Bug#601951: marked as done (devscripts: [dget] Fails to work with http://host:port/ deb-lines)

Wed, 15 Feb 2012 11:51:30 -0800 

Your message dated Wed, 15 Feb 2012 19:48:27 +0000
with message-id <[email protected]>
and subject line Bug#601951: fixed in devscripts 2.11.4
has caused the Debian Bug report #601951,
regarding devscripts: [dget] Fails to work with http://host:port/ deb-lines
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
601951: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=601951
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: devscripts
Version: 2.10.69
Severity: normal

Hi,

it looks like there's either a bug in apt-cache policy or a bit of
missing glue around its use within dget. Reporting it here since that's
how I noticed it.
| kibi@bowmore:/tmp$ grep ^deb\  /etc/apt/sources.list
| deb     http://mirror:9999/debian/ testing main contrib non-free
| deb     http://mirror:9999/debian/ sid main contrib non-free
| deb     http://mirror:9999/debian/ experimental main contrib non-free
| deb     http://autobuild.ikibiki.org/autobuild-unstable ./

(Use-case: approx runs on tcp/9999 by default)

| kibi@bowmore:/tmp$ apt-cache policy devscripts|grep http://
|         500 http://mirror/debian/ sid/main amd64 Packages
|         500 http://mirror/debian/ testing/main amd64 Packages
| 
| kibi@bowmore:/tmp$ dget devscripts
| no repository found in /etc/apt/sources.list or sources.list.d at 
/usr/bin/dget line 337.

I guess it might be that apt tries to hide the port number for cosmetic
reasons, but that means that the way dget is looking up @hosts from
sources file makes it fail currently. 

A quick ltrace/grep seems to point at:
,---[ apt's cmdline/apt-cache.cc ]---
|             printf("       %4i %s\n",Plcy->GetPriority(VF.File()),
|                    Indx->Describe(true).c_str());

but I'm not sure I want to dig deeper, sorry. ;)

Mraw,
KiBi.

-- Package-specific info:

--- /etc/devscripts.conf ---

--- ~/.devscripts ---
DEBUILD_PRESERVE_ENVVARS=PATH
NMUDIFF_DELAY=2
DEBCHANGE_RELEASE_HEURISTIC=changelog
DEBCHANGE_AUTO_NMU=no
DEBUILD_DPKG_BUILDPACKAGE_OPTS='-us -uc'
DEBCHANGE_FORCE_SAVE_ON_RELEASE=no

-- System Information:
Debian Release: sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.36+ (SMP w/2 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages devscripts depends on:
ii  dpkg-dev                      1.15.8.5   Debian package development tools
ii  libc6                         2.11.2-6   Embedded GNU C Library: Shared lib
ii  perl                          5.10.1-15  Larry Wall's Practical Extraction 

Versions of packages devscripts recommends:
ii  at                3.1.12-1               Delayed job execution and batch pr
ii  bsd-mailx [mailx] 8.1.2-0.20100314cvs-1  simple mail user agent
ii  bzr               2.3.0~beta2-1          easy to use distributed version co
ii  chromium-browser  6.0.472.63~r59945-1    Chromium browser
ii  conkeror [www-bro 0.9.2+git100804-1      keyboard focused web browser with 
ii  curl              7.21.2-1               Get a file from an HTTP, HTTPS or 
ii  cvs               1:1.12.13-12           Concurrent Versions System
ii  dctrl-tools       2.14.5                 Command-line tools to process Debi
ii  debian-keyring [d 2010.08.01             GnuPG (and obsolete PGP) keys of D
ii  dput              0.9.6.1                Debian package upload tool
ii  elinks [www-brows 0.12~pre5-2            advanced text-mode WWW browser
ii  equivs            2.0.8                  Circumvent Debian package dependen
ii  fakeroot          1.14.4-1               Gives a fake root environment
ii  git [git-core]    1:1.7.2.3-2            fast, scalable, distributed revisi
ii  git-core          1:1.7.2.3-2            fast, scalable, distributed revisi
ii  gnupg             1.4.10-4               GNU privacy guard - a free PGP rep
ii  iceweasel [www-br 3.5.15-1               Web browser based on Firefox
ii  libauthen-sasl-pe 2.1500-1               Authen::SASL - SASL Authentication
ii  libcrypt-ssleay-p 0.57-2                 Support for https protocol in LWP
ii  libjson-perl      2.26-1                 Perl module to parse and convert t
ii  libparse-debcontr 2.005-2                Easy OO parsing of Debian control-
ii  libsoap-lite-perl 0.712-1                Perl implementation of a SOAP clie
ii  libterm-size-perl 0.2-4+b1               Perl extension for retrieving term
ii  libtimedate-perl  1.2000-1               collection of modules to manipulat
ii  liburi-perl       1.56-1                 module to manipulate and access UR
ii  libwww-perl       5.837-1                simple and consistent interface to
ii  libyaml-syck-perl 1.14-1                 Perl module providing a fast, ligh
ii  lintian           2.4.3                  Debian package checker
ii  lsb-release       3.2-26                 Linux Standard Base version report
ii  lynx-cur [www-bro 2.8.8dev.5-1           Text-mode WWW Browser with NLS sup
ii  lzma              4.43-14                Compression method of 7z format in
ii  man-db            2.5.7-6                on-line manual pager
ii  midori [www-brows 0.2.7-1.1              fast, lightweight graphical web br
ii  openssh-client [s 1:5.5p1-5+b1           secure shell (SSH) client, for sec
ii  patch             2.6-3                  Apply a diff file to an original
ii  patchutils        0.3.1-2                Utilities to work with patches
ii  sensible-utils    0.0.4                  Utilities for sensible alternative
ii  strace            4.5.20-2               A system call tracer
ii  subversion        1.6.12dfsg-2           Advanced version control system
ii  unzip             6.0-4                  De-archiver for .zip files
ii  w3m [www-browser] 0.5.2-10               WWW browsable pager with excellent
ii  wdiff             0.6.3-1                Compares two files word by word
ii  wget              1.12-2.1               retrieves files from the web
ii  xz-utils          4.999.9beta+20100810-1 XZ-format compression utilities

Versions of packages devscripts suggests:
ii  build-essential               11.5       Informational list of build-essent
pn  cvs-buildpackage              <none>     (no description available)
pn  devscripts-el                 <none>     (no description available)
ii  gnuplot                       4.4.0-1.1  A command-line driven interactive 
pn  libfile-desktopentry-perl     <none>     (no description available)
ii  libnet-smtp-ssl-perl          1.01-2     SSL support for Net::SMTP
ii  mutt                          1.5.20-9   text-based mailreader supporting M
pn  svn-buildpackage              <none>     (no description available)
ii  w3m                           0.5.2-10   WWW browsable pager with excellent

-- no debconf information

--- End Message ---
--- Begin Message --- 
Source: devscripts
Source-Version: 2.11.4

We believe that the bug you reported is fixed in the latest version of
devscripts, which is due to be installed in the Debian FTP archive:

devscripts_2.11.4.dsc
  to main/d/devscripts/devscripts_2.11.4.dsc
devscripts_2.11.4.tar.gz
  to main/d/devscripts/devscripts_2.11.4.tar.gz
devscripts_2.11.4_amd64.deb
  to main/d/devscripts/devscripts_2.11.4_amd64.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Adam D. Barratt <[email protected]> (supplier of updated devscripts 
package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Wed, 15 Feb 2012 19:19:31 +0000
Source: devscripts
Binary: devscripts
Architecture: source amd64
Version: 2.11.4
Distribution: unstable
Urgency: high
Maintainer: Devscripts Devel Team <[email protected]>
Changed-By: Adam D. Barratt <[email protected]>
Description: 
 devscripts - scripts to make the life of a Debian Package maintainer easier
Closes: 601951 659559 659946 659966
Changes: 
 devscripts (2.11.4) unstable; urgency=high
 .
   * Urgency "high" for security fixes.
 .
   [ James McCoy ]
   * bts: Revert usertags' handling of more than one +/-/=.  Only the first one
     is relevant.
 .
   [ Ryan Niebur ]
   * dget: when finding the sources.list entry for the repository to
     download a package from, match any port with the correct hostname
     because apt-cache policy does not output port numbers in URLs
     (Closes: #601951)
 .
   [ Adam D. Barratt ]
   * debdiff:
     + Fix a regression in the handling of embedded tarballs (a side
       effect of the changes introduced to resolve #571528).
     + Extend the changes from #571528 to cover more situations where
       user or file input is passed to an external program.  Fixes
       CVE-2012-2012 (and any instance of CVE-2012-2011 not already
       covered by #571528).
 .
   [ Paul Wise ]
   * suspicious-source: Also ignore mercurial and darcs VCS directories
     (Closes: #659966).
 .
   [ Benjamin Drung ]
   * suspicious-source: Add inode/x-empty to whitelist of MIME types
     (Closes: #659946).
 .
   [ Raphael Geissert ]
   * debdiff:
     + Remove undocumented feature treating extensionless files as if
       they were packages (Closes: #659559)
     + Add missing chdir for dpkg-source and remove extraneous quoting
       of --exclude parameters.
     + Fix CVE-2012-0210 (insufficient input sanitising reading .dsc
       and .changes files).
Checksums-Sha1: 
 9d1b2f78c6d772d85caae95fa95421e58e3c1fde 2264 devscripts_2.11.4.dsc
 b0114a50b89f9197846bf78283ee9ef3803658ec 767426 devscripts_2.11.4.tar.gz
 21aea3a3e10c66f759234051f48e2f5528820e5d 700988 devscripts_2.11.4_amd64.deb
Checksums-Sha256: 
 db60d2fdff1468a1cf47b0011fd3dffe48c0f38037348db7c73a0aa618145b78 2264 
devscripts_2.11.4.dsc
 bff276ce6dcdc0cb636b0bf5dee62fb5750afb7d46fc6fa4578784a56050db05 767426 
devscripts_2.11.4.tar.gz
 f0ba8d7b3e245c765a1e6e72a31e97cd8797651a74d524e0894c13e081c0a0dd 700988 
devscripts_2.11.4_amd64.deb
Files: 
 c9f82e1988b87b45256397df72613765 2264 devel optional devscripts_2.11.4.dsc
 cdfbf28c556ea3b82097ae18579d4503 767426 devel optional devscripts_2.11.4.tar.gz
 feaf99fe177ae297af4ce7665e245cdf 700988 devel optional 
devscripts_2.11.4_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iQIcBAEBAgAGBQJPPAoLAAoJEMXOXcLFQs1Z0a8QAK7C1WVYr1X3KmLDUfo6v/AM
Ua6HpXeENLUXkvAI9FRxXw0FEHc0GJWIgpChKBkfrmk0S4FIjWp6V0eWw9xc4b8+
wxWcEF6tkBIgb1k87db9SGqNVOifJWysjzLgfMG6HcBhBywgOyHyV4z4r0gEBc36
A4M6J/baiHXSbgOYuDW1MkRqcf6fta2O03WcYsPo3bMWt2712RWFk9lFF0hfk/59
+WbIly4Zy4WiHtRpqQlJ3D1B3l/bBznxvptP85H+StSs24M5woQ7KE+W1I0gH59r
a4Rol+DlW8gvPwG4M4F9LxgBY3L9dGzQmqRiBKbZDmfVSCTQTx/xHHumgGwfeSZ3
e2q0AmRcIe10x4WR98q5vR7IwHmruhg7Exxaw8jT3Hdf31Z97H+RK6Rj4iqvfu0X
ldKItbwTkjs3roLL5AD6q7PkxYW85zQ21ttNwbs+WUtmLmqTJiRUC8UlpJRGzJlu
+39dN4ctz1aJnuri2xKDFJ8GtsUN6QNJXUF6/guvQoDtBlfKD/7FiAjIcWyuUKM9
2QCMJ3Kbn6g5D0pHVE0PTZ7UP16AsPMnGBm4ACJ2EZNbKDo6sh7xJhvVHH6DeXDy
BXNjgRWshIgRSQ1nCkQYkxP8j3Sm1XQCXgL5+uncLX4611NjfJtQz6y4zWDIa9j/
CjADTuKD4coLESwBB499
=87Fn
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to