 17:18:30 +0000
Source: ipsec-tools
Binary: ipsec-tools racoon
Architecture: source
Version: 1:0.8.2+20140711-12
Distribution: unstable
Urgency: medium
Maintainer: ipsec-tools packagers <team+ipsec-to...@tracker.debian.org>
Changed-By: Chris Hofstaedtler <z...@debian.org>
Description:
 ipsec-tools - IPsec utilities
 racoon     - IPsec Internet Key Exchange daemon
Closes: 906473
Changes:
 ipsec-tools (1:0.8.2+20140711-12) unstable; urgency=medium
 .
   * Increase stack-based sprintf buffer sizes (Closes: #906473)
   * Update Maintainer email address
   * Bump Standards-Version to 4.2.0
Checksums-Sha1:
 015bb47e62c5aa60f375ab8adb2b18d8dd9dd134 2199 ipsec-tools_0.8.2+20140711-12.dsc
 11c0c3da13a5ba65e64e75be05109461e4f54aad 71760 
ipsec-tools_0.8.2+20140711-12.debian.tar.xz
 efcc373f66a10307717397478ead1c95e248770a 7237 
ipsec-tools_0.8.2+20140711-12_source.buildinfo
Checksums-Sha256:
 f470ee77483d344dfebb963c896c27c81a2dfc326920d06da39136c945625a5d 2199 
ipsec-tools_0.8.2+20140711-12.dsc
 8a4d063553abc9a36a6887d541d3acddc518dd97ec007caa1bddbf03aba2cd7f 71760 
ipsec-tools_0.8.2+20140711-12.debian.tar.xz
 164cdc4ac364d3d2e2af49a81a17ed36a7c11090ee88a49a5224a7e4a69e3446 7237 
ipsec-tools_0.8.2+20140711-12_source.buildinfo
Files:
 fd665b6a0debdb517545dc13a12e68a7 2199 net optional 
ipsec-tools_0.8.2+20140711-12.dsc
 8e82269972b55cdcbc7949197c044bf6 71760 net optional 
ipsec-tools_0.8.2+20140711-12.debian.tar.xz
 4a38cb3bf3a10a8cf923174f1a2c2673 7237 net optional 
ipsec-tools_0.8.2+20140711-12_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=vFuE
-----END PGP SIGNATURE-----

--- End Message ---