Bug#1037966: bind9: missing systemd notify socket in chroot

[Joseph Nahmias]

Package: bind9
Version: 1:9.18.19-1~deb12u1
Followup-For: Bug #1037966

Hello,

I just upgraded my authoritative nameserver to bookworm and ran into
this issue. For reference, I have the following in my
/etc/default/bind9:

OPTIONS="-u bind -t /srv/dns"

So, I ran (as root) `systemctl edit named` to create the following
drop-in:

[Service]
BindPaths=/run/systemd/notify:/srv/dns/run/systemd/notify

That solved the problem. Perhaps that could be added to a README.chroot
or a NEWS.Debian item.

Thanks for your work wrangling bind into a Debian package!
--Joe


-- System Information:
Debian Release: 12.5
  APT prefers stable
  APT policy: (990, 'stable'), (500, 'stable-security'), (500, 'stable-debug')
Architecture: amd64 (x86_64)

Kernel: Linux 6.1.0-18-amd64 (SMP w/1 CPU thread; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

-- Configuration Files:
/etc/bind/named.conf.local changed [not included]
/etc/default/named changed [not included]

-- debconf information:
  bind9/different-configuration-file:
  bind9/run-resolvconf: false
  bind9/start-as-user: bind

Bug#1029007: Bug has reappeared

[Joseph Carter]

This bug should've been closed at some point in the past but has reappeared in 
the newer version:

cargo 1.70.0+dfsg2-1
rustc 1.70.0+dfsg2-1

rustc recommends cargo >= 0.71.0~~ and cargo < 0.72.0~~ … The expected solution 
to the problem (merging of the cargo and rustc sources) has already happened, 
so it seems that the thing needed now is some frobbing of substvars for the 
contol file based on the package version? An = versioned recommends based on 
the standard/automatic substvars? Exercise left to rust stakeholders to discuss.

Joseph

Bug#1069791: console-setup: Build larger console fonts for HiDPI/accessibility with future 6.9 kernels

[Joseph Carter]

My apologies for missing the existing bug scrolling through the list. There 
were a lot of them to sift through. I may see if some of them have been 
incidentally fixed as far as I can tell.

I understand the eventual goal for the kernel folks is to rid themselves of 
CONFIG_VT all together, so I realize this is a stopgap. Even so, could you try 
to include a DejaVuSansMonoBold font as well? I'd appreciate it if it's 
possible as I can personally read a smaller heavyweight font and it'd really 
help debugging servers with my portable display.

Obviously the long-term solution is some userspace alternative that does the 
same thing probably using cage and some restricted tabbed terminal maybe? Hmm. 
I dunno if that's even on anybody's radar any sooner than forky.

Joseph

On Fri, Apr 26, 2024, at 10:11, Samuel Thibault wrote:
> Control: forcemerge -1 816111
>
> Hello,
>
> T. Joseph Carter, le mer. 24 avril 2024 13:25:22 -0700, a ecrit:
>> Linux kernel 6.9+ will support larger font sizes for HiDPI screens. This
>> is probably aimed at "more than 4k" monitors, but for accessibility
>> reasons it would be really useful to have larger sizes available sooner
>> for those of us already have 4k sorts of screens.
>
> Yes, that was the points in adding the support in the kernel :)
>
>> Perhaps this might best be done by putting those huge-sized fonts in an
>> appropriately named -huge fonts package? I'll leave the implementation
>> details to you, this is just a request for the fonts to be created.
>
> We already had the request in #816111, also #595696 was about possibly
> generalizing to using rasterized fonts.
>
> I gave a try at converting terminus.ttf to bdf with otf2bdf:
>
> otf2bdf -c C -p 32 -r 72 
> /usr/share/fonts/truetype/terminus/TerminusTTF-4.46.0.ttf > 
> /tmp/terminus.bdf
> bdf2psf --fb  /tmp/terminus.bdf /usr/share/bdf2psf/standard.equivalents 
> ascii.set 256   /tmp/terminus.psf /tmp/terminus.sfm
>
> but the baseline is not coherent. Using DejaVuSansMono seems to be
> working better:
>
> otf2bdf -c C -p 32 -r 100 
> /usr/share/fonts/truetype/dejavu/DejaVuSansMono.ttf > 
> /tmp/DejaVuSansMono.bdf
> bdf2psf --fb --width 32 /tmp/DejaVuSansMono.bdf 
> /usr/share/bdf2psf/standard.equivalents ascii.set 256 
> /tmp/DejaVuSansMono.psf /tmp/DejaVuSansMono.sfm
>
> (I'm adding a new --width parameter to bdf2psf to specify the expected
> width since AVERAGE_WIDTH as set by otf2bdf doesn't really tell)
>
> Samuel

Bug#1069791: console-setup: Build larger console fonts for HiDPI/accessibility with future 6.9 kernels

[T. Joseph Carter]

Package: console-setup
Version: 1.226
Severity: wishlist

Dear Maintainer,

Linux kernel 6.9+ will support larger font sizes for HiDPI screens. This
is probably aimed at "more than 4k" monitors, but for accessibility
reasons it would be really useful to have larger sizes available sooner
for those of us already have 4k sorts of screens.

Perhaps this might best be done by putting those huge-sized fonts in an
appropriately named -huge fonts package? I'll leave the implementation
details to you, this is just a request for the fonts to be created.

-- System Information:
Debian Release: trixie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 6.7.9-amd64 (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages console-setup depends on:
ii  console-setup-linux 1.226
ii  debconf [debconf-2.0]   1.5.86
ii  keyboard-configuration  1.226
ii  xkb-data2.41-2

console-setup recommends no packages.

Versions of packages console-setup suggests:
ii  locales2.37-18
ii  sysvinit-utils [lsb-base]  3.09-1

Versions of packages keyboard-configuration depends on:
ii  debconf [debconf-2.0]   1.5.86
ii  liblocale-gettext-perl  1.07-7
ii  xkb-data2.41-2

Versions of packages console-setup-linux depends on:
ii  init-system-helpers 1.66
ii  kbd 2.6.4-2
ii  keyboard-configuration  1.226

console-setup-linux suggests no packages.

Versions of packages console-setup is related to:
pn  console-common
pn  console-data  
pn  console-tools 
pn  gnome-control-center  
ii  kbd   2.6.4-2
ii  systemd   255.4-1+b1

-- debconf information:
  keyboard-configuration/unsupported_config_options: true
  keyboard-configuration/ctrl_alt_bksp: false
  keyboard-configuration/unsupported_options: true
  console-setup/guess_font:
  keyboard-configuration/unsupported_layout: true
  console-setup/fontsize: 16x32
* console-setup/codeset47: # Latin1 and Latin5 - western Europe and Turkic 
languages
  keyboard-configuration/optionscode:
  console-setup/framebuffer_only:
  keyboard-configuration/layout:
  console-setup/fontsize-text47: 16x32 (framebuffer only)
* console-setup/charmap47: UTF-8
  keyboard-configuration/other:
  keyboard-configuration/model: Generic 105-key PC
  keyboard-configuration/switch: No temporary switch
* console-setup/fontsize-fb47: 16x32 (framebuffer only)
  keyboard-configuration/store_defaults_in_debconf_db: true
  keyboard-configuration/toggle: No toggling
  console-setup/store_defaults_in_debconf_db: true
  debian-installer/console-setup-udeb/title:
  keyboard-configuration/variantcode:
* keyboard-configuration/variant: English (US)
  console-setup/use_system_font:
  keyboard-configuration/layoutcode: us
  keyboard-configuration/unsupported_config_layout: true
  keyboard-configuration/compose: No compose key
  console-setup/codesetcode: Lat15
* console-setup/fontface47: TerminusBold
  keyboard-configuration/altgr: The default for the keyboard layout
  keyboard-configuration/xkb-keymap: us
  keyboard-configuration/modelcode: pc105

Bug#1069018: wayland: Display loses HDMI connection on sudden mouse movement

[Joseph Nuthalapati]

Package: wayland
Severity: normal

Dear Maintainer,

I use a 43" 4K TV as the primary monitor for my Debian desktop (running 
Debian 12 stable).  It is connected over HDMI. The desktop has an AMD 
GPU, with drivers from Debian. There are no third-party drivers 
installed to the best of my knowledge.


The TV: iFF43U62 - https://www.iffalcon.com/in/en/tvs/u62

This TV has a picture mode called "PC" which makes it usable as a PC 
monitor.


When I log in, the default desktop environment is Gnome on Wayland. I 
rarely touch the mouse since I know most Gnome shortcuts. So, this leads 
to situations where the mouse is idle for several minutes and when I 
grab the mouse quickly after some time, this jerk breaks the HDMI 
connection. I cannot recover from this without a full reboot.


I tried moving the mouse slowly after a period of inactivity. This 
doesn't solve the issue.


My current workaround is to select Gnome on Xorg in the login screen. No 
amount of sudden jerking of the mouse breaks the HDMI connection on Xorg.


I had no issues with Wayland on my previous monitor - BenQ GW2780 (1920 
x 1080) 27 inches.


I am willing to provide more details to help debug this issue.

Thanks.

--

Joseph Nuthalapati



OpenPGP_0x5398F00A2FA43C35.asc
Description: OpenPGP public key


OpenPGP_signature.asc
Description: OpenPGP digital signature

Bug#1068528: xfce4-settings: xfce4-find-cursor does nothing without … sudo?

[T. Joseph Carter]

Package: xfce4-settings
Version: 4.18.3-1+b1
Severity: normal

Dear Maintainer,

Discovered that xfce4-find-cursor (an accessibility feature) does not
work without the use of sudo. Permissions issue of some sort? Should
this program be installed with some sgid to access something? I can't
imagine what offhand.

This isn't documented as far as I can tell. Someone asked why it was
necessary to run this with root privs two years ago on askubuntu (no
answer) and that's all I could find amongst the AI trash and unrelated
responses. If there's some optional permissions I should be changing to
make this work, the changes aren't documented and there don't appear to
be any measures in place to preserve those changes in maintainer scripts
from a quick glance.

If it turns out to matter, Xorg with xfwm4 on AMD (6700 XT) using open
source drivers.

-- System Information:
Debian Release: trixie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 6.7.9-amd64 (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages xfce4-settings depends on:
ii  exo-utils4.18.0-1+b2
ii  libatk1.0-0t64   2.52.0-1
ii  libc62.37-15.1
ii  libcairo-gobject21.18.0-3
ii  libcairo21.18.0-3
ii  libcolord2   1.4.7-1+b1
ii  libexo-2-0   4.18.0-1+b2
ii  libfontconfig1   2.15.0-1.1
ii  libgarcon-1-04.18.1-1+b2
ii  libgarcon-common 4.18.1-1
ii  libgdk-pixbuf-2.0-0  2.42.10+dfsg-3+b2
ii  libglib2.0-0t64  2.78.4-6
ii  libgtk-3-0t643.24.41-4
ii  libnotify4   0.8.3-1+b1
ii  libpango-1.0-0   1.52.1+ds-1
ii  libpangocairo-1.0-0  1.52.1+ds-1
ii  libupower-glib3  1.90.2-8+b1
ii  libx11-6 2:1.8.7-1
ii  libxcursor1  1:1.2.1-1
ii  libxfce4ui-2-0   4.18.4-1+b1
ii  libxfce4util74.18.1-2+b1
ii  libxfconf-0-34.18.1-1+b2
ii  libxi6   2:1.8.1-1
ii  libxklavier165.4-5+b1
ii  libxrandr2   2:1.5.4-1
ii  xfce4-helpers4.18.3-1+b1
ii  xfconf   4.18.1-1+b2

Versions of packages xfce4-settings recommends:
ii  colord 1.4.7-1+b1
ii  x11-utils  7.7+6+b1
ii  xiccd  0.3.0-2+b1

xfce4-settings suggests no packages.

-- no debconf information

Bug#1064318: bash: manpage lists incorrect filename (/etc/bash.bash.logout)

[T. Joseph Carter]

Package: bash
Version: 5.2.21-2
Severity: minor

Dear Maintainer,

The manpage for base states:

```
FILES
   /bin/bash
  The bash executable
   /etc/profile
  The systemwide initialization file, executed for login shells
   /etc/bash.bashrc
  The systemwide per-interactive-shell startup file
   /etc/bash.bash.logout
  The systemwide login shell cleanup file, executed when a login 
shell exits
```

This is incorrect, bash invokes /etc/bash.bash_logout.

Debian doesn't provide a bash.bash_logout so I know about this because I
was tinkering with adding stuff to these to find bash's config files in
XDG-standard locations, if they exist, since I keep ~/.config in git.

-- System Information:
Debian Release: trixie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 6.6.13-amd64 (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages bash depends on:
ii  base-files   13
ii  debianutils  5.16
ii  libc62.37-15
ii  libtinfo66.4+20240113-1

Versions of packages bash recommends:
ii  bash-completion  1:2.11-8

Versions of packages bash suggests:
ii  bash-doc  5.2.21-2

-- Configuration Files:
/etc/bash.bashrc changed [not included]

-- no debconf information

Bug#1063686: installation-reports: GUI checkbox in high contrast dark mode isn't high contrast

[T. Joseph Carter]

Package: installation-reports
Severity: wishlist

Either normal/a11y or wishlist depending how you wanna call it.

I normally use the slang version of the Debian installer. Because I'm
using a 14" 1080p portable monitor here, I decided to use the GUI. In
dark mode because albino. Bright = pain. Sub-optimal install for me,
will switch to ssh as soon as the network's configured.

Went to select installer components because parted pls, but when I
selected it, I didn't see that it was selected at first. That's odd.
Then I looked closer and … oh yeah, I guess it is selected. Just this
theme/widget set uses a very small/thin checkmark inside the box.

Basically, I'd like a checkbox whose checked/unchecked states are more
visually not the same. Particularly important in the dark mode, since
that's intended to be high contrast for accessibility reasons. (Which is
why I was using it…)

Suggest a bigger/bolder checkmark might be the path of least resistance
for a fix.

Boot method: usb
Image version: 
https://cdimage.debian.org/debian-cd/current/amd64/iso-cd/debian-12.5.0-amd64-netinst.iso
Date: Sat, 10 Feb 2024 17:54:18 -0800 (in the middle of installing now)

Machine: Ryzen 3000 series with B450 chipset
Partitions: 

Base System Installation Checklist:
[O] = OK, [E] = Error (please elaborate below), [ ] = didn't try it

Initial boot:   [O]
Detect network card:[O]
Configure network:  [O]
Detect media:   [O]
Load installer modules: [?] ← Here's where I noticed the problem

Bug#1063374: RFP: HTMX - high power tools for HTML

[Joseph Nuthalapati]

Package: wnpp
Severity: wishlist

* Package name: libjs-htmx
  Version : 1.9.10
  Upstream Authors : Big Sky Software
* URL : https://github.com/bigskysoftware/htmx
* License : 0BSD
  Programming Lang: JavaScript
  Description : A JavaScript library to enhance the features of HTML

HTML has only two elements that communicate with the server -  and .
HTMX allows all elements to send AJAX requests to the server. It also allows DOM
manipulation by replacing HTML elements with the response from the server. This
can significantly enhance the user experience of traditional multi-page web
applications.
.
htmx allows you to access AJAX, CSS Transitions, WebSockets and Server Sent
Events directly in HTML, using attributes, so you can build modern user
interfaces with the simplicity and power of hypertext.
.
htmx has no runtime dependencies. It can be used by web applications written in
any programming language. The license is Zero-Clause BSD.

Links:
1. https://htmx.org

-- 
Regards,
Joseph Nuthalapati

Bug#996432: ITS: newlib

[T. Joseph Carter]

Package: libnewlib-arm-none-eabi
Version: 3.3.0-1.3
Followup-For: Bug #996432

Hi John,

Your ITS was posted quite a long time ago and the maintainer is utterly
MIA on this package. It's absolutely breaking stuff so that
gcc-arm-none-eabi cannot be installed in trixie/sid alongside this
package, which is required for the things you'd install that compiler
for.

Is this still something you're willing to work on? Is there some way
folks can assist/help test/help package/something, or are you literally
waiting on sponsors or … ?

Happy to help if I can.

-- System Information:
Debian Release: trixie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 6.5.0-5-amd64 (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages libnewlib-arm-none-eabi depends on:
ii  libnewlib-dev  3.3.0-1.3

Versions of packages libnewlib-arm-none-eabi recommends:
ii  gcc-arm-none-eabi   15:12.2.rel1-1
ii  libstdc++-arm-none-eabi-newlib  15:12.2.rel1-1+23

Versions of packages libnewlib-arm-none-eabi suggests:
pn  libnewlib-doc  

-- no debconf information

Bug#1059825: /usr/bin/prosodyctl: prosodyctl check dns fails with stacktrace

[Joseph Nahmias]

Package: prosody
Version: 0.12.3-1
Severity: normal
File: /usr/bin/prosodyctl

Hello,

When trying to debug my prosody installation, I tried to run prosodyctl
check dns and got the following:

# prosodyctl check dns
lua5.4: /usr/bin/prosodyctl:635: attempt to index a number value
stack traceback:
[C]: in for iterator 'for iterator'
/usr/lib/prosody/util/set.lua:74: in method 'add_list'
/usr/lib/prosody/util/set.lua:97: in function 'util.set.new'
/usr/lib/prosody/util/prosodyctl/check.lua:718: in function 
'util.prosodyctl.check.check'
/usr/bin/prosodyctl:751: in upvalue 'func'
/usr/lib/prosody/util/async.lua:144: in function 

stack traceback:
[C]: in function 'error'
/usr/bin/prosodyctl:635: in local 'handler'
/usr/lib/prosody/util/async.lua:232: in method 'run'
/usr/bin/prosodyctl:754: in main chunk
[C]: in ?

Is there a dependancy missing?

Thanks,
--Joe

-- System Information:
Debian Release: 12.4
  APT prefers stable
  APT policy: (990, 'stable'), (500, 'stable-security'), (500, 'stable-debug')
Architecture: amd64 (x86_64)

Kernel: Linux 6.1.0-15-amd64 (SMP w/1 CPU thread; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages prosody depends on:
ii  adduser 3.134
ii  init-system-helpers 1.65.2
ii  libc6   2.36-9+deb12u3
ii  libicu7272.1-3
ii  libssl3 3.0.11-1~deb12u2
ii  lua-bitop [lua5.4-bitop]1.0.2-7
ii  lua-expat [lua5.4-expat]1.5.1-3
ii  lua-filesystem [lua5.4-filesystem]  1.8.0-3
ii  lua-sec [lua5.4-sec]1.2.0-2
ii  lua-socket [lua5.4-socket]  3.1.0-1+b1
ii  lua5.4  5.4.4-3
ii  ssl-cert1.1.2

Versions of packages prosody recommends:
ii  lua-event [lua5.4-event]0.4.6-2+b1
ii  lua-readline [lua5.4-readline]  3.2-2
ii  lua-unbound [lua5.4-unbound]1.0.0-2

Versions of packages prosody suggests:
pn  lua-dbi-mysql   
pn  lua-dbi-postgresql  
pn  lua-dbi-sqlite3 
pn  lua-zlib

-- no debconf information

Bug#1059403: collectd hugepages plugin reports spurious warnings trying to open demote

[Joseph Nahmias]

Package: collectd
Version: 5.12.0-14
Severity: normal
Tags: upstream patch

Dear Maintainer,

Thanks for packaging collectd!

After upgrading one of my servers to bookworm, I noticed that collectd
started emitting warnings about being unable to read demote files.
It seems this was reported upstream at 
https://github.com/collectd/collectd/issues/3993
and a commit was merged into main:
https://github.com/collectd/collectd/commit/4cebbfc1ed4b44644d981df996a8ca941e38e8a1

It would be great if this patch could be incorporated into the next
stable point release for bookworm.

If you agree but are short on time, I'm happy (and motivated) to do the
work.

Thanks,
--Joe

-- System Information:
Debian Release: 12.4
  APT prefers stable
  APT policy: (990, 'stable'), (500, 'stable-security'), (500, 'stable-debug')
Architecture: amd64 (x86_64)

Kernel: Linux 6.1.0-15-amd64 (SMP w/1 CPU thread; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages collectd depends on:
ii  collectd-core  5.12.0-14
ii  libc6  2.36-9+deb12u3
ii  librrd81.7.2-4+b8

Bug#1051739: Package is uninstallable, bug unacknowledged, therefore release critical

[Joseph Carter]

Control: severity -1 grave

I didn't do this when filing the bug since ages ago it was considered impolite 
for end-users to set severity and particularly to set a severity above 
important. But it's been a week without acknowledgment or fix, and it is 
release critical even if it's a contrib package that isn't for the Holy Gnoman 
Empire DE. 

Joseph

Bug#1051912: RFP: Miniflux - Minimalistic RSS feed reader (web-based)

[Joseph Nuthalapati]

Package: wnpp
Severity: wishlist

* Package name: miniflux-v2
  Version : 2.0.47
  Upstream Authors : Miniflux
* URL : https://github.com/miniflux/v2
* License : Apache-2.0
  Programming Lang: Go
  Description : Miniflux is a minimalist and opinionated feed reader

Miniflux is a RSS feed reader that works in a client-server model. v1 of
Miniflux was written in PHP. v2 is in Golang. This RFP is for v2.

Having Miniflux available to install on Debian servers makes it easy for
Debian users to self-host a web-based RSS feed reader. It can also be made
available to Debian-based self-hosting systems such as FreedomBox.
 
The only web-based feed reader we currently have in Debian is Tiny Tiny RSS.

https://tracker.debian.org/pkg/tt-rss

Additional info:
Miniflux depends on a small number of Golang librares. Its minimalistic web
frontend doesn't need any JavaScript libraries.

--
Regards,
Joseph Nuthalapati

Bug#1051739: 1.26.0-3 uninstallable due to nonexistent package

[T. Joseph Carter]

Package: caja-dropbox
Version: 1.26.0-3
Severity: normal

-3 of this package cannot be installed because it depends on:

> --- libayatana-appindicator1 | libappindicator1 (UNAVAILABLE)

libayatana-appindicator3-1 is available on bookworm, but not
testing or sid. Adding this was done apparently to fix an Ubuntu bug,
but it completely broke the package installation for Debian.

Actually, it broke the package on Ubuntu too—the only version of Ubuntu
that has libayatana-appindicator1 is 22.10. It's not in 23.04 and won't
be in 23.10 either.

-- System Information:
Debian Release: trixie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 6.5.0-0-amd64 (SMP w/16 CPU threads; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages caja-dropbox (1.26.0-2) depends on:
ii  dbus-x11  1.14.10-1
ii  gir1.2-gdkpixbuf-2.0  2.42.10+dfsg-1+b1
ii  gir1.2-glib-2.0   1.78.0-1
ii  gir1.2-gtk-3.03.24.38-5
ii  gir1.2-pango-1.0  1.51.0+ds-2
ii  libc6 2.37-8
ii  libcaja-extension11.26.1-1
ii  libglib2.0-0  2.78.0-1
ii  libgtk-3-03.24.38-5
ii  policykit-1   123-1
ii  procps2:4.0.3-1
ii  python3   3.11.4-5+b1
ii  python3-gi3.44.1-2
ii  python3-gpg   1.18.0-3+b1

caja-dropbox recommends no packages.

Versions of packages caja-dropbox suggests:
ii  caja  1.26.1-1

-- no debconf information

Bug#1051382: mediawiki: Provide configuration option to run update.php automatically

[Joseph Nuthalapati]

Package: mediawiki
Severity: wishlist

Dear Maintainer,

Context

FreedomBox, a Debian pure blend for home servers, provides MediaWiki as an
application. FreedomBox also manages updates of all the installed packages
(using the unattended-updates package). FreedomBox makes releases of the
freedombox package every 2 weeks, which are sent to end users via the
stable-backports channel. The FreedomBox project doesn't expect users to be
proficient with the commandline interface or have any knowledge of system
administration.

Problem

Whenever the MediaWiki package is updated, it is expected that the system
administrator runs an update.php script to do database migrations. If the
package goes through an upgrade and this script is not run, MediaWiki is 
left in

an unusable state.

Current workaround
--
This issue is being fixed currently by triggering update.php from 
FreedomBox (by

incrementing the version number of the MediaWiki app in FreedomBox). In the
worst case, a user needs to wait 2 weeks (i.e. the next release of the
freedombox package) for a fix. See [1] as an example of this problem.

Proposed long-term solution
--
Provide support in the Debian package for FreedomBox's use case. If the user
installed MediaWiki database using dbconfig and answered positively to a
question to auto-update the database, then run update.php during package
upgrade.

Please feel free to discuss this issue at [1] on Salsa.

Links:
1. https://salsa.debian.org/freedombox-team/freedombox/-/issues/2119

Regards,
Joseph Nuthalapati
(on behalf of the FreedomBox team)



OpenPGP_0x5398F00A2FA43C35.asc
Description: OpenPGP public key


OpenPGP_signature
Description: OpenPGP digital signature

Bug#1051343: RFS: golang-codeberg-gusted-mcaptcha/0.0~git20220723.4f3072e-1 [ITP] -- mCaptcha is a Go library to interact with mCaptcha

[Joseph Nuthalapati]

Package: sponsorship-requests
Severity: wishlist

Dear mentors,

I am looking for a sponsor for my package "golang-codeberg-gusted-mcaptcha":

 * Package name : golang-codeberg-gusted-mcaptcha
   Version  : 0.0~git20220723.4f3072e-1
   Upstream contact : William Zijl
 * URL  : https://pkg.go.dev/codeberg.org/gusted/mcaptcha
 * License  : MIT
 * Vcs  : 
https://salsa.debian.org/go-team/packages/golang-codeberg-gusted-mcaptcha
   Section  : golang

The source builds the following binary packages:

  golang-codeberg-gusted-mcaptcha-dev - mCaptcha is a Go library to interact 
with mCaptcha

To access further information about this package, please visit the following 
URL:

  https://mentors.debian.net/package/golang-codeberg-gusted-mcaptcha/

Alternatively, you can download the package with 'dget' using this command:

  dget -x 
https://mentors.debian.net/debian/pool/main/g/golang-codeberg-gusted-mcaptcha/golang-codeberg-gusted-mcaptcha_0.0~git20220723.4f3072e-1.dsc

Changes for the initial release:

 golang-codeberg-gusted-mcaptcha (0.0~git20220723.4f3072e-1) UNRELEASED; 
urgency=medium
 .
   * Initial release (Closes: #1051260)

Regards,
--
Joseph Nuthalapati

Bug#1051260: ITP: golang-codeberg-gusted-mcaptcha -- Provides an mCaptcha endpoints on Go servers

[Joseph Nuthalapati]

The repository with the initial packaging is here
https://salsa.debian.org/go-team/packages/golang-codeberg-gusted-mcaptcha

Bug#1051260: ITP: golang-codeberg-gusted-mcaptcha -- Provides an mCaptcha endpoints on Go servers

[Joseph Nuthalapati]

Package: wnpp
Severity: wishlist
Owner: Joseph Nuthalapati 

* Package name: golang-codeberg-gusted-mcaptcha
  Version : 0.0~git20220723.4f3072e-1
  Upstream Author : William Zijl
* URL : https://pkg.go.dev/codeberg.org/gusted/mcaptcha
* License : Expat
  Programming Lang: Go
  Description : mCaptcha is a Go library to interact with mCaptcha.

 This Go library implements a PoW endpoint on the server to support
 the mCaptcha[1] protocol.

This is a dependency of the git forge server Forgejo (fork of Gitea),
currently in use by deployments such as Codeberg.org.

Bug#1042803: ITP: fanwor -- action-adventures in the style of "The Legend of Zelda"

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, h...@tuxfamily.org, 
debian-devel-ga...@lists.debian.org, j...@nahmias.net

* Package name: fanwor
  Version : 1.16
  Upstream Contact: Thomas Huth 
* URL : https://fanwor.tuxfamily.org/
* License : GPL-2.0
  Programming Lang: C
  Description : action-adventure game in the style of "The Legend of Zelda"

Bug#1042718: RFP: megazeux -- cross-platform game creation system

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: Debian Games Team , 
j...@nahmias.net

* Package name: megazeux
  Version : 2.92f
* URL : https://www.digitalmzx.com/
* License : GPL-2.0
  Programming Lang: C/C++
  Description : cross-platform game creation system

MegaZeux is a game creation system created by Alexis Janson. It was
inspired by ZZT, for which Alexis and other members of Software Visions
had created several games beforehand.

Bug#1041358: web-ui downloads extentionless page without

[Joseph Carter]

On Mon, Jul 17, 2023, at 23:53, Christian Marillat wrote:
> On 17 juil. 2023 15:39, "T. Joseph Carter"  
> wrote:
>
>> Package: qbittorrent-nox
>> Version: 4.5.4-1
>> Severity: important
>>
>> The primary (really only) way to use qbittorrent-nox is via the web UI.
>> This works in stable (4.5.2) as expected, but in sid it downloads a file
>> with a name like "4Az117Jo" (random), no extension, and no MIME type.
>> Firefox, Chromium, and Brave all just save the file without displaying
>> it—it's the web UI login page as expected.
>
> The same bug has been reported and fixed (user issue).
>
> https://bugs.debian.org/1037548

That is indeed what is happening. I do not know the source of this issue—I 
certainly never created this bogus MIME database entry myself, and it has been 
reported upstream numerous times now apparently. I sort of think that means 
there's an issue that ought to be fixed, but I do not know whose issue it is 
anymore.

The solution described here solved the problem for now:

https://github.com/qbittorrent/qBittorrent/issues/15316#issuecomment-964855980

Joseph

Bug#1041368: RFP: libsmacker -- C library for decoding .smk Smacker Video files

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: kennedy.g...@gmail.com, debian-devel-ga...@lists.debian.org, 
j...@nahmias.net

* Package name: libsmacker
  Version : 1.2.0
  Upstream Contact: Greg Kennedy 
* URL : https://libsmacker.sourceforge.net/
* License : LGPL-2.1
  Programming Lang: C
  Description : C library for decoding .smk Smacker Video files

libsmacker is a cross-platform C library which can be used for decoding
Smacker Video files produced by RAD Game Tools. The library supports all
features of both v2 and v4 files, except that Bink Audio Compression (lossy
perceptual coding) is unsupported. For most use cases of libsmacker, this is
not a serious limitation. 

Smacker Video was the king of video middleware in the 1990s, and its
256-color compressed video format was used in over 2600 software titles.
Smacker files tend to pose a problem for "engine rewrite" projects for
legacy games: many used the .smk format for intro videos, cutscenes, and
animated textures.  What is needed is a library which supports the minimum
feature set from smackw32.dll to get an smk off a disk and the frames /
audio into a buffer in the correct order. Hence, libsmacker.

Bug#1041358: web-ui downloads extentionless page without

[T. Joseph Carter]

Package: qbittorrent-nox
Version: 4.5.4-1
Severity: important

The primary (really only) way to use qbittorrent-nox is via the web UI.
This works in stable (4.5.2) as expected, but in sid it downloads a file
with a name like "4Az117Jo" (random), no extension, and no MIME type.
Firefox, Chromium, and Brave all just save the file without displaying
it—it's the web UI login page as expected.

This is definitely a problem for how the -nox package is used (and
affects the GUI package as well, but it would be Severity: normal for
that package), and I've filed this as issue #19330 against the
qBittorrent upstream on Github.

-- System Information:
Debian Release: trixie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 6.3.0-1-amd64 (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages qbittorrent-nox depends on:
ii  libc62.37-6
ii  libgcc-s113.1.0-8
ii  libqt6core6  6.4.2+dfsg-11
ii  libqt6network6   6.4.2+dfsg-11
ii  libqt6sql6   6.4.2+dfsg-11
ii  libqt6sql6-sqlite6.4.2+dfsg-11
ii  libqt6xml6   6.4.2+dfsg-11
ii  libssl3  3.0.9-1
ii  libstdc++6   13.1.0-8
ii  libtorrent-rasterbar2.0  2.0.9-1
ii  zlib1g   1:1.2.13.dfsg-1

qbittorrent-nox recommends no packages.

qbittorrent-nox suggests no packages.

-- no debconf information

Bug#1041192: Recommends: exuberant-ctags, not ctags?

[T. Joseph Carter]

Package: seascope
Version: 0.9+8a669e0e-3
Severity: normal

I've noted that seascope Recommends: exuberant-ctags which for the
longest time was the only form of ctags in Debian. universal-ctags now
exists as an alternative. Might any ctags be used for seascope or is
there a particular reason to prefer exuberant-ctags?


-- System Information:
Debian Release: trixie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 6.3.0-1-amd64 (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages seascope depends on:
ii  python3  3.11.4-3
ii  python3-pyqt55.15.9+dfsg-1
ii  python3-pyqt5.qsci   2.13.3+dfsg-3
ii  python3-pyqt5.qtsvg  5.15.9+dfsg-1

Versions of packages seascope recommends:
ii  cscope   15.9-1
pn  exuberant-ctags  
ii  id-utils 4.6.28-20200521ss15dab+b1

seascope suggests no packages.

-- no debconf information

Bug#1040792: linux-image-6.1.0-10-amd64 - computer crashes after log-in

[Jonathan Joseph Chiarella]

Erratum:


Kernel linux-image-6.1.09-amd64 works fine.


Kernel linux-image-6.1.0-9-amd64 works fine.

--
Jonathan Joseph Chiarella

PGP Fingerprint: 8B54 67AE 714B 8A5B D479 F578 6AAB 963C 0402 061A

Bug#1040792: linux-image-6.1.0-10-amd64 - computer crashes after log-in

[Jonathan Joseph Chiarella]

Package: linux-image-6.1.0-10-amd64
Version: 6.1.37-1

When running Debian 12.0 (stable) on kernel linux-image-6.1.0-10-amd64 on an 
AMD64 computer (A9-9420 Radeon R5), the system crashes after logging in as a 
user. This only happens after logging in. The lightdm display manager 
disappears and begins to log in to the user. Then the screen flashes, goes 
black, and a hard reset ensues. This happens no matter how many times I try. 
Sometimes, there a is a black screen and white console text appears. It only 
appears briefly.

Kernel linux-image-6.1.09-amd64 works fine.

Error messages on the black screen that sometimes appear:

Hardware error Processor 2
mce: CPU 0: [something I couldn't get ] Check: 0
Bank 4: f20001120c0f
i2c_designwave AMD0010:00:controller timed out
TSC0
PROCESSOR 2:670f00
TIME 1688732464 SOCKET 0 APIC 0 microcode 6006705


I had to take photographs of the screen or videos with my cell phone camera. 
The error message text only appears for a moment.

--
Jonathan Joseph Chiarella

PGP Fingerprint: 8B54 67AE 714B 8A5B D479 F578 6AAB 963C 0402 061A

Bug#1040265: CVE-2023-36813: Multiple Authenticated SQL Injections

[Joseph Nahmias]

Package: kanboard
Severity: important
Tags: security upstream
X-Debbugs-Cc: t...@security.debian.org, j...@nahmias.net, Debian Security Team 


https://github.com/kanboard/kanboard/security/advisories/GHSA-9gvq-78jp-jxcx

Summary

During a review of this project, I found multiple SQL Injections. It appears
that in some insert and update operations, the code improperly uses the PicoDB
library to update/insert new information.

Bug#1039889: recommends old ffmpeg libs

[T. Joseph Carter]

Package: pqiv
Version: 2.12-1+b1
Severity: normal

The libavcodec and friends versions pqiv currently expects to use are
not available in stable, let alone unstable. Might be fixed by
recompile?

-- System Information:
Debian Release: trixie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 6.3.0-1-amd64 (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages pqiv depends on:
ii  libc6 2.36-9
ii  libcairo2 1.16.0-7
ii  libglib2.0-0  2.74.6-2
ii  libgtk-3-03.24.37-2
ii  libx11-6  2:1.8.6-1

Versions of packages pqiv recommends:
ii  libarchive13   3.6.2-1
pn  libavcodec58   
pn  libavformat58  
pn  libavutil56
ii  libgdk-pixbuf-2.0-02.42.10+dfsg-1+b1
ii  libmagickwand-6.q16-6  8:6.9.11.60+dfsg-1.6
ii  libpoppler-glib8   22.12.0-2+b1
pn  libswscale5
ii  libwebp7   1.2.4-0.2

pqiv suggests no packages.

-- no debconf information

Bug#1039728: segfault when completing first level

[Joseph Nahmias]

Package: raincat
Version: 1.1.1.2-4+b3
Severity: normal
X-Debbugs-Cc: j...@nahmias.net

No idea what's going on here, but raincat segfaults when I clear the first
level...

$ raincat
libpng warning: iCCP: known incorrect sRGB profile
libpng warning: iCCP: known incorrect sRGB profile
libpng warning: iCCP: cHRM chunk does not match sRGB
libpng warning: iCCP: known incorrect sRGB profile
libpng warning: iCCP: cHRM chunk does not match sRGB
libpng warning: iCCP: known incorrect sRGB profile
libpng warning: iCCP: cHRM chunk does not match sRGB
libpng warning: iCCP: known incorrect sRGB profile
[...]
raincat: mmap 4096 bytes at (nil): Cannot allocate memory
raincat: Try specifying an address with +RTS -xm -RTS
Segmentation fault


Let me know if there are some magic debug switches which will let you get more
info.
--Joe


-- System Information:
Debian Release: 12.0
  APT prefers stable
  APT policy: (990, 'stable'), (500, 'stable-security'), (500, 'stable-debug'), 
(500, 'proposed-updates-debug')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 6.1.0-9-amd64 (SMP w/8 CPU threads; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages raincat depends on:
ii  libc6   2.36-9
ii  libffi8 3.4.4-1
ii  libgl1  1.6.0-1
ii  libglu1-mesa [libglu1]  9.0.2-1.1
ii  libglut3.12 3.4.0-1
ii  libgmp102:6.2.1+dfsg1-1.1
ii  libsdl-image1.2 1.2.12-13+b2
ii  libsdl-mixer1.2 1.2.12-17+b3
ii  libsdl1.2debian 1.2.15+dfsg2-8
ii  raincat-data1.1.1.2-4

raincat recommends no packages.

raincat suggests no packages.

-- no debconf information

Bug#1038423: ITP: maven-native -- plugin to compile c and c++ source via maven

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, mojohaus-...@googlegroups.com, 
pkg-java-maintain...@lists.alioth.debian.org, j...@nahmias.net

* Package name: maven-native
  Version : 1.0-alpha-11
  Upstream Contact: mojohaus-...@googlegroups.com,
* URL : https://www.mojohaus.org/maven-native/native-maven-plugin/
* License : Expat
  Programming Lang: Java
  Description : plugin to compile c and c++ source via maven

 This maven plugin creates a custom build lifecycle suited to compiling
 native C and C++ code using standard compilers such as gcc.
 .
 Use cases / usage examples include:
 .
  * Building a DLL with JNI.
  * Building a standard Unix shared library.
  * Building a static library, including ranlib.

Bug#1037936: Qt6: Dialog minimum size larger than screen

[T. Joseph Carter]

Package: qbittorrent
Version: 4.5.3-2
Severity: normal
Tags: a11y upstream

The new Qt6 version of qBittorrent apparently does a better job reading
my font size settings from XFCE. The result is that fonts are scaled up
in a way that's comfortably easier for a legally blind reader … except
the torrent options dialog no longer fits on screen.

I've tried shrinking this to fit, but the minimum size possible still
has to fit everything the dialog contains within that minimum dialog
size.

A solution to this might be to place the dialog's controls inside a
widget which can scroll if the dialog is smaller than its contents. I
don't really code Qt stuff, so I don't know what widget that would be,
but I'm betting the devs do.

Workaround for now is to know how to grab a window by something other
than the titlebar in your WM or whatever one does under Wayland and move
the titlebar offscreen so you can reach the options and buttons at the
bottom of the larger than the screen dialog.


-- System Information:
Debian Release: trixie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 6.1.0-9-amd64 (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages qbittorrent depends on:
ii  libc62.36-9
ii  libgcc-s113.1.0-5
ii  libqt5sql5-sqlite5.15.8+dfsg-12
ii  libqt6core6  6.4.2+dfsg-11
ii  libqt6dbus6  6.4.2+dfsg-11
ii  libqt6gui6   6.4.2+dfsg-11
ii  libqt6network6   6.4.2+dfsg-11
ii  libqt6sql6   6.4.2+dfsg-11
ii  libqt6widgets6   6.4.2+dfsg-11
ii  libqt6xml6   6.4.2+dfsg-11
ii  libssl3  3.0.9-1
ii  libstdc++6   13.1.0-5
ii  libtorrent-rasterbar2.0  2.0.9-1
ii  zlib1g   1:1.2.13.dfsg-1

qbittorrent recommends no packages.

qbittorrent suggests no packages.

-- no debconf information

Bug#1037455: ITP: narcissus -- limited Java reflection library that bypasses security restrictions

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, debian-j...@lists.debian.org, 
tool.factory.he...@gmail.com, j...@nahmias.net

* Package name: narcissus
  Version : 1.0.7
  Upstream Contact: ToolFactory 
* URL : https://github.com/toolfactory/narcissus
* License : MIT
  Programming Lang: Java
  Description : limited Java reflection library that bypasses security 
restrictions

Narcissus is a JNI native code library that provides a small subset of the Java
reflection API, while bypassing all of Java's access/visibility checks,
security manager restrictions, and module strong encapsulation enforcement, by
calling methods and accessing fields through the JNI API. This allows code that
relies on reflective access to non-public classes, fields, and methods to keep
working even now that strong encapsulation is being enforced in JDK 16+.

Narcissus works on JDK 7+, however it is most useful for suppressing reflective
access warnings in JDK 9-15, and for circumventing strong encapsulation for JDK
16+, in order to keep legacy software running (for example, when legacy
software depends upon setAccessible to access a needed private field of a class
in some library).

Bug#1037444: bookworm-pu: package kanboard/1.2.26+ds-4

[Joseph Nahmias]

Package: release.debian.org
Severity: normal
Tags: bookworm
User: release.debian@packages.debian.org
Usertags: pu
X-Debbugs-Cc: kanbo...@packages.debian.org, j...@nahmias.net
Control: affects -1 + src:kanboard

[ Reason ]
Security updates for kanboard since v1.2.26.

[ Tests ]
upstream's unit test suite are run at build time and via autopkgtest.
there are also some other (superficial) autopkgtests.

[ Risks ]
All listed CVEs have targeted fixes picked from upstream github.

[ Checklist ]
  [X] *all* changes are documented in the d/changelog
  [X] I reviewed all changes and I approve them
  [X] attach debdiff against the package in (old)stable
  [X] the issue is verified as fixed in unstable

[ Other info ]

My first stable update, so please advise if I missed anything.
--Joe
diff -Nru kanboard-1.2.26+ds/debian/changelog 
kanboard-1.2.26+ds/debian/changelog
--- kanboard-1.2.26+ds/debian/changelog 2023-05-16 22:49:38.0 -0400
+++ kanboard-1.2.26+ds/debian/changelog 2023-06-07 20:45:40.0 -0400
@@ -1,3 +1,24 @@
+kanboard (1.2.26+ds-4) unstable; urgency=medium
+
+  * backport security fixes from kanboard v1.2.30
+ > CVE-2023-33956: Parameter based Indirect Object Referencing leading
+   to private file exposure
+ > CVE-2023-33968: Missing access control allows user to move and
+   duplicate tasks to any project in the software
+ > CVE-2023-33969: Stored XSS in the Task External Link Functionality
+ > CVE-2023-33970: Missing access control in internal task links feature
+(Closes: #1037167)
+
+ -- Joseph Nahmias   Wed, 07 Jun 2023 20:45:40 -0400
+
+kanboard (1.2.26+ds-3) unstable; urgency=medium
+
+  * backport fix for CVE-2023-32685 from kanboard v1.2.29
+
https://github.com/kanboard/kanboard/security/advisories/GHSA-hjmw-gm82-r4gv
+Based on upstream commits 26b6eeb & c9c1872. (Closes: #1036874)
+
+ -- Joseph Nahmias   Sun, 28 May 2023 21:42:46 -0400
+
 kanboard (1.2.26+ds-2) unstable; urgency=medium
 
   * properly test for lighty-enable-mod.
diff -Nru kanboard-1.2.26+ds/debian/patches/CVE-2023-32685.patch 
kanboard-1.2.26+ds/debian/patches/CVE-2023-32685.patch
--- kanboard-1.2.26+ds/debian/patches/CVE-2023-32685.patch  1969-12-31 
19:00:00.0 -0500
+++ kanboard-1.2.26+ds/debian/patches/CVE-2023-32685.patch  2023-05-28 
21:41:20.0 -0400
@@ -0,0 +1,111 @@
+Description: fix for CVE-2023-32685
+ Clipboard based cross-site scripting (blocked with default CSP)
+ https://github.com/kanboard/kanboard/security/advisories/GHSA-hjmw-gm82-r4gv
+Author: Frédéric Guillot 
+Origin: upstream
+Last-Update: 2023-05-24
+---
+This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
+diff --git a/assets/js/components/screenshot.js 
b/assets/js/components/screenshot.js
+index a8acd64..1130bd2 100644
+--- a/assets/js/components/screenshot.js
 b/assets/js/components/screenshot.js
+@@ -1,5 +1,4 @@
+ KB.component('screenshot', function (containerElement) {
+-var pasteCatcher = null;
+ var inputElement = null;
+ 
+ function onFileLoaded(e) {
+@@ -7,7 +6,6 @@ KB.component('screenshot', function (containerElement) {
+ }
+ 
+ function onPaste(e) {
+-// Firefox doesn't have the property e.clipboardData.items (only 
Chrome)
+ if (e.clipboardData && e.clipboardData.items) {
+ var items = e.clipboardData.items;
+ 
+@@ -24,69 +22,13 @@ KB.component('screenshot', function (containerElement) {
+ }
+ }
+ }
+-} else {
+-
+-// Handle Firefox
+-setTimeout(checkInput, 100);
+ }
+ }
+ 
+ function initialize() {
+-destroy();
+-
+-if (! window.Clipboard) {
+-// Insert the content editable at the top to avoid scrolling down 
in the board view
+-pasteCatcher = document.createElement('div');
+-pasteCatcher.id = 'screenshot-pastezone';
+-pasteCatcher.contentEditable = true;
+-pasteCatcher.style.opacity = 0;
+-pasteCatcher.style.position = 'fixed';
+-pasteCatcher.style.top = 0;
+-pasteCatcher.style.right = 0;
+-pasteCatcher.style.width = 0;
+-document.body.insertBefore(pasteCatcher, 
document.body.firstChild);
+-
+-pasteCatcher.focus();
+-
+-// Set the focus when clicked anywhere in the document
+-document.addEventListener('click', setFocus);
+-
+-// Set the focus when clicked in screenshot dropzone
+-
document.getElementById('screenshot-zone').addEventListener('click', setFocus);
+-}
+-
+ window.addEventListener('paste', onPaste, false);
+ }
+ 
+-function destroy() {
+-if (KB.exists('#screenshot-pastezone')) {
+-KB.find('#screenshot-pastezone').remove();
+-}
+-
+-document.removeEventListener('click', setFocus);
+-pasteCatcher = null;
+-   

Bug#1037082: unblock: kanboard/1.2.26+ds-3

[Joseph Nahmias]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: kanbo...@packages.debian.org, j...@nahmias.net
Control: affects -1 + src:kanboard

Please unblock package kanboard

[ Reason ]

Security fix only for CVE-2023-32685 from kanboard v1.2.29
https://github.com/kanboard/kanboard/security/advisories/GHSA-hjmw-gm82-r4gv

[ Checklist ]
  [X] all changes are documented in the d/changelog
  [X] I reviewed all changes and I approve them
  [X] attach debdiff against the package in testing

unblock kanboard/1.2.26+ds-3
diff -Nru kanboard-1.2.26+ds/debian/changelog 
kanboard-1.2.26+ds/debian/changelog
--- kanboard-1.2.26+ds/debian/changelog 2023-05-16 22:49:38.0 -0400
+++ kanboard-1.2.26+ds/debian/changelog 2023-05-28 21:42:46.0 -0400
@@ -1,3 +1,11 @@
+kanboard (1.2.26+ds-3) unstable; urgency=medium
+
+  * backport fix for CVE-2023-32685 from kanboard v1.2.29
+
https://github.com/kanboard/kanboard/security/advisories/GHSA-hjmw-gm82-r4gv
+Based on upstream commits 26b6eeb & c9c1872. (Closes: #1036874)
+
+ -- Joseph Nahmias   Sun, 28 May 2023 21:42:46 -0400
+
 kanboard (1.2.26+ds-2) unstable; urgency=medium
 
   * properly test for lighty-enable-mod.
diff -Nru kanboard-1.2.26+ds/debian/patches/CVE-2023-32685.patch 
kanboard-1.2.26+ds/debian/patches/CVE-2023-32685.patch
--- kanboard-1.2.26+ds/debian/patches/CVE-2023-32685.patch  1969-12-31 
19:00:00.0 -0500
+++ kanboard-1.2.26+ds/debian/patches/CVE-2023-32685.patch  2023-05-28 
21:41:20.0 -0400
@@ -0,0 +1,111 @@
+Description: fix for CVE-2023-32685
+ Clipboard based cross-site scripting (blocked with default CSP)
+ https://github.com/kanboard/kanboard/security/advisories/GHSA-hjmw-gm82-r4gv
+Author: Frédéric Guillot 
+Origin: upstream
+Last-Update: 2023-05-24
+---
+This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
+diff --git a/assets/js/components/screenshot.js 
b/assets/js/components/screenshot.js
+index a8acd64..1130bd2 100644
+--- a/assets/js/components/screenshot.js
 b/assets/js/components/screenshot.js
+@@ -1,5 +1,4 @@
+ KB.component('screenshot', function (containerElement) {
+-var pasteCatcher = null;
+ var inputElement = null;
+ 
+ function onFileLoaded(e) {
+@@ -7,7 +6,6 @@ KB.component('screenshot', function (containerElement) {
+ }
+ 
+ function onPaste(e) {
+-// Firefox doesn't have the property e.clipboardData.items (only 
Chrome)
+ if (e.clipboardData && e.clipboardData.items) {
+ var items = e.clipboardData.items;
+ 
+@@ -24,69 +22,13 @@ KB.component('screenshot', function (containerElement) {
+ }
+ }
+ }
+-} else {
+-
+-// Handle Firefox
+-setTimeout(checkInput, 100);
+ }
+ }
+ 
+ function initialize() {
+-destroy();
+-
+-if (! window.Clipboard) {
+-// Insert the content editable at the top to avoid scrolling down 
in the board view
+-pasteCatcher = document.createElement('div');
+-pasteCatcher.id = 'screenshot-pastezone';
+-pasteCatcher.contentEditable = true;
+-pasteCatcher.style.opacity = 0;
+-pasteCatcher.style.position = 'fixed';
+-pasteCatcher.style.top = 0;
+-pasteCatcher.style.right = 0;
+-pasteCatcher.style.width = 0;
+-document.body.insertBefore(pasteCatcher, 
document.body.firstChild);
+-
+-pasteCatcher.focus();
+-
+-// Set the focus when clicked anywhere in the document
+-document.addEventListener('click', setFocus);
+-
+-// Set the focus when clicked in screenshot dropzone
+-
document.getElementById('screenshot-zone').addEventListener('click', setFocus);
+-}
+-
+ window.addEventListener('paste', onPaste, false);
+ }
+ 
+-function destroy() {
+-if (KB.exists('#screenshot-pastezone')) {
+-KB.find('#screenshot-pastezone').remove();
+-}
+-
+-document.removeEventListener('click', setFocus);
+-pasteCatcher = null;
+-}
+-
+-function setFocus() {
+-if (pasteCatcher !== null) {
+-pasteCatcher.focus();
+-}
+-}
+-
+-function checkInput() {
+-var child = pasteCatcher.childNodes[0];
+-
+-if (child) {
+-// If the user pastes an image, the src attribute
+-// will represent the image as a base64 encoded string.
+-if (child.tagName === 'IMG') {
+-createImage(child.src);
+-}
+-}
+-
+-pasteCatcher.innerHTML = '';
+-}
+-
+ function createImage(blob) {
+ var pastedImage = new Image();
+ pastedImage.src = blob;
+@@ -102,14 +44,9 @@ KB.component('screenshot', function (containerElement) {
+ zone.className = 'scree

Bug#1036205: unblock: kanboard/1.2.26+ds-2

[Joseph Nahmias]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: kanbo...@packages.debian.org, j...@nahmias.net
Control: affects -1 + src:kanboard

Please unblock package kanboard

[ Reason ]

  - Fix RC bug #1035598, caused by improper quoting in the test for
lighty-enable-mod
  - Fix a few issues discovered with the debian patch to use the newer version
of symfony that is in bookworm, which break common use cases /
configurations (including the package default one).
  - Fix an oversight in the default lighttpd configuration provided with
kanboard which doesn't exempt the jsonrpc API endpoint from redirection to
the login page.
  - Add autopkgtests to cover the above issues.

[ Impact ]

RC bug will cause kanboard to be removed from bookworm.

[ Tests ]

I've added a basic autopkgtest to test the jsonrpc API endpoint using
the default (lighttpd) config.

Added an autopkgtest to specifically test the installation of kanboard
with apache.

Did NOT add a similar jsonrpc autopkgtest for running under apache, as
this would require shipping a default config for apache, which feels like
too much of a new feature and thus unsuitable for an unblock at this point
of the release cycle. However, if the RT would be willing to include this
I'd be happy to do so; otherwise, I plan to defer until trixie opens.

[ Risks ]

Kanboard is a leaf package.
Fixes are targetted and address important/RC issues.
Autopkgtests are included to cover the issues and insure against regressions.

[ Checklist ]

  [X] all changes are documented in the d/changelog
  [X] I reviewed all changes and I approve them
  [X] attach debdiff against the package in testing

[ Other info ]

unblock kanboard/1.2.26+ds-2


This is my first unblock request in quite some time. Any feedback you wish to
provide would be greatly appreciated!
Thanks for all you do to make Debian,
--Joe
diff -Nru kanboard-1.2.26+ds/debian/35-kanboard.conf 
kanboard-1.2.26+ds/debian/35-kanboard.conf
--- kanboard-1.2.26+ds/debian/35-kanboard.conf  2022-07-22 12:48:59.0 
-0400
+++ kanboard-1.2.26+ds/debian/35-kanboard.conf  2023-05-15 21:45:51.0 
-0400
@@ -7,6 +7,7 @@
 alias.url += ( "/kanboard/" => "/usr/share/kanboard/" )
 index-file.names += ( "index.php" )
 url.rewrite-once = (
+"^/kanboard/jsonrpc\.php" => "",
 "^/kanboard/assets/.+" => "",
 "^/kanboard/favicon\..*$" => "",
 "" => "/kanboard/index.php${qsa}",
diff -Nru kanboard-1.2.26+ds/debian/changelog 
kanboard-1.2.26+ds/debian/changelog
--- kanboard-1.2.26+ds/debian/changelog 2023-01-14 19:54:15.0 -0500
+++ kanboard-1.2.26+ds/debian/changelog 2023-05-16 22:49:38.0 -0400
@@ -1,3 +1,23 @@
+kanboard (1.2.26+ds-2) unstable; urgency=medium
+
+  * properly test for lighty-enable-mod.
+This fixes a bug in how the postinst/prerm maint scripts check whether
+to enable kanboard for lighttpd, which caused it to fail when lighttpd
+was not installed. (Closes: #1035598)
+  * adapt some more areas to the new Symfony EventDispatcher API
+fix a couple of spots where we missed updating to the new dispatch() API:
+- standard db-based Auth
+- jsonrpc Auth
+  * do not redirect access to Kanboard's JSONRPC API.
+It uses its own authentication and shouldn't be bounced to the standard
+login page.
+  * add autopkgtest to ensure Kanboard JSONRPC API (minimally) works
+  * add apache install autopkgtest
+  * test(jsonrpc): make curl report errors in a cleaner way
+  * test(jsonrpc): add php-fpm as test dep
+
+ -- Joseph Nahmias   Tue, 16 May 2023 22:49:38 -0400
+
 kanboard (1.2.26+ds-1) unstable; urgency=medium
 
   * [1f43019] New upstream version 1.2.26+ds
diff -Nru kanboard-1.2.26+ds/debian/patches/adapt_to_newer_symfony.patch 
kanboard-1.2.26+ds/debian/patches/adapt_to_newer_symfony.patch
--- kanboard-1.2.26+ds/debian/patches/adapt_to_newer_symfony.patch  
2022-07-24 09:00:23.0 -0400
+++ kanboard-1.2.26+ds/debian/patches/adapt_to_newer_symfony.patch  
2023-05-15 21:45:51.0 -0400
@@ -623,3 +623,41 @@
  
  return false;
  }
+--- a/app/Api/Middleware/AuthenticationMiddleware.php
 b/app/Api/Middleware/AuthenticationMiddleware.php
+@@ -7,6 +7,7 @@ use JsonRPC\Exception\AuthenticationFail
+ use JsonRPC\MiddlewareInterface;
+ use Kanboard\Auth\ApiAccessTokenAuth;
+ use Kanboard\Core\Base;
++use Symfony\Contracts\EventDispatcher\Event;
+ 
+ /**
+  * Class AuthenticationApiMiddleware
+@@ -28,7 +29,7 @@ class AuthenticationMiddleware extends B
+  */
+ public function execute($username, $password, $procedureName)
+ {
+-$this->dispatcher->dispatch('app.bootstrap');
++$this->dispatcher->dispatch(new Event, 'app.bootstrap');
+ session_set('scope', 'API');

Bug#1034607: xfce4-screensaver vs light-locker

[T. Joseph Carter]

Package: task-desktop-xfce
Version: 3.72
Severity: normal

Request to allow xfce4-screensaver at least as an alternative to
light-locker.

-- System Information:
Debian Release: 12.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 6.1.0-7-amd64 (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Bug#1033278: wine: Battle.Net: The application failed to start because no Qt platform plugin could be initialized

[Joseph Nahmias]

Package: wine
Version: 8.0~repack-4
Severity: normal
X-Debbugs-Cc: j...@nahmias.net

Hello,

I just upgraded from bullseye to bookworm and now Battle.Net / Hearthstone
refuses to start. Instead it shows this error message:

The application failed to start because no Qt
platform plugin could be initialized. Reinstalling
the application may fix this problem.

Was there some change in the wine packaging that would cause this error?
Would additional logs/debug info be useful to troubleshoot?

Thanks,
--Joe

-- Package-specific info:
/usr/bin/wine points to /usr/bin/wine-stable.

-- System Information:
Debian Release: bookworm/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'testing-security'), (500, 
'testing-debug'), (500, 'stable-updates'), (500, 'stable-security'), (500, 
'stable-debug'), (500, 'proposed-updates-debug'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 6.1.0-6-amd64 (SMP w/8 CPU threads; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages wine depends on:
ii  wine32  8.0~repack-4
ii  wine64  8.0~repack-4

wine recommends no packages.

Versions of packages wine suggests:
pn  dosbox
ii  icoextract-thumbnailer [exe-thumbnailer]  0.1.4-1
pn  playonlinux   
pn  q4wine
pn  winbind   
pn  wine-binfmt   
pn  winetricks

Versions of packages libwine depends on:
ii  libasound2   1.2.8-1+b1
ii  libc62.36-8
ii  libcapi20-3  1:3.27-3+b1
ii  libfontconfig1   2.14.1-4
ii  libfreetype6 2.12.1+dfsg-4
ii  libglib2.0-0 2.74.6-1
ii  libgphoto2-6 2.5.30-1
ii  libgphoto2-port122.5.30-1
ii  libgstreamer-plugins-base1.0-0   1.22.0-3
ii  libgstreamer1.0-01.22.0-2
ii  libpcap0.8   1.10.3-1
ii  libpulse016.1+dfsg1-2+b1
ii  libudev1 252.6-1
ii  libunwind8   1.6.2-3
ii  libusb-1.0-0 2:1.0.26-1
ii  libx11-6 2:1.8.4-2
ii  libxext6 2:1.3.4-1+b1
ii  libz-mingw-w64   1.2.13+dfsg-1
ii  ocl-icd-libopencl1 [libopencl1]  2.3.1-1

Versions of packages libwine recommends:
ii  fonts-liberation   1:1.07.4-11
ii  fonts-wine 8.0~repack-4
ii  gstreamer1.0-plugins-good  1.22.0-5
ii  libasound2-plugins 1.2.7.1-1
ii  libcups2   2.4.2-2
ii  libdbus-1-31.14.6-1
ii  libgl1 1.6.0-1
ii  libgl1-mesa-dri22.3.3-1
ii  libgnutls303.7.9-1
ii  libgssapi-krb5-2   1.20.1-1
ii  libkrb5-3  1.20.1-1
ii  libodbc2   2.3.11-2
ii  libosmesa6 22.3.3-1
ii  libsdl2-2.0-0  2.26.4+dfsg-1
ii  libv4l-0   1.22.1-5+b1
ii  libvulkan1 1.3.239.0-1
ii  libxcomposite1 1:0.4.5-1
ii  libxcursor11:1.2.1-1
ii  libxfixes3 1:6.0.0-2
ii  libxi6 2:1.8-1+b1
ii  libxinerama1   2:1.1.4-3
ii  libxrandr2 2:1.5.2-2+b1
ii  libxrender11:0.9.10-1.1
ii  libxxf86vm11:1.1.4-1+b2

Versions of packages libwine suggests:
ii  cups-bsd   2.4.2-2
ii  gstreamer1.0-libav 1.22.0-2
ii  gstreamer1.0-plugins-bad   1.22.0-4
ii  gstreamer1.0-plugins-ugly  1.22.0-2
pn  ttf-mscorefonts-installer  

Versions of packages wine32 depends on:
ii  libc62.36-8
ii  libwine  8.0~repack-4

wine32 recommends no packages.

Versions of packages wine32 suggests:
pn  wine32-preloader  

Versions of packages wine64 depends on:
ii  libc62.36-8
ii  libwine  8.0~repack-4

Versions of packages wine64 recommends:
ii  wine32  8.0~repack-4

Versions of packages wine64 suggests:
pn  wine64-preloader  

Versions of packages wine is related to:
pn  dxvk 
pn  dxvk-wine32-development  
pn  dxvk-wine64-development  
ii  fonts-wine   8.0~repack-4

-- no debconf information

Bug#1032867: suggests wx3.0-doc

[T. Joseph Carter]

Package: python3-wxgtk4.0
Version: 4.2.0+dfsg-2
Severity: minor

This package still suggests: wx3.0-doc, perhaps wx3.2-doc is now
intended? Severity: minor as you can obviously install it yourself, but
given the 4.0/3.2 sort of confusion with wxWidgets and wxPython, it's
worth fixing.

-- System Information:
Debian Release: 12.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 6.1.0-6-amd64 (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages python3-wxgtk4.0 depends on:
ii  libc6 2.36-8
ii  libgcc-s1 12.2.0-14
ii  libstdc++612.2.0-14
ii  libwxbase3.2-13.2.2+dfsg-2
ii  libwxgtk-gl3.2-1  3.2.2+dfsg-2
ii  libwxgtk3.2-1 3.2.2+dfsg-2
ii  python3   3.11.2-1
ii  python3-numpy 1:1.24.2-1
ii  python3-pil   9.4.0-1.1+b1
ii  python3-six   1.16.0-4

python3-wxgtk4.0 recommends no packages.

Versions of packages python3-wxgtk4.0 suggests:
ii  wx3.0-doc  3.0.5.1+dfsg-5

-- no debconf information

Bug#1032119: ITP: ldaptive -- simple, extensible Java API for interacting with LDAP servers

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, debian-j...@lists.debian.org, 
debian-secur...@lists.debian.org, j...@nahmias.net
Control: block 1031807 by -1

* Package name: ldaptive
  Version : 2.1.1
  Upstream Authors: Daniel Fisher , Marvin S. Addison 

* URL : https://www.ldaptive.org/
* License : Apache-2 OR LGPL-3
  Programming Lang: Java
  Description : simple, extensible Java API for interacting with LDAP 
servers

 Ldaptive is a simple, extensible Java API for interacting with LDAP
 servers. It was designed to provide easy LDAP integration for application
 developers. Features include:
 .
   * Netty based asynchronous networking
   * Reactive API
   * Connection pooling
   * Authentication API with support for password policy
   * JAAS modules for authentication and authorization
   * SSL/startTLS support with easy configuration of trust and key material
   * Input/output of LDIF
   * Supported controls:
 * Authorization Identity (RFC 3829)
 * Content Synchronization (RFC 4533)
 * Entry Change Notification (draft-ietf-ldapext-psearch-03)
 * ManageDsaIT (RFC 3296)
 * Matched Values (RFC 3876)
 * Paged Results (RFC 2696)
 * Password Policy (draft-behera-ldap-password-policy-10 and
   draft-vchu-ldap-pwd-policy-00)
 * Persistent Search (draft-ietf-ldapext-psearch-03)
 * Proxy Authorization (RFC 4370)
 * Server Side Sorting (RFC 2891)
 * Session Tracking (draft-wahl-ldap-session-03)
 * Tree Delete (draft-armijo-ldap-treedelete)
 * Virtual List View (draft-ietf-ldapext-ldapv3-vlv-09)

Bug#1032050: ITP: cryptacular -- high level, general purpose Java cryptographic library

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, debian-j...@lists.debian.org, 
j...@nahmias.net, cryptacu...@googlegroups.com
Control: -1 blocks 1031807

* Package name: cryptacular
  Version : 1.2.5
  Upstream Authors: Daniel Fisher , Marvin S. Addison 

* URL : https://www.cryptacular.org/
* License : Apache-2.0 OR LGPL-3.0
  Programming Lang: Java
  Description : high level, general purpose Java cryptographic library

 General-purpose Java cryptograhic library, which complements the Bouncy
 Castle libraries, that has the following design goals:
 .
  * Flexible JCE provider. Prefers the Bouncy Castle Java Provider, but
can fall back to other providers defined in the environment for
algorithms not implemented by BC.
  * Ease of use for common cryptographic operations. A one liner
highlights this well; the following prints the MD5 hash of a password
as a string of HEX characters:
System.out.println(new MD5().digest(passBytes, new HexConverter()));
  * Convenient and performant handling of cryptographic operations on
large data streams.
  * Support for base-64 and hexadecimal encoding of ciphertext input/output.
  * Support for I/O operations on cryptographic primitives including
generating and writing symmetric encryption keys, public/private key
pairs, and X.509 certificates. Both PEM and DER encoding is handled
conveniently.
  * Command line interface for each class of cryptographic operation
(digest, symmetric encryption, public-key encryption, message signing,
etc). A command line interface for keystore operations is also
included, which is notable as it supports features above and beyond
the the Java keytool utility.
 .
 It is important to note that no cryptographic algorithms are implemented;
 Bouncy Castle provides all cryptographic algorithms where required.

Bug#1031807: ITP: java-opensaml -- Shibboleth Project's OpenSAML java libraries

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, debian-j...@lists.debian.org, 
debian-security-to...@lists.debian.org, j...@nahmias.net, d...@shibboleth.net
Control: block 1031769 by -1

* Package name: java-opensaml
  Version : 4.3.0
  Upstream Author : Shibboleth 
* URL : https://shibboleth.atlassian.net/wiki/spaces/OS30/overview
* License : Apache 2
  Programming Lang: Java
  Description : Shibboleth Project's OpenSAML java libraries

 OpenSAML is a set of open source C++ & Java libraries used in support
 of the Shibboleth Project's implementation of the Security Assertion
 Markup Language (SAML).

 OpenSAML 4, the current Java library version, is based on Java 11, and
 supports SAML 1.0, 1.1, and 2.0. Additionally, various development groups
 have found the framework created to support OpenSAML useful for their own
 work and the Java codebase includes some code supporting WS-Addressing,
 WS-Security, WS-Trust and XACML.

 The OpenSAML libraries do not provide a complete SAML identity or service
 provider. If you are looking for such software you should check out the
 Shibboleth project instead. Also, these libraries will not teach you any
 of the specifications listed above. The libraries are meant solely to
 support individuals who have taken the time to read and understand the
 specifications and are not in general a good solution for those looking
 for a quick way to implement SAML.

Bug#1031769: ITP: oauth2-oidc-sdk -- OAuth 2.0 SDK for Java

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, j...@nahmias.net, 
debian-j...@lists.debian.org, supp...@connect2id.com, v...@connect2id.com

* Package name: oauth2-oidc-sdk
  Version : 9.43.1
  Upstream Author : Connect2id Ltd 
  Upstream Author : Vladimir Dzhuvinov 
* URL : 
https://connect2id.com/products/nimbus-oauth-openid-connect-sdk
* URL : 
https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/src/master/
* License : Apache-2
  Programming Lang: Java
  Description : OAuth 2.0 SDK for Java


This library is your starting point for developing OAuth 2.0 / 2.1 and OpenID 
Connect applications in Java. It provides ready and simple to use classes for 
dealing with tokens and representing the protocol messages, ensuring standards 
compliance and thus interoperability.

 *  Comprehensive Java library for developing OAuth 2.0 and OpenID Connect 
clients and servers
 *  Standards compliant, robust and extensible
 *  Open source (Apache 2.0 licence)

The OAuth 2.0 and OpenID Connect standards permit application-specific profiles 
and extensions, and this library also caters for that, with suitable interfaces 
and base classes where required.

Bug#1031734: ibus-braille-preferences crashes when run

[T. Joseph Carter]

Package: ibus-braille
Version: 0.3-7
Severity: important

Upon running ibus-braille-preferences, I get this error:

```
aki:~ $ ibus-braille-preferences 
/usr/share/ibus-braille-preferences/main.py:24: PyGIWarning: Gtk was imported 
without specifying a version first. Use gi.require_version('Gtk', '4.0') before 
import to ensure that the right version gets loaded.
  from gi.repository import Gtk
/usr/share/ibus-braille-preferences/main.py:26: PyGIWarning: IBus was imported 
without specifying a version first. Use gi.require_version('IBus', '1.0') 
before import to ensure that the right version gets loaded.
  from gi.repository import IBus
Traceback (most recent call last):
  File "/usr/share/ibus-braille-preferences/main.py", line 265, in 
ibus_sharada_braille_preferences()
  File "/usr/share/ibus-braille-preferences/main.py", line 36, in __init__

self.guibuilder.add_from_file("/usr/share/ibus-braille-preferences/ui.glade")
gi.repository.GLib.GError: gtk-builder-error-quark: 
/usr/share/ibus-braille-preferences/ui.glade:75:52 Invalid property: 
GtkBox.border_width (11)
```

I suspect PyGIWarning is the clue: This probably requires GTK+ 3.x, not
4.x, but it doesn't specify what it needs. Seems line 26 is also going
to cause a potential problem. I suspect judicious use of the following
three lines added to a couple source files will fix it:

```python
from gi import require_version
require_version('Gtk', '3.0')
require_version('IBus', '1.0')
```

At least, that was all it took to get the preferences applet to run.
Didn't test the abbreviation or language editor with similar patches.

-- System Information:
Debian Release: bookworm/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 6.1.0-3-amd64 (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages ibus-braille depends on:
ii  gir1.2-ibus-1.0   1.5.27-4
ii  gir1.2-pango-1.0  1.50.12+ds-1
ii  python3   3.11.1-3
ii  python3-espeak0.5-5+b1
ii  python3-gi3.42.2-3+b1
ii  python3-louis 3.24.0-1

Versions of packages ibus-braille recommends:
ii  python3-speechd  0.11.4-2

ibus-braille suggests no packages.

-- no debconf information

Bug#1028923: RFP: duelyst -- digital collectible card and turn-based strategy hybrid game

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: j...@nahmias.net, debian-ga...@lists.debian.org, 
pkg-javascript-de...@lists.alioth.debian.org

* Package name: duelyst
  Version : 1.97.11
  Upstream Author : Counterplay Games
* URL : https://github.com/open-duelyst/duelyst
* License : CC0
  Programming Lang: JavaScript
  Description : digital collectible card and turn-based strategy hybrid game

In Duelyst, two players battle across a tactical battlefield, taking turns in
which they play and position minions and spells, represented by cards drawn
from a custom built deck, until one of the players eliminates the enemy
general. There are six factions in Duelyst, each with its own unique
characteristics that affect strategy and gameplay of the decks the player
builds.

The game offers a practice mode, puzzle-like challenges, a ranked season ladder
and a draft-style tournament mode.

Game client, server, and assets have all open-sourced.

Bug#1024457: apt changelog failure

[Joseph Carter]

I don't know that it raises the priority to "serious", but by way of reason 
this one kind of needs to be fixed: apt's behavior has changed quite 
substantially over the past couple of decades or so. What version first 
supported each one? That's what the changelog is for, and arguably it ought to 
be somewhere you can get at it easily as an end user. The instructions for 
where to get it lead to themselves.

I'd put this one in a should vs. must category for fixes, though I understand 
time is a somewhat limited commodity.

Joseph

Bug#1023992: Please build Corsair Commander Pro module

[T. Joseph Carter]

Package: src:linux
Version: 6.0.8-1
Severity: normal

Request building CONFIG_SENSORS_CORSAIR_CPRO module:

/boot/config-6.0.0-2-amd64:# CONFIG_SENSORS_CORSAIR_CPRO is not set
/boot/config-6.0.0-3-amd64:# CONFIG_SENSORS_CORSAIR_CPRO is not set
/boot/config-6.0.0-4-amd64:# CONFIG_SENSORS_CORSAIR_CPRO is not set

This module provides hwmon functions for my CPU cooler.

Thanks!

-- Package-specific info:
** Kernel log: boot messages should be attached

** Model information
sys_vendor: ASUS
product_name: System Product Name
product_version: System Version
chassis_vendor: Default string
chassis_version: Default string
bios_vendor: American Megatrends Inc.
bios_version: 4204
board_vendor: ASUSTeK COMPUTER INC.
board_name: TUF GAMING X570-PRO WIFI II
board_version: Rev X.0x

** PCI devices:
00:00.0 Host bridge [0600]: Advanced Micro Devices, Inc. [AMD] Starship/Matisse 
Root Complex [1022:1480]
Subsystem: ASUSTeK Computer Inc. Starship/Matisse Root Complex 
[1043:87c0]
Control: I/O- Mem- BusMaster- SpecCycle- MemWINV- VGASnoop- ParErr- 
Stepping- SERR- FastB2B- DisINTx-
Status: Cap- 66MHz- UDF- FastB2B- ParErr- DEVSEL=fast >TAbort- SERR- TAbort- SERR- 

00:01.0 Host bridge [0600]: Advanced Micro Devices, Inc. [AMD] Starship/Matisse 
PCIe Dummy Host Bridge [1022:1482]
Control: I/O- Mem- BusMaster- SpecCycle- MemWINV- VGASnoop- ParErr- 
Stepping- SERR- FastB2B- DisINTx-
Status: Cap- 66MHz- UDF- FastB2B- ParErr- DEVSEL=fast >TAbort- SERR- TAbort- SERR- TAbort- Reset- FastB2B-
PriDiscTmr- SecDiscTmr- DiscTmrStat- DiscTmrSERREn-
Capabilities: 
Kernel driver in use: pcieport

00:01.2 PCI bridge [0604]: Advanced Micro Devices, Inc. [AMD] Starship/Matisse 
GPP Bridge [1022:1483] (prog-if 00 [Normal decode])
Subsystem: ASUSTeK Computer Inc. Starship/Matisse GPP Bridge [1043:87c0]
Control: I/O+ Mem+ BusMaster+ SpecCycle- MemWINV- VGASnoop- ParErr- 
Stepping- SERR- FastB2B- DisINTx+
Status: Cap+ 66MHz- UDF- FastB2B- ParErr- DEVSEL=fast >TAbort- SERR- TAbort- Reset- FastB2B-
PriDiscTmr- SecDiscTmr- DiscTmrStat- DiscTmrSERREn-
Capabilities: 
Kernel driver in use: pcieport

00:02.0 Host bridge [0600]: Advanced Micro Devices, Inc. [AMD] Starship/Matisse 
PCIe Dummy Host Bridge [1022:1482]
DeviceName:  Onboard IGD
Control: I/O- Mem- BusMaster- SpecCycle- MemWINV- VGASnoop- ParErr- 
Stepping- SERR- FastB2B- DisINTx-
Status: Cap- 66MHz- UDF- FastB2B- ParErr- DEVSEL=fast >TAbort- SERR- TAbort- SERR- TAbort- SERR- TAbort- Reset- FastB2B-
PriDiscTmr- SecDiscTmr- DiscTmrStat- DiscTmrSERREn-
Capabilities: 
Kernel driver in use: pcieport

00:04.0 Host bridge [0600]: Advanced Micro Devices, Inc. [AMD] Starship/Matisse 
PCIe Dummy Host Bridge [1022:1482]
Control: I/O- Mem- BusMaster- SpecCycle- MemWINV- VGASnoop- ParErr- 
Stepping- SERR- FastB2B- DisINTx-
Status: Cap- 66MHz- UDF- FastB2B- ParErr- DEVSEL=fast >TAbort- SERR- TAbort- SERR- TAbort- SERR- TAbort- SERR- TAbort- Reset- FastB2B-
PriDiscTmr- SecDiscTmr- DiscTmrStat- DiscTmrSERREn-
Capabilities: 
Kernel driver in use: pcieport

00:08.0 Host bridge [0600]: Advanced Micro Devices, Inc. [AMD] Starship/Matisse 
PCIe Dummy Host Bridge [1022:1482]
Control: I/O- Mem- BusMaster- SpecCycle- MemWINV- VGASnoop- ParErr- 
Stepping- SERR- FastB2B- DisINTx-
Status: Cap- 66MHz- UDF- FastB2B- ParErr- DEVSEL=fast >TAbort- SERR- TAbort- SERR- TAbort- Reset- FastB2B-
PriDiscTmr- SecDiscTmr- DiscTmrStat- DiscTmrSERREn-
Capabilities: 
Kernel driver in use: pcieport

00:14.0 SMBus [0c05]: Advanced Micro Devices, Inc. [AMD] FCH SMBus Controller 
[1022:790b] (rev 61)
Subsystem: ASUSTeK Computer Inc. FCH SMBus Controller [1043:87c0]
Control: I/O+ Mem+ BusMaster- SpecCycle- MemWINV- VGASnoop- ParErr- 
Stepping- SERR- FastB2B- DisINTx+
Status: Cap- 66MHz+ UDF- FastB2B- ParErr- DEVSEL=medium >TAbort- 
SERR- TAbort- 
SERR- TAbort- SERR- TAbort- SERR- TAbort- SERR- TAbort- SERR- TAbort- SERR- TAbort- SERR- TAbort- SERR- TAbort- SERR- TAbort- SERR- 
Kernel driver in use: nvme
Kernel modules: nvme

02:00.0 PCI bridge [0604]: Advanced Micro Devices, Inc. [AMD] Matisse Switch 
Upstream [1022:57ad] (prog-if 00 [Normal decode])
Control: I/O+ Mem+ BusMaster+ SpecCycle- MemWINV- VGASnoop- ParErr- 
Stepping- SERR- FastB2B- DisINTx-
Status: Cap+ 66MHz- UDF- FastB2B- ParErr- DEVSEL=fast >TAbort- SERR- TAbort- Reset- FastB2B-
PriDiscTmr- SecDiscTmr- DiscTmrStat- DiscTmrSERREn-
Capabilities: 
Kernel driver in use: pcieport

03:01.0 PCI bridge [0604]: Advanced Micro Devices, Inc. [AMD] Matisse PCIe GPP 
Bridge [1022:57a3] (prog-if 00 [Normal decode])
Subsystem: ASUSTeK Computer Inc. Matisse PCIe GPP Bridge [1043:87c0]
Control: I/O+ Mem+ BusMaster+ 

Bug#778849: Is "wishlist" appropriate for this?

[Joseph Carter]

I have yet to investigate intrigeri's suggestions from 2017, however I would 
suggest that this is something that needs to be upgraded from wishlist in 2022, 
and here's the reason simply enough:

root@aki:~# nvme smart-log /dev/nvme0
Smart Log for NVME device:nvme0 namespace-id:
[..]
unsafe_shutdowns: 106
[..]
num_err_log_entries : 284
[..]
root@aki:~# nvme smart-log /dev/nvme1
Smart Log for NVME device:nvme1 namespace-id:
[..]
unsafe_shutdowns: 121
[..]
num_err_log_entries : 291
[..]

Given that the frequency and number of SMART errors are deemed an indicator of 
drive health, that's bad. Also, improper shutdown on NVMe devices could be 
particularly problematic because they have caches and wear leveling and cleanup 
cycles that could happen any time the drive is "running" until a shutdown 
command is issued and responded to. There might actually be some risk of data 
corruption/loss. (I doubt it with commodity consumer SSDs, but Debian isn't 
just run on those.)

For a few weeks, we tried on #debian to sort out the cause of the above errors. 
We thought NVMe drive quirk Linux doesn't support? Maybe Linux is issuing the 
shutdown command and not waiting long enough? There's Google bait suggesting 
that's a problem, and there's some BS factoids in dpkg I should remove the next 
time I connect to OFTC describing the "solution" which I've since discovered 
doesn't work. This was hard to test because obviously no logger is running at 
this point of the shutdown process.

The root cause of the problem isn't an unknown quirk, it's that I have LVM on 
LUKS. (See what I did there?) Connected a drive with an unencrypted Debian 
system on it that mounted my main installation's /boot and even the LUKS/LVM 
root somewhere and never got a single unsafe shutdown despite multiple 
reboots/shutdowns. Because that temp install's root was not on LVM on LUKS 
backing.

Dracut is a suboptimal solution. In part because after three days of trying to 
get it to boot my system, I've yet to see it do so, and because while there's 
lots of documentation for it, it's for other distributions, it's wrong, it's 
obsolete, or it's misleading. Including one rantthrough from 2017 that offers a 
profanity-laden survey of most of the others and why they don't work for Debian 
systems or at all.

As far as I can tell you either need to significantly modify grub or switch to 
systemd-boot or set up Dracut to generate an EFI executable blob using files 
that aren't available on a Debian system or throw up my hands and go use Fedora 
until I understand Dracut enough to try and use it on Debian. Or something. 
Again: What sparse documentation exists is spotty, inconsistent, and at least 
five years out of date. Dracut is not how Debian does things, just like OpenRC 
and rEFInd are not how Debian does things. That's all there if you want to set 
it up, but you're not going to find many Debian resources on using it.

I think unsafe shutdowns of NVMe devices is actually a bug. And I think it 
could cause data loss or corruption on more advnaced hardware than I'm using. 
There's a few options for addressing it and most of them become problems beyond 
initramfs-tools' scope. But this seven year old bug might be the path of least 
resistance.

Joseph

Bug#1020961: RFP: crontab-ui -- web interface for managing scheduled jobs (crontab)

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: j...@nahmias.net, a...@adobe.com, Debian Javascript Maintainers 


* Package name: crontab-ui
  Version : 0.3.16
  Upstream Author : Suresh Alse
* URL : https://github.com/alseambusher/crontab-ui
* License : MIT
  Programming Lang: JavaScript
  Description : web interface for managing scheduled jobs (crontab)

Key features of Crontab UI:
 *  Easy setup. You can even import from existing crontab.
 *  Safe adding, deleting or pausing jobs. Easy to maintain hundreds of jobs.
 *  Backup your crontabs.
 *  Export crontab and deploy on other machines without much hassle.
 *  Error log support.
 *  Mailing and hooks support.

Bug#1020740: cpu-x needs to be recompiled against current libpci

[T. Joseph Carter]

Package: cpu-x
Version: 4.3.1-1
Severity: important
X-Debbugs-Cc: Mike Gabriel 

Cc to Mike Martin as Martin's email address no longer works because he
no longer works for Canonical:

https://www.omgubuntu.co.uk/2021/02/martin-wimpress-ubuntu-desktop-lead-leaving-canonical

If there's another email address to reach him at, I don't know it.

When I run cpu-x, messages about the wrong version of libpci being used
are printed:

tjcarter@aki:~$ cpu-x
CPU-X:core.c:674: pci_access is not properly initialized: it is a common issue 
when CPU-X was built with a lower libpci version.
Check that libpci 3.7.0 library is present on your system. Otherwise, please 
rebuild CPU-X.
No kernel driver in use for graphic card at path (null)
Your GPU user mode driver is unknown: 4.6 (Compatibility Profile) Mesa 
22.2.0-rc3

The message even describes how to fix it: Recompile against the current
libpci version. I did so, and:

tjcarter@aki:~/Source/cpu-x/cpu-x-4.3.1$ obj-x86_64-linux-gnu/output/bin/cpu-x 
--dump
There is no platform with OpenCL support (CL_PLATFORM_NOT_FOUND_KHR)
  >> CPU <<

* Processor *
  Vendor: AMD
   Code Name: Ryzen 7 (Matisse)
:

:
Swap: 10.24 GiB / 65.00 GiB


  >> Graphics <<

* Card 0 *
  Vendor: AMD
  Driver: amdgpu
 UMD Version: Mesa 22.2.0-rc3
:


Perhaps libpci needs to be tightened up to ensure that programs like
cpu-x get rebuilt? It appears the ABI has changed incompatibly without
bumping the soname, and this happens often enough to warrant an
explanation of how to fix it in the downstream program. (That's gotta be
frustrating for the devs!)

-- System Information:
Debian Release: bookworm/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.19.0-1-amd64 (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, 
TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages cpu-x depends on:
ii  dconf-gsettings-backend [gsettings-backend]  0.40.0-3
ii  libc62.34-8
ii  libcairo21.16.0-6
ii  libcpuid15   0.5.1+repack1-1+b1
ii  libgdk-pixbuf-2.0-0  2.42.9+dfsg-1
ii  libgl1   1.5.0-1
ii  libglfw3 3.3.8-1
ii  libglib2.0-0 2.74.0-1
ii  libgtk-3-0   3.24.34-3
ii  libncursesw6 6.3+20220423-2
ii  libpango-1.0-0   1.50.10+ds-1
ii  libpangocairo-1.0-0  1.50.10+ds-1
ii  libpci3  1:3.8.0-1
ii  libprocps8   2:3.3.17-7+b1
ii  libtinfo66.3+20220423-2
ii  procps   2:3.3.17-7+b1

cpu-x recommends no packages.

cpu-x suggests no packages.

-- no debconf information

Bug#1016567: python3-wtforms: missing compiled message files

[Joseph Nahmias]

Package: python3-wtforms
Version: 2.2.1-1
Severity: normal
X-Debbugs-Cc: j...@nahmias.net

Hello,

It seems that the wtforms.mo compiled gettext message catalogs are no
longer being generated and distributed in the python3-wtforms package.
They do exist in 2.1-1 (stretch). This causes an issue if a python
program which uses wtforms tries to respect the declared locale. For
example, I see the following error in the wtforms-alchemy testsuite:

 TestModelFormFactory.test_class_meta_wtforms2 _

self = 

def test_class_meta_wtforms2(self):
if LooseVersion(wtforms.__version__) < LooseVersion('2'):
return  # skip test for wtforms < 2

self.init()

class SomeForm(Form):
class Meta:
locales = ['fr']
foo = 9

class OtherForm(SomeForm):
class Meta:
pass

class TestCustomBase(model_form_factory(SomeForm)):
class Meta:
model = self.ModelTest

>   form = TestCustomBase()

tests/test_model_form_factory.py:112: 
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ 
/usr/lib/python3/dist-packages/wtforms/form.py:212: in __call__
return type.__call__(cls, *args, **kwargs)
wtforms_alchemy/__init__.py:290: in __init__
super(ModelForm, self).__init__(*args, **kwargs)
/usr/lib/python3/dist-packages/wtforms/form.py:272: in __init__
super(Form, self).__init__(self._unbound_fields, meta=meta_obj, 
prefix=prefix)
/usr/lib/python3/dist-packages/wtforms/form.py:44: in __init__
translations = self._get_translations()
/usr/lib/python3/dist-packages/wtforms/form.py:85: in _get_translations
return self.meta.get_translations(self)
/usr/lib/python3/dist-packages/wtforms/meta.py:108: in get_translations
translations = self.translations_cache[locales] = 
i18n.get_translations(locales)
/usr/lib/python3/dist-packages/wtforms/i18n.py:37: in get_translations
translations = getter(languages)
/usr/lib/python3/dist-packages/wtforms/i18n.py:25: in 
get_builtin_gnu_translations
return gettext.translation('wtforms', messages_path(), languages)
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ 

domain = 'wtforms', localedir = '/usr/lib/python3/dist-packages/wtforms/locale'
languages = ('fr',), class_ = 
fallback = False, codeset = ['unspecified']

def translation(domain, localedir=None, languages=None,
class_=None, fallback=False, codeset=_unspecified):
if class_ is None:
class_ = GNUTranslations
mofiles = find(domain, localedir, languages, all=True)
if not mofiles:
if fallback:
return NullTranslations()
from errno import ENOENT
>   raise FileNotFoundError(ENOENT,
'No translation file found for domain', 
domain)
E   FileNotFoundError: [Errno 2] No translation file found for domain: 
'wtforms'

/usr/lib/python3.10/gettext.py:607: FileNotFoundError


Please add this back into the package.
Thanks,
--Joe

Bug#1016507: ITP: python-intervals -- tools for handling intervals (ranges of comparable objects) in python

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, debian-pyt...@lists.debian.org, 
j...@nahmias.net, kon...@fastmonkeys.com

* Package name: python-intervals
  Version : 0.9.2
  Upstream Author : Konsta Vesterinen 
* URL : https://github.com/kvesteri/intervals
* License : BSD
  Programming Lang: Python
  Description : tools for handling intervals (ranges of comparable objects) 
in python

 This package provides objects, methods, constructors and functions for
 representing and manipulating mathematical intervals. Included are
 factory methods for creating intervals objects, comparison operators,
 set operators, and arithmetic functions.

Bug#1016504: ITP: wtforms-components -- various additional fields, validators and widgets for WTForms

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, debian-pyt...@lists.debian.org, 
j...@nahmias.net, kon...@fastmonkeys.com

* Package name: wtforms-components
  Version : 0.10.5
  Upstream Author : Konsta Vesterinen 
* URL : https://github.com/kvesteri/wtforms-components
* License : BSD
  Programming Lang: Python
  Description : various additional fields, validators and widgets for 
WTForms

 WTForms-Components provides enhanced versions of some WTForms HTML5
 fields and some additional new fields and validatiors.
 These enhancements include:
 .
  * DateTimeField
  * IntegerField
  * SelectField
  * SelectMultipleField
  * ColorField
  * NumberRangeField
  * PassiveHiddenField
  * Read-only fields
  * DateRange validator
  * Email validator
  * If validator
  * Unique Validator

Bug#1016462: ITP: wtforms-test -- unit test helpers for WTForms forms

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, debian-pyt...@lists.debian.org, 
j...@nahmias.net, kon...@fastmonkeys.com

* Package name: wtforms-test
  Version : 0.1.1
  Upstream Author : Konsta Vesterinen 
* URL : https://github.com/kvesteri/wtforms-test
* License : BSD
  Programming Lang: Python
  Description : pytest helpers for WTForms

 WTForms-Test provides various pytest unittest helpers for testing WTForms
 based forms. Includes checks for a field's existence on a form, and various
 attributes on a field such as: validators, min/max length, description,
 optional/required, etc...

Bug#1016461: ITP: wtforms-alchemy -- Tools for creating WTForms forms from SQLAlchemy models

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, debian-pyt...@lists.debian.org, 
j...@nahmias.net, kon...@fastmonkeys.com

* Package name: wtforms-alchemy
  Version : 0.18.0
  Upstream Author : Konsta Vesterinen 
* URL : https://github.com/kvesteri/wtforms-alchemy
* License : BSD
  Programming Lang: Python
  Description : Tools for creating WTForms forms from SQLAlchemy models

 WTForms-Alchemy provides a helper class that let you create a Form class
 from a SQLAlchemy model. It does not try to replace all the functionality
 of wtforms.ext.sqlalchemy, only the model_form function of
 wtforms.ext.sqlalchemy by a much better solution. Other functionality of
 .ext.sqlalchemy such as QuerySelectField and QuerySelectMultipleField can be
 used along with WTForms-Alchemy.
 .
 The benefits of WTForms-Alchemy ModelForm over wtforms.ext.sqlachemy’s
 model_form include:
 .
  * Provides explicit declaration of ModelForms (much easier to override
certain columns)
  * Form generation supports Unique and NumberRange validators
  * Form inheritance support (along with form configuration inheritance)
  * Automatic SelectField type coercing based on underlying column type
  * By default uses wtforms_components SelectField for fields with choices.
This field understands None values and renders nested datastructures as
optgroups.
  * Provides better Unique validator
  * Supports custom user defined types as well as type decorators
  * Supports SQLAlchemy-Utils datatypes
  * Supports ModelForm model relations population
  * Smarter field exclusion
  * Smarter field conversion
  * Understands join table inheritance
  * Better configuration

Bug#1016460: ITP: wtforms-json -- smart json support for WTForms

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, debian-pyt...@lists.debian.org, 
kon...@fastmonkeys.com, j...@nahmias.net

* Package name: wtforms-json
  Version : 0.3.5
  Upstream Author : Konsta Vesterinen 
* URL : https://github.com/kvesteri/wtforms-json
* License : BSD
  Programming Lang: Python
  Description : smart json support for WTForms

 WTForms-JSON is a WTForms extension for JSON data handling. It:
 .
  * Adds support for booleans (WTForms doesn’t know how to handle
False boolean values)
  * Adds support for None type FormField values
  * Adds support for None type Field values
  * Support for patch data requests with patch_data Form property
  * Function for converting JSON data into dict that WTForms
understands (flatten_json() function)

This package is a dependency for superset.
I plan to maintain this as part of the Debian Python Team (DPT).

Bug#1016172: RFP: snapdrop -- local file sharing webapp

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: j...@nahmias.net, pkg-javascript-de...@lists.alioth.debian.org

* Package name: snapdrop
  Version : 0
  Upstream Author : Robin Linus
* URL : https://github.com/RobinLinus/snapdrop
* License : GPL3
  Programming Lang: Javascript
  Description : local file sharing webapp

Snapdrop enables peer-to-peer filesharing using the users' browser.

Bug#1016147: lintian: false positive missing-build-dependency-for-dh-addon python3 when using dh-sequence-python3

[Joseph Nahmias]

Package: lintian
Version: 2.115.1~bpo11+1
Severity: normal
X-Debbugs-Cc: j...@nahmias.net

Hello,

A common way to use the pybuild debhelper addon is to build-dep on
dh-sequence-python3, which is provided by the dh-python package. Please
update the test to accept this as a valid fulfillment of the requirement.

One package that I see this error with is flask-appbuilder 4.1.3+ds-1.

Thanks,
--Joe

Bug#362012: tdsodbc: improved debconf handling for driver registration

[Joseph Nahmias]

Package: tdsodbc
Version: 1.3.6-1.1
Followup-For: Bug #362012
X-Debbugs-Cc: j...@nahmias.net

Hello,

I recently got bit by this when setting up a new machine to connect to MSSQL.

On Tue, 11 Apr 2006 14:02:02 -0700 Steve Langasek  wrote:
> I agree that the ODBC driver handling needs to be reworked.  I would like
> the drivers to be managed by default, but there are currently some bugs in
> the handling and I also have to make sure I'm handling this in a
> policy-compliant manner.

It's been a while now, any updates?

Can you list your specific concerns?
I'd be happy to work on a patch for this if I knew what would be acceptable.

Thanks,
--Joe

Bug#1014408: RFP: echarts -- powerful, interactive charting and data visualization library for browser

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: j...@nahmias.net, d...@echarts.apache.org, 
pkg-javascript-de...@lists.alioth.debian.org

* Package name: echarts
  Version : 5.3.3
  Upstream Author : d...@echarts.apache.org
* URL : https://echarts.apache.org/
* License : Apache 2.0
  Programming Lang: JS / Typescript
  Description : powerful, interactive charting and data visualization 
library for browser

Apache ECharts is a free, powerful charting and visualization library offering
an easy way of adding intuitive, interactive, and highly customizable charts to
your commercial products. It is written in pure JavaScript and based on
zrender, which is a whole new lightweight canvas library.

Apache EChartsTM is an open-sourced JavaScript visualization tool, which can
run fluently on PC and mobile devices. It is compatible with most modern Web
Browsers, e.g., IE9/10/11, Chrome, Firefox, Safari and so on. ECharts depends
on ZRender, a graphic rendering engine, to create intuitive, interactive, and
highly-customizable charts.

Bug#1014316: Unexpected behavior at login prompt

[Joseph Carter]

Package: kmscon
Version: 9.0.0-1+b1
Severity: minor

I recently wound up with an ulltrawide monitor that is effectively a 4k
screen with a haircut at 1600 lines … and I'm legally blind. So let me
say that I greatly appreciate this package and the ease with which I
specified a custom DPI to get readable fonts at the console—thank you
for packaging it.

I also appreciate the standard getty fallback. The other distribution
thus far that seems to have kmscon as an option is arch (because of
course it does) and … they describe configuring a specific tty for getty
in case kmscon fails. An automatic fallback seems more elegant.

That said, it behaves a bit strangely prior to logging in, and these
things cause minor usability issues. Chief among these is that backspace
doesn't work. My password is deliberately not short (as in xkcd 936 not
short), and I sometimes mistype it. I've learned that the backspace key
does not work at this login prompt.

It also doesn't display /etc/issue which might be a symptom of the same
issue, being a different login process than is typically used by Debian
at the console? There might be a workaround, in that case, to run the
more traditional login process under kmscon, but I haven't really
researched that yet and that wouldn't change the default anyway, so a
report is still warranted IMO.

-- System Information:
Debian Release: bookworm/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.18.0-2-amd64 (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_WARN, TAINT_OOT_MODULE, 
TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages kmscon depends on:
ii  libc6  2.33-7
ii  libdrm22.4.110-1
ii  libegl11.4.0-1
ii  libgbm122.0.5-1
ii  libgles2   1.4.0-1
ii  libglib2.0-0   2.72.3-1
ii  libpango-1.0-0 1.50.7+ds-1
ii  libpangoft2-1.0-0  1.50.7+ds-1
ii  libpixman-1-0  0.40.0-1
ii  libsystemd0251.2-7
ii  libtsm44.0.2-0.3
ii  libudev1   251.2-7
ii  libxkbcommon0  1.4.0-1

kmscon recommends no packages.

kmscon suggests no packages.

-- no debconf information

Bug#1013962: please include serial module in signed grub-efi package

[Joseph Nahmias]

Package: grub-efi-amd64-bin
Version: 2.06-3
Severity: wishlist
X-Debbugs-Cc: j...@nahmias.net

Hello,

I was trying to debug why the grub menu was not showing up on my VMs
(emulated) serial console. I ended up dropping to the grub command-line
and running:

  grub> serial --unit=0 --speed=115200 --word=8 --parity=no --stop=1
  error: prohibited by secure boot policy.

Please add the grub serial module to enable this important
functionality when using secure boot!

Much appreciated,
--Joe


-- Package-specific info:

-- System Information:
Debian Release: bookworm/sid
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 
'unstable'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 5.18.0-2-amd64 (SMP w/1 CPU thread; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages grub-efi-amd64-bin depends on:
ii  grub-common  2.06-3

Versions of packages grub-efi-amd64-bin recommends:
ii  efibootmgr 17-1
ii  grub-efi-amd64-signed  1+2.06+3

grub-efi-amd64-bin suggests no packages.

-- no debconf information

Bug#1013309: Confirmed: happens on Debian

[Joseph Carter]

   :
Processing triggers for hicolor-icon-theme (0.17-2) ...
Processing triggers for doc-base (0.11.1) ...
Processing 2 changed doc-base files, 2 added doc-base files...
Processing triggers for mate-menus (1.26.0-3) ...
Processing triggers for libc-bin (2.33-7) ...
Processing triggers for man-db (2.10.2-1) ...
Processing triggers for dbus (1.14.0-1) ...
Processing triggers for mailcap (3.70+nmu1) ...
Processing triggers for libvlc-bin:amd64 (3.0.17.4-4) ...
Segmentation fault
WARNING: Regenerating VLC plugin cache failed.
Please run '/usr/lib/x86_64-linux-gnu/vlc/vlc-cache-gen 
/usr/lib/x86_64-linux-gnu/vlc/plugins' manually.
Press Return to continue, 'q' followed by Return to quit.
tjcarter@aki:~$ lsb_release -a
No LSB modules are available.
Distributor ID: Debian
Description:Debian GNU/Linux bookworm/sid
Release:unstable
Codename:   sid
tjcarter@aki:~$ sudo /usr/lib/x86_64-linux-gnu/vlc/vlc-cache-gen 
/usr/lib/x86_64-linux-gnu/vlc/plugins
Segmentation fault

Happens on Debian too.

Joseph

Bug#1012455: ITP: gregwar-captcha -- PHP library to generate CAPTCHAs

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, j...@nahmias.net, 
pkg-php-p...@lists.alioth.debian.org, Grégoire Passault , 
Jeremy Livingston 

* Package name: gregwar-captcha
  Version : 1.1.9
  Upstream Author : Grégoire Passault 
  Upstream Author : Jeremy Livingston 
* URL : https://github.com/Gregwar/Captcha
* License : MIT
  Programming Lang: PHP
  Description : PHP library to generate CAPTCHAs
 The gregwar/captcha package offers a library for generating and validating a
 Completely Automated Public Turing test to tell Computers and Humans Apart
 (aka CAPTCHA).

Dependency of KanBoard.
Will be maintained within PHP Team.

I will remove the embedded fonts and depend on some that are already packaged
in Debian.

Bug#1012403: python3-python-flask-jwt-extended,python3-flask-jwt-extended: duplicate packages

[Joseph Nahmias]

Control: retitle -1 RM: flask-jwt-extended -- ROM; duplicate pacakge

On Mon, Jun 06, 2022 at 07:19:42PM -0300, Emmanuel Arias wrote:
> Hi,
> 
> I cc Joseph.
> 
> Joseph, flask-jwt-extended is in Debian from some time ago
> https://tracker.debian.org/pkg/python-flask-jwt-extended.
> 
> On Mon, Jun 6, 2022 at 11:15 AM Andreas Beckmann  wrote:
> 
> > Package: python3-python-flask-jwt-extended,python3-flask-jwt-extended
> > Version: 4.4.0-1
> > Severity: serious
> >
> > looks like a duplicate package was just uploaded to the archive.
> >
> > Andreas
> >
> >

Sorry, don't know how I missed this. Please go ahead and RM my package.
--Joe

Bug#1012239: ITP: christianriesen-otp -- PHP library to check HOTP and TOTP one time passwords

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, j...@nahmias.net, 
chris.rie...@gmail.com, pkg-php-p...@lists.alioth.debian.org

* Package name: christianriesen-otp
  Version : 1.4.3
  Upstream Author : Christian Riesen 
* URL : https://github.com/ChristianRiesen/otp
* License : MIT
  Programming Lang: PHP
  Description : PHP library to check HOTP and TOTP one time passwords

 Implements hotp according to RFC4226 and totp according to RFC6238 (only
 sha1 algorithm). Once you have a secret, you can use it directly in this
 class to create the passwords themselves (mainly for debugging use) or use
 the check functions to safely check the validity of the keys. The checkTotp
 function also includes a helper to battle timedrift.
 .
 Also includes a static GoogleAuthenticator function class to generate a
 correct url for the QR code, so you can easy scan it with your device.
 Google Authenticator is available as application for iPhone and Android.
 This removes the burden to create such an app from the developers of
 websites by using this set of classes.

Dependency of KanBoard.
Will be maintained within PHP Team.

Bug#1012182: ITP: eluceo-ical -- PHP library to create iCal calendars and ICS files

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, j...@nahmias.net, 
pkg-php-p...@lists.alioth.debian.org, mar...@eluceo.de

* Package name: eluceo-ical
  Version : 0.16.1
  Upstream Author : Markus Poerschke 
* URL : https://ical.poerschke.nrw/
* License : MIT
  Programming Lang: PHP
  Description : PHP library to create iCal calendars and ICS files

This package offers a abstraction layer for creating iCalendars. The output
will follow RFC 5545 as best as possible.

The following components are supported at this time:
.
VCALENDAR
VEVENT
VALARM
VTIMEZONE

Dependency of KanBoard.
Will be maintained within PHP Team.

Bug#1012159: ITP: matthiasmullie-minify -- concatenates and minifies CSS and JavaScript code

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, j...@nahmias.net, 
pkg-php-p...@lists.alioth.debian.org, min...@mullie.eu

* Package name: matthiasmullie-minify
  Version : 1.3.68
  Upstream Author : Matthias Mullie 
* URL : https://github.com/matthiasmullie/minify
* License : MIT
  Programming Lang: PHP
  Description : concatenates and minifies CSS and JavaScript code

 Removes whitespace, strips comments, combines files (incl. @import statements
 and small assets in CSS files), and optimizes/shortens a few common
 programming patterns.

Dependency of KanBoard.
Will be maintained within PHP Team.

Bug#1012157: ITP: matthiasmullie-path-converter -- PHP library to generate relative path from one file to another

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, j...@nahmias.net, 
pathconver...@mullie.eu, pkg-php-p...@lists.alioth.debian.org

* Package name: matthiasmullie-path-converter
  Version : 1.1.3
  Upstream Author : Matthias Mullie 
* URL : https://github.com/matthiasmullie/path-converter
* License : MIT
  Programming Lang: PHP
  Description : PHP library to generate relative path from one file to 
another

 This library for PHP calculates the relative path traversal from one file
 to another.

Dependency of KanBoard.
Will be maintained within PHP Team.

Bug#989085: Description suggestion

[Joseph Carter]

Suggest something like…

Description: Micro-compositor for game scaling
 Gamescope wraps your games to give them scaling and fullscreen options. It
 provides a Wayland compositor to your games, but gamescope runs under both
 Wayland and X.org.
 .
 Your game sees a virtual display at the resolution you specified. You see a
 scaled view in a window or fullscreen. This is useful when either the game or
 your system do not permit running the game at native window/screen sizes. You
 can also use integer scaling to keep your pixels sharp and pixelated.

I think this should resolve any confusion as to whether or not a person wants 
to install this.

Joseph

Bug#1011321: ITP: flask-jwt-extended -- Flask extension that provides JWT support

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, debian-pyt...@lists.debian.org, 
j...@nahmias.net, lily.gilb...@hey.com

* Package name: flask-jwt-extended
  Version : 4.4.0
  Upstream Author : Lily Acadia Gilbert 
* URL : https://github.com/vimalloc/flask-jwt-extended
* License : Expat
  Programming Lang: Python
  Description : Flask extension that provides JWT support

 Flask-JWT-Extended not only adds support for using JSON Web Tokens (JWT) to
 Flask for protecting routes, but also many helpful (and optional) features
 built in to make working with JSON Web Tokens easier. These include:
 .
  * Adding custom claims to JSON Web Tokens
  * Automatic user loading (current_user).
  * Custom claims validation on received tokens
  * Refresh tokens
  * First class support for fresh tokens for making sensitive changes.
  * Token revoking/blocklisting
  * Storing tokens in cookies and CSRF protection


Needed as a dependency of Flask-AppBuilder.
I plan to maintain this as part of the Debian Python Team (DPT).

Bug#1010902: RFP: mlb-statsapi -- python module wrapping the MLB Statistics API

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: j...@nahmias.net, t...@toddrob.com, debian-pyt...@lists.debian.org

* Package name: mlb-statsapi
  Version : 1.4.2
  Upstream Author : Todd Roberts 
* URL : https://github.com/toddrob99/MLB-StatsAPI
* License : GPL-3
  Programming Lang: Python
  Description : python module wrapping the MLB Statistics API

Good candidate for the Debian Python Team [DPT]

Bug#1009695: does not follow symlinks

[Joseph Nahmias]

Package: eyed3
Version: 0.8.10-4
Severity: normal
File: /usr/bin/eyeD3
X-Debbugs-Cc: j...@nahmias.net

Hello,

eyeD3 works properly when given a direct path to an MP3 file. However, if you
have a symlink to an MP3, eyeD3 fails to follow the symlink and doesn't read
the data from the linked to MP3 file.  For example:

$ eyeD3 -Q test.mp3
/tmp/foobar/test.mp3[ 7.30 MB ]

Time: 03:02 MPEG1, Layer III[ 320 kb/s @ 44100 Hz - Joint stereo ]

ID3 v2.3: 7 frames

$ ln -s test.mp3 link.mp3
$ ls -laFq link.mp3
lrwxrwxrwx 1 joe joe 8 Apr 14 07:59 link.mp3 -> test.mp3
$ eyeD3 -l debug link.mp3
eyed3:DEBUG: command line args: Namespace(log_level=[['debug']], 
debug_profile=False, debug_pdb=False, excludes=None, fs_encoding='utf-8', 
paths=['link.mp3'], list_plugins=False, plugin=, config=None, backup=False, quiet=False, no_color=False, 
no_config=False, artist=None, album=None, album_artist=None, title=None, 
track=None, track_total=None, track_offset=None, composer=None, disc_num=None, 
disc_total=None, genre=None, non_std_genres=False, release_year=None, 
simple_comment=None, rename_pattern=None, tag_version=(3, None, None), 
convert_version=None, release_date=None, orig_release_date=None, 
recording_date=None, encoding_date=None, tagging_date=None, publisher=None, 
play_count=None, bpm=None, unique_file_ids=[], comments=[], remove_comment=[], 
remove_all_comments=False, lyrics=[], remove_lyrics=[], 
remove_all_lyrics=False, text_frames=[], user_text_frames=[], url_frames=[], 
user_url_frames=[], images=[], remove_image=[], remove_all_images=False, 
write_images_dir=None, objects=[], remove_object=[], write_objects_dir=None, 
remove_all_objects=False, popularities=[], remove_popularity=[], 
remove_v1=False, remove_v2=False, remove_all=False, remove_fids=[], 
max_padding=True, text_encoding=None, force_update=False, verbose=False, 
preserve_file_time=False)
eyed3:DEBUG: plugin is: 
eyed3.core:DEBUG: Loading file: /tmp/foobar/link.mp3
eyed3.core:DEBUG: File mime-type: inode/symlink
Nothing to do
$


-- System Information:
Debian Release: 11.3
  APT prefers stable
  APT policy: (990, 'stable'), (500, 'stable-security'), (500, 'stable-debug'), 
(500, 'proposed-updates-debug')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.10.0-13-amd64 (SMP w/4 CPU threads)
Kernel taint flags: TAINT_USER
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages eyed3 depends on:
ii  python33.9.2-3
ii  python3-eyed3  0.8.10-4
ii  python3-pkg-resources  52.0.0-4

eyed3 recommends no packages.

eyed3 suggests no packages.

-- no debconf information

Bug#1008676: RFP: danecheck -- DANE SMTP checker

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: j...@nahmias.net, postfix-us...@dukhovni.org, 
debian-hask...@lists.debian.org

* Package name: danecheck
  Version : 1.1.0
  Upstream Author : Viktor Dukhovni 
* URL : https://github.com/vdukhovni/danecheck
* License : BSD
  Programming Lang: Haskell
  Description : DANE SMTP checker

This is a tool to check DANE TLSA security for SMTP.

Features:
 *  Test the local resolver configuration by verifying the validity of the
root zone DNSKEY and SOA RRSets.
 *  Test whether DNSSEC is enabled for a given TLD.
 *  Check whether an email domain is fully protected (across all of its MX
hosts) by DANE TLSA records, and whether these match the actual
certificate chains seen at each IP address of each MX host.
 *  Perform certificate chain verification at a time offset from the current
time to ensure that that certificates are not about to expire too soon.

A non-zero exit status is returned if any DNS lookups fail or if the MX records
or MX hosts are in an unsigned zone, or if for one of the MX hosts no
associated secure TLSA records are found. A non-zero exit status is also
returned if any of the SMTP connections fail to establish a TLS connection or
yield a certificate chain that does not match the TLSA records.


Packaging note:

I do not know haskell, so wouldn't really be a good maintainer, thus submitting
this as an RFP. 

Bug#1008646: generic php-fpm.sock not created on sysvinit systems

[Joseph Nahmias]

Package: php7.4-fpm
Version: 7.4.28-1+deb11u1
Severity: normal
File: /etc/init.d/php7.4-fpm
Tags: patch
X-Debbugs-Cc: j...@nahmias.net

Hello,

I've noticed that the php7.4-fpm package doesn't create the generic socket file
/run/php/php-fpm.sock (managed by alternatives) when using sysvinit. It seems
this was rolled into the systemd service unit file, but wasn't added to the
sysvinit script. Here's a patch that adds it (along with an related bugfix
for the permissions of the /run/php directory):

--- /etc/init.d/php7.4-fpm.orig 2021-10-23 21:53:50.0 +
+++ /etc/init.d/php7.4-fpm  2022-03-30 02:31:05.339118410 +
@@ -49,6 +49,7 @@
start-stop-daemon --start --quiet --pidfile $PIDFILE --exec $DAEMON -- \
$DAEMON_ARGS 2>/dev/null \
|| return 2
+   /usr/lib/php/php-fpm-socket-helper install /run/php/php-fpm.sock 
/etc/php/7.4/fpm/pool.d/www.conf 74
# Add code here, if necessary, that waits for the process to be ready
# to handle requests from services started subsequently which depend
# on this one.  As a last resort, sleep for some time.
@@ -77,6 +78,7 @@
[ "$?" = 2 ] && return 2
# Many daemons don't delete their pidfiles when they exit.
rm -f $PIDFILE
+   /usr/lib/php/php-fpm-socket-helper remove /run/php/php-fpm.sock 
/etc/php/7.4/fpm/pool.d/www.conf 74
return "$RETVAL"
 }

@@ -96,7 +98,7 @@
 case "$1" in
 start)
[ "$VERBOSE" != no ] && log_daemon_msg "Starting $DESC" "$NAME"
-   mkdir --mode=07500 /run/php
+   mkdir --parents --mode=0755 /run/php
chown www-data:www-data /run/php
case "$?" in
0)


-- System Information:
Debian Release: 11.2
  APT prefers stable
  APT policy: (990, 'stable'), (500, 'stable-security'), (500, 'stable-debug'), 
(500, 'proposed-updates-debug')
Architecture: i386 (i686)

Kernel: Linux 5.10.0-10-686-pae (SMP w/1 CPU thread)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)
LSM: AppArmor: enabled

Versions of packages php7.4-fpm depends on:
ii  libacl1 2.2.53-10
ii  libapparmor12.13.6-10
ii  libargon2-1 0~20171227-0.2
ii  libc6   2.31-13+deb11u2
ii  libmagic1   1:5.39-3
ii  libpcre2-8-010.36-2
ii  libsodium23 1.0.18-1
ii  libssl1.1   1.1.1k-1+deb11u1
ii  libsystemd0 247.3-6
ii  libxml2 2.9.10+dfsg-6.7
ii  mime-support3.66
ii  php7.4-cli  7.4.28-1+deb11u1
ii  php7.4-common   7.4.28-1+deb11u1
ii  php7.4-json 7.4.28-1+deb11u1
ii  php7.4-opcache  7.4.28-1+deb11u1
ii  procps  2:3.3.17-5
ii  tzdata  2021a-1+deb11u2
ii  ucf 3.0043
ii  zlib1g  1:1.2.11.dfsg-2

php7.4-fpm recommends no packages.

Versions of packages php7.4-fpm suggests:
pn  php-pear  

Versions of packages php7.4-common depends on:
ii  libc6   2.31-13+deb11u2
ii  libffi7 3.3-6
ii  libssl1.1   1.1.1k-1+deb11u1
ii  php-common  2:76
ii  ucf 3.0043


-- no debconf information

Bug#1008232: RFP: soapui -- API and web service testing tool

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: j...@nahmias.net, debian-j...@lists.debian.org

* Package name: soapui
  Version : 5.7.0
  Upstream Author : Smartbear
* URL : https://github.com/SmartBear/soapui
* URL : http://www.soapui.org/
* License : EUPL
  Programming Lang: Java
  Description : API and web service testing tool

SoapUI is a free and open source cross-platform functional testing solution for
APIs and web services.  SoapUI allows you to easily and rapidly create and
execute automated functional, regression, and load tests. In a single test
environment, it provides complete test coverage - from SOAP and REST-based
Web services, to JMS enterprise messaging layers, databases, Rich Internet
Applications, and much more.
 * Functional Testing
 * Service Simulation
 * Security testing
 * Load Testing
 * Technology Support
 * Automation
 * Analytics

Bug#1008183: RFP: hoppscotch -- Web API development environment

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: j...@nahmias.net, supp...@hoppscotch.io, 
pkg-javascript-de...@lists.alioth.debian.org

* Package name: hoppscotch
  Version : 2.2.1
  Upstream Author : Hoppscotch 
* URL : https://github.com/hoppscotch/hoppscotch
* License : MIT
  Programming Lang: Javascript
  Description : Web API development environment

Hoppscotch is light-weight, web based API development suite. It was built from
ground up with ease of use and accessibility in mind providing all the
functionality needed for API developers with minimalist, unobtrusive UI. It is
free-to-use and as an added perk completely Open Source!

### **Features**

❤️ **Lightweight:** Crafted with minimalistic UI design.

⚡️ **Fast:** Send requests and get/copy responses in real-time.

**HTTP Methods**

- `GET` - Requests retrieve resource information
- `POST` - The server creates a new entry in a database
- `PUT` - Updates an existing resource
- `PATCH` - Very similar to `PUT` but makes a partial update on a resource
- `DELETE` - Deletes resource or related component
- `HEAD` - Retrieve response headers identical to those of a GET request, but 
without the response body.
- `CONNECT` - Establishes a tunnel to the server identified by the target 
resource
- `OPTIONS` - Describe the communication options for the target resource
- `TRACE` - Performs a message loop-back test along the path to the target 
resource
- `` - Some APIs use custom request methods such as `LIST`. Type in 
your custom methods.

 **PWA:** Install as a Progressive Web App on your device.

- Instant loading with Service Workers
- Offline support
- Low RAM/memory and CPU usage
- Add to Home Screen
- Desktop PWA

 **Request:** Retrieve response from endpoint instantly.

1. Choose `method`
2. Enter `URL`
3. Send

- Copy/share public "Share URL"
- Generate/copy request code snippets for 10+ languages and frameworks
- Import `cURL`
- Label requests

 **WebSocket:** Establish full-duplex communication channels over a single TCP 
connection.

 **Server-Sent Events:** Receive a stream of updates from a server over an 
HTTP connection without resorting to polling.

 **Socket.IO:** Send and Receive data with SocketIO server.

烈 **MQTT:** Subscribe and Publish to topics of an MQTT Broker.

 **GraphQL:** GraphQL is a query language for APIs and a runtime for 
fulfilling those queries with your existing data.

- Set endpoint and get schema
- Multi-column docs
- Set custom request headers
- Query schema
- Get query response

 **Authorization:** Allows to identify the end-user.

- None
- Basic
- Bearer Token
- OAuth 2.0
- OIDC Access Token/PKCE

 **Headers:** Describes the format the body of your request is being sent as.

 **Parameters:** Use request parameters to set varying parts in simulated 
requests.

 **Request Body:** Used to send and receive data via the REST API.

- Set `Content Type`
- FormData, JSON, and many more
- Toggle between key-value and RAW input parameter list

 **Response:** Contains the status line, headers, and the message/response 
body.

- Copy response to clipboard
- Download response as a file
- View response headers
- View raw and preview of HTML, image, JSON, XML responses

⏰ **History:** Request entries are synced with cloud / local session storage to 
restore with a single click.

 **Collections:** Keep your API requests organized with collections and 
folders. Reuse them with a single click.

- Unlimited collections, folders, and requests
- Nested folders
- Export and import as a file or GitHub gist

_Collections are synced with cloud / local session storage_

 **Proxy:** Enable Proxy Mode from Settings to access blocked APIs.

- Hide your IP address
- Fixes [`CORS`](https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS) 
(Cross-Origin Resource Sharing) issues
- Access APIs served in non-HTTPS (`http://`) endpoints
- Use your Proxy URL

 **Pre-Request Scripts β:** Snippets of code associated with a request that is 
executed before the request is sent.

- Set environment variables
- Include timestamp in the request headers
- Send a random alphanumeric string in the URL parameters
- Any JavaScript functions

 **API Documentation:** Create and share dynamic API documentation easily, 
quickly.

1. Add your requests to Collections and Folders
2. Export Collections and easily share your APIs with the rest of your team
3. Import Collections and Generate Documentation on-the-go


✅ **Post-Request Tests β:** Write tests associated with a request that is 
executed after the request's response.

- Check the status code as an integer
- Filter response headers
- Parse the response data
- Set environment variables
- Write JavaScript code

 **Environments** : Environment variables allow you to store and reuse values 
in your requests and scripts.

- Unlimited environments and variables
- Initialize through the pre-request script
- Export as / import from GitHub gist

Bug#1006598: RFP: tlpui -- GTK user interface for laptop power management

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: j...@nahmias.net

* Package name: tlpui
  Version : 1.5.0
  Upstream Author : Daniel Christophis - 
* URL : https://github.com/d4nj1/TLPUI
* License : GPL v2 or later
  Programming Lang: Python
  Description : GTK user interface for laptop power management

TLP is an advanced power management tool for optimizing battery life on laptops
running Linux. Its default configuration is usually enough to see an
improvement in battery life, however, TLP offers a wide range of configuration
options which can be changed by editing its configuration file.
  * Supports TLP versions 0.8-1.5 Configuration can be read and displayed Shows
  * information about configuration changes (defaults/unsaved and dropin/user
  * config) Changes can be saved with user and sudo permissions (e.g.
  * /etc/default/tlp or /etc/tlp.conf) tlp-stat can be load in ui (simple and
  * complete)
TLP is a command line tool and it doesn't come with a graphical user interface,
but there is a third-party GTK GUI (written in Python) interface for TLP,
called TLPUI.

Bug#203623: Sveiki

[Lawrence Joseph]

Sveiki,
Turiu su tavimi kai ką aptarti,
Dėkoju
Lorensas Džozefas
Hello,
I have something to discuss with you ,
Thanks
Lawrence Joseph

Bug#1006334: nheko closes when looking up the matrix id on the matrix.org server

[Joseph Donofry]

We have addressed this upstream in mtxclient with a v0.6.2 release: 
https://github.com/Nheko-Reborn/mtxclient/releases/tag/v0.6.2

It's a two-line patch, if the debian folks want to include this patch for 
nheko: 
https://github.com/Nheko-Reborn/mtxclient/commit/a4b55e89f84c58216230b872480d56ed46bc6f2e

Thanks,
Joe (red_sky)[c1969feb-5f8f-404c-8c58-173b81fa660d]

Bug#1005415: RFP: wavedrom -- Digital timing diagram editor & rendering engine

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: j...@nahmias.net, pkg-javascript-de...@lists.alioth.debian.org, 
waved...@googlegroups.com

* Package name: wavedrom
  Version : 2.8.3
  Upstream Author : Aliaksei Chapyzhenka 
* URL : https://wavedrom.com/
* License : MIT
  Programming Lang: JavaScript / Node
  Description : Digital timing diagram editor & rendering engine

WaveDrom is a Free and Open Source online digital timing diagram (waveform)
rendering engine that uses javascript, HTML5 and SVG to convert a WaveJSON
input text description into SVG vector graphics.

WaveJSON is an application of the JSON format. The purpose of WaveJSON is to
provide a compact exchange format for digital timing diagrams utilized by
digital HW / IC engineers.

The engine is using WaveDromSkin skin mechanism to render a complete picture.

Bug#1004833: kdeconnect: White on white, DPI breakages, etc

[Joseph Carter]

Package: kdeconnect
Version: 21.08.3-1
Severity: important
Tags: a11y

It appears kdeconnect is forcing assumptions about your DPI/font scale
(96/1.0), your theme (black on white), and probably other things, then
hardcoding all of those details. This causes any change in these
settings to cause kdeconnect to be horribly broken to the point that the
thing is completely unusable with white on white text, missing controls,
a panel popup too small to contain even one line of text, etc.

If you need those things changed because you're, say, legally blind,
kdeconnect is basically impossible to use. Workarounds exist depending
on your setup. A lot of fiddling may make the panel popup grow to
accomodate text. You can search the maze of inaccurate, obsolete, and
conflicting pages on theming Qt apps to figure out how to override a
theme for kdeconnect and set up wrapper scripts and .desktop files to do
that for specific apps and modify the GUI accordingly to use those
wrapper scripts. If you're using Compton, there's a plugin that'd let
you invert the window's colors and I guess there might be some way to
automate that, but I don't use it so am not sure. But at the point
you've done all that, you're scarcely using the Debian package as
provided and your hacks can be trivially broken by an upgrade of the
package.

This combination of … what apparently seems to amount to a pretty common
dumpster fire for Qt5 apps with hardcoded colors/backgrounds/font sizes
…sigh… has rendered kdeconnect basically unusable by anyone who uses a
dark theme or scaled fonts for accessibility, to say nothing of anyone
who uses them for aesthetic or "I have a shiny new 4k+ monitor and want
to actually, y'know, use it as intended" reasons.

Only workarounds I can think of involve forcing the theme to be the
default (since kdeconnect halfassedly does this anyway) and … I don't
know what to do about the DPI thing.

-- System Information:
Debian Release: bookworm/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.15.0-2-amd64 (SMP w/16 CPU threads)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, 
TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages kdeconnect depends on:
ii  fuse33.10.5-1
ii  kio  5.88.0-1
ii  kpeople-vcard0.1-2
ii  libc62.33-5
ii  libfakekey0  0.3+git20170516-2
ii  libkf5configcore55.88.0-1
ii  libkf5configwidgets5 5.88.0-1
ii  libkf5coreaddons55.88.0-1
ii  libkf5dbusaddons55.88.0-1
ii  libkf5i18n5  5.88.0-2
ii  libkf5iconthemes55.88.0-1
ii  libkf5kcmutils5  5.88.0-1
ii  libkf5kiocore5   5.88.0-1
ii  libkf5kiofilewidgets55.88.0-1
ii  libkf5kiogui55.88.0-1
ii  libkf5kiowidgets55.88.0-1
ii  libkf5notifications5 5.88.0-2
ii  libkf5people55.88.0-1
ii  libkf5pulseaudioqt3  1.3-2
ii  libkf5service-bin5.88.0-1
ii  libkf5service5   5.88.0-1
ii  libkf5solid5 5.88.0-1
ii  libkf5waylandclient5 4:5.88.0-1
ii  libkf5widgetsaddons5 5.88.0-2
ii  libkf5windowsystem5  5.88.0-1
ii  libqca-qt5-2 2.3.4-1
ii  libqca-qt5-2-plugins 2.3.4-1
ii  libqt5core5a 5.15.2+dfsg-14
ii  libqt5dbus5  5.15.2+dfsg-14
ii  libqt5gui5   5.15.2+dfsg-14
ii  libqt5multimedia55.15.2-3
ii  libqt5network5   5.15.2+dfsg-14
ii  libqt5qml5   5.15.2+dfsg-9
ii  libqt5quick5 5.15.2+dfsg-9
ii  libqt5quickcontrols2-5   5.15.2+dfsg-4
ii  libqt5waylandclient5 5.15.2-4
ii  libqt5widgets5   5.15.2+dfsg-14
ii  libqt5x11extras5 5.15.2-2
ii  libstdc++6   11.2.0-16
ii  libwayland-client0   1.19.0-2+b1
ii  libx11-6 2:1.7.2-2+b1
ii  libxtst6 2:1.2.3-1
ii  plasma-framework 5.88.0-1
ii  qml-module-org-kde-kirigami2 5.88.0-1
ii  qml-module-org-kde-kquickcontrolsaddons  5.88.0-1
ii  qml-module-org-kde-people5.88.0-1
ii  

Bug#1004824: Refers to INSTALL.md for usage instructions

[Joseph Carter]

Package: qt5-style-kvantum
Version: 0.18.0+repack-1
Severity: normal

The readme file included with qt5-style-kvantum literally tells you to
go read INSTALL.md if you want to know how to install OR use it. Please
include in future releases.

(Not sure Kvantum will solve any problems for me because I think the
real issue is that every Qt app I seem to care about uses hardcoded
fonts, colors, and DPI assumptions. But it's not Kvantum's fault that
the landscape for Qt apps is even more of a dumpster fire than GTK/Gnome
apps.)


-- System Information:
Debian Release: bookworm/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.15.0-2-amd64 (SMP w/16 CPU threads)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, 
TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages qt5-style-kvantum depends on:
ii  libc6   2.33-5
ii  libgcc-s1   11.2.0-16
ii  libkf5windowsystem5 5.88.0-1
ii  libqt5core5a5.15.2+dfsg-14
ii  libqt5gui5  5.15.2+dfsg-14
ii  libqt5svg5  5.15.2-4
ii  libqt5widgets5  5.15.2+dfsg-14
ii  libqt5x11extras55.15.2-2
ii  libstdc++6  11.2.0-16
ii  libx11-62:1.7.2-2+b1
ii  qt5-style-kvantum-themes [qt5-style-kvantum-theme]  0.18.0+repack-1

Versions of packages qt5-style-kvantum recommends:
ii  qt5-style-kvantum-l10n  0.18.0+repack-1

qt5-style-kvantum suggests no packages.

-- no debconf information

Bug#1002986: libguestfs-tools: Depends on guestfs-tools that is not in the archive

[Joseph Carter]

On Sun, 02 Jan 2022 23:28:32 +0100 Hilko Bengen  wrote:
> * Laurent Bigonville:
> 
> > It looks like libguestfs-tools version 1:1.46.2-1 in depending on
> > guestfs-tools that is not in the archive making the package uninstalable
> >
> > guestfs-tools is currently stuck in the new queue
> 
> Right. Let's  just wait. (Or do you know of a way to speed this up?)

Cold beverages of the FTP maintainer's choice?  Hopefully it'll be in the 
archive soon, but looking at https://ftp-master.debian.org/new.html there are 
packages that have been sitting in NEW for almost a year now. It might be a 
case of squeaky wheels—or that some of those packages having a hold-up for a 
particular reason. Probably a bit of both.

Joseph

Bug#1003092: RFP: vim-bracketed-paste -- plugin to handle bracketed-paste-mode in vim

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: j...@nahmias.net, team+...@tracker.debian.org

* Package name: vim-bracketed-paste
* URL : https://github.com/ConradIrwin/vim-bracketed-paste
* License : MIT
  Programming Lang: VIM
  Description : plugin to handle bracketed-paste-mode in vim

vim-bracketed-paste enables transparent pasting into vim.
(i.e. no more :set paste!)
Requires a modern xterm-compatible terminal emulator that supports bracketed
paste mode. xterm, urxvt, iTerm2, gnome-terminal (and other terminals using
libvte) are known to work.

Bug#1002680: Fails to build

[Joseph Carter]

Package: openrazer-driver-dkms
Version: 3.2.0+dfsg-2
Severity: grave

Justification for "grave": Package rendered completely unusable due to
failure to compile module.

There's a () unbalance in the fix for #1002530. Here's the make.log:


DKMS make.log for openrazer-driver-3.2.0 for kernel 5.15.0-2-amd64 (x86_64)
Mon Dec 27 00:18:03 PST 2021
-e 
:: Compiling OpenRazer kernel modules

make -C /lib/modules/5.15.0-2-amd64/build 
M=/var/lib/dkms/openrazer-driver/3.2.0/build/driver modules
make[1]: Entering directory '/usr/src/linux-headers-5.15.0-2-amd64'
  CC [M]  /var/lib/dkms/openrazer-driver/3.2.0/build/driver/razerkbd_driver.o
/var/lib/dkms/openrazer-driver/3.2.0/build/driver/razerkbd_driver.c:26:80: 
error: missing '(' in expression
   26 | #if defined(CONFIG_HIDRAW) && defined(CONFIG_USB) || 
defined(CONFIG_USB_MODULE))
  | 
   ^
In file included from 
/var/lib/dkms/openrazer-driver/3.2.0/build/driver/razerkbd_driver.c:32:
/var/lib/dkms/openrazer-driver/3.2.0/build/driver/razercommon.h:29:80: error: 
missing '(' in expression
   29 | #if defined(CONFIG_HIDRAW) && defined(CONFIG_USB) || 
defined(CONFIG_USB_MODULE))
  | 
   ^
/var/lib/dkms/openrazer-driver/3.2.0/build/driver/razerkbd_driver.c:34:80: 
error: missing '(' in expression
   34 | #if defined(CONFIG_HIDRAW) && defined(CONFIG_USB) || 
defined(CONFIG_USB_MODULE))
  | 
   ^
/var/lib/dkms/openrazer-driver/3.2.0/build/driver/razerkbd_driver.c:50:80: 
error: missing '(' in expression
   50 | #if defined(CONFIG_HIDRAW) && defined(CONFIG_USB) || 
defined(CONFIG_USB_MODULE))
  | 
   ^
make[2]: *** 
[/usr/src/linux-headers-5.15.0-2-common/scripts/Makefile.build:282: 
/var/lib/dkms/openrazer-driver/3.2.0/build/driver/razerkbd_driver.o] Error 1
make[1]: *** [/usr/src/linux-headers-5.15.0-2-common/Makefile:1892: 
/var/lib/dkms/openrazer-driver/3.2.0/build/driver] Error 2
make[1]: Leaving directory '/usr/src/linux-headers-5.15.0-2-amd64'
make: *** [Makefile:41: driver] Error 2


-- System Information:
Debian Release: bookworm/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.15.0-2-amd64 (SMP w/16 CPU threads)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, 
TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages openrazer-driver-dkms depends on:
ii  dkms  2.8.7-2
ii  udev  249.7-1

openrazer-driver-dkms recommends no packages.

openrazer-driver-dkms suggests no packages.

-- no debconf information

Bug#1001996: ITP: 1oom -- Master of Orion engine

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: je...@debian.org

Subject: ITP: 1oom -- Master of Orion engine
Package: wnpp
Owner:  
Severity: wishlist

* Package name: 1oom
  Version : 1.0
  Upstream Author : Kilgore Trout Mask Replicant 

* URL : https://kilgoretroutmaskreplicant.gitlab.io/plain-html/
* License : GPL-2.0+
  Programming Lang: C
  Description : Master of Orion engine
 This package provides an open source re-implementaiton of the game engine
 for Master of Orion (1993).
 .
 Note: This package only contains the engine. You will need the original
 game files (*.LBX) in order to play.

Remark: This package is maintained by Joseph Nahmias at
   https://salsa.debian.org/games-team/1oom

Bug#972211: FTBFS with OCaml 4.11.1 (-unsafe-string is not available)

[Joseph Nuthalapati]

Adding a link to the upstream issue.

-unsafe-string usage
https://github.com/ygrek/mldonkey/issues/46

--
Joseph Nuthalapati

Bug#1001775: ITP: textarea-caret.js -- JS library to get the xy coords of a textarea or input's caret

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, 
pkg-javascript-de...@lists.alioth.debian.org, j...@nahmias.net, 
m...@jongleberry.com
Control: block 790814 by -1

* Package name: textarea-caret.js
  Version : 3.0.2
  Upstream Author : Jonathan Ong 
* URL : https://github.com/component/textarea-caret-position
* License : Expat
  Programming Lang: Javascript

Description: JS library to get the xy coords of a textarea or input's caret
 Javascript library which finds the top and left coordinates of the caret in
 a  or , in pixels. Useful for textarea
 autocompletes like GitHub or Twitter, or for single-line autocompletes like
 the name drop-down in Twitter or Facebook's search or the company dropdown
 on Google Finance.
 .
 Features include:
  * supports s and  elements
  * pixel precision with any combination of paddings, margins, borders,
heights vs. line-heights etc.
  * keyboard, mouse support and touch support
  * no dependencies whatsoever
  * browser compatibility: Chrome, Safari, Firefox, Opera, IE9+
  * supports any font family and size, as well as text-transforms
  * not confused by horizontal or vertical scrollbars in the textarea
  * supports hard returns, tabs (except on IE) and consecutive spaces in
the text
  * correct position on lines longer than the columns in the text area
  * no problem getting the correct position when the input text is scrolled
(i.e. the first visible character is no longer the first in the text)
  * no "ghost" position in the empty space at the end of a line when wrapping
long words in a 
  * RTL (right-to-left) support

Bug#1001758: arduino(1) woefully wrong

[Joseph Carter]

Package: arduino
Version: 2:1.8.16+dfsg1-1
Severity: normal

The arduino(1) manpage written in 2010 may have been accurate at the
time, but … today isn't. It says the program takes no options, etc. The
github repo for the project contains this adoc file:

https://github.com/arduino/Arduino/blob/master/build/shared/manpage.adoc

It begs to differ, suggesting all of these work:


arduino [FILE.ino…]

arduino [--verify|--upload] [--board package:arch:board[:parameters]] [--port 
portname] [--pref name=value] [-v|--verbose] [--preserve-temp-files] [FILE.ino]

arduino [--get-pref [preference]]

arduino [--install-boards package name:platform architecture[:version]]

arduino [--install-library library name[:version][,library 
name[:version],library name[:version]]

arduino [--version]


Sadly, one would be forgiven for failing to know about this because they
DO NOT SUPPORT --help! *twelve minute gap tirade about Java apps being
standards-ignoring flaming piles of horse excrement censored*

Could you work the upstream manpage in to future releases please? Much
appreciated!

-- System Information:
Debian Release: bookworm/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.15.0-2-amd64 (SMP w/16 CPU threads)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, 
TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages arduino depends on:
ii  arduino-builder   1.3.25-3
ii  arduino-core-avr  1.8.4+dfsg1-1
ii  avrdude   6.3-20171130+svn1429-2+b1
ii  default-jre   2:1.11-72
ii  dpkg-dev  1.21.1
ii  libastylej-jni3.1-2+b1
ii  libbatik-java 1.14-1
ii  libbcpg-java  1.68-5
ii  libbcprov-java1.68-5
ii  libcommons-codec-java 1.15-1
ii  libcommons-compress-java  1.21-1
ii  libcommons-exec-java  1.3-2
ii  libcommons-io-java2.11.0-2
ii  libcommons-lang3-java 3.11-1
ii  libcommons-logging-java   1.2-2
ii  libcommons-net-java   3.6-1
ii  libhttpclient-java4.5.13-3
ii  libjackson2-annotations-java  2.13.0-1
ii  libjackson2-core-java 2.13.0-2
ii  libjackson2-databind-java 2.13.0-2
ii  libjaxp1.3-java   1.3.05-6
ii  libjmdns-java 3.5.5-1
ii  libjna-java   5.9.0-1
ii  libjna-platform-java  5.9.0-1
ii  libjsch-java  0.1.55-1
ii  libjssc-java  2.8.0-3
ii  liblistserialsj-dev   1.4.0-1+b1
ii  liblog4j2-java2.16.0-1
ii  librsyntaxtextarea-java   2.5.8-1
ii  librxtx-java  2.2pre2+dfsg1-2
ii  libsemver-java0.9.0-4
ii  libslf4j-java 1.7.32-1
ii  libxml-commons-external-java  1.4.01-5
ii  libxmlgraphics-commons-java   2.6-1
ii  openjdk-11-jre11.0.13+8-1

Versions of packages arduino recommends:
ii  extra-xdg-menus  1.0-6
ii  policykit-1  0.105-31

arduino suggests no packages.

-- no debconf information

Bug#1001308: RFP: nova-the-squirrel -- Nova the Squirrel platform arcade game

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: j...@nahmias.net, bushyt...@novasquirrel.com, 
debian-devel-ga...@lists.debian.org

* Package name: nova-the-squirrel
  Version : 1.0.6
  Upstream Author : NovaSquirrel 
* URL : https://novasquirrel.itch.io/nova-the-squirrel
* License : GPL3+
  Programming Lang: ASM
  Description : Nova the Squirrel platform arcade game

 Nova the Squirrel is a platformer game for the NES that draws inspiration
 from a lot of different games -- especially the Super Mario Bros series.
 It features ability copying and focuses on interesting puzzle mechanics.
 .
  * 33 different levels across 5 worlds, and 7 bosses to fight
  * Copy the abilities of your enemies. (10 in all!)
  * Over 35 different types of enemies, plus variants.
  * Interesting puzzle mechanics.
  * A collectible in every level for those wanting a challenge.
  * A few bonus challenge levels after the main game.

Bug#1001228: ITP: jupyter-kernel-test -- tool to test Jupyter kernels

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, debian-pyt...@lists.debian.org, 
j...@nahmias.net

* Package name: jupyter-kernel-test
  Version : 0.4.2
  Upstream Author : Jupyter Development Team 
* URL : https://github.com/jupyter/jupyter_kernel_test
* License : BSD
  Programming Lang: Python
  Description : tool to test Jupyter kernels

jupyter_kernel_test is a tool for testing Jupyter kernels. It tests kernels
for successful code execution and conformance with the Jupyter Messaging
Protocol (currently 5.0).

Bug#1001134: RFP: lerna -- A tool for managing JavaScript projects with multiple packages.

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: j...@nahmias.net

* Package name: lerna
  Version : 4.0.0
  Upstream Author : Lerna Contributors
* URL :  , 
* License : MIT
  Programming Lang: Javascript
  Description : A tool for managing JavaScript projects with multiple 
packages.

Splitting up large codebases into separate independently versioned packages is
extremely useful for code sharing. However, making changes across many
repositories is messy and difficult to track, and testing across repositories
becomes complicated very quickly.

To solve these (and many other) problems, some projects will organize their
codebases into multi-package repositories (sometimes called monorepos).
Projects like Babel, React, Angular, Ember, Meteor, Jest, and many others
develop all of their packages within a single repository.

Lerna is a tool that optimizes the workflow around managing multi-package
repositories with git and npm.

Lerna can also reduce the time and space requirements for numerous copies of
packages in development and build environments - normally a downside of
dividing a project into many separate NPM packages. See the hoist documentation
for details.

Bug#1000764: Chhange Recommends to sudo | doas

[Joseph Carter]

Package: inxi
Version: 3.3.07-1-1
Severity: wishlist

Doas is a massively simpler (and hopefully therefore safer) tool coming
from the OpenBSD folks that does what most people use sudo for: Running
commands as root. It's already supported by inxi, and is used over sudo
if both are installed.

As such, would you consider adding it as an alternative to sudo in
inxi's Recoomends?

Thanks!

-- System Information:
Debian Release: bookworm/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.15.0-1-amd64 (SMP w/16 CPU threads)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, 
TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages inxi depends on:
ii  pciutils  1:3.7.0-6
ii  perl  5.32.1-6
ii  procps2:3.3.17-5

Versions of packages inxi recommends:
ii  bind9-dnsutils [dnsutils]  1:9.17.20-3
ii  dmidecode  3.3-3
ii  file   1:5.41-2
ii  hddtemp0.3-beta15-54
ii  iproute2   5.15.0-1
ii  kmod   29-1
ii  lm-sensors 1:3.6.0-7
ii  mesa-utils 8.4.0-1+b2
ii  net-tools  1.60+git20181103.0eebece-1
ii  sudo   1.9.5p2-3
ii  tree   1.8.0-1+b1
ii  usbutils   1:014-1
ii  x11-utils  7.7+5
ii  x11-xserver-utils  7.7+9

Versions of packages inxi suggests:
ii  curl  7.79.1-2
ii  libcpanel-json-xs-perl4.27-1
ii  libjson-xs-perl   4.030-1+b1
pn  libxml-dumper-perl
ii  perl [libhttp-tiny-perl]  5.32.1-6
ii  wget  1.21.2-2+b1

-- no debconf information

Bug#1000295: ITP: odpi -- ODPI-C: Oracle Database Programming Interface for Drivers and Applications

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
Owner: Joseph Nahmias 
X-Debbugs-Cc: debian-de...@lists.debian.org, j...@nahmias.net

* Package name: odpi
  Version : 4.3.0
  Upstream Author : Oracle
* URL : https://github.com/oracle/odpi
* License : Apache
  Programming Lang: C
  Description : ODPI-C: Oracle Database Programming Interface for Drivers 
and Applications

 Oracle Database Programming Interface for C (ODPI-C) is an open source
 library of C code that simplifies access to Oracle Database for applications
 written in C or C++. It is a wrapper over Oracle Call Interface (OCI) that
 makes applications and language interfaces easier to develop.
 .
 ODPI-C supports basic and advanced features of Oracle Database and Oracle
 Client. See the homepage for a list.

Note: this package will go into the contrib archive section as it requires
the non-free Oracle client.

Bug#999506: RFP: pytest-tornasync -- pytest plugin for testing Tornado apps using native coroutine tests

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: sapientdust+pytest-tornas...@gmail.com, 
debian-pyt...@lists.debian.org

* Package name: pytest-tornasync
  Version : 0.5.0
  Upstream Author : eukaryote 
* URL : https://github.com/eukaryote/pytest-tornasync
* License : MIT
  Programming Lang: Python
  Description : pytest plugin for testing Tornado apps using native 
coroutine tests

 A simple pytest plugin that provides some helpful fixtures for testing Tornado
 (version 5.0 or newer) apps and easy handling of plain (undecoratored) native
 coroutine tests (Python 3.5+).
 .
 Why another Tornado pytest plugin when the excellent pytest-tornado already
 exists? The main reason is that I didn't want to have to decorate every test
 coroutine with @pytest.mark.gen_test. This plugin doesn't have anything like
 gen_test. Defining a test with async def and a name that begins with test_ is
 all that is required.

Bug#999501: need wheel of newer setuptools for virtualenv

[Joseph Nahmias]

Package: python-pip-whl
Version: 20.3.4-4
Severity: normal
File: /usr/share/python-wheels/setuptools-44.1.1-py2.py3-none-any.whl

Hello,

I am working on packaging jupyter-packaging. In order to run its test suite, I
am trying to have it use tox. However, the standard virtualenv populates using
the setuptools wheel in /usr/share/python-wheels/ which is built from the
python2 version of the module. I need a newer version of setuptools for my use
case. It should be possible to include an additional wheel for the latest
version from python3-setuptools in addition to the current one.

Thanks,
--Joe


-- System Information:
Debian Release: 11.1
  APT prefers stable
  APT policy: (990, 'stable'), (500, 'stable-security'), (500, 'stable-debug'), 
(500, 'proposed-updates-debug')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.10.0-9-amd64 (SMP w/4 CPU threads)
Kernel taint flags: TAINT_USER
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages python-pip-whl depends on:
ii  ca-certificates  20210119

python-pip-whl recommends no packages.

python-pip-whl suggests no packages.

-- no debconf information

Bug#999336: RFP: jupyter-packaging -- tools to help build and install Jupyter Python packages

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: jupy...@googlegroups.com, debian-pyt...@lists.debian.org

* Package name: jupyter-packaging
  Version : 0.11.0
  Upstream Author : Jupyter Development Team 
* URL : https://github.com/jupyter/jupyter-packaging/
* License : BSD
  Programming Lang: Python
  Description : tools to help build and install Jupyter Python packages

Python packaging tools used by the Jupyter project that handle pre-build
steps such as JavaScript/npm/yarn building and installation steps.

Bug#998865: RFP: jupyter-server-mathjax -- Jupyter Server extension for serving Mathjax

[Joseph Nahmias]

Package: wnpp
Severity: wishlist
X-Debbugs-Cc: jupy...@googlegroups.com, debian-pyt...@lists.debian.org

* Package name: jupyter-server-mathjax
  Version : 0.2.3
  Upstream Author : Jupyter Development Team 
* URL : https://github.com/jupyter-server/jupyter_server_mathjax
* License : BSD-3-Clause
  Programming Lang: Python / JavaScript
  Description : Jupyter Server extension for serving MathJax

Adds a static endpoint to Jupyter Server for serving MathJax.

Bug#998348: please drop libncurses5-dev dep in favor of libncurses-dev

[Joseph Carter]

Package: ghc
Version: 8.8.4-3
Severity: minor

Just a request to drop libncurses5-dev (a dummy/transitional package) in
favor of libncurses-dev.

Thanks!

-- System Information:
Debian Release: bookworm/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.14.0-3-amd64 (SMP w/16 CPU threads)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, 
TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages ghc depends on:
ii  dpkg  1.20.9
ii  gcc   4:11.2.0-2
ii  libbsd-dev0.11.3-1
ii  libc6 2.32-4
ii  libc6-dev 2.32-4
ii  libffi-dev3.4.2-3
ii  libffi8   3.4.2-3
ii  libgmp-dev2:6.2.1+dfsg-2
ii  libgmp10  2:6.2.1+dfsg-2
ii  libncurses-dev [libncurses5-dev]  6.2+20210905-1
ii  libncurses5-dev   6.2+20210905-1
ii  libtinfo6 6.2+20210905-1

ghc recommends no packages.

Versions of packages ghc suggests:
pn  ghc-doc  
pn  ghc-prof 
pn  haskell-doc  
ii  llvm-11  1:11.1.0-4
ii  perl 5.32.1-6

-- no debconf information