Bug#810975: 4store: FTBFS on arm64, kfreebsd-any: stat.h:76:21: error: field 'st_atim' has incomplete type

[Jonas Smedegaard]

Quoting Steven Chamberlain (2016-02-28 20:47:40)
> What's going wrong here is, filter-datatypes.c includes 
> and at that time, __need_timespec is not defined:
[...]
> Patch is attached.  It eliminates the warning and fixes the build for 
> me on at least kfreebsd-amd64.

Thanks a lot both for the patch and the detailed explanation!  Awesome!!

 - Jonas

-- 
 * Jonas Smedegaard - idealist & Internet-arkitekt
 * Tlf.: +45 40843136  Website: http://dr.jones.dk/

 [x] quote me freely  [ ] ask before reusing  [ ] keep private


signature.asc
Description: signature

Bug#816216: Theme switching on plasma

[Jeanne Varasco]

Package: 
version: last
Language: French
KDE plasma: 5.4.3
Environnement: stretch Qt: 5.5.1
Kernel: 4.3.0-1-amd64
64-bits

If you put a theme in 
/home/user_name/.local/share/plasma/look-and-feel/my_theme with breeze model,
it appears in the system configuration > look and feel > workspace > look and 
feel 
but when you try to apply it, breeze is runing instead of the theme.
idem with the splash screen and the loginscreen (sddm).

But the following items, taken separately are well running:
the cursor theme into /home/user_name/.icons/ can be choosed in system conf, 
the icon theme in /home/user_name/.local/icons/ can be choosed in system conf,
the desktoptheme in /home/user_name/.local/plasma/desktoptheme/ can be choosed 
in system conf,
the emoticons in home/user_name/.local/emoticons/ can be choosed in system conf,
the colors in /home/user_name/.local/colorscheme/ can be choosed in system conf.
   

Proposition:

I think that you should change the name of "default" for a theme.
But you can specify that the default theme = Breeze
except if there is a user choosed theme. 
If a part of theme doesn't exist it will be replaced by Breeze.

The themes complete or not could be defined in the folder :
/usr/share/plasma/look-and-feel/
with the scheme:
/name_of_theme/
  metadata.desktop (Model=Breeze, add in this model all possible choices, 
perhaps with explanation.)
  /contents/
defaults (Model=Breeze, 
/desktopswitcher/
/lockscreen/
/osd/
/runcommand/
/userswitcher/
/windowswitcher/
/shortcut to /usr/share/icons/folder_of_icons__theme/ named appicons
/shortcut to /usr/share/icons/folder_of_cursor_theme/ named cursors
/shortcut to /usr/share/emoticons/folder_of_emoticons_theme/ named emoticons
/shortcut to /usr/share/sddm/ named loginmanager
/previews/ with all previews screens named as what they are make for, 
except the general theme preview which names preview
/shortcut to /usr/share/ksplash/folder_of_splash_theme/ named splash
/shortcut to /usr/share/kwin/decorations/folder_of_decoration_theme/ named 
windowdecoration
/shortcut to /usr/share/kstyle/themes/ named style
/shortcut to /usr/share/themes/folder_of_gtk_theme/ named gtkstyle
/shortcut to /usr/share/plasma/desktoptheme/folder_of_desktoptheme/ named 
desktoptheme

Shortcuts are to avoid to forget possible part of the theme.
It is just a proposition.

Thank you
Regards

Jeanne

/_☺ Sauvons les arbres et le papier. N'imprimons que si nécessaire.☺ /

Bug#816215: wpagui: When run, wpa_gui just shows an empty grey window

[Riley Baird]

Package: wpagui
Version: 2.3-2.3
Severity: grave
Justification: renders package unusable

Hi,

When I run wpa_gui (as root), a window appears, which is just filled with grey.
I have included the terminal output and a screenshot of the problem.

X Error: BadAccess (attempt to access private resource denied) 10
  Extension:130 (MIT-SHM)
  Minor opcode: 1 (X_ShmAttach)
  Resource id:  0x320001e
X Error: BadShmSeg (invalid shared segment parameter) 128
  Extension:130 (MIT-SHM)
  Minor opcode: 5 (X_ShmCreatePixmap)
  Resource id:  0xc4
X Error: BadDrawable (invalid Pixmap or Window parameter) 9
  Major opcode: 62 (X_CopyArea)
  Resource id:  0x3200024
X Error: BadDrawable (invalid Pixmap or Window parameter) 9
  Major opcode: 62 (X_CopyArea)
  Resource id:  0x3200024
X Error: BadDrawable (invalid Pixmap or Window parameter) 9
  Major opcode: 62 (X_CopyArea)
  Resource id:  0x3200024
X Error: BadAccess (attempt to access private resource denied) 10
  Extension:130 (MIT-SHM)
  Minor opcode: 1 (X_ShmAttach)
  Resource id:  0x140
X Error: BadShmSeg (invalid shared segment parameter) 128
  Extension:130 (MIT-SHM)
  Minor opcode: 5 (X_ShmCreatePixmap)
  Resource id:  0xc4
X Error: BadDrawable (invalid Pixmap or Window parameter) 9
  Major opcode: 62 (X_CopyArea)
  Resource id:  0x320002b
X Error: BadPixmap (invalid Pixmap parameter) 4
  Major opcode: 54 (X_FreePixmap)
  Resource id:  0x320002b
X Error: BadShmSeg (invalid shared segment parameter) 128
  Extension:130 (MIT-SHM)
  Minor opcode: 2 (X_ShmDetach)
  Resource id:  0x320002b

Sorry if this turns out to be a problem on my end.

Yours thankfully,

Riley Baird



-- System Information:
Debian Release: stretch/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.2.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages wpagui depends on:
ii  libc6  2.21-4
ii  libgcc11:5.3.1-3
ii  libqt4-svg 4:4.8.7+dfsg-5
ii  libqtcore4 4:4.8.7+dfsg-5
ii  libqtgui4  4:4.8.7+dfsg-5
ii  libstdc++6 5.3.1-3
ii  wpasupplicant  2.3-2.3

Versions of packages wpagui recommends:
ii  menu  2.1.47

wpagui suggests no packages.

-- no debconf information

Bug#816214: python-pip: please make the build reproducible

[Reiner Herrmann]

Source: python-pip
Version: 8.0.3-2
Severity: wishlist
Tags: patch
User: reproducible-bui...@lists.alioth.debian.org
Usertags: timestamps
X-Debbugs-Cc: reproducible-bui...@lists.alioth.debian.org

Hi!

While working on the "reproducible builds" effort [1], we have noticed
that python-pip could not be built reproducibly.
It embeds the current date and time into a Python script.

The attached patch removes this timestamp.

Regards,
 Reiner

[1]: https://wiki.debian.org/ReproducibleBuilds
diff --git a/debian/makepip.py b/debian/makepip.py
index 10397bb..76eb798 100644
--- a/debian/makepip.py
+++ b/debian/makepip.py
@@ -2,7 +2,7 @@
 
 TEMPLATE = """\
 #!{shebang}
-# GENERATED BY DEBIAN ON {date} UTC
+# GENERATED BY DEBIAN
 
 import sys
 


signature.asc
Description: PGP signature

Bug#816213: ftp.debian.org: afterstep's binary packages stuck in the uploaded state

[Robert Luberda]

Package: ftp.debian.org
Severity: normal

Hi

The latest version of afterstep (2.2.12-7) uploaded five days ago via
source only upload somehow got stuck in the uploaded state on almost
all architectures - see https://buildd.debian.org/status/package.php?p=afterstep

Regards,
robert

Bug#785432: gstreamer1.0-pulseaudio must be installed

[Jérôme]

Not sure what solution would be the best.

On a fresh Jessie / Mint install, sound works on both quodlibet and vlc
but not both at the same time.

vlc + firefox (HTML5 video) -> OK, both sounds are mixed in the output
quodlibet + firefox (HTML5 video) -> not OK
quodlibet + vlc -> not OK

"not OK" means the first one opened "wins" and the second does not get
access to sound output.

Installing gstreamer1.0-pulseaudio solves the issue. I think installing
gstreamer1.0-alsa also solves the issue. But default sink does not
allow mixing AFAIU (which would be a bit hard to track down for a
beginner).

-- 
Jérôme

Bug#816212: squidguard: Readme.Debian broken URL listed

[Rob]

Package: squidguard
Version: 1.5-4
Severity: minor

Dear Maintainer,

The README.Debian file has a broken URL.
http://www.maynidea.com/squidguard/faq-plus.html

I couldn't locate a new document on that site.

-- System Information:
Debian Release: 8.3
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages squidguard depends on:
ii  debconf [debconf-2.0]  1.5.56
ii  libc6  2.19-18+deb8u3
ii  libdb5.3   5.3.28-9
ii  libldap-2.4-2  2.4.40+dfsg-1+deb8u2

Versions of packages squidguard recommends:
ii  liburi-perl  1.64-1
ii  libwww-perl  6.08-1
ii  squid3   3.4.8-6+deb8u1

Versions of packages squidguard suggests:
pn  ldap-utils  
pn  squidguard-doc  

-- debconf information:
  squidguard/dbreload: true

Bug#816210: libldb1: Upgrade removes xine-ui, kde-runtime + 8 more (Sid Unstable)

[Cindy Sue Causey]

Package: libldb1
Version: 2:1.1.24-1
Severity: critical
Justification: breaks unrelated software

Dear Maintainer,

First and as always, thank you to EVERYONE for your time and dedication that 
makes Debian possible!

The bug I've encountered today involves the latest upgrading of package libldb1 
via apt-get on Sid Unstable. This is the advisement received when attempting 
that upgrade:

+++ BEGIN APT-GET'S LIBLDB1 UPGRADE ADVISEMENT +++

The following packages will be REMOVED:
  kde-runtime kio-extras libsmbclient libxine2 libxine2-misc-plugins
  libxine2-plugins palapeli samba-libs vlc-plugin-samba xine-ui
The following packages will be upgraded:
  libldb1
1 upgraded, 0 newly installed, 10 to remove and 0 not upgraded.
Need to get 111 kB of archives.
After this operation, 40.3 MB disk space will be freed.

+++ END APT-GET'S LIBLDB1 UPGRADE ADVISEMENT +++

Once in a while I get lucky where installing/upgrading all other packages first 
or in a different order remedies the situation. Unfortunately that did not help 
today.

If you look at this bug report and agree with its assignment, cool. If you 
think it's something that usually should not make it to bug report status, I'll 
be happy to receive that feedback as part of the growing process in learning to 
help you all out.

The reason I say that is because I always end up cringing while determining the 
severity status of these things. I'm not well enough versed in the whole 
dependency thing to know whether xine-ui, kde-runtime, and the others being 
removed by libldb1 is an expected behavior that is very naturally remedied 
regularly in Sid Unstable. I ultimately choose that severity because, for 
example today, it doesn't appear to be a natural, expected behavior for a media 
player and game (e.g. palapeli) to be autoremoved during the *seemingly* 
unrelated update of a package being addressed by itself.

That's all I have for now. Thank you again so much for your work!

PS As an aside, I just seconds ago installed apt-rdepends with hopes that it 
proves to be a useful tool for understanding situations like this in the Future.

Cindy Sue :)
Talking Rock, GA USA


-- System Information:
Debian Release: stretch/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.1.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=, LC_CTYPE= (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages libldb1 depends on:
ii  libc6  2.21-9
ii  libldap-2.4-2  2.4.42+dfsg-2+b2
ii  libtalloc2 2.1.5-1
ii  libtdb11.3.8-1
ii  libtevent0 0.9.28-1

libldb1 recommends no packages.

libldb1 suggests no packages.

-- no debconf information

Bug#810975: 4store: FTBFS on arm64, kfreebsd-any: stat.h:76:21: error: field 'st_atim' has incomplete type

[Steven Chamberlain]

tags 810975 + patch
thanks

Hi,

Andreas Beckmann wrote:
> gcc -DHAVE_CONFIG_H -I. -I../..   -D_FORTIFY_SOURCE=2 -std=gnu99 
> -fno-strict-aliasing -Wall  -g -O2 -I./ -I../ -DGIT_REV="\"v1.1.6+20151109\"" 
> -I/usr/include/glib-2.0 -I/usr/lib/aarch64-linux-gnu/glib-2.0/include 
> -I/usr/include/raptor2 -I/usr/include/rasqal -I/usr/include/raptor2 
> -I/usr/include/libxml2 `pcre-config --cflags` -g -O2 -fstack-protector-strong 
> -Wformat -Werror=format-security -Wall -c -o filter-datatypes.o 
> filter-datatypes.c
> In file included from /usr/include/fcntl.h:68:0,
>  from ../common/params.h:4,
>  from query-datatypes.h:8,
>  from filter.h:4,
>  from filter-datatypes.c:28:
> /usr/include/aarch64-linux-gnu/bits/stat.h:76:21: error: field 'st_atim' has 
> incomplete type
>  struct timespec st_atim;  /* Time of last access.  */
>  ^
> /usr/include/aarch64-linux-gnu/bits/stat.h:77:21: error: field 'st_mtim' has 
> incomplete type
>  struct timespec st_mtim;  /* Time of last modification.  */
>  ^
> /usr/include/aarch64-linux-gnu/bits/stat.h:78:21: error: field 'st_ctim' has 
> incomplete type
>  struct timespec st_ctim;  /* Time of last status change.  */
>  ^

What's going wrong here is, filter-datatypes.c includes 
and at that time, __need_timespec is not defined:

#define _XOPEN_SOURCE
#include 
#include 
#include 
#define __USE_MISC
#include 

Later, when  is included:

#if defined __USE_XOPEN || defined __USE_XOPEN2K8
# define __need_timespec
# include 
# include 

time.h was included already, and it has guard macros that stop it being
included again.  Therefore, it doesn't reach the part that would declare
timespec.

I think the _XOPEN_SOURCE isn't quite right.  I think they were trying
to get  to provide strdup(), but it's not working:

> filter-datatypes.c: In function 'fs_resource_value':
> filter-datatypes.c:107:16: warning: implicit declaration of function 'strdup' 
> [-Wimplicit-function-declaration]
>  res->lex = strdup(v.lex);
> ^
> filter-datatypes.c:107:16: warning: incompatible implicit declaration of 
> built-in function 'strdup'

And __USE_MISC to get strptime() and timegm() from , but that's
forbidden in feature_test_macros(7):

Programs should never define these macros directly: instead, the
appropriate feature test macro(s) from the list above should be
employed.

One solution would be:

#define _DEFAULT_SOURCE /* for timegm() */
#define _XOPEN_SOURCE /* for strptime(), strdup() */

but with glibc >= 2.19 it is easier to define _GNU_SOURCE, which implies
both of those, and would be consistent with other source files of 4store
already doing that.

Patch is attached.  It eliminates the warning and fixes the build for me
on at least kfreebsd-amd64.

Thanks!
Regards,
-- 
Steven Chamberlain
ste...@pyro.eu.org
Subject: use _GNU_SOURCE instead of __USE_MISC
From: Steven Chamberlain 
Date: Sun, 28 Feb 2016 19:39:34 +

Defining __USE_MISC directly is forbidden in feature_test_macros(7).

Use _GNU_SOURCE, as other source files do already, which implies
_XOPEN_SOURCE and __USE_MISC.

--- a/src/frontend/filter-datatypes.c
+++ b/src/frontend/filter-datatypes.c
@@ -18,11 +18,11 @@
  *  Copyright (C) 2006 Steve Harris for Garlik
  */
 
-#define _XOPEN_SOURCE
+#define _GNU_SOURCE
+
 #include 
 #include 
 #include 
-#define __USE_MISC
 #include 
 
 #include "filter.h"


signature.asc
Description: Digital signature

Bug#816211: linux-image-3.16.0-0.bpo.4-amd64: /dev/sr? access is not parallel

[Marc SCHAEFER]

Package: src:linux
Version: 3.16.7-ckt20-1+deb8u3~bpo70+1
Severity: normal

Dear Maintainer,

There was a regression in the Linux kernel which made the I/Os to
sr devices (especially when ejecting or writing to DVD-Rs) synchronous
(non parallel).

If you write to a few DVD writes simultaneously, a 5-7x performance
degradation will occur.

You can reproduce the bug easily with:
   for i in /dev/sr?; do (eject $i&); done

If the drives do not open (almost) simultaneously but sequentially, the
bug is present.

Reference: 
http://linux-scsi.vger.kernel.narkive.com/JLvupYok/patch-scsi-sr-fix-multi-drive-performance-by-using-per-device-mutexes

I adapted a patch for that version below and successfully tested it.

-- Package-specific info:
** Version:
Linux version 3.16.0-0.bpo.4-amd64 (debian-ker...@lists.debian.org) (gcc 
version 4.6.3 (Debian 4.6.3-14) ) #1 SMP Debian 3.16.7-ckt20-1+deb8u3~bpo70+1 
(2016-01-19)

** Command line:
BOOT_IMAGE=/vmlinuz-3.16.0-0.bpo.4-amd64 root=/dev/mapper/vg1-root ro quiet

--- drivers/scsi/sr.c   2015-11-18 11:08:46.0 +0100
+++ drivers/scsi/sr.c.NEW   2016-02-28 19:51:54.957158326 +0100
@@ -76,7 +76,6 @@
 CDC_CD_R|CDC_CD_RW|CDC_DVD|CDC_DVD_R|CDC_DVD_RAM|CDC_GENERIC_PACKET| \
 CDC_MRW|CDC_MRW_W|CDC_RAM)

-static DEFINE_MUTEX(sr_mutex);
 static int sr_probe(struct device *);
 static int sr_remove(struct device *);
 static int sr_init_command(struct scsi_cmnd *SCpnt);
@@ -520,24 +519,24 @@
struct scsi_cd *cd;
int ret = -ENXIO;

-   mutex_lock(_mutex);
cd = scsi_cd_get(bdev->bd_disk);
if (cd) {
+mutex_lock(>lock);
ret = cdrom_open(>cdi, bdev, mode);
+mutex_unlock(>lock);
if (ret)
scsi_cd_put(cd);
}
-   mutex_unlock(_mutex);
return ret;
 }

 static void sr_block_release(struct gendisk *disk, fmode_t mode)
 {
struct scsi_cd *cd = scsi_cd(disk);
-   mutex_lock(_mutex);
+   mutex_lock(>lock);
cdrom_release(>cdi, mode);
+   mutex_unlock(>lock);
scsi_cd_put(cd);
-   mutex_unlock(_mutex);
 }

 static int sr_block_ioctl(struct block_device *bdev, fmode_t mode, unsigned 
cmd,
@@ -548,7 +547,7 @@
void __user *argp = (void __user *)arg;
int ret;

-   mutex_lock(_mutex);
+   mutex_lock(>lock);

/*
 * Send SCSI addressing ioctls directly to mid level, send other
@@ -578,7 +577,7 @@
ret = scsi_ioctl(sdev, cmd, argp);

 out:
-   mutex_unlock(_mutex);
+   mutex_unlock(>lock);
return ret;
 }

@@ -673,6 +672,8 @@
if (!disk)
goto fail_free;

+   mutex_init(>lock);
+
spin_lock(_index_lock);
minor = find_first_zero_bit(sr_index_bits, SR_DISKS);
if (minor == SR_DISKS) {
@@ -742,6 +743,7 @@

 fail_put:
put_disk(disk);
+   mutex_destroy(>lock);
 fail_free:
kfree(cd);
 fail:
@@ -978,6 +980,8 @@

put_disk(disk);

+   mutex_destroy(>lock);
+
kfree(cd);
 }

--- drivers/scsi/sr.h   2015-11-18 11:08:46.0 +0100
+++ drivers/scsi/sr.h.NEW   2016-02-28 19:45:26.533162171 +0100
@@ -19,6 +19,7 @@

 #include 
 #include 
+#include 

 #define MAX_RETRIES3
 #define SR_TIMEOUT (30 * HZ)
@@ -49,6 +50,7 @@
bool ignore_get_event:1;/* GET_EVENT is unreliable, use TUR */

struct cdrom_device_info cdi;
+   struct mutex lock;
/* We hold gendisk and scsi_device references on probe and use
 * the refs on this kref to decide when to release them */
struct kref kref;

Bug#816209: elog: please make the build reproducible

[Reiner Herrmann]

Source: elog
Version: 3.1.1-1-1
Severity: wishlist
Tags: patch
User: reproducible-bui...@lists.alioth.debian.org
Usertags: environment
X-Debbugs-Cc: reproducible-bui...@lists.alioth.debian.org

Hi!

While working on the "reproducible builds" effort [1], we have noticed
that elog could not be built reproducibly.
It uses the shell-builtin 'echo' which behaves differently depending on
the used shell.

The attached patch uses printf instead, which is shell-independent.

Regards,
 Reiner

[1]: https://wiki.debian.org/ReproducibleBuilds
diff --git a/debian/rules b/debian/rules
index 1613fde..dbf1db3 100755
--- a/debian/rules
+++ b/debian/rules
@@ -77,13 +77,13 @@ binary-arch: build install
 	# Remove contrib content and install new README with download location of external contributions
 	# Reason: Too many different authors with too many different licenses: Should stay external of Debian
 	mkdir -p $(DESTDIR)/$(DOCDIR)/contrib
-	echo "Download external elog contributions here: https://midas.psi.ch/elogs/Contributions/; > $(DESTDIR)/$(DOCDIR)/contrib/README
+	printf "Download external elog contributions here: https://midas.psi.ch/elogs/Contributions/; > $(DESTDIR)/$(DOCDIR)/contrib/README
 	dh_installchangelogs $(SRCDIR)/doc/ChangeLog
 	dh_installexamples debian/examples/*
 	dh_installman $(SRCDIR)/man/*
 	# install empty ssl directoy and skip the server.crt / server.key from orig sources
 	mkdir -p $(DESTDIR)/usr/share/elog/ssl
-	echo "In case SSL is enabled in '/etc/elog.conf' make here manually the following symbolic links:\n   ./server.key -> /etc/ssl/private/my.key\n   ./server.crt -> /etc/ssl/certs/my.pem\n\nGeneration of self-signed SSL certificates can e.g. be done easily with command /usr/sbin/make-ssl-cert from package ssl-cert." > $(DESTDIR)/usr/share/elog/ssl/README
+	printf "In case SSL is enabled in '/etc/elog.conf' make here manually the following symbolic links:\n   ./server.key -> /etc/ssl/private/my.key\n   ./server.crt -> /etc/ssl/certs/my.pem\n\nGeneration of self-signed SSL certificates can e.g. be done easily with command /usr/sbin/make-ssl-cert from package ssl-cert." > $(DESTDIR)/usr/share/elog/ssl/README
 	dh_lintian
 	# install the init script but do not modify the postinst, prerm and postrm scripts
 	dh_installinit --noscripts


signature.asc
Description: PGP signature

Bug#816208: neutron: Incomplete debian/copyright

[Luke Faraone]

Source: neutron
Severity: serious
Justification: §2.3

neutron-8.0.0~b2\doc\source\devref\development.environment.rst is:
  Copyright 2010-2013 United States Government as represented by the
  Administrator of the National Aeronautics and Space Administration.
  All Rights Reserved.

(as well as several other files)

neutron-8.0.0~b2\neutron\agent\linux\bridge_lib.py:
# Copyright 2015 Isaku Yamahata 
#   



neutron-8.0.0~b2\neutron\db\portbindings_base.py:
Copyright 2013 UnitedStack Inc.

neutron-8.0.0~b2\neutron\plugins\hyperv\agent\security_groups_driver.py:
Copyright 2014 Cloudbase Solutions SRL

neutron-8.0.0~b2\neutron\tests\api\test_fwaas_extensions.py:
Copyright 2014 NEC Corporation. 

Cheers,
Luke Faraone
FTP Assistant

Bug#759330: gpart not compiled for armhf (wheezy)

[Eriberto Mota]

tags 759330 wontfix
tags 759330 upstream
thanks

Hi,

gpart is not available to any architecture. The armhf is not included
by upstream.

I will wait 30 days to close this bug.

Regards,

Eriberto

Bug#815787: May be a kernel problem not a pulseaudio one?

[Cristian Ionescu-Idbohrn]

On Sun, 28 Feb 2016, Linus Torvalds wrote:
> On Feb 28, 2016 9:36 AM, "Cristian Ionescu-Idbohrn" 
>  wrote:
> >
> > "Apparently there is some work under way to allow both ZONE_DEVICE
> > (needed for DAX) and ZONE_DMA (needed by the sound drivers) to be
> > supported in the same kernel configuration."
>
> Yeah, but do you actually need or use ZONE_DEVICE?

I don't think so.

> Even DAX doesn't actually need it except for some special cases, iirc.

I think so too.

> I don't think distributions should necessarily enable it at all yet.

Well, they obviously do, for some reason :(

> > and there may be some hope with:
> >
> > http://www.spinics.net/lists/kernel/msg2170767.html
> >
> > Is there, Linus?
>
> Yes, but that's 4.6 of later. And unlikely to be marked for back
> porting to stable.

I'll need to be pacient then :)

> So *eventually* we'll support that combination, but for now...


Cheers,

-- 
Cristian

Bug#816207: netstress: not specific ethernet device

[Giovani Augusto Ferreira]

Package: netstress
Version: 1.2.0-1
Severity: minor

Dear Maintainer,

While use the netstress, I not specific the ethernet device default.



-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.3.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=pt_BR.utf8, LC_CTYPE=pt_BR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages netstress depends on:
ii  libc6  2.21-8

netstress recommends no packages.

netstress suggests no packages.

-- no debconf information

Bug#816206: runawk: please make the build reproducible

[Reiner Herrmann]

Source: runawk
Version: 1.6.0-1
Severity: wishlist
Tags: patch
User: reproducible-bui...@lists.alioth.debian.org
Usertags: locale
X-Debbugs-Cc: reproducible-bui...@lists.alioth.debian.org

Hi!

While working on the "reproducible builds" effort [1], we have noticed
that runawk could not be built reproducibly.
The order of sections inside the manpage differs, as the list is
generated in a locale-dependent way.

The attached patch fixes this by listing the files with the C locale.

Regards,
 Reiner

[1]: https://wiki.debian.org/ReproducibleBuilds
diff --git a/debian/patches/reproducible-build.patch b/debian/patches/reproducible-build.patch
new file mode 100644
index 000..35c1cc2
--- /dev/null
+++ b/debian/patches/reproducible-build.patch
@@ -0,0 +1,11 @@
+From: Reiner Herrmann 
+Subject: sort files locale-independently to get reproducible build
+
+--- a/modules/Makefile
 b/modules/Makefile
+@@ -1,4 +1,4 @@
+-MODULES !=			cd ${.CURDIR}; echo *.awk gawk/*.awk
++MODULES !=			cd ${.CURDIR}; LC_ALL=C ls *.awk gawk/*.awk
+ 
+ FILES =${MODULES}
+ FILESDIR =			${MODULESDIR}
diff --git a/debian/patches/series b/debian/patches/series
new file mode 100644
index 000..55077d0
--- /dev/null
+++ b/debian/patches/series
@@ -0,0 +1 @@
+reproducible-build.patch


signature.asc
Description: PGP signature

Bug#816205: php-igbinary: Incomplete copyright information

[Luke Faraone]

Source: php-igbinary
Severity: serious
Justification: §2.3

Hello,

While reviewing your package in NEW, I noticed that the license information for 
the package is incomplete. COPYING states:

Copyright (c) 2008 Sulake Dynamoid Oy, 2008-2014 Oleg Grenrus, Teddy Grenman,
igbinary contributors

However, debian/copyright only indicates:

Files: *
Copyright: 2008 Sulake Dynamoid Oy
License: BSD-3-clause

Cheers,
Luke Faraone
FTP team

Bug#816204: live-build: Weak signing key not properly deleted by live-build, remains in /etc/apt/trusted.gpg after building.

[David McKinney]

Package: live-build
Version: 1:20151215
Severity: normal
Tags: patch

Dear Maintainer,

live-build is supposed to delete the temporary '_LB_LOCAL_KEY_EMAIL'
signing key at the end of the 'scripts/build/chroot_archives' script.
However, it fails because the 'apt-key del' command expects a key ID and not 
the email address associated with the key (_LB_LOCAL_KEY_EMAIL). This
was probably missed because the command likes to return "OK" even when
a non-existent key is specified.

The result of this bug is that an insecure (and unneeded) APT signing
key is left in the `/etc/apt/trusted.gpg' keyring.

To address the problem, it is necessary to lookup the key ID for
'_LB_LOCAL_KEY_EMAIL' using the 'apt-key list' command and parse the key
ID from line previous to where the email address for the key appears (a
little tricky).

I have attached a patch that uses a sed statement to extract the key ID
and store it in an environment variable to be used with the 'apt-key
del' command.

-- Package-specific info:

-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.3.3-grsec-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages live-build depends on:
ii  debootstrap  1.0.78

Versions of packages live-build recommends:
ii  apt-utils   1.2.3
ii  cpio2.11+dfsg-5
pn  live-boot-doc   
pn  live-config-doc 
pn  live-manual-html | live-manual  
ii  wget1.17.1-1+b1

Versions of packages live-build suggests:
pn  debian-keyring  
ii  gpgv1.4.20-1

-- no debconf information
diff --git a/scripts/build/chroot_archives b/scripts/build/chroot_archives
index 029afe7..8b2546f 100755
--- a/scripts/build/chroot_archives
+++ b/scripts/build/chroot_archives
@@ -762,7 +762,8 @@ EOF
 		# Remove local packages key if it exists
 		if Chroot chroot apt-key list | grep -q ${_LB_LOCAL_KEY_EMAIL}
 		then
-			Chroot chroot apt-key del ${_LB_LOCAL_KEY_EMAIL}
+_LB_LOCAL_KEY_ID=`Chroot chroot apt-key list | sed -nr '/'"${_LB_LOCAL_KEY_EMAIL}"'/{x;d;};x;g;s/^.+1024R\/([[:xdigit:]]{8}).+/\1/p'`
+Chroot chroot apt-key del ${_LB_LOCAL_KEY_ID} 
 		fi
 
 		# Removing stage file

Bug#816203: Out-of-date website regarding non-uploading contributors

[Holger Wansing]

Package: nm.debian.org


Hi,

the webpages 
https://www.debian.org/devel/join
and
https://www.debian.org/devel/join/newmaint
need some update regarding the General Resolution 
https://www.debian.org/vote/2010/vote_002
(welcome non-uploading Debian contributors).

There had been some work to change "Debian maintainer" into
"Debian member" and similar, but there are still very much
occurences of "developer" or "maintainer", where "member" would
be better.

Moreover, based on the GR mentioned above, we have a third category
of Debian membership now (Debian maintainer, Debian developer and
Debian non-uploading developer).
This should be described in more detail on this pages, to have more
benefit of this:
people, who are interested in joining Debian, should be told, that
there is something like "the non-uploading membership". Otherwise
they probably don't get so far to do the application.

In my opinion, there is some potential for confusion on the terms
"Debian maintainer", "Debian developer" and "Debian member",
especially for newcomers. Maybe there is some room for improvement?



If you agree with the above in general, I could prepare a patch.


Holger


-- 

Created with Sylpheed 3.5.0 under
D E B I A N   L I N U X   8 . 0   " J E S S I E " .

Registered Linux User #311290 - https://linuxcounter.net/

Bug#816198: jessie-pu: package php-dompdf/0.6.1+dfsg-2

[Markus Frosch]

On 28.02.2016 19:42, Salvatore Bonaccorso wrote:
> CVE-2014-2383 should actually be already fixed in 0.6.1+dfsg-1. Is
> that wrong?
> 
>  https://security-tracker.debian.org/tracker/CVE-2014-2383
>  https://bugs.debian.org/745619

Thats seems to be correct, upstream mentioned it on 0.6.2 as well.

I guess because CVE-2014-5013 is a follow-up for that.

Will remove it from the changelog.

Cheers
Markus Frosch
-- 
mar...@lazyfrosch.de / lazyfro...@debian.org
http://www.lazyfrosch.de



signature.asc
Description: OpenPGP digital signature

Bug#816202: RM: vftool -- RoQA; orphaned, low popcon

[Jonathan Wiltshire]

Package: ftp.debian.org
Severity: normal

Please remove vftool from sid: low popcon, maintainer retired, orphaned
without any interest for >1y, no r-deps.

Bug#816198: jessie-pu: package php-dompdf/0.6.1+dfsg-2

[Salvatore Bonaccorso]

Hi Markus,

Just one note:

On Sun, Feb 28, 2016 at 06:22:08PM +0100, Markus Frosch wrote:
> +php-dompdf (0.6.1+dfsg-2+deb8u1) UNRELEASED; urgency=medium
> +
> +  * Non-maintainer upload.
> +  * [22610bd] Add 0.6.2 hotfix patch (Closes: #813849)
> +
> +Fixes CVE:
> +* CVE-2014-2383
> +* CVE-2014-5011
> +* CVE-2014-5012
> +* CVE-2014-5013

CVE-2014-2383 should actually be already fixed in 0.6.1+dfsg-1. Is
that wrong?

 https://security-tracker.debian.org/tracker/CVE-2014-2383
 https://bugs.debian.org/745619

Regards,
Salvatore

Bug#812108: problem upgrading from offlineimap 6.3.4 to 6.6.1

[Nicolas Sebrecht]

On Sun, Feb 28, 2016 at 06:00:58PM +0200, Ilias Tsitsimpis wrote:

> Control: tags -1 + patch
> 
> Hi François, Nicolas,

Hi,

> I have created a patch that hopefully will help here[1]. My plan is to
> include this to the next OfflineIMAP version in Debian, and state at the
> NEWS file that everyone who is upgrading from v6.3.4 should run
> 
> $ offlineimap --verify-fmd5 || offlineimap --fix-fmd5
> 
> before the first use of the newer version.
> 
> Could you review this, and/or verify that this is working correctly?
> 
> [1] https://github.com/iliastsi/offlineimap/commit/8d07ec308e83665

>From a quick review, this looks fine for a merge. I didn't check the
validity of the algo, though.

> @nicolas: Do you believe this should be included in the mainline
> OfflineIMAP repository (i.e., do you believe this has any other use
> other than upgrading from v6.3.4)?

I'm in favor to get this merged ASAP, yes. I think distribution
maintainers should backport it to versions from v6.3.4 to v6.7.0-rc2
(the upcoming v6.7.0-rc3 should include the patches).

I guess this might be confusing or make bad things (including data loss)
if applied on mails that has moved from a folder to another one without
a full filename change because this might lead to UID conflicts.

-- 
Nicolas Sebrecht

Bug#814212: wikidiff2: FTBFS: cp: cannot stat 'modules/*': No such file or directory

[Chris Lamb]

> I can't reproduce this in a clean, up-to-date sid chroot; does it still
> FTBFS on the reproducible infrastructure?

Just to be clear, I could reproduce it ouside of that infrastructure (otherwise 
I wouldn't have filed the ticket, incidentally.)

However, I can't reproduce it now so closing (in bcc)


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-

Bug#816201: live-config: using tzdata component fails and always set to 'Etc/UTC'

[Gregory DAVID]

Source: live-config
Version: 5.20151121
Severity: normal
Tags: patch

Dear Maintainer,

   * What led up to the situation?
While configuring the live-config.timezone parameter (on kernel boot parameter
or by config.conf file) to any value, hence 'Europe/Paris', the only result is
the 'Etc/UTC' timezone set.

   * What exactly did you do (or not do) that was effective (or
 ineffective)?
Looked up the '0070-tzdata' component source file and find that the process to
change timezone is:
 1/ echoing the timezone to the '/etc/timezone' file (ex: echo
"Europe/Paris">/etc/timezone )
 2/ call to the reconfiguration of tzdata package ( "dpkg-reconfigure -f
noninteractive -p critical tzdata" )

If I try to do the same thing by hand, I can se that:
 1/ echoing works fine (hopefully :) )
 2/ call to the tzdata package reconfiguration do not return any error, BUT the
'/etc/timezone' file content has been modified by the reconfiguration process.

I thought then the package tzdata was misconfigured or with errors. Looking up
the https://anonscm.debian.org/cgit/pkg-
glibc/tzdata.git/tree/debian/tzdata.config#n329 we can identify that the tzdata
configuration process override the '/etc/timezone' file if '/etc/localtime'
exists and is a symlink.
I really think I get something!

We may unlink '/etc/localtime' in
https://anonscm.debian.org/cgit/debian-live/live-
config.git/tree/components/0070-tzdata#n50
before calling 'dpkg-reconfigure ... tzdata'



-- System Information:
Debian Release: stretch/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.3.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
>From b10d7cf76929325741e51479099cc7d2a233f9c9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Gr=C3=A9gory=20DAVID?= 
Date: Sun, 28 Feb 2016 15:32:16 +0100
Subject: [PATCH] Unlink /etc/localtime if exists before calling
 reconfiguration

---
 components/0070-tzdata | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/components/0070-tzdata b/components/0070-tzdata
index 2677c37..f0a338b 100755
--- a/components/0070-tzdata
+++ b/components/0070-tzdata
@@ -47,6 +47,9 @@ Config ()
 	fi
 
 	echo "${_AREA}/${_ZONE}" > /etc/timezone
+	if [ -L /etc/localtime ] ; then
+		unlink /etc/localtime
+	fi
 	dpkg-reconfigure -f noninteractive -p critical tzdata
 
 	# Creating state file
-- 
2.7.0

Bug#638049: [Aptitude-devel] Bug#638049: aptitude forgets which packages were installed automatically

[Manuel A. Fernandez Montecelo]

Hi all,

2016-02-26 11:34 matthias.hinkfo...@uni-rostock.de:

Hi Harri,

I experiance the overall problem of forgetting about automatically
installed packages every now and then on several machines and with
various versions of aptitude from 0.4.?? up to 0.6.11. Unfortunately,
I was unable to find a pattern in aptitude's behaviour.


That's likely not one cause but multiple problems with similar
manifestations.  I've been fixing some of those cases in the 0.7.x
series, but there are other cases still remaining.  There were 20~30
reports with many merged bugs (sometimes wrongly) and still about a
dozen or so remain.


But I suspect
a different bug to be related: If I uninstall a package, aptitude
sometimes wants to reinstall that package immediatly.


Actually, this sounds more like these:

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=570492
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=814996



Maybe its best to forbid making changes in the preview?

I do not think so. My use case of the preview is similar to a
filtered package view.


The implied changes (esp. new dependencies, if you manually add some
of the recommended packages) are not completely visible in the
preview, anyway.

Yes. I think this is unfortunate. My workaround, after making changes
is, to close the preview and reopen it.

A suggestion:
The preview is a preview as long as you do not
- change the package selection,
- update the package database,
- ...


I use the preview in a similar way, and I don't know if everybody does,
but also I don't think that forbidding changes in the preview is going
to be very popular.



If you change anything, the preview should become a normal package
view, and accepting the changes should open a new preview.

Happily enough, I do not know how hard it is to implement that, but
from a user's point of view, this is what should happen.

Any comments are welcome.


Could be a good idea.

I think that this belongs better in a new bug report, would you mind to
submit a new bug to discuss this separately?


Cheers.
--
Manuel A. Fernandez Montecelo 

Bug#816145: [php-maint] Bug#816145: php-pear: authentication failure for auth smtp using pear TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits) instead of AES256 256bits

[Ondřej Surý]

Control: tags -1 +moreinfo

Hi Eliott,

my guess would be that there's something not entirely correct with your
certs as there were some changes in PHP 5.6 OpenSSL, please check here
that your setup is in fact correct:

http://php.net/manual/en/migration56.openssl.php

especially: Stream wrappers now verify peer certificates and host names
by default when using SSL/TLS ¶

Cheers,
-- 
Ondřej Surý 
Knot DNS (https://www.knot-dns.cz/) – a high-performance DNS server

On Sun, Feb 28, 2016, at 02:30, Eliott wrote:
> Package: php-pear
> Version: 5.6.17+dfsg-0+deb8u1
> Severity: important
> 
> Dear Maintainer,
> 
> On debian 7.5 installation I can send mail with smpt authentication using
> PEAR package.
> 
> If I update (or fresh install) to debian 8 the smtp authentication has an
> error: authentication failure [SMTP: STARTTLS failed (code: 220,
> response: 2.0.0 Ready to start TLS)
> 
> On the server side we can see the difference on the log:
> 
> *** debian 7.5 ***
> 
> Feb 28 02:21:47 mail postfix/smtpd[15152]: Anonymous TLS connection
> established from web.servergamers.net[91.121.144.19]: TLSv1 with cipher
> DHE-RSA-AES256-SHA (256/256 bits)
> Feb 28 02:21:47 mail postfix/smtpd[15152]: 6EDBB4C0823:
> client=web.servergamers.net[91.121.144.19], sasl_method=CRAM-MD5,
> sasl_username=webmas...@servergamers.net
> 
> *** debian 8 ***
> 
> Feb 28 02:09:17 mail postfix/smtpd[15135]: Anonymous TLS connection
> established from web2.servergamers.net[91.121.81.76]: TLSv1 with cipher
> DHE-RSA-AES128-SHA (128/128 bits)
> Feb 28 02:09:17 mail postfix/smtpd[15135]: lost connection after STARTTLS
> from web2.servergamers.net[91.121.81.76]
> Feb 28 02:09:17 mail postfix/smtpd[15135]: disconnect from
> web2.servergamers.net[91.121.81.76]
> 
> As you can see the cipher change from DHE-RSA-AES256-SH to
> DHE-RSA-AES128-SH and authentification fail.
> 
> You can found below all package I have installed:
> 
> *
> 
> apt-get update -y
> apt-get upgrade -y
> apt-get install -y libapache2-mod-php5 
> apt-get install -y php5-mysql
> apt-get install -y php5-curl
> apt-get install -y pure-ftp-mysql
> apt-get install -y htop
> apt-get install php5-mcrypt
> apt-get install php-pear
> 
> a2enmod ssl
> php5enmod mcrypt
> pear install mail
> pear install Net_SMTP
> pear install Auth_SASL
> 
> 
> 
> Best Regards,
> 
> Eliott.
> 
> -- System Information:
> Debian Release: stretch/sid
>   APT prefers testing
>   APT policy: (500, 'testing')
> Architecture: amd64 (x86_64)
> 
> Kernel: Linux 3.2.0-4-amd64 (SMP w/4 CPU cores)
> Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
> Shell: /bin/sh linked to /bin/dash
> Init: unable to detect
> 
> Versions of packages php-pear depends on:
> ii  php5-cli 5.6.17+dfsg-0+deb8u1
> ii  php5-common  5.6.17+dfsg-0+deb8u1
> 
> Versions of packages php-pear recommends:
> ii  gnupg  1.4.20-4
> 
> Versions of packages php-pear suggests:
> pn  php5-dev  
> 
> -- no debconf information
> 
> ___
> pkg-php-maint mailing list
> pkg-php-ma...@lists.alioth.debian.org
> http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-php-maint

Bug#815787: May be a kernel problem not a pulseaudio one?

[Linus Torvalds]

On Feb 28, 2016 9:36 AM, "Cristian Ionescu-Idbohrn" <
cristian.ionescu-idbo...@axis.com> wrote:
>
>
> "Apparently there is some work under way to allow both ZONE_DEVICE
> (needed for DAX) and ZONE_DMA (needed by the sound drivers) to be
> supported in the same kernel configuration."

Yeah, but do you actually need or use ZONE_DEVICE?

Even DAX doesn't actually need it except for some special cases, iirc.

I don't think distributions should necessarily enable it at all yet.

> and there may be some hope with:
>
> http://www.spinics.net/lists/kernel/msg2170767.html
>
> Is there, Linus?

Yes, but that's 4.6 of later. And unlikely to be marked for back porting to
stable.

So *eventually* we'll support that combination, but for now...

  Linus

Bug#816200: bitlbee-common: postinst script fails if there is already a bitlbee system user, but no /var/lib/bitlbee directory

[Sebastian Deusser]

Package: bitlbee-common
Version: 3.4.1-1
Severity: normal

Hello,

I've ran into a minor problem when I installed bitlbee. In normal setups
it should not occur, but it should also be relatively easy to fix.
On the system I was working on we previously migrated all user accounts
from the previous installation. So now when I installed bitlbee it did
not create a new bitlbee user because there was already one from the
previous installation. But we did not migrate the /var/lib/bitlbee
directory, and so after the failed user creation postinst tried to chmod
a directory that wasn't there so that failed too hard for postinst to go
on. Everything worked after I created the directory by hand.
For a fix there should probably a test if the directory exists before
the chmod. But as I said there should not be many people who should run
into this problem.


-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.3.0-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=locale: Cannot set 
LC_CTYPE to default locale: No such file or directory
locale: Cannot set LC_MESSAGES to default locale: No such file or directory
locale: Cannot set LC_ALL to default locale: No such file or directory
ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages bitlbee-common depends on:
ii  adduser3.113+nmu3
ii  debconf [debconf-2.0]  1.5.58
ii  net-tools  1.60+git20150829.73cef8a-2

bitlbee-common recommends no packages.

bitlbee-common suggests no packages.

-- Configuration Files:
/etc/bitlbee/bitlbee.conf changed [not included]

-- debconf information excluded

Bug#816199: RFS: python-qtpy/1.0~b1-2

[Ghislain Vaillant]

Package: sponsorship-requests
Severity: normal

Dear mentors,

I am looking for a sponsor for my package "python-qtpy"

* Package name: python-qtpy
  Version : 1.0~b1-2
  Upstream Author : The Spyder Development Team
* URL : https://github.com/spyder-ide/qtpy
* License : Expat
  Section : python

It builds those binary packages:

  python-qtpy - abtraction layer for PySide/PyQt4/PyQt5 (Python 2)
  python3-qtpy - abtraction layer for PySide/PyQt4/PyQt5 (Python 3)

To access further information about this package, please visit the 
following URL:


  http://mentors.debian.net/package/python-qtpy

Alternatively, one can download the package with dget using this command:

  dget -x 
http://mentors.debian.net/debian/pool/main/p/python-qtpy/python-qtpy_1.0~b1-2.dsc


Successful build log on debomatic:


http://debomatic-amd64.debian.net/distribution#unstable/python-qtpy/1.0~b1-2/buildlog

Changes since the last upload:

  * Fix VCS fields.
  * Fix runtime error in packaging testsuite.

Regards,
Ghislain Vaillant

Bug#779509: rxvt-unicode: should recommend fonts-dejavu instead of transitional ttf-dejavu package

[Vincent Lefevre]

Control: found -1 9.21-1

This bug is still present. However I think that the right fix would
be remove the recommendation on the DejaVu font entirely. Indeed the
DejaVu font is not the only one providing good Unicode support, and
one should remember that users are not supposed to remove recommended
packages (or refuse their installation) unless they know what they
are doing.

-- 
Vincent Lefèvre  - Web: 
100% accessible validated (X)HTML - Blog: 
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)

Bug#814212: wikidiff2: FTBFS: cp: cannot stat 'modules/*': No such file or directory

[Jonathan Wiltshire]

Control: tag -1 unreproducible
Control: severity -1 important

Hi,

On Tue, Feb 09, 2016 at 09:58:51AM +0100, Chris Lamb wrote:
> wikidiff2 fails to build from source in unstable/amd64:
> 
>   [..]
> 
>fakeroot debian/rules binary
>   dh binary
>  dh_testroot
>  dh_prep
>  dh_installdirs
>  debian/rules override_dh_auto_install
>   make[1]: Entering directory 
> '/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f'
>   
> INSTALL_ROOT=/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/debian/php-wikidiff2
>  make install
>   make[2]: Entering directory 
> '/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f'
>   /bin/bash 
> /home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/libtool
>  --mode=compile g++  -I. 
> -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f 
> -DPHP_ATOM_INC 
> -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/include
>  
> -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/main
>  -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f 
> -I/usr/include/php5 -I/usr/include/php5/main -I/usr/include/php5/TSRM 
> -I/usr/include/php5/Zend -I/usr/include/php5/ext 
> -I/usr/include/php5/ext/date/lib  -Wdate-time -D_FORTIFY_SOURCE=2 
> -DHAVE_CONFIG_H  -Wno-write-strings -g -O2 -fstack-protector-strong -Wformat 
> -Werror=format-security -Wno-write-strings   -c 
> /home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/php_wikidiff2.cpp
>  -o php_wikidiff2.lo 
>   /bin/bash 
> /home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/libtool
>  --mode=compile g++  -I. 
> -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f 
> -DPHP_ATOM_INC 
> -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/include
>  
> -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/main
>  -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f 
> -I/usr/include/php5 -I/usr/include/php5/main -I/usr/include/php5/TSRM 
> -I/usr/include/php5/Zend -I/usr/include/php5/ext 
> -I/usr/include/php5/ext/date/lib  -Wdate-time -D_FORTIFY_SOURCE=2 
> -DHAVE_CONFIG_H  -Wno-write-strings -g -O2 -fstack-protector-strong -Wformat 
> -Werror=format-security -Wno-write-strings   -c 
> /home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/Wikidiff2.cpp
>  -o Wikidiff2.lo 
>   /bin/bash 
> /home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/libtool
>  --mode=compile g++  -I. 
> -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f 
> -DPHP_ATOM_INC 
> -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/include
>  
> -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/main
>  -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f 
> -I/usr/include/php5 -I/usr/include/php5/main -I/usr/include/php5/TSRM 
> -I/usr/include/php5/Zend -I/usr/include/php5/ext 
> -I/usr/include/php5/ext/date/lib  -Wdate-time -D_FORTIFY_SOURCE=2 
> -DHAVE_CONFIG_H  -Wno-write-strings -g -O2 -fstack-protector-strong -Wformat 
> -Werror=format-security -Wno-write-strings   -c 
> /home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/TableDiff.cpp
>  -o TableDiff.lo 
>   /bin/bash 
> /home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/libtool
>  --mode=compile g++  -I. 
> -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f 
> -DPHP_ATOM_INC 
> -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/include
>  
> -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/main
>  -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f 
> -I/usr/include/php5 -I/usr/include/php5/main -I/usr/include/php5/TSRM 
> -I/usr/include/php5/Zend -I/usr/include/php5/ext 
> -I/usr/include/php5/ext/date/lib  -Wdate-time -D_FORTIFY_SOURCE=2 
> -DHAVE_CONFIG_H  -Wno-write-strings -g -O2 -fstack-protector-strong -Wformat 
> -Werror=format-security -Wno-write-strings   -c 
> /home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/InlineDiff.cpp
>  -o InlineDiff.lo 
>   /bin/bash 
> /home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/libtool
>  --mode=link cc -DPHP_ATOM_INC 
> -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/include
>  
> -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f/main
>  -I/home/lamby/temp/cdt.20160209093555.dFyEsCBR1Y/wikidiff2-1.2+git03ea59f 
> -I/usr/include/php5 -I/usr/include/php5/main -I/usr/include/php5/TSRM 
> -I/usr/include/php5/Zend -I/usr/include/php5/ext 
> -I/usr/include/php5/ext/date/lib  -Wdate-time -D_FORTIFY_SOURCE=2 
> -DHAVE_CONFIG_H  -g -O2 -fstack-protector-strong -Wformat 
> -Werror=format-security  -Wl,-z,relro -o wikidiff2.la 

Bug#816037: Bug#816198: jessie-pu: package php-dompdf/0.6.1+dfsg-2

[Markus Frosch]

Hi Adam,
On 28.02.2016 18:29, Adam D. Barratt wrote:
> Well the RM's already been requested - see #816037. Could you please
> sort out between you what's happening, and let us know?

haven't seen that bug.

I decided to take over and ITA yesterday, so that was after David's request.

Since I still want to be the new maintainer, and just uploaded to unstable, I'd 
still prefer to keep.

Unless the release team opposes that :)

Cheers
Markus Frosch
-- 
mar...@lazyfrosch.de / lazyfro...@debian.org
http://www.lazyfrosch.de



signature.asc
Description: OpenPGP digital signature

Bug#815787: May be a kernel problem not a pulseaudio one?

[Cristian Ionescu-Idbohrn]

On Sat, 27 Feb 2016, Linus Torvalds wrote:
> On Sat, Feb 27, 2016 at 1:52 PM, Cristian Ionescu-Idbohrn
>  wrote:
> > Background: https://bugs.debian.org/815787
> >
> > "Until recently the Sound Blaster Live! card in my workstation
> > worked fine. Sometime recently it has stopped working."
> >
> > On Sat, 27 Feb 2016, Ben Hutchings wrote:
> >> On Sat, 2016-02-27 at 10:39 +0100, Cristian Ionescu-Idbohrn wrote:
> >> >
> >> > No mention of that in the changelog.
> >>
> >> Yes there is:
> >>
> >>   * [amd64] mm,nvdimm: Disable ZONE_DMA; enable ZONE_DEVICE, NVDIMM_PFN
> >> - This disables drivers for some AC'97 sound cards
> >
> > Alright, but not obvious to me.
> >
> > So, what is to do about that?
>
> If I read this right, this seems to be a Debian kernel configuration
> choice rather than anything else.
>
> Does it work if you just compile your own kernel?

Did that twice today.  Not there yet :( Looks like the bottom line is:

"Apparently there is some work under way to allow both ZONE_DEVICE
(needed for DAX) and ZONE_DMA (needed by the sound drivers) to be
supported in the same kernel configuration."

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=814855#37

and there may be some hope with:

http://www.spinics.net/lists/kernel/msg2170767.html

Is there, Linus?


-- 
Cristian

Bug#787663: aptitude forgets/clears manually set auto-installed-flags in several situations

[Manuel A. Fernandez Montecelo]

Control: tags -1 + moreinfo unreproducible


Hi,

2016-02-25 03:15 Christoph Anton Mitterer:

Control: reopen -1

Hey.

I just tried that with:
# aptitude --version
aptitude 0.7.6
Compiler: g++ 5.3.1 20160220
Compiled against:
  apt version 5.0.0
  NCurses version 6.0
  libsigc++ version: 2.6.2
  Gtk+ support disabled.
  Qt support disabled.

Current library versions:
  NCurses version: ncurses 6.0.20160213
  cwidget version: 0.5.17
  Apt version: 5.0.0

... and it still seems to happen.

I.e. I've upgraded kerberos, of which I've had e.g. krb5-k5tls marked
auto, though nothing depended/recommended/etc. it.

I've aborted at apt-listchanges, and then the auto flag was cleared.


I just tried to reproduce this with upgrading "less" (some packages
recommend it) and "install-info" (some packages depend on it) in curses,
with A flag set, but after proceeding to install but selecting "n" in
apt-listchanges and then back to aptitude curses, the packages are still
marked for upgrade and with A flag.

I tried the same with the command line, and with the same results -- no
removal of A flag.


On the other hand, if I understood correctly, if nothing depends on
krb5-k5tls on your system, you shouldn't have it marked as automatically
installed.  Perhaps aptitude or apt unmark it as autoinstalled if they
think that you want it installed while resolving the installation or
similar, because otherwise it would be removed from the system.

In fact, installing krb5-k5tls in my system and marking it as
automatically installed, aptitude attempts to remove it immediately --
which is the right thing to do.


Cheers.
--
Manuel A. Fernandez Montecelo 

Bug#816037: Bug#816198: jessie-pu: package php-dompdf/0.6.1+dfsg-2

[Adam D. Barratt]

Control: tags 816198 + moreinfo

On Sun, 2016-02-28 at 18:22 +0100, Markus Frosch wrote:
> Hey release team,
> I'd like to propose an update for jessie, that addresses 4 CVEs with
> php-dompdf.
> 
> Related package bug is #813849
> 
> Though php-dompdf is technically a leaf package, I'd prefer to ship a
> update over a RM of the package from stable.

Well the RM's already been requested - see #816037. Could you please
sort out between you what's happening, and let us know?

Regards,

Adam

Bug#815923: [drupal7] SA-CORE-2016-001 for drupal6 & drupal7

[Gunnar Wolf]

Gunnar Wolf dijo [Thu, Feb 25, 2016 at 03:54:04PM -0600]:
> Yes, I'm aware! For sure, I'll work on it!
> 
> I am overwhelmed by work. I'll try to work on it on Sunday, but if not
> possible, I will do it on Tuesday.
> 
> If somebody else can fill up for me meanwhile, NMUs are more than welcome.

Hi Ingo+world,

Just following up: I have done the patch and requested the security
team to allow me to upload this package; if you are in a hurry, you
can build locally the 'jessie' branch from git. The relevant commit is:

   
https://anonscm.debian.org/cgit/collab-maint/drupal7.git/commit/?h=jessie=5d08c10561ca66f6849f5d3f2b4ed0b585b8be40

Greetings,


signature.asc
Description: Digital signature

Bug#816173: [Pkg-lyx-devel] Bug#816173: lyx: Lyx failed to start if the $HOME/.lyx does not exist

[Sven Hoexter]

On Sun, Feb 28, 2016 at 11:42:52AM +0100, picca wrote:

Hi,

> while preparing my tango package, I need to build the documentation with lyx.

For future reference, here is the d-d thread:
https://lists.debian.org/debian-devel/2016/02/msg00454.html

> It seems that it is not allow to write outside the source directory except 
> /tmp during the build process.
> 
> I see at least two problems.
> 
> 1) lyx try to create a $HOME/.lyx even if $HOME does not exist
> 2) it would be great to avoir creating this .lyx directory by default.

While I agree that 1) is a bug 2) is a bit more complicated.
LyX is not really intended to be used this way, it's more or less
centered around the idea of an GUI use in a real user environment.
It's part of the whole configuration problem, kind of a dublicate of #397464.

Sven

Bug#816198: jessie-pu: package php-dompdf/0.6.1+dfsg-2

[Markus Frosch]

Package: release.debian.org
Severity: normal
Tags: jessie
User: release.debian@packages.debian.org
Usertags: pu

Hey release team,
I'd like to propose an update for jessie, that addresses 4 CVEs with
php-dompdf.

Related package bug is #813849

Though php-dompdf is technically a leaf package, I'd prefer to ship a
update over a RM of the package from stable.

Attached is a prepared debdiff of that update.

Please review and let me know if you need anything in addition.

-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (500, 'testing'), (200, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.4.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru php-dompdf-0.6.1+dfsg/debian/changelog php-dompdf-0.6.1+dfsg/debian/changelog
--- php-dompdf-0.6.1+dfsg/debian/changelog	2014-04-23 21:24:29.0 +0200
+++ php-dompdf-0.6.1+dfsg/debian/changelog	2016-02-27 15:51:54.0 +0100
@@ -1,3 +1,18 @@
+php-dompdf (0.6.1+dfsg-2+deb8u1) UNRELEASED; urgency=medium
+
+  * Non-maintainer upload.
+  * [22610bd] Add 0.6.2 hotfix patch (Closes: #813849)
+
+Fixes CVE:
+* CVE-2014-2383
+* CVE-2014-5011
+* CVE-2014-5012
+* CVE-2014-5013
+
+This update bundles CVE hotfixes from 0.6.2 upstream release.
+
+ -- Markus Frosch   Sat, 27 Feb 2016 15:48:10 +0100
+
 php-dompdf (0.6.1+dfsg-2) unstable; urgency=medium
 
   * Document security issue fixed in last upstream version, and upload to
diff -Nru php-dompdf-0.6.1+dfsg/debian/patches/0100-0.6.2-hotfix.patch php-dompdf-0.6.1+dfsg/debian/patches/0100-0.6.2-hotfix.patch
--- php-dompdf-0.6.1+dfsg/debian/patches/0100-0.6.2-hotfix.patch	1970-01-01 01:00:00.0 +0100
+++ php-dompdf-0.6.1+dfsg/debian/patches/0100-0.6.2-hotfix.patch	2016-02-27 15:47:52.0 +0100
@@ -0,0 +1,713 @@
+Description: Hotfix based on 0.6.2
+ This patch fixes:
+ * CVE-2014-2383
+ * CVE-2014-5011
+ * CVE-2014-5012
+ * CVE-2014-5013
+ .
+ The patch bundles code changes from 0.6.2
+Author: Brian Sweeney 
+Origin: upstream
+Applied-Upstream: 0.6.2
+Reviewed-by: Markus Frosch 
+Last-Update: 2016-02-27
+---
+This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
+--- a/dompdf.php
 b/dompdf.php
+@@ -130,6 +130,8 @@
+ $sapi = php_sapi_name();
+ $options = array();
+ 
++$dompdf = new DOMPDF();
++
+ switch ( $sapi ) {
+ 
+  case "cli":
+@@ -169,7 +171,7 @@
+ if ( $file === "-" )
+   $outfile = "dompdf_out.pdf";
+ else
+-  $outfile = str_ireplace(array(".html", ".htm", ".php"), "", $file) . ".pdf";
++  $outfile = str_ireplace(array(".html", ".htm"), "", $file) . ".pdf";
+   }
+ 
+   if ( isset($opts["v"]) )
+@@ -194,6 +196,8 @@
+ 
+  default:
+ 
++  $dompdf->set_option('enable_php', false);
++  
+   if ( isset($_GET["input_file"]) )
+ $file = rawurldecode($_GET["input_file"]);
+   else
+@@ -220,26 +224,12 @@
+   
+   $file_parts = explode_url($file);
+   
+-  /* Check to see if the input file is local and, if so, that the base path falls within that specified by DOMDPF_CHROOT */
+-  if(($file_parts['protocol'] == '' || $file_parts['protocol'] === 'file://')) {
+-$file = realpath($file);
+-if ( strpos($file, DOMPDF_CHROOT) !== 0 ) {
+-  throw new DOMPDF_Exception("Permission denied on $file. The file could not be found under the directory specified by DOMPDF_CHROOT.");
+-}
+-  }
+-  
+-  if($file_parts['protocol'] === 'php://') {
+-throw new DOMPDF_Exception("Permission denied on $file. This script does not allow PHP streams.");
+-  }
+-  
+   $outfile = "dompdf_out.pdf"; # Don't allow them to set the output file
+   $save_file = false; # Don't save the file
+   
+   break;
+ }
+ 
+-$dompdf = new DOMPDF();
+-
+ if ( $file === "-" ) {
+   $str = "";
+   while ( !feof(STDIN) )
+--- a/dompdf_config.custom.inc.php
 b/dompdf_config.custom.inc.php
+@@ -1,6 +1,7 @@
+-https://github.com/dompdf/dompdf/wiki
++ */
++//define("DOMPDF_CHROOT", DOMPDF_DIR);
++//define("DOMPDF_ENABLE_PHP", false);
++//define("DOMPDF_ENABLE_REMOTE", false);
+--- a/include/abstract_renderer.cls.php
 b/include/abstract_renderer.cls.php
+@@ -100,7 +100,7 @@
+ //Therefore read dimension directly from file, instead of creating gd object first.
+ //$img_w = imagesx($src); $img_h = imagesy($src);
+ 
+-list($img_w, $img_h) = dompdf_getimagesize($img);
++list($img_w, $img_h) = dompdf_getimagesize($img, $this->_dompdf->get_http_context());
+ if (!isset($img_w) || $img_w == 0 || !isset($img_h) || $img_h == 0) {
+   return;
+ }
+--- a/include/cpdf_adapter.cls.php
 b/include/cpdf_adapter.cls.php
+@@ -604,7 +604,7 @@
+   }
+ 
+   function image($img, $x, $y, $w, $h, $resolution = "normal") {
+-list($width, $height, $type) = dompdf_getimagesize($img);
++

Bug#816197: backintime-common: Missing translations

[mechtilde]

Package: backintime-common
Version: 1.1.12-1
Severity: normal
Tags: l10n

While using this programms in German I missed some translations. Looking into
the source (de.po) I can't find the strings there.

Here some examples.

Cancel
Data Modified
Size

and so on.

If they are in the *.po file I will translate them to German.

Regards

Mechtilde



-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (400, 'testing'), (300, 'unstable'), (200, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.3.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages backintime-common depends on:
ii  cron [cron-daemon]  3.0pl1-128
ii  openssh-client  1:7.1p2-2
ii  python3-dbus1.2.0-3
ii  python3-keyring 7.3-1
pn  python3:any 
ii  rsync   3.1.1-3

Versions of packages backintime-common recommends:
ii  backintime-qt4  1.1.12-1

Versions of packages backintime-common suggests:
pn  encfs   
pn  powermgmt-base  
pn  sshfs   

-- no debconf information

Bug#816193: hugin: seems to depend on libvigraimpex6

[Andreas Metzler]

Control: retitle 814574 hugin: fails to start (error while loading shared 
libraries: libvigraimpex.so.6)
Control: tags 814574 sid
Control: forcemerge -1 814574

On 2016-02-28 Alexander Bürger  wrote:
> Package: hugin
> Version: 2015.0.0+dfsg-1+b1
> Severity: important

> Dear Maintainer,

> if I start hugin I get the error message

> hugin: error while loading shared libraries: libvigraimpex.so.6: cannot open 
> shared object file: No such file or directory

> Installing libvigraimpex6 solves the problem, so maybe the hugin package 
> should depend on this library? ldd does not mention libvigraimpex5, so 
> the package does not seem to depend on libvigraimpex5v5.
[...]

This is the same issue as . Now vigra
has been fixed in sid (packagename reflects soname) but the reverse
dependencies have not yet been rebuilt because vigra is still broken on
many architectures.

Right now libvigraimpex5v5 from testing and hugin from experimental will
work, tomorrow the new hugin upload in experimental will depend on
libvigraimpex6.

cu Andreas
-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'

Bug#816196: extlinux should be replaced by grub2

[Vincent Bernat]

Package: openstack-debian-images
Version: 1.3~deb8u1
Severity: normal

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Hi Thomas!

Using extlinux is a bit a pain. First, when installing a new kernel,
there is no new entry created in /boot/extlinux/extlinux.conf for this
kernel.

Moreover, modifying this file seems to have no effect on
extlinux. Running "extlinux --update /", "extlinux --update /boot"
doesn't change anything. Running "extlinux --update /boot/extlinux"
will break the boot with "Loading boot/vmlinuz-3.16.0-4-amd64 failed:
No such file or directory" (in a tight loop, the machine is just lost
at this point). I didn't try to use "/boot/vmlinuz-3.16.0-4-amd64"
instead of "boot/vmlinuz-3.16.0-4-amd64".

It would be quite easier (for the user, maybe not for you) if grub2
was used instead.

- -- System Information:
Debian Release: stretch/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (101, 
'experimental-debug'), (101, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.4.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

-BEGIN PGP SIGNATURE-
Version: GnuPG v1
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=7liW
-END PGP SIGNATURE-

Bug#816194: [Pkg-javascript-devel] Bug#816194: RFP: node-covert -- code coverage command for javascript

[Ross Gammon]

Dependencies:
NPM   Debian
covert (1.1.0)None
├─ browserify (^10.0.0)   None
├─ coverify (^1.3.2)  None
├─ minimist (^1.0.0)  None
├─ parents (^1.0.0)   None
└─ resolve (~0.7.4)   node-resolve (0.3.1-1)



signature.asc
Description: OpenPGP digital signature

Bug#816195: RFP: node-jscs -- JavaScript Code Style

[Ross Gammon]

Package: wnpp
Severity: wishlist

* Package name: node-jscs
  Version : 2.10.1
  Upstream Author : Marat Dulin  (https://github.com/jscs-
dev/node-jscs/graphs/contributors)
* URL : http://jscs.info
* License : Expat
  Programming Lang: JavaScript
  Description : JavaScript Code Style

 SCS is a code style linter/formatter for programmatically enforcing your
 style guide. You can configure JSCS for your project/company using over 150
 validation rules, including presets from popular style guides like jQuery,
 Airbnb, Google, and more.
 .
 Node.js is an event-based server-side JavaScript engine.

Dependencies:
NPM   Debian
jscs (2.10.1) None
├─ babel-jscs (^2.0.0)None
├─ chalk (~1.1.0) None
├─ cli-table (~0.3.1) None
├─ commander (~2.9.0) node-commander (2.4.0-1)
├─ escope (^3.2.0)None
├─ esprima (~2.7.0)   None
├─ estraverse (^4.1.0)None
├─ exit (~0.1.2)  None
├─ glob (^5.0.1)  node-glob (4.0.5-1)
├─ htmlparser2 (3.8.3)node-htmlparser2
(3.7.3-1)
├─ js-yaml (~3.4.0)   None
├─ jscs-jsdoc (^1.3.1)None
├─ jscs-preset-wikimedia (~1.0.0) None
├─ jsonlint (~1.6.2)  None
├─ lodash (~3.10.0)   node-lodash
(2.4.1+dfsg-3)
├─ minimatch (~3.0.0) node-minimatch (1.0.0-1)
├─ natural-compare (~1.2.2)   None
├─ pathval (~0.1.1)   None
├─ prompt (~0.2.14)   None
├─ reserved-words (^0.1.1)None
├─ resolve (^1.1.6)   node-resolve (0.3.1-1)
├─ strip-bom (^2.0.0) None
├─ strip-json-comments (~1.0.2)   None
├─ to-double-quotes (^2.0.0)  None
├─ to-single-quotes (^2.0.0)  None
├─ vow (~0.4.8)   None
├─ vow-fs (~0.3.4)None
└─ xmlbuilder (^3.1.0)None

Build dependencies:
NPM   Debian
browserify (^12.0.0)  None
chai (^3.3.0) None
coveralls (~2.11.2)   None
has-ansi (~2.0.0) None
jshint (~2.8.0)   None
mocha (^2.2.0)node-mocha (1.20.1-1)
regenerate (~1.2.1)   None
rewire (^2.3.1)   None
sinon (^1.13.0)   None
sinon-chai (^2.8.0)   None
unicode-7.0.0 (~0.1.5)None
unit-coverage (^4.0.1)None
xml2js (~0.4.4)   node-xml2js (0.2.8-1)

Node-jscs is probably best maintained in the Debian Javascript Team.

Bug#814263: suricata: Please, provide backports version

[Eriberto]

Hi Arturo,

I tryed to review your package now. However, the upstream tarball
differs in Sid and BPO. See:

# debdiff suricata_3.0-1.dsc suricata_3.0-1~bpo8+1.dsc
dpkg-source: error: file /tmp/suricata/suricata_3.0.orig.tar.gz has
size 3140517 instead of expected 3293102

# cat suricata_3.0-1~bpo8+1.dsc suricata_3.0-1.dsc | grep
suricata_3.0.orig.tar.gz
 588e565303960745bcfbe71e6063f077b5da164c 3140517 suricata_3.0.orig.tar.gz
 66996a87230eeec73954cdea5735dfbe6ca6486d6ac86f6f183abcc7da95f1fd
3140517 suricata_3.0.orig.tar.gz
 37e61519d7781652e7382409139d7ffd 3140517 suricata_3.0.orig.tar.gz
 91a4df0235e6088e47f92472599007b40d7b4f90 3293102 suricata_3.0.orig.tar.gz
 4b8feb398a0800c955fe24aa31ca446c539e79492155717e826473f902c8e65a
3293102 suricata_3.0.orig.tar.gz
 a964af69263592c625b56f72d49e8d24 3293102 suricata_3.0.orig.tar.gz

I am available to upload this package quickly.

Regards,

Eriberto


2016-02-25 8:50 GMT-03:00 Eriberto :
> Hi Arturo,
>
> Yes, I can upload the package. However, I think that Hilko already
> doing it. Feel free to contact me if needed.
>
> Thanks for your work.
>
> Cheers,
>
> Eriberto
>
>
> 2016-02-25 5:30 GMT-03:00 Arturo Borrero Gonzalez
> :
>> On 16 February 2016 at 10:42, Arturo Borrero Gonzalez
>>  wrote:
>>> @Pierre,
>>>
>>> I tried to upload to backports myself, but given it's the first
>>> backport for this stable release, it needs to go to NEW.
>>>
>>> Could you please sponsor the upload? The package is waiting in mentors.d.n 
>>> [0].
>>>
>> @Eriberto,
>>
>> it seems Pierre isn't available by now. Could you please sponsor the upload?
>>
>> Thanks.
>>
>> --
>> Arturo Borrero González

Bug#816194: RFP: node-covert -- code coverage command for javascript

[Ross Gammon]

Package: wnpp
Severity: wishlist

* Package name: node-covert
  Version : 1.1.0
  Upstream Author : James Halliday  (http://substack.net)
* URL : https://github.com/substack/covert
* License : Expat
  Programming Lang: JavaScript
  Description : code coverage command for javascript

 Most code coverage libraries do weird things I don't like, such as writing
 all their junk to directories and files in a completely out-of-band way.

 Covert only uses stderr and stdout, and doesn't write to any files. It
 bundles with browserify --bare and a transform instead of hijacking
 require(). All the reporting goes through a unix pipeline on process.stdin
 and process.stdout. It works really well with simple unix pipelines.
 .
 Node.js is an event-based server-side JavaScript engine.

Node-covert is needed for several node packages and would be best maintained
within the Debian Javascript Team.

Bug#816132: systemd-networkd: Tunnel setup for sit-type tunnel fails

[Sven Hartge]

Um 21:43 Uhr am 27.02.16 schrieb Sven Hartge:
> Um 20:52 Uhr am 27.02.16 schrieb Michael Biebl:
 
>> Would be great if you can report this issue directly upstream at
>> https://github.com/systemd/sytemd/issues
>> and report back with the bug number.
 
> https://github.com/systemd/systemd/issues/2758

This is a duplicate of https://github.com/systemd/systemd/issues/2655 and 
has been fixed by https://github.com/systemd/systemd/pull/2692 

https://github.com/ssahani/systemd/commit/07dcb085893a2fe212b7e158028725876d2ab98f

Grüße,
Sven.

Bug#816096: initramfs-tools: Error reporting false missing dependancy on busybox

[Ben Hutchings]

On Sun, 2016-02-28 at 14:28 +0100, Reto Schoch wrote:
> On Sun, 28 Feb 2016 12:41:03 + Ben Hutchings 
> wrote:
> > On Sun, 2016-02-28 at 12:47 +0100, Christophe wrote:
> > > - Ben Hutchings  a écrit :
> > > > 
> > > > On Sat, 2016-02-27 at 13:04 +0100, Christophe wrote:
> > > > > Package: initramfs-tools
> > > > > Version: 0.123
> > > > > Severity: important
> > > > > 
> > > > > [...]
> > > > > 
> > > > > Let me know if there is some info you'd need to debug the issue.
> > > > 
> > > > I wonder if busybox got upgraded too late. Â Is this reproducible if
> you
> > > > run 'update-initramfs -u' now?
> > > > 
> > > > Ben.
> > > 
> > > Hi Ben,
> > > 
> > > Unfortunately running this command still gives me the error.
> > > Out of curiosity I have started some investigations, and the message
> comes from the script "mkinitramfs" from this check:
> > > 
> > > if [ "${BUSYBOX}" = "y" ] && [ -z "${BUSYBOXDIR}" ]; then
> > > 
> > > I have seen this:
> > > Â - BUSYBOX is properly set to "y" from
> /etc/initramfs-tools/initramfs.conf
> > > Â - BUSYBOXDIR, however, is prepared empty at the beginning of
> mkinitramfs, but never given a value afterwards... Any idea how it is
> supposed to be defined?
> > 
> > It's done by /usr/share/initramfs-tools/conf-hooks.d/busybox, which is
> > installed by busybox. Â Does that file exist?
> > 
> > You originally said:
> > 
> > > This is strange because I seem to have this:
> > >   busybox => 1:1.22.0-18
> > >   busybox-static => 1:1.22.0-18
> > 
> > That's impossible because these packages conflict with each other.
> > 
> > What does "debsums busybox busybox-static" report? Â (You might need to
> > install the debsums package.)
> > 
> > Ben.
> > 
> > --
> > Ben Hutchings
> > Knowledge is power.  France is bacon.
> 
> Hi Ben
> 
> I have the same error message. Running 'update-initramfs -u' gives the
> following error message:
> 
> update-initramfs: Generating /boot/initrd.img-4.3.0-1-686-pae
> E: busybox or busybox-static, version 1:1.22.0-17~ or later, is required
> but not installed
> update-initramfs: failed for /boot/initrd.img-4.3.0-1-686-pae with 1.
> 
> It looks like the new version of initramfs-tools treats busybox as
> "depends" while it should only be "recommends".
> 
> Can you confirm?

This is explained in the NEWS file.

Ben.

-- 
Ben Hutchings
Knowledge is power.  France is bacon.

signature.asc
Description: This is a digitally signed message part

Bug#816193: hugin: seems to depend on libvigraimpex6

[Alexander Bürger]

Package: hugin
Version: 2015.0.0+dfsg-1+b1
Severity: important

Dear Maintainer,

if I start hugin I get the error message

hugin: error while loading shared libraries: libvigraimpex.so.6: cannot open 
shared object file: No such file or directory

Installing libvigraimpex6 solves the problem, so maybe the hugin package 
should depend on this library? ldd does not mention libvigraimpex5, so 
the package does not seem to depend on libvigraimpex5v5.

Best wishes,

Alexander


-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (900, 'testing'), (450, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.4.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_DK.utf8, LC_CTYPE=en_DK.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages hugin depends on:
ii  enblend   4.1.4+dfsg-4
ii  enfuse4.1.4+dfsg-4
ii  hugin-tools   2015.0.0+dfsg-1+b1
ii  libc6 2.21-9
ii  libexiv2-14   0.25-2.1
ii  libfftw3-double3  3.3.4-2
ii  libgcc1   1:5.3.1-8
ii  libgl1-mesa-glx [libgl1]  11.1.2-1
ii  libglew1.13   1.13.0-2
ii  libglu1-mesa [libglu1]9.0.0-2.1
ii  libgomp1  5.3.1-8
ii  libimage-exiftool-perl10.11-1
ii  libpano13-3   2.9.19+dfsg-2
ii  libsqlite3-0  3.10.2-1
ii  libstdc++65.3.1-8
ii  libtiff5  4.0.6-1
ii  libvigraimpex5v5  1.10.0+dfsg-11
ii  libwxbase3.0-0v5  3.0.2+dfsg-1.3
ii  libwxgtk3.0-0v5   3.0.2+dfsg-1.3
ii  make  4.1-6

hugin recommends no packages.

hugin suggests no packages.

-- no debconf information

Bug#812108: problem upgrading from offlineimap 6.3.4 to 6.6.1

[Ilias Tsitsimpis]

Control: tags -1 + patch

Hi François, Nicolas,

On Fri, Jan 22, 2016 at 03:03PM, franc...@avalenn.eu wrote:
> On Wed, Jan 20, 2016 at 05:44:24PM +0100, Nicolas Sebrecht wrote:
> > On Wed, Jan 20, 2016 at 01:56:24PM +0100, franc...@avalenn.eu wrote:
>  
> > > I think that the problem comes from the use of nametrans in
> > > visiblename for Maildir folder (commit
> > > 6b2ec956cfe8e356d3ffd54eee34773deb73279f) because it lead to change
> > > the FMD5 part of the filename.
> > 
> > Looks sensible. This is a change introduced in the late 2011 and I don't
> > remember everything from this time. I don't recall having to either
> > use/provide any script for updates nor having the troubles you get.

Thanks for describing the problem in detail.

I, too, believe that this is a regression introduced by the above
commit. Since OfflineIMAP on Debian stable is at version 6.3.4, more
people are going to upgrade and face the above bug. Thus, I am
interested in finding an easy way to resolve this.

> > > I would like a way for offlineimap to either upgrade concerned
> > > Maildirs on the fly or to have a way to ensure that proper manual
> > > actions are done before using it. As offlineimap is often used in
> > > crontabs this must be done during upgrade of package.
> > 
> > I wonder if the big step foward from v6.3.4 to 6.6.1 (more than 4 years
> > of development) could be the cause. Since it's a long time between
> > releases, I wonder if temporary code to help moving forward could have
> > been introduced and then removed within this gap.

I couldn't find such a code in the history. It seems weird that nobody
complained so far.

> Indeed it is possible.
> 
> I think that a workaround should be included in Debian packaging in
> order for the upgrade to be the best experience possible. This
> workaround could be a simple flag blocking any run of offlineimap and
> this flag to be cleared by the user after reading the NEWS file.

I have created a patch that hopefully will help here[1]. My plan is to
include this to the next OfflineIMAP version in Debian, and state at the
NEWS file that everyone who is upgrading from v6.3.4 should run

$ offlineimap --verify-fmd5 || offlineimap --fix-fmd5

before the first use of the newer version.

Could you review this, and/or verify that this is working correctly?

@nicolas: Do you believe this should be included in the mainline
OfflineIMAP repository (i.e., do you believe this has any other use
other than upgrading from v6.3.4)?

Cheers,
Ilias

[1] https://github.com/iliastsi/offlineimap/commit/8d07ec308e83665

Bug#816192: RFS: python-proselint/0.3.5-1 [ITP] -- A prose linter

[Víctor Cuadrado Juan]

Package: sponsorship-requests
Severity: wishlist

Dear mentors,

I am looking for a sponsor for my package "python-proselint"

* Package name: python-proselint
Version : 0.3.5-1
Upstream Author : Amperser Labs
* URL : http://proselint.com
* License : BSD-3-Clause
* Section : python

It builds those binary packages:

python-proselint - Command-line prose linter utility (Python 2)
python3-proselint - Command-line prose linter utility (Python 3)

To access further information about this package, please visit the following 
URL:

http://mentors.debian.net/package/python-proselint


Alternatively, one can download the package with dget using this command:

dget -x 
http://mentors.debian.net/debian/pool/main/p/python-proselint/python-proselint_0.3.5-1.dsc


Proselint aggregates knowledge about best practices in writing from world's
greatest writers and editors, and makes it accessible by giving suggestions in
the form of a linter for prose.

More information about proselint can be obtained from http://proselint.com.


Cheers and thanks,
-- 
Víctor Cuadrado juan

E-Mail: , OpenPGP-Key-ID: 0xA2591E231E251F36
Key fingerprint: E3C5 114C 0C5B 4C49 BA03  0991 A259 1E23 1E25 1F36
My signed E-Mails are trustworthy.


signature.asc
Description: PGP signature

Bug#766809: spurious library link

[Marco d'Itri]

I uploaded a NMU with this patch to DELAYED-7.
Shipping a .so.0 link in /usr/lib/ is a violation of Policy 8.1.

-- 
ciao,
Marco
diff -Nru libpng-1.2.54/debian/changelog libpng-1.2.54/debian/changelog
--- libpng-1.2.54/debian/changelog	2016-02-17 10:57:35.0 +0100
+++ libpng-1.2.54/debian/changelog	2016-02-28 15:56:13.0 +0100
@@ -1,3 +1,10 @@
+libpng (1.2.54-3.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Drop spurious library link. (Closes: #766809)
+
+ -- Marco d'Itri   Sun, 28 Feb 2016 15:56:10 +0100
+
 libpng (1.2.54-3) unstable; urgency=medium
 
   * Revert the changes in 1.2.54-2.
diff -Nru libpng-1.2.54/debian/libpng12-0.links libpng-1.2.54/debian/libpng12-0.links
--- libpng-1.2.54/debian/libpng12-0.links	2015-11-18 18:38:40.0 +0100
+++ libpng-1.2.54/debian/libpng12-0.links	1970-01-01 01:00:00.0 +0100
@@ -1 +0,0 @@
-/lib/x86_64-linux-gnu/libpng12.so.0 /usr/lib/x86_64-linux-gnu/libpng12.so.0
diff -Nru libpng-1.2.54/debian/libpng12-0.links.in libpng-1.2.54/debian/libpng12-0.links.in
--- libpng-1.2.54/debian/libpng12-0.links.in	2015-11-18 18:20:30.0 +0100
+++ libpng-1.2.54/debian/libpng12-0.links.in	1970-01-01 01:00:00.0 +0100
@@ -1 +0,0 @@
-/lib/${DEB_HOST_MULTIARCH}/libpng12.so.0 /usr/lib/${DEB_HOST_MULTIARCH}/libpng12.so.0
diff -Nru libpng-1.2.54/debian/libpng12-dev.install libpng-1.2.54/debian/libpng12-dev.install
--- libpng-1.2.54/debian/libpng12-dev.install	2015-11-18 18:20:30.0 +0100
+++ libpng-1.2.54/debian/libpng12-dev.install	2016-02-28 16:38:42.0 +0100
@@ -2,5 +2,4 @@
 usr/lib/*/pkgconfig
 usr/lib/*/libpng.a
 usr/lib/*/libpng12.a
-usr/lib/*/libpng.so
 usr/bin
diff -Nru libpng-1.2.54/debian/libpng12-dev.links.in libpng-1.2.54/debian/libpng12-dev.links.in
--- libpng-1.2.54/debian/libpng12-dev.links.in	2015-11-18 18:20:30.0 +0100
+++ libpng-1.2.54/debian/libpng12-dev.links.in	2016-02-28 16:39:11.0 +0100
@@ -1,3 +1,4 @@
 /usr/share/man/man1/libpng12-config.1.gz /usr/share/man/man1/libpng-config.1.gz
 /usr/include/libpng12 /usr/include/libpng
-/usr/lib/${DEB_HOST_MULTIARCH}/libpng12.so.0 /usr/lib/${DEB_HOST_MULTIARCH}/libpng12.so
+/lib/${DEB_HOST_MULTIARCH}/libpng12.so.0 /usr/lib/${DEB_HOST_MULTIARCH}/libpng12.so
+/lib/${DEB_HOST_MULTIARCH}/libpng12.so.0 /usr/lib/${DEB_HOST_MULTIARCH}/libpng.so
diff -Nru libpng-1.2.54/debian/rules libpng-1.2.54/debian/rules
--- libpng-1.2.54/debian/rules	2015-11-18 18:20:30.0 +0100
+++ libpng-1.2.54/debian/rules	2016-02-28 16:01:45.0 +0100
@@ -46,7 +46,7 @@
 	dh_testdir
 	dh_testroot
 	dh_prep
-	set -e; for file in libpng12-0.install libpng12-0.links libpng12-dev.links libpng3.links; \
+	set -e; for file in libpng12-0.install libpng12-dev.links libpng3.links; \
 	do \
 		sed -e"s,\$${DEB_HOST_MULTIARCH},${DEB_HOST_MULTIARCH},g" \
 			debian/$${file}.in > debian/$$file; \


signature.asc
Description: PGP signature

Bug#805492: /var/lib

[Laurent Bigonville]

Le 28/02/16 11:05, Russell Coker a écrit :

the easiest would be to do like fedora and install the modules directly in
the /var/lib/selinux//100 store instead of copying/loading them at
installation time

Do you mean having files in the package under /var/lib?  If so that seems like
a FHS violation.  Why not just keep them under /usr/share/selinux and symlink
them?

There are a lot of packages that ships files in /var/lib.

Are you sure you are not thinking about /var/run?

Bug#816191: RFS: node-function-bind/1.1.0-1 [RFP]

[Ross Gammon]

Package: sponsorship-requests
Severity: wishlist

Dear mentors,

I am looking for a sponsor for my package "node-function-bind"

* Package name: node-function-bind
  Version : 1.1.0-1
  Upstream Author : Jake Verbaten 
* URL : https://github.com/Raynos/function-bind
* License : Expat
  Section : web

It builds this binary package:

node-function-bind - Implementation of Function.prototype.bind

To access further information about this package, please visit the following
URL:

  http://mentors.debian.net/package/node-function-bind


Alternatively, one can download the package with dget using this command:

dget -x http://mentors.debian.net/debian/pool/main/n/node-function-bind
/node-function-bind_1.1.0-1.dsc

Debian packaging can be found here:
http://anonscm.debian.org/cgit/pkg-javascript/node-function-bind.git/

Changes since the last upload:

  * Initial release (Closes: #814281)


Regards,
Ross Gammon



-- System Information:
Debian Release: 8.3
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#759452: NMU

[Hilko Bengen]

After verifying that with Helmut's fix the package builds fine on amd64
and arm64, I have just uploaded 1.03-3.1 to DELAYED/5. Here's the
.debian.tar.xz -- feel free to reschedule or cancel my upload as you see
fit.

Cheers,
-Hilko


lzop_1.03-3.1.debian.tar.xz
Description: application/xz

Bug#816186: startpar: fix cross-build

[Helmut Grohne]

Control: tags -1 + patch

Hi Samuel,

On Sun, Feb 28, 2016 at 03:04:23PM +0100, Samuel Thibault wrote:
> startpar can be fixed to cross-build fine, please see attached patch
> which defines CC as appropriate.

Your patch has two little problems.
 * It relies on building under dpkg-buildpackage. Policy still allows
   building by invoking ./debian/rules directly and then
   DEB_HOST_GNU_TYPE may be unset.
 * Your patch unconditionally overwrites CC and thus breaks e.g.
   CC=clang dpkg-buildpackage. Note that since CC has a built-in
   default, CC ?= ... cannot be used.

I am attaching an updated version that addresses both issues.

Helmut
diff --minimal -Nru startpar-0.59/debian/rules startpar-0.59/debian/rules
--- startpar-0.59/debian/rules
+++ startpar-0.59/debian/rules
@@ -7,14 +7,19 @@
 LDFLAGS:=$(shell dpkg-buildflags --get LDFLAGS)
 
 DEB_HOST_ARCH_OS?= $(shell dpkg-architecture -qDEB_HOST_ARCH_OS)
+DEB_HOST_GNU_TYPE   ?= $(shell dpkg-architecture -qDEB_HOST_GNU_TYPE)
+
+ifeq ($(origin CC),default)
+CC := $(DEB_HOST_GNU_TYPE)-gcc
+endif
 
 %:
 	dh $@
 
 override_dh_auto_build:
-	$(MAKE) EXTRACPPFLAGS="$(CPPFLAGS)" EXTRACFLAGS="$(CFLAGS)" EXTRALDFLAGS="$(LDFLAGS)" $(CROSS) startpar check
+	$(MAKE) EXTRACPPFLAGS="$(CPPFLAGS)" EXTRACFLAGS="$(CFLAGS)" EXTRALDFLAGS="$(LDFLAGS)" CC=$(CC) startpar check
 ifeq ($(DEB_HOST_ARCH_OS),linux)
-	$(MAKE) EXTRACPPFLAGS="$(CPPFLAGS)" EXTRACFLAGS="$(CFLAGS)" EXTRALDFLAGS="$(LDFLAGS)" $(CROSS) startpar-upstart-inject
+	$(MAKE) EXTRACPPFLAGS="$(CPPFLAGS)" EXTRACFLAGS="$(CFLAGS)" EXTRALDFLAGS="$(LDFLAGS)" CC=$(CC) startpar-upstart-inject
 endif
 
 override_dh_auto_install-arch:

Bug#813237: transition: ruby2.3

[Antonio Terceiro]

Hi,

On Fri, Feb 26, 2016 at 04:27:09PM +0100, Emilio Pozuelo Monfort wrote:
> On 26/02/16 00:47, Antonio Terceiro wrote:
> > Some of the failures above have already been fixed. Please binNMU the
> > following packages:
> 
> Scheduled.

Thanks. All of the builds seem to have finished, but for some reason the
transtion page still lists several of the packages in an "unknown"
state, even though the rebuilt packages are already in the archive for a
while. Any idea why is that?

The next round of binNMUs is:

hyperestraier
remctl
ruby-dep-selector
ruby-fftw3
ruby-gherkin
ruby-github-markdown
ruby-gnome2
ruby-grib
ruby-hdfeos5
ruby-hpricot
ruby-http-parser.rb
ruby-lapack
ruby-mpi
ruby-msgpack
ruby-multibitnums
ruby-netcdf
ruby-nokogumbo
ruby-password
ruby-raindrops
ruby-rpam-ruby19
ruby-sqlite3
thin


signature.asc
Description: PGP signature

Bug#816023: jessie-pu: package glibc/2.19-18+deb8u4

[Aurelien Jarno]

On 2016-02-26 21:17, Adam D. Barratt wrote:
> Control: tags -1 + confirmed
> 
> On Fri, 2016-02-26 at 19:34 +0100, Aurelien Jarno wrote:
> > I would like to do an upload of glibc in jessie to fix a longstanding
> > security issue with the pt_chown helper (CVE-2013-2207).
> [...]
> > I would therefore like to get this issue also fixed in jessie. I am
> > confident this patch will not break any system, that said it's probably
> > better to leave the package in jessie-proposed-updates for a few weeks
> > and call for testing.
> 
> Please go ahead.

Thanks, I have just uploaded it.

Aurelien

-- 
Aurelien Jarno  GPG: 4096R/1DDD8C9B
aurel...@aurel32.net http://www.aurel32.net

Bug#816190: ntopng: CVE-2015-8368

[Salvatore Bonaccorso]

Source: ntopng
Version: 2.0+dfsg1-1
Severity: grave
Tags: security upstream patch fixed-upstream

Hi,

the following vulnerability was published for ntopng.

CVE-2015-8368[0]:
| ntopng (aka ntop) before 2.2 allows remote authenticated users to
| change the login context and gain privileges via the user cookie and
| username parameter to admin/password_reset.lua.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2015-8368
[1] https://www.exploit-db.com/exploits/38836/
[2] 
https://github.com/ntop/ntopng/commit/2e0620be3410f5e22c9aa47e261bc5a12be692c6

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Bug#812546: rss2email: body-width=0 has no effect

[Don Wooton]

Please also consider adding
_html2text.config.WRAP_LINKS = False

- Don

Bug#816189: mitmproxy: examples missing since switch from cdbs to debhelper

[Edward Betts]

Package: mitmproxy
Version: 0.15-1
Severity: normal
Tags: patch

I spotted that /usr/share/doc/mitmproxy/examples is empty.

Looking at the git repo, it seems if I build the commit just before the switch
to debhelper (commit 3ca5b2809f6bb1828858303140d8fe1950a7caf7) then the
examples are included.

The CONTRIBUTORS file was appears in /usr/share/doc/mitmproxy before the change.

This problem can be solved by including a debian/docs file with this contents:

CONTRIBUTORS
examples

-- 
Edward.

Bug#815791: RFS: gtranscribe/0.3-1 [ITP] -- simple GTK+ tool focussed on easy transcription of spoken words

[Paul Wise]

On Sat, Feb 27, 2016 at 8:16 PM, Philip Rinn wrote:

> Both points are addressed now and updated packaging is uploaded:
> http://mentors.debian.net/package/gtranscribe

I had a play with the app and love the simplicity, very useful for
transcription of single-speaker audio.

I have done a review of the package and am willing to upload if these
two issues are fixed:

The play/pause button doesn't appear to work for me.

I can fairly consistently get it to segfault in Python using this
sequence of events: open a short ogg file, press play, press faster,
crash.

If you want to fix some other things at the same time:

It isn't clear to me what the resume interval is for, does it resume
playing after you press pause for a catch-up break?

I think it would be useful to have speeds less than 0.5 for the slower
typists amongst us.

Starting the app prints this on the terminal:

(gtranscribe:24209): Gtk-CRITICAL **: gtk_widget_grab_default:
assertion 'gtk_widget_get_can_default (widget)' failed

Typing two spaces in a row prints this on the terminal:

** (gtranscribe:27472): CRITICAL **: enchant_dict_check: assertion 'len' failed

With no audio loaded, pressing play/forward/rewind prints this on the terminal:

Traceback (most recent call last):
  File "/usr/bin/gtranscribe", line 286, in play_loop
self.set_position_label(duration)
  File "/usr/bin/gtranscribe", line 293, in set_position_label
frac = float(self.position) / float(duration)
ZeroDivisionError: float division by zero

With no audio loaded, pressing slower/faster prints this on the terminal:

Traceback (most recent call last):
  File "/usr/bin/gtranscribe", line 331, in on_scale_speed_value_changed
fileinfo = FileInfo(self.player.filename, self.md5)
AttributeError: 'gTranscribeWindow' object has no attribute 'md5'

With no audio loaded, pressing pause prints this on the terminal:

Traceback (most recent call last):
  File "/usr/bin/gtranscribe", line 263, in play
self._set_update_ui(False)
  File "/usr/bin/gtranscribe", line 150, in _set_update_ui
self.play_loop()
  File "/usr/bin/gtranscribe", line 286, in play_loop
self.set_position_label(duration)
  File "/usr/bin/gtranscribe", line 293, in set_position_label
frac = float(self.position) / float(duration)
ZeroDivisionError: float division by zero

Please add some upstream metadata: https://wiki.debian.org/UpstreamMetadata

You might want to add some AppStream metadata: https://wiki.debian.org/AppStream

It would be great if you could sign your upstream releases with OpenPG
and add the needed things to have uscan automatically verify upstream
tarballs.

https://wiki.debian.org/debian/watch#Cryptographic_signature_verification

Some best practices for OpenPGP you might want to read:

https://help.riseup.net/en/security/message-security/openpgp/best-practices

Your debian/rules seems overly complex, are all the overrides needed?

You might want to use wrap-and-sort to make diffs of the Debian
packaging easier to read. My favourite command-line for this is:

wrap-and-sort --short-indent --wrap-always --sort-binary-packages
--trailing-comma

Automated checks:

build:

WARNING: the following files are not recognized by DistUtilsExtra.auto:
  gpl-3.0.txt
  lgpl-2.1.txt

lintian:

P: gtranscribe source: debian-watch-may-check-gpg-signature
P: gtranscribe: no-upstream-changelog

check-all-the-things:

$ cme check dpkg
Warning in 'control source Build-Depends:4' value
'python3-distutils-extra (>= 2.22)': unnecessary versioned dependency:
python3-distutils-extra >= 2.22. Debian has wheezy -> 2.36-1;
jessie-kfreebsd -> 2.38-1; jessie -> 2.38-1; stretch -> 2.39-1; sid ->
2.39-1;

$ find -type f \( -iname '*.po' -o -iname '*.pot' \) -exec POFileSpell {} +

  
...

$ find -type f \( -iname '*.po' -o -iname '*.pot' -o -iname '*.mo' -o
-iname '*.gmo' \) -exec i18nspector {} +
W: ./po/de.po: language-disparity de (pathname) != de_DE (Language header field)
W: ./po/de.po: invalid-date PO-Revision-Date: (empty string)
W: ./po/de.po: no-report-msgid-bugs-to-header-field

$ license-reconcile
...
Copyright mismatch: File gtranscribe/helpers.py: For copyright holder
'Philip Rinn ' the years 2013-2016 cannot be
fitted into 2013-2014.
Copyright mismatch: File gtranscribe/fileinfo.py: For copyright holder
'Philip Rinn ' the years 2013-2016 cannot be
fitted into 2013-2014.
...
Copyright mismatch: File gtranscribe/AboutDialog.py: For copyright
holder 'Philip Rinn ' the years 2013-2016 cannot
be fitted into 2013-2014.

$ find -type f -iname '*.py' -exec pep8 --ignore W191 {} +
./gtranscribe/helpers.py:4:2: W291 trailing whitespace
./gtranscribe/helpers.py:6:68: W291 trailing whitespace
./gtranscribe/helpers.py:8:2: W291 trailing whitespace
./gtranscribe/helpers.py:13:2: W291 trailing whitespace
./gtranscribe/helpers.py:29:80: E501 line too long (101 > 79 characters)
./gtranscribe/helpers.py:34:1: E302 expected 2 blank lines, found 1

Bug#814011: yoshimi: FTBFS with gcc-6: multiple errors

[Will Godfrey]

V1.3.9 has now been released and has been successfully built with GCC-5, GCC-6 &
Clang

The runtime has also been extensively tested.

-- 
Will J Godfrey
http://www.musically.me.uk
Say you have a poem and I have a tune.
Exchange them and we can both have a poem, a tune, and a song.

Bug#682101: Bug#662041: elfutils FTBFS on hurd-i386

[Samuel Thibault]

Hello,

Kurt Roeckx, on Sat 03 Mar 2012 22:10:11 +0100, wrote:
> On Sat, Mar 03, 2012 at 09:12:13PM +0100, Michael Biebl wrote:
> > The current version of elfutils FTBFS on several architectures:
> > hurd-i386
> 
> Yes, nothing new.  It should never have built on hurd, but it
> seems some people think it's a good idea to run buildds that
> don't run the testsuite.

We do not run buildds that don't run the testsuite.

We manually make some builds without tests when the failing tests are
limited and that unlocks a lot of other package builds. If we had to
always wait for testsuites we'd never get anywhere.

Kurt Roeckx, on Thu 19 Jul 2012 18:54:01 +0200, wrote:
> I'm also happy with a patch that does the right thin on hurd that
> doesn't use /proc/$pid/maps.

The maps file was added, it however for now lacks the paths.

Perhaps we can apply the attached patch to skip the only failing test,
as is done on kfreebsd?

Samuel
Index: elfutils-0.165/tests/run-native-test.sh
===
--- elfutils-0.165.orig/tests/run-native-test.sh
+++ elfutils-0.165/tests/run-native-test.sh
@@ -83,6 +83,9 @@ native_test()
 # "cannot attach to process: Function not implemented".
 [ "$(uname)" = "GNU/kFreeBSD" ] && exit 77
 
+# hurd's /proc/$PID/maps does not give paths yet.
+[ "$(uname)" = "GNU" ] && exit 77
+
 native_test ${abs_builddir}/allregs
 native_test ${abs_builddir}/funcretval
 

Bug#811314: Patch for #811314

[Elena ``of Valhalla'']

I attach a very simple patch that fixes this issue with minimal
modifications to the packaging.
-- 
Elena ``of Valhalla''
diff -Nru rest2web-0.5.2~alpha+svn-r248/debian/changelog 
rest2web-0.5.2~alpha+svn-r248/debian/changelog
--- rest2web-0.5.2~alpha+svn-r248/debian/changelog  2015-12-15 
00:22:24.0 +0100
+++ rest2web-0.5.2~alpha+svn-r248/debian/changelog  2016-02-28 
15:08:19.0 +0100
@@ -1,3 +1,10 @@
+rest2web (0.5.2~alpha+svn-r248-2.2) UNRELEASED; urgency=medium
+
+  * Non-maintainer upload.
+  * Install libraries in the correct directory. Closes: #811314
+
+ -- Elena Grandi   Sun, 28 Feb 2016 15:06:40 +0100
+
 rest2web (0.5.2~alpha+svn-r248-2.1) unstable; urgency=medium
 
   * Non-maintainer upload.
diff -Nru rest2web-0.5.2~alpha+svn-r248/debian/rules 
rest2web-0.5.2~alpha+svn-r248/debian/rules
--- rest2web-0.5.2~alpha+svn-r248/debian/rules  2015-12-15 00:14:58.0 
+0100
+++ rest2web-0.5.2~alpha+svn-r248/debian/rules  2016-02-28 15:06:33.0 
+0100
@@ -53,7 +53,7 @@
debian/rest2web/usr/share/lintian/overrides/rest2web
 
tar -cf- --exclude=.svn --exclude=\*.pyc -C dist rest2web \
-   | tar -xf- -C 
debian/rest2web/usr/lib/python2.7/dist-packages/rest2web
+   | tar -xf- -C debian/rest2web/usr/lib/python2.7/dist-packages/
install -m755 dist/r2w.py debian/rest2web/usr/bin/r2w
 
tar -cf- --exclude=.svn -C dist/docs . | tar -xf- -C 
debian/rest2web-doc/usr/share/doc/rest2web/html


signature.asc
Description: PGP signature

Bug#815980: tracker.debian.org: All packages have uscan issues

[Lucas Nussbaum]

On 26/02/16 at 19:10 -0500, James McCoy wrote:
> Control: reassign -1 devscripts 2.15.10
> Control: retitle -1 "uscan --dehs" shouldn't send all output to stderr
> Control: affects -1 qa.debian.org
> 
> On Fri, Feb 26, 2016 at 12:29:10PM +, James Cowgill wrote:
> > > jcowgill@quantz:~$ psql service=udd -x -c "SELECT * FROM upstream WHERE 
> > > source='easytag'"
> > > -[ RECORD 1 
> > > ]---+-
> > > source  | easytag
> > > version | 2.4.2-1
> > > distribution| debian
> > > release | sid
> > > component   | main
> > > watch_file  | version=3
> > > | 
> > > http://ftp.gnome.org/pub/GNOME/sources/easytag/(\d.)+/ \
> > > | easytag-([\d.]+)\.tar\.xz
> > > | 
> > > signing_key_pgp | 
> > > signing_key_asc | 
> > > debian_uversion | 2.4.2
> > > debian_mangled_uversion | 2.4.2
> > > upstream_version| 2.4.2
> > > upstream_url| 
> > > http://ftp.gnome.org/pub/GNOME/sources/easytag/2.4/easytag-2.4.2.tar.xz
> > > errors  | uscan output on stderr: uscan: Newest version 
> > > of easytag on remote site is 2.4.2, local version is 2.4.2
> > > | uscan warn: No upstream tarball downloaded.  No 
> > > further processing with mk_origtargz ...
> > > | 
> > > | 
> > > warnings| No upstream tarball downloaded.  No further 
> > > processing with mk_origtargz ...
> > > | 
> > > status  | up to date
> > > last_check  | 2016-02-26 00:04:48.688531
> > 
> > My guess is that this was triggered in UDD when devscripts 2.16.1 got
> > uploaded to jessie-backports. In devscripts 2.15.10, the interface to
> > uscan changed with everything being printed to stderr (even if it's not
> > an error) if --dehs is used.
> 
> Then this is what needs to be fixed.  The behavior, especially for
> something that's intended to be used by automation, shouldn't have
> changed such that it broke the major user of such functionality.

The code that runs uscan in UDD is
http://anonscm.debian.org/cgit/collab-qa/udd.git/tree/rimporters/upstream.rb
(starting around line 50).

As you can see, the code is already quite complicated:
uscan warnings are outputted in the  tag, but not all uscan
errors are: sometimes they are in an  tag, sometimes they are
just displayed on stderr.

It would be better if all uscan errors were displayed in . Then
UDD could just ignore the stderr output.

- Lucas

Bug#816188: libpcap: make cross-buildable

[Samuel Thibault]

Source: libpcap
Version: 1.7.4-2
Severity: normal
Tags: patch

Hello,

libpcap can be made cross-buildable easily. The only issue is
determining the packet capture interface, which configure only wants to
do on a live system. The attached patch hardcodes the results to fix
this.

Samuel

-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable-debug'), (500, 'oldoldstable'), 
(500, 'buildd-unstable'), (500, 'unstable'), (500, 'stable'), (500, 
'oldstable'), (1, 'experimental-debug'), (1, 'buildd-experimental'), (1, 
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.4.0 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

-- 
Samuel
 le y est un animal discret se logeant facilement dans un terminal
*** c has changed the topic on channel #ens-mim to ne pas jeter de cacahuetes 
aux ys, svp
 -+- #ens-mim - n'oubliez pas le guide -+-
--- debian/rules.original   2016-02-28 15:10:58.101215237 +0100
+++ debian/rules2016-02-28 15:15:20.599630184 +0100
@@ -1,5 +1,17 @@
 #!/usr/bin/make -f
 
+DEB_HOST_ARCH_OS := $(shell dpkg-architecture -qDEB_HOST_ARCH_OS)
+
+ifeq ($(DEB_HOST_ARCH_OS),linux)
+export with_pcap=linux
+endif
+ifeq ($(DEB_HOST_ARCH_OS),kfreebsd)
+export with_pcap=bpf
+endif
+ifeq ($(DEB_HOST_ARCH_OS),hurd)
+export with_pcap=hurd
+endif
+
 %:
dh $@ --with autoreconf
 

Bug#816187: libpcap: please do not build-depend on perl

[Samuel Thibault]

Source: libpcap
Version: 1.7.4-2
Severity: normal

Hello,

libpcap currently build-depends on perl, which makes it harder to
cross-build, while perl is already Build-Essential: yes, so it is
already guaranteed to be installed. Could you then drop the perl
build-depend?

Samuel

-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable-debug'), (500, 'oldoldstable'), 
(500, 'buildd-unstable'), (500, 'unstable'), (500, 'stable'), (500, 
'oldstable'), (1, 'experimental-debug'), (1, 'buildd-experimental'), (1, 
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.4.0 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

-- 
Samuel
 Cliquez sur le lien qui suit dans ce mail...vous n'avez plus qu'a vous
 inscrire pour gagner de l'argent en restant connecteet puis faites
 passer le message et vous gagnerez encore plus d'argent ...
 -+- AC in NPC : Neuneu a rencontré le Pere Noël -+-

Bug#816186: startpar: fix cross-build

[Samuel Thibault]

Package: startpar
Version: 0.59-3
Severity: normal

Hello,

startpar can be fixed to cross-build fine, please see attached patch
which defines CC as appropriate.

Samuel

-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable-debug'), (500, 'oldoldstable'), 
(500, 'buildd-unstable'), (500, 'unstable'), (500, 'stable'), (500, 
'oldstable'), (1, 'experimental-debug'), (1, 'buildd-experimental'), (1, 
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.4.0 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages startpar depends on:
ii  libc6  2.21-9

startpar recommends no packages.

Versions of packages startpar suggests:
ii  insserv  1.14.0-5.2
ii  sysv-rc  2.88dsf-59.3

-- no debconf information

-- 
Samuel
 je déteste import
 parce que lorsque tu fais du python et que tu oublies le #!/bin/env python 
et que tu mets le fichier exécutable
 import est exécuté
 -+- #ens-mim - pourquoi mon script python change le curseur de la souris ?! -+-
--- debian/rules.original   2016-02-28 12:43:32.998855948 +
+++ debian/rules2016-02-28 12:44:31.099552039 +
@@ -8,13 +8,19 @@
 
 DEB_HOST_ARCH_OS?= $(shell dpkg-architecture -qDEB_HOST_ARCH_OS)
 
+ifeq ($(DEB_BUILD_GNU_TYPE),$(DEB_HOST_GNU_TYPE))
+   CC=gcc
+else
+   CC=$(DEB_HOST_GNU_TYPE)-gcc
+endif
+
 %:
dh $@
 
 override_dh_auto_build:
-   $(MAKE) EXTRACPPFLAGS="$(CPPFLAGS)" EXTRACFLAGS="$(CFLAGS)" 
EXTRALDFLAGS="$(LDFLAGS)" $(CROSS) startpar check
+   $(MAKE) EXTRACPPFLAGS="$(CPPFLAGS)" EXTRACFLAGS="$(CFLAGS)" 
EXTRALDFLAGS="$(LDFLAGS)" CC=$(CC) startpar check
 ifeq ($(DEB_HOST_ARCH_OS),linux)
-   $(MAKE) EXTRACPPFLAGS="$(CPPFLAGS)" EXTRACFLAGS="$(CFLAGS)" 
EXTRALDFLAGS="$(LDFLAGS)" $(CROSS) startpar-upstart-inject
+   $(MAKE) EXTRACPPFLAGS="$(CPPFLAGS)" EXTRACFLAGS="$(CFLAGS)" 
EXTRALDFLAGS="$(LDFLAGS)" CC=$(CC) startpar-upstart-inject
 endif
 
 override_dh_auto_install-arch:

Bug#816185: shadow: fails to build with --disable-subordinate-ids

[Samuel Thibault]

Source: shadow
Version: 1:4.2-3.1
Severity: normal
Tags: patch upstream

Hello,

This is rather for "upstream", but the meta-data of the debian package
seem to imply that Debian has become upstream, thus submitting this
report here.

For some reason I wanted to build with --disable-subordinate-ids, and it
failed for trivial reasons, please see attached patch.

Samuel

-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable-debug'), (500, 'oldoldstable'), 
(500, 'buildd-unstable'), (500, 'unstable'), (500, 'stable'), (500, 
'oldstable'), (1, 'experimental-debug'), (1, 'buildd-experimental'), (1, 
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.4.0 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

-- 
Samuel
void packerFlushTheToiletFirstThingInTheMorning( void* arg )
 -+- chromium's source code -+-
--- ./src/usermod.c.original2016-02-28 12:39:40.216062799 +
+++ ./src/usermod.c 2016-02-28 12:45:34.200309088 +
@@ -1361,6 +1361,7 @@
exit (E_UID_IN_USE);
}
 
+#ifdef ENABLE_SUBIDS
if (   (vflg || Vflg)
&& !is_sub_uid) {
fprintf (stderr,
@@ -1376,6 +1377,7 @@
 Prog, sub_gid_dbname (), "-w", "-W");
exit (E_USAGE);
}
+#endif
 }
 
 /*
--- src/Makefile.am.original2016-02-28 12:53:30.86858 +
+++ src/Makefile.am 2016-02-28 12:54:01.798368027 +
@@ -53,7 +53,10 @@
 noinst_PROGRAMS = id sulogin
 
 suidbins   = su
-suidubins  = chage chfn chsh expiry gpasswd newgrp passwd newuidmap 
newgidmap
+suidubins  = chage chfn chsh expiry gpasswd newgrp passwd
+if ENABLE_SUBIDS
+   suidubins += newuidmap newgidmap
+endif
 if ACCT_TOOLS_SETUID
suidubins += chage chgpasswd chpasswd groupadd groupdel groupmod 
newusers useradd userdel usermod
 endif

Bug#816184: php-horde-memcache depends on package that is no longer built.

[peter green]

Package: php-horde-memcache
Version: 2.0.7-3
Severity: serious

php-horde-memcache depends on php5-memcache which is no longer built by 
the php-memcache source package.


Ubuntu seems to indicate that a no-change rebuild is enough to fix this.

Bug#748604: RFA: php-dompdf -- HTML to PDF converter

[Markus Frosch]

Control: retitle -1 ITA: php-dompdf -- HTML to PDF converter
Control: owner -1 !

I indent to adopt the package as a dependency for icingaweb2.

Pending security issues will be taken care of.

It will stay within the PHP packaging team.

Cheers
Markus Frosch
-- 
mar...@lazyfrosch.de / lazyfro...@debian.org
http://www.lazyfrosch.de




signature.asc
Description: OpenPGP digital signature

Bug#748606: RFA: php-font-lib -- read, parse, export and make subsets of different fonts

[Markus Frosch]

Control: retitle -1 ITA: php-font-lib -- read, parse, export and make subsets 
of different fonts
Control: owner -1 !

I indent to adopt the package as a dependency for php-dompdf.

It will stay within the PHP packaging team.

Cheers
Markus Frosch
-- 
mar...@lazyfrosch.de / lazyfro...@debian.org
http://www.lazyfrosch.de




signature.asc
Description: OpenPGP digital signature

Bug#816096: initramfs-tools: Error reporting false missing dependancy on busybox

[Reto Schoch]

On Sun, 28 Feb 2016 12:41:03 + Ben Hutchings 
wrote:
> On Sun, 2016-02-28 at 12:47 +0100, Christophe wrote:
> > - Ben Hutchings  a écrit :
> > >
> > > On Sat, 2016-02-27 at 13:04 +0100, Christophe wrote:
> > > > Package: initramfs-tools
> > > > Version: 0.123
> > > > Severity: important
> > > >
> > > > [...]
> > > >
> > > > Let me know if there is some info you'd need to debug the issue.
> > >
> > > I wonder if busybox got upgraded too late. Â Is this reproducible if
you
> > > run 'update-initramfs -u' now?
> > >
> > > Ben.
> >
> > Hi Ben,
> >
> > Unfortunately running this command still gives me the error.
> > Out of curiosity I have started some investigations, and the message
comes from the script "mkinitramfs" from this check:
> >
> > if [ "${BUSYBOX}" = "y" ] && [ -z "${BUSYBOXDIR}" ]; then
> >
> > I have seen this:
> > Â - BUSYBOX is properly set to "y" from
/etc/initramfs-tools/initramfs.conf
> > Â - BUSYBOXDIR, however, is prepared empty at the beginning of
mkinitramfs, but never given a value afterwards... Any idea how it is
supposed to be defined?
>
> It's done by /usr/share/initramfs-tools/conf-hooks.d/busybox, which is
> installed by busybox. Â Does that file exist?
>
> You originally said:
>
> > This is strange because I seem to have this:
> > Â  busybox => 1:1.22.0-18
> > Â  busybox-static => 1:1.22.0-18
>
> That's impossible because these packages conflict with each other.
>
> What does "debsums busybox busybox-static" report? Â (You might need to
> install the debsums package.)
>
> Ben.
>
> --
> Ben Hutchings
> Knowledge is power.  France is bacon.

Hi Ben

I have the same error message. Running 'update-initramfs -u' gives the
following error message:

update-initramfs: Generating /boot/initrd.img-4.3.0-1-686-pae
E: busybox or busybox-static, version 1:1.22.0-17~ or later, is required
but not installed
update-initramfs: failed for /boot/initrd.img-4.3.0-1-686-pae with 1.

It looks like the new version of initramfs-tools treats busybox as
"depends" while it should only be "recommends".

Can you confirm?

Regards
Reto

Bug#815986: nvidia-kernel-dkms:amd64: does not build for x86_64 kernel on i386 userspace

[Andreas Beckmann]

On 2016-02-27 15:43, Tomas Janousek wrote:
> I'm attaching a patch that makes the 352.79-3 build and another one that uses

Oh, that was easier than I expected :-)

Thanks!

And I fixed it for 340 in svn, too.
Luckily Kbuild exports the KBUILD_CFLAGS variable, so I can use it from
within conftest.sh. conftest.sh's CFLAGS is internal to the script in
this version, so I cannot manipulate it from the Makefiles.


Andreas

Bug#816183: iceowl-extension: cannot create new calendar

[wforumw]

Package: iceowl-extension
Version: 38.6.0-1
Severity: important

When I try to create a new calendar, the 'Create New Calendar' window appears
but is totally empty. (see attachment)
You can fill in nothing. The only buttons on the bottem are Cancel, Back and
Finish.
Back and Finish doesn't do anything, Cancel let the windows disappear.



-- System Information:
Debian Release: stretch/sid
  APT prefers testing-updates
  APT policy: (500, 'testing-updates'), (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.3.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages iceowl-extension depends on:
ii  icedove  38.6.0-1
ii  libc62.21-9
ii  libgcc1  1:5.3.1-8
ii  libnspr4 2:4.11-1
ii  libnspr4-0d  2:4.11-1
ii  libstdc++6   5.3.1-8

iceowl-extension recommends no packages.

Versions of packages iceowl-extension suggests:
ii  calendar-google-provider  38.6.0-1
pn  fonts-lyx 

Bug#814008: RFS: vbackup/1.0.1-1

[Stefanos Harhalakis]

On 28/02/16 12:17, Mattia Rizzolo wrote:

On Sun, Feb 28, 2016 at 01:58:14AM +, Stefanos Harhalakis wrote:

On 23/02/16 17:45, Mattia Rizzolo wrote:

On Sun, Feb 07, 2016 at 02:06:39PM +, Stefanos Harhalakis wrote:
* please meld the 2 changelog entries, the 1 minute, 14 seconds older
   one never hit the archive anyway.


Done


while on it maybe also bump the change date/time?


Bumped


* current standards-version is 3.9.7, check against it.


Done. No changes needed


no, you haven't.  you only modified the changelog entry, but not the
actual metadata.


Oops... Fixed


* in d/copyright, the years are 2006-2012, I'm confident you want to
   bump them.


Corrected


please document this in d/changelog.


Documented

The new source package is in mentors:

http://mentors.debian.net/package/vbackup

Thanks,
Stefanos

Bug#813954: regression with apparmor?

[Evgeni Golov]

Hi,

On Sat, Feb 27, 2016 at 11:34:52PM +0100, Ivan Sergio Borgonovo wrote:
> On 02/27/2016 09:37 PM, Evgeni Golov wrote:
> >Hi Ivan,
> 
> >On Sun, Feb 07, 2016 at 03:06:54AM +0100, Ivan Sergio Borgonovo wrote:
> >>got this after upgrade 1:1.0.8-1 -> 1:1.1.5-1
> 
> >>   lxc-start 1454809870.985 ERRORlxc_apparmor -
> >>lsm/apparmor.c:apparmor_process_label_set:169 - If you really want to start
> >>this container, set
> >>   lxc-start 1454809870.985 ERRORlxc_apparmor -
> >>lsm/apparmor.c:apparmor_process_label_set:170 - lxc.aa_allow_incomplete = 1
> >>   lxc-start 1454809870.985 ERRORlxc_apparmor -
> >>lsm/apparmor.c:apparmor_process_label_set:171 - in your container
> >>configuration file
> 
> >Stricly speaking this is not an regression but an improvement.
> >1.0.x did silently ignore apparmor if you did not have "complete" apparmor 
> >support in the kernel (read: no mount restrictions which are only available 
> >in Ubuntu).
> >See [1] for details about the behaviour.
> >
> >With 1.1.x LXC actually errors out when it detecs you want apparmor but 
> >don't have the right kernel for it. You can set "lxc.aa_allow_incomplete = 
> >1" to allow it to use whatever apparmor support is available, skipping the 
> >cool mount stuff.
> 
> >That said I would love to close this as not-a-bug, if you do not disagree.
> 
> There was no news in apt-listchanges.
> I did find how to fix the problem googling the error and I had to understand
> what I was really doing adding that option but I wouldn't have incurred in
> the problem if:
> - the package itself would have made the change to the configurations (not
> sure if it is a good idea)
> or
> - there was a notice in apt-listchange.
> 
> I'm ok if you close the bug but I'm thinking about the other poor souls that
> may upgrade lxc and find their containers not running without any notice.

Fair enough, I will add a notice to the NEWS file to be picked up by 
apt-listchanges.

> Nothing terrible, I'm aware I'm using sid and probably once there will be a
> new kernel this won't be an issue.

When the feature will get upstream, yeah. I am waiting for this too.

Greets

Bug#816143: nvidia-graphics-drivers: [INTL:pt] Updated Portuguese translation for debconf messages

[Luca Boccassi]

Control: tag -1 pending

On Sun, 2016-02-28 at 00:30 +, Américo Monteiro wrote:
> Package: nvidia-graphics-drivers
> version: 352.79-4
> Tags: l10n, patch
> Severity: wishlist
> 
> Updated Portuguese translation for nvidia-graphics-drivers's debconf messages.
> Translator: Américo Monteiro 
> Feel free to use it.
> 
> For translation updates please contact 'Last Translator' or the
> Portuguese Translation Team .

Hello Américo,

Thank you, applied.

Kind regards,
Luca Boccassi


signature.asc
Description: This is a digitally signed message part

Bug#816182: (no subject)

[Arturo Borrero Gonzalez]

Control: retitle -1 "terminator: several shortcuts being ignored"

Sorry for the 'no subject' thing. It seems reportbug somehow failed.


-- 
Arturo Borrero González

Bug#816182: (no subject)

[Arturo Borrero Gonzalez]

Package: terminator
Version: 0.98-1
Severity: important

Dear maintainer,

thanks for your work with terminator, it's really appreciated.

Find attached a debug file with me opening terminator, then pressing
CTRL+SHIFT+E and CTRL+SHIFT+O with no results.

There are other shortcuts that don't work in my system as well, but lets
start with these two.

best regards.

-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.3.0-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=es_ES.utf8, LC_CTYPE=es_ES.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages terminator depends on:
ii  gconf2  3.2.6-3
ii  python-dbus 1.2.0-3
ii  python-gobject  3.18.2-2
ii  python-gtk2 2.24.0-4
ii  python-vte  1:0.28.2-5+b1
pn  python:any  

Versions of packages terminator recommends:
ii  python-gnome2 2.28.1+dfsg-1.1
ii  python-keybinder  0.3.1-1
ii  python-notify 0.1.1-4
ii  xdg-utils 1.1.1-1

terminator suggests no packages.

-- no debconf information
ConfigBase::__init__: Borg::__init__: Preparing borg state for ConfigBase
noclass::get_config_dir: Found config dir: /home/aborrero/.config
ConfigBase::load: looking for config file: 
/home/aborrero/.config/terminator/config
ConfigBase::load: config validated successfully
ConfigBase::load: ConfigBase::load: Processing section: global_config
ConfigBase::load: ConfigBase::load: Processing section: keybindings
ConfigBase::load: ConfigBase::load: Processing section: profiles
ConfigBase::load: ConfigBase::load: Processing profile: default
ConfigBase::load: ConfigBase::load: Processing section: layouts
ConfigBase::load: ConfigBase::load: Processing layouts: default
ConfigBase::load: ConfigBase::load: Processing section: plugins
Config::set_profile: Config::set_profile: Changing profile to default
noclass::parse_options: OptionParse::parse_options: command line options: 
{'nodbus': None, 'classname': None, 'working_directory': None, 'select': None, 
'fullscreen': None, 'layout': 'default', 'debug_classes': None, 'version': 
None, 'role': None, 'forcedicon': None, 'config': 
'/home/aborrero/.config/terminator/config', 'profile': None, 'debug_methods': 
None, 'maximise': None, 'debug': 1, 'borderless': None, 'new_tab': None, 
'hidden': None, 'dummy': None, 'execute': None, 'geometry': None, 'command': 
None, 'forcedtitle': None}
ConfigBase::load: ConfigBase::load: config already loaded
Config::set_profile: Config::set_profile: Changing profile to default
ConfigBase::get_item: ConfigBase::get_item: dbus found in globals: False
noclass::: dbus disabled
noclass::: dbus not imported
Factory::__init__: Borg::__init__: Preparing borg state for Factory
Terminator::__init__: Borg::__init__: Preparing borg state for Terminator
ConfigBase::load: ConfigBase::load: config already loaded
Config::set_profile: Config::set_profile: Changing profile to default
ConfigBase::get_item: ConfigBase::get_item: broadcast_default found in globals: 
group
noclass::get_pid_cwd: Using Linux get_pid_cwd
Terminator::attempt_gnome_client: GNOME session support enabled and registered
ConfigBase::get_item: ConfigBase::get_item: handle_size found in globals: -1
noclass::: Creating a terminal with layout: default
Terminator::create_layout: Creating a window
Factory::make: Factory::make: created a Window
Terminator::register_window: Terminator::register_window: registering 
140064471827232:
ConfigBase::load: ConfigBase::load: config already loaded
Config::set_profile: Config::set_profile: Changing profile to default

** (terminator:15756): WARNING **: Binding 'a' failed!
Unable to bind hide_window key, another instance/window has it.
ConfigBase::get_item: ConfigBase::get_item: window_state found in globals: 
normal
ConfigBase::get_item: ConfigBase::get_item: window_state found in globals: 
normal
ConfigBase::get_item: ConfigBase::get_item: window_state found in globals: 
normal
ConfigBase::get_item: ConfigBase::get_item: borderless found in globals: False
ConfigBase::get_item: ConfigBase::get_item: hide_from_taskbar found in globals: 
False
ConfigBase::get_item: ConfigBase::get_item: always_on_top found in globals: 
False
ConfigBase::get_item: ConfigBase::get_item: sticky found in globals: False
Window::set_real_transparency: setting rgb colormap
Window::inject_uuid: Injecting UUID 08268513-48fa-449c-b8b8-481e2a14ce04 into: 

Factory::make: Factory::make: created a Terminal
Terminator::register_terminal: Terminator::register_terminal: registering 
140064460045520:
ConfigBase::load: ConfigBase::load: config already loaded
Config::set_profile: Config::set_profile: Changing profile to default
Terminal::__init__: composite_support: True
ConfigBase::get_item: ConfigBase::get_item: try_posix_regexp found in globals: 
False
Terminal::update_url_matches: Terminal::update_url_matches: Trying GNU URL 
regexps
PluginRegistry::__init__: 

Bug#816181: system-config-printer: aborts after doesn't find the driver

[Jose M Caballero]

Package: system-config-printer
Version: 1.4.6-1
Severity: important

# system-config-printer &

 No ID match for device usb://OKI%20DATA%20CORP/C3100?serial=AE4C003274:
MFG:OKI DATA CORP;MDL:C3100;CMD:PJL,HIPERC,SDL;
No ID match for device usb://OKI%20DATA%20CORP/C3100?serial=AE4C003274:
MFG:OKI DATA CORP;MDL:C3100;CMD:PJL,HIPERC,SDL;
[xcb] Unknown request in queue while dequeuing
[xcb] Most likely this is a multi-threaded client and XInitThreads has not been
called
[xcb] Aborting, sorry about that.
python: ../../src/xcb_io.c:179: dequeue_pending_request: Assertion
`!xcb_xlib_unknown_req_in_deq' failed.



-- System Information:
Debian Release: 8.3
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages system-config-printer depends on:
ii  gir1.2-gdkpixbuf-2.0   2.31.1-2+deb8u4
ii  gir1.2-glib-2.01.42.0-2.2
ii  gir1.2-gtk-3.0 3.14.5-1+deb8u1
ii  gir1.2-notify-0.7  0.7.6-2
ii  gir1.2-packagekitglib-1.0  1.0.1-2
ii  gir1.2-pango-1.0   1.36.8-3
ii  gnome-icon-theme   3.12.0-1
ii  python-cairo   1.8.8-1+b2
ii  python-cups1.9.63-1
ii  python-cupshelpers 1.4.6-1
ii  python-dbus1.2.0-2+b3
ii  python-gi  3.14.0-1
ii  python-gobject-2   2.28.6-12+b1
ii  python-libxml2 2.9.1+dfsg1-5+deb8u1
pn  python:any 

Versions of packages system-config-printer recommends:
ii  cups-pk-helper  0.2.5-2+b1
ii  gir1.2-gnomekeyring-1.0 3.12.0-1+b1
ii  python-smbc 1.0.15.3-0.1
ii  system-config-printer-udev  1.4.6-1

Versions of packages system-config-printer suggests:
pn  gnome-packagekit-session  

-- no debconf information

Bug#816096: initramfs-tools: Error reporting false missing dependancy on busybox

[Ben Hutchings]

On Sun, 2016-02-28 at 12:47 +0100, Christophe wrote:
> - Ben Hutchings  a écrit :
> > 
> > On Sat, 2016-02-27 at 13:04 +0100, Christophe wrote:
> > > Package: initramfs-tools
> > > Version: 0.123
> > > Severity: important
> > > 
> > > [...]
> > > 
> > > Let me know if there is some info you'd need to debug the issue.
> > 
> > I wonder if busybox got upgraded too late.  Is this reproducible if you
> > run 'update-initramfs -u' now?
> > 
> > Ben.
> 
> Hi Ben,
> 
> Unfortunately running this command still gives me the error.
> Out of curiosity I have started some investigations, and the message comes 
> from the script "mkinitramfs" from this check:
> 
> if [ "${BUSYBOX}" = "y" ] && [ -z "${BUSYBOXDIR}" ]; then
> 
> I have seen this:
>  - BUSYBOX is properly set to "y" from /etc/initramfs-tools/initramfs.conf
>  - BUSYBOXDIR, however, is prepared empty at the beginning of mkinitramfs, 
> but never given a value afterwards... Any idea how it is supposed to be 
> defined?

It's done by /usr/share/initramfs-tools/conf-hooks.d/busybox, which is
installed by busybox.  Does that file exist?

You originally said:

> This is strange because I seem to have this:
>   busybox => 1:1.22.0-18
>   busybox-static => 1:1.22.0-18

That's impossible because these packages conflict with each other.

What does "debsums busybox busybox-static" report?  (You might need to
install the debsums package.)

Ben.

-- 
Ben Hutchings
Knowledge is power.  France is bacon.

signature.asc
Description: This is a digitally signed message part

Bug#816180: postfix: [l10n] update Japanese debconf translation

[Kenshi Muto]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Package: postfix
Version: 3.0.4-3
Severity: wishlist
Tags: l10n patch

Hi,

I updated Japanese translation of debconf messages (ja.po).
Please apply this.

Thanks,
- -- 
Kenshi Muto
km...@debian.org
-BEGIN PGP SIGNATURE-
Version: GnuPG v1
Comment: Processed by Mailcrypt 3.5.9 

iQIcBAEBCgAGBQJW0ufcAAoJEB0hyD3EUuD8m6UP/AjqJmgqLe/45CNMlPBAp6VX
ZSBjcA7geNZ/m3eBTVQFaTcwNp8EsTR+j/zTTsFFwFeblrBjuMVoRo3E9ey4ECay
tW4DIcUjBxySvAPAO84W9uUnqdYqlZTFYWD70Upvbz/k2RlXMwsKE4MAaFCHrVAg
/jz9YVPu2PzyahPzqc94QYLHMsmQrFr9gFH5fpAIxnY7g4jRZcZGSl9Fj3IRKB1o
ik0l8LYxfIbfAHLQZFddhDSQymoAjs5GHSqisHLsqpWccpRnSc2Cj0xc1jZnbjEe
CFrYQIMPzlDC6lCxdgjTJ+hPbZNORU/IrdIFOeVDOCOmsB0rY0o6s5GdbvvQgEvA
lS93xQyOoy2KoS8EYybHkd0xAMSnMRdQP+a0774k9DX9vTH9nv09AH2o85KWhuMS
aut4R3UaiQFF7LmgMoUgd4rNCap6mv2H6kbmcUui5aweIfSlHtfYdh4n+gfdqtdv
I474XSRcJajxxdgOvR5TGOT27Z6IFgVFNW4VUKqZCXlIac/MRKDG31nz87E8IL32
5QMAgPH7oIRhnABIVvKAlHNVvhmT7ZamTp6vQUkQxgHfhWlczxxaBIm39X26WXeP
8adtWKpbpDiloxGG9TZlGXxVC6D6ROsTHUE3IpjAFzb2xM/T69kZ6WQENancIhnA
/DR85VQxk28QusgksGua
=PK/9
-END PGP SIGNATURE-


ja.po
Description: Binary data

Bug#816041: ldap-account-manager depends on php5-imagick which is no longer built

[Roland Gruber]

Hi Peter,

On 26.02.2016 22:25, peter green wrote:
> ldap-account-manager depends on php5-imagick which is no longer built by
> the source package php-imagick.
> 
> I'm not sure if you can just change the dependency to php-imagick or if
> more work is needed.

thanks, will be fixed in next upload. I updated the dependencies so LAM
is compatible with PHP 7.


Best regards

Roland



signature.asc
Description: OpenPGP digital signature

Bug#814008: RFS: vbackup/1.0.1-1

[Mattia Rizzolo]

On Sun, Feb 28, 2016 at 01:58:14AM +, Stefanos Harhalakis wrote:
> On 23/02/16 17:45, Mattia Rizzolo wrote:
> >On Sun, Feb 07, 2016 at 02:06:39PM +, Stefanos Harhalakis wrote:
> >* please meld the 2 changelog entries, the 1 minute, 14 seconds older
> >   one never hit the archive anyway.
> 
> Done

while on it maybe also bump the change date/time?

> >* current standards-version is 3.9.7, check against it.
> 
> Done. No changes needed

no, you haven't.  you only modified the changelog entry, but not the
actual metadata.

> >* you don't do hardening, can you consider enabling it? (see
> >   wiki.d.o/Hardening)
> 
> I had a look and didn't see anything that applies. vbackup is purely shell
> scripts. Am I missing something?

oups, sorry.
Yeah, of course this doesn't make any sense here :)

> >* in d/copyright, the years are 2006-2012, I'm confident you want to
> >   bump them.
> 
> Corrected

please document this in d/changelog.

-- 
regards,
Mattia Rizzolo

GPG Key: 66AE 2B4A FCCF 3F52 DA18  4D18 4B04 3FCD B944 4540  .''`.
more about me:  http://mapreri.org  : :'  :
Launchpad user: https://launchpad.net/~mapreri  `. `'`
Debian QA page: https://qa.debian.org/developer.php?login=mattia  `-


signature.asc
Description: PGP signature

Bug#816148: gnutls28: parallel build fails

[Andreas Metzler]

Control: tags -1 pending

On 2016-02-28 Samuel Thibault  wrote:
> Andreas Metzler, on Sun 28 Feb 2016 07:48:44 +0100, wrote:
[...]
> > I cannot reproduce this locally, and all debian autobuilds of 3.4.9-2
> > succeeded first try, although they were using a parallel build.

> But are they using largely parallel builds?

No, usually just -j2 or -j4.

> > Could you provide some hint on how to reproduce? Specific -j setting?

> Simply

> € echo $DEB_BUILD_OPTIONS 
> parallel=32

Thanks, I can reproduce this now.

BUILT_SOURCES was incomplete. Fixed in GIT.

cu Andreas
-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'

Bug#786658: quota: Cannot install quota package on a jessie system

[Michael Meskes]

On Sun, May 24, 2015 at 08:37:23AM +0200, Simone Rossetto wrote:
> This is what happens during the installation:
>  1. postinst executed
>  2. quota start => quotaon.sh executed
>  3. no force, no skip
>  4. no /var/lib/quota/new file exists because no touch already executed
>  5. so no full check but only a call to the check_quota function
>  6. no /mountpoint/aquota.user file exists because quotas has never been 
> computed yet
>  7. and so a warning is printed and the installation ends in error

There has to be something going on on your system that is different from mine. 
I just tried installing quota on a brand new system and it worked nicely. 

What does/did your /etc/fstab say? Where there already quota files available, 
maybe under a different name?

> If I'm wrong what have I missed?

Not sure if any. I just wonder why it works on my system. However, the whole
logic needs a rewrite anyway with systemd having its own quota services, sigh.

Michael
-- 
Michael Meskes
Michael at Fam-Meskes dot De, Michael at Meskes dot (De|Com|Net|Org)
Meskes at (Debian|Postgresql) dot Org
Jabber: michael at xmpp dot meskes dot org
VfL Borussia! Força Barça! Go SF 49ers! Use Debian GNU/Linux, PostgreSQL

Bug#816179: VCS-Browser field wrong

[Christoph Egger]

Package: src:opendnssec
Version: 1:1.4.9-1
Severity: minor

Hi!

  http://anonscm.debian.org/?p=pkg-nlnetlabs/opendnssec.git

Just leads to an apache directory listing that is not particularly interesting. 
Please update it to point to e.g.

  http://anonscm.debian.org/cgit/pkg-nlnetlabs/opendnssec.git/

Thanks!

  Christoph

P.S.: The git repository seems to not have been updated for a while

-- System Information:
Debian Release: 8.0
  APT prefers stable-kfreebsd
  APT policy: (990, 'stable-kfreebsd'), (500, 'buildd-unstable'), (500, 
'unstable'), (500, 'stable'), (1, 'experimental')
Architecture: kfreebsd-amd64 (x86_64)
Foreign Architectures: i386

Kernel: kFreeBSD 10.2-0-amd64
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Bug#816174: debsecan: clarify report category "fixed vulnerabilities"

[Florian Weimer]

* Christian Pernegger:

> I have to admit that I'm confused about the meaning of the report
> headers in the nightly report. Does "fixed vulnerabilities" mean fixed
> in the archive, as in I should go download an update or is it fixed on the
> system?

It means these vulnerabilities are no longer present in the currently
installed packages, but were present before.

This can happen as the result of package updates, or if the security
tracker data was updated, indicating that the installed version is no
longer vulnerable.

It would make sense to tell the two cases apart.

Bug#788963: quota: Failed to start Check And Enable File System Quotas on Debian Jessie

[Michael Meskes]

My guess is the reason is systemd's enabling quota before our service is
enabled. Can you please check in journalctl if that's the case? You should have
entries there that talk about enabling quotas before quota.service is run, if
at all.

This needs to be fixed asap, but the question is how as systemd offers
features, like automatic on demand checking when a device is connected, that
the quota package doesn't have, while systemd lacks other features, like
quota's creation of quota files and check only when not clean unmounted. This
information is pre-Jessie so it might have changed but you get the gist.

Michael

-- 
Michael Meskes
Michael at Fam-Meskes dot De, Michael at Meskes dot (De|Com|Net|Org)
Meskes at (Debian|Postgresql) dot Org
Jabber: michael at xmpp dot meskes dot org
VfL Borussia! Força Barça! Go SF 49ers! Use Debian GNU/Linux, PostgreSQL

Bug#816178: RM: python-ldap-doc -- RoQA; obsolete, unmaintained, depends on to-be-removed package

[Esa Peuha]

Package: ftp.debian.org

In 2006 src:python-ldap-doc was split off from src:python-ldap and
moved to contrib because it build-depends on latex2html which at
the time was in non-free. However in 2009 latex2html changed its
license to GPLv2 and was moved to main, so there is no reason to
keep python-ldap-doc as a separate source package. It has also
been effectively abandoned, last update was in 2012, and it
depends on python-old-doctools which is going to be removed.

Bug#726075: wmaker-common: conffiles not removed

[Doug Torrance]

Control: tags -1 pending

On Sat, 12 Oct 2013 10:21:17 +0800 Paul Wise  wrote:
> Package: wmaker-common
> Version: 0.95.5-1
> Severity: normal
> Usertags: conffile
> User: debian...@lists.debian.org
> Usertags: obsolete-conffile adequate
>
> The semi-recent upgrade did not deal with obsolete conffiles properly.
> Please use the dpkg-maintscript-helper support provided by dh_installdeb
> to remove these obsolete conffiles on upgrade.
>
> http://www.debian.org/doc/debian-policy/ch-files.html#s-config-files
> http://manpages.debian.net/man/1/dh_installdeb
>
> This bug report brought to you by adequate:
>
> http://bonedaddy.net/pabs3/log/2013/02/23/inadequate-software/
>
> $ pkg=wmaker-common
> $ adequate $pkg
> wmaker-common: obsolete-conffile /etc/X11/WindowMaker/menu.prehook
> wmaker-common: obsolete-conffile /etc/X11/WindowMaker/wmmacros
> wmaker-common: obsolete-conffile /etc/X11/WindowMaker/menu.posthook
> wmaker-common: obsolete-conffile /etc/X11/WindowMaker/appearance.menu
> wmaker-common: obsolete-conffile /etc/X11/WindowMaker/background.menu
> $ dpkg-query -W -f='${Conffiles}\n' $pkg | grep obsolete
> /etc/X11/WindowMaker/menu.prehook d41d8cd98f00b204e9800998ecf8427e
obsolete
> /etc/X11/WindowMaker/wmmacros 3191c74325ec39c3256e41e1b968c2a6 obsolete
> /etc/X11/WindowMaker/menu.posthook d41d8cd98f00b204e9800998ecf8427e
obsolete
> /etc/X11/WindowMaker/appearance.menu 7666958b86bf102b086457b7c6c938c1
obsolete
> /etc/X11/WindowMaker/background.menu 326e6f2f0e44388513c3aac84d8b67b3
obsolete

This has been fixed and git [1] and so this bug will be closed on the
next upload.

[1]
http://anonscm.debian.org/cgit/pkg-wmaker/wmaker.git/commit/?id=a013cb4904aa81b7b8113dfbf19d3ab5c1c545d2

Bug#816096: initramfs-tools: Error reporting false missing dependancy on busybox

[Christophe]

- Ben Hutchings  a écrit :
> 
> On Sat, 2016-02-27 at 13:04 +0100, Christophe wrote:
> > Package: initramfs-tools
> > Version: 0.123
> > Severity: important
> > 
> > [...]
> > 
> > Let me know if there is some info you'd need to debug the issue.
> 
> I wonder if busybox got upgraded too late.  Is this reproducible if you
> run 'update-initramfs -u' now?
> 
> Ben.

Hi Ben,

Unfortunately running this command still gives me the error.
Out of curiosity I have started some investigations, and the message comes from 
the script "mkinitramfs" from this check:

if [ "${BUSYBOX}" = "y" ] && [ -z "${BUSYBOXDIR}" ]; then

I have seen this:
 - BUSYBOX is properly set to "y" from /etc/initramfs-tools/initramfs.conf
 - BUSYBOXDIR, however, is prepared empty at the beginning of mkinitramfs, but 
never given a value afterwards... Any idea how it is supposed to be defined?

Christophe.

Bug#813452: [Pkg-pascal-devel] Bug#813452: fpc-3.0 regression in armhf and armel architectures

[Abou Al Montacir]

Hi Paul,
On Sat, 2016-02-27 at 13:45 +0100, Paul Gevers wrote:
> Hi Gianfranco,
> 
> On 27-02-16 13:11, Gianfranco Costamagna wrote:
> > confirmed, with 3.1.1 on trunk I built it successfully.
> 
> Great.
> 
> > Do you think you can backport a patch?
> 
> Once the required code has been found. Abou requested help from upstream
> to identify it.
> 
> > I also tried to build with the current fpc and no fPIC for the pascal part,
> > and the build is successful.
> > 
> > actually fPIC was broken also before, according to the Cmake file
> > if(${CMAKE_Pascal_COMPILER_VERSION} VERSION_GREATER 2.7 OR
> > ${CMAKE_TARGET_ARCHITECTURES} MATCHES "x86_64" OR
> > ${CMAKE_TARGET_ARCHITECTURES} MATCHES "i386")
> > add_flag_append(CMAKE_Pascal_FLAGS "-fPIC")
> > endif()
> > 
> > 
> > so, disabling it again is not a "real" regression :)
> 
> Hmm, that also means we can lower the severity of this bug (no
> regression) and have it migrate to testing, agreed? I would leave this
> bug as important, but still have fpc 3 migrate to testing. Is anybody
> objecting?
> 
> Proposal:
> control: retitle -1 fpc can not build -fPIC with -O2 on arm*
> control: severity -1 important
> control: tags -1 fixed-upstream

I agree
-- 
Cheers,
Abou Al Montacir

Bug#787953: Status of insubstantial/jajuk transition

[Felix Natter]

hi Markus,

@Tony, Damien: I am CCing you because we need to update
libjaudiotagger-java, please see below.

here is the status (discussion happens here [1]):

- I am using jajuk-1.10.9 which includes the lastfm patch
  (uses the version in Debian) :-)

- simple-validation.jar is no longer needed :-)

- I am in the process of packaging qdwizard, a jajuk-owned package
 (simple maven, will be done soon using mh_make)

- unfortunately, we need to upgrade libjaudiotagger-java from 2.0.3 to
  2.2.5. Fortunately, there is only one r-dep beside jajuk, so it
  shouldn't be that much work.

[javac] 
/home/felix/jajuk-unstable/jajuk/src/org/jajuk/services/tags/JAudioTaggerTagImpl.java:52:
 error: package org.jaudiotagger.tag.images does not exist
[javac] import org.jaudiotagger.tag.images.Artwork;

Tony (or Damien?), since you touched this
  http://anonscm.debian.org/viewvc/pkg-java/trunk/libjaudiotagger-java/
Would you consider helping me upgrading this?

[1] https://github.com/fnatter/jajuk-debian/issues/1

Cheers and Best Regards,
-- 
Felix Natter

Bug#816175: python-pil: Openjpeg support missing due to missing build dependency

[Philippe Teuwen]

Package: python-pil
Version: 3.1.1-1
Severity: normal

Dear Maintainer,

Openjpeg (jpeg2000) support is missing in the binary packages of pillow.
I could fix it locally by adding some openjpeg headers:
 apt-get source python-pil
 sudo apt-get build-dep python-pil
 sudo apt-get install libopenjp2-7-dev
 dpkg-buildpackage -uc -us
 sudo dpkg -i *deb

So I guess it's just a matter of adding libopenjp2-7-dev to pillow
Build-Depends.

Note that in the list of dependencies you'll find in this report,
there is a
ii  libopenjp2-72.1.0-2.1
because that's my recompiled version, original python-pil is missing
that dep.

Best regards
Phil


-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (900, 'testing'), (500, 'unstable'), (500, 'stable'), (1,
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.5.0-rc4-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages python-pil depends on:
ii  libc6   2.21-9
ii  libfreetype62.6.1-0.1
ii  libjpeg62-turbo 1:1.4.2-2
ii  liblcms2-2  2.6-3+b3
ii  libopenjp2-72.1.0-2.1
ii  libtiff54.0.6-1
ii  libwebp50.4.4-1+b1
ii  libwebpdemux1   0.4.4-1+b1
ii  libwebpmux1 0.4.4-1+b1
ii  mime-support3.59
ii  python  2.7.11-1
ii  python-pil.imagetk  3.1.1-1
pn  python:any  
ii  zlib1g  1:1.2.8.dfsg-2+b1

python-pil recommends no packages.

Versions of packages python-pil suggests:
ii  python-pil-dbg  3.1.1-1
ii  python-pil-doc  3.1.1-1

-- no debconf information

Bug#816176: linux-image-4.3.0-0.bpo.1-amd64: xhci_hub_control causes abnormally high CPU usage when no USB devices attached

[Anders Nylander]

Package: src:linux
Version: 4.3.3-7~bpo8+1
Severity: important

Dear Maintainer,

>From a clean install of Debian Jessie 8.3 on a Lenovo Thinkpad E460 (Intel
Skylake gen.) I upgraded the kernel to 4.3 as made available in
jessie-backports to enable WiFi/Bluetooth.
Fast-forward to yesterday when I was preparing a LiveUSB drive, writing
approx. 4GB of data using cfdisk, mkfs, dd and sync.
Following the removal of of the USB device, I noticed very high CPU usage
being caused by kworker and ksoftirqd.
Using perf to log 10s of data and then reading the report, I noticed that
xhci_hcd/xhci_hub_control was generating a LOT of work for the kworker
(~42%).
Guessing that this had something to do with the USB ports, I tried plugging
in a USB device, and found that plugging in *any* kind of USB device caused
the CPU usage to drop to ~0%. Removing the USB device again caused the CPU
usage to go back to 100% (one core). The same result occured with all 3 USB
ports on this system, with ~0% CPU usage with any USB device connected,
100% CPU usage when no USB devices are connected.
The issue persists through reboots of the system.
The issue persists down to atleast init level 3, and is also present when
booting the system in "Recovery Mode".
Booting the system with the older 3.16 kernel causes the issue to
disappear, but then I lose WiFi/Bluetooth so that isn't an option.
I have not found a workaround to this problem besides leaving atleast one
USB device connected whenever I'm using the system.

-- Package-specific info:
** Version:
Linux version 4.3.0-0.bpo.1-amd64 (debian-ker...@lists.debian.org) (gcc
version 4.9.2 (Debian 4.9.2-10) ) #1 SMP Debian 4.3.3-7~bpo8+1 (2016-01-19)

** Command line:
BOOT_IMAGE=/boot/vmlinuz-4.3.0-0.bpo.1-amd64
root=UUID=8e8f14a8-cdb5-4d74-b834-369017c333fb ro initrd=/install/initrd.gz
quiet

** Tainted: WO (4608)
 * Taint on warning.
 * Out-of-tree module has been loaded.

** Kernel log:
[   10.267305]  [] ? __pm_runtime_resume+0x48/0x70
[   10.267309]  [] ? azx_pcm_open+0x1d4/0x350
[snd_hda_codec]
[   10.267312]  [] ? snd_pcm_open_substream+0x7f/0x140
[snd_pcm]
[   10.267314]  [] ? snd_pcm_open+0xd1/0x260 [snd_pcm]
[   10.267316]  [] ? wake_up_q+0x60/0x60
[   10.267318]  [] ? snd_pcm_playback_open+0x40/0x70
[snd_pcm]
[   10.267320]  [] ? chrdev_open+0xbc/0x190
[   10.267322]  [] ? cdev_put+0x20/0x20
[   10.267323]  [] ? do_dentry_open+0x1be/0x2d0
[   10.267325]  [] ? path_openat+0x20a/0x1560
[   10.267326]  [] ? __wake_up+0x34/0x50
[   10.267328]  [] ? do_filp_open+0x91/0x100
[   10.267330]  [] ? snd_card_file_remove+0x7d/0xe0 [snd]
[   10.267332]  [] ? do_sys_open+0x13a/0x230
[   10.267333]  [] ? system_call_fast_compare_end+0xc/0x6b
[   10.267334] ---[ end trace c26fb6e00392cc00 ]---
[   10.267335] [ cut here ]
[   10.267343] WARNING: CPU: 2 PID: 1555 at
/build/linux-kTc2b3/linux-4.3.3/drivers/gpu/drm/i915/intel_csr.c:462
skl_set_power_well+0x773/0x9d0 [i915]()
[   10.267343] CSR HTP Not fine
[   10.267344] Modules linked in: ctr ccm binfmt_misc bnep nfsd auth_rpcgss
oid_registry nfs_acl nfs lockd grace fscache sunrpc joydev uvcvideo
videobuf2_vmalloc videobuf2_memops videobuf2_core v4l2_common btusb btrtl
videodev btbcm btintel media bluetooth snd_hda_codec_hdmi msr intel_rapl
iosf_mbi acpi_call(O) x86_pkg_temp_thermal intel_powerclamp coretemp
kvm_intel kvm crct10dif_pclmul crc32_pclmul jitterentropy_rng arc4
sha256_ssse3 sha256_generic hmac iTCO_wdt iTCO_vendor_support drbg
snd_hda_codec_conexant snd_hda_codec_generic ansi_cprng aesni_intel
aes_x86_64 lrw gf128mul glue_helper ablk_helper cryptd iwlmvm psmouse
snd_hda_intel mac80211 pcspkr serio_raw thinkpad_acpi snd_hda_codec iwlwifi
snd_hda_core battery ac nvram snd_hwdep mei_me mei snd_pcm cfg80211
snd_timer tpm_crb snd rfkill tpm soundcore
[   10.267429]  i2c_i801 shpchp evdev processor fuse parport_pc ppdev lp
parport autofs4 ext4 crc16 mbcache jbd2 sg sd_mod uas usb_storage
crc32c_intel e1000e ptp pps_core amdkfd ahci libahci amdgpu i915 xhci_pci
ttm i2c_algo_bit libata xhci_hcd drm_kms_helper usbcore scsi_mod drm
usb_common thermal wmi video button
[   10.267451] CPU: 2 PID: 1555 Comm: pulseaudio Tainted: GW  O
4.3.0-0.bpo.1-amd64 #1 Debian 4.3.3-7~bpo8+1
[   10.267452] Hardware name: LENOVO 20ETCTO1WW/20ETCTO1WW, BIOS R00ET37W
(1.12 ) 01/17/2016
[   10.267452]   ccc62a2a 812e1889
880237e87978
[   10.267454]  81074451 88023807 880237e879d0
300f
[   10.267455]  0001 8800360e7800 810744dc
a0343032
[   10.267457] Call Trace:
[   10.267458]  [] ? dump_stack+0x40/0x57
[   10.267462]  [] ? warn_slowpath_common+0x81/0xb0
[   10.267463]  [] ? warn_slowpath_fmt+0x5c/0x80
[   10.267471]  [] ? skl_set_power_well+0x773/0x9d0 [i915]
[   10.267478]  [] ? intel_display_power_get+0x9c/0xe0
[i915]
[   10.267481]  [] ? snd_hdac_display_power+0x74/0x100
[snd_hda_core]
[   10.267484]  [] ? 

Bug#816158: gajim: Update 0.15.1-4.1+deb7u1 introduces a broken dependency

[Salvatore Bonaccorso]

Hi Joachim,

On Sun, Feb 28, 2016 at 08:11:45AM +0100, Joachim Fahrner wrote:
> Package: gajim
> Version: 0.15.1-4.1
> Severity: grave
> Justification: renders package unusable
> 
> Dear Maintainer,
> 
> this update won't install because of a broken dependency. It needs python:any
> (>=2.6.6.-7~) but python 2.7.3-4+deb7u1 is installed.

Thanks for the report. We have released a follow-up DSA (DSA-3492-2)
fixing this issue.

Regards,
Salvatore

Bug#816174: debsecan: clarify report category "fixed vulnerabilities"

[Christian Pernegger]

Package: debsecan
Version: 0.4.17
Severity: wishlist

Hi,

I have to admit that I'm confused about the meaning of the report
headers in the nightly report. Does "fixed vulnerabilities" mean fixed
in the archive, as in I should go download an update or is it fixed on the
system?

Regards,
Christian


-- System Information:
Debian Release: 8.3
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=de_AT.UTF-8, LC_CTYPE=de_AT.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages debsecan depends on:
ii  debconf [debconf-2.0]  1.5.56
ii  python 2.7.9-1
ii  python-apt 0.9.3.12

Versions of packages debsecan recommends:
ii  cron   3.0pl1-127+deb8u1
ii  nullmailer [mail-transport-agent]  1:1.13-1

debsecan suggests no packages.

-- debconf information excluded