Bug#913552: firehol: Firehol upgrade 3.1.6+ds-4 to 3.1.6+ds-5 leaves firehol broken

2018-11-12 Thread Russel Winder 
Hi,

I found this:

https://www.theregister.co.uk/2016/11/24/debian_testing_merged_codeusrcode/

but if it is standard in Debian Sid, I clearly do not have it switched on.




signature.asc
Description: This is a digitally signed message part

Bug#913601: [Ceph-maintainers] Bug#913601: ceph: FTBFS on mips/el: /usr/include/c++/8/bits/atomic_base.h:304: undefined reference to `__atomic_fetch_sub_8'

2018-11-12 Thread Gaudenz Steinlin 



Hi

Emilio Pozuelo Monfort  writes:


Your package failed to build on mips/el: 

/usr/bin/ld: CMakeFiles/ceph-mgr.dir/mgr/DaemonServer.cc.o: in 
function `RefCountedObject::~RefCountedObject()': 
/usr/include/c++/8/bits/atomic_base.h:396: undefined reference 
to `__atomic_load_8' /usr/bin/ld: 
/usr/include/c++/8/bits/atomic_base.h:396: undefined reference 
to `__atomic_load_8' /usr/bin/ld: 
CMakeFiles/ceph-mgr.dir/mgr/DaemonServer.cc.o: in function 
`RefCountedObject::~RefCountedObject()': 


You may need to link with -latomic.


As you can see from the rules file the package already links with 
-latomic by setting it in DEB_LDFLAGS_MAINT_APPEND. The problem is
that cmake inserts this option before some of the object files so 
those don't get linked with libatomic.


I'm working on a fix for this. Do you know which architectures in 
Debian actually need libatomic? I would like to avoid any 
unnecessary linking to it.


Gaudenz
--
PGP: 836E 4F81 EFBB ADA7 0852 79BF A97A 7702 BAF9 1EF5

Bug#913625: Upstream default pidfile location changed

2018-11-12 Thread Christian Ehrhardt 
Package: chrony
Version: 3.4-1
Severity: normal

Hi,
in upstream chrony 3.4 there was a change [1] to the default pidfile path.
Since we do not configure at build nor in the .conf file a different
path we have followed this changed default path.

Therefore I think we need a change to our service file like [2] to
have it be aware of the right PIDs.
What do you think?

[1]: 
https://git.tuxfamily.org/chrony/chrony.git/commit/?id=e50dc739d88feca6e0da034406034f3d3cf60ca4
[2]: 
https://git.launchpad.net/~paelzer/ubuntu/+source/chrony/commit/?id=a035dfd03423a097e7f1bf27d7d4f124f03fdcc1

-- 
Christian Ehrhardt
Software Engineer, Ubuntu Server
Canonical Ltd

Bug#913600: [Ceph-maintainers] Bug#913600: ceph: bd-uninst on several architectures: libboost-context1.67-dev not available

2018-11-12 Thread Gaudenz Steinlin 



Hi

Emilio Pozuelo Monfort  writes:
Your package can no longer be built on several architectures, as 
libboost-context is not built everywhere. Possible solutions 
would be: 


1) Make that build-dep optional


I don't think that's possible. Or do you have any pointers how 
Ceph could be built without libboost-context?


The only option I see going in that direction is to use the 
embedded copy of Boost which ships with the Ceph sources. But I'd 
like to avoid that and I actually doubt this will build on these 
architectures if the Boost Debian package does not build.


2) Look if that boost library can now be built on more 
architectures


Was the boost build disabled on these architectures? I was under 
the impression that we are just missing builds for these and that 
they will eventually get done. My time resources to work on other 
packages are a bit limited. Do you know why Boost is not built on 
these architectures?



3) Remove ceph from the affected architectures


If we can't get this fixed and all the other architectures build 
fine this is probably the easiest option. However sad...




See the affected architectures at 
https://buildd.debian.org/status/package.php?p=ceph 


I'm currently working on the build failures on mips, mipsel and 
armel.


Gaudenz

PGP: 836E 4F81 EFBB ADA7 0852 79BF A97A 7702 BAF9 1EF5

Bug#913624: totem freezes my system no matter what I play with it

2018-11-12 Thread Daniel 
Package: totem
Version: 3.22.1-1
Severity: important

Dear Maintainer,

playing flac, mp3, ... with totem makes my system unresponsive requiring a hard
reset: music plays at max volume and neither mouse nor volume keys are
responsive



-- System Information:
Debian Release: 9.6
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.18.0-0.bpo.1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8), 
LANGUAGE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages totem depends on:
ii  grilo-plugins-0.3   0.3.3-1+deb9u1
ii  gsettings-desktop-schemas   3.22.0-1
ii  gstreamer1.0-clutter-3.03.0.24-1
ii  gstreamer1.0-plugins-bad1.10.4-1
ii  gstreamer1.0-plugins-base   1.10.4-1
ii  gstreamer1.0-plugins-good   1.10.4-1
ii  gstreamer1.0-x  1.10.4-1
ii  libc6   2.24-11+deb9u3
ii  libcairo2   1.14.8-1
ii  libgdk-pixbuf2.0-0  2.36.5-2+deb9u2
ii  libglib2.0-02.50.3-2
ii  libgstreamer-plugins-base1.0-0  1.10.4-1
ii  libgstreamer1.0-0   1.10.4-1
ii  libgtk-3-0  3.22.11-1
ii  libnautilus-extension1a 3.22.3-1+deb9u1
ii  libpango-1.0-0  1.40.5-1
ii  libpangocairo-1.0-0 1.40.5-1
ii  libtotem-plparser18 3.10.7-1+b1
ii  libtotem0   3.22.1-1
ii  libx11-62:1.6.4-3+deb9u1
ii  totem-common3.22.1-1

Versions of packages totem recommends:
ii  gstreamer1.0-libav 1.10.4-1
ii  gstreamer1.0-plugins-ugly  1.10.4-1
ii  gstreamer1.0-pulseaudio1.10.4-1
ii  totem-plugins  3.22.1-1

Versions of packages totem suggests:
pn  gnome-codec-install  

-- no debconf information

Bug#913623: ocrmypdf: FTBFS when built twice in a row

2018-11-12 Thread Graham Inggs 
Source: ocrmypdf
Version: 6.2.5-1
Severity: serious
Tags: ftbfs patch

Hi Maintainer

Package ocrmypdf fails to build from source when built twice in a row.
The following change to debian/clean solved the problem for me.

--- a/debian/clean
+++ b/debian/clean
@@ -1,2 +1,2 @@
-ocrmypdf.egg-info/
+src/ocrmypdf.egg-info/
 html/

Regards
Graham

Bug#845715: Required targets must not write outside of the source package tree

2018-11-12 Thread Stuart Prescott 
Bill Allombert wrote:
> +Required targets must not attempt to write outside of the unpacked
> +source package tree.  There are two exceptions.  Firstly, the binary
> +targets may write the binary packages to the parent directory of the
> +unpacked source package tree.  Secondly, required targets may write to
> +/tmp, /var/tmp and to the directory specified by the ``TMPDIR``
> environment 
> + variable, but must not depend on the content of either.
> +
> +This restriction is intended to prevent source package builds creating
> +and depending on state outside of themselves, thus affecting multiple
> +independent rebuilds.  In particular, the required targets must not
> +attempt to write into ``HOME``.

At the risk of letting perfect be the enemy of good, is it obvious following 
this final remark about HOME that:

* if user sets TMPDIR=$HOME/tmp then it is indeed OK to write into HOME? 

* if the package redefines HOME within d/rules then it is ok to write to the 
(redefined) HOME?

It's reasonably common to redefine HOME within d/rules to make the build 
robust against a user's config files and/or to prevent unwanted config files 
being created.

https://codesearch.debian.net/search?q=path%3Adebian%2Frules+%5B+%5DHOME%3D

(I would cheerfully second the above text if my [deliberate] misreading is 
an outlier and any tightening of the text is so hard to understand that it's 
not actually an improvement.)

cheers
Stuart

-- 
Stuart Prescotthttp://www.nanonanonano.net/   stu...@nanonanonano.net
Debian Developer   http://www.debian.org/ stu...@debian.org
GPG fingerprint90E2 D2C1 AD14 6A1B 7EBB 891D BBC1 7EBB 1396 F2F7

Bug#913622: dask: fails autopkgtest with cloudpickle 0.5.6-1

2018-11-12 Thread Graham Inggs 
Source: dask
Version: 0.17.5-2
Severity: serious
X-Debbugs-CC: debian...@lists.debian.org
User: debian...@lists.debian.org
Usertags: needs-update

Hi Maintainer

Since 2018-10-02, dask has been failing its autopkgtest [1].
This seems to correspond with the upload of cloudpickle 0.5.6-1 to unstable.

I've marked this bug serious since it might be causing a major problem
in dask, but please downgrade as appropriate.

Regards
Graham


[1] https://ci.debian.net/packages/d/dask/unstable/amd64/

Bug#860285: [PKG-Openstack-devel] Bug#860285: Any version update

2018-11-12 Thread Mathieu Parent (Debian) 
Hi,

FYI, the WIP repo is now at:
  https://salsa.debian.org/python-team/modules/python-pyvmomi.

Currently it FTBFS.

Regards
-- 
Mathieu Parent

Bug#913621: logcheck-database: update rule in ignore.d.server/postfix

2018-11-12 Thread Yasuhiro KIMURA 
Package: logcheck-database
Version: 1.3.18
Severity: normal

Dear Maintainer,

There is following rule in ignore.d.server/postfix.

^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ postfix/smtpd?\[[[:digit:]]+\]: 
((Anonymous|Trusted|Verified) )?TLS connection established (to|from) 
[^[:space:]]+: (TLSv1|SSLv[23]) with cipher [^[:space:]]+ \([/[:digit:]]+ 
bits\)$

This rule is for log message written when TLS connection is established.
But when TLS 1.1 or later is used log message is written as following.

Nov 13 06:02:04 client01 postfix/smtp[10697]: Anonymous TLS connection 
established to mail.example.org[192.168.0.1]:25: TLSv1.2 with cipher 
ADH-AES256-GCM-SHA384 (256/256 bits)

And it doesn't match with above rule. So it should be updated as
following.

^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ postfix/smtpd?\[[[:digit:]]+\]: 
((Anonymous|Trusted|Verified) )?TLS connection established (to|from) 
[^[:space:]]+: (TLSv1(\.[[:digit:]])?|SSLv[23]) with cipher [^[:space:]]+ 
\([/[:digit:]]+ bits\)$

Best Regards.

-- System Information:
Debian Release: 9.6
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-8-amd64 (SMP w/4 CPU cores)
Locale: LANG=ja_JP.UTF-8, LC_CTYPE=ja_JP.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

-- Configuration Files:
/etc/logcheck/cracking.d/kernel [Errno 13] Permission denied: 
'/etc/logcheck/cracking.d/kernel'
/etc/logcheck/cracking.d/rlogind [Errno 13] Permission denied: 
'/etc/logcheck/cracking.d/rlogind'
/etc/logcheck/cracking.d/rsh [Errno 13] Permission denied: 
'/etc/logcheck/cracking.d/rsh'
/etc/logcheck/cracking.d/smartd [Errno 13] Permission denied: 
'/etc/logcheck/cracking.d/smartd'
/etc/logcheck/cracking.d/tftpd [Errno 13] Permission denied: 
'/etc/logcheck/cracking.d/tftpd'
/etc/logcheck/cracking.d/uucico [Errno 13] Permission denied: 
'/etc/logcheck/cracking.d/uucico'
/etc/logcheck/ignore.d.paranoid/bind [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.paranoid/bind'
/etc/logcheck/ignore.d.paranoid/cron [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.paranoid/cron'
/etc/logcheck/ignore.d.paranoid/incron [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.paranoid/incron'
/etc/logcheck/ignore.d.paranoid/logcheck [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.paranoid/logcheck'
/etc/logcheck/ignore.d.paranoid/postfix [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.paranoid/postfix'
/etc/logcheck/ignore.d.paranoid/ppp [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.paranoid/ppp'
/etc/logcheck/ignore.d.paranoid/pureftp [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.paranoid/pureftp'
/etc/logcheck/ignore.d.paranoid/qpopper [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.paranoid/qpopper'
/etc/logcheck/ignore.d.paranoid/squid [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.paranoid/squid'
/etc/logcheck/ignore.d.paranoid/ssh [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.paranoid/ssh'
/etc/logcheck/ignore.d.paranoid/stunnel [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.paranoid/stunnel'
/etc/logcheck/ignore.d.paranoid/sysklogd [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.paranoid/sysklogd'
/etc/logcheck/ignore.d.paranoid/telnetd [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.paranoid/telnetd'
/etc/logcheck/ignore.d.paranoid/tripwire [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.paranoid/tripwire'
/etc/logcheck/ignore.d.paranoid/usb [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.paranoid/usb'
/etc/logcheck/ignore.d.server/acpid [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.server/acpid'
/etc/logcheck/ignore.d.server/amandad [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.server/amandad'
/etc/logcheck/ignore.d.server/amavisd-new [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.server/amavisd-new'
/etc/logcheck/ignore.d.server/anacron [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.server/anacron'
/etc/logcheck/ignore.d.server/anon-proxy [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.server/anon-proxy'
/etc/logcheck/ignore.d.server/apache [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.server/apache'
/etc/logcheck/ignore.d.server/apcupsd [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.server/apcupsd'
/etc/logcheck/ignore.d.server/arpwatch [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.server/arpwatch'
/etc/logcheck/ignore.d.server/asterisk [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.server/asterisk'
/etc/logcheck/ignore.d.server/automount [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.server/automount'
/etc/logcheck/ignore.d.server/bind [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.server/bind'
/etc/logcheck/ignore.d.server/bluez-utils [Errno 13] Permission denied: 
'/etc/logcheck/ignore.d.server/bluez-utils'

Bug#703010: (no subject)

2018-11-12 Thread Andrew Ruthven 
On Fri, 2018-11-09 at 20:01 +, Dmitry Bogatov wrote:
> 
> On my laptop, there is no VxID in /proc/self/status:
[snip]

That is correct, as I noted it is only present if you are running a
kernel with the vserver patch applied.

Cheers,
Andrew

-- 
Andrew Ruthven, Wellington, New Zealand
and...@etc.gen.nz| linux.conf.au 2019, Christchurch, NZ
https://catalystcloud.nz | https://lca2019.linux.org.au

Bug#913620: phpize7.3 hardcodes incorrect absolute path to sed if built on /usr-merged system

2018-11-12 Thread Adrian Bunk 
Package: php7.3-dev
Version: 7.3.0~rc5-1
Severity: serious
Control: affects -1 src:sassphp

https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/sassphp.html

...
cd build-7.3 && phpize7.3
/usr/bin/phpize7.3: 1: /usr/bin/phpize7.3: /usr/bin/sed: not found
/usr/bin/phpize7.3: 1: /usr/bin/phpize7.3: /usr/bin/sed: not found
/usr/bin/phpize7.3: 1: /usr/bin/phpize7.3: /usr/bin/sed: not found
Configuring for:
PHP Api Version:
Zend Module Api No: 
Zend Extension Api No:  
/usr/bin/phpize7.3: 157: /usr/bin/phpize7.3: /usr/bin/sed: not found
autoheader: error: AC_CONFIG_HEADERS not found in configure.ac
make[1]: *** [/usr/share/dh-php/pkg-pecl.mk:61: configure-7.3-stamp] Error 1

Bug#913619: python-markdown: missing dependency on python-pkg-resources

2018-11-12 Thread Adrian Bunk 
Package: python-markdown
Version: 2.6.11-1
Severity: serious
Control: affects -1 src:seqprep

https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/seqprep.html

...
markdown_py -f README.html README.md
Traceback (most recent call last):
  File "/usr/bin/markdown_py", line 6, in 
from pkg_resources import load_entry_point
ImportError: No module named pkg_resources
make[1]: *** [debian/rules:14: override_dh_auto_build] Error 1

Bug#913618: ITP: zsh-autosuggestions -- Fish-like autosuggestions for zsh

2018-11-12 Thread Mo Zhou 
Package: wnpp
Severity: wishlist
Owner: lu...@debian.org

* Package name: zsh-autosuggestions
  Version : 0.4.3
  Upstream Author : Thiago de Arruda, Eric Freese
* URL : https://github.com/zsh-users/zsh-autosuggestions
* License : Expat
  Programming Lang: zsh
  Description : Fish-like autosuggestions for zsh

Bug#877721: racoon: IPsec tunnel with HMAC SHA256 in phase 2 is not working correctly

2018-11-12 Thread Noah Meyerhans 
On Mon, Nov 12, 2018 at 01:50:57PM +0100, Jean-Samuel Reynaud wrote:
> In conclusion, for me it's look like a feature missing in racoon... A
> discusion was about this on racoon ML:
> 
> https://sourceforge.net/p/ipsec-tools/mailman/message/34146970/

Thanks. The best course of action from here is to try to get the
attention of the upstream maintainers and see if we can get any traction
on it. I can follow up on the mailing list when I have time, but feel
free to post something sooner if you're so inclined.

noah



signature.asc
Description: PGP signature

Bug#912532: stunnel4: "Internal error: double free attempt" with OpenSSL 1.1.1-1 and 1.1.1-2

2018-11-12 Thread Frank Chung 
Dear maintainer,

Another quick update: on another machine running stunnel4 3:5.49-1 as
server, I tried upgrading openssl to 1.1.1-2 and then adding "options =
NO_TLSv1.3" to stunnel.conf, thus forcing the two ends (both running
stunnel4 3:5.49-1 and openssl 1.1.1-2) to negotiate TLS 1.2. This proves
effective at preventing segfaults as well. So the problem seems to have
something to do with TLS 1.3.

Regards,
Frank

Bug#913617: abook: Add support for iCalendar export format

2018-11-12 Thread Guillem Jover 
Source: abook
Source-Version: 0.6.1-1
Severity: wishlist
Tags: patch upstream
Forwarded: https://sourceforge.net/p/abook/git/merge-requests/1/

Hi!

To be able to use calcurse(1), it would be nice if abook supported
exporting the birthdays in iCalendar format. I've implemented this
and sent a merge request upstream.

As I'm not sure what's the upstream state, I'm sending it here too
in the hope that it might be mergeable in Debian regardless of the
upstream situation. Otherwise, it is just a nicer way to track the
progress. :)

Thanks,
Guillem
From bfb6f9af85be71ef4ee18105521a74520591bed5 Mon Sep 17 00:00:00 2001
From: Guillem Jover 
Date: Tue, 13 Nov 2018 03:29:07 +0100
Subject: [PATCH] Add support for iCalendar export format

This will export the birthday data into an iCalendar formatted file,
as aspecified in RFC 5545.
---
 abook.1  |  2 ++
 filter.c | 58 
 2 files changed, 60 insertions(+)

diff --git a/abook.1 b/abook.1
index 96d665d..17cdcc2 100644
--- a/abook.1
+++ b/abook.1
@@ -78,6 +78,8 @@ The following \fIoutputformats\fR are supported:
 .br
 \- \fBwl\fP Wanderlust address book
 .br
+\- \fBical\fP iCalendar
+.br
 \- \fBbsdcal\fP BSD calendar
 .br
 \- \fBcustom\fP Custom output format, see below
diff --git a/filter.c b/filter.c
index 5ae7bd6..aff6bcb 100644
--- a/filter.c
+++ b/filter.c
@@ -71,6 +71,7 @@ static int	elm_alias_export(FILE *out, struct db_enumerator e);
 static int	text_export_database(FILE *out, struct db_enumerator e);
 static int	spruce_export_database(FILE *out, struct db_enumerator e);
 static int	wl_export_database(FILE *out, struct db_enumerator e);
+static int	ical_export_database(FILE *out, struct db_enumerator e);
 static int	bsdcal_export_database(FILE *out, struct db_enumerator e);
 static int	custom_export_database(FILE *out, struct db_enumerator e);
 
@@ -113,6 +114,7 @@ struct abook_output_filter e_filters[] = {
 	{ "text", N_("plain text"), text_export_database },
 	{ "wl", N_("Wanderlust address book"), wl_export_database },
 	{ "spruce", N_("Spruce address book"), spruce_export_database },
+	{ "ical", N_("iCalendar"), ical_export_database },
 	{ "bsdcal", N_("BSD calendar"), bsdcal_export_database },
 	{ "custom", N_("Custom format"), custom_export_database },
 	{ "\0", NULL, NULL }
@@ -2537,6 +2539,62 @@ wl_export_database(FILE *out, struct db_enumerator e)
  * end of wanderlust addressbook export filter
  */
 
+/*
+ * iCalendar export filter
+ */
+
+static int
+ical_export_database(FILE *out, struct db_enumerator e)
+{
+	fprintf(out, "BEGIN:VCALENDAR\n");
+	fprintf(out, "PRODID:-//%s//NONSGML %s//EN\n", PACKAGE, VERSION);
+	fprintf(out, "VERSION:2.0\n");
+
+	db_enumerate_items(e) {
+		int year, month = 0, day = 0;
+		char *anniversary = db_fget(e.item, ANNIVERSARY);
+		char *summary;
+
+		if (anniversary) {
+			if(!parse_date_string(anniversary, , , ))
+continue;
+
+			/*
+			 * If there is no year, or an unrepresentable one,
+			 * use the lowest leap year that can fit on a system
+			 * using a 32-bit time_t.
+			 *
+			 * Unfortunately we cannot use the --MMDD reduced form
+			 * which was allowed in ISO 8601:2000, as that is not
+			 * allowed anymore in ISO 8601:2004, which is what
+			 * iCalendar is based on.
+			 */
+			if(year < 1904)
+year = 1904;
+
+			summary = strdup_printf(_("Anniversary of %s"),
+safe_str(db_name_get(e.item))
+			);
+
+			fprintf(out, "BEGIN:VEVENT\n");
+			fprintf(out, "DTSTART:%d%02d%02d\n", year, month, day);
+			fprintf(out, "RRULE:FREQ=YEARLY\n");
+			fprintf(out, "SUMMARY:%s\n", summary);
+			fprintf(out, "END:VEVENT\n");
+
+			free(summary);
+		}
+	}
+
+	fprintf(out, "END:VCALENDAR\n");
+
+	return 0;
+}
+
+/*
+ * end of iCalendar export filter
+ */
+
 /*
  * BSD calendar export filter
  */
-- 
2.19.1.1182.g4ecb1133ce

Bug#913586: texlive-binaries 2018.20181104.49075-1 breaks context

2018-11-12 Thread Norbert Preining 
Hi,

I cannot reproduce this.

Can you please run on the command line as root!

mtxrun --generate

That should rebuild the ConTeXt MarkIV format. It does work here.

Thanks

Norbert

--
PREINING Norbert   http://www.preining.info
Accelia Inc. +JAIST +TeX Live +Debian Developer
GPG: 0x860CDC13   fp: F7D8 A928 26E3 16A1 9FA0 ACF0 6CAC A448 860C DC13

Bug#913364: [atop] ..atop installs systemd cron job on non-systemd Devuan box...

2018-11-12 Thread Arnt Karlsen 
Hi,

..my first attempt wound up in the partially wrong place, upstream:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913364 because of
https://bugs.devuan.org//cgi/bugreport.cgi?bug=256

Package: atop
Version: 2.2.6-4
Severity: normal

--- Please enter the report below this line. ---

..on installing atop, I found things going at a glacial pace, a 
wee part of global climate change, and this fine new cron job:
root@box:~# cat /etc/cron.d/atop
PATH=/bin:/usr/bin:/sbin:/usr/sbin

# daily restart of atop at midnight
0 0 * * * root if [ -d "/run/systemd/system" ]; then systemctl restart
atop; else /usr/share/atop/atop.daily \& ; fi

..commenting it out, "brought back life."

..we need to keep an eye out for such systemd tricks causing such DOS,
one way is chk which init system is installed, and then install the
correct cron job file.
root@box:~# dpkg -l atop |grep atop |fmt -tu
ii atop 2.2.6-4 amd64 Monitor for system resources and process activity


--- System information. ---
Architecture: 
Kernel:   Linux 4.18.0-0.bpo.1-rt-amd64

Debian Release: 9
  500 stable-updates  deb.devuan.org 
  500 stable-security deb.devuan.org 
  500 stable  deb.devuan.org 
  100 stable-proposed-updates deb.devuan.org 
  100 stable-backports deb.devuan.org 
  100 experimentaldeb.devuan.org 

--- Package information. ---
Depends(Version) | Installed
-+-=
libc6  (>= 2.14) | 2.24-11+deb9u3
libncurses5   (>= 6) | 6.0+20161126-1+deb9u2
libtinfo5 (>= 6) | 6.0+20161126-1+deb9u2
zlib1g  (>= 1:1.1.4) | 1:1.2.8.dfsg-5
init-system-helpers   (>= 1.18~) | 1.48+devuan2.0
lsb-base (>= 3.2-14) | 4.1+devuan2


Recommends   (Version) | Installed
==-+-===
cron   | 3.0pl1-128+deb9u1
 OR cron-daemon| 


Package's Suggests field is empty.

-- 
..med vennlig hilsen = with Kind Regards from Arnt Karlsen
...with a number of polar bear hunters in his ancestry...
  Scenarios always come in sets of three: 
  best case, worst case, and just in case.

Bug#913365: [reportbug-ng] ..silly wee typo in reportbug-ng --help output

2018-11-12 Thread Arnt Karlsen 
Hi,

..my first attempt wound up in the partially wrong place, upstream:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913365 because of
https://bugs.devuan.org//cgi/bugreport.cgi?bug=256

Package: reportbug-ng
Version: 2.1
Severity: minor

--- Please enter the report below this line. ---

..silly wee typo in reportbug-ng --help output:
reportbug-ng --help
Usage: reportbug-ng [Options] [Query]

Report a bug in Debian's BTS. The optional paremter QUERY behaves
   
   paremter should have been parameter 
   
Report a bug in Debian's BTS. The optional parameter QUERY behaves
exactly like the query inside the program. Supported queries are:
packagename, bugnumber, maintai...@foo.bar, src:package,
from:submit...@foo.bar, severity:foo and tag:bar.

Options:
  --version show program's version number and exit
  -h, --helpshow this help message and exit
  -l LEVEL, --loglevel=LEVEL
Which loglevel to use [default: warning]. Valid
loglevels are: critical, error, warning, info,
debug, notset


--- System information. ---
Architecture: 
Kernel:   Linux 4.18.0-0.bpo.1-rt-amd64

Debian Release: 9
  500 stable-updates  deb.devuan.org 
  500 stable-security deb.devuan.org 
  500 stable  deb.devuan.org 
  100 stable-proposed-updates deb.devuan.org 
  100 stable-backports deb.devuan.org 
  100 experimentaldeb.devuan.org 

--- Package information. ---
Depends   (Version) | Installed
===-+-==
python:any(>= 2.7.5-5~) | 
python-debianbts   (>= 1.0) | 2.6.1
python-pyqt5| 5.7+dfsg-5
python-pyqt5.qtwebkit   | 5.7+dfsg-5
xdg-utils   | 1.1.1-1+deb9u1
xterm   | 327-2
python-apt  (>= 0.7.93) | 1.4.0~beta3


Package's Recommends field is empty.

Package's Suggests field is empty.




Hi,


-- 
..med vennlig hilsen = with Kind Regards from Arnt Karlsen
...with a number of polar bear hunters in his ancestry...
  Scenarios always come in sets of three: 
  best case, worst case, and just in case.

Bug#913277: "FATAL_ERROR: No valid sound driver! FATAL_ERROR: Server exited!"

2018-11-12 Thread Awtul 
Package: moc
Version: 1:2.6.0~svn-r2984-1
Followup-For: Bug #913277

My audio card is internal, not usb.

A bit of info about it if it helps:

lspci -v | grep -i audio
00:1b.0 Audio device: Intel Corporation 7 Series/C216 Chipset Family High 
Definition Audio Controller (rev 04)
Subsystem: Lenovo 7 Series/C216 Chipset Family High Definition Audio 
Controller

--

aplay --list-devices
 List of PLAYBACK Hardware Devices 
card 0: PCH [HDA Intel PCH], device 0: CX20590 Analog [CX20590 Analog]
  Subdevices: 0/1
  Subdevice #0: subdevice #0
card 0: PCH [HDA Intel PCH], device 3: HDMI 0 [HDMI 0]
  Subdevices: 1/1
  Subdevice #0: subdevice #0
  
-
pactl list sinks
Sink #0
State: RUNNING
Name: alsa_output.pci-_00_1b.0.analog-stereo
Description: Audio Interno Estéreo Analógico
Driver: module-alsa-card.c
Sample Specification: s16le 2ch 48000Hz
Channel Map: front-left,front-right
Owner Module: 6
Mute: no
Volume: front-left: 39300 /  60% / -13,33 dB,   front-right: 39300 /  
60% / -13,33 dB
balance 0,00
Base Volume: 65536 / 100% / 0,00 dB
Monitor Source: alsa_output.pci-_00_1b.0.analog-stereo.monitor
Latency: 21929 usec, configured 23220 usec
Flags: HARDWARE HW_MUTE_CTRL HW_VOLUME_CTRL DECIBEL_VOLUME LATENCY 
Properties:
alsa.resolution_bits = "16"
device.api = "alsa"
device.class = "sound"
alsa.class = "generic"
alsa.subclass = "generic-mix"
alsa.name = "CX20590 Analog"
alsa.id = "CX20590 Analog"
alsa.subdevice = "0"
alsa.subdevice_name = "subdevice #0"
alsa.device = "0"
alsa.card = "0"
alsa.card_name = "HDA Intel PCH"
alsa.long_card_name = "HDA Intel PCH at 0xe061 irq 27"
alsa.driver_name = "snd_hda_intel"
device.bus_path = "pci-:00:1b.0"
sysfs.path = "/devices/pci:00/:00:1b.0/sound/card0"
device.bus = "pci"
device.vendor.id = "8086"
device.vendor.name = "Intel Corporation"
device.product.id = "1e20"
device.product.name = "7 Series/C216 Chipset Family High 
Definition Audio Controller"
device.form_factor = "internal"
device.string = "front:0"
device.buffering.buffer_size = "352800"
device.buffering.fragment_size = "176400"
device.access_mode = "mmap+timer"
device.profile.name = "analog-stereo"
device.profile.description = "Estéreo Analógico"
device.description = "Audio Interno Estéreo Analógico"
alsa.mixer_name = "Conexant CX20590"
alsa.components = "HDA:14f1506e,17aac033,0013 
HDA:80862806,80860101,0010"
module-udev-detect.discovered = "1"
device.icon_name = "audio-card-pci"
Puertos:
analog-output-speaker: Speakers (priority: 1)
analog-output-headphones: Auriculares analógicos (priority: 
9000, not available)
Puerto Activo: analog-output-speaker
Formats:
pcm

--

pactl list short sinks
0   alsa_output.pci-_00_1b.0.analog-stereo  module-alsa-card.c  
s16le 2ch 48000Hz   RUNNING

Bug#913615: data/cronjobs/carnivore: gpg: keybox '/srv/qa.debian.org/data/keyrings/keyrings/removed-keys.gpg' created

2018-11-12 Thread Paul Wise 
Package: qa.debian.org
Severity: normal
User: qa.debian@packages.debian.org
Usertags: carnivore

Since 2018-10-26 the carnivore cron job has been printing:

From:   Cron Daemon 
To: cron-er...@qa.debian.org
Subject:Cron  nice -15 flock -n 
/srv/qa.debian.org/lock/carnivore /srv/qa.debian.org/data/cronjobs/carnivore

gpg: keybox '/srv/qa.debian.org/data/keyrings/keyrings/removed-keys.gpg' created

-- 
bye,
pabs

https://wiki.debian.org/PaulWise



signature.asc
Description: This is a digitally signed message part

Bug#913586: texlive-binaries 2018.20181104.49075-1 breaks context

2018-11-12 Thread Thanasis Kinias 
Yes! “attempt to call upvalue 'isfile' (a nil value)” was the error that
would break compilation after I updated this morning.

I’m not entirely sure why the format-generation problem is preventing
installation now, whereas this morning it updated successfully but wouldn’t
run—but I’m glad you can reproduce the error.

Given that at least in some situations, attempting to install the
texlive-binaries package currently in testing will cause apt to hang, this
seems like it could be a fairly serious problem.

—TK

On Mon, 12 Nov 2018 at 17:07, Hilmar Preuße  wrote:

> On 12.11.18 21:48, Thanasis Kinias wrote:
>
> Hi,
>
> > Ah yes, of course.  Sorry I failed my reading comprehension task :)
> >
> > Here are just the logfiles from under /var/lib/texmf/web2c.
> >
> I'm sorry there is no valuable information in your log files. Probably
> b/c the program even started running and even wrote a log file...However
> I'm able to reproduce the problem and extracted the command line
> probably leading to your problem:
>
> hille@amd64-sid:~$ luatex --ini
> --lua=/usr/share/texmf/tex/context/base/mkiv/luat-cod.lua
> /tmp/cont-en.mkiv dum
> This is LuaTeX, Version 1.09.0 (TeX Live 2019/dev/Debian)  (INITEX)
>  system commands enabled.
> error in callback:
> /usr/share/texmf/tex/context/base/mkiv/luat-cod.lua:166: attempt to call
> upvalue 'isfile' (a nil value)
> .
> 
>
> <*> /tmp/cont-en.mkiv
>dum
> ?
>
> ..and the format generation hangs. I had to kill the luatex run.
>
> H.
> --
> sigfault
> #206401 http://counter.li.org
>


-- 
Thanasis Kinias
Instructor & Doctoral Candidate, Department of History, Northeastern
University
kinia...@husky.neu.edu

Bug#913614: gnupg2 fails with "cannot open '/dev/tty': No such device or address"

2018-11-12 Thread Joseph Ferguson 
Package: gnupg
Version: 2.1.18-8~deb9u3

Reproducer, run the following in an environment without a tty.  For me, this
is happening in a "docker build".  It happens on old Docker versions as
well as new.

# apt install gnupg2 (2.1.18-8~deb9u3)
$ gpg --verbose --keyserver hkp://keyserver.ubuntu.com:80 \
  --keyserver-options timeout=5 --recv-keys \
  ABAF11C65A2970B130ABE3C479BE3E4300411886

Error text:
gpg: cannot open '/dev/tty': No such device or address

If I manually download the debs for gnupg2, dirmngr, and gnupg-agent
at '2.1.18-8~deb9u2', it works fine. I grabbed the 3 debs directly from
snapshot.debian.org and then installed them with  "apt install -V -y *.deb".

Example of full failure output (multiple times across different gpg servers):
https://travis-ci.org/boot2docker/boot2docker/builds/454166287#L1390-L1427

Thanks,
Joe Ferguson

Bug#865548: bash-completion: completion for OpenRC rc-service

2018-11-12 Thread Gabriel F. T. Gomes 
Hi, Mathieu,

On Thu, 22 Jun 2017 18:45:07 +0200 Mathieu Roy  wrote:
>
> With the following (almost a copy of invoke-rc.d), rc-service should
> be handled ok.

Here's what I got on a freshly debootstrapped chroot:

  $ rc-service [TAB][TAB]
  cron--ifnotstarted  procps  savecache
  --existskmod--quiet udev
  --help  --list  rc  
  --ifexists  networking  rcS 
  --ifinactive--nocolor   rsyslog 

> (tried to sent it by mail to the mailing list but the list if for
> suscribers only)

No problem, I fixed the line wrapping. :)

>   options=( --help --exists --ifexists --ifinactive
> --ifnotstarted  --list --nocolor --quiet )

Compared to what's listed by `rc-invoke --help', there are some options
missing:

  $ rc-service --help
  Usage: rc-service [options] [-i]  ...
 or: rc-service [options] -e 
 or: rc-service [options] -l
 or: rc-service [options] -r 
  
  Options: [ cdDe:ilr:INsSZChqVv ]
-d, --debug   set xtrace when running the command
-D, --nodeps  ignore dependencies
-e, --exists tests if the service exists or not
-c, --ifcrashed   if the service is crashed then run the 
command
-i, --ifexistsif the service exists then run the command
-I, --ifinactive  if the service is inactive then run the 
command
-N, --ifnotstartedif the service is not started then run 
the command
-s, --ifstarted   list all available services
-S, --ifstopped   resolve the service name to an init script
-l, --listdry run (show what would happen)
-r, --resolveDisplay this help output
-Z, --dry-run Disable color output
-h, --helpDisplay software version
-C, --nocolor Run verbosely
-V, --version Run quietly (repeat to suppress errors)
-v, --verbose   -q, --quiet   debug


I suppose it would be OK to add --debug, --nodeps, --ifcrashed,
--ifstarted, --ifstopped, --resolve, --dry-run, --version, --verbose.

Besides that, would you be willing to send this as a pull request
upstream at https://github.com/scop/bash-completion?

Cheers,
Gabriel

Bug#913613: data/cronjobs/vcsstats: line 1: warning: Skipping data file with no valid points

2018-11-12 Thread Paul Wise 
Package: qa.debian.org
Severity: important
X-Debbugs-CC: Christoph Berg 
User: qa.debian@packages.debian.org
Usertags: vcswatch

Every day since 2018-10-05 00:00 UTC we get a mail from vcsstats:

From:   Cron Daemon 
To: cron-er...@qa.debian.org
Subject:Cron  nice -15 flock -n 
/srv/qa.debian.org/lock/vcsstats /srv/qa.debian.org/data/cronjobs/vcsstats

 line 1: warning: Skipping data file with no valid points

-- 
bye,
pabs

https://wiki.debian.org/PaulWise



signature.asc
Description: This is a digitally signed message part

Bug#913612: openresolv: metric logic is flawed

2018-11-12 Thread Scott Barker 
Package: openresolv
Version: 3.8.0-1
Severity: normal

The documentation for the -m options says:

  Set the metric of the interface when adding it, default of 0.  Lower metrics 
take precedence.

However, if you assign any metric to an interface, it will actually take
precedence over any interface which doesn't have a metric defined and isn't
in the interface_order or dynamic_order. Hence, the default metric is
actually one more than 999. For example:

# /sbin/resolvconf -i
lo.unbound wlan0

# cat myvpn_resolvconf | /sbin/resolvconf -m 99 -a myvpn
 
# /sbin/resolvconf -i
lo.unbound myvpn wlan0

# find /run/resolvconf/ -type f
/run/resolvconf/interfaces/myvpn
/run/resolvconf/interfaces/lo.unbound
/run/resolvconf/interfaces/wlan0
/run/resolvconf/metrics/099 myvpn

I'm attaching a trivial patch that fixes this behaviour.

-- System Information:
Debian Release: 9.6
  APT prefers stable
  APT policy: (990, 'stable'), (500, 'stable-updates'), (500, 
'proposed-updates')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.18.0-0.bpo.1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_CA.utf8, LC_CTYPE=en_CA.utf8 (charmap=UTF-8), LANGUAGE=en_CA:en 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)
--- /sbin/resolvconf2016-04-20 13:30:01.0 -0600
+++ resolvconf  2018-11-12 17:04:16.296605415 -0700
@@ -404,13 +404,15 @@
fi
done
done
+   for i in *; do
+   [ ! -e "$METRICDIR/"*" $i" ] && list="$list $i"
+   done
if [ -d "$METRICDIR" ]; then
cd "$METRICDIR"
for i in *; do
[ -f "$i" ] && list="$list ${i#* }"
done
fi
-   list="$list *"
fi
 
cd "$IFACEDIR"

Bug#888691: [bug #53020] wget -b produces empty wget-log file

2018-11-12 Thread Darshit Shah 
Update of bug #53020 (project wget):

 Open/Closed:Open => Closed 


___

Reply to this item at:

  

___
  Message sent via Savannah
  https://savannah.gnu.org/

Bug#913611: zram-tools: Description mentions /etc/default/zramswap.conf, script uses /etc/default/zramswap, both files exist

2018-11-12 Thread Axel Beckert 
Package: zram-tools
Version: 0.3.2-1
Severity: important

Hi,

this is related to https://bugs.debian.org/910644 as the leftovers (old
config file) from that bug were not properly cleaned up and the file
location in the package description wasn't updated at all.

Actually the current state with 0.3.2-1 is worse than before, at least
if you had 0.3.1-1 installed initially:

* The package description still refers to /etc/default/zramswap.conf:
  "By default it allocates 100MB of RAM, you can configure this in
  /etc/default/zramswap.conf"

* The script still sources /etc/default/zramswap.

* But now, both files, /etc/default/zramswap.conf and
  /etc/default/zramswap exist, causing more user confusion than before.

P.S.: #910644 looks like a packaging bug to me (config file installed
with wrong name, "fixed" in debian/install), so I don't understand why
the new upstream release was said to fix this. Being more verbose in
debian/changelog about what exactly fixes which Debian bug report would
probably have helped here.

P.P.S.: The homepage field contains
https://github.com/highvoltage/zram-tools, but the latest commit there
is from 2015 (in both branches) and the most recent release is 0.1. So
either that GitHub repo is horribly out of date or the homepage header
is out of date.)

-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (990, 'unstable'), (980, 'unstable-debug'), (600, 'testing'), 
(111, 'buildd-unstable'), (111, 'buildd-experimental'), (110, 'experimental'), 
(105, 'experimental-debug')
Architecture: amd64 (x86_64)

Kernel: Linux 4.18.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE=C.UTF-8 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages zram-tools depends on:
ii  bc  1.07.1-2+b1

zram-tools recommends no packages.

zram-tools suggests no packages.

-- no debconf information

Bug#913610: xfce4-panel: No default volume control plugin

2018-11-12 Thread Dominik George 
Package: xfce4-panel
Version: 4.12.2-1
Severity: normal
Tags: upstream
Forwarded: https://bugzilla.xfce.org/show_bug.cgi?id=14870
Control: affects -1 education-desktop-xfce

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

During testing of Xfce 4.12 as the new default desktop for Debian Edu
(Skolelinux), it was discovered that the new audio mixer, the
xfce4-pulse-plugin, is not enabled in the panel by default.  The late
xfce4-mixer was autostarted with the session.  While this is not strictly a
bug from a technical point of view, it pretty much upsets users if they
cannot change the audio volume in the default config, and need to find out
how to add plugins to the panel first.

Therefore, please add the PulseAudio plugin to the default panel config.

- -- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.18.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=nb_NO.UTF-8, LC_CTYPE=nb_NO.UTF-8 (charmap=UTF-8), 
LANGUAGE=nb_NO:nb:no_NO:no:nn_NO:nn:da:sv (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages xfce4-panel depends on:
ii  exo-utils0.12.2-2
ii  libatk1.0-0  2.30.0-1
ii  libc62.27-8
ii  libcairo21.16.0-1
ii  libdbus-1-3  1.12.10-1
ii  libdbus-glib-1-2 0.110-3
ii  libexo-1-0   0.12.2-2
ii  libfontconfig1   2.13.1-1
ii  libfreetype6 2.8.1-2
ii  libgarcon-1-00.6.1-2
ii  libgdk-pixbuf2.0-0   2.38.0+dfsg-6
ii  libglib2.0-0 2.58.1-2
ii  libgtk2.0-0  2.24.32-3
ii  libice6  2:1.0.9-2
ii  libpango-1.0-0   1.42.4-3
ii  libpangocairo-1.0-0  1.42.4-3
ii  libpangoft2-1.0-01.42.4-3
ii  libsm6   2:1.2.2-1+b3
ii  libwnck222.30.7-6
ii  libx11-6 2:1.6.7-1
ii  libxext6 2:1.3.3-1+b2
ii  libxfce4ui-1-0   4.12.1-3
ii  libxfce4util74.12.1-3
ii  libxfconf-0-24.12.1-1

xfce4-panel recommends no packages.

xfce4-panel suggests no packages.

- -- no debconf information

-BEGIN PGP SIGNATURE-

iQKJBAEBCABzFiEEPJ1UpHV1wCb7F/0mt5o8FqDE8pYFAlvqDBQxGmh0dHBzOi8v
d3d3LmRvbWluaWstZ2VvcmdlLmRlL2dwZy1wb2xpY3kudHh0LmFzYyMcZG9taW5p
ay5nZW9yZ2VAaXQucGlyYXRlbnBhcnRlaS5kZQAKCRC3mjwWoMTylvA4D/9rR2kS
fjHF8S1nOBT+IE7MT4vAloWFvV1lDylpjSk/ONbTJJYwWQykQF+LBuNXl7S66je+
pDVzd332ks8noHv95evQ1pdpN9RbeUBSEV980rHkKJRj8JM659c4rGMcwLI1YpVu
/JXsU6AGsX2Vcr+S6CYucRThHkVZQBz3Gtsprzj/5FCoy0KS6FwjmNpUxh/9hrCB
B891PXNKWf0gKtf63FGG55xKZxUjKXMfBbHfLnxQnQdyKdpkLIoaEXUYToIf3SfV
MNA701jXuz6eQKCLwwwX2OmDFQS+3AZWXa/0qAo7hxg81Q3FkuGkGPmfepMlJcVY
chk+VoJsZK2AXMmwP01ASany8s4BZw6U3srYFLa3hgv2QjycwP3ugrquIVA+gI4q
/NlqQ15yF8yI6lPGRJmitNCsdfPqjj/xZRpMmp99LaBeg5JyejPON3/W/jnDAQjF
4NSClV2FaQd/I6TXUw+R30wkvcW2ljb48vUcb5ZI57tUmdV1hGeXadm6EwLVfvTL
NlpFYUng2fJbodJcCfsJGu14RjXSmx3mYEgDweXjn41HDPPA5CNUI/px8q8sFOfF
GD80ER+HoqXazvONyRF+KKKs0Zv63swgHQH0cwafgRI9CIxo9gzSI0xJX4XXpuuT
D9pTcBvitGBQKEitY+BAinEftnvNuZVrFnRdgw==
=ARq1
-END PGP SIGNATURE-

Bug#885025: gerbera: FTBFS against upnp 1.8.3

2018-11-12 Thread James Cowgill 
Hi,

On 12/11/2018 20:51, Uwe Kleine-König wrote:
> Control: unblock 884635 with -1
> 
> Hello James,
> 
> On Fri, Dec 22, 2017 at 11:50:00PM +, James Cowgill wrote:
>> Source: gerbera
>> Version: 1.1.0+dfsg-2
>> Severity: important
>> Tags: sid buster fixed-upstream
>> Forwarded: https://github.com/gerbera/gerbera/issues/192
>> Control: block 884635 by -1
>>
>> Gerbera FTBFS with pupnp 1.8.3 in experimental as described in the
>> upstream bug report.
>>
>> Fixed in this commit (unfortunately quite large):
>> https://github.com/gerbera/gerbera/commit/55396b59027f12a8da09e81a83c7565051466159
>>
>> In addition, when the libupnp 1.8 transition begins, gerbera should
>> switch back to build-depending on libupnp-dev (instead of
>> libupnp1.8-dev).
> 
> Can you please upload gerbera with Build-Depending on libupnp-dev again.
> This is blocking the auto-pupnp-1.8 transition[1] (I think).

As the title of this bug suggests, gerbera won't build with pupnp 1.8.3
(or 1.8.4) so on its own this won't help. I was going to try and package
gerbera 1.2.0 which does fix this issue, but it's taking longer than
expected (mostly javascript library issues). I'll have a look at
patching it in the meantime.

James



signature.asc
Description: OpenPGP digital signature

Bug#858774: gr-air-modes partially broken in stretch

2018-11-12 Thread Austen, Jeffrey 
gr-air-modes is partially broken in Stretch. modes_rx works but 
modes_gui does not work. This is because the WebKit module has been 
removed from the package python-qt4 (see changelog for python-qt4 
(4.11.4+dfsg-2)). Further information is on the Debian wiki 
Qt4WebKitRemoval page at https://wiki.debian.org/Qt4WebKitRemoval . The 
upstream bug report is at 
https://github.com/bistromath/gr-air-modes/issues/98 .

Bug#913072: Bug #913072: cheese segfaults when using the "-d" command line option

2018-11-12 Thread Bernhard Übelacker 
Dear Maintainer,
I could reproduce this issue with a stretch amd64 VM,
forwarding an USB webcam into it.

This seems to be upstream bug [1] and is fixed in upstream git in [2].

A local build cheese package containing the commit [2] does
not crash that way.

Upstream version 3.26 and above should contain this patch already.

[1] https://bugzilla.gnome.org/show_bug.cgi?id=777047
[2] 
https://gitlab.gnome.org/GNOME/cheese/commit/c8c75796ff3e723d77bd68dec3fe91a072b36fc4

Kind regards,
Bernhard

apt update
apt dist-upgrade
apt autoremove

apt install dpkg-dev devscripts xserver-xorg lightdm openbox mc dbus-x11 gdb 
systemd-coredump v4l-utils v4l-utils-dbgsym gstreamer1.0-tools cheese 
cheese-dbgsym libcheese8-dbgsym libgstreamer1.0-0-dbg
apt build-dep cheese


systemctl start lightdm

(host) chmod 666 /dev/bus/usb/001/004
(qemu) device_add usb-host,vendorid=0x093a,productid=0x2600,id=usbcamera




mkdir cheese/orig -p
cdcheese/orig
apt source cheese
cd ../..


mkdir gstreamer1.0/orig -p
cdgstreamer1.0/orig
apt source gstreamer1.0
cd ../..


mkdir v4l-utils/orig -p
cdv4l-utils/orig
apt source v4l-utils
cd ../..


mkdir glib2.0/orig -p
cdglib2.0/orig
apt source glib2.0
cd ../..




export DISPLAY=:0
export LANG=C




benutzer@debian:~$ cheese -d /dev/video0

(cheese:25334): Gtk-WARNING **: Theme parsing error: cheese.css:7:35: The style 
property GtkScrollbar:min-slider-length is deprecated and shouldn't be used 
anymore. It will be removed in a future version
Segmentation fault (core dumped)




[  596.999350] traps: cheese[25334] general protection ip:7ff18d848931 
sp:7ffe7c286ef0 error:0
[  596.999356]  in libgobject-2.0.so.0.5000.3[7ff18d834000+52000]




root@debian:~# coredumpctl gdb 25334
   PID: 25334 (cheese)
   UID: 1000 (benutzer)
   GID: 1000 (benutzer)
Signal: 11 (SEGV)
 Timestamp: Mon 2018-11-12 22:51:53 CET (1min 6s ago)
  Command Line: cheese -d /dev/video0
Executable: /usr/bin/cheese
 Control Group: /user.slice/user-1000.slice/session-3.scope
  Unit: session-3.scope
 Slice: user-1000.slice
   Session: 3
 Owner UID: 1000 (benutzer)
   Boot ID: 3058ef7de6c84f438332960c93fc5881
Machine ID: 9e5901179cfe4b73bc18669e6a6e0ab9
  Hostname: debian
   Storage: 
/var/lib/systemd/coredump/core.cheese.1000.3058ef7de6c84f438332960c93fc5881.25334.1542059513.lz4
   Message: Process 25334 (cheese) of user 1000 dumped core.

Stack trace of thread 25334:
#0  0x7ff18d848931 n/a (libgobject-2.0.so.0)
#1  0x7ff18d84b57c g_object_set_valist (libgobject-2.0.so.0)
#2  0x7ff18d84be6c g_object_set (libgobject-2.0.so.0)
#3  0x7ff18fb427a5 cheese_camera_setup (libcheese.so.8)
#4  0x560adcb465eb cheese_application_setup_camera (cheese)
#5  0x560adcb4696b n/a (cheese)
#6  0x7ff18d843f75 g_closure_invoke (libgobject-2.0.so.0)
#7  0x7ff18d85637d n/a (libgobject-2.0.so.0)
#8  0x7ff18d85ebdc g_signal_emit_valist 
(libgobject-2.0.so.0)
#9  0x7ff18d85efbf g_signal_emit (libgobject-2.0.so.0)
#10 0x560adcb454d3 n/a (cheese)
#11 0x7ff1869c9038 ffi_call_unix64 (libffi.so.6)
#12 0x7ff1869c8a9a ffi_call (libffi.so.6)
#13 0x7ff18d844c8a g_cclosure_marshal_generic_va 
(libgobject-2.0.so.0)
#14 0x7ff18d8441a4 n/a (libgobject-2.0.so.0)
#15 0x7ff18d85e3a1 g_signal_emit_valist 
(libgobject-2.0.so.0)
#16 0x7ff18d85efbf g_signal_emit (libgobject-2.0.so.0)
#17 0x7ff18db24473 n/a (libgio-2.0.so.0)
#18 0x7ff18db264c4 n/a (libgio-2.0.so.0)
#19 0x7ff18db26692 g_application_run (libgio-2.0.so.0)
#20 0x560adcb4e620 _vala_main (cheese)
#21 0x7ff18cf842e1 __libc_start_main (libc.so.6)
#22 0x560adcb44f4a _start (cheese)

Stack trace of thread 25341:
#0  0x7ff18d31015f pthread_cond_wait@@GLIBC_2.3.2 
(libpthread.so.0)
#1  0x7ff17e2eac33 n/a (swrast_dri.so)
#2  0x7ff17e2eaa97 n/a (swrast_dri.so)
#3  0x7ff18d30a494 start_thread (libpthread.so.0)
#4  0x7ff18d04cacf __clone (libc.so.6)

Stack trace of thread 25337:
#0  0x7ff18d04367d poll (libc.so.6)
#1  0x7ff18d56a9f6 n/a (libglib-2.0.so.0)
#2  0x7ff18d56ad82 g_main_loop_run (libglib-2.0.so.0)
#3  0x7ff18db52656 n/a (libgio-2.0.so.0)
#4  0x7ff18d5923d5 n/a (libglib-2.0.so.0)
#5  0x7ff18d30a494 start_thread (libpthread.so.0)

Bug#909574: [Pkg-utopia-maintainers] Bug#909574: Bug#909574: firewalld: FirewallBackend=nftables breaks NAT networks in libvirt

2018-11-12 Thread Michael Biebl 
Hi everyone!

Eric, thanks a lot for your reply.

Since I don't know, how long it will take for docker and libvirt to have
better firewalld/nftables integration the the feature freeze for Debian
stretch is not too far away, let's go back to the iptables backend,
especially after the reassurence from Eric that this backend is fully
supported.

We already had a back-and-forth (last time the 4.18 kernel was not
available yet in Debian) wrt the default backend.

To avoid yet another one, it would be awesome, if you Ralf or you Tomas,
could raise this issue with the libvirt and docker maintainer and file a
corresponding Debian bug report and tell me the bug numer
I would then file a Debian bug against firewalld for switching the
backend back to nftables, and block it with those other bug reports.

Besides libvirt and docker, are other packages / use cases affected as
well that you know of?

Regards,
Michael

-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#909689: asterisk: autopkgtest regression

2018-11-12 Thread Bernhard Schmidt 
Control: severity -1 important

Am 05.11.18 um 23:33 schrieb Bernhard Schmidt:

Hi,

>> this is where asterisk is actually segfaulting (not during the
>> testsuite, but when collecting the results). I haven't managed to pull
>> the backtrace from the autopkgtest worker yet.

Downgrading severity since it's a testsuite regression and prohibiting
an RC bugfix to migrate to testing. We're still looking at the testsuite
errors.

Bernhard

Bug#911938: libhttp-daemon-ssl-perl FTBFS: tests fail: Connection refused

2018-11-12 Thread Niko Tyni 
On Mon, Nov 12, 2018 at 09:11:59PM +0100, Mike Gabriel wrote:

> In order not to loose this bit of information that came in via #debian-perl
> IRC:

Thanks, and sorry for not doing that myself.

FWIW this smells to me most likely a bug in IO::Socket::SSL TLSv1.3
support but I haven't managed to get a minimal example together with
just that module.

Cloning a separate issue for libio-socket-ssl-perl and patching the
libhttp-daemon-ssl-perl test suite to use TLSv1.2 for now would seem
like an appropriate action to me, assuming my analysis is correct and
it's just a problem of the test client. Would be nice to have some other
eyeballs on that though (hi Dam, hope you don't mind the Cc :)
-- 
Niko

Bug#913586: texlive-binaries 2018.20181104.49075-1 breaks context

2018-11-12 Thread Hilmar Preuße 
On 12.11.18 21:48, Thanasis Kinias wrote:

Hi,

> Ah yes, of course.  Sorry I failed my reading comprehension task :)
> 
> Here are just the logfiles from under /var/lib/texmf/web2c.
> 
I'm sorry there is no valuable information in your log files. Probably
b/c the program even started running and even wrote a log file...However
I'm able to reproduce the problem and extracted the command line
probably leading to your problem:

hille@amd64-sid:~$ luatex --ini
--lua=/usr/share/texmf/tex/context/base/mkiv/luat-cod.lua
/tmp/cont-en.mkiv dum
This is LuaTeX, Version 1.09.0 (TeX Live 2019/dev/Debian)  (INITEX)
 system commands enabled.
error in callback:
/usr/share/texmf/tex/context/base/mkiv/luat-cod.lua:166: attempt to call
upvalue 'isfile' (a nil value)
.


<*> /tmp/cont-en.mkiv
   dum
?

..and the format generation hangs. I had to kill the luatex run.

H.
-- 
sigfault
#206401 http://counter.li.org

Bug#912695: apt-show-versions: breaks "apt-get update" and uninstallable after Perl 5.28 upgrade

2018-11-12 Thread Niko Tyni 
On Mon, Nov 12, 2018 at 09:29:14AM +0100, Christoph Martin wrote:
 
> Version 0.22.9 introduced a setting of recursion_limit_hast to 65536,
> but I still get reports of user, who need a higher value.

Yeah, I guess it depends on the number of apt sources.

Why don't you just disable the checks with the value of -1 ?
AIUI they are there to detect circular data structures, and
apt-show-versions doesn't have any.

> If this needs a longer standing solution, I could introduce a config
> file for this setting.

I don't think that should be necessary. Disabling the checks
seems better.

> The default values for Storage.pm are different on all platforms and
> apparently depends on the build environment:

> So this might also be an issue with reproducible builds.

Sure, I think the current Storable behaviour could and should be better
and needs to be discussed upstream. Just haven't got around to starting
that discussion yet, sorry.
-- 
Niko

Bug#913609: bpfcc FTBFS on amd64: No such file or directory: 'bcc-0.7.0'

2018-11-12 Thread Adrian Bunk 
Source: bpfcc
Version: 0.7.0-1
Severity: serious
Tags: ftbfs

https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/bpfcc.html

...
removing 'bcc-0.7.0' (and everything under it)
removing 'bcc-0.7.0' (and everything under it)
error: [Errno 2] No such file or directory: 'bcc-0.7.0'
make[3]: Leaving directory '/build/1st/bpfcc-0.7.0/obj-x86_64-linux-gnu'
make[3]: *** [src/python/CMakeFiles/bcc_py_python3.dir/build.make:71: 
src/python/dist-python2/bcc-0.7.0.tar.gz] Error 1

Bug#913608: libncl FTBFS: symbol changes

2018-11-12 Thread Adrian Bunk 
Source: libncl
Version: 2.1.21+git20171002.4becff7-2
Severity: serious
Tags: ftbfs

Some recent change in unstable makes libncl FTBFS:

https://tests.reproducible-builds.org/debian/history/libncl.html
https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/libncl.html

...
@@ -1122,14 +1122,16 @@
  
_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEES5_St9_IdentityIS5_ESt4lessIS5_ESaIS5_EE8_M_eraseEPSt13_Rb_tree_nodeIS5_E@Base
 2.1.18
  
_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEES5_St9_IdentityIS5_ESt4lessIS5_ESaIS5_EEaSERKSB_@Base
 2.1.18
  
(optional)_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEESt4pairIKS5_16NxsIntStepMatrixESt10_Select1stIS9_ESt4lessIS5_ESaIS9_EE11equal_rangeERS7_@Base
 2.1.21+git20171002.4becff7
- 
_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEESt4pairIKS5_16NxsIntStepMatrixESt10_Select1stIS9_ESt4lessIS5_ESaIS9_EE16_M_insert_uniqueIS6_IS5_S8_EEES6_ISt17_Rb_tree_iteratorIS9_EbEOT_@Base
 2.1.18
+#MISSING: 2.1.21+git20171002.4becff7-2# 
_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEESt4pairIKS5_16NxsIntStepMatrixESt10_Select1stIS9_ESt4lessIS5_ESaIS9_EE16_M_insert_uniqueIS6_IS5_S8_EEES6_ISt17_Rb_tree_iteratorIS9_EbEOT_@Base
 2.1.18
+ 
_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEESt4pairIKS5_16NxsIntStepMatrixESt10_Select1stIS9_ESt4lessIS5_ESaIS9_EE17_M_emplace_uniqueIJS6_IS5_S8_S6_ISt17_Rb_tree_iteratorIS9_EbEDpOT_@Base
 2.1.21+git20171002.4becff7-2
  
(optional)_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEESt4pairIKS5_16NxsIntStepMatrixESt10_Select1stIS9_ESt4lessIS5_ESaIS9_EE4findERS7_@Base
 2.1.21+git20171002.4becff7
  
_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEESt4pairIKS5_16NxsIntStepMatrixESt10_Select1stIS9_ESt4lessIS5_ESaIS9_EE5eraseERS7_@Base
 2.1.18
  
_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEESt4pairIKS5_16NxsIntStepMatrixESt10_Select1stIS9_ESt4lessIS5_ESaIS9_EE7_M_copyINSF_20_Reuse_or_alloc_nodeEEEPSt13_Rb_tree_nodeIS9_EPKSJ_PSt18_Rb_tree_node_baseRT_@Base
 2.1.18
  
_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEESt4pairIKS5_16NxsIntStepMatrixESt10_Select1stIS9_ESt4lessIS5_ESaIS9_EE8_M_eraseEPSt13_Rb_tree_nodeIS9_E@Base
 2.1.18
  
_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEESt4pairIKS5_16NxsIntStepMatrixESt10_Select1stIS9_ESt4lessIS5_ESaIS9_EEaSERKSF_@Base
 2.1.21+git20171002.4becff7
  
(optional)_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEESt4pairIKS5_17NxsRealStepMatrixESt10_Select1stIS9_ESt4lessIS5_ESaIS9_EE11equal_rangeERS7_@Base
 2.1.21+git20171002.4becff7
- 
_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEESt4pairIKS5_17NxsRealStepMatrixESt10_Select1stIS9_ESt4lessIS5_ESaIS9_EE16_M_insert_uniqueIS6_IS5_S8_EEES6_ISt17_Rb_tree_iteratorIS9_EbEOT_@Base
 2.1.18
+#MISSING: 2.1.21+git20171002.4becff7-2# 
_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEESt4pairIKS5_17NxsRealStepMatrixESt10_Select1stIS9_ESt4lessIS5_ESaIS9_EE16_M_insert_uniqueIS6_IS5_S8_EEES6_ISt17_Rb_tree_iteratorIS9_EbEOT_@Base
 2.1.18
+ 
_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEESt4pairIKS5_17NxsRealStepMatrixESt10_Select1stIS9_ESt4lessIS5_ESaIS9_EE17_M_emplace_uniqueIJS6_IS5_S8_S6_ISt17_Rb_tree_iteratorIS9_EbEDpOT_@Base
 2.1.21+git20171002.4becff7-2
  
(optional)_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEESt4pairIKS5_17NxsRealStepMatrixESt10_Select1stIS9_ESt4lessIS5_ESaIS9_EE4findERS7_@Base
 2.1.21+git20171002.4becff7
  
_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEESt4pairIKS5_17NxsRealStepMatrixESt10_Select1stIS9_ESt4lessIS5_ESaIS9_EE5eraseERS7_@Base
 2.1.18
  
_ZNSt8_Rb_treeINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEESt4pairIKS5_17NxsRealStepMatrixESt10_Select1stIS9_ESt4lessIS5_ESaIS9_EE7_M_copyINSF_20_Reuse_or_alloc_nodeEEEPSt13_Rb_tree_nodeIS9_EPKSJ_PSt18_Rb_tree_node_baseRT_@Base
 2.1.18
@@ -1214,7 +1216,7 @@

Bug#799329: sysvinit: does not work inside systemd-nspawn

2018-11-12 Thread Andreas Henriksson 
Hi,

I spent some more time looking at the getty/inittab problem
when running inside systemd-nspawn.

The issue boils down to needing a getty on /dev/console, since
systemd-nspawn gives limited access to the base system and thus
/dev is very sparsely populated. Only very few things inside /dev
gets bind-mounted in (in addition to what debootstrap created
in your chroot to begin with which is also very sparse).

In addition to this, even if you add an inittab line that spawns
a getty on /dev/console you'll still have the problem of getting
annoyed by the messages about gettys on /dev/tty* respawning too fast
(because /dev/tty* doesn't exist, except for /dev/tty).

I'm not sure if inittab provides flexibility enough so that there
is a 'one size fits all' solution. Maybe my inittab-fuu is just weak
though and someone else can come up with a solution.

It would really be nice to have a working "out of the box" solution
but having atleast an example with a description of what to add
and remove related to systemd-nspawn inside /etc/inittab could be
helpful (similar to how there's an example on how to use serial
gettys). I wonder how much most people will care about fiddling
to get sysvinit running and assume most will probably jut give up
quickly. Maybe a solution could be to have some higher level tool,
like mkosi, have a template for sysvinit that installs sysvinit-core
plus sets up /etc/inittab for use with systemd-nspawn to give people
a way to create a testable chroot with a single command.

Regards,
Andreas Henriksson

Bug#913554: 1.4.1 released

2018-11-12 Thread rdfind 
Hi,
sorry about the problems. It was related to building on 32 bit.
I released 1.4.1 which builds on amd64 (with the -m32 flag) and also
fixes a logic error in a test plus a formatting issue in the help text.

To prevent this from happening in the future, I plan to add 32 bit
building on the continuous integration setup on github.

Please find it at https://rdfind.pauldreik.se/rdfind-1.4.1.tar.gz

Thanks,
Paul

Bug#913607: monotone-viz FTBFS with lablgtk2 2.18.5+dfsg-2

2018-11-12 Thread Adrian Bunk 
Source: monotone-viz
Version: 1.0.2-4
Severity: serious
Tags: ftbfs buster sid

https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/monotone-viz.html

...
checking for camlp4... camlp4
checking for camlp4o... camlp4o
checking lablgtk directory... +lablgtk2
checking GnomeCanvas support... configure: error:

libgnomecanvas support not found.
LablGTK need to be built with GnomeCanvas support.
make: *** [debian/rules:15: build-stamp] Error 1

Bug#913587: Drop obsolete /etc/default/grub.d/init-select.cfg

2018-11-12 Thread Michael Biebl 
Am 12.11.18 um 19:28 schrieb Colin Watson:
> On Mon, Nov 12, 2018 at 07:19:38PM +0100, Michael Biebl wrote:
>> /etc/default/grub.d/init-select.cfg afaics was introduced to ensure
>> smooth upgrades from jessie to stretch.
>> It seems safe to drop this workaround now.
> 
> But it was introduced well after stretch, only a couple of weeks ago ...

May bad, I misread https://bugs.debian.org/858528 then which seemed
liked it was introduced for the jessie → stretch upgrade.


-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#913605: lintian: inform about lack of systemd service hardening/security options

2018-11-12 Thread Andreas Henriksson 
Package: lintian
Version: 2.5.112
Severity: normal

Dear Maintainer,

I think it would be useful if we got some more widespread usage of the
security features available in systemd service units.

I'm not sure how to properly check if a service uses a good amount
hardening/security options, but I think currently there's enough
services in debian that uses *none* that it's probably useful to just
check and warn about that.  Hopefully once a maintainer starts looking
at this at all (s)he will discover and use more than one. Hopefully also
starting a discussion with their upstream which might even improve and
refine further for upcoming releases. One can always dream right?

Maybe in the future lintian can leverage something of the recently
implemented things in systemd tooling that was recently mentioned at:
https://twitter.com/pid_eins/status/1060881595106762752
(and other previous tweets)

As a start for now we could do something like:

grep -qE '^#?P(protect|rivate)' $FOOSERVICE || echo "Please enable some 
security options for your service"

Relevant links to show in the lintian tag:
http://0pointer.de/blog/projects/security.html
https://www.freedesktop.org/software/systemd/man/systemd.exec.html
man:systemd.exec(5)

While working with these security options is much easier than using
something like selinux or apparmour, there's still potential for
getting things wrong. I think it would be useful to mention in the
lintian tag description that people should collaborate with their
upstreams about the changes (and in general upstream their service
files rather than carry them in debian/*.service).

Regards,
Andreas Henriksson

Bug#913606: matita FTBFS with lablgtk2 2.18.5+dfsg-2

2018-11-12 Thread Adrian Bunk 
Source: matita
Version: 0.99.3-1
Severity: serious
Tags: ftbfs buster sid

https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/matita.html

...
checking for expat ocaml library... yes
checking for gdome2 ocaml library... yes
checking for http ocaml library... yes
checking for lablgtk2 ocaml library... yes
checking for lablgtk2.sourceview2 ocaml library... configure: error: could not 
find lablgtk2.sourceview2 ocaml library
make[1]: *** [debian/rules:8: override_dh_auto_configure] Error 2

Bug#913552: firehol: Firehol upgrade 3.1.6+ds-4 to 3.1.6+ds-5 leaves firehol broken

2018-11-12 Thread Jerome BENOIT 


On 12/11/2018 22:42, Cristian Ionescu-Idbohrn wrote:
> You don't happen to have that "move everything from /bin, /sbin, /lib 
> to /usr/..." package installed?

Do know have the short name (or regular name) of this package ? 


Thanks in advance, Jerome


-- 
Jerome BENOIT | calculus+at-rezozer^dot*net
https://qa.debian.org/developer.php?login=calcu...@rezozer.net
AE28 AE15 710D FF1D 87E5  A762 3F92 19A6 7F36 C68B



signature.asc
Description: OpenPGP digital signature

Bug#867362: patches for RC bugs

2018-11-12 Thread Thorsten Alteholz 

Hi Michael,

attached are patches for two open RC bugs of isc-dhcp.
The third one could be solved by creating a team[1] within the tracker.

  Thorsten


[1] https://tracker.debian.org/teams/diff -Nru isc-dhcp-4.3.5/debian/changelog isc-dhcp-4.3.5/debian/changelog
--- isc-dhcp-4.3.5/debian/changelog 2018-04-01 07:37:25.0 +0200
+++ isc-dhcp-4.3.5/debian/changelog 2018-11-12 19:00:00.0 +0100
@@ -1,3 +1,12 @@
+isc-dhcp (4.3.5-5) unstable; urgency=medium
+
+  * update patches/bind-includes.patch for new location of include file
+(Closes: #911975)
+  * remove stale pid files in postrm
+(Closes: #867362)
+
+ -- Thorsten Alteholz   Mon, 12 Nov 2018 19:00:00 +0100
+
 isc-dhcp (4.3.5-4) unstable; urgency=medium
 
   * Acknowledge and apply the non-maintainer upload.
diff -Nru isc-dhcp-4.3.5/debian/isc-dhcp-server.postrm 
isc-dhcp-4.3.5/debian/isc-dhcp-server.postrm
--- isc-dhcp-4.3.5/debian/isc-dhcp-server.postrm2018-04-01 
07:35:40.0 +0200
+++ isc-dhcp-4.3.5/debian/isc-dhcp-server.postrm2018-11-12 
19:00:00.0 +0100
@@ -21,7 +21,9 @@
;;
 
 upgrade|failed-upgrade|abort-install|abort-upgrade|disappear)
-   # Nothing to do
+   # take care of stale pid files
+   rm -f /var/run/dhcpd.pid
+   rm -f /var/run/dhcpd6.pid
;;
 esac
 
diff -Nru isc-dhcp-4.3.5/debian/patches/bind-includes.patch 
isc-dhcp-4.3.5/debian/patches/bind-includes.patch
--- isc-dhcp-4.3.5/debian/patches/bind-includes.patch   2018-04-01 
07:37:25.0 +0200
+++ isc-dhcp-4.3.5/debian/patches/bind-includes.patch   2018-11-12 
19:00:00.0 +0100
@@ -2,14 +2,30 @@
 author: Michael Gilbert 
 bug-debian: http://bugs.debian.org/894093
 
 a/includes/dhcpd.h
-+++ b/includes/dhcpd.h
-@@ -62,6 +62,8 @@
+Index: isc-dhcp-4.3.5/includes/dhcpd.h
+===
+--- isc-dhcp-4.3.5.orig/includes/dhcpd.h   2018-11-12 18:58:06.569872662 
+0100
 isc-dhcp-4.3.5/includes/dhcpd.h2018-11-12 18:58:06.557872662 +0100
+@@ -62,6 +62,10 @@
  # include 
  #endif
  
++#include 
++#include 
 +#include 
 +
  #include 
  
  #include "cdefs.h"
+Index: isc-dhcp-4.3.5/includes/omapip/omapip.h
+===
+--- isc-dhcp-4.3.5.orig/includes/omapip/omapip.h   2016-09-27 
21:16:50.0 +0200
 isc-dhcp-4.3.5/includes/omapip/omapip.h2018-11-12 18:59:47.037869650 
+0100
+@@ -32,6 +32,7 @@
+ #include "result.h"
+ #include 
+ 
++#include 
+ #include 
+ 
+ typedef unsigned int omapi_handle_t;

Bug#913604: [firefox-esr] Lack of login storage API on recent firefox

2018-11-12 Thread Bastien Roucariès 
Package: firefox-esr
Version: 60.3.0esr-1
Severity: serious
Tags: security
X-Debbugs-CC: secure-testing-t...@lists.alioth.debian.org
forwarded: https://bugzilla.mozilla.org/show_bug.cgi?id=1344788
control: tag -1 + upstream

Firefox quantum break login storage api, means that my saved login on my 
nitrokey need to be typed manually or copy pasted.

This decrease the security against key logger or other kind of thread.

They are no progress upstream since 2016, so time to prod upstream.

Feel free to decrease to important.

Bastien





signature.asc
Description: This is a digitally signed message part.

Bug#913602: openresolv: wrong config location for unbound

2018-11-12 Thread Scott Barker 
Package: openresolv
Version: 3.8.0-1
Severity: normal

The included resolvconf.conf file saves the unbound configuration to:

  /var/cache/unbound/resolvconf_resolvers.conf

However, in Debian, unbound only looks for config files in:

  /etc/unbound/unbound.conf.d/

This is easily fixed after installation, but the install package should
really have the correct location to start with.

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
   * What was the outcome of this action?
   * What outcome did you expect instead?

*** End of the template - remove these template lines ***


-- System Information:
Debian Release: 9.6
  APT prefers stable
  APT policy: (990, 'stable'), (500, 'stable-updates'), (500, 
'proposed-updates')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.18.0-0.bpo.1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_CA.utf8, LC_CTYPE=en_CA.utf8 (charmap=UTF-8), LANGUAGE=en_CA:en 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Bug#913603: O: qpsmtpd -- Flexible SMTP daemon for network-level spam detection

2018-11-12 Thread Dr. Tobias Quathamer 
Package: wnpp
Severity: normal

The current maintainer of libnfo, Devin Carraway ,
is apparently not active anymore.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/index.html#howto-o for detailed
instructions how to adopt a package properly.

The package description is:
 This is a replacement SMTP daemon which installs alongside a mail delivery
 and transport system such as Exim, Postfix or Qmail, or used as an SMTP
 proxy for a remote/DMZ MTA.
 .
 The qpsmtpd damon emphasizes spam detection during the SMTP transaction,
 attempting to reach spam/nonspam decisions prior to accepting each message,
 thereby eliminating much bounce/forgery blowback.  It exploits its visbility
 into the network transaction to detect certain behaviors often exhibited by
 spam sending agents.
 .
 Qpsmtpd is written in Perl, with an extensive plugin API making it easy to
 add new features or replace functional components.



signature.asc
Description: OpenPGP digital signature

Bug#913488: [pkg-gnupg-maint] Bug#913488: scdaemon: gnupg --card-status does not recognize smart card via usb reader

2018-11-12 Thread Daniel Kahn Gillmor 
On Mon 2018-11-12 17:02:40 +0100, Elmar Stellnberger wrote:
> Now I have removed pcscd with apt-get remove and see it works now on my 
> Debian 9 machine.

glad to hear that it's working reliably now!  I'm closing this bug
report since it sounds like it's resolved, but feel free to re-open it
if you think it needs more resolution!

> Strangely on my Debian 8 machine pcscd is of version 1.8.13-1 while no
> scdaemon is installed. Nonetheless I remember gpg --card-status always
> having worked on my Debian 8 machine.

debian 8 shipped the "classic" GnuPG 1.4 branch, which did not have a
separate scdaemon.  debian 9 ships the "modern" GnuPG 2.1.x/2.2.x
branch, which does use scdaemon.

--dkg

Bug#913454: dpkg: warning: found unknown packages; this might mean the available database...

2018-11-12 Thread 積丹尼 Dan Jacobson 
I was able to catch this bug, because I have a machine in town which I
only use every five weeks or so, thus spanning the unexpected gap, that
others who upgrade more, or less, frequently, wouldn't have caught.

Bug#913601: ceph: FTBFS on mips/el: /usr/include/c++/8/bits/atomic_base.h:304: undefined reference to `__atomic_fetch_sub_8'

2018-11-12 Thread Emilio Pozuelo Monfort 
Source: ceph
Version: 12.2.8+dfsg1-2
Severity: serious
Tags: ftbfs

Your package failed to build on mips/el:

/usr/bin/ld: CMakeFiles/ceph-mgr.dir/mgr/DaemonServer.cc.o: in function 
`RefCountedObject::~RefCountedObject()':
/usr/include/c++/8/bits/atomic_base.h:396: undefined reference to 
`__atomic_load_8'
/usr/bin/ld: /usr/include/c++/8/bits/atomic_base.h:396: undefined reference to 
`__atomic_load_8'
/usr/bin/ld: CMakeFiles/ceph-mgr.dir/mgr/DaemonServer.cc.o: in function 
`RefCountedObject::~RefCountedObject()':

You may need to link with -latomic.

Full logs at https://buildd.debian.org/status/package.php?p=ceph

Emilio

-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (800, 'unstable'), (700, 'experimental'), (650, 'testing'), (500, 
'unstable-debug'), (500, 'testing-debug')
Architecture: amd64 (x86_64)
Foreign Architectures: i386, armhf

Kernel: Linux 4.18.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8), LANGUAGE=en_GB:en 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Bug#913599: ceph: FTBFS on armel: #error "NEON intrinsics not available with the soft-float ABI. Please use -mfloat-abi=softfp or -mfloat-abi=hard"

2018-11-12 Thread Emilio Pozuelo Monfort 
Source: ceph
Version: 12.2.8+dfsg1-2
Severity: serious
Tags: ftbfs

Hi,

Your package failed to build on armel:

cd 
/<>/ceph-12.2.8+dfsg1/obj-arm-linux-gnueabi/src/erasure-code/jerasure 
&& /usr/bin/cc -DARM_NEON -DCEPH_LIBDIR=\"/usr/lib/arm-linux-gnueabi\" 
-DCEPH_PKGLIBDIR=\"/usr/lib/arm-linux-gnueabi/ceph\" -D_FILE_OFFSET_BITS=64 
-D_GNU_SOURCE -D__linux__ 
-I/<>/ceph-12.2.8+dfsg1/obj-arm-linux-gnueabi/src/include 
-I/<>/ceph-12.2.8+dfsg1/src 
-I/<>/ceph-12.2.8+dfsg1/src/xxHash 
-I/<>/ceph-12.2.8+dfsg1/src/dmclock/src 
-I/<>/ceph-12.2.8+dfsg1/src/dmclock/support/src 
-I/<>/ceph-12.2.8+dfsg1/src/googletest/googletest/include 
-I/<>/ceph-12.2.8+dfsg1/src/erasure-code/jerasure/jerasure/include 
-I/<>/ceph-12.2.8+dfsg1/src/erasure-code/jerasure/gf-complete/include 
-I/<>/ceph-12.2.8+dfsg1/src/erasure-code/jerasure -isystem 
/<>/ceph-12.2.8+dfsg1/obj-arm-linux-gnueabi/include -isystem 
/<>/ceph-12.2.8+dfsg1/src/rapidjson/include  -g -O2 
-fdebug-prefix-map=/<>/ceph-12.2.8+dfsg1=. -fstack-protector-strong 
-Wformat -Werror=format-security -g1 -Wdate-time -D_FORTIFY_SOURCE=2 
-D_FILE_OFFSET_BITS=64 -Wall -Wtype-limits -Wignored-qualifiers -Winit-self 
-Wpointer-arith -Werror=format-security -fno-strict-aliasing -fsigned-char 
-Wno-unknown-pragmas -rdynamic -U_FORTIFY_SOURCE -D_FORTIFY_SOURCE=2 
-fstack-protector-strong -fdiagnostics-color=auto -fPIC   -DHAVE_CONFIG_H 
-D__CEPH__ -D_REENTRANT -D_THREAD_SAFE -D__STDC_FORMAT_MACROS  -mfpu=neon 
-std=gnu99 -o CMakeFiles/gf-complete_objs.dir/gf-complete/src/gf_wgen.c.o   -c 
/<>/ceph-12.2.8+dfsg1/src/erasure-code/jerasure/gf-complete/src/gf_wgen.c
In file included from 
/<>/ceph-12.2.8+dfsg1/src/erasure-code/jerasure/gf-complete/include/gf_complete.h:37,
 from 
/<>/ceph-12.2.8+dfsg1/src/erasure-code/jerasure/gf-complete/include/gf_int.h:14,
 from 
/<>/ceph-12.2.8+dfsg1/src/erasure-code/jerasure/gf-complete/src/gf_wgen.c:12:
/usr/lib/gcc/arm-linux-gnueabi/8/include/arm_neon.h:31:2: error: #error "NEON 
intrinsics not available with the soft-float ABI.  Please use 
-mfloat-abi=softfp or -mfloat-abi=hard"
 #error "NEON intrinsics not available with the soft-float ABI.  Please use 
-mfloat-abi=softfp or -mfloat-abi=hard"
  ^
make[3]: *** 
[src/erasure-code/jerasure/CMakeFiles/gf-complete_objs.dir/build.make:79: 
src/erasure-code/jerasure/CMakeFiles/gf-complete_objs.dir/gf-complete/src/gf_wgen.c.o]
 Error 1

Looks like you're building with -mfpu=neon, which is not guaranteed on armel.

Full log at 
https://buildd.debian.org/status/fetch.php?pkg=ceph=armel=12.2.8%2Bdfsg1-2=1541041501=0

Cheers,
Emilio

-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (800, 'unstable'), (700, 'experimental'), (650, 'testing'), (500, 
'unstable-debug'), (500, 'testing-debug')
Architecture: amd64 (x86_64)
Foreign Architectures: i386, armhf

Kernel: Linux 4.18.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8), LANGUAGE=en_GB:en 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Bug#913600: ceph: bd-uninst on several architectures: libboost-context1.67-dev not available

2018-11-12 Thread Emilio Pozuelo Monfort 
Source: ceph
Version: 12.2.8+dfsg1-2
Severity: serious

Hi,

Your package can no longer be built on several architectures, as
libboost-context is not built everywhere. Possible solutions
would be:

1) Make that build-dep optional
2) Look if that boost library can now be built on more architectures
3) Remove ceph from the affected architectures

See the affected architectures at
https://buildd.debian.org/status/package.php?p=ceph

Cheers,
Emilio

-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (800, 'unstable'), (700, 'experimental'), (650, 'testing'), (500, 
'unstable-debug'), (500, 'testing-debug')
Architecture: amd64 (x86_64)
Foreign Architectures: i386, armhf

Kernel: Linux 4.18.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8), LANGUAGE=en_GB:en 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Bug#904316: transition: boost-defaults

2018-11-12 Thread Emilio Pozuelo Monfort 
On 02/11/2018 09:53, Emilio Pozuelo Monfort wrote:
> On 02/11/2018 00:13, Dimitri John Ledkov wrote:
>> On Mon, 23 Jul 2018 10:26:34 +0100 Dimitri John Ledkov  
>> wrote:
>>> Package: release.debian.org
>>> Severity: normal
>>> User: release.debian@packages.debian.org
>>> Usertags: transition
>>>
>>
>> This transition was ready to be started for just over three months now.
>>
>> May I upload boost-defaults to start the transition to boost1.67?
> 
> Let's do this one once perl has migrated to testing.

The icu transition has started now. Can you make a boost1.67 upload
build-depending on the new icu, with a bumped shlibs, similar to [1] ? That will
break ceph from sid (which depends on boost1.67), so an appropriate breaks would
be good. However please don't just break all the old versions, as the package
from testing doesn't break (it uses boost1.62) and if you break that, then
boost1.67 won't migrate until ceph gets fixed (it currently is in a bad shape in
sid). A breaks on (= 12.2.8+dfsg1-1), (= 12.2.8+dfsg1-2) should do the trick.

[1] https://packages.qa.debian.org/b/boost1.62/news/20180519T150535Z.html

Then once this is uploaded and built, we should be ready to go with
boost-defaults and start with the binNMUs. I'll give you an ack then for the
-defaults upload.

Cheers,
Emilio

Bug#885025: gerbera: FTBFS against upnp 1.8.3

2018-11-12 Thread Uwe Kleine-König 
Control: unblock 884635 with -1

Hello James,

On Fri, Dec 22, 2017 at 11:50:00PM +, James Cowgill wrote:
> Source: gerbera
> Version: 1.1.0+dfsg-2
> Severity: important
> Tags: sid buster fixed-upstream
> Forwarded: https://github.com/gerbera/gerbera/issues/192
> Control: block 884635 by -1
> 
> Gerbera FTBFS with pupnp 1.8.3 in experimental as described in the
> upstream bug report.
> 
> Fixed in this commit (unfortunately quite large):
> https://github.com/gerbera/gerbera/commit/55396b59027f12a8da09e81a83c7565051466159
> 
> In addition, when the libupnp 1.8 transition begins, gerbera should
> switch back to build-depending on libupnp-dev (instead of
> libupnp1.8-dev).

Can you please upload gerbera with Build-Depending on libupnp-dev again.
This is blocking the auto-pupnp-1.8 transition[1] (I think).

However the libupnp transition[2] isn't blocked by this, so removing the
respective block from this bug.

Best regards
Uwe

[1] https://release.debian.org/transitions/html/auto-pupnp-1.8.html
[2] https://release.debian.org/transitions/html/libupnp.html


signature.asc
Description: PGP signature

Bug#913517: hplip: patch to support IPv6

2018-11-12 Thread Christopher Martin 
You're no doubt right that there's scope for improvement, and I don't
want to go too far in defending a patch that I didn't write myself.
But I would note that, as I understand matters, the patched hplip
would only use IPv6 if either an IPv6 address was explicitly passed,
or if the hostname resolved to an IPv6 address (say in /etc/hosts -
which is what I tested). If that results in problems, then the system
is arguably misconfigured elsewhere. These are (presumably most of the
time) local network printers we're dealing with, so the state of their
IPv6 support is known and controllable.

One possibility might be to test matters via an upload to experimental
after the next release and watch for reports of breakage.

Cheers,
Christopher Martin

On Mon, Nov 12, 2018 at 6:40 AM Julian Andres Klode  wrote:
>
> On Sun, Nov 11, 2018 at 02:47:12PM -0500, Christopher Martin wrote:
> > Package: hplip
> > Version: 3.18.10+dfsg0-2
> > Severity: wishlist
> > Tags: patch ipv6
> >
> > Please see https://bugs.launchpad.net/hplip/+bug/1724089 for the
> > original report, which includes a patch that adds IPv6 support to
> > libhpmud.
> >
> > The patch ensures that libhpmud properly resolves IPv6 addresses and
> > hostnames. I've tested it against the latest hplip (3.18.10) and it
> > works well.
>
> Having had the experience with dealing with IPv6 support in apt, I am not
> convinced it's a good idea. The assumption that
>
> "The system's C library automatically selects the appropriate addresses (for 
> example, it omits ipv6 addresses if there is no ipv6 connectivity)."
>
> is wrong. We've heard a lot of reports from people without _working_
> IPv6 for which apt did not work, which forced me to implement a variant
> of happy eyeballs.
>
> The patch in question does not try multiple address families in parallel,
> nor does it seem to have any time out at all, meaning it will get stuck
> indefinitely trying to connect to a broken ipv6 host.
>
> --
> debian developer - deb.li/jak | jak-linux.org - free software dev
> ubuntu core developer  i speak de, en

Bug#913586: texlive-binaries 2018.20181104.49075-1 breaks context

2018-11-12 Thread Thanasis Kinias 
Ah yes, of course.  Sorry I failed my reading comprehension task :)

Here are just the logfiles from under /var/lib/texmf/web2c.

—TK

On Mon, 12 Nov 2018 at 14:50, Hilmar Preuße  wrote:

> On 12.11.18 19:34, Thanasis Kinias wrote:
>
> Hi,
>
> > I’ve created a tarball with all the files under /var/lib/texmf/web2c,
> > but I’m reluctant to attach a ~10 MB file here.  Is it OK to do that,
> > or should I get it to you some other way?
> >
> Is it really 10MB? Did you just collect the log file or the format files
> too? The *fmt files are not of interest for us, please collect just the
> logs and gzip the resulting file.
>
> Hilmar
>


-- 
Thanasis Kinias
Instructor & Doctoral Candidate, Department of History, Northeastern
University
kinia...@husky.neu.edu


logfiles.tar.bz2
Description: application/bzip

Bug#913598: Update the package for Debian Stretch

2018-11-12 Thread 21naown 

Package: obs-studio
Version: 0.15.4+dfsg1-1+b1
Severity: normal



-- System Information:
Debian Release: 9.5
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-8-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8), 
LANGUAGE= (charmap=UTF-8)

Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages obs-studio depends on:
ii libavcodec57 7:3.2.12-1~deb9u1
ii libavdevice57 7:3.2.12-1~deb9u1
ii libavformat57 7:3.2.12-1~deb9u1
ii libavutil55 7:3.2.12-1~deb9u1
ii libc6 2.24-11+deb9u3
ii libcurl3-gnutls 7.52.1-5+deb9u8
ii libgcc1 1:6.3.0-18+deb9u1
ii libobs0 0.15.4+dfsg1-1+b1
ii libqt5core5a 5.7.1+dfsg-3+b1
ii libqt5gui5 5.7.1+dfsg-3+b1
ii libqt5widgets5 5.7.1+dfsg-3+b1
ii libqt5x11extras5 5.7.1~20161021-2
ii libstdc++6 6.3.0-18+deb9u1
ii libxcb-xinerama0 1.12-1
ii libxcb1 1.12-1
ii obs-plugins 0.15.4+dfsg1-1+b1

obs-studio recommends no packages.

obs-studio suggests no packages.

-- no debconf information

Bug#845715: Required targets must not write outside of the source package tree

2018-11-12 Thread Holger Levsen 
On Mon, Nov 12, 2018 at 09:32:51PM +0100, Bill Allombert wrote:
> > > I can be convinced otherwise with data, though.
> > :)
> If you still run 
> https://tests.reproducible-builds.org

we do, however, this setup is for testing for reproducible builds and
not trying 'random stuff' which might cause wide FTBFS problems, which
would be reported (quite prominently) to tracker.d.o and UDD.

> you could "chmod 1770 /tmp" and set TMPDIR to something valid and see
> how many packages FTBFS.

the above said, we are discussing "Vary setting TMPDIR during reproducibility
testing" in #913557 but that's also not trivial to do, see that bug for
details.


-- 
cheers,
Holger

---
   holger@(debian|reproducible-builds|layer-acht).org
   PGP fingerprint: B8BF 5413 7B09 D35C F026 FE9D 091A B856 069A AA1C


signature.asc
Description: PGP signature

Bug#774415: srebuild in devscripts

2018-11-12 Thread Xavier 
Le 12/11/2018 à 11:08, Holger Levsen a écrit :
> On Sun, Nov 11, 2018 at 10:43:34PM +0100, Xavier wrote:
>> Sadly http://reproducible.alioth.debian.org/debian/ doesn't exists
>> anymore and I can't find any Debian repository in
>> https://tests.reproducible-builds.org/debian
> 
> look at https://tests.reproducible-builds.org/debian/index_repositories.html
> there you will find the repo lines you are looking for.

Thanks, seems to work now but needs to be tested more:
https://salsa.debian.org/yadd/devscripts/blob/devscripts-srebuild/scripts/debrebuild.pl

No changes for now, just update of repo and gpg key

Bug#845715: Required targets must not write outside of the source package tree

2018-11-12 Thread Bill Allombert 
On Mon, Nov 12, 2018 at 12:09:20PM +, Holger Levsen wrote:
> On Sun, Nov 11, 2018 at 09:10:02PM +0100, Bill Allombert wrote:
> > More accurately: I am not sure the Debian archive is ready for these
> > bugs to be RC, especially since they are usually upstream bugs.
>  
> agreed & thanks for catching this.
> 
> > I can be convinced otherwise with data, though.
> 
> :)

If you still run 
https://tests.reproducible-builds.org
you could "chmod 1770 /tmp" and set TMPDIR to something valid and see
how many packages FTBFS.

Cheers,
-- 
Bill. 

Imagine a large red swirl here.

Bug#913589: pqiv FTCBFS: builds for the wrong architecture

2018-11-12 Thread Phillip Berndt 
Thank you very much for the patch! I have picked up your Debian
specific changes into the Debian mirror as
https://salsa.debian.org/pberndt-guest/pqiv/commit/84ce4837730d8d7d48283519b9f2983b9b56c57d

The patch to the makefile (which uses GNU specific features of make,
hence the name) is applied upstream. If that's alright with you I'll
wait for the next release before bumping the Debian package. It will
include this change, but is blocked on
https://github.com/phillipberndt/pqiv/issues/130. Expect a couple of
weeks.

Bug#913597: polyorb depends and build depends on gnat-7

2018-11-12 Thread Adrian Bunk 
Source: polyorb
Version: 2.11~20140418-5
Severity: serious

polyorb depends and build depends on gnat-7,
please update to gnat-8.

Bug#884860: not yet fixed

2018-11-12 Thread Adam Borowski 
Control: forwarded -1 https://github.com/belluzj/fantasque-sans/issues/77
Control: tags -1 -fixed-upstream

The upstream bug has been closed as a duplicate; it's not actually fixed
yet.


Meow!
-- 
⢀⣴⠾⠻⢶⣦⠀ Have you heard of the Amber Road?  For thousands of years, the
⣾⠁⢰⠒⠀⣿⡁ Romans and co valued amber, hauled through the Europe over the
⢿⡄⠘⠷⠚⠋⠀ mountains and along the Vistula, from Gdańsk.  To where it came
⠈⠳⣄ together with silk (judging by today's amber stalls).

Bug#912768: hplip-data: hp-toolbox fsck

2018-11-12 Thread Brian Potkin 
On Mon 12 Nov 2018 at 20:05:14 +0100, Cristian Ionescu-Idbohrn wrote:

> # avahi-browse -rt _scanner._tcp
> +   eth0 IPv6 HP Color LaserJet MFP M281fdw (495F80)_scanner._tcp 
>local=   eth0 IPv6 HP Color LaserJet MFP M281fdw (495F80)
> _scanner._tcplocal
>hostname = [NPI495F80.local]
>address = [192.168.x.y]
>port = [8289]
>txt = ["note=" "flatbed=T" "feeder=T" "button=T" "usb_MDL=HP ColorLaserJet 
> MFP M278-M281" "usb_MFG=HP" "mdl=ColorLaserJet MFP M278-M281" "mfg=HP" "ty=HP 
> ColorLaserJet MFP M278-M281" "adminurl=http://NPI495F80.local.; "txtvers=1" 
> "UUID=564e424e-4b43-4e38-5944-ace2d3495f80"]
> 
> # avahi-browse -rt _uscan._tcp
> +   eth0 IPv6 HP Color LaserJet MFP M281fdw (495F80)_uscan._tcp   
>local=   eth0 IPv6 HP Color LaserJet MFP M281fdw (495F80)
> _uscan._tcp  local
>hostname = [NPI495F80.local]
>address = [192.168.x.y]
>port = [8080]
>txt = ["note=" "duplex=F" "is=platen,adf" "cs=color,grayscale" 
> "pdl=application/pdf,image/jpeg" "uuid=564e424e-4b43-4e38-5944-ace2d3495f80" 
> "rs=eSCL" "representation=http://NPI495F80.local./ipp/images/printer.png; 
> "vers=2.63" "usb_MDL=HP ColorLaserJet MFP M278-M281" "usb_MFG=HP" 
> "mdl=ColorLaserJet MFP M278-M281" "mfg=HP" "ty=HP ColorLaserJet MFP 
> M278-M281" "adminurl=http://NPI495F80.local.; "txtvers=1"]

And now to show why these are important for you as well as for other
users.

Because the device has a _uscan._tcp service libsane-hpaio skips the
_scanner._tcp information. The important bits of the TXT record here are

  mdl=ColorLaserJet MFP M278-M28

and

  ty=HP ColorLaserJet MFP M278-M281

mdl= is effectively skipped and only ty= looked at by HPLIP.

The "HP" plus the space is removed and models.dat is tested for having
[colorLaserJet_mfp_m278-m281]. If it doesn't have it, what *should*
happen is that it should test for [hp_colorLaserJet_mfp_m278-m281]. On
3.17.10 this does not happen and the scanner is not found. This is
likely the source of you previous problem.

On 3.18.10 the search for [hp_colorLaserJet_mfp_m278-m281] succeeds. I
have no idea what causes this.

(One thing I have learnt from your response is that _uscan can have an
mdl= key).

Thanks again.

-- 
Brian.

Bug#911938: libhttp-daemon-ssl-perl FTBFS: tests fail: Connection refused

2018-11-12 Thread Mike Gabriel 

Hi,

On Fri, 26 Oct 2018 15:14:06 +0200 Helmut Grohne  wrote:

> Source: libhttp-daemon-ssl-perl
> Version: 1.05-01-1
> Severity: serious
> Tags: ftbfs
>
> libhttp-daemon-ssl-perl fails to build from source in unstable.
>
> 
https://tests.reproducible-builds.org/debian/rbuild/unstable/amd64/libhttp-daemon-ssl-perl_1.05-01-1.rbuild.log.gz

>
> | # Failed test 'got request object'
> | # at t/testpost.t line 88.
> | Can't call method "method" on an undefined value at t/testpost.t 
line 89.

> | # Looks like your test exited with 255 just after 5.
> |
> | # Failed test 'posted small request'
> | # at t/testpost.t line 55.
> | # 500
> | # Server closed connection without sending any data back
> |
> | # Failed test 'posted 66k request'
> | # at t/testpost.t line 62.
> | # 500
> | # Can't connect to 127.0.0.1:39653 (Connection refused)
> |
> | # Failed test 'posted 67k request'
> | # at t/testpost.t line 68.
> | # 500
> | # Can't connect to 127.0.0.1:39653 (Connection refused)
> |
> | # Failed test 'posted 500k request'
> | # at t/testpost.t line 74.
> | # 500
> | # Can't connect to 127.0.0.1:39653 (Connection refused)
> | t/testpost.t 
> | 1..20
> | ok - made test server
> | ok - server init port=39653
> | ok - server fileno
> | ok - accepted first post
> | not ok - got request object
> | not ok - posted small request
> | not ok - posted 66k request
> | not ok - posted 67k request
> | not ok - posted 500k request
> | Dubious, test returned 255 (wstat 65280, 0xff00)
> | Failed 16/20 subtests
> |
> | Test Summary Report
> | ---
> | t/testpost.t (Wstat: 65280 Tests: 9 Failed: 5)
> | Failed tests: 5-9
> | Non-zero exit status: 255
> | Parse errors: Bad plan. You planned 20 tests but ran 9.
> | Files=4, Tests=26, 34 wallclock secs ( 0.06 usr 0.03 sys + 1.09 
cusr 0.25 csys = 1.43 CPU)

> | Result: FAIL
> | Failed 1/4 test programs. 5/26 subtests failed.
> | make[2]: *** [Makefile:829: test_dynamic] Error 255
> | make[2]: Leaving directory '/build/1st/libhttp-daemon-ssl-perl-1.05-01'
> | dh_auto_test: make -j1 test TEST_VERBOSE=1 returned exit code 2
> | make[1]: *** [debian/rules:20: override_dh_auto_test] Error 2

In order not to loose this bit of information that came in via 
#debian-perl IRC:



```

15:27 < ntyni> it's a TLSv1.3 thing, hacking in SSL_version => 'TLSv1_2' 
makes it pass

15:27 < ntyni> the underlying error seems to be "SSL wants a read first"
15:29 < ntyni> but I can't really tell if the fault is in 
HTTP::Daemon::SSL, HTTP::Daemon, IO::Socket::SSL or Net::SSLeay and my 
eyes bleed already
15:32 < ntyni> 
https://wiki.openssl.org/index.php/TLS1.3#Non-application_data_records 
is presumably related
15:46 < dam> that test fails differently for me: Bad arg length for 
Socket::inet_ntoa, length is 16, should be 4 at 
/usr/share/perl5/HTTP/Daemon.pm line 51.

15:46 < dam> and the argument is 16 binary zeroes (like ip6 0::0)
15:50 < ntyni> that's weird given t/ssl_settings.req has 127.0.0.1
15:51 < ntyni> HTTP::Daemon is IPv4-only and I'd expect issues like that 
when passing 'localhost' to it

15:58 < dam> hmm. will look more
16:07 < ntyni> so I suppose the issue is with the client not the server; 
I can interact fine with the server side with curl
16:09 < ntyni> the client is Test::WWW::Mechanize, which uses 
LWP::Protocol::https underneath (-> Net::HTTPS -> IO::Socket::SSL)
16:11 < ntyni> and I guess the client blindly writes the HTTP request 
without reading non-application data records out first


[...]

20:30 < ntyni> seems like a client problem indeed; POSTing to 
facebook.com with LWP and TLSv1.3 hangs for me too
20:30 < ntyni> as in perl -MLWP::UserAgent -e 
'LWP::UserAgent->new->post("https://facebook.com;, { data => "foo" }) or 
die'
20:31 < ntyni> sticking ssl_opts => { SSL_version => 'TLSv1_2'} in there 
makes it go away


```


Mike

Bug#913541: pupnp-1.8: autopkgtests fail on some arches: libupnp uses large file support

2018-11-12 Thread Steve Langasek 
Package: pupnp-1.8
Version: 1:1.8.4-2
Followup-For: Bug #913541
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu disco ubuntu-patch

Attached is a patch which fixes the autopkgtest failure on 32-bit arches.
In the process it also makes the pkg-config .pc file more useful; since
software won't build correctly against pupnp without LFS_CFLAGS, we make
these part of the pkg-config environment automatically.

Thanks,
-- 
Steve Langasek   Give me a lever long enough and a Free OS
Debian Developer   to set it on, and I can move the world.
Ubuntu Developer   https://www.debian.org/
slanga...@ubuntu.com vor...@debian.org
diff -Nru pupnp-1.8-1.8.4/debian/patches/debian-changes 
pupnp-1.8-1.8.4/debian/patches/debian-changes
--- pupnp-1.8-1.8.4/debian/patches/debian-changes   2018-11-05 
11:55:05.0 -0800
+++ pupnp-1.8-1.8.4/debian/patches/debian-changes   2018-11-12 
10:41:27.0 -0800
@@ -15,6 +15,8 @@
 `git clone`.)
 
 A single combined diff, containing all the changes, follows.
+Index: pupnp-1.8-1.8.4/configure.ac
+===
 --- pupnp-1.8-1.8.4.orig/configure.ac
 +++ pupnp-1.8-1.8.4/configure.ac
 @@ -573,9 +573,6 @@ freebsd*)
@@ -27,3 +29,25 @@
fi
;;
  esac
+@@ -713,6 +710,12 @@ AC_COMPILE_IFELSE(
+   AC_MSG_ERROR([pthread_rwlock_t not available])])])
+ echo 
"---"
+ 
++AC_MSG_CHECKING([for LFS_CFLAGS])
++if test "$cross_compiling" != yes; then
++lfs_cflags=$(getconf LFS_CFLAGS)
++fi
++AC_MSG_RESULT([$lfs_cflags])
++AC_SUBST([LFS_CFLAGS], [$lfs_cflags])
+ 
+ AC_CONFIG_FILES([
+   Makefile
+--- pupnp-1.8-1.8.4.orig/libupnp.pc.in
 pupnp-1.8-1.8.4/libupnp.pc.in
+@@ -7,5 +7,5 @@ Name: libupnp
+ Description: Linux SDK for UPnP Devices
+ Version: @VERSION@
+ Libs: @PTHREAD_CFLAGS@ @PTHREAD_LIBS@ -L${libdir} -lupnp -lixml
+-Cflags: @PTHREAD_CFLAGS@ -I${includedir}/upnp
++Cflags: @PTHREAD_CFLAGS@ -I${includedir}/upnp @LFS_CFLAGS@
+ 
diff -Nru pupnp-1.8-1.8.4/debian/tests/build pupnp-1.8-1.8.4/debian/tests/build
--- pupnp-1.8-1.8.4/debian/tests/build  2018-11-05 11:55:05.0 -0800
+++ pupnp-1.8-1.8.4/debian/tests/build  2018-11-12 00:53:31.0 -0800
@@ -14,7 +14,7 @@
 cd "$ADTTMP"
 
 # Build programs - once with raw libraries and once with pkg-config
-gcc -Wall -Werror -o pupnp-test1 pupnp-test.c -I/usr/include/upnp -lupnp
+gcc -Wall -Werror -o pupnp-test1 pupnp-test.c -I/usr/include/upnp -lupnp 
$(getconf LFS_CFLAGS)
 echo "build1: OK"
 gcc -Wall -Werror -o pupnp-test2 pupnp-test.c $(pkg-config --cflags --libs 
libupnp)
 echo "build2: OK"

Bug#913596: Link to KDE security advisory

2018-11-12 Thread Martin Steigerwald 
It is not on the announcement page, but on the KDE security advisories 
page:

https://www.kde.org/info/security/advisory-20181012-1.txt

Thanks,
-- 
Martin

Bug#913295: debian-policy: Update location of example init.d script

2018-11-12 Thread Sean Whitton 
Hello,

On Sun 11 Nov 2018 at 09:08PM GMT, Dmitry Bogatov wrote:

> [2018-11-10 17:02] Sean Whitton 
>>
>> Reading #913154, I note that the example in init-d-script(5) is shorter
>> than the old file /etc/init.d/skeleton.  So shouldn't Policy refer to
>> the new file in /usr/share/doc/initscripts/examples, instead?
>
> Sorry, I do not understand. Why? Currently, there is no such thing as
> `/usr/share/doc/initscripts/examples'.

The first message in #913154 suggests moving /etc/init.d/skeleton into
/usr/share/doc/initscripts/examples.  And /etc/init.d/skeleton is more
detailed than the example in init-d-scripts(5).  So it seems that the
best solution is for initscripts to add the examples/ directory, and
Policy to refer to that.  Please correct me if I'm wrong!

-- 
Sean Whitton


signature.asc
Description: PGP signature

Bug#913586: texlive-binaries 2018.20181104.49075-1 breaks context

2018-11-12 Thread Hilmar Preuße 
On 12.11.18 19:34, Thanasis Kinias wrote:

Hi,

> I’ve created a tarball with all the files under /var/lib/texmf/web2c,
> but I’m reluctant to attach a ~10 MB file here.  Is it OK to do that,
> or should I get it to you some other way?
> 
Is it really 10MB? Did you just collect the log file or the format files
too? The *fmt files are not of interest for us, please collect just the
logs and gzip the resulting file.

Hilmar

Bug#913596: CVE-2018-19120: kio-extras: HTML Thumbnailer automatic remote file access

2018-11-12 Thread Martin Steigerwald 
Package: kde-runtime
Version: 4:17.08.3-2
Severity: important
Tags: security

Dear Maintainer,

"KDE Project Security Advisory: kio-extras: HTML Thumbnailer automatic
remote file access" (Message-ID: <5460566.RsyoOK3lV2@xps>, for some reason
the mailing list archives are for subscribers only) mentions that
'htmlthumbnail.so' accesses content from remote files in HTML files to
thumbnail. It has been assigned CVE number CVE-2018-19120.

KDE developers removed the HTML thumbnailer for KDE Applications 18.12.

KDE advisory mentions kio-extras. I am not sure whether 'htmlthumbnail.so'
from KDE SC 4 in 'kde-runtime' is also affected.

If so, work-around is to remove

/usr/lib/kde4/htmlthumbnail.so

The announcement should be accessible to the public on

https://www.kde.org/announcements/

soon.

Thanks,
Martin

-- System Information:
Debian Release: buster/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (200, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.19.0-tp520 (SMP w/4 CPU cores; PREEMPT)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages kde-runtime depends on:
ii  drkonqi 5.13.4-1
ii  kde-runtime-data4:17.08.3-2
ii  kdelibs5-plugins4:4.14.38-2
ii  libasound2  1.1.7-1
ii  libattica0.40.4.2-2
ii  libc6   2.27-8
ii  libcanberra00.30-6
ii  libexiv2-14 0.25-4
ii  libgcc1 1:8.2.0-9
ii  libgcrypt20 1.8.4-3
ii  libgpgme++2v5   4:4.14.10-10
ii  libgpgme11  1.12.0-4
ii  libjpeg62-turbo 1:1.5.2-2+b1
ii  libkactivities6 4:4.13.3-2
ii  libkcmutils44:4.14.38-2
ii  libkdeclarative54:4.14.38-2
ii  libkdecore5 4:4.14.38-2
ii  libkdesu5   4:4.14.38-2
ii  libkdeui5   4:4.14.38-2
ii  libkdewebkit5   4:4.14.38-2
ii  libkdnssd4  4:4.14.38-2
ii  libkemoticons4  4:4.14.38-2
ii  libkfile4   4:4.14.38-2
ii  libkhtml5   4:4.14.38-2
ii  libkio5 4:4.14.38-2
ii  libkmediaplayer44:4.14.38-2
ii  libknewstuff3-4 4:4.14.38-2
ii  libknotifyconfig4   4:4.14.38-2
ii  libkparts4  4:4.14.38-2
ii  libkpty44:4.14.38-2
ii  libntrack-qt4-1 016-1.3
ii  libopenexr232.2.1-4
ii  libphonon4  4:4.10.1-1
ii  libplasma3  4:4.14.38-2
ii  libpulse-mainloop-glib0 12.2-2
ii  libpulse0   12.2-2
ii  libqt4-dbus 4:4.8.7+dfsg-17
ii  libqt4-declarative  4:4.8.7+dfsg-17
ii  libqt4-network  4:4.8.7+dfsg-17
ii  libqt4-script   4:4.8.7+dfsg-17
ii  libqt4-svg  4:4.8.7+dfsg-17
ii  libqt4-xml  4:4.8.7+dfsg-17
ii  libqtcore4  4:4.8.7+dfsg-17
ii  libqtgui4   4:4.8.7+dfsg-17
ii  libqtwebkit42.3.4.dfsg-10
ii  libsmbclient2:4.9.1+dfsg-2
ii  libsolid4   4:4.14.38-2
ii  libssh-gcrypt-4 0.8.4-3
ii  libstdc++6  8.2.0-9
ii  libwebp60.6.1-2
ii  libx11-62:1.6.7-1
ii  libxcursor1 1:1.1.15-1
ii  oxygen-icon-theme   5:5.51.0-1
ii  phonon  4:4.10.1-1
ii  plasma-scriptengine-javascript  4:17.08.3-2

Versions of packages kde-runtime recommends:
ii  icoutils   0.32.3-2
pn  libcanberra-pulse | libcanberra-gstreamer  
ii  sound-theme-freedesktop0.8-2
ii  udisks22.8.1-2
ii  upower 0.99.9-1

Versions of packages kde-runtime suggests:
pn  djvulibre-bin  
ii  finger 0.17-15.1

-- no debconf information

-- debsums errors found:
debsums: missing file /usr/lib/kde4/htmlthumbnail.so (from kde-runtime package)

Bug#913595: CVE-2018-19120: kio-extras: HTML Thumbnailer automatic remote file access

2018-11-12 Thread Martin Steigerwald 
Package: kio-extras
Version: 4:18.08.1-1
Severity: important
Tags: security

Dear Maintainer,

"KDE Project Security Advisory: kio-extras: HTML Thumbnailer automatic
remote file access" (Message-ID: <5460566.RsyoOK3lV2@xps>, for some reason
the mailing list archives are for subscribers only) mentions that
'htmlthumbnail.so' accesses content from remote files in HTML files to
thumbnail. It has been assigned CVE number CVE-2018-19120.

KDE developers removed the HTML thumbnailer for KDE Applications 18.12.

Work-around is to remove

/usr/lib/x86_64-linux-gnu/qt5/plugins/htmlthumbnail.so

The announcement should be accessible to the public on

https://www.kde.org/announcements/

soon.

Thanks,
Martin

-- System Information:
Debian Release: buster/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (200, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.19.0-tp520 (SMP w/4 CPU cores; PREEMPT)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages kio-extras depends on:
ii  kio  5.51.0-1
ii  kio-extras-data  4:18.08.1-1
ii  libc62.27-8
ii  libgcc1  1:8.2.0-9
ii  libkf5activities55.51.0-1
ii  libkf5archive5   5.51.0-1
ii  libkf5bookmarks5 5.51.0-1
ii  libkf5codecs55.51.0-1
ii  libkf5configcore55.51.0-1
ii  libkf5configgui5 5.51.0-1
ii  libkf5configwidgets5 5.51.0-1
ii  libkf5coreaddons55.51.0-1
ii  libkf5dbusaddons55.51.0-1
ii  libkf5dnssd5 5.51.0-1
ii  libkf5guiaddons5 5.51.0-1
ii  libkf5i18n5  5.51.0-1
ii  libkf5iconthemes55.51.0-1
ii  libkf5khtml5 5.51.0-1
ii  libkf5kiocore5   5.51.0-1
ii  libkf5kiofilewidgets55.51.0-1
ii  libkf5kiowidgets55.51.0-1
ii  libkf5parts5 5.51.0-1
ii  libkf5pty5   5.51.0-1
ii  libkf5service-bin5.51.0-1
ii  libkf5service5   5.51.0-1
ii  libkf5solid5 5.51.0-1
ii  libkf5xmlgui55.51.0-1
ii  libmtp9  1.1.13-1
ii  libopenexr23 2.2.1-4
ii  libphonon4qt5-4  4:4.10.1-1
ii  libqt5core5a 5.11.2+dfsg-4
ii  libqt5dbus5  5.11.2+dfsg-4
ii  libqt5gui5   5.11.2+dfsg-4
ii  libqt5network5   5.11.2+dfsg-4
ii  libqt5sql5   5.11.2+dfsg-4
ii  libqt5svg5   5.11.2-2
ii  libqt5webenginewidgets5  5.11.2+dfsg-2
ii  libqt5widgets5   5.11.2+dfsg-4
ii  libqt5xml5   5.11.2+dfsg-4
ii  libsmbclient 2:4.9.1+dfsg-2
ii  libssh-4 0.8.4-3
ii  libstdc++6   8.2.0-9
ii  libtag1v51.11.1+dfsg.1-0.2+b1
ii  phonon4qt5   4:4.10.1-1

kio-extras recommends no packages.

kio-extras suggests no packages.

-- no debconf information

-- debsums errors found:
debsums: missing file /usr/lib/x86_64-linux-gnu/qt5/plugins/htmlthumbnail.so 
(from kio-extras package)

Bug#912768: hplip-data: hp-toolbox fsck

2018-11-12 Thread Brian Potkin 
On Mon 12 Nov 2018 at 20:05:14 +0100, Cristian Ionescu-Idbohrn wrote:

> On Mon, 12 Nov 2018, Brian Potkin wrote:
> > On Mon 12 Nov 2018 at 19:28:05 +0100, Cristian Ionescu-Idbohrn wrote:
> > > On Mon, 12 Nov 2018, Brian Potkin wrote:
> > > > 
> > > > A small favour, Cristian. Please do
> > > > 
> > > > avahi-browse -rt _scanner._tcp
> > > > 
> > > > and
> > > > 
> > > > avahi-browse -rt _uscan._tcp
> > > > 
> > > > and let us know the outputs. avahi-browse is in the avahi-utils 
> > > > package.
> > > 
> > > Package avahi-utils is not installed on my systems.  I can print, 
> > > scan and possibly fax, without it.
> > 
> > You could install it and respond in a positive fashion. It would 
> > help in diagnosing problems which other users might face.
> 
> Alright, although I don't want bloat ;)

I understand that attitude and take the same view for my systems. But
when triaging bugs it is necessary for me to be more relaxed. The logs
help to revert what is installed as an extra, but much of the time I
make my own record

> Installing avahi-utils brings:
> 
>   avahi-daemon avahi-utils libavahi-core7 libdaemon0

just as you did.

> Uninstalled that immediatly.
> 
> # avahi-browse -rt _scanner._tcp
> +   eth0 IPv6 HP Color LaserJet MFP M281fdw (495F80)_scanner._tcp 
>local=   eth0 IPv6 HP Color LaserJet MFP M281fdw (495F80)
> _scanner._tcplocal
>hostname = [NPI495F80.local]
>address = [192.168.x.y]
>port = [8289]
>txt = ["note=" "flatbed=T" "feeder=T" "button=T" "usb_MDL=HP ColorLaserJet 
> MFP M278-M281" "usb_MFG=HP" "mdl=ColorLaserJet MFP M278-M281" "mfg=HP" "ty=HP 
> ColorLaserJet MFP M278-M281" "adminurl=http://NPI495F80.local.; "txtvers=1" 
> "UUID=564e424e-4b43-4e38-5944-ace2d3495f80"]
> 
> # avahi-browse -rt _uscan._tcp
> +   eth0 IPv6 HP Color LaserJet MFP M281fdw (495F80)_uscan._tcp   
>local=   eth0 IPv6 HP Color LaserJet MFP M281fdw (495F80)
> _uscan._tcp  local
>hostname = [NPI495F80.local]
>address = [192.168.x.y]
>port = [8080]
>txt = ["note=" "duplex=F" "is=platen,adf" "cs=color,grayscale" 
> "pdl=application/pdf,image/jpeg" "uuid=564e424e-4b43-4e38-5944-ace2d3495f80" 
> "rs=eSCL" "representation=http://NPI495F80.local./ipp/images/printer.png; 
> "vers=2.63" "usb_MDL=HP ColorLaserJet MFP M278-M281" "usb_MFG=HP" 
> "mdl=ColorLaserJet MFP M278-M281" "mfg=HP" "ty=HP ColorLaserJet MFP 
> M278-M281" "adminurl=http://NPI495F80.local.; "txtvers=1"]

Very helpful. Thank you for the trouble you went to.

-- 
Brian.

Bug#913592: ITP: fever -- fast, extensible, versatile event router for Suricata's EVE-JSON format

2018-11-12 Thread Sascha Steinbiss 
Package: wnpp
Severity: wishlist
Owner: Sascha Steinbiss 

* Package name: fever
  Version : 1.0
  Upstream Author : DCSO GmbH
* URL : https://github.com/DCSO/fever
* License : BSD-3-clause
  Programming Lang: Go
  Description : fast, extensible, versatile event router for
Suricata's EVE-JSON format

The Fast, Extensible, Versatile Event Router (FEVER) is a tool for fast
processing of events from Suricata's JSON EVE output. What is meant by
'processing' is defined by a number of modular components, for example
facilitating fast ingestion into a database. Other processors implement
collection, aggregation and forwarding of various metadata (e.g.
aggregated and raw flows, passive DNS data, etc.) as well as performance
metrics.

It is meant to be used in front of (or as a replacement for)
general-purpose log processors like Logstash to increase event
throughput as observed on sensors that see a lot of traffic.

Bug#913593: [apt-cacher-ng] Typo /snipped/snippet/

2018-11-12 Thread Jens Reyer 
Package: apt-cacher-ng
Version: 3.2-1
Severity: minor
Tags: patch


Hi,

the little text files are snippets, not snippeds.

https://www.merriam-webster.com/dictionary/snippet
https://www.merriam-webster.com/dictionary/snipped

Patch attached.

Thanks
jre
diff --git a/INSTALL b/INSTALL
index da32cbe..c1cc0e6 100644
--- a/INSTALL
+++ b/INSTALL
@@ -68,7 +68,7 @@ Configuration:
  - visit Command-and-Control web interface of apt-cacher-ng, link can be found
among other instructions at http://yourHostName:portNumber/ , which might be
http://localhost:3142/ with the default configuration
- - for apt clients, there is a config snipped in contrib/10-apt-cacher-ng.conf
+ - for apt clients, there is a config snippet in contrib/10-apt-cacher-ng.conf
which might be installed into /etc/apt/apt.conf.d/.
 
 Developer notes:
diff --git a/doc/000apt-cacher-ng-proxy b/doc/000apt-cacher-ng-proxy
index e03fadd..9bb07c2 100644
--- a/doc/000apt-cacher-ng-proxy
+++ b/doc/000apt-cacher-ng-proxy
@@ -1,4 +1,4 @@
-# This configuration snipped is intended to be stored in /etc/apt/apt.conf.d/
+# This configuration snippet is intended to be stored in /etc/apt/apt.conf.d/
 # on the client system in order to change a regular setup to use apt-cacher-ng.
 #
 Acquire::http::Proxy "http://192.168.0.245:3142/;;

Bug#913594: [apt-cacher-ng] Vcs-Git field lacks branch information

2018-11-12 Thread Jens Reyer 
Package: apt-cacher-ng
Version: 3.2-1
Severity: minor
Tags: patch

Hi,

https://tracker.debian.org/pkg/apt-cacher-ng believes that the git repo
is outdated, because it's looking at branch master instead of debian/sid.

To fix either adapt the salsa project, or debian/control.

Patch for the latter solution is attached.

Thanks for apt-cacher-ng
Greets
jre
diff --git a/debian/control b/debian/control
index 9e6f616..e4834bc 100644
--- a/debian/control
+++ b/debian/control
@@ -5,7 +5,7 @@ Maintainer: Eduard Bloch 
 Build-Depends: debhelper (>= 9), cmake (>= 2.6.2), libbz2-dev, zlib1g-dev, liblzma-dev, libfuse-dev [!hurd-i386], pkg-config, libwrap0-dev, lsb-base (>> 3.0-6), debhelper (>= 9.20160709) | dh-systemd (>= 1.5), po-debconf, libssl-dev, libsystemd-dev (>= 210) [linux-any] | libsystemd-daemon-dev [linux-any]
 Standards-Version: 4.1.1
 Homepage: http://www.unix-ag.uni-kl.de/~bloch/acng/
-Vcs-Git: https://salsa.debian.org/blade/apt-cacher-ng.git
+Vcs-Git: https://salsa.debian.org/blade/apt-cacher-ng.git -b debian/sid
 Vcs-Browser: https://salsa.debian.org/blade/apt-cacher-ng/tree/debian/sid
 
 Package: apt-cacher-ng

Bug#913591: mkl-dnn: binary-all/binary-any FTBFS

2018-11-12 Thread Adrian Bunk 
Source: mkl-dnn
Version: 0.17~rc-1
Severity: serious
Tags: ftbfs

https://buildd.debian.org/status/package.php?p=mkl-dnn=sid

...
The following tests FAILED:
  1 - simple-net-c (Not Run)
  2 - simple-net-cpp (Not Run)
  3 - simple-training-net-c (Not Run)
  4 - simple-training-net-cpp (Not Run)
  5 - simple-net-int8-cpp (Not Run)
  6 - api-c (Not Run)
  7 - test_c_symbols-c (Not Run)
  8 - test_batch_normalization (Not Run)
  9 - test_concat (Not Run)
 10 - test_convolution_backward_data_f32 (Not Run)
 11 - test_convolution_backward_data_s16s16s32 (Not Run)
 12 - test_convolution_backward_weights_f32 (Not Run)
 13 - test_convolution_backward_weights_s16s16s32 (Not Run)
 14 - test_convolution_format_any (Not Run)
 15 - test_convolution_forward_f32 (Not Run)
 16 - test_convolution_forward_s16s16s32 (Not Run)
 17 - test_convolution_forward_u8s8fp (Not Run)
 18 - test_convolution_forward_u8s8s32 (Not Run)
 19 - test_convolution_relu_forward_f32 (Not Run)
 20 - test_convolution_relu_forward_neg_slope_f32 (Not Run)
 21 - test_convolution_relu_forward_s16s16s32 (Not Run)
 22 - test_deconvolution (Not Run)
 23 - test_eltwise (Not Run)
 24 - test_gemm_f32 (Not Run)
 25 - test_gemm_s8s8s32 (Not Run)
 26 - test_gemm_s8u8s32 (Not Run)
 27 - test_iface_attr (Not Run)
 28 - test_iface_pd_iter (Not Run)
 29 - test_inner_product_backward_data (Not Run)
 30 - test_inner_product_backward_weights (Not Run)
 31 - test_inner_product_forward (Not Run)
 32 - test_lrn_backward (Not Run)
 33 - test_lrn_forward (Not Run)
 34 - test_memory (Not Run)
 35 - test_mkldnn_threading (Not Run)
 36 - test_pooling_backward (Not Run)
 37 - test_pooling_forward (Not Run)
 38 - test_relu (Not Run)
 39 - test_reorder (Not Run)
 40 - test_shuffle (Not Run)
 41 - test_softmax_backward (Not Run)
 42 - test_softmax_forward (Not Run)
 43 - test_sum (Not Run)
Errors while running CTest
make[1]: *** [Makefile:77: test] Error 8


...
   debian/rules override_dh_installdocs
make[1]: Entering directory '/<>'
dh_installdocs -A doc/legal_information.md
dh_doxygen
make[1]: dh_doxygen: Command not found
make[1]: *** [debian/rules:28: override_dh_installdocs] Error 127


It should be possible to reproduce these with
  dpkg-buildpackage -A
  dpkg-buildpackage -B

Bug#912768: hplip-data: hp-toolbox fsck

2018-11-12 Thread Cristian Ionescu-Idbohrn 


On Mon, 12 Nov 2018, Brian Potkin wrote:
> On Mon 12 Nov 2018 at 19:28:05 +0100, Cristian Ionescu-Idbohrn wrote:
> > On Mon, 12 Nov 2018, Brian Potkin wrote:
> > > 
> > > A small favour, Cristian. Please do
> > > 
> > > avahi-browse -rt _scanner._tcp
> > > 
> > > and
> > > 
> > > avahi-browse -rt _uscan._tcp
> > > 
> > > and let us know the outputs. avahi-browse is in the avahi-utils 
> > > package.
> > 
> > Package avahi-utils is not installed on my systems.  I can print, 
> > scan and possibly fax, without it.
> 
> You could install it and respond in a positive fashion. It would 
> help in diagnosing problems which other users might face.

Alright, although I don't want bloat ;)
Installing avahi-utils brings:

avahi-daemon avahi-utils libavahi-core7 libdaemon0

Uninstalled that immediatly.

# avahi-browse -rt _scanner._tcp
+   eth0 IPv6 HP Color LaserJet MFP M281fdw (495F80)_scanner._tcp   
 local=   eth0 IPv6 HP Color LaserJet MFP M281fdw (495F80)_scanner._tcp 
   local
   hostname = [NPI495F80.local]
   address = [192.168.x.y]
   port = [8289]
   txt = ["note=" "flatbed=T" "feeder=T" "button=T" "usb_MDL=HP ColorLaserJet 
MFP M278-M281" "usb_MFG=HP" "mdl=ColorLaserJet MFP M278-M281" "mfg=HP" "ty=HP 
ColorLaserJet MFP M278-M281" "adminurl=http://NPI495F80.local.; "txtvers=1" 
"UUID=564e424e-4b43-4e38-5944-ace2d3495f80"]

# avahi-browse -rt _uscan._tcp
+   eth0 IPv6 HP Color LaserJet MFP M281fdw (495F80)_uscan._tcp 
 local=   eth0 IPv6 HP Color LaserJet MFP M281fdw (495F80)_uscan._tcp   
   local
   hostname = [NPI495F80.local]
   address = [192.168.x.y]
   port = [8080]
   txt = ["note=" "duplex=F" "is=platen,adf" "cs=color,grayscale" 
"pdl=application/pdf,image/jpeg" "uuid=564e424e-4b43-4e38-5944-ace2d3495f80" 
"rs=eSCL" "representation=http://NPI495F80.local./ipp/images/printer.png; 
"vers=2.63" "usb_MDL=HP ColorLaserJet MFP M278-M281" "usb_MFG=HP" 
"mdl=ColorLaserJet MFP M278-M281" "mfg=HP" "ty=HP ColorLaserJet MFP M278-M281" 
"adminurl=http://NPI495F80.local.; "txtvers=1"]


-- 
Cristian

Bug#912768: hplip-data: hp-toolbox fsck

2018-11-12 Thread Brian Potkin 
On Mon 12 Nov 2018 at 19:28:05 +0100, Cristian Ionescu-Idbohrn wrote:

> On Mon, 12 Nov 2018, Brian Potkin wrote:
> > 
> > A small favour, Cristian. Please do
> > 
> > avahi-browse -rt _scanner._tcp
> > 
> > and
> > 
> > avahi-browse -rt _uscan._tcp
> > 
> > and let us know the outputs. avahi-browse is in the avahi-utils 
> > package.
> 
> Package avahi-utils is not installed on my systems.  I can print, 
> scan and possibly fax, without it.

You could install it and respond in a positive fashion. It would help
in diagnosing problems which other users might face.

-- 
Brian.

Bug#908989: thunderbird: AppArmor denies access to /etc/ld.so.conf

2018-11-12 Thread Vincas Dargis 

https://salsa.debian.org/mozilla-team/thunderbird/merge_requests/2

Bug#913552: firehol: Firehol upgrade 3.1.6+ds-4 to 3.1.6+ds-5 leaves firehol broken

2018-11-12 Thread Cristian Ionescu-Idbohrn 
On Mon, 12 Nov 2018, Russel Winder wrote:
> 
> > Can you get te version og the ffirehol package ?
> 
> |> dpkg -l *firehol*
> Desired=Unknown/Install/Remove/Purge/Hold
> | Status=Not/Inst/Conf-files/Unpacked/halF-conf/Half-inst/trig-aWait/Trig-pend
> |/ Err?=(none)/Reinst-required (Status,Err: uppercase=bad)
> ||/ Name  Version  Architecture Description
> +++-=---=
> iF  firehol   3.1.6+ds-5   all  easy to use but powerful 
> iptables stateful firewall (program)
> ii  firehol-common3.1.6+ds-5   all  easy to use but powerful 
> traffic suite (common library)
> ii  firehol-doc   3.1.6+ds-5   all  easy to use but powerful 
> iptables stateful firewall (docs)
> un  firehol-tools   (no description available)
> ii  firehol-tools-doc 3.1.6+ds-5   all  easy to use but powerful 
> traffic suite (extra tools docs)

You don't happen to have that "move everything from /bin, /sbin, /lib 
to /usr/..." package installed?

My test on the sysV system I use shows the only non-existing/not used 
variable in /usr/lib/firehol/install.config is:

FIREHOL_SHARE_DIR="$DATAROOTDIR/firehol"

that is:

FIREHOL_SHARE_DIR=/usr/share/firehol


-- 
Cristian

Bug#913590: ITP: tl-parser -- command-line tool to parse TL scheme to tlo file

2018-11-12 Thread Ying-Chun Liu (PaulLiu) 
Package: wnpp
Severity: wishlist
Owner: "Ying-Chun Liu (PaulLiu)" 

* Package name: tl-parser
  Version : 0.0.0+git20180215.f49077de
  Upstream Author : Vysheng 
* URL : https://github.com/vysheng/tl-parser
* License : GPL-2.0+
  Programming Lang: C
  Description : command-line tool to parse TL scheme to tlo file
 This tool parses the TL scheme and compile the scheme to tlo file. It
is part
 of the telegram-cli.
 .
 TL (Type Language) serves to describe the used system of types,
constructors,
 and existing functions.

-- 
PaulLiu (劉穎駿)
E-mail: Ying-Chun Liu (PaulLiu) 



signature.asc
Description: OpenPGP digital signature

Bug#913578: printer-driver-postscript-hp: PPDs are missing

2018-11-12 Thread Didier 'OdyX' Raboud 
Control: tags -1 +confirmed
Control: found -1 3.18.3+dfsg0-1

Le lundi, 12 novembre 2018, 16.00:46 h CET Brian Potkin a écrit :
> Package: printer-driver-postscript-hp
> Version: 3.18.10+dfsg0-2
> Severity: grave
> Justification: renders package unusable
> 
> Executing
> 
> /usr/lib/cups/driver/postscript-hp list
> 
> shows only four PPDs (all for Fax).

Right; this looks like a regression from 3.18.3+dfsg0-1 already, when printer-
driver-postscript-hp was made an arch:any package.

Will look into this…

Cheers,
OdyX

signature.asc
Description: This is a digitally signed message part.

Bug#913586: texlive-binaries 2018.20181104.49075-1 breaks context

2018-11-12 Thread Thanasis Kinias 
Hi Hilmar,

I’ve created a tarball with all the files under /var/lib/texmf/web2c, but
I’m reluctant to attach a ~10 MB file here.  Is it OK to do that, or should
I get it to you some other way?

Best,
Thanasis

Bug#913589: pqiv FTCBFS: builds for the wrong architecture

2018-11-12 Thread Helmut Grohne 
Source: pqiv
Version: 2.10.4-1
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap

pqiv fails to cross build from source. For cross building pqiv, one is
supposed to pass --cross to ./configure. Even then it fails, because its
GNUmakefile (sic) fails to detect that X11 is needed using the wrong
pkg-config. The attached patch fixes both and makes pqiv cross
buildable. Please consider applying the attached patch.

Helmut
diff --minimal -Nru pqiv-2.10.4/debian/changelog pqiv-2.10.4/debian/changelog
--- pqiv-2.10.4/debian/changelog2018-04-23 20:30:00.0 +0200
+++ pqiv-2.10.4/debian/changelog2018-11-12 17:38:48.0 +0100
@@ -1,3 +1,12 @@
+pqiv (2.10.4-1.1) UNRELEASED; urgency=medium
+
+  * Non-maintainer upload.
+  * Fix FTCBFS: (Closes: #-1)
++ Pass --cross to ./configure.
++ cross.patch: Don't hard code the build architecture pkg-config.
+
+ -- Helmut Grohne   Mon, 12 Nov 2018 17:38:48 +0100
+
 pqiv (2.10.4-1) unstable; urgency=medium
 
   * New maintainer.
diff --minimal -Nru pqiv-2.10.4/debian/patches/cross.patch 
pqiv-2.10.4/debian/patches/cross.patch
--- pqiv-2.10.4/debian/patches/cross.patch  1970-01-01 01:00:00.0 
+0100
+++ pqiv-2.10.4/debian/patches/cross.patch  2018-11-12 17:38:48.0 
+0100
@@ -0,0 +1,11 @@
+--- pqiv-2.10.4.orig/GNUmakefile
 pqiv-2.10.4/GNUmakefile
+@@ -94,7 +94,7 @@
+ endif
+ 
+ # We need X11 to workaround a bug, see 
http://stackoverflow.com/questions/18647475
+-ifeq ($(filter x11, $(shell pkg-config --errors-to-stdout --variable=target 
gtk+-$(GTK_VERSION).0; pkg-config --errors-to-stdout --variable=targets 
gtk+-$(GTK_VERSION).0)), x11)
++ifeq ($(filter x11, $(shell $(PKG_CONFIG) --errors-to-stdout 
--variable=target gtk+-$(GTK_VERSION).0; $(PKG_CONFIG) --errors-to-stdout 
--variable=targets gtk+-$(GTK_VERSION).0)), x11)
+   LIBS+=x11
+ endif
+ 
diff --minimal -Nru pqiv-2.10.4/debian/patches/series 
pqiv-2.10.4/debian/patches/series
--- pqiv-2.10.4/debian/patches/series   1970-01-01 01:00:00.0 +0100
+++ pqiv-2.10.4/debian/patches/series   2018-11-12 17:38:48.0 +0100
@@ -0,0 +1 @@
+cross.patch
diff --minimal -Nru pqiv-2.10.4/debian/rules pqiv-2.10.4/debian/rules
--- pqiv-2.10.4/debian/rules2018-04-23 20:30:00.0 +0200
+++ pqiv-2.10.4/debian/rules2018-11-12 17:38:43.0 +0100
@@ -4,12 +4,17 @@
 export VERBOSE=1
 export DEB_BUILD_MAINT_OPTIONS=hardening=+all
 
+include /usr/share/dpkg/architecture.mk
+ifneq ($(DEB_BUILD_ARCH),$(DEB_HOST_ARCH))
+CONFIGURE_FLAGS += --cross=$(DEB_HOST_GNU_TYPE)
+endif
+
 %:
dh $@
 
 
 override_dh_auto_configure:
-   ./configure --backends-build=shared
+   ./configure --backends-build=shared $(CONFIGURE_FLAGS)
 
 override_dh_shlibdeps:
dh_shlibdeps -Xlib

Bug#912768: hplip-data: hp-toolbox fsck

2018-11-12 Thread Cristian Ionescu-Idbohrn 
On Mon, 12 Nov 2018, Brian Potkin wrote:
> On Thu 08 Nov 2018 at 20:43:04 +0100, Cristian Ionescu-Idbohrn wrote:
> > On Tue, 6 Nov 2018, Till Kamppeter wrote:
> > > 
> > > After applying this change "scanimage -L" discovers also my 
> > > scanner when connected to the network and I can scan from any 
> > > SANE-based application without needing a print queue using the 
> > > "hp" CUPS backend of HPLIP.
> > 
> > Till and Brian,
> > 
> > I now managed to test both printing and scanning with 
> > 3.18.10+dfsg0-2 and both work out-of-the-box, no hax needed :)
> > 
> > Thanks.
> 
> A small favour, Cristian. Please do
> 
> avahi-browse -rt _scanner._tcp
> 
> and
> 
> avahi-browse -rt _uscan._tcp
> 
> and let us know the outputs. avahi-browse is in the avahi-utils 
> package.

Package avahi-utils is not installed on my systems.  I can print, 
scan and possibly fax, without it.

The problem I'm currently experiencing is a hp-toolbox with 
removed/buggy functionality.  I'd be very much interested in 
NEWS/README information/motivation about it.


Cheers,

-- 
Cristian

Bug#913586: texlive-binaries 2018.20181104.49075-1 breaks context

2018-11-12 Thread Hilmar Preuße 

Hi Thanasis,


I resolved the issue on my system by manually reverting to the previous
debs for texlive-base and for texlive-binaries and its dependencies.
When I tried to re-run the upgrade to get more detailed info about the
lua error for this bug report, I found that the packages will now not
install at all: when I do 'apt-get dist-upgrade', it hangs at the stage
of generating the context formats.

The lua error involved complaining about something being ‘a nil value’;
I’m sorry I can’t be more specific, since I can no longer get the
problematic packages to install to reproduce the error.
Below /var/lib/texmf/web2c you should find some log files reporting 

errors regarding the generation of the format files. Please post them.

Hilmar
--
#206401 http://counter.li.org

Bug#913587: Drop obsolete /etc/default/grub.d/init-select.cfg

2018-11-12 Thread Colin Watson 
On Mon, Nov 12, 2018 at 07:19:38PM +0100, Michael Biebl wrote:
> /etc/default/grub.d/init-select.cfg afaics was introduced to ensure
> smooth upgrades from jessie to stretch.
> It seems safe to drop this workaround now.

But it was introduced well after stretch, only a couple of weeks ago ...

-- 
Colin Watson   [cjwat...@debian.org]

Bug#913588: munin-plugins-core: diskstats consistently reports 100% utilization of NVME devices

2018-11-12 Thread Nye Liu 
Package: munin-plugins-core
Version: 2.0.42-5
Severity: normal
Tags: patch upstream

For some reason, NVME drives report near 100% utilization when using
/proc/diskstats to calculate utilization using the ticks data.

$ cat /proc/diskstats | awk '{print $3, $7, $11, $7+$11, $13, $14}' | grep nvme
nvme0n1 22988 457568 480556 2440737408 2441207708
nvme0n1p1 22988 339624 362612 528884 978496

Note that the $7+$11 column for n1p1 isn't that far off of $13

I have looked through the kernel sources and cannot figure out what is
going on.

See also

https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1790181

Patch that illustrates the issue:

--- diskstats-dist  2018-11-11 04:48:17.0 -0800
+++ diskstats   2018-11-12 10:06:05.990785111 -0800
@@ -234,6 +234,9 @@
 # a given second, the device is nearly 100% saturated.
 my $utilization = $tot_ticks / $interval;

+# NVME drives tend to show nearly 100% util, so lets use r+w as an 
alternate
+my $rw_util = ($rd_ticks + $wr_ticks) / $interval;
+
 # Average time an I/O takes on the block device
 my $servicetime_in_sec =
   $total_ios_per_sec ? $utilization / $total_ios_per_sec / 1000 : 0;
@@ -253,9 +256,11 @@
   : 0;

 my $util_print = $utilization / 10;
+my $rw_util_print = $rw_util / 10;

 return {
 utilization  => $util_print,
+rw_util  => $rw_util_print,
 servicetime  => $servicetime_in_sec,
 average_wait => $average_wait_in_sec,
 average_rd_wait  => $average_rd_wait_in_sec,
@@ -298,6 +303,8 @@

 print "${graph_id}_util.value "
   . $result->{$device}->{'utilization'} . "\n";
+print "${graph_id}_rw_util.value "
+  . $result->{$device}->{'rw_util'} . "\n";
 }

 print "\nmultigraph ${plugin_name}_throughput\n";
@@ -342,6 +349,7 @@

 multigraph ${plugin_name}_utilization.$graph_id
 util.value $result->{'utilization'}
+rw_util.value $result->{'rw_util'}
 EOF

 }
@@ -784,6 +792,11 @@
 ${graph_id}_util.info Utilization of the device
 ${graph_id}_util.min 0
 ${graph_id}_util.draw LINE1
+${graph_id}_rw_util.label $cur_diskstats{$device}->{'pretty_device_name'} (r+w)
+${graph_id}_rw_util.type GAUGE
+${graph_id}_rw_util.info Read/write utilization of the device
+${graph_id}_rw_util.min 0
+${graph_id}_rw_util.draw LINE1
 EOF
 }

-- System Information:
Debian Release: buster/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'testing-debug'), (500, 
'unstable'), (500, 'oldstable'), (1, 'experimental-debug')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.18.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages munin-plugins-core depends on:
ii  munin-common  2.0.42-5
ii  perl  5.26.2-7+b1

Versions of packages munin-plugins-core recommends:
ii  libnet-snmp-perl  6.0.1-4

Versions of packages munin-plugins-core suggests:
pn  conntrack
pn  libcache-cache-perl  
pn  libdbd-mysql-perl
ii  libhttp-date-perl6.02-1
ii  libnet-dns-perl  1.17-1
ii  libnet-ip-perl   1.26-2
pn  libnet-ldap-perl 
ii  libnet-netmask-perl  1.9022-1
pn  libnet-telnet-perl   
ii  libxml-parser-perl   2.44-2+b3
ii  python3  3.6.6-1
ii  ruby 1:2.5.1

-- no debconf information

Bug#904111: clamav-daemon causing deadlocks/blocking I/O

2018-11-12 Thread Adam Lambert 
I believe I already supplied all that way back when I opened up this bug
report.   But for reference, here it is again:

1) Standard kernel boot  params that come after a vanilla Debian install
(ie: I have not modified them).

2)  Config file is below.  All I "do" is 'service clamav-daemon start' and
wait about 90 seconds and the system is unresponsive.   This seems to be
related to the scan-on-access feature doing  blocking I/O/deadlocking in
some way.   I can speed up the crash by doing something like 'cat
~/somefile > /dev/null' or otherwise reading files in one of the
ScanOnAccess folders.


Clamd.conf is cut/pasted below:
# -- begin
LocalSocket /var/run/clamav/clamd.ctl
FixStaleSocket true
LocalSocketGroup clamav
LocalSocketMode 666
#PreludeEnable no
#PreludeAnalyzerName ClamAV
# TemporaryDirectory is not set to its default /tmp here to make overriding
# the default with environment variables TMPDIR/TMP/TEMP possible
User root
ScanMail true
ScanArchive true
ArchiveBlockEncrypted false
MaxDirectoryRecursion 15
FollowDirectorySymlinks false
FollowFileSymlinks false
ReadTimeout 180
MaxThreads 12
MaxConnectionQueueLength 15
LogSyslog true
LogRotate true
LogFacility LOG_LOCAL6
LogClean false
LogVerbose false
DatabaseDirectory /var/lib/clamav
OfficialDatabaseOnly false
SelfCheck 3600
Foreground false
Debug false
ScanPE true
MaxEmbeddedPE 10M
ScanOLE2 true
ScanPDF true
ScanHTML true
MaxHTMLNormalize 10M
MaxHTMLNoTags 2M
MaxScriptNormalize 5M
MaxZipTypeRcg 1M
ScanSWF true
DetectBrokenExecutables false
ExitOnOOM false
LeaveTemporaryFiles false
AlgorithmicDetection true
ScanELF true
IdleTimeout 30
CrossFilesystems true
PhishingSignatures true
PhishingScanURLs true
PhishingAlwaysBlockSSLMismatch false
PhishingAlwaysBlockCloak false
PartitionIntersection false
DetectPUA false
ScanPartialMessages false
HeuristicScanPrecedence false
StructuredDataDetection false
CommandReadTimeout 5
SendBufTimeout 200
MaxQueue 100
ExtendedDetectionInfo true
OLE2BlockMacros false
# customized
ScanOnAccess true
#OnAccessMaxFileSize 5M
OnAccessPrevention true
OnAccessIncludePath /tmp
OnAccessIncludePath /home
OnAccessIncludePath /root
# end customized
AllowAllMatchScan true
ForceToDisk false
DisableCertCheck false
DisableCache false
MaxScanSize 100M
MaxFileSize 25M
MaxRecursion 16
MaxFiles 1
MaxPartitions 50
MaxIconsPE 100
PCREMatchLimit 1
PCRERecMatchLimit 5000
PCREMaxFileSize 25M
ScanXMLDOCS true
ScanHWP3 true
MaxRecHWP3 16
StatsEnabled false
StatsPEDisabled true
StatsHostID auto
StatsTimeout 10
StreamMaxLength 25M
LogFile /var/log/clamav/clamav.log
LogTime true
LogFileUnlock false
LogFileMaxSize 0
Bytecode true
BytecodeSecurity TrustSigned
BytecodeTimeout 6



On Sat, Nov 10, 2018 at 12:03 PM Sebastian Andrzej Siewior
 wrote:

> On 2018-11-08 15:15:57 [-0800], Adam Lambert wrote:
> > What do you need me to do to provide debug info on this?
> I would like to reproduce this. I would need the clamd.conf, kernel
> command line if something non-standard and what it is you do.
>
> If I can reproduce this on my Stretch VM then I try to forward this
> upstream or look myself.
>
> > Thanks,
>
> Sebastian
>

Bug#913587: Drop obsolete /etc/default/grub.d/init-select.cfg

2018-11-12 Thread Michael Biebl 
Package: grub-common
Version: 2.02+dfsg1-8
Severity: normal
File: /etc/default/grub.d/init-select.cfg

Hi,

/etc/default/grub.d/init-select.cfg afaics was introduced to ensure
smooth upgrades from jessie to stretch.
It seems safe to drop this workaround now.

Regards,
Michael


-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (200, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.18.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), 
LANGUAGE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages grub-common depends on:
ii  gettext-base0.19.8.1-9
ii  libc6   2.27-8
ii  libdevmapper1.02.1  2:1.02.145-4.1
ii  libfreetype62.8.1-2
ii  libfuse22.9.8-2
ii  liblzma55.2.2-1.3

Versions of packages grub-common recommends:
ii  os-prober  1.76

Versions of packages grub-common suggests:
ii  console-setup  1.187
ii  desktop-base   9.0.7
pn  grub-emu   
pn  multiboot-doc  
pn  xorriso

-- Configuration Files:
/etc/grub.d/40_custom changed [not included]

-- no debconf information

Bug#850180: mdadm: systemd units do not obey /etc/default/mdadm, esp DAEMON_OPTIONS=--syslog

2018-11-12 Thread Michael Biebl 
On Wed, 04 Jan 2017 13:42:42 -0500 Matthew Gabeler-Lee
 wrote:
> Package: mdadm
> Version: 3.4-4
> Severity: normal
> 
> I had some recent array events, notified by email (worked), and was trying
> to look up when the recovery finished in syslog, only to discover that the
> mdadm array monitor is not logging to syslog.  This seems to be because the
> systemd unit and/or initramfs support (not sure which) that started the
> monitor daemon does not obey (or even look at?) /etc/default/mdadm, where I
> have:
> 
> DAEMON_OPTIONS="--syslog"

The canonical way to override the behaviour of systemd units is via
drop-in config snippets. The usage of EnvironmentFile= is discouraged.

/etc/default/$pkg is a kludge which was introduced to make SysV init
scripts extensible.

That said, it would probably be a good idea to add a comment to
/etc/default/mdadm, that this file is only used by the SysV init script,
to avoid confusion.

Michael

-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#882047: [pkg-apparmor] Bug#882047: Bug#882047: apparmor-utils: aa-complain thunderbird fails

2018-11-12 Thread Vincas Dargis 

I am removing variable usage in Thunderbird profile name:
https://gitlab.com/apparmor/apparmor-profiles/merge_requests/31

Bug#913586: texlive-binaries 2018.20181104.49075-1 breaks context

2018-11-12 Thread Thanasis Kinias 
Package: texlive-binaries
Version: 2018.20180907.48586-2
Severity: important

The routine update of the texlive packages in testing this morning broke
context on my system. Compiling any context files would fail with a lua
error; this was true both for my own files and for the Hello-World.tex
from Context Garden.  

I resolved the issue on my system by manually reverting to the previous
debs for texlive-base and for texlive-binaries and its dependencies.
When I tried to re-run the upgrade to get more detailed info about the
lua error for this bug report, I found that the packages will now not
install at all: when I do 'apt-get dist-upgrade', it hangs at the stage
of generating the context formats.

The lua error involved complaining about something being ‘a nil value’;
I’m sorry I can’t be more specific, since I can no longer get the
problematic packages to install to reproduce the error.

-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing'), (500, 'stable'), (500, 'oldstable'), (110, 
'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.18.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages texlive-binaries depends on:
ii  dpkg  1.19.2
ii  install-info  6.5.0.dfsg.1-4+b1
ii  libbrotli11.0.7-1
ii  libc6 2.27-8
ii  libcairo2 1.16.0-1
ii  libfontconfig12.13.1-2
ii  libfreetype6  2.8.1-2
ii  libgcc1   1:8.2.0-9
ii  libgmp10  2:6.1.2+dfsg-3
ii  libgraphite2-31.3.12-1
ii  libgs99.25~dfsg-7
ii  libharfbuzz-icu0  1.9.0-1
ii  libharfbuzz0b 1.9.0-1
ii  libice6   2:1.0.9-2
ii  libicu60  60.2-6
ii  libkpathsea6  2018.20180907.48586-2
ii  libmpfr6  4.0.1-1
ii  libpaper1 1.1.24+nmu5
ii  libpixman-1-0 0.34.0-2
ii  libpng16-16   1.6.34-2
ii  libpotrace0   1.15-1
ii  libptexenc1   2018.20180907.48586-2
ii  libsm62:1.2.2-1+b3
ii  libstdc++68.2.0-9
ii  libsynctex2   2018.20180907.48586-2
ii  libtexlua52   2018.20180907.48586-2
ii  libtexlua53   2018.20180907.48586-2
ii  libtexluajit2 2018.20180907.48586-2
ii  libwoff1  1.0.2-1
ii  libx11-6  2:1.6.7-1
ii  libxaw7   2:1.0.13-1+b2
ii  libxext6  2:1.3.3-1+b2
ii  libxi62:1.7.9-1
ii  libxmu6   2:1.1.2-2
ii  libxpm4   1:3.5.12-1
ii  libxt61:1.1.5-1
ii  libxxhash00.6.5-1
ii  libzzip-0-13  0.13.62-3.1
ii  perl  5.28.0-3
ii  t1utils   1.41-2
ii  tex-common6.10
ii  zlib1g1:1.2.11.dfsg-1

Versions of packages texlive-binaries recommends:
ii  texlive-base  2018.20181009-1

texlive-binaries suggests no packages.

-- no debconf information

Bug#913585: warning: format '%ld' expects argument of type 'long int', but argument 3 has type 'Sint32' {aka 'int'} [-Wformat=]

2018-11-12 Thread Mathieu Malaterre 
Source: dcmtk
Version: 3.6.3-1~exp1
Tags: fixed-upstream

It seems some of the build warnings have been fixed upstream, namely
those showing up on i386 (*), have been fixed by:

http://git.dcmtk.org/?p=dcmtk.git;a=commitdiff;h=386b588

...
/<>/dcmdata/libsrc/dcvrsl.cc: In member function 'virtual
void DcmSignedLong::print(std::ostream&, size_t, int, const char*,
size_t*)':
/<>/dcmdata/libsrc/dcvrsl.cc:192:41: warning: format
'%ld' expects argument of type 'long int', but argument 3 has type
'Sint32' {aka 'int'} [-Wformat=]
 sprintf(buffer, "%ld", *sintVals);
 ^  ~
/<>/dcmdata/libsrc/dcvrsl.cc:194:41: warning: format
'%ld' expects argument of type 'long int', but argument 3 has type
'Sint32' {aka 'int'} [-Wformat=]
 sprintf(buffer, "\\%ld", *sintVals);
 ^~~  ~
[...
<>/dcmdata/libsrc/dcvrul.cc: In member function 'virtual
void DcmUnsignedLong::print(std::ostream&, size_t, int, const char*,
size_t*)':
/<>/dcmdata/libsrc/dcvrul.cc:190:41: warning: format
'%lu' expects argument of type 'long unsigned int', but argument 3 has
type 'Uint32' {aka 'unsigned int'} [-Wformat=]
 sprintf(buffer, "%lu", *uintVals);
 ^  ~
/<>/dcmdata/libsrc/dcvrul.cc:192:41: warning: format
'%lu' expects argument of type 'long unsigned int', but argument 3 has
type 'Uint32' {aka 'unsigned int'} [-Wformat=]
 sprintf(buffer, "\\%lu", *uintVals);


ref:
https://buildd.debian.org/status/fetch.php?pkg=dcmtk=i386=3.6.3-1~exp1=1534157098=0

Thanks

Bug#912768: hplip-data: hp-toolbox fsck

2018-11-12 Thread Brian Potkin 
On Thu 08 Nov 2018 at 20:43:04 +0100, Cristian Ionescu-Idbohrn wrote:

> On Tue, 6 Nov 2018, Till Kamppeter wrote:
> > 
> > After applying this change "scanimage -L" discovers also my scanner when
> > connected to the network and I can scan from any SANE-based application
> > without needing a print queue using the "hp" CUPS backend of HPLIP.
> 
> Till and Brian,
> 
> I now managed to test both printing and scanning with 3.18.10+dfsg0-2 
> and both work out-of-the-box, no hax needed :)
> 
> Thanks.

A small favour, Cristian. Please do

avahi-browse -rt _scanner._tcp

and

avahi-browse -rt _uscan._tcp

and let us know the outputs. avahi-browse is in the avahi-utils package.

Thanks,

Brian.

Bug#913558: libssl1.1: Breaks Lighttpd < 1.4.51

2018-11-12 Thread Sebastian Andrzej Siewior 
Control: blocks -1 by 913251

On November 12, 2018 10:17:09 AM UTC, Olaf van der Spek  wrote:
>I think libssl1.1 breaks Lighttpd, Ondřej Surý requested I report this.
>Does libssl1.1 need a versioned breaks on lighttpd?

Yes, looks that way. According to the bug you listed there is not a fixed 
version in the debian archive available. 
Could you please ping here once there was an upload?

>Gr,
>
>Olaf



-- 
Sebastian

  1   2   3   >