Bug#433568: VLAN support within D-I

[Tyler Stachecki]

On Mon, May 27, 2024 at 2:02 PM Tyler Stachecki
 wrote:
>
> On Thu, Feb 22, 2024 at 09:16:24AM +0100, Lucas Bonnet wrote:
> >
> > Hello dear Debian maintainers,
> >
> > I can confirm that the 2020 patch from Carsten Schoenert still applies
> > to d-i/netcfg releases 1.187 and 1.188, and result in a debian installer
> > that knows about VLANs and can be fully automated with a preseed config
> > like the following:
> >
> > d-i netcfg/enableboolean true
> > d-i netcfg/use_vlan  boolean true
> > d-i netcfg/vlan_id   string  1001
> > d-i netcfg/choose_interface  select  ens3f0np0
> >
> >
> > We would be interested in helping push the patch upstream so that other
> > users can enjoy this without having to build and make their own initrd,
> > how can we help?
> >
> >
> > Regards,
> > --
> > Lucas Bonnet
> > Bearstech - http://bearstech.com
> >
>
> Sorry, I have to disagree with you here -- the patch certainly does not apply
> cleanly anymore. Even after fixing it up, I faced installation issues as it
> attempts to add the VLAN subinterface twice, and fails the second time due to
> it already existing.
>
> The VLAN code does not use ioctls/netlink and instead shells out to ip link/
> ifconfig for Linux and FreeBSD respectively. I took a quick look at what it
> would take to shift this code over to ioctls, but it seems there are inherent
> differences in the ioctl interface between the two OS-es that would make it
> non-trivial to support both at that level. I would be curious to hear the
> maintainers feedback as to whether or not this is acceptable.
>
> I'm attaching a patch that applies cleanly against 1.188 and was tested
> against a patched bookworm initrd with success.
>
> Cheers,
> Tyler

Hi,

Sorry -- turns out this was a little rash on my part: the patch from
2020 applies to 1.188 with fuzz but not 1.889 (which is what I had
checked out). Anywho - the patch I attached previously applies cleanly
to 1.189 and I am similarly happy to act on any feedback from the
maintainer to carry this one across the line.

Cheers,
Tyler

Bug#433568: VLAN support within D-I

[Tyler Stachecki]

On Thu, Feb 22, 2024 at 09:16:24AM +0100, Lucas Bonnet wrote:
> 
> Hello dear Debian maintainers,
> 
> I can confirm that the 2020 patch from Carsten Schoenert still applies
> to d-i/netcfg releases 1.187 and 1.188, and result in a debian installer
> that knows about VLANs and can be fully automated with a preseed config
> like the following:
> 
> d-i netcfg/enableboolean true
> d-i netcfg/use_vlan  boolean true
> d-i netcfg/vlan_id   string  1001
> d-i netcfg/choose_interface  select  ens3f0np0
> 
> 
> We would be interested in helping push the patch upstream so that other
> users can enjoy this without having to build and make their own initrd,
> how can we help?
> 
> 
> Regards,
> -- 
> Lucas Bonnet
> Bearstech - http://bearstech.com
> 

Sorry, I have to disagree with you here -- the patch certainly does not apply
cleanly anymore. Even after fixing it up, I faced installation issues as it
attempts to add the VLAN subinterface twice, and fails the second time due to
it already existing.

The VLAN code does not use ioctls/netlink and instead shells out to ip link/
ifconfig for Linux and FreeBSD respectively. I took a quick look at what it
would take to shift this code over to ioctls, but it seems there are inherent
differences in the ioctl interface between the two OS-es that would make it
non-trivial to support both at that level. I would be curious to hear the
maintainers feedback as to whether or not this is acceptable.

I'm attaching a patch that applies cleanly against 1.188 and was tested
against a patched bookworm initrd with success.

Cheers,
Tyler
>From d7127bafc4520d3675061ec7225966ce204d9495 Mon Sep 17 00:00:00 2001
From: "Tyler J. Stachecki" 
Date: Mon, 27 May 2024 13:01:44 -0400
Subject: [PATCH] Add VLAN support to d-i/netcfg

---
 Makefile   |   2 +-
 debian/netcfg-common.templates |  28 
 dhcp.c |   2 +-
 netcfg-common.c|  32 -
 netcfg.c   |  17 +++--
 netcfg.h   |  10 +++
 nm-conf.c  |  33 ++
 nm-conf.h  |  10 ++-
 static.c   |  12 ++--
 vlan.c | 114 +
 wireless.c |   4 +-
 write_interface.c  |  18 ++
 12 files changed, 262 insertions(+), 20 deletions(-)
 create mode 100644 vlan.c

diff --git a/Makefile b/Makefile
index a15d476f..03343c94 100644
--- a/Makefile
+++ b/Makefile
@@ -7,7 +7,7 @@ TARGETS		?= netcfg-static netcfg
 
 LDOPTS		= -ldebconfclient -ldebian-installer
 CFLAGS		= -W -Wall -Werror -DNDEBUG -DNETCFG_VERSION="\"$(NETCFG_VERSION)\"" -I.
-COMMON_OBJS	= netcfg-common.o wireless.o write_interface.o ipv6.o
+COMMON_OBJS	= netcfg-common.o wireless.o write_interface.o ipv6.o vlan.o
 NETCFG_O   	= netcfg.o dhcp.o static.o ethtool-lite.o wpa.o wpa_ctrl.o rdnssd.o autoconfig.o
 NETCFG_STATIC_O	= netcfg-static.o static.o ethtool-lite.o
 
diff --git a/debian/netcfg-common.templates b/debian/netcfg-common.templates
index 7cba22ec..4f848df5 100644
--- a/debian/netcfg-common.templates
+++ b/debian/netcfg-common.templates
@@ -26,6 +26,34 @@ _Description: Domain name:
  If you are setting up a home network, you can make something up, but make
  sure you use the same domain name on all your computers.
 
+Template: netcfg/use_vlan
+Type: boolean
+Default: false
+# :sl6:
+_Description: Are you connected to an IEEE 802.1Q VLAN trunk port?
+ Virtual LAN (VLAN) is a concept of partitioning a physical network to create
+ distinct broadcast domains. Packets can be marked for different IDs by
+ tagging, so that a single interconnect (trunk) may be used to transport
+ data for various VLANs.
+ .
+ If your network interface is directly connected to a VLAN trunk port,
+ specifying a VLAN ID may be necessary to get a working connection.
+
+Template: netcfg/vlan_id
+Type: string
+# :sl6:
+_Description: VLAN ID (1-4094):
+ If your network interface is directly connected to a VLAN trunk port,
+ specifying a VLAN ID may be necessary to get a working connection.
+
+Template: netcfg/vlan_failed
+Type: error
+# :sl6:
+_Description: Error setting up VLAN
+ The command used to set up VLAN during the installation returned an
+ error, please check installer logs, or go back and try another
+ configuration.
+
 Template: netcfg/get_nameservers
 Type: string
 # :sl1:
diff --git a/dhcp.c b/dhcp.c
index 0ef37736..bb0369e4 100644
--- a/dhcp.c
+++ b/dhcp.c
@@ -459,7 +459,7 @@ int netcfg_activate_dhcp (struct debconfclient *client, struct netcfg_interface
 kill_dhcp_client();
 loop_setup();
 
-interface_up(interface->name);
+netcfg_interface_up(interface);
 
 for (;;) {
 di_debug("State is now %i", state);
diff --git a/netcfg-common.c b/netcfg-common.c
index

Bug#1024517: apt purge is assuming yes

[tyler-durden]

Package: apt
Version: 2.2.4
Severity: normal
X-Debbugs-Cc: thisistylerdur...@gmail.com

Dear Maintainer,

Frankly, I don't know if it's a bug or if it's the wanted behaviour in this
situation (which I would find strange for such sensitive operation) but while I
was using a command like "apt purge *php*" and apt was asking me if I want to
continue, I was too fast and hit enter without actually ansewring. I expected
apt to abord or asking me again but no… apt asumed that I wanted to continue.

thanks for your work


-- Package-specific info:

-- apt-config dump --

APT "";
APT::Architecture "amd64";
APT::Build-Essential "";
APT::Build-Essential:: "build-essential";
APT::Install-Recommends "true";
APT::Install-Suggests "0";
APT::Sandbox "";
APT::Sandbox::User "_apt";
APT::Authentication "";
APT::Authentication::TrustCDROM "true";
APT::NeverAutoRemove "";
APT::NeverAutoRemove:: "^firmware-linux.*";
APT::NeverAutoRemove:: "^linux-firmware$";
APT::NeverAutoRemove:: "^linux-image-[a-z0-9]*$";
APT::NeverAutoRemove:: "^linux-image-[a-z0-9]*-[a-z0-9]*$";
APT::NeverAutoRemove:: "^postgresql.*-13";
APT::VersionedKernelPackages "";
APT::VersionedKernelPackages:: "linux-.*";
APT::VersionedKernelPackages:: "kfreebsd-.*";
APT::VersionedKernelPackages:: "gnumach-.*";
APT::VersionedKernelPackages:: ".*-modules";
APT::VersionedKernelPackages:: ".*-kernel";
APT::Never-MarkAuto-Sections "";
APT::Never-MarkAuto-Sections:: "metapackages";
APT::Never-MarkAuto-Sections:: "contrib/metapackages";
APT::Never-MarkAuto-Sections:: "non-free/metapackages";
APT::Never-MarkAuto-Sections:: "restricted/metapackages";
APT::Never-MarkAuto-Sections:: "universe/metapackages";
APT::Never-MarkAuto-Sections:: "multiverse/metapackages";
APT::Move-Autobit-Sections "";
APT::Move-Autobit-Sections:: "oldlibs";
APT::Move-Autobit-Sections:: "contrib/oldlibs";
APT::Move-Autobit-Sections:: "non-free/oldlibs";
APT::Move-Autobit-Sections:: "restricted/oldlibs";
APT::Move-Autobit-Sections:: "universe/oldlibs";
APT::Move-Autobit-Sections:: "multiverse/oldlibs";
APT::LastInstalledKernel "5.10.0-19-amd64";
APT::Periodic "";
APT::Periodic::Update-Package-Lists "1";
APT::Periodic::Unattended-Upgrade "1";
APT::Update "";
APT::Update::Post-Invoke-Success "";
APT::Update::Post-Invoke-Success:: "/usr/bin/test -e 
/usr/share/dbus-1/system-services/org.freedesktop.PackageKit.service && 
/usr/bin/test -S /var/run/dbus/system_bus_socket && /usr/bin/gdbus call 
--system --dest org.freedesktop.PackageKit --object-path 
/org/freedesktop/PackageKit --timeout 4 --method 
org.freedesktop.PackageKit.StateHasChanged cache-update > /dev/null; /bin/echo 
> /dev/null";
APT::Update::Post-Invoke-Success:: "if /usr/bin/test -w /var/cache/app-info -a 
-e /usr/bin/appstreamcli; then appstreamcli refresh-cache > /dev/null || true; 
fi";
APT::Architectures "";
APT::Architectures:: "amd64";
APT::Architectures:: "i386";
APT::Compressor "";
APT::Compressor::. "";
APT::Compressor::.::Name ".";
APT::Compressor::.::Extension "";
APT::Compressor::.::Binary "";
APT::Compressor::.::Cost "0";
APT::Compressor::zstd "";
APT::Compressor::zstd::Name "zstd";
APT::Compressor::zstd::Extension ".zst";
APT::Compressor::zstd::Binary "zstd";
APT::Compressor::zstd::Cost "60";
APT::Compressor::zstd::CompressArg "";
APT::Compressor::zstd::CompressArg:: "-19";
APT::Compressor::zstd::UncompressArg "";
APT::Compressor::zstd::UncompressArg:: "-d";
APT::Compressor::lz4 "";
APT::Compressor::lz4::Name "lz4";
APT::Compressor::lz4::Extension ".lz4";
APT::Compressor::lz4::Binary "false";
APT::Compressor::lz4::Cost "50";
APT::Compressor::gzip "";
APT::Compressor::gzip::Name "gzip";
APT::Compressor::gzip::Extension ".gz";
APT::Compressor::gzip::Binary "gzip";
APT::Compressor::gzip::Cost "100";
APT::Compressor::gzip::CompressArg "";
APT::Compressor::gzip::CompressArg:: "-6n";
APT::Compressor::gzip::UncompressArg "";
APT::Compressor::gzip::UncompressArg:: "-d";
APT::Compressor::xz "";
APT::Compressor::xz::Name "xz";
APT::Compressor::xz::Extension ".xz";
APT::Compressor::xz::Binary "xz";
APT::Compressor::xz::Cost "200";
APT::Compressor::xz::CompressArg "";
APT::Compressor::xz::CompressArg:: "-6";
APT::Compressor::xz::UncompressArg "";
APT::Compressor::xz::UncompressArg:: "-d";
APT::Compressor::bzip2 "";
APT::Compressor::bzip2::Name "bzip2";
APT::Compressor::bzip2::Extension ".bz2";
APT::Compressor::bzip2::Binary "bzip2";
APT::Compressor::bzip2::Cost "300";
APT::Compressor::bzip2::CompressArg "";
APT::Compressor::bzip2::CompressArg:: "-6";
APT::Compressor::bzip2::UncompressArg "";
APT::Compressor::bzip2::UncompressArg:: "-d";
APT::Compressor::lzma "";
APT::Compressor::lzma::Name "lzma";
APT::Compressor::lzma::Extension ".lzma";
APT::Compressor::lzma::Binary "xz";
APT::Compressor::lzma::Cost "400";
APT::Compressor::lzma::CompressArg "";
APT::Compressor::lzma::CompressArg:: "--format=lzma";
APT::Compressor::lzma::CompressArg:: "-6";
APT::Compressor::lzma::UncompressArg "";
APT::Compressor::lzma::UncompressArg:: "--format=lzma";

Bug#1024265: opengv: Build for all supported python3 versions or Build-Depend on python3-dev

[Tyler Weaver]

Control: tags -1 patchFrom 73eef02134beab56bd32d126bcf68b922f648246 Mon Sep 17 00:00:00 2001
From: Tyler Weaver 
Date: Thu, 17 Nov 2022 13:35:24 -0700
Subject: [PATCH] Use pybuild to build for multiple Python versions

Closes: #1024265
---
 debian/rules | 12 +---
 1 file changed, 5 insertions(+), 7 deletions(-)

diff --git a/debian/rules b/debian/rules
index 466bb78..0f766ef 100755
--- a/debian/rules
+++ b/debian/rules
@@ -4,14 +4,11 @@
 # Uncomment this to turn on verbose mode.
 #export DH_VERBOSE=1
 
-%:
-	dh $@ --with python3
+export PYBUILD_CONFIGURE_ARGS=-DBUILD_TESTS=ON -DBUILD_PYTHON=ON -DBUILD_SHARED_LIBS=ON
+export PYBUILD_SYSTEM=cmake
 
-override_dh_auto_configure:
-	dh_auto_configure -- \
-		-DBUILD_TESTS=ON \
-		-DBUILD_PYTHON=ON \
-		-DBUILD_SHARED_LIBS=ON
+%:
+	dh $@ --with python3 --buildsystem=pybuild
 
 override_dh_auto_build-arch:
 	dh_auto_build -a
@@ -34,3 +31,4 @@ override_dh_auto_clean:
 	rm -rf doc/html doc/latex
 
 
+
-- 
2.34.1



publickey - maybe@tylerjw.dev - 0xED8559C2.asc
Description: application/pgp-keys


signature.asc
Description: OpenPGP digital signature

Bug#1019364: gnome-software: Unable to install XXX as not supported

[Tyler Magee Shields]

Package: gnome-software
Version: 43~beta-1
Severity: important
Tags: upstream
X-Debbugs-Cc: tylermageeshie...@gmail.com

Dear Maintainer,

I cannot install anything with Software:
Unable to install XXX as not supported

where XXX is the name of the application.

This seems to be a bug. Tried using solutions from the web, didn't work.
Please fix this bug! Else I may have to keep using the command line or
GNOME Packages (older software) to install stuff.

-- System Information:
Debian Release: bookworm/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.18.0-4-amd64 (SMP w/8 CPU threads; PREEMPT)
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8), LANGUAGE=en_GB:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages gnome-software depends on:
ii  appstream0.15.5-1
ii  apt-config-icons 0.15.5-1
ii  dconf-gsettings-backend [gsettings-backend]  0.40.0-3
ii  gnome-software-common43~beta-1
ii  gsettings-desktop-schemas43~alpha-1
ii  libadwaita-1-0   1.2~beta-1
ii  libappstream40.15.5-1
ii  libc62.34-7
ii  libcairo21.16.0-6
ii  libfwupd21.8.4-2
ii  libgdk-pixbuf-2.0-0  2.42.9+dfsg-1
ii  libglib2.0-0 2.72.3-1+b1
ii  libgtk-4-1   4.7.2+ds-3
ii  libgtk3-perl 0.038-1
ii  libgudev-1.0-0   237-2
ii  libjson-glib-1.0-0   1.6.6-1
ii  libmalcontent-0-00.10.5-1
ii  libpackagekit-glib2-18   1.2.5-3
ii  libpango-1.0-0   1.50.9+ds-1
ii  libpolkit-gobject-1-00.105-33
ii  libsoup2.4-1 2.74.2-3
ii  libxmlb2 0.3.8-1
ii  packagekit   1.2.5-3
ii  software-properties-gtk  0.96.20.2-2.1

Versions of packages gnome-software recommends:
ii  fwupd  1.8.4-2

Versions of packages gnome-software suggests:
pn  apt-config-icons-hidpi 
pn  gnome-software-plugin-flatpak  
pn  gnome-software-plugin-snap 

-- no debconf information

Bug#1019128: gnome-builder: libsoup2 symbols detected. Using libsoup2 and libsoup3 in the same process is not supported.

[Tyler Magee Shields]

Package: gnome-builder
Version: 42.1-1+b2
Severity: grave
Tags: upstream
Justification: renders package unusable
X-Debbugs-Cc: tylermageeshie...@gmail.com

Dear Maintainer,

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation? GNOME Builder no longer works so I can no
 longer create GNOME apps
   * What exactly did you do (or not do) that was effective (or
 ineffective)? Enable backports
   * What was the outcome of this action? GNOME Builder crashes instantly a
split
 second after launch
   * What outcome did you expect instead? GNOME Builder displays UI

Log:

(process:46288): libsoup-ERROR **: 09:19:28.122: libsoup2 symbols detected.
Using libsoup2 and libsoup3 in the same process is not supported.
Trace/breakpoint trap

In the terminal I cannot use command line flags at all, it throws the same
error.


-- System Information:
Debian Release: bookworm/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.18.0-4-amd64 (SMP w/8 CPU threads; PREEMPT)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_GB:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages gnome-builder depends on:
ii  clang1:14.0-55.1
ii  dconf-gsettings-backend [gsettings-backend]  0.40.0-3
ii  exuberant-ctags  1:5.9~svn20110310-16
ii  gir1.2-dazzle-1.03.44.0-1
ii  gir1.2-ggit-1.0  1.1.0-1
ii  gir1.2-glib-2.0  1.72.0-1+b1
ii  gir1.2-gtk-3.0   3.24.34-3
ii  gir1.2-gtksource-4   4.8.3-1
ii  gir1.2-jsonrpc-1.0   3.42.0-1
ii  gir1.2-peas-1.0  1.32.0-1+b1
ii  gir1.2-template-1.0  3.35.0-1
ii  gir1.2-vte-2.91  0.69.92-1
ii  gir1.2-webkit2-4.0   2.36.7-1
ii  libatk1.0-0  2.38.0-1
ii  libc62.34-7
ii  libcairo-gobject21.16.0-6
ii  libcairo21.16.0-6
ii  libclang1-14 1:14.0.6-2
ii  libcmark0.30.2   0.30.2-5
ii  libdazzle-1.0-0  3.44.0-1
ii  libdevhelp-3-6   43~beta-2
ii  libenchant-2-2   2.3.3-1
ii  libflatpak0  1.14.0-1
ii  libfontconfig1   2.13.1-4.4
ii  libgirepository-1.0-11.72.0-1+b1
ii  libgit2-1.3  1.3.0+dfsg.1-3
ii  libgit2-glib-1.0-0   1.1.0-1
ii  libgladeui-2-13  3.40.0-1
ii  libglib2.0-0 2.72.3-1+b1
ii  libgspell-1-21.11.1-1
ii  libgtk-3-0   3.24.34-3
ii  libgtksourceview-4-0 4.8.3-1
ii  libhandy-1-0 1.7.90-1
ii  libjson-glib-1.0-0   1.6.6-1
ii  libjsonrpc-glib-1.0-13.42.0-1
ii  libpango-1.0-0   1.50.9+ds-1
ii  libpangocairo-1.0-0  1.50.9+ds-1
ii  libpangoft2-1.0-01.50.9+ds-1
ii  libpcre3 2:8.39-14
ii  libpeas-1.0-01.32.0-1+b1
ii  libportal-gtk3-1 0.6-2
ii  libportal1   0.6-2
ii  libsoup2.4-1 2.74.2-3
ii  libsysprof-4 3.44.0-1
ii  libsysprof-ui-4  3.44.0-1
ii  libtemplate-glib-1.0-0   3.35.0-1
ii  libvala-0.56-dev [libvala-dev]   0.56.2-1
ii  libvte-2.91-00.69.92-1
ii  libwebkit2gtk-4.0-37 2.36.7-1
ii  libxml2  2.9.14+dfsg-1+b1
ii  python3  3.10.6-1
ii  python3-gi   3.42.2-2

Versions of packages gnome-builder recommends:
ii  build-essential12.9
pn  flatpak-builder
ii  gettext0.21-8
ii  meson  0.62.2-1
ii  pkg-config 0.29.2-1
ii  python3-lxml   4.9.1-1+b1
ii  valgrind-if-available  3.18.1-1-1

Versions of packages gnome-builder suggests:
pn  rubocop  

Versions of packages flatpak depends on:
ii  adduser 3.128
ii  bubblewrap  0.6.2-1
ii  dbus [default-dbus-system-bus]  1.14.0-2
ii  libappstream4   0.15.5-1
ii  libarchive133.6.0-1

Bug#1019094: gjs constantly crashes instantly out of nowhere

[Tyler Magee Shields]

Package: gjs
Version: 1.73.1-1
Severity: important
Tags: upstream
X-Debbugs-Cc: tylermageeshie...@gmail.com

Dear Maintainer,

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
   * What was the outcome of this action?
   * What outcome did you expect instead?

*** End of the template - remove these template lines ***


-- System Information:
Debian Release: bookworm/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.18.0-4-amd64 (SMP w/8 CPU threads; PREEMPT)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_GB:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages gjs depends on:
ii  gir1.2-gtk-3.0  3.24.34-3
ii  libc6   2.34-4
ii  libgcc-s1   12.1.0-8
ii  libgjs0g1.73.1-1
ii  libglib2.0-02.72.3-1+b1
ii  libstdc++6  12.1.0-8

gjs recommends no packages.

gjs suggests no packages.

-- no debconf information

Bug#1012538: knocked out usability - module 'collections' has no attribute 'Callable'

[Tyler Schwend]

The Debian packaged version is much older than the current version.

On Wednesday, June 8, 2022, Arnaldo Pirrone  wrote:
> Package: chirp
> Version: 1:20200227+py3+20200213-3
> Severity: grave
> X-Debbugs-Cc: it9...@gmail.com
>
> Just tried using this software to program my radio and found out it
stopped
> working. I remember it was everything fine a few months ago. Probably
this is
> caused by changes in Python 3.10.5
>
>
> -- System Information:
> Debian Release: bookworm/sid
>   APT prefers unstable
>   APT policy: (500, 'unstable'), (1, 'experimental')
> Architecture: amd64 (x86_64)
> Foreign Architectures: i386
>
> Kernel: Linux 5.17.13-xanmod1 (SMP w/4 CPU threads)
> Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
> Locale: LANG=it_IT.UTF-8, LC_CTYPE=it_IT.UTF-8 (charmap=UTF-8), LANGUAGE
not set
> Shell: /bin/sh linked to /usr/bin/dash
> Init: systemd (via /run/systemd/system)
> LSM: AppArmor: enabled
>
> Versions of packages chirp depends on:
> ii  python3   3.10.4-1+b1
> ii  python3-future0.18.2-6
> ii  python3-serial3.5-1
> ii  python3-six   1.16.0-3
> ii  python3-wxgtk4.0  4.0.7+dfsg-13
>
> chirp recommends no packages.
>
> chirp suggests no packages.
>
> -- no debconf information
>
>

Bug#991417: simple-cdd generated iso: No kernel modules were found

[Tyler Stachecki]

On Sun, 25 Jul 2021 15:08:54 -0400 Tyler Stachecki <
stachecki.ty...@gmail.com> wrote:
> This is more likely a bug with how artifacts are being published when the
> kernel ABI is bumped during RCs, as the same thing happened during buster
> until it was released...
>
> Both of these links have OLD artifacts and the installer will not work,
> thus PXE boots are broken all the same:
>
http://ftp.debian.org/debian/dists/testing/main/installer-amd64/current/images/netboot/debian-installer/amd64/
>
http://ftp.debian.org/debian/dists/buster/main/installer-amd64/current/images/netboot/debian-installer/amd64/

apologies, the links should be course be:
http://ftp.debian.org/debian/dists/testing/main/installer-amd64/current/images/netboot/debian-installer/amd64/
http://ftp.debian.org/debian/dists/bullseye/main/installer-amd64/current/images/netboot/debian-installer/amd64/

Bug#991417: simple-cdd generated iso: No kernel modules were found

[Tyler Stachecki]

This is more likely a bug with how artifacts are being published when the
kernel ABI is bumped during RCs, as the same thing happened during buster
until it was released...

Both of these links have OLD artifacts and the installer will not work,
thus PXE boots are broken all the same:
http://ftp.debian.org/debian/dists/testing/main/installer-amd64/current/images/netboot/debian-installer/amd64/
http://ftp.debian.org/debian/dists/buster/main/installer-amd64/current/images/netboot/debian-installer/amd64/

Bug#973661:

[Tyler Klein-Rach]

Package: installation-reports

Boot method: 
Image version: 
Date: 

Machine: 
Processor:
Memory:
Partitions: 

Output of lspci -knn (or lspci -nn):

Base System Installation Checklist:
[O] = OK, [E] = Error (please elaborate below), [ ] = didn't try it

Initial boot:   [ ]
Detect network card:[ ]
Configure network:  [ ]
Detect CD:  [ ]
Load installer modules: [ ]
Detect hard drives: [ ]
Partition hard drives:  [ ]
Install base system:[ ]
Clock/timezone setup:   [ ]
User/password setup:[ ]
Install tasks:  [ ]
Install boot loader:[ ]
Overall install:[ ]

Comments/Problems:

Bug#969546: freecad: Freecad crashes when placing beam in Arch workbench

[Tyler Schwend]

Package: freecad
Version: 0.18.4+dfsg2-5
Severity: normal
Tags: upstream
X-Debbugs-Cc: tylerschw...@gmail.com

Dear Maintainer,

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?
Attempting to use the Arch workbench in Freecad.

   * What exactly did you do (or not do) that was effective (or
 ineffective)?
Open a new document.
Switch to the Arch workbench.
Click the Structure button.
Switch to Beam.
Optionally, set the material and preset.
Place the beam.
   * What was the outcome of this action?
Freecad crashes with the below segfault.
   * What outcome did you expect instead?
A new beam.

*** End of the template - remove these template lines ***
Program received signal SIGSEGV, Segmentation fault.
#0  /lib/x86_64-linux-gnu/libc.so.6(+0x3be30) [0x7f2ef531fe30]
#1  0x7f2ed9773a5f in Shiboken::Object::cppPointers(SbkObject*) from
/usr/lib/x86_64-linux-gnu/libshiboken2.cpython-38-x86_64-linux-gnu.so.5.15+0xdf
#2  /usr/lib/python3/dist-packages/shiboken2/shiboken2.cpython-38-x86_64-linux-
gnu.so(+0x273a) [0x7f2eec17573a]
#3  /usr/lib/x86_64-linux-gnu/libpython3.8.so.1.0(+0xe5f66) [0x7f2ef632cf66]
#4  /usr/lib/x86_64-linux-gnu/libpython3.8.so.1.0(PyVectorcall_Call+0x5c)
[0x7f2ef62e913c]
#5  0x7f2ef73ccd07 in Gui::qt_getCppPointer(Py::Object const&, char const*,
char const*) from /usr/lib/freecad-python3/lib/libFreeCADGui.so+0x2c7
#6  0x7f2ef72fd950 in
Gui::TaskView::TaskDialogPython::TaskDialogPython(Py::Object const&) from
/usr/lib/freecad-python3/lib/libFreeCADGui.so+0x7d0
#7  0x7f2ef72fdd0d in Gui::TaskView::ControlPy::showDialog(Py::Tuple const&)
from /usr/lib/freecad-python3/lib/libFreeCADGui.so+0x8d
#8  0x7f2ef72fe6b1 in
Py::PythonExtension::method_varargs_call_handler(_object*,
_object*) from /usr/lib/freecad-python3/lib/libFreeCADGui.so+0x1b1
#9  /usr/lib/x86_64-linux-gnu/libpython3.8.so.1.0(+0xa19c7) [0x7f2ef62e89c7]
#10  /usr/lib/x86_64-linux-gnu/libpython3.8.so.1.0(_PyObject_MakeTpCall+0xa7)
[0x7f2ef62e9817]
#11  /usr/lib/x86_64-linux-gnu/libpython3.8.so.1.0(+0x7dcd3) [0x7f2ef62c4cd3]
#12  /usr/lib/x86_64-linux-
gnu/libpython3.8.so.1.0(_PyEval_EvalFrameDefault+0x1292) [0x7f2ef62bc552]
#13  /usr/lib/x86_64-linux-gnu/libpython3.8.so.1.0(+0x73073) [0x7f2ef62ba073]
#14  /usr/lib/x86_64-linux-gnu/libpython3.8.so.1.0(PyVectorcall_Call+0x5c)
[0x7f2ef62e913c]
#15  0x7f2ed9279dc8 in PySide::SignalManager::callPythonMetaMethod(QMetaMethod
const&, void**, _object*, bool) from /usr/lib/x86_64-linux-
gnu/libpyside2.cpython-38-x86_64-linux-gnu.so.5.15+0x98
#16  /usr/lib/x86_64-linux-gnu/libpyside2.cpython-38-x86_64-linux-
gnu.so.5.15(+0x142ae) [0x7f2ed927e2ae]
#17  /usr/lib/x86_64-linux-gnu/libQt5Core.so.5(+0x2d6610) [0x7f2ef5968610]
#18  0x7f2ef596c24a in QTimer::timeout(QTimer::QPrivateSignal) from
/usr/lib/x86_64-linux-gnu/libQt5Core.so.5+0x3a
#19  /usr/lib/python3/dist-packages/PySide2/QtCore.cpython-38-x86_64-linux-
gnu.so(+0x2b85bf) [0x7f2ed95585bf]
#20  0x7f2ef595ee5f in QObject::event(QEvent*) from /usr/lib/x86_64-linux-
gnu/libQt5Core.so.5+0x1cf
#21  /usr/lib/python3/dist-packages/PySide2/QtCore.cpython-38-x86_64-linux-
gnu.so(+0x2b8167) [0x7f2ed9558167]
#22  0x7f2ef5d2403f in QApplicationPrivate::notify_helper(QObject*, QEvent*)
from /usr/lib/x86_64-linux-gnu/libQt5Widgets.so.5+0x7f
#23  0x7f2ef7108cf8 in Gui::GUIApplication::notify(QObject*, QEvent*) from
/usr/lib/freecad-python3/lib/libFreeCADGui.so+0x88
#24  0x7f2ef5933b62 in QCoreApplication::notifyInternal2(QObject*, QEvent*)
from /usr/lib/x86_64-linux-gnu/libQt5Core.so.5+0x182
#25  0x7f2ef59886c3 in QTimerInfoList::activateTimers() from
/usr/lib/x86_64-linux-gnu/libQt5Core.so.5+0x3e3
#26  /usr/lib/x86_64-linux-gnu/libQt5Core.so.5(+0x2f6f44) [0x7f2ef5988f44]
#27  /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0(g_main_context_dispatch+0x27d)
[0x7f2ef32255fd]
#28  /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0(+0x50880) [0x7f2ef3225880]
#29  /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0(g_main_context_iteration+0x2f)
[0x7f2ef322590f]
#30  0x7f2ef59892ff in
QEventDispatcherGlib::processEvents(QFlags) from
/usr/lib/x86_64-linux-gnu/libQt5Core.so.5+0x5f
#31  0x7f2ef59324db in QEventLoop::exec(QFlags)
from /usr/lib/x86_64-linux-gnu/libQt5Core.so.5+0x12b
#32  0x7f2ef593a782 in QCoreApplication::exec() from /usr/lib/x86_64-linux-
gnu/libQt5Core.so.5+0x92
#33  0x7f2ef709a77b in Gui::Application::runApplication() from
/usr/lib/freecad-python3/lib/libFreeCADGui.so+0x165b
#34  freecad(main+0x6a6) [0x55aaaefdf726]
#35  /lib/x86_64-linux-gnu/libc.so.6(__libc_start_main+0xea) [0x7f2ef530acca]
#36  freecad(_start+0x2a) [0x55aaaefdfa1a]
Segmentation fault



-- System Information:
Debian Release: bullseye/sid
  APT prefers testing
  APT policy: (990, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.7.0-2-amd64 (SMP w/8 CPU threads)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, 
TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 

Bug#952761:

[Tyler Weldon]

Apologies, just found out updates are done every 6 hours. Thanks!

Bug#952761: Version 3.8.2-2

[Tyler Weldon]

Version 3.8.2-2 does not appear to have been uploaded.

Bug#952761: 3.8.2-2

[Tyler Weldon]

Think this needs to be released:
https://tracker.debian.org/news/1105519/accepted-python3-stdlib-extensions-382-2-source-into-unstable/

Bug#952761: python3-distutils: Dependencies broken, required version of Python not available.

[Tyler Weldon]

Package: python3-distutils
Version: 3.8.2-1
Severity: important

Dear Maintainer,

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
   * What was the outcome of this action?
   * What outcome did you expect instead?

*** End of the template - remove these template lines ***

Cannot install referenced package. Depends on Python3 >= 3.8.0-1~, however only 
Python3 3.7.5-3 is available. Possibly due to 
https://salsa.debian.org/cpython-team/python3-stdlib/-/commit/6aa4a17f1ec6cc2c37b6ee73e3a1f8d720e0610d
 ?

-- System Information:
Debian Release: bullseye/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 5.4.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=C, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE=C (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages python3-distutils depends on:
ii  python3  3.7.5-3
pn  python3-lib2to3  

python3-distutils recommends no packages.

python3-distutils suggests no packages.

Bug#934457: installation in chroot failing with Unknown device "/dev/fuse": No such device

[Tyler Weldon]

Hello,

The issue is in the command:

udevadm test --action -p  $(udevadm info -q path -n /dev/fuse)

the -p flag is being seen as a parameter to the --action flag, which is not
a valid action.

Per the udevadm man page:

*-c*, *--action=**ACTION*
Type of event to be triggered. Possible actions are "add", "remove",
"change", "move", "online", "offline", "bind", and "unbind". The default
value is "change".

Hope this helps.

Tyler Weldon
tylerweldo...@gmail.com
(609)-661-9396

Bug#918140: Confirming linux-image-4.17.0-3-amd64 works

[Tyler Schwend]

Just confirming that linux-image-4.17.0-3-amd64 is working fine. Almost 24
hours of uptime whereas I couldn't get 2 hours on
linux-image-4.19.0-1-amd64.

I am using the same kernel options on both kernels, so I'm not sure if 4.17
works without disabling APSTE or not.

Bug#918140: linux-image-4.19.0-1-amd64: Samsung PM951 SSD in Dell XPS 15 9550 goes read-only

[Tyler Schwend]

Package: src:linux
Version: 4.19.12-1
Severity: critical
Tags: upstream
Justification: breaks the whole system

Dear Maintainer,

Submitting a bug report wherein after a kernel upgrade my laptop's SSD will,
during use or idle, go into read-only mode after minutes or hours of uptime. It
seems this is related to NVME/APSTE features (which I don't understand). Below
are some similar reports for other models:

https://groups.google.com/forum/#!searchin/linux.debian.bugs.dist/apst$20samsung|sort:date/linux.debian.bugs.dist/1AAKPI7rfQA/450TYup-
AQAJ

https://bbs.archlinux.org/viewtopic.php?id=232692

https://askubuntu.com/questions/905710/ext4-fs-error-after-
ubuntu-17-04-upgrade/906105#906105

I had been running an older kernel (because I previously noticed this and
associated it with a kernel upgrade) but over time forgot why I was using an
old kernel. Some docker work required me to update my kernel again, the problem
returned, and I was reminded of why I kept running the old kernel.

I believe that linux-image-4.17.0-3-amd64 works fine for me (possibly now that
I have disabled APSTE) but linux-image-4.19.0-1-amd64 does not. I don't know
what version of kernel I was running previously, but I will boot back to
4.17.03 and use that for a time, and then update the bug report.


   * What led up to the situation?
- Upgrading from an older 4.x kernel. I think 4.17 is fine, but will have to
run for a while to be sure.
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
- No fixes found except for running older kernel.
- Disabling APSTE with nvme_core.default_ps_max_latency_us=0 provides no
relief, though it is reported as disabled by NVME tool.
- There are no firmware updates available for this drive.



-- Package-specific info:
** Version:
Linux version 4.19.0-1-amd64 (debian-ker...@lists.debian.org) (gcc version 
8.2.0 (Debian 8.2.0-13)) #1 SMP Debian 4.19.12-1 (2018-12-22)

** Command line:
BOOT_IMAGE=/vmlinuz-4.19.0-1-amd64 root=/dev/mapper/func--platform--vg-root ro 
quiet nvme_core.default_ps_max_latency_us=0

** Tainted: OE (12288)
 * Out-of-tree module has been loaded.
 * Unsigned module has been loaded.

** Kernel log:
[3.661043] Bluetooth: L2CAP socket layer initialized
[3.661055] Bluetooth: SCO socket layer initialized
[3.666339] usbcore: registered new interface driver btusb
[3.690698] Bluetooth: BNEP (Ethernet Emulation) ver 1.3
[3.690699] Bluetooth: BNEP filters: protocol multicast
[3.690702] Bluetooth: BNEP socket layer initialized
[3.713324] input: HDA Intel PCH Headphone Mic as 
/devices/pci:00/:00:1f.3/sound/card0/input20
[3.713365] input: HDA Intel PCH HDMI/DP,pcm=3 as 
/devices/pci:00/:00:1f.3/sound/card0/input21
[3.713400] input: HDA Intel PCH HDMI/DP,pcm=7 as 
/devices/pci:00/:00:1f.3/sound/card0/input22
[3.713450] input: HDA Intel PCH HDMI/DP,pcm=8 as 
/devices/pci:00/:00:1f.3/sound/card0/input23
[3.713507] input: HDA Intel PCH HDMI/DP,pcm=9 as 
/devices/pci:00/:00:1f.3/sound/card0/input24
[3.715654] input: HDA Intel PCH HDMI/DP,pcm=10 as 
/devices/pci:00/:00:1f.3/sound/card0/input25
[3.736832] input: Logitech Unifying Device. Wireless PID:2011 Keyboard as 
/devices/pci:00/:00:14.0/usb1/1-2/1-2.3/1-2.3:1.2/0003:046D:C52B.0008/0003:046D:2011.000A/input/input26
[3.737036] input: Logitech Unifying Device. Wireless PID:2011 Consumer 
Control as 
/devices/pci:00/:00:14.0/usb1/1-2/1-2.3/1-2.3:1.2/0003:046D:C52B.0008/0003:046D:2011.000A/input/input27
[3.737096] input: Logitech Unifying Device. Wireless PID:2011 System 
Control as 
/devices/pci:00/:00:14.0/usb1/1-2/1-2.3/1-2.3:1.2/0003:046D:C52B.0008/0003:046D:2011.000A/input/input28
[3.737154] hid-generic 0003:046D:2011.000A: input,hidraw7: USB HID v1.11 
Keyboard [Logitech Unifying Device. Wireless PID:2011] on usb-:00:14.0-2.3:4
[3.738701] input: Logitech Unifying Device. Wireless PID:4055 Mouse as 
/devices/pci:00/:00:14.0/usb1/1-2/1-2.3/1-2.3:1.2/0003:046D:C52B.0008/0003:046D:4055.000B/input/input32
[3.738766] hid-generic 0003:046D:4055.000B: input,hidraw8: USB HID v1.11 
Mouse [Logitech Unifying Device. Wireless PID:4055] on usb-:00:14.0-2.3:1
[3.752683] input: Logitech K520 as 
/devices/pci:00/:00:14.0/usb1/1-2/1-2.3/1-2.3:1.2/0003:046D:C52B.0008/0003:046D:2011.000C/input/input36
[3.781508] Bluetooth: hci0: BCM: chip id 102
[3.782508] Bluetooth: hci0: BCM: features 0x2f
[3.798526] Bluetooth: hci0: func-platform
[3.799513] Bluetooth: hci0: BCM (001.001.005) build 0422
[3.801782] bluetooth hci0: firmware: direct-loading firmware 
brcm/BCM-0a5c-6410.hcd
[3.847890] logitech-hidpp-device 0003:046D:2011.000C: input,hidraw9: USB 
HID v1.11 Keyboard [Logitech K520] on usb-:00:14.0-2.3:2
[3.854718] input: Logitech K520 as 

Bug#904624: plasmashell: Task bar does not autohide when second monitor is below main monitor.

[Tyler]

Package: plasmashell
Version: plasma-workspace
Severity: minor

Dear Maintainer,

The task bar does not auto hide when my mouse is not hovering over it. I have 
made sure the task bar is set to auto hide.
I have made sure that there are no active windows. If I move my mouse to my 
second monitor the task bar will disappear and 
then reappear quickly. I was able to fix this problem by setting my second 
monitor to be to the right of my primary 
monitor. Originally my secondary monitor was below my primary.


-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.17.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE= 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Bug#900844: plasma-desktop: Start Bar icons do not line up with programs they open

[Tyler]

Package: plasma-desktop
Version: 4:5.12.5-1
Severity: normal

Dear Maintainer,

I encountered a bug where the icons on the start bar in Plasma do not line up 
witht he program they open. 
For example, in a given case where you are running Firefox, steam, dolphin, and 
konsole. Clicking on 
firefox in the start bar might open konsole, konsole opens dolphin, and dolphin 
opens firefox, and steam
doesn't even have an icon. To "fix" this I've restarted plasma and it seems to 
be a temporary fix,
however over time the bug does seem to show up again. Further more, this bug 
does not always apply to 
all open programs in the start bar. While some of the icons point to the wrong 
program, others may 
point to the correct program. I've found that the longer the program is running 
the more likely it
is that it points to the wrong program, and the further to the right on the 
start bar a program is,
the more likely it is that it points to itself, but this may just be 
coincidence.

-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.16.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE= 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages plasma-desktop depends on:
ii  breeze   4:5.12.5-1
ii  kactivitymanagerd5.12.5-1
ii  kde-cli-tools4:5.12.5-1
ii  kded55.46.0-1
ii  kio  5.46.0-1
ii  kpackagetool55.46.0-1
ii  libappstreamqt2  0.12.0-3
ii  libc62.27-3
ii  libcanberra0 0.30-6
ii  libfontconfig1   2.13.0-5
ii  libgcc1  1:8.1.0-3
ii  libkf5activities55.46.0-1
ii  libkf5activitiesstats1   5.46.0-1
ii  libkf5archive5   5.46.0-1
ii  libkf5auth5  5.46.0-1
ii  libkf5baloo5 5.46.0-1
ii  libkf5codecs55.46.0-1
ii  libkf5completion55.46.0-1
ii  libkf5configcore55.46.0-1
ii  libkf5configgui5 5.46.0-1
ii  libkf5configwidgets5 5.46.0-1
ii  libkf5coreaddons55.46.0-1
ii  libkf5dbusaddons55.46.0-1
ii  libkf5declarative5   5.46.0-1
ii  libkf5emoticons-bin  5.46.0-1
ii  libkf5emoticons5 5.46.0-1
ii  libkf5globalaccel5   5.46.0-1
ii  libkf5guiaddons5 5.46.0-1
ii  libkf5i18n5  5.46.0-1
ii  libkf5iconthemes55.46.0-1
ii  libkf5itemmodels55.46.0-1
ii  libkf5itemviews5 5.46.0-1
ii  libkf5jobwidgets55.46.0-1
ii  libkf5kcmutils5  5.46.0-1
ii  libkf5kdelibs4support5   5.46.0-1
ii  libkf5kiocore5   5.46.0-1
ii  libkf5kiofilewidgets55.46.0-1
ii  libkf5kiowidgets55.46.0-1
ii  libkf5newstuff5  5.46.0-1
ii  libkf5notifications5 5.46.0-1
ii  libkf5notifyconfig5  5.46.0-1
ii  libkf5package5   5.46.0-1
ii  libkf5parts5 5.46.0-1
ii  libkf5people55.46.0-1
ii  libkf5peoplewidgets5 5.46.0-1
ii  libkf5plasma55.46.0-1
ii  libkf5plasmaquick5   5.46.0-1
ii  libkf5quickaddons5   5.46.0-1
ii  libkf5runner55.46.0-1
ii  libkf5service-bin5.46.0-1
ii  libkf5service5   5.46.0-1
ii  libkf5solid5 5.46.0-1
ii  libkf5sonnetui5  5.46.0-1
ii  libkf5wallet-bin 5.46.0-2
ii  libkf5wallet55.46.0-2
ii  libkf5widgetsaddons5 5.46.0-1
ii  libkf5windowsystem5  5.46.0-1
ii  libkf5xmlgui55.46.0-1
ii  libkfontinst54:5.12.5-1
ii  libkfontinstui5  4:5.12.5-1
ii  libkworkspace5-5 4:5.12.5-1
ii  libphonon4qt5-4  4:4.10.1-1
ii  libpulse-mainloop-glib0  11.1-5
ii  libpulse011.1-5
ii  libqt5concurrent55.10.1+dfsg-7
ii  libqt5core5a

Bug#888244: apparmor: Convert quilt patch series to per-topic subdirectories managed by gbp-pq

[Tyler Hicks]

On 03/18/2018 09:24 AM, intrigeri wrote:
> Hi,
> 
> Tyler Hicks:
>>> 3. Give me the go ahead and then I'll:
>>>
>>>- refresh the {debian,ubuntu}/gbp-pq branches
>>>- merge the {debian,ubuntu}/gbp-pq branches respectively into
>>>  {debian,ubuntu}/master
>>>- push {debian,ubuntu}/master
>>>- release & upload to Debian sid
>>>- ask you to release & upload to Ubuntu
> 
>> I've taken a quick look at the gbp-pq branches and it sounds like Steve
>> did, as well. I see the value there so you've got the go ahead. :)
> 
> Done. So check the current ubuntu/master and if suitable, upload
> to Ubuntu.

I've finalized, tagged, and pushed ubuntu/master. I've also uploaded to
Ubuntu Bionic.

Tyler



signature.asc
Description: OpenPGP digital signature

Bug#888244: apparmor: Convert quilt patch series to per-topic subdirectories managed by gbp-pq

[Tyler Hicks]

On 03/14/2018 10:46 PM, Tyler Hicks wrote:
> On 02/28/2018 04:56 AM, intrigeri wrote:
>> It would be great if we could do that before 18.04 LTS is too deeply
>> frozen so you can benefit, in the next 5 years, from all the goodness
>> ubuntu/master..debian/master has accumulated since your last merge
>> from Debian. If that timing is not an option, we could of course
>> postpone this to post-18.04-release but then you'll have to deal with
>> two vastly different debian/ directories between your LTS and ongoing
>> development branches, which I expect might be quite painful and
>> error-prone.
> 
> We are running late on getting this merge done. Let me know if you think
> it'll be a bit before you can do all the steps you outlined in #3 above.
> If that's the case, I should probably go ahead and upload what's in
> ubuntu/master now and then do another small, incremental upload after
> the gbp-pq changes are merged.

I decided to finalize, tag, and upload 2.12-3ubuntu1 to Bionic without
the gbp-pq changes so that it doesn't put intrigeri in the hot seat to
make those changes. We'll be happy to do an additional upload that
incorporates the packages changes needed for gbp-pq (as long as it isn't
too late in the Bionic cycle).

You'll find that the ubuntu/master branch is updated and the
ubuntu/2.12-3ubuntu1 is pushed to salsa.

Tyler



signature.asc
Description: OpenPGP digital signature

Bug#888244: apparmor: Convert quilt patch series to per-topic subdirectories managed by gbp-pq

[Tyler Hicks]

On 02/28/2018 04:56 AM, intrigeri wrote:
> Hi,
> 
> Steve Beattie:
>> Sorry, I've been swamped coping with Meltdown/Spectre. I took a brief
>> look at the topic git branches and it seems like a modest enough
>> organizational improvement to me[1].
> 
> OK. To me being able to use gbp-pq is a life-changer and I hope it'll
> be the same for you once you get used to it, but I agree that at the
> end of the day we're still tracking patches in Git, which has a number
> of drawbacks including the ones you've mentioned :)
> 
>> What would need to happen on the Ubuntu side to go forward?
> 
> Thanks for asking!
> 
> 1. Start using the ubuntu/* namespace on the Git repo on salsa for the
>Ubuntu packaging. I've already imported your work up to
>2.11.0-2ubuntu19 there.

Done! Thanks for giving us such a headstart on getting this set up.

>I did not import anything from your
>*-{security,updates} suites but DEP-14 should make it pretty easy
>to have dedicated branches for those. I'm happy to provide guidance
>if needed.

I'm not sure that we'll find importing *-{security,updates} to be very
useful. We'll probably just stick with ubuntu/master for now.

> 2. Merge the latest debian/2.12-* tag into ubuntu/master so you get
>2.12 and the many packaging improvements you folks have reviewed
>and that are in Debian already (otherwise the delta will remain so
>big we can't proceed with the big next step easily).

Done! I've pushed the resulting merge to ubuntu/master. What's there
right now is fully QA'ed and, IMO, ready to be uploaded to Bionic after
finalizing the changelog and tagging the release.

> 3. Give me the go ahead and then I'll:
> 
>- refresh the {debian,ubuntu}/gbp-pq branches
>- merge the {debian,ubuntu}/gbp-pq branches respectively into
>  {debian,ubuntu}/master
>- push {debian,ubuntu}/master
>- release & upload to Debian sid
>- ask you to release & upload to Ubuntu

I've taken a quick look at the gbp-pq branches and it sounds like Steve
did, as well. I see the value there so you've got the go ahead. :)

> 
> It would be great if we could do that before 18.04 LTS is too deeply
> frozen so you can benefit, in the next 5 years, from all the goodness
> ubuntu/master..debian/master has accumulated since your last merge
> from Debian. If that timing is not an option, we could of course
> postpone this to post-18.04-release but then you'll have to deal with
> two vastly different debian/ directories between your LTS and ongoing
> development branches, which I expect might be quite painful and
> error-prone.

We are running late on getting this merge done. Let me know if you think
it'll be a bit before you can do all the steps you outlined in #3 above.
If that's the case, I should probably go ahead and upload what's in
ubuntu/master now and then do another small, incremental upload after
the gbp-pq changes are merged.

Thanks again for all your work on this!

Tyler

> 
> And the following step of my secret evil plan is:
> 
> 4. Check with Apertis what it would take to have them share our Git
>history (they're already using DEP-14 but with a different bzr→Git
>import that was done earlier) and possibly join the Salsa merge
>request fun so Debian and Ubuntu can benefit from the improvements
>Apertis made: a quick glance suggests that a few of their changes
>could be relevant for other distros :)
> 
> Cheers,
> 




signature.asc
Description: OpenPGP digital signature

Bug#877901: libseccomp: Test failures should cause the build to fail

[Tyler Hicks]

Package: libseccomp
Version: 2.3.1-2.1
Severity: normal
Tags: patch
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu artful ubuntu-patch

Dear Maintainer,

While doing some work on libseccomp in Ubuntu, I noticed that the exit
code of the `make check` target was being ignored despite the tests
passing on all architectures we build on. I think we should make test
failures be fatal for the build as the old issues that caused Debian bug
721292 seem to have been fixed.

In Ubuntu, the attached patch was applied to achieve the following:

  * debian/rules: Make test failures cause the build to fail (LP: #1657425)

To test the attached patch, I injected a fake test failure into
tests/13-basic-attrs.py and verified that the subsequent build failed.

Thanks for considering the patch.

Tyler

-- System Information:
Debian Release: stretch/sid
  APT prefers xenial-updates
  APT policy: (500, 'xenial-updates'), (500, 'xenial-security'), (500, 
'xenial'), (400, 'xenial-proposed')
Architecture: amd64 (x86_64)

Kernel: Linux 4.4.0-96-generic (SMP w/12 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru libseccomp-2.3.1/debian/rules libseccomp-2.3.1/debian/rules
--- libseccomp-2.3.1/debian/rules	2016-11-17 17:23:10.0 +
+++ libseccomp-2.3.1/debian/rules	2017-10-06 18:08:35.0 +
@@ -29,9 +29,3 @@
 		"usr/lib/$(DEB_HOST_MULTIARCH)/libseccomp.so.*" \
 		lib/$(DEB_HOST_MULTIARCH)
 	dh_install --remaining-packages --list-missing
-
-override_dh_auto_test:
-ifeq (,$(findstring nocheck,$(DEB_BUILD_OPTIONS)))
-	make check 2>&1 | tee regression.out && \
-	  grep -q "^ tests failed: 0" regression.out || true
-endif

Bug#874535: vmdebootstrap: BeagleBone Black example is not bootable on BeagleBone Black hardware

[Tyler Riddle]

Package: vmdebootstrap
Version: 1.7-1
Severity: important

Dear Maintainer,

I am highly interested in using Debian with my BeagleBone Black hardware but 
have
run into an issue with vmdebootstrap: the provided example scripts will run
with out error but do not produce a bootable image. I am able to reproduce this
problem 100% of the time.

Here are the steps I've taken (with logs from the session included below):

  1. Execute /usr/share/vmdebootstrap/examples/beagleboneblack.sh with --image 
and --size options
  2. Write the generated image to a microSD card
  3. Boot the BBB off the microSD by holding the user button down at power on

The serial output of the BBB includes output from uboot so the image is at least
partially functional. What I observe is uboot outputting "Staring kernel ..."
then a hang for approximiately 1 minute. After this delay it looks like the BBB
reboots as the uboot output shows up on the serial port again. What I believe
is happening is a watchdog is rebooting the hardware because the kernel has
not loaded. What I do not think is the problem is the kernel has booted and
is not using the serial device for the console.

What I expected to happen is to run the example scripts unmodified and have
a BeagleBone Black image that boots into a Debian operating system.

At this time I haven't found anything that gets the BBB to boot with the image
generated by vmdebootstrap. I can, however, boot the Debian installer but I can
not get a bootable install from it either and I can't yet confirm the issues
are identical.

Here is the output from the session where I created the image and wrote it to
a microSD card:

tyler@happytime:~/tmp$ /usr/share/vmdebootstrap/examples/beagleboneblack.sh 
--image bbb.img --size 1G
Creating disk image
Creating partitions
Using bootsize 100mib: 104857600 bytes
Creating filesystem ext4
Mounting /dev/mapper/loop0p2 on /tmp/tmpZfQvdh
Creating filesystem vfat
Mounting /dev/mapper/loop0p1 on /tmp/tmpZfQvdh/boot/
Debootstrapping sid [armhf]
Setting up binfmt handler
Running debootstrap second stage
Give root an empty password
Removing udev persistent cd and net rules
Enabling systemd-networkd for DHCP
Enabling systemctl-resolved for DNS
Running customize script 
/usr/share/vmdebootstrap/examples/beagleboneblack-customise.sh
Updating the initramfs
Optimizing image for compression
Umounting /tmp/tmpZfQvdh/boot/
Umounting /tmp/tmpZfQvdh
Changing owner to tyler
Cleaning up
tyler@happytime:~/tmp$ sudo dd if=bbb.img of=/dev/sdd bs=1M
[sudo] password for tyler: 
953+1 records in
953+1 records out
10 bytes (1.0 GB, 954 MiB) copied, 53.7612 s, 18.6 MB/s
tyler@happytime:~/tmp$ 




and here is the output from the serial console attached to the BBB hardware 
showing
two boot attempts though no manual reboot was made and no power cycle was 
performed.

U-Boot SPL 2017.07+dfsg1-3 (Aug 04 2017 - 19:56:56)
Trying to boot from MMC1
** First descriptor is NOT a primary desc on 1:1 **
*** Warning - bad CRC, using default environment

reading u-boot.img
reading u-boot.img


U-Boot 2017.07+dfsg1-3 (Aug 04 2017 - 19:56:56 +)

CPU  : AM335X-GP rev 2.1
I2C:   ready
DRAM:  512 MiB
No match for driver 'omap_hsmmc'
No match for driver 'omap_hsmmc'
Some drivers were not found
MMC:   OMAP SD/MMC: 0, OMAP SD/MMC: 1
** First descriptor is NOT a primary desc on 1:1 **
*** Warning - bad CRC, using default environment

 not set. Validating first E-fuse MAC
Net:   Could not get PHY for cpsw: addr 0
cpsw
Press SPACE to abort autoboot in 2 seconds
switch to partitions #0, OK
mmc0 is current device
SD/MMC found on device 0
reading boot.scr
** Unable to read file boot.scr **
reading uEnv.txt
755 bytes read in 6 ms (122.1 KiB/s)
Loaded env from uEnv.txt
Importing environment from mmc0 ...
Running uenvcmd ...
reading vmlinuz-4.12.0-1-armmp
3864464 bytes read in 251 ms (14.7 MiB/s)
reading initrd.img-4.12.0-1-armmp
16194586 bytes read in 1027 ms (15 MiB/s)
reading /dtbs/am335x-boneblack.dtb
35788 bytes read in 13 ms (2.6 MiB/s)
## Flattened Device Tree blob at 80f8
   Booting using the fdt blob at 0x80f8
   Using Device Tree in place at 80f8, end 80f8bbcb

Starting kernel ...

U-Boot SPL 2017.07+dfsg1-3 (Aug 04 2017 - 19:56:56)
Trying to boot from MMC1
** First descriptor is NOT a primary desc on 1:1 **
*** Warning - bad CRC, using default environment

reading u-boot.img
reading u-boot.img


U-Boot 2017.07+dfsg1-3 (Aug 04 2017 - 19:56:56 +)

CPU  : AM335X-GP rev 2.1
I2C:   ready
DRAM:  512 MiB
No match for driver 'omap_hsmmc'
No match for driver 'omap_hsmmc'
Some drivers were not found
MMC:   OMAP SD/MMC: 0, OMAP SD/MMC: 1
** First descriptor is NOT a primary desc on 1:1 **
*** Warning - bad CRC, using default environment

 not set. Validating first E-fuse MAC
Net:   Could not get PHY for cpsw: addr 0
cpsw
Press SPACE to abort autoboot in 2 seconds
switch to partitions #0, OK
mmc0 is current device
SD/MMC found on device 0
reading boot.scr
** Unable to read fil

Bug#869798: man-db: Explain how to use man if no command line arguments are supplied

[tyler]

Package: man-db
Version: 2.7.6.1-2
Severity: wishlist
Tags: upstream

Dear Maintainer,

   * What led up to the situation?
Very bored, decided to see what the output of `man` was by itself.
   * What was the outcome of this action?
The following text is outputted to the console: "What manual page do 
you want?"
   * What outcome did you expect instead?
Since `man` is the only (packaged) program that the user cannot learn 
how to use by looking it up with man, (they may lack the knowledge to type `man 
man`) man should display some help text when run by itself. What if the user is 
told "use man", but doesn't know that you should put the name of the program 
that you want to look up as a command line argument?

-- System Information:
Debian Release: 9.1
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-3-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages man-db depends on:
ii  bsdmainutils   9.0.12+nmu1
ii  debconf [debconf-2.0]  1.5.61
ii  dpkg   1.18.24
ii  groff-base 1.22.3-9
ii  libc6  2.24-11+deb9u1
ii  libgdbm3   1.8.3-14
ii  libpipeline1   1.4.1-2
ii  zlib1g 1:1.2.8.dfsg-5

man-db recommends no packages.

Versions of packages man-db suggests:
ii  firefox-esr [www-browser]  52.2.0esr-1~deb9u1
pn  groff  
ii  less   481-2.1
ii  w3m [www-browser]  0.5.3-34

-- debconf information excluded

Bug#840204: grub-pc: "GRUB! error: unknown filesystem" on ext4 with filesystem-level encryption

[Tyler Hicks]

Eric Biggers has fixed this bug in the upstream GNU GRUB project:

 
https://git.savannah.gnu.org/cgit/grub.git/commit/?id=734668238fcc0ef691a080839e04f33854fa133a

I prepared an upload to fix this issue in Ubuntu Artful and it required
minor backporting of the test suite changes. Maybe you'll find the
debdiff containing the backported patch useful:

 
https://launchpadlibrarian.net/326938267/grub2_2.02~beta3-4ubuntu5_2.02~beta3-4ubuntu6.diff.gz

Tyler



signature.asc
Description: OpenPGP digital signature

Bug#827245: missing backend for pool type 11 (zfs)

[Tyler Fenby]

I'm certainly willing to! I have to preemptively ask for forgiveness for
any noobish mistakes, though, as I'm brand new to this. Will get working on
it right away.

Regards,

Tyler Fenby

On Tue, Aug 9, 2016 at 12:50 AM Guido Günther <a...@sigxcpu.org> wrote:

> On Mon, Aug 08, 2016 at 09:28:12PM +0000, Tyler Fenby wrote:
> > I can confirm that the ZFS backend works as expected on Debian after
> > recompiling libvirt with only a couple lines added to debian/rules to
> > enable the configure flag.
>
> Care enough to send a patch that does the right selection of
> architectures and adds the build-deps to debian/control?
>  -- Guido
>
> >
> > Regards,
> >
> > Tyler Fenby
>

Bug#827245: missing backend for pool type 11 (zfs)

[Tyler Fenby]

I can confirm that the ZFS backend works as expected on Debian after
recompiling libvirt with only a couple lines added to debian/rules to
enable the configure flag.

Regards,

Tyler Fenby

Bug#823061: Tyler-✉-Message-on-hold-

[Tyler Mcpherson]

Idk how u got this email but u better never text it again!
On Apr 30, 2016 12:32 PM, "Angel"  wrote:

>
>
>
>
>
>
>
>
>
>
>
> * _Just_saw_something_really_hot_that_made_me_wonder...
> _What_would_you_like_me_to_wear_tonight?_
> _What's_the_hottest_thing_I_can_do_for_you_when_I_see_you?_
> We'll_even_play_some_games_honey_
> _you_just_guess_what_color_my_panties_are,_then_I'll_give_you_whatever_you_want_;)
> register_and_add_my_nickname_:angelicax3 u_ns__ub optout
>  *
> 
>
>

Bug#728096: schroot fails if shm tmpfs is mounted on /dev/shm

[Tyler Hicks]

On 2015-07-29 15:36:42, Tyler Hicks wrote:
> I've attached fixes for the master and 1.6 schroot branches. They fork
> off a process that changes root to the chroot base path before calling
> realpath(3) on the mount destination.
> 
> Note that I'm still pretty confused by a part of the code in
> resolve_path_chrooted() (which is mostly the old resolve_path()). I
> don't understand the what is happening after the
> "// Try validating the parent directory." comment but I left it since I
> couldn't wrap my head around it. Any insight to what it is doing and
> whether we can remove it now?

Ping. I had another Ubuntu user hit this bug today. I'm wanting to push
the fix before Ubuntu 16.04 is released but I'd prefer some feedback on
the patch before then. Thanks!

Tyler


signature.asc
Description: PGP signature

Bug#809877: xdg-utils: fix for #801048 breaks xdg-open if whitespaces in the filename on Debian/Cinnamon

[tyler]

Package: xdg-utils
Version: 1.1.1-1
Severity: grave
Justification: renders package unusable

To reproduce, install Cinnamon on Debian 8.2, then pull 1.1.1-1 from Stretch. 
You should find that xdg-open will no longer correctly parse file paths with 
spaces in them. This is probably due to the fix for #801048 which dealt with 
some whitespace stuff, since whitespaces worked just fine in 1.1.0.

-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (500, 'testing'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.3.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

xdg-utils depends on no packages.

Versions of packages xdg-utils recommends:
ii  libfile-mimeinfo-perl  0.27-1
ii  libnet-dbus-perl   1.1.0-3
ii  libx11-protocol-perl   0.56-7
ii  x11-utils  7.7+3
ii  x11-xserver-utils  7.7+5

Versions of packages xdg-utils suggests:
ii  gvfs-bin  1.26.2-1

-- no debconf information

Bug#786566: schroot: Should mark bind mounts in the schroot as private

[Tyler Hicks]

On 2015-08-12 21:08:33, Raphael Hertzog wrote:
> On Tue, 11 Aug 2015, Tyler Hicks wrote:
> > > Also recent mount allow you to specify mount options like "shared",
> > > "slave", "private" so we should respect this choice when
> > > the user has supplied them in the fstab... (or "rshared", "rprivate",
> > > "rslave").
> > 
> > I made sure to preserve that functionality. Only the bind and rbind
> > mounts in the profile's fstab are being set to private. The mount
> > utility does not support having bind/rbind and a mount propagation mode
> > on the same line. If a user wants to set a custom mount propagation
> > mode, they'd have to do so with a new line in fstab. That's the case
> > with the mount utility and with my proposed patch to schroot.
> 
> That's no longer the case. As I said, mount now accepts such options
> (even for bind mount), cf man mount:
> 
>   Since util-linux 2.23 the  mount  command  allows  to  use  several
>   propagation  flags together  and also together with other mount
>   operations.  This feature is EXPERIMENTAL.  The propagation flags are
>   applied by additional mount(2) syscalls  when  the  preceding mount
>   operations were successful.  Note that this use case is not atomic.  It
>   is possible to specify the propagation flags in fstab(5)  as  mount
>   options  (private,  slave, shared, unbindable, rprivate, rslave,
>   rshared, runbindable).
> 
> I just tested this by changing one /etc/schroot/*/fstab to add a "slave"
> option on a bind mount and it worked as expected.
> 
> Thus I believe that you should not call mount --make-private if one of
> those option is set in the fstab file.

Thanks. I've attached patches which do what you suggested.

Tyler
From b900010b54bee7a40f372fb3e88f32676354ba88 Mon Sep 17 00:00:00 2001
From: Tyler Hicks <tyhi...@canonical.com>
Date: Tue, 27 Oct 2015 10:56:32 -0500
Subject: [PATCH] libexec-mount: Make bind mounts use private mount propagation

When creating a bind mount, on a Linux system, mark the target as
private. When creating a recursive bind mount, on a Linux system, mark
the target as recursively private.

This change fixes issues around shared mount points being bind mounted
into a schroot and then when the schroot session is tore down, the mount
point being unmounted in both the schroot and in the host environment.

For example, if the schroot fstab file contains the following line:

  /home   /home   nonerw,rbind0   0

A user's home directory mounted at /home/$USER is unmounted in both the
schroot and host when the schroot sessions is ended without this change.

Signed-off-by: Tyler Hicks <tyhi...@canonical.com>
---
 libexec/mount/main.cc | 43 +++
 libexec/mount/main.h  | 10 ++
 2 files changed, 53 insertions(+)

diff --git a/libexec/mount/main.cc b/libexec/mount/main.cc
index 9ea6e80..34c814b 100644
--- a/libexec/mount/main.cc
+++ b/libexec/mount/main.cc
@@ -21,6 +21,10 @@
 #include 
 #include 
 
+#if defined (__linux__)
+#include 
+#endif
+
 #include 
 
 #include 
@@ -207,7 +211,46 @@ namespace bin
   if (status)
 exit(status);
 }
+
+make_mount_private(entry.options, directory);
+}
+}
+
+void
+main::make_mount_private (const std::string& options,
+  const std::string& mountpoint)
+{
+#if defined (__linux__)
+  static schroot::regex bind("(^|,)(|r)bind(,|$)");
+  static schroot::regex propagation("(^|,)(|r)(shared|slave|private|unbindable)(,|$)");
+
+  if (regex_search(options, bind) && !regex_search(options, propagation))
+{
+  static schroot::regex rbind("(^|,)rbind(,|$)");
+  bool recursive = regex_search(options, rbind);
+
+  schroot::log_debug(schroot::DEBUG_INFO)
+  << boost::format("Making ‘%1%’ mount point %2%private")
+  % mountpoint
+  % (recursive ? "recursively " : "")
+  << std::endl;
+
+  if (!opts->dry_run)
+{
+  schroot::string_list command;
+  command.push_back("/bin/mount");
+  if (opts->verbose)
+command.push_back("-v");
+  command.push_back(recursive ? "--make-rprivate" : "--make-private");
+  command.push_back(mountpoint);
+
+  int status = run_child(command[0], command, schroot::environment());
+
+  if (status)
+exit(status);
+}
 }
+#endif
 }
 
 int
diff --git a/libexec/mount/main.h b/libexec/mount/main.h
index c523bfe..a212b5a 100644
--- a/lib

Bug#797727: openssh should be built with audit support on Linux

[Tyler Hicks]

Package: openssh
Version: 1:6.9p1-1
Severity: normal
Tags: patch
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu wily ubuntu-patch

Dear Maintainer,

We've received a couple bugs in Ubuntu regarding the lack of support for
Linux Audit login event support:

  https://launchpad.net/bugs/1319278
  https://launchpad.net/bugs/1478087

The aulast and aureport tools do not work for sshd logins because
openssh is not built with audit support. This means that
AUDIT_USER_LOGIN events aren't logged by sshd so the Linux Audit tools
do not find login information in the audit log.

I've performed a test build of openssh, built with --with-audit=linux,
and verified that AUDIT_USER_LOGIN events are correctly logged:

  type=USER_LOGIN msg=audit(1441160388.221:321): pid=5751 uid=0 auid=1000 
ses=11 msg='op=login id=1000 exe="/usr/sbin/sshd" hostname=10.1.8.1 
addr=10.1.8.1 terminal=/dev/pts/7 res=success'

The aulast tool works as expected using the test openssh build:

  $ sudo aulast
  tyhicks  pts/710.1.8.1 Tue Sep  1 21:19   still logged in

I've attached a patch containing the simple changes needed to enable
audit support on Linux.

Thanks for considering the patch.

-- System Information:
Debian Release: jessie/sid
  APT prefers vivid-updates
  APT policy: (500, 'vivid-updates'), (500, 'vivid-security'), (500, 'vivid')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.19.0-26-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru openssh-6.9p1/debian/changelog openssh-6.9p1/debian/changelog
diff -Nru openssh-6.9p1/debian/control openssh-6.9p1/debian/control
--- openssh-6.9p1/debian/control	2015-08-20 04:34:45.0 -0500
+++ openssh-6.9p1/debian/control	2015-09-01 21:08:53.0 -0500
@@ -2,7 +2,7 @@
 Section: net
 Priority: standard
 Maintainer: Debian OpenSSH Maintainers 
-Build-Depends: libwrap0-dev | libwrap-dev, zlib1g-dev (>= 1:1.2.3), libssl-dev (>= 0.9.8g), libpam0g-dev | libpam-dev, libgtk2.0-dev, libedit-dev, debhelper (>= 9~), dh-exec, libselinux1-dev [linux-any], libkrb5-dev | heimdal-dev, dpkg-dev (>= 1.16.1~), libck-connector-dev, dh-autoreconf, autotools-dev, dh-systemd (>= 1.4)
+Build-Depends: libwrap0-dev | libwrap-dev, zlib1g-dev (>= 1:1.2.3), libssl-dev (>= 0.9.8g), libpam0g-dev | libpam-dev, libgtk2.0-dev, libedit-dev, debhelper (>= 9~), dh-exec, libselinux1-dev [linux-any], libkrb5-dev | heimdal-dev, dpkg-dev (>= 1.16.1~), libck-connector-dev, dh-autoreconf, autotools-dev, dh-systemd (>= 1.4), libaudit-dev
 XS-Testsuite: autopkgtest
 Standards-Version: 3.9.6
 Uploaders: Colin Watson , Matthew Vernon 
diff -Nru openssh-6.9p1/debian/rules openssh-6.9p1/debian/rules
--- openssh-6.9p1/debian/rules	2015-08-20 04:34:45.0 -0500
+++ openssh-6.9p1/debian/rules	2015-08-31 17:12:30.0 -0500
@@ -91,6 +91,7 @@
 confflags += --with-ssl-engine
 ifeq ($(DEB_HOST_ARCH_OS),linux)
 confflags += --with-selinux
+confflags += --with-audit=linux
 endif
 ifeq ($(DISTRIBUTOR),Ubuntu)
 confflags += --with-consolekit

Bug#786566: schroot: Should mark bind mounts in the schroot as private

[Tyler Hicks]

On 2015-08-11 22:51:33, Raphael Hertzog wrote:
 Hi,
 
 On Fri, 22 May 2015, Tyler Hicks wrote:
  That has worked pretty well for many filesystems that would be mounted
  at /home/$USER. However, I've recently had a lot of eCryptfs users
  reporting issues when using systemd as their init system since systemd
  uses shared mount propagation for mounts.
 
 Can you point me to some systemd documentation proving your assertion?

http://www.freedesktop.org/software/systemd/man/systemd.exec.html

Search for 'Defaults to shared'.

 
 I was not able to find the relevant documentation but you appear to be
 right. On a wheezy system / is not marked as shared while on jessie
 it is (you can see that in cat /proc/self/mountinfo in the 7th field
 with the presence/absence of shared:X).
 
 Relevant documentation:
 $ man proc
 https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt
 
 But I don't understand why /home would also inherits from the shared
 attribute by default... that said this appears to be the case for me here
 too (not with /home in my specific case but another mount point).

All mounts of my /etc/fstab file are being configured with shared
propagation, not just '/'.

 
  /home/$USER is unmounted in the host environment when schroot sessions
  are ended due to the unmount events being propagated outside of the
  schroot session's subdirectory.
  
  I believe that the best fix is to mark bind mount points, under the
  schroot session's subdirectory, as private. Also, rbind mount points
  will need to be marked as rprivate.
 
 Would it not be better to mark them as slave instead? That way
 propagation from the host to the chroot works but not the other
 way around?

That's a possibility that I considered but I thought it would be best to
simply restore the kernel's default mount propagation mode (private) to
keep from surprising users.

 Also recent mount allow you to specify mount options like shared,
 slave, private so we should respect this choice when
 the user has supplied them in the fstab... (or rshared, rprivate,
 rslave).

I made sure to preserve that functionality. Only the bind and rbind
mounts in the profile's fstab are being set to private. The mount
utility does not support having bind/rbind and a mount propagation mode
on the same line. If a user wants to set a custom mount propagation
mode, they'd have to do so with a new line in fstab. That's the case
with the mount utility and with my proposed patch to schroot.

 
 Cheers,
 
 PS: Roger, Tyler forgot to CC you in his last reply, you might want to
 check the bug report history.

Thanks!

Tyler


signature.asc
Description: Digital signature

Bug#728096: schroot fails if shm tmpfs is mounted on /dev/shm

[Tyler Hicks]

Package: schroot
Followup-For: Bug #728096

Users have hit this issue in Ubuntu, too. I've triaged it and have
determined that Laurent is correct in Message #17 that the schroot mount
helper is using the host's filesystem to resolve symlinks in the chroot.

It is simply calling realpath(3) on the mount destination in the chroot,
from a process that is not chrooted, so realpath(3) is going to use the
host filesystem to resolve symlinks such as
'/chroot/dev/shm - /run/shm'. It then tries to fixup the final
resolved path but appended the chroot basepath but it's too late at that
point, the host's filesystem has already been used to resolve the
symlink target.

We're actually getting filesystems mounted in the host filesystem in
Ubuntu (LP: #1438942) due to /run/shm existing in the host and pointing
back to /dev/shm.

Here's a simple test:

  # Show that schroot's mount binary is using the host fs to resolve symlinks
  $ mkdir -p /tmp/bug728096/dev
  $ mkdir -p /tmp/bug728096/run/shm
  $ ln -s /run/shm /tmp/bug728096/dev/shm
  $ ls -ld /{dev,run}/shm
  drwxrwxrwt 2 root root 120 Jul 29 14:07 /dev/shm
  lrwxrwxrwx 1 root root   8 Jul 29 14:07 /run/shm - /dev/shm
  $ ls -ld /tmp/bug728096/{dev,run}/shm
  lrwxrwxrwx 1 tyhicks tyhicks8 Jul 29 14:49 /tmp/bug728096/dev/shm - 
/run/shm
  drwxrwxr-x 2 tyhicks tyhicks 4096 Jul 29 14:49 /tmp/bug728096/run/shm
  $ echo tmpfs /dev/shm/ tmpfs defaults 0 0  /tmp/fstab
  $ grep /dev/shm /proc/mounts
  tmpfs /dev/shm tmpfs rw,nosuid,nodev 0 0
  $ sudo ./libexec/mount/mount -v -f /tmp/fstab -m /tmp/bug728096
  $ grep /dev/shm /proc/mounts
  tmpfs /dev/shm tmpfs rw,nosuid,nodev 0 0
  tmpfs /dev/shm tmpfs rw,relatime 0 0
  
  # Now reproduce Laurent's original bug report by removing the host's /run/shm
  $ sudo umount /dev/shm
  $ sudo rm /run/shm
  $ sudo ./libexec/mount/mount -v -f /tmp/fstab -m /tmp/bug728096
  E: boost::filesystem::create_directory: File exists: /tmp/bug728096/dev/shm
  $ echo $?
  1

I've attached fixes for the master and 1.6 schroot branches. They fork
off a process that changes root to the chroot base path before calling
realpath(3) on the mount destination.

Note that I'm still pretty confused by a part of the code in
resolve_path_chrooted() (which is mostly the old resolve_path()). I
don't understand the what is happening after the
// Try validating the parent directory. comment but I left it since I
couldn't wrap my head around it. Any insight to what it is doing and
whether we can remove it now?

Tyler
From 86a39d878bc1b6ea59b4f354f03b635014b720a1 Mon Sep 17 00:00:00 2001
From: Tyler Hicks tyhi...@canonical.com
Date: Tue, 28 Jul 2015 02:11:07 -0500
Subject: [PATCH] libexec-mount: Resolve mount destinations while chrooted

The mount binary was attempting to use realpath(3) from outside of the
chroot to resolve mount destination paths inside of the chroot. It would
then take the resolved path and prepend it with the path to the chroot
in an attempt to enforce that symlink resolution will always end up
inside of the chroot.

One example of why this approach isn't sufficient is that when
/chroot/dev/shm/ is the mount destination but it is a symlink to
/run/shm and the host's /run/shm is a symlink to /dev/shm. The resolved
path will end up being /chroot/dev/shm/ and, due to mount following
symlinks, the host's /dev/shm will be mounted over.

To fix the path resolution issue, this patch first resolves the path to
the chroot base path, then forks and calls chroot(2) on that path, then
resolves the path to the mount destination inside the chroot. Finally,
the resolved chroot base path and the resolved mount destination path
are combined to create the fully resolved path used for mounting.

Bug-Debian: https://bugs.debian.org/728096
Bug-Ubuntu: https://launchpad.net/bugs/1438942

Signed-off-by: Tyler Hicks tyhi...@canonical.com
---
 libexec/mount/main.cc | 141 ++
 libexec/mount/main.h  |  28 --
 2 files changed, 141 insertions(+), 28 deletions(-)

diff --git a/libexec/mount/main.cc b/libexec/mount/main.cc
index 9ea6e80..bbf4a18 100644
--- a/libexec/mount/main.cc
+++ b/libexec/mount/main.cc
@@ -30,6 +30,7 @@
 #include ctime
 #include iostream
 #include locale
+#include poll.h
 
 #include sys/types.h
 #include sys/stat.h
@@ -53,8 +54,14 @@ namespace schroot
   {
 {bin::schroot_mount::main::CHILD_FORK, N_(Failed to fork child)},
 {bin::schroot_mount::main::CHILD_WAIT, N_(Wait for child failed)},
+// TRANSLATORS: %1% = directory
+{bin::schroot_mount::main::CHROOT, N_(Failed to change root to directory ‘%1%’)},
+{bin::schroot_mount::main::DUP,N_(Failed to duplicate file descriptor)},
 // TRANSLATORS: %1% = command name
 {bin::schroot_mount::main::EXEC,   N_(Failed to execute “%1%”)},
+{bin::schroot_mount::main::PIPE,   N_(Failed to create pipe)},
+{bin::schroot_mount::main::POLL,   N_(Failed to poll file

Bug#786566: [buildd-tools-devel] Bug#786566: schroot: Should mark bind mounts in the schroot as private

[Tyler Hicks]

On 2015-07-15 19:19:23, Roger Leigh wrote:
 On 15/07/2015 17:47, Tyler Hicks wrote:
 Hello - I'm sending a friendly poke in hopes that I can get a review for
 my proposed patch. The unpatched behavior is a considerable usability
 issue on systems that use systemd, schroot, and a filesystem mounted at
 /home/$USER. I'd prefer upstream review before I apply the patch to
 schroot in Ubuntu. Thanks!
 
 It looks reasonable for you to apply in Ubuntu, but I'm not yet sure if it's
 safe to apply upstream.  It might well be safe for Debian as well, but I
 can't make that determination myself.

Thank you for the review!

 Is this safe to use on systems not using systemd?

It should be safe on those systems. The mounts that are being bound into
the chroot will most likely already be using private mount propagation
since that is the default mount propagation mode.

 Does it require a specific version of util-linux for the --make-[r]private
 options to mount?  If so, it probably needs a proper functional check for
 them, and using those as conditionals rather than just __linux__.

Good question.

Support for --make-[r]private has been around since the following
commit:

  
https://git.kernel.org/cgit/utils/util-linux/util-linux.git/commit/?id=389fbea536e4308d9475fa2a89e53e188ce8a0e3

It was first released in util-linux 2.13, which happened on 28-Aug-2007:

  https://www.kernel.org/pub/linux/utils/util-linux/v2.13/v2.13-ReleaseNotes

I don't think we need a functional check for something that has been
around for so long.

Tyler


signature.asc
Description: Digital signature

Bug#786566: schroot: Should mark bind mounts in the schroot as private

[Tyler Hicks]

Hello - I'm sending a friendly poke in hopes that I can get a review for
my proposed patch. The unpatched behavior is a considerable usability
issue on systems that use systemd, schroot, and a filesystem mounted at
/home/$USER. I'd prefer upstream review before I apply the patch to
schroot in Ubuntu. Thanks!

Tyler


signature.asc
Description: Digital signature

Bug#786566: schroot: Should mark bind mounts in the schroot as private

[Tyler Hicks]

Package: schroot
Version: 1.7.2-2
Severity: important
Tags: upstream patch

Dear Maintainer,

Schroot users that have /home/$USER as a separate mount point usually
update the various schroot profiles' fstab to include:

  /home   /home   nonerw,rbind0   0

That has worked pretty well for many filesystems that would be mounted
at /home/$USER. However, I've recently had a lot of eCryptfs users
reporting issues when using systemd as their init system since systemd
uses shared mount propagation for mounts. The biggest issue is that
/home/$USER is unmounted in the host environment when schroot sessions
are ended due to the unmount events being propagated outside of the
schroot session's subdirectory.

I believe that the best fix is to mark bind mount points, under the
schroot session's subdirectory, as private. Also, rbind mount points
will need to be marked as rprivate.

I'll attach a patch developed against schroot's master git branch (which
should apply to 1.7.2-2) and another developed against the schroot-1.6
branch.

Tyler

-- System Information:
Debian Release: jessie/sid
  APT prefers vivid-updates
  APT policy: (500, 'vivid-updates'), (500, 'vivid-security'), (500, 'vivid')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.19.0-16-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
From db5cbc9dd57fc3a13f3f1fb405aa2cc1d2d6d7d0 Mon Sep 17 00:00:00 2001
From: Tyler Hicks tyhi...@canonical.com
Date: Fri, 22 May 2015 12:27:40 -0500
Subject: [PATCH] libexec-mount: Make bind mounts use private mount propagation

When creating a bind mount, on a Linux system, mark the target as
private. When creating a recursive bind mount, on a Linux system, mark
the target as recursively private.

This change fixes issues around shared mount points being bind mounted
into a schroot and then when the schroot session is tore down, the mount
point being unmounted in both the schroot and in the host environment.

For example, if the schroot fstab file contains the following line:

  /home   /home   nonerw,rbind0   0

A user's home directory mounted at /home/$USER is unmounted in both the
schroot and host when the schroot sessions is ended without this change.

Signed-off-by: Tyler Hicks tyhi...@canonical.com
---
 libexec/mount/main.cc | 42 ++
 libexec/mount/main.h  | 10 ++
 2 files changed, 52 insertions(+)

diff --git a/libexec/mount/main.cc b/libexec/mount/main.cc
index 9ea6e80..80b0236 100644
--- a/libexec/mount/main.cc
+++ b/libexec/mount/main.cc
@@ -21,6 +21,10 @@
 #include schroot/mntstream.h
 #include schroot/util.h
 
+#if defined (__linux__)
+#include schroot/regex.h
+#endif
+
 #include libexec/mount/main.h
 
 #include cerrno
@@ -207,7 +211,45 @@ namespace bin
   if (status)
 exit(status);
 }
+
+make_mount_private(entry.options, directory);
+}
+}
+
+void
+main::make_mount_private (const std::string options,
+  const std::string mountpoint)
+{
+#if defined (__linux__)
+  static schroot::regex bind((^|,)(|r)bind(,|$));
+
+  if (regex_search(options, bind))
+{
+  static schroot::regex rbind((^|,)rbind(,|$));
+  bool recursive = regex_search(options, rbind);
+
+  schroot::log_debug(schroot::DEBUG_INFO)
+   boost::format(Making ‘%1%’ mount point %2%private)
+  % mountpoint
+  % (recursive ? recursively  : )
+   std::endl;
+
+  if (!opts-dry_run)
+{
+  schroot::string_list command;
+  command.push_back(/bin/mount);
+  if (opts-verbose)
+command.push_back(-v);
+  command.push_back(recursive ? --make-rprivate : --make-private);
+  command.push_back(mountpoint);
+
+  int status = run_child(command[0], command, schroot::environment());
+
+  if (status)
+exit(status);
+}
 }
+#endif
 }
 
 int
diff --git a/libexec/mount/main.h b/libexec/mount/main.h
index c523bfe..a212b5a 100644
--- a/libexec/mount/main.h
+++ b/libexec/mount/main.h
@@ -70,6 +70,16 @@ namespace bin
   action_mount ();
 
   /**
+   * Make a bind mount use private mount propagation (Linux-specific).
+   *
+   * @param options the mount options
+   * @param mountpoint the mountpiont to make private
+   */
+  void
+  make_mount_private (const std::string options,
+  const std::string mountpoint);
+
+  /**
* Run the command specified by file (an absolute pathname), using
* command and env as the argv and environment, respectively.
*
-- 
2.1.4

From d90df1244e35b7851b93da2f3fb38d48bc9f5229 Mon Sep 17 00:00

Bug#762708: nginx-common: Patch for configurable stop schedule and new graceful-stop command in init script

[Tyler Riddle]

 
 Also, jessie ships with systemd by default, and systemd doesn't support
 custom commands. So, it's not a good plan to divert the initscript from
 the service file.


Awesome



signature.asc
Description: Message signed with OpenPGP using GPGMail

Bug#762708: nginx-common: Patch for configurable stop schedule and new graceful-stop command in init script

[Tyler Riddle]

 I think that gracefully stopping nginx is a better default the forcibly
 stopping the process.

I certainly don't - both cases have uses. Please do not force sysadmins to wait 
for end user behavior *by default*. When I want end users to be able to 
influence my reboot time I'll specify a specific command. The default should 
not be to extend reboot time defined by the activity of people external to the 
system and this is what you have done by converting to graceful shutdown by 
default.

You've reduced the functionality of this patch and decreased the utility of 
init. Why are you attempting to optimize for reduced command count?

Tyler

On Oct 8, 2014, at 5:47 AM, Christos Trochalakis yati...@ideopolis.gr wrote:

 On Wed, Sep 24, 2014 at 09:21:15AM -0700, Tyler Riddle wrote:
 Package: nginx-common
 Version: 1.6.2-1
 Severity: wishlist
 Tags: patch
 
 Dear Maintainer,
 
 When clustering nginx behind a load balancer it is useful to take the listen
 socket offline while allowing connected clients to finish their requests
 with out error. The included patch allows for a graceful-shutdown command 
 that
 makes this trivial. Both the graceful schedule and the original stop schedule
 can also be defined in /etc/default/nginx for end user customization.
 
 
 I think that gracefully stopping nginx is a better default the forcibly
 stopping the process. So I changed the stop command to do exactly that,
 and make the stop schedule configurable. That way we don't have to
 introduce a new command at all.
 
 After your report, I took a closer look to the systemd service file that,
 supposdly, did a graceful stop and discovered that was not the case, so
 we fixed that regression as well.
 
 The relevant commits are:
 
 8cbf89988 Fix systemd graceful stopping issue
 ef90f5ebc initscript: gracefully stop nginx by default
 
 http://anonscm.debian.org/cgit/collab-maint/nginx.git/log/?h=graceful-stop
 
 I plan to merge this branch tomorrow, any comments are welcome!



signature.asc
Description: Message signed with OpenPGP using GPGMail

Bug#762708: nginx-common: Patch for configurable stop schedule and new graceful-stop command in init script

[Tyler Riddle]

Package: nginx-common
Version: 1.6.2-1
Severity: wishlist
Tags: patch

Dear Maintainer,

When clustering nginx behind a load balancer it is useful to take the listen
socket offline while allowing connected clients to finish their requests
with out error. The included patch allows for a graceful-shutdown command that
makes this trivial. Both the graceful schedule and the original stop schedule
can also be defined in /etc/default/nginx for end user customization.

- BEGIN PATCH ---


diff -Nru nginx-1.6.2/debian/changelog nginx-1.6.2/debian/changelog
--- nginx-1.6.2/debian/changelog2014-09-17 01:20:11.0 -0700
+++ nginx-1.6.2/debian/changelog2014-09-24 08:50:58.0 -0700
@@ -1,3 +1,14 @@
+nginx (1.6.2-1.1) UNRELEASED; urgency=low
+
+  * Non-maintainer upload.
+  * Signal schedule used by stop command in init script is now configurable
+via /etc/defaults/nginx.
+  * Added graceful-stop command to init script which allows a configurable
+schedule to allow connected clients time to finish their request before
+the server goes fully offline.
+
+ -- Tyler Riddle trid...@socialflow.com  Wed, 24 Sep 2014 08:46:41 -0700
+
 nginx (1.6.2-1) unstable; urgency=high
 
   [ Christos Trochalakis ]
diff -Nru nginx-1.6.2/debian/nginx-common.nginx.default 
nginx-1.6.2/debian/nginx-common.nginx.default
--- nginx-1.6.2/debian/nginx-common.nginx.default   2014-09-17 
01:20:11.0 -0700
+++ nginx-1.6.2/debian/nginx-common.nginx.default   2014-09-24 
08:50:58.0 -0700
@@ -3,3 +3,9 @@
 # Set the ulimit variable if you need defaults to change.
 #  Example: ULIMIT=-n 4096
 #ULIMIT=-n 4096
+
+# Define schedules for quickly and gracefully stopping
+# the server; see the start-stop-daemon --retry documentation
+# for more information
+#STOP_SCHEDULE=TERM/30/KILL/5
+#GRACEFUL_STOP_SCHEDULE=QUIT/20/TERM/5/KILL/5
diff -Nru nginx-1.6.2/debian/nginx-common.nginx.init 
nginx-1.6.2/debian/nginx-common.nginx.init
--- nginx-1.6.2/debian/nginx-common.nginx.init  2014-09-17 01:20:11.0 
-0700
+++ nginx-1.6.2/debian/nginx-common.nginx.init  2014-09-24 08:50:58.0 
-0700
@@ -58,8 +58,11 @@
$DAEMON -t $DAEMON_OPTS /dev/null 21
 }
 
+# See http://nginx.org/en/docs/control.html for documentation
+# on nginx and signal behavior
+
 #
-# Function that stops the daemon/service
+# Function that quickly stops the daemon/service
 #
 do_stop()
 {
@@ -68,7 +71,33 @@
#   1 if daemon was already stopped
#   2 if daemon could not be stopped
#   other if a failure occurred
-   start-stop-daemon --stop --quiet --retry=TERM/30/KILL/5 --pidfile $PID 
--name $NAME
+   if [ $STOP_SCHEDULE = '' ]; then
+   STOP_SCHEDULE=TERM/30/KILL/5
+   fi
+
+   start-stop-daemon --stop --quiet --retry=$STOP_SCHEDULE --pidfile 
$PID --name $NAME
+   RETVAL=$?
+
+   sleep 1
+   return $RETVAL
+}
+
+#
+# Function that gives connected clients a chance
+# to finish their request before shutdown
+#
+do_graceful_stop()
+{
+   # Return
+   #   0 if daemon has been stopped
+   #   1 if daemon was already stopped
+   #   2 if daemon could not be stopped
+   #   other if a failure occurred
+   if [ $GRACEFUL_STOP_SCHEDULE = '' ]; then
+   GRACEFUL_STOP_SCHEDULE=QUIT/20/TERM/5/KILL/5
+   fi
+
+   start-stop-daemon --stop --quiet --retry=$GRACEFUL_STOP_SCHEDULE 
--pidfile $PID --name $NAME
RETVAL=$?
 
sleep 1
@@ -140,6 +169,14 @@
2) [ $VERBOSE != no ]  log_end_msg 1 ;;
esac
;;
+   graceful-stop)
+   [ $VERBOSE != no ]  log_daemon_msg Gracefully stopping 
$DESC $NAME
+   do_graceful_stop
+   case $? in
+   0|1) [ $VERBOSE != no ]  log_end_msg 0 ;;
+   2) [ $VERBOSE != no ]  log_end_msg 1 ;;
+   esac
+   ;;
restart)
log_daemon_msg Restarting $DESC $NAME
 
@@ -201,7 +238,7 @@
log_end_msg $?
;;
*)
-   echo Usage: $NAME 
{start|stop|restart|reload|force-reload|status|configtest|rotate|upgrade} 2
+   echo Usage: $NAME 
{start|stop|graceful-stop|restart|reload|force-reload|status|configtest|rotate|upgrade}
 2
exit 3
;;
 esac


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#758557: [Pkg-utopia-maintainers] Bug#758557: network-manager: not authorized to control networking

[Tyler]

Package: network-manager
Version: 0.9.10.0-1.1

Status: fixed

Debian Release: jessie/sid
Linux debian 3.14-2-amd64 #1 SMP Debian 3.14.15-2 (2014-08-09) x86_64
GNU/Linux

loginctl show-session $XDG_SESSION_ID
Id=1
Timestamp=Sat 2014-08-30 00:07:34 PDT
TimestampMonotonic=13226634
VTNr=7
Display=:0
Remote=no
Service=kdm
Scope=session-1.scope
Leader=1098
Audit=1
Type=x11
Class=user
Active=yes
State=active
IdleHint=no
IdleSinceHint=0
IdleSinceHintMonotonic=0
Name=username


I had this same problem after a recent system update (of many packages,
not just network-manager) -- when I tried to up a connection in the KDE
network-manager applet, it said Not authorized to control networking.
After doing some research I thought it might have been an issue with
Polkit permissions, as I was also unable to mount volumes in Dolphin
with udisks, and I was unable to grant root privileges to Apper to
download package lists and install packages.  It also seemed to be
related to ConsoleKit because when I ran ck-list-sessions it had active
= FALSE in the output.  I then found that ConsoleKit is currently not
actively maintained. The focus has shifted to the built-in
seat/user/session management of Software/systemd called systemd-logind!.


Next I did some research on systemd, and found the following page which
explains how to determine which init is active on boot-up:
(http://www.reddit.com/r/debian/comments/29ydkj/jessie_am_i_running_systemd/). 
My system was running sysvinit.  I found it a little odd that I had an
active logind session while running sysvinit.  So after looking around
some more and not getting anywhere, I decided to try switching to
systemd for a single boot by adding int=/bin/systemd (symlink to
/lib/systemd/systemd) to the kernel line in the grub menu (pressing e
to edit the line).  I was fairly surprised to find that this fixed all
three of the problems, and it didn't seem to break anything.  I was able
to enable a connection with network-manager, and mount volumes in
Dolphin, and download lists and install packages in Apper. 
Additionally, my default connection was enabled automatically on boot,
and that hadn't happened for several months (I had also used nmcli to
set it to autoconnect so that may have helped, but at least didn't fix
it on its own).  I did find the following thread in which someone
recommends installing task-kde-desktop, so I installed that package:
(http://forums.debian.net/viewtopic.php?f=17t=116810).  (Someone else
recommends not using Apper, especially not with testing, and I will
probably take that advice.)  I then went ahead and installed
systemd-sysv to use systemd permanently.  I then ran journalctl to view
the systemd journal so I could check for error messages, and there
wasn't anything of concern.

It sounds like jessie is in the process of switching over to systemd
from sysvinit before it is released as stable, so my guess is that
something was changed in one or more packages which made them dependent
on systemd.  At least in my case, the problem wasn't caused by a bug in
network-manager itself.** **

Bug#738936: /usr/bin/okular: okular.desktop config sets incorrect Exec key

[Tyler Smith]

Package: okular
Version: 4:4.11.5-1
File: /usr/bin/okular
Severity: normal

Dear Maintainer,

I am running xmonad on Debian testing. I have installe okular as my
pdf reader. When okular is launced via xdg-open, e.g., to open pdfs
from chromium or conkeror, it opens two windows at once. The first
window is the file, displayed properly. The second window is okular
with an empty view (i.e., no file loaded, but otherwise ready to use).
This second window also spawns a popup warning with the message Could
not open %i.

I expected to have a single window open, with the document displayed properly.

I believe this relates to a problem in the configuration files in
/usr/share/applications/kde4. The okular files contain the line

Exec=okular %U %i -caption %c

Changing this to

Exec=okular %U -icon %i -caption %c

appears to resolve the problem. I'm not sure if this is correct, or
just happens to work for me running xmonad. Perhaps there is general
solution. Either way, as it is this is broken for my setup.

-- System Information:
Debian Release: jessie/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 3.12-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages okular depends on:
ii  kde-runtime 4:4.11.5-1
ii  libc6   2.17-97
ii  libfreetype62.5.2-1
ii  libjpeg88d-2
ii  libkactivities6 4:4.11.5-1
ii  libkdecore5 4:4.11.5-1
ii  libkdeui5   4:4.11.5-1
ii  libkio5 4:4.11.5-1
ii  libkparts4  4:4.11.5-1
ii  libkprintutils4 4:4.11.5-1
ii  libkpty44:4.11.5-1
ii  libokularcore3  4:4.11.5-1
ii  libphonon4  4:4.7.1-1
ii  libpoppler-qt4-40.22.5-4
ii  libqca2 2.0.3-5
ii  libqimageblitz4 1:0.0.6-4
ii  libqt4-dbus 4:4.8.5+git209-g718fae5+dfsg-1
ii  libqt4-declarative  4:4.8.5+git209-g718fae5+dfsg-1
ii  libqt4-svg  4:4.8.5+git209-g718fae5+dfsg-1
ii  libqt4-xml  4:4.8.5+git209-g718fae5+dfsg-1
ii  libqtcore4  4:4.8.5+git209-g718fae5+dfsg-1
ii  libqtgui4   4:4.8.5+git209-g718fae5+dfsg-1
ii  libsolid4   4:4.11.5-1
ii  libspectre1 0.2.7-2
ii  libstdc++6  4.8.2-14
ii  phonon  4:4.7.1-1
ii  zlib1g  1:1.2.8.dfsg-1

okular recommends no packages.

Versions of packages okular suggests:
ii  ghostscript9.05~dfsg-8+b1
pn  jovie  none
pn  okular-extra-backends  none
ii  poppler-data   0.4.6-4
ii  texlive-binaries   2013.20130729.30972-2+b2
ii  unrar  1:5.0.10-1

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#729704: audit: Init script should depend on $remote_fs for awk

[Tyler Hicks]

Package: audit
Version: 1:2.3.2-2
Severity: normal
Tags: patch
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu trusty ubuntu-patch

Dear Maintainer,

While merging the Debian package into Ubuntu, I was looking into the new
augenrules feature. I noticed that it didn't work when USE_AUGENRULES
was set to yes because the init script's PATH does not include
/usr/bin/ but augenrules calls /usr/bin/awk.

In Ubuntu, the attached patch was applied to achieve the following:


  * debian/auditd.init: The start command now requires $remote_fs to be
started because it may call /bin/augenrules, which depends on
/usr/bin/awk. $PATH must also be updated so that augenrules can find awk.


Thanks for considering the patch.


-- System Information:
Debian Release: wheezy/sid
  APT prefers saucy-updates
  APT policy: (500, 'saucy-updates'), (500, 'saucy-security'), (500, 'saucy')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.11.0-12-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -Nru audit-2.3.2/debian/auditd.init audit-2.3.2/debian/auditd.init
--- audit-2.3.2/debian/auditd.init	2013-08-29 01:38:31.0 -0700
+++ audit-2.3.2/debian/auditd.init	2013-11-15 13:52:14.0 -0800
@@ -1,7 +1,7 @@
 #! /bin/sh
 ### BEGIN INIT INFO
 # Provides:  auditd
-# Required-Start:$local_fs
+# Required-Start:$remote_fs
 # Required-Stop: $local_fs
 # Default-Start: 2 3 4 5
 # Default-Stop:  0 1 6
@@ -12,8 +12,7 @@
 # Author: Philipp Matthias Hahn pmh...@debian.org
 # Based on Debians /etc/init.d/skeleton and Auditds init.d/auditd.init
 
-# PATH should only include /usr/* if it runs after the mountnfs.sh script
-PATH=/sbin:/bin
+PATH=/sbin:/usr/sbin:/bin:/usr/bin
 DESC=audit daemon
 NAME=auditd
 DAEMON=/sbin/auditd

Bug#720466: cinnamon: Crashes when opening the menu, using command window or hot corner

[Tyler Blalock]

I also have this bug running Debian in VirtualBox and VMware Fusion guests
on Max OS X hosts.

Bug#723673: mock: Incorrect directory permissions

[Tyler Trafford]

Here is the debian/postinst from the old version of the Debian mock
package:

#!/bin/sh
# postinst script for mock

set -e

case $1 in
configure)
groupadd --system mock || {
# groupadd failed. Why?
if ! getent group mock /dev/null ; then
echo Could not create system group mock. 2
exit 1
fi
# well, the group is there, so just ignore the error
}

if ! dpkg-statoverride --list /var/cache/mock /dev/null; then
dpkg-statoverride --update --add root mock 02775
/var/cache/mock
fi

if ! dpkg-statoverride --list /var/lib/mock /dev/null; then
dpkg-statoverride --update --add root mock 02775
/var/lib/mock
fi
;;
esac

#DEBHELPER#

exit 0

-- 
Tyler Trafford


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#723764: mock: Redhat PAM config doesn't work with Debian

[Tyler Trafford]

Package: mock
Version: 1.1.33-1
Severity: normal

The PAM config installed to /etc/pam.d/mock produces lots of log
messages (errors) because it is intended for a Redhat system.

The attached file when added to the quilt patches fixes the issue.

-- System Information:
Debian Release: jessie/sid
  APT prefers unstable
  APT policy: (990, 'unstable')
Architecture: i386 (i686)

Kernel: Linux 3.10-2-686-pae (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

-- 
Tyler Trafford
--- a/etc/pam/mock
+++ b/etc/pam/mock
@@ -5,9 +5,9 @@
 #auth  sufficient  pam_wheel.so trust use_uid
 # Uncomment the following line to require a user to be in the wheel group.
 #auth  requiredpam_wheel.so use_uid
-auth   include system-auth
+auth   include common-auth
 accountsufficient  pam_succeed_if.so user ingroup mock 
use_uid quiet
-accountinclude system-auth
-password   include system-auth
-sessioninclude system-auth
+accountinclude common-account
+password   include common-password
+sessioninclude common-session
 sessionoptionalpam_xauth.so

Bug#547171: debhelper version and compat

[Tyler Trafford]

I've been testing this (with mock) and it seems great.

I can see no ill effects when the debhelper version requirements (in
control and compat) are lowered to 8.  This makes it so the package can
be rebuilt for squeeze when necessary.
-- 
Tyler Trafford


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#701142: ruby1.9.1: CVE-2012-4522.patch causes a build test error

[Tyler Hicks]

Package: ruby1.9.1
Version: 1.9.3.194-7
Severity: minor
Tags: patch
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu raring ubuntu-patch

Dear Maintainer,

While merging 1.9.3.194-7 into Ubuntu Raring, I noticed a new error in
one of the build tests. test_open_nul throws a NoMethodError for
assert_file_not, which doesn't exist in 1.9.3. The upstream 1.9.3 tree
has a slightly different version of the test that works properly.

In Ubuntu, the attached patch was applied to achieve the following:

  * debian/patches/CVE-2012-4522.patch: Adjust patch to fix build test error.
Use the version of the fix from upstream's 1.9.3 tree to fix the
NoMethodError for assert_file_not, which doesn't exist in 1.9.3. Adjust
the Origin patch tag accordingly.


Thanks for considering the patch.


-- System Information:
Debian Release: wheezy/sid
  APT prefers raring-updates
  APT policy: (500, 'raring-updates'), (500, 'raring-security'), (500, 'raring')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.8.0-6-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -Nru ruby1.9.1-1.9.3.194/debian/patches/CVE-2012-4522.patch ruby1.9.1-1.9.3.194/debian/patches/CVE-2012-4522.patch
--- ruby1.9.1-1.9.3.194/debian/patches/CVE-2012-4522.patch	2013-02-13 02:20:34.0 -0800
+++ ruby1.9.1-1.9.3.194/debian/patches/CVE-2012-4522.patch	2013-02-21 10:26:30.0 -0800
@@ -2,7 +2,7 @@
  This is a fix for CVE-2012-4522.
 Author: Nobuyoshi Nakada  n...@ruby-lang.org
 Bug-Debian: http://bugs.debian.org/690670
-Origin: upstream, https://github.com/ruby/ruby/commit/7085db45e4f15a58f9a82c8815bcc31364e0fde1
+Origin: upstream, http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=revisionrevision=37164
 Reviewed-By: Antonio Terceiro terce...@debian.org
 
 --- ruby1.9.1-1.9.3.194.orig/file.c
@@ -30,7 +30,7 @@
 +  assert_raise(ArgumentError) do
 +open(path + \0bar, w) {}
 +  end
-+  assert_file_not(:exist?, path)
++  refute File.exist?(path)
 +end
 +  end
  end

Bug#701144: ruby1.9.1: CVE-2012-4464 CVE-2012-4466

[Tyler Hicks]

Package: ruby1.9.1
Version: 1.9.3.194-7
Severity: minor

Dear Maintainer,

The ruby1.9.1 package contains a fix for CVE-2011-1005
(20120927-cve_2011_1005.patch). I submitted that fix to upstream and
Debian[1] when I discovered that Ruby 1.9.x failed a regression test for
CVE-2011-1005, despite the original Ruby security advisory[2] stating
that 1.9.x was not affected.

After some discussion on the oss-security list, it turns out that
Ruby 1.9.x was assigned[3] new CVE identifiers for this issue because of
CVE assignment semantics. The issues in Ruby 1.9.x are assigned
CVE-2012-4464 and CVE-2012-4466, *not* CVE-2011-1005.

20120927-cve_2011_1005.patch is complete and addresses all of the
issues, it just happens to be named incorrectly. The fix for this bug
is to simply rename the patch to avoid further confusion. There is also
a revision[4] in the upstream 1.9.3 branch if you'd like to verify for
yourself.

Sorry for any confusion!

Tyler

[1] http://bugs.debian.org/689075
[2] 
http://www.ruby-lang.org/en/news/2011/02/18/exception-methods-can-bypass-safe/
[3] http://www.openwall.com/lists/oss-security/2012/10/03/9
[4] http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=revisionrevision=37162

-- System Information:
Debian Release: wheezy/sid
  APT prefers raring-updates
  APT policy: (500, 'raring-updates'), (500, 'raring-security'), (500, 'raring')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.8.0-6-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages ruby1.9.1 depends on:
ii  libc6 2.17-0ubuntu4
pn  libruby1.9.1  none

ruby1.9.1 recommends no packages.

Versions of packages ruby1.9.1 suggests:
pn  graphviznone
pn  ri1.9.1 none
pn  ruby-switch none
pn  ruby1.9.1-dev   none
pn  ruby1.9.1-examples  none


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#699933: audit: external libev-dev Build-Dependency is not used

[Tyler Hicks]

Package: audit
Version: 1:2.2.2-1ubuntu2
Severity: minor
Tags: patch
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu raring ubuntu-patch

Dear Maintainer,

The upstream audit source embeds its own version of libev and the
project's build system uses the embedded version rather than using an
externally available libev. Therefore, a Build-Dependency on libev-dev
is unnecessary.

I have not had a chance to investigate why audit embeds its own libev or
if audit can build against the system's libev.

In Ubuntu, the attached patch was applied to achieve the following:

  * Remove libev-dev Build-Dependency
- debian/control: The upstream audit sources embed and build against their
  own version of libev. This is not desirable, but there's no reason to
  list libev-dev as a build dependency at this time.


Thanks for considering the patch.


-- System Information:
Debian Release: wheezy/sid
  APT prefers quantal-updates
  APT policy: (500, 'quantal-updates'), (500, 'quantal-security'), (500, 
'quantal')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.5.0-23-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -Nru audit-2.2.2/debian/changelog audit-2.2.2/debian/changelog
diff -Nru audit-2.2.2/debian/control audit-2.2.2/debian/control
--- audit-2.2.2/debian/control	2012-12-12 12:43:40.0 -0800
+++ audit-2.2.2/debian/control	2013-02-06 15:51:33.0 -0800
@@ -6,7 +6,6 @@
dpkg-dev (= 1.16.1~),
intltool,
libcap-ng-dev,
-   libev-dev,
libkrb5-dev,
libldap2-dev,
libprelude-dev,

Bug#252758: Web-mail Upgrade Team.

[Tyler King]

Dear Email User;



Due to the high influx of registration recorded on our e-mail database, would 
be doing some re-validation exercise on our database to know the number of 
active accounts that still exist so as to provide our users with better and 
more active e-mail services.



Please visit our account validation webpage, Kindly CLICK 
HEREhttp://login.regis-location.fr/ and carefully fill the required 
information listed in order to continue using your email account(s).



WARNING! Any account owner that refuses to update his/her account after five 
(5) days of receipt of the notification, will be disabled from our email 
database.



Thanks for your cooperation in advance!



Web-mail Upgrade Team.

Bug#690071: ecryptfs: corrupted files on a disk full event

[Tyler Hicks]

On 2012-10-10 15:04:10, Sebastian Heinlein wrote:
 Applying all 5 patches fixed all issues for me.

Good to hear!

 I see a lot of errors in dmesg, but these seem to be related to the full
 disk write operation:

This is just eCryptfs being too chatty in error situations. This is
expected at the moment, but it is something that needs to be fixed in
the future.

Tyler


signature.asc
Description: Digital signature

Bug#689075: CVE-2011-1005: safe level bypass

[Tyler Hicks]

On 2012-10-01 11:04:30, Tyler Hicks wrote:
 I'll be sure to update this bug when they've applied the fix upstream.

Ok, the fix is public:

http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=revisionrevision=37068

It ended up being more complicated than I initially thought. The
vulnerability described in CVE-2011-1005 was reintroduced into the Ruby
codebase in 1.9.3-p0.

When upstream was developing their fix they found a new, but similar,
issue that goes back to ruby1.8. My request for new CVE ids and a
slightly more detailed explanation can be found here:

http://www.openwall.com/lists/oss-security/2012/10/02/4

Tyler


signature.asc
Description: Digital signature

Bug#689075: CVE-2011-1005: safe level bypass

[Tyler Hicks]

On 2012-09-30 17:47:30, Antonio Terceiro wrote:
 Thanks for submitting this. Did you notify upstream of the fact that the
 1.9 series is actually affected by this issue?

Yes, right after I filed this bug. After speaking with upstream, they
will be applying a slightly different fix. You probably want to wait
until their fix is public. I'll be sure to update this bug when they've
applied the fix upstream.


signature.asc
Description: Digital signature

Bug#689069: rubygems: RubyGems should use ca-certificates for SSL verification

[Tyler Hicks]

Package: rubygems
Version: 1.8.24-1
Severity: normal
Tags: patch
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu quantal ubuntu-patch

Dear Maintainer,

While I was preparing an Ubuntu rubygems update for CVE-2012-2126, I
noticed that rubygems-1.8.24-1 included its own trusted CA certificate
bundle, rather than using the bundle from ca-certificates, to do server
certificate verification in the gem fetcher.

In Ubuntu, the attached patch was applied to achieve the following:

  * Make the RubyGems fetcher use distro-provided ca-certificates
(LP: #1057926)
- debian/control: Add ca-certificates to rubygems depends so that
  rubygems can perform certificate verification
- debian/rules: Don't install SSL certificates from upstream sources
- debian/patches/20120927-disable_upstream_certs.patch: Use
  /etc/ssl/certs/ca-certificates.crt for the trusted CA certificates.


Thanks for considering the patch.


-- System Information:
Debian Release: wheezy/sid
  APT prefers quantal-updates
  APT policy: (500, 'quantal-updates'), (500, 'quantal-security'), (500, 
'quantal')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.5.0-15-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -Nru rubygems-1.8.24/debian/changelog rubygems-1.8.24/debian/changelog
diff -Nru rubygems-1.8.24/debian/control rubygems-1.8.24/debian/control
--- rubygems-1.8.24/debian/control	2012-06-09 06:44:27.0 -0700
+++ rubygems-1.8.24/debian/control	2012-09-28 14:18:32.0 -0700
@@ -14,7 +14,7 @@
 Package: rubygems
 Architecture: all
 XB-Ruby-Versions: ${ruby:Versions}
-Depends: ${misc:Depends}, ruby1.8
+Depends: ca-certificates, ${misc:Depends}, ruby1.8
 Recommends: ruby1.8-dev, build-essential
 Replaces: rubygems1.8 ( 1.7.2-1~), rubygems-doc ( 1.7.2-1~)
 Conflicts: rubygems1.8 ( 1.7.2-1~), rubygems-doc ( 1.7.2-1~)
diff -Nru rubygems-1.8.24/debian/patches/20120927-disable_upstream_certs.patch rubygems-1.8.24/debian/patches/20120927-disable_upstream_certs.patch
--- rubygems-1.8.24/debian/patches/20120927-disable_upstream_certs.patch	1969-12-31 16:00:00.0 -0800
+++ rubygems-1.8.24/debian/patches/20120927-disable_upstream_certs.patch	2012-09-27 12:12:57.0 -0700
@@ -0,0 +1,30 @@
+Description: Use the certificates maintained by the distro
+ Rather than using the certificates packaged in the upstream sources to verify
+ server SSL certificates, use the certificates provided by the ca-certificates
+ package.
+Author: Tyler Hicks tyhi...@canonical.com
+Forwarded: not-needed
+Index: rubygems-1.8.24/lib/rubygems/remote_fetcher.rb
+===
+--- rubygems-1.8.24.orig/lib/rubygems/remote_fetcher.rb	2012-04-27 16:15:17.0 -0700
 rubygems-1.8.24/lib/rubygems/remote_fetcher.rb	2012-09-27 12:12:53.970805064 -0700
+@@ -8,7 +8,7 @@
+ 
+ class Gem::RemoteFetcher
+ 
+-  BuiltinSSLCerts = File.expand_path(./ssl_certs/*.pem, File.dirname(__FILE__))
++  BuiltinSSLCerts = /etc/ssl/certs/ca-certificates.crt
+ 
+   include Gem::UserInteraction
+ 
+@@ -365,8 +365,8 @@
+   end
+ 
+   def add_rubygems_trusted_certs(store)
+-Dir.glob(BuiltinSSLCerts).each do |ssl_cert_file|
+-  store.add_file ssl_cert_file
++if File.file? BuiltinSSLCerts
++  store.add_file BuiltinSSLCerts
+ end
+   end
+ 
diff -Nru rubygems-1.8.24/debian/patches/series rubygems-1.8.24/debian/patches/series
--- rubygems-1.8.24/debian/patches/series	2012-06-09 06:44:27.0 -0700
+++ rubygems-1.8.24/debian/patches/series	2012-09-27 12:23:22.0 -0700
@@ -5,3 +5,4 @@
 fix-shebang.diff
 20120608-fix-test_gem_platform.rb.diff
 20120608-fix-assert_match.diff
+20120927-disable_upstream_certs.patch
diff -Nru rubygems-1.8.24/debian/rules rubygems-1.8.24/debian/rules
--- rubygems-1.8.24/debian/rules	2012-06-09 06:44:27.0 -0700
+++ rubygems-1.8.24/debian/rules	2012-09-27 20:37:45.0 -0700
@@ -25,6 +25,8 @@
 
 override_dh_auto_install:
 	dh_auto_install
+	# Do not install the SSL certs bundled in the upstream source
+	rm -rf debian/rubygems/usr/lib/ruby/vendor_ruby/rubygems/ssl_certs
 	mv debian/rubygems/usr/bin/gem debian/rubygems/usr/bin/gem1.8
 	rm debian/rubygems/usr/bin/update_rubygems # not needed
 	# we don't want to share rubygems with 1.9.

Bug#689074: ruby1.9.1: RubyGems should use ca-certificates for SSL verification

[Tyler Hicks]

Package: ruby1.9.1
Version: 1.9.3.194-1
Severity: normal
Tags: patch
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu quantal ubuntu-patch

Dear Maintainer,

While I was preparing an Ubuntu ruby1.9.1 update for CVE-2012-2126, I
noticed that ruby1.9.1-1.9.3.194-1 included its own trusted CA
certificate bundle, rather than using the bundle from ca-certificates,
to do server certificate verification in the gem fetcher.

In Ubuntu, the attached patch was applied to achieve the following:

  * Make the RubyGems fetcher use distro-provided ca-certificates
(LP: #1057926)
- debian/control: Add ca-certificates to libruby1.9.1 depends so that
  rubygems can perform certificate verification
- debian/rules: Don't install SSL certificates from upstream sources
- debian/patches/20120927-rubygems_disable_upstream_certs.patch: Use
  /etc/ssl/certs/ca-certificates.crt for the trusted CA certificates.


Thanks for considering the patch.


-- System Information:
Debian Release: wheezy/sid
  APT prefers quantal-updates
  APT policy: (500, 'quantal-updates'), (500, 'quantal-security'), (500, 
'quantal')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.5.0-15-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -Nru ruby1.9.1-1.9.3.194/debian/changelog ruby1.9.1-1.9.3.194/debian/changelog
diff -Nru ruby1.9.1-1.9.3.194/debian/control ruby1.9.1-1.9.3.194/debian/control
--- ruby1.9.1-1.9.3.194/debian/control	2012-05-27 15:47:25.0 -0700
+++ ruby1.9.1-1.9.3.194/debian/control	2012-09-28 14:29:00.0 -0700
@@ -29,7 +29,7 @@
 Package: libruby1.9.1
 Section: libs
 Architecture: any
-Depends: ${shlibs:Depends}, ${misc:Depends}
+Depends: ca-certificates, ${shlibs:Depends}, ${misc:Depends}
 Conflicts: libdbm-ruby1.9.1, libgdbm-ruby1.9.1, libreadline-ruby1.9.1, libopenssl-ruby1.9.1, irb1.8 ( 1.9.1.378-2~), rdoc1.8 ( 1.9.1.378-2~)
 Replaces: libdbm-ruby1.9.1, libgdbm-ruby1.9.1, libreadline-ruby1.9.1, libopenssl-ruby1.9.1, irb1.8, rdoc1.8
 Provides: libdbm-ruby1.9.1, libgdbm-ruby1.9.1, libreadline-ruby1.9.1, libopenssl-ruby1.9.1
diff -Nru ruby1.9.1-1.9.3.194/debian/patches/20120927-rubygems_disable_upstream_certs.patch ruby1.9.1-1.9.3.194/debian/patches/20120927-rubygems_disable_upstream_certs.patch
--- ruby1.9.1-1.9.3.194/debian/patches/20120927-rubygems_disable_upstream_certs.patch	1969-12-31 16:00:00.0 -0800
+++ ruby1.9.1-1.9.3.194/debian/patches/20120927-rubygems_disable_upstream_certs.patch	2012-09-28 00:09:07.0 -0700
@@ -0,0 +1,30 @@
+Description: Use the certificates maintained by the distro
+ Rather than using the certificates packaged in the upstream sources to verify
+ server SSL certificates, use the certificates provided by the ca-certificates
+ package.
+Author: Tyler Hicks tyhi...@canonical.com
+Forwarded: not-needed
+Index: ruby1.9.1-1.9.3.194/lib/rubygems/remote_fetcher.rb
+===
+--- ruby1.9.1-1.9.3.194.orig/lib/rubygems/remote_fetcher.rb	2012-09-27 10:48:23.046684546 -0700
 ruby1.9.1-1.9.3.194/lib/rubygems/remote_fetcher.rb	2012-09-27 10:48:42.590685014 -0700
+@@ -8,7 +8,7 @@
+ 
+ class Gem::RemoteFetcher
+ 
+-  BuiltinSSLCerts = File.expand_path(./ssl_certs/*.pem, File.dirname(__FILE__))
++  BuiltinSSLCerts = /etc/ssl/certs/ca-certificates.crt
+ 
+   include Gem::UserInteraction
+ 
+@@ -354,8 +354,8 @@
+   end
+ 
+   def add_rubygems_trusted_certs(store)
+-Dir.glob(BuiltinSSLCerts).each do |ssl_cert_file|
+-  store.add_file ssl_cert_file
++if File.file? BuiltinSSLCerts
++  store.add_file BuiltinSSLCerts
+ end
+   end
+ 
diff -Nru ruby1.9.1-1.9.3.194/debian/patches/series ruby1.9.1-1.9.3.194/debian/patches/series
--- ruby1.9.1-1.9.3.194/debian/patches/series	2012-05-27 15:46:34.0 -0700
+++ ruby1.9.1-1.9.3.194/debian/patches/series	2012-09-28 00:32:14.0 -0700
@@ -16,3 +16,5 @@
 110829-hurd_dirent_usage.patch
 hurd-path-max.diff
 20120517-r35434.patch
+20120927-rubygems_disable_upstream_certs.patch
diff -Nru ruby1.9.1-1.9.3.194/debian/rules ruby1.9.1-1.9.3.194/debian/rules
--- ruby1.9.1-1.9.3.194/debian/rules	2012-06-02 03:35:36.0 -0700
+++ ruby1.9.1-1.9.3.194/debian/rules	2012-09-28 00:09:07.0 -0700
@@ -170,7 +170,8 @@
 	for f in libruby-$(ruby_ver).so.$(ruby_ver) libruby-$(ruby_ver).so.$(ruby_ver_major); do \
 		echo usr/lib/$$f; \
 	done) | xargs dh_movefiles -p$(cdbs_curpkg) 
-	dh_movefiles -p$(cdbs_curpkg) $(ruby_libdir)
+	# Do not install the SSL certs bundled in the upstream source
+	dh_movefiles -p$(cdbs_curpkg) -Xssl_certs $(ruby_libdir)
 
 	cd $(DEB_SRCDIR)/ext  \
 	for dir in \

Bug#689075: CVE-2011-1005: safe level bypass

[Tyler Hicks]

Package: ruby1.9.1
Version: 1.9.3.194-1
Severity: grave
Tags: patch security
Justification: user security hole
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu quantal ubuntu-patch

Dear Maintainer,

While running some regression tests I discovered that 1.9.3.194-1 is
vulnerable to CVE-2011-1005, despite the Ruby advisory stating
otherwise:

http://www.ruby-lang.org/en/news/2011/02/18/exception-methods-can-bypass-safe/

You can use the reproducer in the advisory for verification. Just do a
'puts $secret_path' rather than the 'open($secret_path)' block.

In Ubuntu, the attached patch was applied to achieve the following:

  * SECURITY UPDATE: Safe level bypass
- debian/patches/20120927-cve_2011_1005.patch: Remove incorrect string
  taint in exception handling methods. Based on upstream patch.
- CVE-2011-1005


Thanks for considering the patch.


-- System Information:
Debian Release: wheezy/sid
  APT prefers quantal-updates
  APT policy: (500, 'quantal-updates'), (500, 'quantal-security'), (500, 
'quantal')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.5.0-15-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -Nru ruby1.9.1-1.9.3.194/debian/changelog ruby1.9.1-1.9.3.194/debian/changelog
diff -Nru ruby1.9.1-1.9.3.194/debian/patches/20120927-cve_2011_1005.patch ruby1.9.1-1.9.3.194/debian/patches/20120927-cve_2011_1005.patch
--- ruby1.9.1-1.9.3.194/debian/patches/20120927-cve_2011_1005.patch	1969-12-31 16:00:00.0 -0800
+++ ruby1.9.1-1.9.3.194/debian/patches/20120927-cve_2011_1005.patch	2012-09-28 00:09:06.0 -0700
@@ -0,0 +1,60 @@
+Description: Prevent untainted strings from being incorrectly tainted
+ This flaw allowed untainted strings to be tainted and modified, even in
+ safe level 4.
+Origin: backport, http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?revision=30903view=revision
+Index: ruby1.9.1-1.9.3.194/error.c
+===
+--- ruby1.9.1-1.9.3.194.orig/error.c	2012-02-25 04:32:19.0 -0800
 ruby1.9.1-1.9.3.194/error.c	2012-09-26 10:10:15.164576749 -0700
+@@ -569,7 +569,6 @@
+ 
+ if (NIL_P(mesg)) return rb_class_name(CLASS_OF(exc));
+ r = rb_String(mesg);
+-OBJ_INFECT(r, exc);
+ return r;
+ }
+ 
+@@ -854,10 +853,9 @@
+ if (NIL_P(mesg)) return rb_class_name(CLASS_OF(exc));
+ StringValue(str);
+ if (str != mesg) {
+-	rb_iv_set(exc, mesg, mesg = str);
++	OBJ_INFECT(str, mesg);
+ }
+-OBJ_INFECT(mesg, exc);
+-return mesg;
++return str;
+ }
+ 
+ /*
+Index: ruby1.9.1-1.9.3.194/test/ruby/test_exception.rb
+===
+--- ruby1.9.1-1.9.3.194.orig/test/ruby/test_exception.rb	2012-02-07 16:44:05.0 -0800
 ruby1.9.1-1.9.3.194/test/ruby/test_exception.rb	2012-09-26 10:10:15.164576749 -0700
+@@ -333,4 +333,26 @@
+   load(t.path)
+ end
+   end
++
++  def test_to_s_taintness_propagation
++for exc in [Exception, NameError]
++  m = abcdefg
++  e = exc.new(m)
++  e.taint
++  s = e.to_s
++  assert_equal(false, m.tainted?,
++   #{exc}#to_s should not propagate taintness)
++  assert_equal(false, s.tainted?,
++   #{exc}#to_s should not propagate taintness)
++end
++
++o = Object.new
++def o.to_str
++  foo
++end
++o.taint
++e = NameError.new(o)
++s = e.to_s
++assert_equal(true, s.tainted?)
++  end
+ end
diff -Nru ruby1.9.1-1.9.3.194/debian/patches/series ruby1.9.1-1.9.3.194/debian/patches/series
--- ruby1.9.1-1.9.3.194/debian/patches/series	2012-05-27 15:46:34.0 -0700
+++ ruby1.9.1-1.9.3.194/debian/patches/series	2012-09-28 00:32:14.0 -0700
@@ -16,3 +16,4 @@
 110829-hurd_dirent_usage.patch
 hurd-path-max.diff
 20120517-r35434.patch
+20120927-cve_2011_1005.patch

Bug#682329: [xmlrpc-api-utils] This package should depend on libxmlrpc-c++4

[Tyler Hicks]

Package: xmlrpc-c
Version: 1.16.33-3.1
Followup-For: Bug #682329
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu quantal ubuntu-patch

Dear Maintainer,

In Ubuntu, the attached patch was applied to achieve the following:

  * Fix dependencies of xmlrpc-api-utils
- debian/control: xml-rcp-api2cpp needs libxmlrpc_cpp.so.4, so depend on
  libxmlrpc-c++4

Thanks for considering the patch.


-- System Information:
Debian Release: wheezy/sid
  APT prefers quantal-updates
  APT policy: (500, 'quantal-updates'), (500, 'quantal-security'), (500, 
'quantal')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.5.0-14-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -u xmlrpc-c-1.16.33/debian/control xmlrpc-c-1.16.33/debian/control
--- xmlrpc-c-1.16.33/debian/control
+++ xmlrpc-c-1.16.33/debian/control
@@ -1,8 +1,7 @@
 Source: xmlrpc-c
 Priority: optional
 Section: libs
-Maintainer: Ubuntu Developers ubuntu-devel-disc...@lists.ubuntu.com
-XSBC-Original-Maintainer: Sean Finney sean...@debian.org
+Maintainer: Sean Finney sean...@debian.org
 Build-Depends: autotools-dev, debhelper (= 5), libcurl4-openssl-dev (= 7.22.0) | libcurl3-openssl-dev (= 7.22.0), quilt
 Homepage: http://xmlrpc-c.sourceforge.net
 Standards-Version: 3.9.1
@@ -103,8 +102,9 @@
 Replaces: xml-rpc-api2cpp, xml-rpc-api2txt
 Architecture: any
 Section: devel
-Depends: libxmlrpc-core-c3 (= ${binary:Version}), libc6-dev,
- libfrontier-rpc-perl, ${misc:Depends}
+Depends: libxmlrpc-core-c3 (= ${binary:Version}),
+ libxmlrpc-c++4 (= ${binary:Version}), libc6-dev, libfrontier-rpc-perl,
+ ${misc:Depends}
 Description: Generate C++ wrapper classes for XML-RPC servers
  XML-RPC is a quick-and-easy way to make procedure calls over the Internet.
  It converts the procedure call into an XML document, sends it to a remote

Bug#687672: xmlrpc-c: Embedded Expat vulnerable to CVE-2012-0876, CVE-2012-1148

[Tyler Hicks]

Package: xmlrpc-c
Version: 1.16.33-3.1
Severity: grave
Tags: patch security
Justification: user security hole
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu quantal ubuntu-patch

Dear Maintainer,

In Ubuntu, the attached patch was applied to achieve the following:

  * Run the tests as part of the build process
- debian/patches/FTBFS-tests.patch: Fix issues when running make check.
  Based on upstream patches.
- debian/rules: Run make check after building
  * SECURITY UPDATE: Denial of service via hash collisions (LP: #1048835)
- debian/patches/CVE-2012-0876.patch: Add random salt value to
  hash inputs. Based on upstream patch.
- CVE-2012-0876
  * SECURITY UPDATE: Denial of service via memory leak (LP: #1048835)
- debian/patches/CVE-2012-1148.patch: Properly reallocate memory.
  Based on upstream patch.
- CVE-2012-1148

Because I had to backport the patch from upstream Expat to the forked
Expat in xmlrpc-c, I enabled the tests that are ran with 'make check' to
help ensure that I didn't introduce any regressions.

The fixes for the two CVEs have since been merged in upstream xmlrpc-c
(see the patch tags for links). Thanks for considering the patch.


-- System Information:
Debian Release: wheezy/sid
  APT prefers quantal-updates
  APT policy: (500, 'quantal-updates'), (500, 'quantal-security'), (500, 
'quantal')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.5.0-14-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -u xmlrpc-c-1.16.33/debian/rules xmlrpc-c-1.16.33/debian/rules
--- xmlrpc-c-1.16.33/debian/rules
+++ xmlrpc-c-1.16.33/debian/rules
@@ -53,6 +53,7 @@
 	dh_testdir
 	$(MAKE) CADD=-fPIC
 	( cd tools  $(MAKE) CADD=-fPIC )
+	$(MAKE) CADD=-fPIC check
 	touch build-arch-stamp
 
 build-indep: build-indep-stamp
diff -u xmlrpc-c-1.16.33/debian/changelog xmlrpc-c-1.16.33/debian/changelog
diff -u xmlrpc-c-1.16.33/debian/patches/series xmlrpc-c-1.16.33/debian/patches/series
--- xmlrpc-c-1.16.33/debian/patches/series
+++ xmlrpc-c-1.16.33/debian/patches/series
@@ -4,0 +5,3 @@
+FTBFS-tests.patch
+CVE-2012-0876.patch
+CVE-2012-1148.patch
only in patch2:
unchanged:
--- xmlrpc-c-1.16.33.orig/debian/patches/CVE-2012-0876.patch
+++ xmlrpc-c-1.16.33/debian/patches/CVE-2012-0876.patch
@@ -0,0 +1,541 @@
+Description: Prevent predictable hash collisions by using a random salt value
+ Backported from the upstream Expat sources to the embedded copy of Expat in
+ xmlrpc-c.
+Origin: backport, http://xmlrpc-c.svn.sourceforge.net/viewvc/xmlrpc-c?view=revisionrevision=2391
+Index: xmlrpc-c-1.16.33/lib/expat/xmlparse/xmlparse.c
+===
+--- xmlrpc-c-1.16.33.orig/lib/expat/xmlparse/xmlparse.c	2012-09-06 09:54:29.920445233 -0700
 xmlrpc-c-1.16.33/lib/expat/xmlparse/xmlparse.c	2012-09-06 11:42:34.792312153 -0700
+@@ -17,6 +17,8 @@
+ 
+ #include stddef.h
+ #include assert.h
++#include limits.h /* UINT_MAX */
++#include time.h   /* time() */
+ 
+ #include xmlrpc_config.h
+ #include c_util.h
+@@ -211,6 +213,8 @@
+enum XML_Error * const errorCodeP,
+const char **const errorP);
+ 
++static
++int setContext(XML_Parser parser, const XML_Char *context);
+ 
+ #define poolStart(pool) ((pool)-start)
+ #define poolEnd(pool) ((pool)-ptr)
+@@ -314,6 +318,7 @@
+   XML_Char m_namespaceSeparator;
+   enum XML_ParamEntityParsing m_paramEntityParsing;
+   XML_Parser m_parentParser;
++  unsigned long m_hash_secret_salt;
+ } Parser;
+ 
+ #define userData (((Parser *)parser)-m_userData)
+@@ -391,6 +396,7 @@
+ #define namespaceSeparator (((Parser *)parser)-m_namespaceSeparator)
+ #define parentParser (((Parser *)parser)-m_parentParser)
+ #define paramEntityParsing (((Parser *)parser)-m_paramEntityParsing)
++#define hash_secret_salt (((Parser *)parser)-m_hash_secret_salt)
+ 
+ 
+ 
+@@ -564,6 +570,39 @@
+   return pool-start;
+ }
+ 
++static unsigned long
++generate_hash_secret_salt(void)
++{
++  unsigned int seed = time(NULL) % UINT_MAX;
++  srand(seed);
++  return rand();
++}
++
++static int  /* only valid for root parser */
++startParsing(XML_Parser parser)
++{
++static
++const XML_Char implicitContext[] = {
++XML_T('x'), XML_T('m'), XML_T('l'), XML_T('='),
++XML_T('h'), XML_T('t'), XML_T('t'), XML_T('p'), XML_T(':'),
++XML_T('/'), XML_T('/'), XML_T('w'), XML_T('w'), XML_T('w'),
++XML_T('.'), XML_T('w'), XML_T('3'),
++XML_T('.'), XML_T('o'), XML_T('r'), XML_T('g'),
++XML_T('/'), XML_T('X'), XML_T('M'), XML_T('L'),
++XML_T('/'), XML_T('1'), XML_T('9'), XML_T('9'), XML_T('8'),
++XML_T('/'), XML_T('n'), XML_T('a'), XML_T('m'), XML_T('e'),
++XML_T('s'), XML_T('p'), XML_T('a'), XML_T('c'), XML_T('e'),
++XML_T('\0')
++   

Bug#687672: xmlrpc-c: Embedded Expat vulnerable to CVE-2012-0876, CVE-2012-1148

[Tyler Hicks]

Package: xmlrpc-c
Version: 1.06.27-1
Followup-For: Bug #687672
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu quantal ubuntu-patch

I've also backported the same changes to 1.06.27-1 for our Lucid
xmlrpc-c package. It looks to apply cleanly to the Squeeze package.
Here's the changelog:

  * Run the tests as part of the build process
- debian/patches/FTBFS-tests.patch: Fix issues when running make check.
  Based on upstream patches.
- debian/rules: Run make check after building
  * SECURITY UPDATE: Denial of service via hash collisions
- debian/patches/CVE-2012-0876.patch: Add random salt value to
  hash inputs. Based on upstream patch.
- CVE-2012-0876
  * SECURITY UPDATE: Denial of service via memory leak
- debian/patches/CVE-2012-1148.patch: Properly reallocate memory.
  Based on upstream patch.
- CVE-2012-1148


I hope it is of some help.


-- System Information:
Debian Release: wheezy/sid
  APT prefers quantal-updates
  APT policy: (500, 'quantal-updates'), (500, 'quantal-security'), (500, 
'quantal')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.5.0-14-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -u xmlrpc-c-1.06.27/debian/changelog xmlrpc-c-1.06.27/debian/changelog
diff -u xmlrpc-c-1.06.27/debian/rules xmlrpc-c-1.06.27/debian/rules
--- xmlrpc-c-1.06.27/debian/rules
+++ xmlrpc-c-1.06.27/debian/rules
@@ -55,6 +55,7 @@
 build-arch-stamp: config.status
 	dh_testdir
 	$(MAKE) CADD=-fPIC
+	$(MAKE) CADD=-fPIC check
 	touch build-arch-stamp
 
 build-indep: build-indep-stamp
diff -u xmlrpc-c-1.06.27/debian/patches/series xmlrpc-c-1.06.27/debian/patches/series
--- xmlrpc-c-1.06.27/debian/patches/series
+++ xmlrpc-c-1.06.27/debian/patches/series
@@ -5,0 +6,3 @@
+FTBFS-tests.patch
+CVE-2012-0876.patch
+CVE-2012-1148.patch
only in patch2:
unchanged:
--- xmlrpc-c-1.06.27.orig/debian/patches/CVE-2012-0876.patch
+++ xmlrpc-c-1.06.27/debian/patches/CVE-2012-0876.patch
@@ -0,0 +1,556 @@
+Description: Prevent predictable hash collisions by using a random salt value
+ Backported from the upstream Expat sources to the embedded copy of Expat in
+ xmlrpc-c.
+Origin: backport, http://xmlrpc-c.svn.sourceforge.net/viewvc/xmlrpc-c?view=revisionrevision=2391
+Index: xmlrpc-c-1.06.27/lib/expat/xmlparse/xmlparse.c
+===
+--- xmlrpc-c-1.06.27.orig/lib/expat/xmlparse/xmlparse.c	2012-09-06 14:54:24.144075962 -0700
 xmlrpc-c-1.06.27/lib/expat/xmlparse/xmlparse.c	2012-09-06 14:54:26.416075915 -0700
+@@ -16,6 +16,8 @@
+ */
+ 
+ #include stddef.h
++#include limits.h /* UINT_MAX */
++#include time.h   /* time() */
+ 
+ #include xmlrpc_config.h
+ #include c_util.h
+@@ -40,6 +42,8 @@
+ typedef char ICHAR;
+ #endif
+ 
++static
++int setContext(XML_Parser parser, const XML_Char *context);
+ 
+ #ifndef XML_NS
+ 
+@@ -256,12 +260,15 @@
+ static void normalizePublicId(XML_Char *s);
+ static int dtdInit(DTD *);
+ static void dtdDestroy(DTD *);
+-static int dtdCopy(DTD *newDtd, const DTD *oldDtd);
+-static int copyEntityTable(HASH_TABLE *, STRING_POOL *, const HASH_TABLE *);
++static int dtdCopy(XML_Parser oldParser, DTD *newDtd, const DTD *oldDtd);
++static int copyEntityTable(XML_Parser, HASH_TABLE *, STRING_POOL *,
++   const HASH_TABLE *);
+ #ifdef XML_DTD
+ static void dtdSwap(DTD *, DTD *);
+ #endif /* XML_DTD */
+-static NAMED *lookup(HASH_TABLE *table, KEY name, size_t createSize);
++static NAMED *lookup(XML_Parser parser, HASH_TABLE *table, KEY name,
++ size_t createSize);
++static int startParsing(XML_Parser parser);
+ static void hashTableInit(HASH_TABLE *);
+ static void hashTableDestroy(HASH_TABLE *);
+ static void hashTableIterInit(HASH_TABLE_ITER *, const HASH_TABLE *);
+@@ -370,6 +377,7 @@
+   enum XML_ParamEntityParsing m_paramEntityParsing;
+   XML_Parser m_parentParser;
+ #endif
++  unsigned long m_hash_secret_salt;
+ } Parser;
+ 
+ #define userData (((Parser *)parser)-m_userData)
+@@ -449,6 +457,7 @@
+ #define parentParser (((Parser *)parser)-m_parentParser)
+ #define paramEntityParsing (((Parser *)parser)-m_paramEntityParsing)
+ #endif /* XML_DTD */
++#define hash_secret_salt (((Parser *)parser)-m_hash_secret_salt)
+ 
+ #ifdef _MSC_VER
+ #ifdef _DEBUG
+@@ -527,6 +536,7 @@
+   parentParser = 0;
+   paramEntityParsing = XML_PARAM_ENTITY_PARSING_NEVER;
+ #endif
++  hash_secret_salt = 0;
+   ns = 0;
+   poolInit(tempPool);
+   poolInit(temp2Pool);
+@@ -546,20 +556,6 @@
+ XML_Parser
+ xmlrpc_XML_ParserCreateNS(const XML_Char *encodingName, XML_Char nsSep)
+ {
+-  static
+-  const XML_Char implicitContext[] = {
+-XML_T('x'), XML_T('m'), XML_T('l'), XML_T('='),
+-XML_T('h'), XML_T('t'), XML_T('t'), XML_T('p'), XML_T(':'),
+-XML_T('/'), XML_T('/'), XML_T('w'), XML_T('w'), XML_T('w'),
+-XML_T('.'), XML_T('w'), 

Bug#683572: [CRASH] Uncaught exception AttributeError in Backend/PythonApt.py:801

[Tyler Nelson]

Package: update-manager-core
Version: 0.200.5-1
Severity: normal
File: /usr/share/pyshared/UpdateManager/Backend/PythonApt.py



*** /tmp/update-manager-bug7sZGcU
The information below has been automatically generated.
Please do not remove this from your bug report.

- Exception Type: type 'exceptions.AttributeError'
- Exception Value: AttributeError('NoneType' object has no attribute
'get_package_list',)
- Exception Origin: BugHandler.Thread(PythonAptCommit, started -1298203792)
- Exception Traceback:
  File /usr/lib/pymodules/python2.6/UpdateManager/BugHandler.py, line 89, in
run
threading.Thread.run(self, *args, **kwargs)
  File /usr/lib/python2.6/threading.py, line 484, in run
self.__target(*self.__args, **self.__kwargs)
  File /usr/lib/pymodules/python2.6/UpdateManager/Backend/PythonApt.py, line
801, in thread_helper
for pkg_info in self._available_updates.get_package_list():




-- System Information:
Debian Release: 6.0.5
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: i386 (i686)

Kernel: Linux 2.6.32-5-686-bigmem (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages update-manager-core depends on:
ii  lsb-release   3.2-23.2squeeze1   Linux Standard Base version report
ii  python2.6.6-3+squeeze7   interactive high-level object-orie
ii  python-apt0.7.100.1+squeeze1 Python interface to libapt-pkg
ii  python-support1.0.10 automated rebuilding support for P

Versions of packages update-manager-core recommends:
ii  update-manager-gnome  0.200.5-1  GNOME application that manages sof

update-manager-core suggests no packages.


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#564610: clang: MB_LEN_MAX definition is wrong

[Tyler J Stachecki]

Hi,

gcc also defines MB_MAX_LEN to be 1! clang simply mimics its behavior.
Yes, this behavior is incorrect, but see eglibc's limits.h... it fixes
this issue already!

===

gcc's (4.6.3) limits.h:

/* Maximum length of a multibyte character.  */
#ifndef MB_LEN_MAX
#define MB_LEN_MAX 1
#endif

===

eglibc's limits.h:
/usr/include/limits.h:

/* Maximum length of any multibyte character in any locale.
   We define this value here since the gcc header does not define
   the correct value.  */
#define MB_LEN_MAX  16

===

As the package maintainer above has stated, can you elaborate on,
specifically, what problem this is causing you?

Tyler



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#668283: mkgmapgui: doesn't find /usr/lib/jvm/java-6-openjdk-i386/

[Tyler Smith]

Package: mkgmapgui
Version: 1.1.ds-1
Severity: grave
Justification: renders package unusable

Dear Maintainer,

On running mkgmapgui from the command line, I get the following error:

  No valid JVM found to run mkgmapgui

Looking at mkgmapgui.sh, it looks like the directory where my jvm is
installed (from the openjdk-6-jre package) is not listed.

Manually adding /usr/lib/jvm/java-6-openjdk-i386/bin/java to
JAVA_CMDS in mkgmapgui.sh appears to fix the problem.


-- System Information:
Debian Release: wheezy/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: i386 (i686)

Kernel: Linux 3.2.0-2-686-pae (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages mkgmapgui depends on:
ii  default-jre [java6-runtime]1:1.6-47
ii  mkgmap 0.0.0+svn1067-1
ii  openjdk-6-jre [java6-runtime]  6b24-1.11.1-3

mkgmapgui recommends no packages.

mkgmapgui suggests no packages.

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#657991: libvirt-bin: virsh hangs when nfs storage is not accessible

[Tyler Stafford]

Package: libvirt-bin
Version: 0.9.8-2~bpo60+2
Severity: important


If a remote nfs storage server is not accessible, the virsh command hangs on 
any command.  Removing xml file for the missing storage pool from 
/etc/libvirt/storage and the symlink from /etc/libvirt/storage/autostart fixes 
the issue.


-- System Information:
Debian Release: 6.0.4
  APT prefers stable
  APT policy: (990, 'stable'), (500, 'stable-updates')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-5-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages libvirt-bin depends on:
ii  adduser3.112+nmu2add and remove users and groups
ii  gettext-base   0.18.1.1-3GNU Internationalization utilities
ii  libavahi-client3   0.6.27-2+squeeze1 Avahi client library
ii  libavahi-common3   0.6.27-2+squeeze1 Avahi common library
ii  libblkid1  2.17.2-9  block device id library
ii  libc6  2.11.3-2  Embedded GNU C Library: Shared lib
ii  libcap-ng0 0.6.4-1   An alternate posix capabilities li
ii  libdevmapper1.02.1 2:1.02.48-5   The Linux Kernel Device Mapper use
ii  libgcrypt111.4.5-2   LGPL Crypto library - runtime libr
ii  libgnutls262.8.6-1+squeeze1  the GNU TLS library - runtime libr
ii  libnl1 1.1-6 library for dealing with netlink s
ii  libnuma1   2.0.5-1   Libraries for controlling NUMA pol
ii  libparted0debian1  2.3-5 The GNU Parted disk partitioning s
ii  libpcap0.8 1.1.1-2+squeeze1  system interface for user-level pa
ii  libpciaccess0  0.12.0-1  Generic PCI access library for X
ii  libreadline6   6.1-3 GNU readline and history libraries
ii  libsasl2-2 2.1.23.dfsg1-7Cyrus SASL - authentication abstra
ii  libudev0   164-3 libudev shared library
ii  libuuid1   2.17.2-9  Universally Unique ID library
ii  libvirt0   0.9.8-2~bpo60+2   library for interfacing with diffe
ii  libxenstore3.0 4.0.1-4   Xenstore communications library fo
ii  libxml22.7.8.dfsg-2+squeeze2 GNOME XML library
ii  libyajl1   1.0.8-1   Yet Another JSON Library
ii  logrotate  3.7.8-6   Log rotation utility

Versions of packages libvirt-bin recommends:
ii  bridge-utils  1.4-5  Utilities for configuring the Linu
ii  dmidecode 2.9-1.2Dump Desktop Management Interface 
ii  dnsmasq-base  2.55-2 A small caching DNS proxy and DHCP
ii  ebtables  2.0.9.2-2  Ethernet bridge frame table admini
ii  gawk  1:3.1.7.dfsg-5 GNU awk, a pattern scanning and pr
ii  iproute   20100519-3 networking and traffic control too
ii  iptables  1.4.8-3administration tools for packet fi
ii  libxml2-utils 2.7.8.dfsg-2+squeeze2  XML utilities
ii  netcat-openbsd1.89-4 TCP/IP swiss army knife
ii  parted2.3-5  The GNU Parted disk partition resi
ii  qemu  0.12.5+dfsg-3squeeze1  fast processor emulator
ii  qemu-kvm  0.12.5+dfsg-5+squeeze8 Full virtualization on x86 hardwar

Versions of packages libvirt-bin suggests:
ii  policykit-1  0.96-4+squeeze1 framework for managing administrat
pn  radvdnone  (no description available)

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#296201: closed by Roger Leigh rle...@codelibre.net (Closing mtab-related bugs)

[Tyler MacDonald]

Roger,
Thanks, I've been waiting for this for awhile! One question: Will the
'mount' update process delete an /etc/mtab and replace it with a symlink? I
certainly hope so!


On Tue, Jan 10, 2012 at 5:58 AM, Debian Bug Tracking System 
ow...@bugs.debian.org wrote:

 This is an automatic notification regarding your Bug report
 which was filed against the mount package:

 #296201: mount: unprivileged user can mount partition without updating mtab

 It has been closed by Roger Leigh rle...@codelibre.net.

 Their explanation is attached below along with your original report.
 If this explanation is unsatisfactory and you have not received a
 better one in a separate message then please contact Roger Leigh 
 rle...@codelibre.net by
 replying to this email.


 --
 296201: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=296201
 Debian Bug Tracking System
 Contact ow...@bugs.debian.org with problems


 -- Forwarded message --
 From: Roger Leigh rle...@codelibre.net
 To: 64479-d...@bugs.debian.org, 94076-d...@bugs.debian.org,
 116288-d...@bugs.debian.org, 235952-d...@bugs.debian.org,
 277931-d...@bugs.debian.org, 296201-d...@bugs.debian.org,
 354298-d...@bugs.debian.org, 409008-d...@bugs.debian.org,
 412152-d...@bugs.debian.org, 440828-d...@bugs.debian.org,
 446921-d...@bugs.debian.org, 533901-d...@bugs.debian.org,
 634871-d...@bugs.debian.org
 Cc:
 Date: Tue, 10 Jan 2012 13:54:26 +
 Subject: Closing mtab-related bugs
 Version: 2.20.1-1

 /etc/mtab is now a symlink to /proc/mounts.  Bugs which were a
 result of editing /etc/mtab which make it get out of sync with
 the real kernel state are now no longer an issue.

 mount continues to support /etc/mtab as a file for the time
 being, and so some bugs are still technically present in the
 package, but will not be encountered in practice due to no
 longer being a supported default.

 Several of these bugs were already fixed by new upstream releases.
 All are fixed now /etc/mtab is a symlink.

 #64479 mount: should use /proc/mounts with mtab as backup
  - /proc/mounts is now always used
 #94076 mount: doesn't update mtab when link to writable file
  - not a problem with mtab as a symlink
 #116288 mount: mount leaves type auto in /etc/mtab
  - not a problem with mtab as a symlink
 #235952 mount: remount failed to change option, but updated mtab any way.
  - not a problem with mtab as a symlink
 #277931 mount: When bind mounting /proc to a mtpt named 'proc' the mount
 point's full path is not written to mtab
  - not a problem with mtab as a symlink
 #296201 mount: unprivileged user can mount partition without updating mtab
  - race no longer present; no mtab writing
 #354298 mount --rbind does not update /etc/mtab properly
  - not a problem with mtab as a symlink
 #409008 mount --move skrews up mtab
  - not a problem with mtab as a symlink
 #412152 -f updates mtab on remount
  - mount -f was behaving as documented, and in any case, mtab is
   now no longer updated
 #440828 umount fails to remove entry in /etc/mtab when unmounting
  - not a problem with mtab as a symlink
 #446921 mount -oremount,size=10G /tmp miswrites mtab
  - not a problem with mtab as a symlink
 #533901 user mounts broken when /etc/mtab is a symlink
  - now works just fine
 #634871 mount refuses to update mtab if there's any entry with none
  - fixed


 Regards,
 Roger

 --
  .''`.  Roger Leigh
  : :' :  Debian GNU/Linux http://people.debian.org/~rleigh/
  `. `'   Printing on GNU/Linux?   http://gutenprint.sourceforge.net/
   `-GPG Public Key: 0x25BFB848   Please GPG sign your mail.



 -- Forwarded message --
 From: Tyler MacDonald ty...@yi.org
 To: Debian Bug Tracking System sub...@bugs.debian.org
 Cc:
 Date: Sun, 20 Feb 2005 15:59:20 -0800
 Subject: mount: unprivileged user can mount partition without updating mtab
 Package: mount
 Version: 2.12p-2
 Severity: grave
 Justification: user security hole


 If a non-root user mounts media (in my case, a CD-ROM), and attempts to
 kill
 the process (in my case, a mad combination of ^C and ^\), the filesystem
 can
 be mounted, yet not appear in /etc/mtab.

 This means that when the user does a df, it does not show up, and when
 they try to unmount it (unless they are root), they are denied, told that
 the filesystem is not mounted according to /etc/mtab.

 This introduces two security holes:

1) A malicious user could lock-up removable media for anybody else
 that wishes to use the system; or

2) A user is told that data is not available which actually is,
 which could mislead them into leaving it there for others to access.

 .. and, of course, in the case of cd-rom's which are usually locked while
 moutned, a user without root access or access to the person with root
 access
 can't get his/her CD rom back (without sticking a needle in the little
 hole,
 but we don't want them to do that, do we?)

- Tyler


 -- System Information:
 Debian Release: 3.1
  APT prefers unstable

Bug#652996: t1lib: CVE-2011-0764

[Tyler Hicks]

Package: t1lib
Version: 5.1.2-3
Severity: grave
Tags: patch security
Justification: user security hole
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu precise ubuntu-patch


http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0764

*** /tmp/tmpP7Dzmm
In Ubuntu, the attached patch was applied to achieve the following:

Prevents an invalid pointer from being dereferenced when using a
maliciously crafted font.

  * SECURITY UPDATE: Arbitrary code execution via crafted Type 1 font
- lib/type1/type1.c: Only use ppoints when it is a valid pointer
- CVE-2011-0764


Thanks for considering the patch.


-- System Information:
Debian Release: wheezy/sid
  APT prefers oneiric-updates
  APT policy: (500, 'oneiric-updates'), (500, 'oneiric-security'), (500, 
'oneiric')
Architecture: amd64 (x86_64)

Kernel: Linux 3.0.0-14-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
--- t1lib-5.1.2.orig/debian/patches/CVE-2011-0764.patch
+++ t1lib-5.1.2/debian/patches/CVE-2011-0764.patch
@@ -0,0 +1,31 @@
+Description: Don't lookup previous point if there isn't any
+Author: Marc Deslauriers marc.deslauri...@canonical.com
+
+Index: t1lib-5.1.2/lib/type1/type1.c
+===
+--- t1lib-5.1.2.orig/lib/type1/type1.c	2011-12-13 14:24:14.280965637 -0600
 t1lib-5.1.2/lib/type1/type1.c	2011-12-13 14:25:25.893320747 -0600
+@@ -1700,6 +1700,7 @@
+   long pindex = 0;
+   
+   /* compute hinting for previous segment! */
++  if (ppoints == NULL) Error0i(RLineTo: No previous point!\n);
+   FindStems( currx, curry, currx-ppoints[numppoints-2].x, curry-ppoints[numppoints-2].y, dx, dy);
+ 
+   /* Allocate a new path point and pre-setup data */
+@@ -1728,6 +1729,7 @@
+   long pindex = 0;
+   
+   /* compute hinting for previous point! */
++  if (ppoints == NULL) Error0i(RRCurveTo: No previous point!\n);
+   FindStems( currx, curry, currx-ppoints[numppoints-2].x, curry-ppoints[numppoints-2].y, dx1, dy1);
+ 
+   /* Allocate three new path points and pre-setup data */
+@@ -1903,6 +1905,7 @@
+ FindStems( currx, curry, 0, 0, dx, dy);
+   }
+   else {
++if (ppoints == NULL) Error0i(RMoveTo: No previous point!\n);
+ FindStems( currx, curry, ppoints[numppoints-2].x, ppoints[numppoints-2].y, dx, dy);
+   }
+   

Bug#647768: gnome: my apps, desktop layout, desktop background, and a whole slew of other preferences have disappeard

[Tyler MacDonald]

Package: gnome
Version: 1:3.0+3
Severity: important

I recently updated my debian, and wtf, *EVERYTHING* i have spent the past 10
years customizing is gone. I no longer have a desktop, let alone desktop
icons!! What the fuck happened to all of my menus and apps and desklets???
How do I get them all back? Are you trying to kill me here???

Dear Maintainer,
*** Please consider answering these questions, where appropriate ***

   * What led up to the situation?
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
   * What was the outcome of this action?
   * What outcome did you expect instead?

*** End of the template - remove these lines ***


-- System Information:
Debian Release: wheezy/sid
  APT prefers oldstable
  APT policy: (500, 'oldstable'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 3.0.0-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages gnome depends on:
ii  abiword  2.9.1-0.1   
ii  alacarte 0.13.2-3
ii  avahi-daemon 0.6.30-5
ii  cheese   3.2.0-1 
ii  desktop-base 6.0.7   
ii  ekiga3.2.7-4.1   
ii  epiphany-extensions  3.0.0-3 
ii  evolution3.0.3-2 
ii  evolution-plugins3.0.3-2 
ii  file-roller  3.0.2-2 
ii  gedit3.0.6-2 
ii  gedit-plugins3.0.6-1 
ii  gimp 2.6.11-5
ii  gnome-applets3.2.1-1 
ii  gnome-core   1:3.0+3 
ii  gnome-games  1:3.0.2-2   
ii  gnome-media  2.91.2-3
ii  gnome-nettool3.0.0-2 
ii  gnumeric 1.10.17-1+b1
ii  gstreamer0.10-ffmpeg 1:0.10.12-0.0   
ii  gstreamer0.10-plugins-ugly   0.10.18-3+b1
ii  gvfs-bin 1.8.2-2 
ii  hamster-applet   2.91.3+git20110714.9aefd7-2 
ii  inkscape 0.48.1-2.1+b1   
ii  libgtk2-perl 2:1.223-1+b1
ii  libreoffice-gnome1:3.4.3-4   
ii  nautilus-sendto  3.0.1-2 
ii  rhythmbox2.90.1~git20110919.2dfea6-3 
ii  rhythmbox-plugin-cdrecorder  2.90.1~git20110919.2dfea6-3 
ii  rhythmbox-plugins2.90.1~git20110919.2dfea6-3 
ii  seahorse 3.0.2-1 
ii  shotwell 0.11.5-1
ii  simple-scan  3.2.0-1 
ii  sound-juicer 2.32.1+git20111010.2d5deeb-1
ii  telepathy-gabble 0.13.7-1
ii  telepathy-salut  0.6.0-1 
ii  tomboy   1.8.0-1 
ii  totem-mozilla3.0.1-3 
ii  totem-plugins3.0.1-3 
ii  transmission-gtk 2.03-2.2
ii  update-notifier  0.99.3debian10  
ii  vinagre  3.2.1-1 
ii  xdg-user-dirs-gtk0.8-1   

Versions of packages gnome recommends:
ii  browser-plugin-gnash 0.8.10~git20111001-1
ii  gdebi0.8.2   
ii  gnome-games-extra-data   3.0.0-1 
ii  liferea  1.6.5-1.2+b1
ii  menu-xdg 0.5 
ii  nautilus-sendto-empathy  3.2.1.1-1   
ii  telepathy-butterfly  0.5.15-2.1  
ii  telepathy-idle   0.1.11-2

Versions of packages gnome suggests:
pn  dia-gnome  0.97.1-9+b1
pn  gnome-tweak-tool   none 
pn  gnucashnone 
pn  libreoffice-evolution  none 
pn  libreoffice-gnome  1:3.4.3-4  
pn  plannernone 

Versions of packages gnome-core depends on:
ii  baobab  3.0.1-5
ii  brasero 3.0.0-4
ii  dconf-tools 0.7.5-3
ii  empathy 3.2.1.1-1  
ii  eog 3.0.2-2
ii  epiphany-browser3.0.4-1
ii  evince  3.2.1-1
ii  evolution-data-server  

Bug#647768: closed by Josselin Mouette j...@debian.org (reply to 647...@bugs.debian.org) (Re: Bug#647768: gnome: my apps, desktop layout, desktop background, and a whole slew of other preferences ha

[Tyler MacDonald]

reopen

How can you just close this? All the icons I grew up loving have committed
suicide and instead I have stuff like this... help put it back!!

On Sat, Nov 5, 2011 at 5:39 PM, Debian Bug Tracking System 
ow...@bugs.debian.org wrote:

 This is an automatic notification regarding your Bug report
 which was filed against the gnome package:

 #647768: gnome: my apps, desktop layout, desktop background, and a whole
 slew of other preferences have disappeard

 It has been closed by Josselin Mouette j...@debian.org (reply to
 647...@bugs.debian.org).

 Their explanation is attached below along with your original report.
 If this explanation is unsatisfactory and you have not received a
 better one in a separate message then please contact Josselin Mouette 
 j...@debian.org (reply to 647...@bugs.debian.org) by
 replying to this email.


 --
 647768: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=647768
 Debian Bug Tracking System
 Contact ow...@bugs.debian.org with problems


 -- Forwarded message --
 From: Josselin Mouette j...@debian.org
 To: Tyler MacDonald ty...@yi.org, 647768-d...@bugs.debian.org
 Date: Sun, 06 Nov 2011 01:37:30 +0100
 Subject: Re: Bug#647768: gnome: my apps, desktop layout, desktop
 background, and a whole slew of other preferences have disappeard
 Le samedi 05 novembre 2011 à 16:51 -0700, Tyler MacDonald a écrit :
  I recently updated my debian, and wtf, *EVERYTHING* i have spent the
 past 10
  years customizing is gone. I no longer have a desktop, let alone desktop
  icons!!
  What the fuck happened to all of my menus and apps and desklets???
  How do I get them all back? Are you trying to kill me here???

 *shrug*

 --
  .''`.  Josselin Mouette
 : :' :
 `. `'
  `-


 -- Forwarded message --
 From: Tyler MacDonald ty...@yi.org
 To: Debian Bug Tracking System sub...@bugs.debian.org
 Date: Sat, 05 Nov 2011 16:51:29 -0700
 Subject: gnome: my apps, desktop layout, desktop background, and a whole
 slew of other preferences have disappeard
 Package: gnome
 Version: 1:3.0+3
 Severity: important

 I recently updated my debian, and wtf, *EVERYTHING* i have spent the past
 10
 years customizing is gone. I no longer have a desktop, let alone desktop
 icons!! What the fuck happened to all of my menus and apps and desklets???
 How do I get them all back? Are you trying to kill me here???

 Dear Maintainer,
 *** Please consider answering these questions, where appropriate ***

   * What led up to the situation?
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
   * What was the outcome of this action?
   * What outcome did you expect instead?

 *** End of the template - remove these lines ***


 -- System Information:
 Debian Release: wheezy/sid
  APT prefers oldstable
  APT policy: (500, 'oldstable'), (500, 'unstable'), (1, 'experimental')
 Architecture: amd64 (x86_64)

 Kernel: Linux 3.0.0-1-amd64 (SMP w/2 CPU cores)
 Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
 Shell: /bin/sh linked to /bin/bash

 Versions of packages gnome depends on:
 ii  abiword  2.9.1-0.1
 ii  alacarte 0.13.2-3
 ii  avahi-daemon 0.6.30-5
 ii  cheese   3.2.0-1
 ii  desktop-base 6.0.7
 ii  ekiga3.2.7-4.1
 ii  epiphany-extensions  3.0.0-3
 ii  evolution3.0.3-2
 ii  evolution-plugins3.0.3-2
 ii  file-roller  3.0.2-2
 ii  gedit3.0.6-2
 ii  gedit-plugins3.0.6-1
 ii  gimp 2.6.11-5
 ii  gnome-applets3.2.1-1
 ii  gnome-core   1:3.0+3
 ii  gnome-games  1:3.0.2-2
 ii  gnome-media  2.91.2-3
 ii  gnome-nettool3.0.0-2
 ii  gnumeric 1.10.17-1+b1
 ii  gstreamer0.10-ffmpeg 1:0.10.12-0.0
 ii  gstreamer0.10-plugins-ugly   0.10.18-3+b1
 ii  gvfs-bin 1.8.2-2
 ii  hamster-applet   2.91.3+git20110714.9aefd7-2
 ii  inkscape 0.48.1-2.1+b1
 ii  libgtk2-perl 2:1.223-1+b1
 ii  libreoffice-gnome1:3.4.3-4
 ii  nautilus-sendto  3.0.1-2
 ii  rhythmbox2.90.1~git20110919.2dfea6-3
 ii  rhythmbox-plugin-cdrecorder  2.90.1~git20110919.2dfea6-3
 ii  rhythmbox-plugins2.90.1~git20110919.2dfea6-3
 ii  seahorse 3.0.2-1
 ii  shotwell 0.11.5-1
 ii  simple-scan  3.2.0-1
 ii  sound-juicer 2.32.1+git20111010.2d5deeb-1
 ii  telepathy-gabble 0.13.7-1
 ii  telepathy-salut  0.6.0-1
 ii  tomboy   1.8.0-1
 ii  totem-mozilla3.0.1-3
 ii  totem-plugins3.0.1-3
 ii  transmission-gtk 2.03-2.2
 ii  update-notifier  0.99.3debian10
 ii  vinagre

Bug#647772: gnome: Josselin Moutte shrugs off bug reports

[Tyler MacDonald]

Package: gnome
Version: 1:3.0+3
Severity: critical
Justification: breaks the whole system

I just reported bug http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=647768
which is a serious issue with the debian system. This happened after a
reboot of a single system and I am afraid to reboot the rest of the fleet as
a result in fear that our knowledge and culture may be lost forever.

Instead of addressing this concern and providing and/or fixing a clean
upgrade path, Josselin has closed the previous bug with a shrug. A shrug.
This seems to indicate that not only GNOME, but the entire debian system is
broken, and that more breakage is on the way. What can we do to avoid such
cascade failure across the whole planet?


Dear Maintainer,
*** Please consider answering these questions, where appropriate ***

   * What led up to the situation?
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
   * What was the outcome of this action?
   * What outcome did you expect instead?

*** End of the template - remove these lines ***


-- System Information:
Debian Release: wheezy/sid
  APT prefers oldstable
  APT policy: (500, 'oldstable'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 3.0.0-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages gnome depends on:
ii  abiword  2.9.1-0.1   
ii  alacarte 0.13.2-3
ii  avahi-daemon 0.6.30-5
ii  cheese   3.2.0-1 
ii  desktop-base 6.0.7   
ii  ekiga3.2.7-4.1   
ii  epiphany-extensions  3.0.0-3 
ii  evolution3.0.3-2 
ii  evolution-plugins3.0.3-2 
ii  file-roller  3.0.2-2 
ii  gedit3.0.6-2 
ii  gedit-plugins3.0.6-1 
ii  gimp 2.6.11-5
ii  gnome-applets3.2.1-1 
ii  gnome-core   1:3.0+3 
ii  gnome-games  1:3.0.2-2   
ii  gnome-media  2.91.2-3
ii  gnome-nettool3.0.0-2 
ii  gnumeric 1.10.17-1+b1
ii  gstreamer0.10-ffmpeg 1:0.10.12-0.0   
ii  gstreamer0.10-plugins-ugly   0.10.18-3+b1
ii  gvfs-bin 1.8.2-2 
ii  hamster-applet   2.91.3+git20110714.9aefd7-2 
ii  inkscape 0.48.1-2.1+b1   
ii  libgtk2-perl 2:1.223-1+b1
ii  libreoffice-gnome1:3.4.3-4   
ii  nautilus-sendto  3.0.1-2 
ii  rhythmbox2.90.1~git20110919.2dfea6-3 
ii  rhythmbox-plugin-cdrecorder  2.90.1~git20110919.2dfea6-3 
ii  rhythmbox-plugins2.90.1~git20110919.2dfea6-3 
ii  seahorse 3.0.2-1 
ii  shotwell 0.11.5-1
ii  simple-scan  3.2.0-1 
ii  sound-juicer 2.32.1+git20111010.2d5deeb-1
ii  telepathy-gabble 0.13.7-1
ii  telepathy-salut  0.6.0-1 
ii  tomboy   1.8.0-1 
ii  totem-mozilla3.0.1-3 
ii  totem-plugins3.0.1-3 
ii  transmission-gtk 2.03-2.2
ii  update-notifier  0.99.3debian10  
ii  vinagre  3.2.1-1 
ii  xdg-user-dirs-gtk0.8-1   

Versions of packages gnome recommends:
ii  browser-plugin-gnash 0.8.10~git20111001-1
ii  gdebi0.8.2   
ii  gnome-games-extra-data   3.0.0-1 
ii  liferea  1.6.5-1.2+b1
ii  menu-xdg 0.5 
ii  nautilus-sendto-empathy  3.2.1.1-1   
ii  telepathy-butterfly  0.5.15-2.1  
ii  telepathy-idle   0.1.11-2

Versions of packages gnome suggests:
pn  dia-gnome  0.97.1-9+b1
pn  gnome-tweak-tool   none 
pn  gnucashnone 
pn  libreoffice-evolution  none 
pn  libreoffice-gnome  1:3.4.3-4  
pn  plannernone 

Versions of packages gnome-core depends on:
ii  baobab  3.0.1-5
ii  brasero 3.0.0-4
ii  

Bug#635604: dnet-common borked my network

[Tyler MacDonald]

Dominique Dumont,

   I don't think it is sufficient that the dependancy be resolved. I
just upgraded two hosts on my network, as a result dnet-common got
installed on both. I was aked configure, don't configure, or leave it
alone. I chose leave it alone, and guess what -- both hosts on my
network were given the same mac address.

   There was absolutely no indication of this. Not only did my hosts
lose their assigned IP's, the entire network broke because this
package got installed.

   Changing mac addresses is kind of a big deal. You can't just do it
when somebody picks a default configuration option of not right now.
The dnet-common package needs to be fixed to never, EVER change
somebody's MAC address unless they explicitly consent to this action.

Bug#635604: also,

[Tyler MacDonald]

one of my NICs remembers it's mac addresses between reboots... so i'm having
to look up the old one in my routers' leases to put things right. it took
hours to debug this because hacing multiple systems with the same MAC on the
same network is *never* supposed to happen. wrecked my day. :-(

Bug#618258: linux-image-2.6.32-5-amd64: readd legacy /proc/scsi support

[Tyler]

Package: linux-2.6
Version: 2.6.32-30
Severity: wishlist

First and foremost, I've already browsed several bug reports dating back to 
2008 that have requested this to be turned back on (mostly in the now 
nonexistent scsiadd package). The general attitude is bug your software vendor 
if they don't support sysfs but really, you can't expect this out of everyone. 
Especially a place like HighPoint who hasn't touched their drivers since 
10/22/2009. I respect the position but, in my opinion, you're only hurting 
consumer level Debian users by turning extremely minor things like this off.

I upgraded my home Linux server from lenny to squeeze last weekend via a fresh 
install onto a new drive and my final to-do item was fix the CLI interface for 
my common, consumer-level, current-gen, hardware RAID5 card: a HighPoint 
RocketRaid 2310. Their CLI client that can be configured to email me when the 
array degrades simply stopped working after the upgrade. Compiled fine, but 
when ran it didn't do anything but claim the driver wasn't loaded even though 
I was clearly using the RAID array and seeing it in dmesg.

A tiny bit of Googling led me to this blog post from 1/12/2011: 
http://cosmicb.no/?p=136 which correctly explained hptraidconf was broken 
because Debian decided to turn legacy /proc/scsi support off in squeeze.

I think it should be turned back on to continue to support devices that use it 
that are unlikely to see their kernel tainting drivers updated to not use 
/proc/scsi.

Thanks and have a fine day. I sadly expect this to be quickly marked as wontfix 
with zero discussion because that's my experience with filing Debian bug 
reports.

-- Package-specific info:
** Kernel log: boot messages should be attached

** Model information
sys_vendor: System manufacturer
product_name: System Product Name
product_version: System Version
chassis_vendor: Chassis Manufacture
chassis_version: Chassis Version
bios_vendor: Phoenix Technologies, LTD
bios_version: ASUS A8N-SLI Premium ACPI BIOS Revision 1008
board_vendor: ASUSTeK Computer INC.
board_name: A8N-SLI Premium
board_version: 1.02

** Network interface configuration:
# This file describes the network interfaces available on your system
# and how to activate them. For more information, see interfaces(5).

# The loopback network interface
auto lo
iface lo inet loopback

# The primary network interface
allow-hotplug eth1
iface eth1 inet static
address 172.16.31.2
netmask 255.255.255.0
broadcast 172.16.31.255
network 172.16.31.0
gateway 172.16.31.1

** PCI devices:
00:00.0 Memory controller [0580]: nVidia Corporation CK804 Memory Controller 
[10de:005e] (rev a3)
Subsystem: ASUSTeK Computer Inc. A8N-E Mainboard [1043:815a]
Control: I/O- Mem+ BusMaster+ SpecCycle- MemWINV- VGASnoop- ParErr- 
Stepping- SERR- FastB2B- DisINTx-
Status: Cap+ 66MHz+ UDF- FastB2B+ ParErr- DEVSEL=fast TAbort- TAbort- 
MAbort- SERR- PERR- INTx-
Latency: 0
Capabilities: access denied

00:01.0 ISA bridge [0601]: nVidia Corporation CK804 ISA Bridge [10de:0050] (rev 
a3)
Subsystem: ASUSTeK Computer Inc. K8N4-E or A8N-E Mainboard [1043:815a]
Control: I/O+ Mem+ BusMaster+ SpecCycle+ MemWINV- VGASnoop- ParErr- 
Stepping- SERR- FastB2B- DisINTx-
Status: Cap- 66MHz+ UDF- FastB2B+ ParErr- DEVSEL=fast TAbort- TAbort- 
MAbort- SERR- PERR- INTx-
Latency: 0

00:01.1 SMBus [0c05]: nVidia Corporation CK804 SMBus [10de:0052] (rev a2)
Subsystem: ASUSTeK Computer Inc. K8N4-E or A8N-E Mainboard [1043:815a]
Control: I/O+ Mem- BusMaster- SpecCycle- MemWINV- VGASnoop- ParErr- 
Stepping- SERR- FastB2B- DisINTx-
Status: Cap+ 66MHz+ UDF- FastB2B+ ParErr- DEVSEL=fast TAbort- TAbort- 
MAbort- SERR- PERR- INTx-
Interrupt: pin A routed to IRQ 10
Region 0: I/O ports at dc00 [size=32]
Region 4: I/O ports at 4c00 [size=64]
Region 5: I/O ports at 4c40 [size=64]
Capabilities: access denied
Kernel driver in use: nForce2_smbus

00:02.0 USB Controller [0c03]: nVidia Corporation CK804 USB Controller 
[10de:005a] (rev a2) (prog-if 10 [OHCI])
Subsystem: ASUSTeK Computer Inc. K8N4-E or A8N-E Mainboard [1043:815a]
Control: I/O+ Mem+ BusMaster+ SpecCycle- MemWINV- VGASnoop- ParErr- 
Stepping- SERR- FastB2B- DisINTx-
Status: Cap+ 66MHz+ UDF- FastB2B+ ParErr- DEVSEL=fast TAbort- TAbort- 
MAbort- SERR- PERR- INTx-
Latency: 0 (750ns min, 250ns max)
Interrupt: pin A routed to IRQ 20
Region 0: Memory at d6003000 (32-bit, non-prefetchable) [size=4K]
Capabilities: access denied
Kernel driver in use: ohci_hcd

00:02.1 USB Controller [0c03]: nVidia Corporation CK804 USB Controller 
[10de:005b] (rev a3) (prog-if 20 [EHCI])
Subsystem: ASUSTeK Computer Inc. K8N4-E or A8N-E Mainboard [1043:815a]
Control: I/O- Mem+ BusMaster+ SpecCycle- MemWINV- VGASnoop- ParErr- 
Stepping- SERR- 

Bug#609012: workaround

[Tyler MacDonald]

I tried this workaround in debian squeeze and I was able to mount my iPhone
again. Hopefully the affected packages will be updated in squeeze soon.

http://forums.linuxmint.com/viewtopic.php?f=141t=63467p=366934#p366934

Bug#608973: mysql-client-5.1: tab completion attempting to complete wrong object type

[Tyler MacDonald]

Package: mysql-client-5.1
Version: 5.1.49-3
Severity: normal


Current behaviour:

When attempting to call a stored procedure, the MySQL client's tab
completion provides table and column completions, but does not provide tab
completion for the stored procedure.

Expected:

When issuing CALL, completions should be stored procedure names, and
table/column names should /not/ be available as completions because they are
invalid in this context.

I haven't tested stored functions or other objects, but they may suffer from
the same ailment.

To reproduce:

mysql CREATE TABLE tab_complete (a int);
Query OK, 0 rows affected (0.09 sec)

mysql CREATE PROCEDURE tab_complete_procedure () LANGUAGE SQL SELECT 1;
Query OK, 0 rows affected (0.03 sec)

mysql CALL tab_complete
tab_completetab_complete.a  

On the statement line, I have pressed tab twice to show all available
completions.


  Thanks,
 Tyler




-- System Information:
Debian Release: 6.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-5-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages mysql-client-5.1 depends on:
ii  debianutils 3.4.2Miscellaneous utilities specific t
ii  libc6   2.11.2-7 Embedded GNU C Library: Shared lib
ii  libdbd-mysql-perl   4.016-1  Perl5 database interface to the My
ii  libdbi-perl 1.612-1  Perl Database Interface (DBI)
ii  libgcc1 1:4.4.5-10   GCC support library
ii  libmysqlclient165.1.49-3 MySQL database client library
ii  libncurses5 5.7+20100313-4   shared libraries for terminal hand
ii  libreadline66.1-3GNU readline and history libraries
ii  libstdc++6  4.4.5-10 The GNU Standard C++ Library v3
ii  libwrap07.6.q-19 Wietse Venema's TCP wrappers libra
ii  mysql-common5.1.49-3 MySQL database common files, e.g. 
ii  perl5.10.1-16Larry Wall's Practical Extraction 
ii  zlib1g  1:1.2.3.4.dfsg-3 compression library - runtime

mysql-client-5.1 recommends no packages.

Versions of packages mysql-client-5.1 suggests:
ii  libterm-readkey-perl  2.30-4 A perl module for simple terminal 

-- debconf-show failed



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#606433: gnome-power-manager: celphone charging does not cause notification

[Tyler MacDonald]

Package: gnome-power-manager
Version: 2.32.0-2
Severity: normal


On my desktop system, I have tried both the preferences Only display an
icon when charging, and Only display an icon when batter is present when
charging my celphone. Neither causes the notification area to appear.
Instead, I have to pick Always display an icon and then click on the
dropdown to see that my celphone is charging.

Charging or discharging should definitely apply to celphones, etc. I'm not
100% sure about when a battery is present... but really, that setting only
makes sense on desktops for the sake of external chargable devices.


   Thanks,
 Tyler



-- Package-specific info:
Distro version:   squeeze/sid
Kernel version:   2.6.32-5-amd64
g-p-m version:2.32.0
HAL version:  0.5.14
System manufacturer:  missing
System version:   missing
System product:   missing
AC adapter present:   no
Battery present:  no
Laptop panel present: no
CPU scaling present:  yes
Battery Information:
UPower data:
Device: /org/freedesktop/UPower/devices/phone_2_5
  native-path:  /sys/devices/pci:00/:00:0b.1/usb2/2-5
  vendor:   Apple_Inc.
  model:iPhone
  serial:   2427cc224e7a150e8ddcf7bb65bed4f83372ce6f
  power supply: no
  updated:  Wed Dec  8 21:48:41 2010 (57 seconds ago)
  has history:  yes
  has statistics:   no
  phone
  History (charge):
1291873721  73.000  charging

Daemon:
  daemon-version:  0.9.5
  can-suspend: yes
  can-hibernateyes
  on-battery:  no
  on-low-battery:  no
  lid-is-closed:   no
  lid-is-present:   no
GNOME Power Manager Process Information:
faraway  20872  0.2  0.4 218400 12596 ?S21:46   0:00 gnome-power-pre
HAL Process Information:
106  26353  0.0  0.1  44852  4176 ?Ssl  Nov29   0:06 /usr/sbin/hald
root 26354  0.0  0.0  22172  1164 ?SNov29   0:00  \_ hald-runner
root 26378  0.0  0.0  24288   948 ?SNov29   0:12  \_ hald-ad
root 26399  0.0  0.0  24284  1004 ?SNov29   3:04  \_ hald-ad
106  26401  0.0  0.0  26100   920 ?SNov29   0:00  \_ hald-ad

-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-5-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages gnome-power-manager depends on:
ii  consolekit0.4.3-2framework for defining and trackin
ii  dbus-x11  1.2.24-3   simple interprocess messaging syst
ii  gconf22.28.1-6   GNOME configuration database syste
ii  libbonobo2-0  2.24.3-1   Bonobo CORBA interfaces library
ii  libc6 2.11.2-7   Embedded GNU C Library: Shared lib
ii  libcairo2 1.8.10-6   The Cairo 2D vector graphics libra
ii  libcanberra-gtk0  0.24-1 Gtk+ helper for playing widget eve
ii  libcanberra0  0.24-1 a simple abstract interface for pl
ii  libdbus-1-3   1.2.24-3   simple interprocess messaging syst
ii  libdbus-glib-1-2  0.88-2 simple interprocess messaging syst
ii  libgconf2-4   2.28.1-6   GNOME configuration database syste
ii  libglib2.0-0  2.24.2-1   The GLib library of C routines
ii  libgnome-keyring0 2.30.1-1   GNOME keyring services library
ii  libgtk2.0-0   2.20.1-2   The GTK+ graphical user interface 
ii  libnotify1 [libnotify1-gtk2.1 0.5.0-2sends desktop notifications to a n
ii  libpanel-applet2-02.30.2-2   library for GNOME Panel applets
ii  libpango1.0-0 1.28.3-1   Layout and rendering of internatio
ii  libunique-1.0-0   1.1.6-1.1  Library for writing single instanc
ii  libupower-glib1   0.9.5-5abstraction for power management -
ii  libx11-6  2:1.3.3-4  X11 client-side library
ii  libxext6  2:1.1.2-1  X11 miscellaneous extension librar
ii  libxrandr22:1.3.1-1  X11 RandR extension library
ii  notification-daemon   0.5.0-2daemon to displays passive pop-up 
ii  upower0.9.5-5abstraction for power management

Versions of packages gnome-power-manager recommends:
ii  udisks   1.0.1+git20100614-3 abstraction for enumerating block 

Versions of packages gnome-power-manager suggests:
ii  policykit-1   0.96-4 framework for managing administrat

-- Configuration Files:
/etc/xdg/autostart/gnome-power-manager.desktop [Errno 2] No such file or 
directory: u'/etc/xdg/autostart/gnome-power-manager.desktop'

-- debconf-show failed



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe

Bug#383195: Requesting 383195 to be reopened/evaluated

[Tyler Gates]

 I've requested this ITP to be reopened as this program is a very useful
tool and vital to the company I work for. As far as I know it is the
only hylafax frontend program that allows print to fax with the ability
to launch a user space program complete with the ability to customize
fax fields and Rolodex's per user.
I've proposed a package on mentors which can be found here:
http://mentors.debian.net/cgi-bin/sponsor-pkglist?action=details;package=faxfrontend
repository here:
http://mentors.debian.net/debian/pool/main/f/faxfrontend
and mailing list thread here:
http://lists.debian.org/debian-mentors/2010/10/msg00338.html

Thank you,
Tyler

-- 

Tyler Gates
Systems Administrator
Castle Branch Inc.
910-815-3880 ext 7230
tjga...@castlebranch.com

This e-mail message, including any attachments, may contain private,
confidential, and privileged information for the restricted use of the
intended recipient(s). If you are not the intended recipient(s), you
may NOT use, disclose, copy, or disseminate this information. Please
notify the sender by return e-mail of this misdirected correspondence
and destroy all copies of the original message including all attachments.
Your cooperation is appreciated.




-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#601036: ITP: qfaxreader -- A monochrome/color multipage .TIFF file visualization utility designed for viewing faxes.

[Tyler Gates]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Package: wnpp
Severity: wishlist

 * Package name: qfaxreader
  Version : 0.3.1-1
  Upstream Author : Serghei Amelian serghei.amel...@gmail.com
* URL : http://qfaxreader.sourceforge.net/index.html
* License : GPL-2
  Section : comm
  Copyright: 2008


qfaxreader - A monochrome/color multipage .TIFF file visualization
utility designed for viewing faxes.

This program makes viewing and modifying numerous faxes quick and easy,
my organization requires the use of this program for efficient fax
viewing and would like to see it introduced into debian.

The package can be found on mentors.debian.net:
- - URL: http://mentors.debian.net/debian/pool/main/q/qfaxreader
- - Source repository: deb-src http://mentors.debian.net/debian unstable
main contrib non-free
- - dget
http://mentors.debian.net/debian/pool/main/q/qfaxreader/qfaxreader_0.3.1-1.dsc

Mentors mailing list thread can be found here:
http://lists.debian.org/debian-mentors/2010/10/msg00337.html

- -- 

Tyler Gates
Systems Administrator
Castle Branch Inc.
910-815-3880 ext 7230
tjga...@castlebranch.com

This e-mail message, including any attachments, may contain private,
confidential, and privileged information for the restricted use of the
intended recipient(s). If you are not the intended recipient(s), you
may NOT use, disclose, copy, or disseminate this information. Please
notify the sender by return e-mail of this misdirected correspondence
and destroy all copies of the original message including all attachments.
Your cooperation is appreciated.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.16 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAkzB5EcACgkQ/017WnM1mLWQ6wCfUi4g8176gGh+if4jt9r9lroe
4LgAn1AqaijXdzQ2gdng5+YnOxtZOgHb
=y7X5
-END PGP SIGNATURE-



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#597223: udev: The First partition on USB flashdrives always attempts to be mounted as ISOFS

[Tyler Tricker]

Package: udev
Version: 160-1
Severity: important

I tried 4 or 5 different brands of flash drives all with the same result.
There are three partition setup on this flash drive.
sdb2 and sdb3 automount and work without any problems but
sbb1 will always attempt to mount as an ISOFS.
I'm guessing for some reason udev is assuming it's a U3 image?

kernel: [ 1603.007096] usb-storage: device found at 6
kernel: [ 1603.007101] usb-storage: waiting for device to settle before
scanning
kernel: [ 1608.007795] usb-storage: device scan complete
kernel: [ 1608.008314] scsi 9:0:0:0: Direct-Access SanDisk  SanDisk Cruzer
8.02 PQ: 0 ANSI: 0 CCS
kernel: [ 1608.010113] sd 9:0:0:0: Attached scsi generic sg2 type 0
kernel: [ 1608.010886] sd 9:0:0:0: [sdb] 15753215 512-byte logical blocks:
(8.06 GB/7.51 GiB)
kernel: [ 1608.011382] sd 9:0:0:0: [sdb] Write Protect is off
kernel: [ 1608.011385] sd 9:0:0:0: [sdb] Mode Sense: 45 00 00 08
kernel: [ 1608.011387] sd 9:0:0:0: [sdb] Assuming drive cache: write through
kernel: [ 1608.014133] sd 9:0:0:0: [sdb] Assuming drive cache: write through
kernel: [ 1608.014141]  sdb: sdb1 sdb2 sdb3
kernel: [ 1608.016644] sd 9:0:0:0: [sdb] Assuming drive cache: write through
kernel: [ 1608.016649] sd 9:0:0:0: [sdb] Attached SCSI removable disk
kernel: [ 1609.068133] UDF-fs: No VRS found
kernel: [ 1609.068137] UDF-fs: Rescanning with blocksize 2048
kernel: [ 1609.602188] EXT4-fs (sdb2): mounted filesystem with ordered data
mode
kernel: [ 1609.683431] UDF-fs: No VRS found
kernel: [ 1609.683439] UDF-fs: No partition found (1)
kernel: [ 1609.726774] ISOFS: Unable to identify CD-ROM format.
ntfs-3g[3073]: Version 2010.3.6 integrated FUSE 27
ntfs-3g[3073]: Mounted /dev/sdb3 (Read-Write, label Cruize_Ntfs, NTFS 3.1)
ntfs-3g[3073]: Cmdline options:
rw,nosuid,nodev,uhelper=udisks,uid=1000,gid=1000,dmask=0077,fmask=0177
ntfs-3g[3073]: Mount options:
rw,nosuid,nodev,uhelper=udisks,silent,allow_other,nonempty,relatime,fsname=/dev/sdb3,blkdev,blksize=4096,default_permissions
ntfs-3g[3073]: Global ownership and permissions enforced, configuration type 1
ntfs-3g[3073]: Unmounting /dev/sdb3 (Cruize_Ntfs)
kernel: [ 1749.583274] usb 3-1: USB disconnect, address 6

Unable to mount Cruize_BAD
Error mounting: mount exited with exit code 1: helper failed with:
mount: wrong fs type, bad option, bad superblock on /dev/sdb1,
   missing codepage or helper program, or other error
   In some cases useful info is found in syslog - try
   dmesg | tail  or so

what works?
mount -t ext4 /dev/sdb1 /media/Cruize_BAD
The filesystem will mount and work fine but mount can only be used with root
priv.



-- System Information:
Debian Release: squeeze/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-5-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages udev depends on:
ii  debconf [debconf-2.0]1.5.35  Debian configuration management sy
ii  libc62.11.2-5Embedded GNU C Library: Shared lib
ii  libselinux1  2.0.96-1SELinux runtime shared libraries
ii  libudev0 160-1   libudev shared library
ii  libusb-0.1-4 2:0.1.12-16 userspace USB programming library
ii  lsb-base 3.2-23.1Linux Standard Base 3.2 init scrip
ii  util-linux   2.17.2-3.1  Miscellaneous system utilities

Versions of packages udev recommends:
ii  pciutils  1:3.1.7-5  Linux PCI Utilities
ii  usbutils  0.87-5 Linux USB utilities

udev suggests no packages.

-- debconf information:
  udev/new_kernel_needed: false
  udev/title/upgrade:
  udev/reboot_needed:



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#597223: udev: The First partition....

[Tyler Tricker]

I tried boot the system with the drive plugged in.. still did the same thing.blkid -o udev /dev/sdb1ID_FS_LABEL=Cruize_BADID_FS_LABEL_ENC=Cruize_BADID_FS_UUID=76f176f0-2f1a-4c61-a51a-8dd12b56742bID_FS_UUID_ENC=76f176f0-2f1a-4c61-a51a-8dd12b56742bID_FS_TYPE=ext4seems like it's not probably not udev then...Sign up for FREE email from I Kill Clowns and other insane addresses at http://www.tshirthell.com



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#597223: udev: The First partition....

[Tyler Tricker]

--- m...@linux.it wrote:
If you manually run mount without -t, does it get it wrong?

-- 

mounting without it works fine.. the -t is actually just habit for me.
I find it slightly bizzare that it's doing this. I didn't change any system 
scripts.
even fstab is straight from the installer.

_
Sign up for FREE email from I Kill Clowns and other insane addresses at 
http://www.tshirthell.com



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#597223: udev: The First partition....

[Tyler Tricker]

oh boy, do I feel like an idiot now...

I found the problem, this should be moved to the debian-installer.
I installed debian from a flash drive and the installer put the following into 
fstab.

/dev/sdb1 /media/cdrom0 udf,iso9660,user,noauto 0 0 - its where I installed 
it from.. but it's not a cdrom
/dev/scd0 /media/cdrom1 udf,iso9660,user,noauto 0 0

I guess I should of started looking in fstab. Anyway thank you for your help.


_
Sign up for FREE email from I Kill Clowns and other insane addresses at 
http://www.tshirthell.com



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#594633: squirrelmail-secure-login: this package simply doesn't work

[Tyler]

Package: squirrelmail-secure-login
Version: 1.4-1
Severity: important


this is supposed to force all squirrelmail logins through https but it doesn't 
work because of how squirrelmail's index.php is written

-- System Information:
Debian Release: 5.0.5
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: i386 (i686)

Kernel: Linux 2.6.26-2-686 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#593740: linux-patch-debian-2.6.26: xen patch does not compile

[Tyler]

Package: linux-patch-debian-2.6.26
Version: 2.6.26-24lenny1
Severity: important
Justification: fails to build from source


I outlined the bug in this (totally unanswered) xen-users mailing list post:

http://lists.xensource.com/archives/html/xen-users/2010-08/msg00282.html

Please note bug #508487 is also involved in this report. You have to whip up 
some shell scripts to get the xen patch to even apply.

But once the patch is applied, it doesn't compile for some mysterious reason:

  INSTALL sound/usb/snd-usb-audio.ko
  INSTALL sound/usb/snd-usb-lib.ko
  INSTALL sound/usb/usx2y/snd-usb-usx2y.ko
  DEPMOD  2.6.26
make[2]: Leaving directory `/usr/src/linux-source-2.6.26'
test ! -e scripts/package/builddeb || mv -f scripts/package/builddeb 
scripts/package/builddeb.kpkg-dist test ! -e scripts/package/Makefile || test 
-f scripts/package/Makefile.kpkg-dist || (mv -f 
scripts/package/Makefile scripts/package/Makefile.kpkg-dist  (echo # Dummy 
file ; echo help:)  scripts/package/Makefile)
test ! -f Documentation/lguest/lguest || \
install -p -o root -g root -m 644 Documentation/lguest/lguest 
/usr/src/linux-source-2.6.26/debian/linux-image-2.6.26/lib/modules/2.6.26/lguest
 test ! -f 
/usr/src/linux-source-2.6.26/debian/linux-image-2.6.26/lib/modules/2.6.26/lguest
 || \ chmod 755 
/usr/src/linux-source-2.6.26/debian/linux-image-2.6.26/lib/modules/2.6.26/lguest
 test ! -e 
/usr/src/linux-source-2.6.26/debian/linux-image-2.6.26/lib/modules/2.6.26/source
 || \ mv 
/usr/src/linux-source-2.6.26/debian/linux-image-2.6.26/lib/modules/2.6.26/source
 ./debian/source-link test ! -e 
/usr/src/linux-source-2.6.26/debian/linux-image-2.6.26/lib/modules/2.6.26/build 
|| \ mv 
/usr/src/linux-source-2.6.26/debian/linux-image-2.6.26/lib/modules/2.6.26/build 
./debian/build-link test ! -e ./debian/source-link 
|| \ mv ./debian/source-link 
/usr/src/linux-source-2.6.26/debian/linux-image-2.6.26/lib/modules/2.6.26/source
 test ! -e ./debian/build-link || \ mv ./debian/build-link 
/usr/src/linux-source-2.6.26/debian/linux-image-2.6.26/lib/modules/2.6.26/build 
/sbin/depmod -q -FSystem.map -b 
/usr/src/linux-source-2.6.26/debian/linux-image-2.6.26 2.6.26;
FATAL: Could not open 'System.map': No such file or directory
make[1]: [debian/stamp/install/linux-image-2.6.26] Error 1 (ignored)
test ! -f System.map ||  cp System.map \
/usr/src/linux-source-2.6.26/debian/linux-image-2.6.26//boot/System.map-2.6.26;
test ! -f System.map ||  chmod 644 \
/usr/src/linux-source-2.6.26/debian/linux-image-2.6.26//boot/System.map-2.6.26; 
cp arch/x86/boot/bzImage 
/usr/src/linux-source-2.6.26/debian/linux-image-2.6.26//boot/vmlinuz-2.6.26
cp: cannot stat `arch/x86/boot/bzImage': No such file or directory
make[1]: *** [debian/stamp/install/linux-image-2.6.26] Error 1
make[1]: Leaving directory `/usr/src/linux-source-2.6.26'
make: *** [kernel_image] Error 2
xen1:/usr/src/linux-source-2.6.26#

See the xen-users post for more info.

-- System Information:
Debian Release: 5.0.5
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: i386 (i686)

Kernel: Linux 2.6.26-2-686 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#593741: xen-tools: python-xml is not marked as a dependency and xen-create-image errors without it

[Tyler]

Package: xen-tools
Version: 3.9-4
Severity: important


When you start building a basic xen box:

apt-get install xen-linux-system-2.6.26-2-xen-amd64 xen-tools

You eventually get to:

xen:~# xm new /etc/xen/xvm1.cfg
Unexpected error: type 'exceptions.ImportError'

Please report to xen-de...@lists.xensource.com
Traceback (most recent call last):
  File /usr/lib/xen-3.2-1/bin/xm, line 7, in module
main.main(sys.argv)
  File /usr/lib/xen-3.2-1/lib/python/xen/xm/main.py, line 2528, in main
_, rc = _run_cmd(cmd, cmd_name, args)
  File /usr/lib/xen-3.2-1/lib/python/xen/xm/main.py, line 2552, in _run_cmd
return True, cmd(args)
  File string, line 1, in lambda
  File /usr/lib/xen-3.2-1/lib/python/xen/xm/main.py, line 1305, in 
xm_importcommand
cmd = __import__(command, globals(), locals(), 'xen.xm')
  File /usr/lib/xen-3.2-1/lib/python/xen/xm/new.py, line 26, in module
from xen.xm.xenapi_create import *
  File /usr/lib/xen-3.2-1/lib/python/xen/xm/xenapi_create.py, line 23, in 
module
from xml.parsers.xmlproc import xmlproc, xmlval, xmldtd
ImportError: No module named xmlproc

and if you apt-get install python-xml and try again, it works fine.

So it seems like python-xml should be marked as a dependency for whichever 
package xm is a part of.

-- System Information:
Debian Release: 5.0.5
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: i386 (i686)

Kernel: Linux 2.6.26-2-686 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#588171: audacious: on song change, moves playlist selection to currently playing song

[Tyler MacDonald]

Package: audacious
Version: 2.3-2
Severity: minor


When a new song starts playing, audacious will change the playlist selection
and focus to be the currently playing song. This is uneccessary and
annoying; when I'm editing a playlist while listening to music, I have to
stop at the end of a song, wait for the next song to start playing, then
find where I was. This is especially annoying when editing via keyboard, or
when I am in the middle of selecting several songs to move/delete.

- Tyler



-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-trunk-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages audacious depends on:
ii  audacious-plugins 2.3-2  Base plugins for audacious
ii  dbus  1.2.24-1   simple interprocess messaging syst
ii  dbus-x11  1.2.24-1   simple interprocess messaging syst
ii  gtk2-engines-pixbuf   2.20.1-1   Pixbuf-based theme for GTK+ 2.x
ii  libatk1.0-0   1.30.0-1   The ATK accessibility toolkit
ii  libaudclient2 2.3-2  audacious dbus remote control libr
ii  libaudcore1   2.3-2  audacious core engine library
ii  libaudid3tag2 2.3-2  audacious id3 tag manipulation lib
ii  libc6 2.11.2-2   Embedded GNU C Library: Shared lib
ii  libcairo2 1.8.10-4   The Cairo 2D vector graphics libra
ii  libdbus-1-3   1.2.24-1   simple interprocess messaging syst
ii  libdbus-glib-1-2  0.86-1 simple interprocess messaging syst
ii  libfontconfig12.8.0-2.1  generic font configuration library
ii  libfreetype6  2.3.11-1   FreeType 2 font engine, shared lib
ii  libglib2.0-0  2.24.1-1   The GLib library of C routines
ii  libgtk2.0-0   2.20.1-1   The GTK+ graphical user interface 
ii  libice6   2:1.0.6-1  X11 Inter-Client Exchange library
ii  libmcs1   0.7.1-1Abstraction library to store confi
ii  libmowgli10.6.1-1a high performance development fra
ii  libpango1.0-0 1.28.1-1   Layout and rendering of internatio
ii  libsm62:1.1.1-1  X11 Session Management library

Versions of packages audacious recommends:
ii  unzip 6.0-4  De-archiver for .zip files

audacious suggests no packages.

-- debconf-show failed



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#588174: transmission: split Last Activity into Last Upload and Last Download

[Tyler MacDonald]

Package: transmission
Version: 2.00-1
Severity: wishlist


It would be nice to know when I last sent data, and when I last received
data. That way I could tell if a 83% done torrent has been stalled for two
weeks, or if the data is just coming in really, really slowly.


-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-trunk-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages transmission depends on:
ii  transmission-cli  2.00-1 lightweight BitTorrent client (com
ii  transmission-common   2.00-1 lightweight BitTorrent client (com
ii  transmission-gtk  2.00-1 lightweight BitTorrent client (GTK

transmission recommends no packages.

transmission suggests no packages.

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#581889: posgresql-8.3: cannot purge after it has been removed

[Tyler MacDonald]

Package: postgresql-8.3
Version: postgresql-8.3: cannot purge after it has been removed
Severity: important


postgresql-8.3 was removed by incident of postgresql-8.4 being installed. 
sysvrc wants me to purge 8.3 so i can move to a dependency-based boot. however, 
apitutude purge postgresql-8.3 renders this error message:

Purging configuration files for postgresql-8.3 ...
Dropping cluster main...
Error: pid file is invalid, please manually kill the stale server process.
Error: could not stop server, aborting
dpkg: error processing postgresql-8.3 (--purge):
 subprocess installed post-removal script returned error exit status 1


Can you fix this in the package so future versions dont have this problem? I'm 
going to try to hack the prerm/postrm/whatever file so I can get this package 
off my system in the meantime.

  Thanks,
Tyler



-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-trunk-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages postgresql-8.3 depends on:
ii  libc6   2.10.2-8 Embedded GNU C Library: Shared lib
ii  libcomerr2  1.41.11-1common error description library
ii  libgssapi-krb5-21.8.1+dfsg-2 MIT Kerberos runtime libraries - k
ii  libkrb5-3   1.8.1+dfsg-2 MIT Kerberos runtime libraries
ii  libldap-2.4-2   2.4.21-1 OpenLDAP libraries
ii  libpam0g1.1.1-3  Pluggable Authentication Modules l
ii  libpq5  8.4.3-1  PostgreSQL C client library
ii  libssl0.9.8 0.9.8n-1 SSL shared libraries
ii  libxml2 2.7.7.dfsg-2 GNOME XML library
ii  locales 2.10.2-8 Embedded GNU C Library: National L
pn  postgresql-client-8.3   none   (no description available)
ii  postgresql-common   107  PostgreSQL database-cluster manage
ii  ssl-cert1.0.25   simple debconf wrapper for OpenSSL
ii  tzdata  2010j-1  time zone and daylight-saving time

postgresql-8.3 recommends no packages.

Versions of packages postgresql-8.3 suggests:
ii  pidentd [ident-server]  3.0.19.ds1-5 TCP/IP IDENT protocol server with 



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#571770: module-assistant: -l all option would be nice

[Tyler MacDonald]

Package: module-assistant
Version: 0.11.3
Severity: wishlist


I would like to see a -l all option, which builds a driver for all kernels
that it can, maybe by walking all of the directories in /lib/modules, or by
checking which linux-image debian pacakges are installed.

  Thanks,
Tyler


-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-trunk-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages module-assistant depends on:
ii  bzip2 1.0.5-4high-quality block-sorting file co
ii  libtext-wrapi18n-perl 0.06-7 internationalized substitute of Te
ii  perl  5.10.1-11  Larry Wall's Practical Extraction 

Versions of packages module-assistant recommends:
ii  liblocale-gettext-perl1.05-6 Using libc functions for internati

Versions of packages module-assistant suggests:
ii  build-essential   11.4   Informational list of build-essent
ii  dialog1.1-20100119-2 Displays user-friendly dialog boxe
ii  whiptail  0.52.10-5+b1   Displays user-friendly dialog boxe

-- debconf-show failed



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#569630: /usr/bin/growisofs: growisofs: SK=2h/LOGICAL UNIT IS IN PROCESS OF BECOMING READY

[Tyler MacDonald]

Package: dvd+rw-tools
Version: 7.1-6
Severity: wishlist
File: /usr/bin/growisofs


:-[ READ DISC INFORMATION failed with SK=2h/LOGICAL UNIT IS IN PROCESS OF
BECOMING READY]: Resource temporarily unavailable

   - When the drive is returning this state, can we please keep polling it
until it becomes ready? This is a temporary failure and it sucks having to
wait for the drive to finish spinning up before I can press enter and walk
away from the keyboard.

Thanks,
Tyler


-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-trunk-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages dvd+rw-tools depends on:
ii  genisoimage   9:1.1.10-1 Creates ISO-9660 CD-ROM filesystem
ii  libc6 2.10.2-6   Embedded GNU C Library: Shared lib
ii  libgcc1   1:4.4.3-2  GCC support library
ii  libstdc++64.4.3-2The GNU Standard C++ Library v3

dvd+rw-tools recommends no packages.

Versions of packages dvd+rw-tools suggests:
pn  cdrskin   none (no description available)

-- debconf-show failed



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#567675: mysql-server: MySQL Bug #49479: Slave stops with syntax error: LOAD DATA event without escaped field names

[Tyler MacDonald]

Package: mysql-server
Version: 5.1.41-3
Severity: important


Replication is basically broken in this version of MySQL;

http://bugs.mysql.com/bug.php?id=49479

If a table contains a field name that must be escaped (eg, `key`
INT), loading data into that table, using LOAD DATA INFILE, will
break replication.

If logging in mixed or statement mode, the master will binlog a
LOAD DATA event without escaping the field names. Consequently,
the slave will stop with a syntax error:

Last_SQL_Error  Error 'You have an error in your SQL syntax; check the
manual that
corresponds to your MySQL server version for the right syntax to use near
'key, c2)' at
line 1' on query. Default database: 'test'. Query: 'LOAD DATA INFILE
'../../tmp/SQL_LOAD-2-1-1.data' REPLACE INTO  TABLE `t` FIELDS TERMINATED BY
'\t'
ENCLOSED BY '' ESCAPED BY '\\' LINES TERMINATED BY '\n' (key, c2)'


There is a patch available on the bug report on MySQL.com.




-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-trunk-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages mysql-server depends on:
ii  mysql-server-5.1  5.1.41-3   MySQL database server binaries

mysql-server recommends no packages.

mysql-server suggests no packages.

-- debconf-show failed



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#566093: nautilus: generating thumbnails modifies a file's access time (atime)

[Tyler MacDonald]

Package: nautilus
Version: 2.28.4-1
Severity: minor


When nautilus generates thumbnails for media, that causes the file's atime
to be changed. This is a bit annoying, because I often use the atime of a
file to determine whether I've watched/listened to it yet. It would be
awesome if nautilus could preserve the atime so that when I open a new
folder, all of my files do not appear to have been accessed just now.

- Tyler



-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-trunk-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages nautilus depends on:
ii  desktop-file-utils  0.15-2   Utilities for .desktop files
ii  gvfs1.4.3-1  userspace virtual filesystem - ser
ii  libatk1.0-0 1.28.0-1 The ATK accessibility toolkit
ii  libbeagle1  0.3.9-1  library for accessing beagle using
ii  libc6   2.10.2-5 Embedded GNU C Library: Shared lib
ii  libcairo2   1.8.8-2  The Cairo 2D vector graphics libra
ii  libdbus-glib-1-20.82-2   simple interprocess messaging syst
ii  libexempi3  2.1.1-1  library to parse XMP metadata (Lib
ii  libexif12   0.6.19-1 library to parse EXIF files
ii  libgail18   2.18.5-1 GNOME Accessibility Implementation
ii  libgconf2-4 2.28.0-1 GNOME configuration database syste
ii  libglib2.0-02.22.3-2 The GLib library of C routines
ii  libglib2.0-data 2.22.3-2 Common files for GLib library
ii  libgnome-desktop-2-11   2.28.2-1 Utility library for loading .deskt
ii  libgtk2.0-0 2.18.5-1 The GTK+ graphical user interface 
ii  libice6 2:1.0.6-1X11 Inter-Client Exchange library
ii  libnautilus-extension1  2.28.4-1 libraries for nautilus components 
ii  libpango1.0-0   1.26.2-1 Layout and rendering of internatio
ii  libselinux1 2.0.89-4 SELinux runtime shared libraries
ii  libsm6  2:1.1.1-1X11 Session Management library
ii  libtrackerclient0   0.6.95-3 metadata database, indexer and sea
ii  libunique-1.0-0 1.1.6-1  Library for writing single instanc
ii  libx11-62:1.3.2-1X11 client-side library
ii  libxml2 2.7.6.dfsg-1 GNOME XML library
ii  libxrender1 1:0.9.5-1X Rendering Extension client libra
ii  nautilus-data   2.28.4-1 data files for nautilus
ii  shared-mime-info0.70-1   FreeDesktop.org shared MIME databa

Versions of packages nautilus recommends:
ii  app-install-dat 2009.06.06   Application Installer Data Files
ii  brasero 2.28.3-1 CD/DVD burning application for GNO
ii  consolekit  0.4.1-2  framework for defining and trackin
ii  desktop-base5.0.5common files for the Debian Deskto
ii  eject   2.1.5+deb1+cvs20081104-7 ejects CDs and operates CD-Changer
ii  gvfs-backends   1.4.3-1  userspace virtual filesystem - bac
ii  librsvg2-common 2.26.0-1 SAX-based renderer library for SVG
ii  synaptic0.63 Graphical package manager

Versions of packages nautilus suggests:
ii  eog 2.28.2-1 Eye of GNOME graphics viewer progr
ii  evince [pdf-viewer] 2.28.2-1 Document (postscript, pdf) viewer
ii  kghostview [pdf-viewer] 4:3.5.9-3+lenny1 PostScript viewer for KDE
ii  kpdf [pdf-viewer]   4:3.5.9-3+lenny1 PDF viewer for KDE
ii  mpg123 [mp3-decoder]1.10.0-2 MPEG layer 1/2/3 audio player
ii  mpg321 [mp3-decoder]0.2.10.6 mpg123 clone that doesn't use floa
ii  okular [pdf-viewer] 4:4.3.4-1+b1 document viewer for KDE 4
ii  totem   2.28.5-1 A simple media player for the GNOM
ii  tracker 0.6.95-3 metadata database, indexer and sea
ii  vlc [mp3-decoder]   1.0.4-2  multimedia player and streamer
ii  vlc-nox [mp3-decoder]   1.0.4-2  multimedia player and streamer (wi
pn  xdg-user-dirs   none   (no description available)

-- debconf-show failed



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#565443: util-linux: fdisk -l should omit device-mapper managed devices without a partition table (like LVs)

[Tyler MacDonald]

Package: util-linux
Version: 2.16-3
Severity: wishlist


fdisk -l creates a lot of spam when you have many logical volumes. If a
device-mapper managed virtual device does not contain a partition table, it
shouldn't bother printing junk like this:

Disk /dev/dm-27: 128.8 GB, 128849018880 bytes
255 heads, 63 sectors/track, 15665 cylinders
Units = cylinders of 16065 * 512 = 8225280 bytes
Disk identifier: 0x

Disk /dev/dm-27 doesn't contain a valid partition table


Thanks,
Tyler


-- System Information:
Debian Release: squeeze/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.26-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages util-linux depends on:
ii  libblkid1   2.16-3   block device id library
ii  libc6   2.9-25   GNU C Library: Shared libraries
ii  libncurses5 5.7+20090803-1   shared libraries for terminal hand
ii  libselinux1 2.0.85-2 SELinux shared libraries
ii  libslang2   2.1.4-3  The S-Lang programming library - r
ii  libuuid12.16.2-0 Universally Unique ID library
ii  lsb-base3.2-23   Linux Standard Base 3.2 init scrip
ii  tzdata  2009l-1  time zone and daylight-saving time
ii  zlib1g  1:1.2.3.4.dfsg-3 compression library - runtime

util-linux recommends no packages.

Versions of packages util-linux suggests:
ii  console-tools1:0.2.3dbs-65.1 Linux console and font utilities
pn  dosfstools   none  (no description available)
pn  util-linux-locales   none  (no description available)

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#499219: iceweasel prevented this site from opening a pop-up window

[Tyler MacDonald]

Mike Hommey m...@glandium.org wrote:
 Sorry for the long waited answer.

No problem!

  It would be nice to have an allow pop-ups just this once option so that I
  don't have to immediately whitelist a site in order to see what it was going
  to send me.
 I quite don't understand your request, because since version 3.0, when
 Iceweasel prevents a site from opening a pop-up, after the 3 options you
 mention, there is an option to Show 'url', url corresponding to the
 address of the popup that was opening.
 
 Isn't that enough ?

  Hmm -- I haven't seen that yet. Does it open the window up with the
correct size and decorations?

- Tyler



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#440133: iceweasel: file:// bookmark behaviour is inconsistent

[Tyler MacDonald]

Sorry -- I mean when you have a file:// bookmark in your bookmarks folder,
and scroll down to it and use the little arrow on the menu to expand the
list.

- Tyler


Eric Dorland e...@debian.org wrote:
 tags 440133 moreinfo
 
 * Tyler MacDonald (ty...@yi.org) wrote:
  Package: iceweasel
  Version: 2.0.0.6-1
  Severity: minor
  
  
  When you are viewing a file:// url that is a directory, you get a sorted
  list of files. However, when you are expanding a directory for a file://
  url,
  
  Current behaviour: The files in that directory are shown in inode order
  
  Desired behaviour: The files in that directory should be shown as a sorted
  list, just like when you were browsing the directory.
 
 What do you mean by expanding a directory for a file:// url?
  
  -- System Information:
  Debian Release: lenny/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'stable')
  Architecture: i386 (i686)
  
  Kernel: Linux 2.6.21+crackerjack (SMP w/2 CPU cores)
  Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
  Shell: /bin/sh linked to /bin/bash
  
  Versions of packages iceweasel depends on:
  ii  debianutils 2.23.1   Miscellaneous utilities 
  specific t
  ii  fontconfig  2.4.2-1.2generic font configuration 
  library
  ii  libatk1.0-0 1.18.0-2 The ATK accessibility toolkit
  ii  libc6   2.6.1-1+b1   GNU C Library: Shared libraries
  ii  libcairo2   1.4.10-1 The Cairo 2D vector graphics 
  libra
  ii  libfontconfig1  2.4.2-1.2generic font configuration 
  library
  ii  libfreetype62.3.5-1+b1   FreeType 2 font engine, shared 
  lib
  ii  libgcc1 1:4.2.1-4GCC support library
  ii  libglib2.0-02.14.0-2 The GLib library of C routines
  ii  libgtk2.0-0 2.10.13-1The GTK+ graphical user 
  interface 
  ii  libhunspell-1.1-0   1.1.9-1  spell checker and 
  morphological an
  ii  libjpeg62   6b-13The Independent JPEG Group's 
  JPEG 
  ii  libnspr4-0d 4.6.7-1  NetScape Portable Runtime 
  Library
  ii  libnss3-0d  3.11.7-1 Network Security Service 
  libraries
  ii  libpango1.0-0   1.16.5-1 Layout and rendering of 
  internatio
  ii  libpng12-0  1.2.15~beta5-2   PNG library - runtime
  ii  libstdc++6  4.2.1-4  The GNU Standard C++ Library v3
  ii  libx11-62:1.0.3-7X11 client-side library
  ii  libxft2 2.1.12-2 FreeType-based font drawing 
  librar
  ii  libxinerama11:1.0.2-1X11 Xinerama extension library
  ii  libxp6  1:1.0.0.xsf1-1   X Printing Extension (Xprint) 
  clie
  ii  libxrender1 1:0.9.3-1X Rendering Extension client 
  libra
  ii  libxt6  1:1.0.5-3X11 toolkit intrinsics library
  ii  psmisc  22.5-1   Utilities that use the proc 
  filesy
  ii  zlib1g  1:1.2.3.3.dfsg-5 compression library - runtime
  
  iceweasel recommends no packages.
  
  -- no debconf information
  
 
 -- 
 Eric Dorland e...@kuroneko.ca
 ICQ: #61138586, Jabber: ho...@jabber.com
 



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#558801: find: option to find files that are currently open

[Tyler MacDonald]

Package: findutils
Version: 4.4.2-1
Severity: wishlist


Especially for things like temporary directory cleanup, it'd be handy if
find had an option to seek files that are currently open. I can run the
results of find through fuser but that's a bit hairy. Something like
this would be nice:

  find /var/tmp/spool -type f -not -open -print0 | xargs -0 -n 1000 rm -f

Thanks,
   Tyler


-- System Information:
Debian Release: squeeze/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.26-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages findutils depends on:
ii  libc6 2.9-25 GNU C Library: Shared libraries

findutils recommends no packages.

Versions of packages findutils suggests:
ii  mlocate   0.21.1-2   quickly find files on the filesyst

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#513995: any traction here?

[Tyler MacDonald]

it seems like a very simple request...



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#509040: transmission-gtk: upstream ticket resolved

[Tyler MacDonald]

http://trac.transmissionbt.com/ticket/1699

Yay!!!




-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org