Bug#886465: rxvt-unicode: external 'screen' claims "Cannot find terminfo entry for 'rxvt-unicode-256color'."

[YOSHINO Yoshihito]

Package: rxvt-unicode
Version: 9.22-2, 9.22-3
Severity: important

Dear Maintainer,

After upgrading rxvt-unicode to 9.22-2, its TERM value has been changed from
'rxvt-unicode' to 'rxvt-unicode-256color'.
When I log in to a Debian server without ncurses-term installed, and try to
run 'screen' inside the server, it claims
> Cannot find terminfo entry for 'rxvt-unicode-256color'
and fails to start. Also 'less' claims
> WARNING: terminal is not fully functional
and works just like a dumb terminal.

Workaround: "export TERM='rxvt-unicode'" if your shell is bash
Personally I do not like this approach because I think the 'rxvt-unicode'
package should work well as 'rxvt-unicode' out of the box.

Regards,
-- 
YOSHINO Yoshihito 

-- System Information:
Debian Release: buster/sid
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.14.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=ja_JP.UTF-8, LC_CTYPE=ja_JP.UTF-8 (charmap=UTF-8),
LANGUAGE= (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages rxvt-unicode depends on:
ii  base-passwd   3.5.44
ii  libc6 2.25-6
ii  libfontconfig12.12.6-0.1
ii  libfreetype6  2.8.1-1
ii  libgcc1   1:7.2.0-18
ii  libgdk-pixbuf2.0-02.36.11-1
ii  libglib2.0-0  2.54.2-5
ii  libperl5.26   5.26.1-3
ii  libstartup-notification0  0.12-5
ii  libx11-6  2:1.6.4-3
ii  libxft2   2.3.2-1+b2
ii  libxrender1   1:0.9.10-1
ii  ncurses-term  6.0+20171125-1

Versions of packages rxvt-unicode recommends:
ii  fonts-dejavu2.37-1
ii  fonts-vlgothic [fonts-japanese-gothic]  20141206-4

rxvt-unicode suggests no packages.

-- no debconf information

Bug#866503: webkit2gtk: stuttering audio playback

[Richard Lucassen]

On Fri, 5 Jan 2018 12:15:57 +0200
Alberto Garcia  wrote:

> I can't reproduce this problem anymore (I'm using webkit2gtk 2.18.4).
> Does it still happen to you?

Nope, seems ok now

R.

-- 
___
It is better to remain silent and be thought a fool, than to speak
aloud and remove all doubt.

+--+
| Richard Lucassen, Utrecht|
+--+

Bug#795261: add a warning for stripped python-*-dbg packages

[Piotr Ożarowski]

> I currently don't have an example. But that would be a package that has a -dbg
> *and* a -dbgsym package. Maybe Piotr could elaborate if pybuild now handles 
> the
> case correctly, and then maybe just close the issue?

pybuild just invokes -dbg interpreter to build extension, It doesn't
know anything about binary packages unless --name option (AKA
PYBUILD_NAME) is set but then it uses it only to set the right DESTDIR
(f.e. debian/python3-foo-dbg/). It doesn't interact with dh_strip or
anything like that. 

If there's a way to instruct debhelper (via buildsystem) to never ever
create -dbgsym packages for given package (100% binary packages that
start wit python- or python3- AFAICT) then please let me know and I will
implement it.
-- 
GPG: 1D2F A898 58DA AF62 1786 2DF7 AEF6 F1A2 A745 7645

Bug#886472: firefox-esr: player.siriusxm.com hangs and never completes

[jon peterson]

Package: firefox-esr
Version: 52.5.2esr-1~deb8u1
Severity: normal

Dear Maintainer,

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?
entering player.sirisxm.com into address field and pressing enter
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
   * What was the outcome of this action?
browser hangs forever and never updates as it does on my intel tower system
   * What outcome did you expect instead?
screen update with player button

*** End of the template - remove these template lines ***


-- Package-specific info:

-- Extensions information
Name: Application Update Service Helper
Location: ${PROFILE_EXTENSIONS}/aushel...@mozilla.org.xpi
Status: enabled

Name: Default theme
Location: 
/usr/lib/firefox-esr/browser/extensions/{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Package: firefox-esr
Status: enabled

Name: Multi-process staged rollout
Location: ${PROFILE_EXTENSIONS}/e10sroll...@mozilla.org.xpi
Status: enabled

Name: Pocket
Location: ${PROFILE_EXTENSIONS}/fire...@getpocket.com.xpi
Status: enabled

Name: Web Compat
Location: ${PROFILE_EXTENSIONS}/webcom...@mozilla.org.xpi
Status: enabled

-- Plugins information

-- Addons package information
ii  firefox-esr52.5.2esr-1~ armhfMozilla Firefox web browser - Ext

-- System Information:
Debian Release: 8.10
  APT prefers oldstable
  APT policy: (500, 'oldstable')
Architecture: armhf (armv7l)

Kernel: Linux 4.4.13-ntc-mlc (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: systemd (via /run/systemd/system)

Versions of packages firefox-esr depends on:
ii  debianutils   4.4+b1
ii  fontconfig2.11.0-6.3+deb8u1
ii  libasound21.0.28-1
ii  libatk1.0-0   2.14.0-1
ii  libc6 2.19-18+deb8u10
ii  libcairo-gobject2 1.14.0-2.1+deb8u2
ii  libcairo2 1.14.0-2.1+deb8u2
ii  libdbus-1-3   1.8.22-0+deb8u1
ii  libdbus-glib-1-2  0.102-1
ii  libevent-2.0-52.0.21-stable-2+deb8u1
ii  libffi6   3.1-2+deb8u1
ii  libfontconfig12.11.0-6.3+deb8u1
ii  libfreetype6  2.5.2-3+deb8u2
ii  libgcc1   1:4.9.2-10
ii  libgdk-pixbuf2.0-02.31.1-2+deb8u6
ii  libglib2.0-0  2.42.1-1+b1
ii  libgtk-3-03.14.5-1+deb8u1
ii  libgtk2.0-0   2.24.25-3+deb8u2
ii  libhunspell-1.3-0 1.3.3-3
ii  libjsoncpp0   0.6.0~rc2-3.1
ii  libpango-1.0-01.36.8-3
ii  libsqlite3-0  3.8.7.1-1+deb8u2
ii  libstartup-notification0  0.12-4
ii  libstdc++64.9.2-10
ii  libx11-6  2:1.6.2-3+deb8u1
ii  libx11-xcb1   2:1.6.2-3+deb8u1
ii  libxcb-shm0   1.10-3+b1
ii  libxcb1   1.10-3+b1
ii  libxcomposite11:0.4.4-1
ii  libxdamage1   1:1.1.4-2+b1
ii  libxext6  2:1.3.3-1
ii  libxfixes31:5.0.1-2+deb8u1
ii  libxrender1   1:0.9.8-1+b1
ii  libxt61:1.1.4-1+b1
ii  procps2:3.3.9-9
ii  zlib1g1:1.2.8.dfsg-2+b1

firefox-esr recommends no packages.

Versions of packages firefox-esr suggests:
pn  fonts-lmodern  
pn  fonts-stix | otf-stix  
ii  libcanberra0   0.30-2.1
ii  libgssapi-krb5-2   1.12.1+dfsg-19+deb8u4
pn  mozplugger 

-- no debconf information

Bug#880554: xen domu freezes with kernel linux-image-4.9.0-4-amd64

[Yves-Alexis Perez]

On Fri, 2017-11-17 at 07:39 +0100, Valentin Vidic wrote:
> Hi,
> 
> The problem seems to be caused by the new multi-queue xen blk driver
> and I was advised by the Xen devs to increase the gnttab_max_frames=256
> parameter for the hypervisor.  This has solved the blocking issue
> for me and it has been running without problems for a few months now.

I'm not really fluent in Xen, but does this relate to the kernel in dom0 or
one of the domU then? 
> 
> I/O to LUNs hang / stall under high load when using xen-blkfront
> https://www.novell.com/support/kb/doc.php?id=7018590

According to that link, the fix seems to be configuration rather than code.
Does this mean this bug against the kernel should be closed?

Regards,
-- 
Yves-Alexis

signature.asc
Description: This is a digitally signed message part

Bug#886464: libgaminggear0: uhid line causing errors (with old libkmod ?)

[ydirson]

Package: libgaminggear0
Version: 0.15.1-3

This package maybe lacks a versionned dependency, it causes errors when 
installed on a mostly-stretch install:

Preparing to unpack .../linux-image-4.14.0-3-amd64_4.14.12-1_amd64.deb ...
/etc/kernel/preinst.d/intel-microcode:
libkmod: ERROR ../libkmod/libkmod-config.c:635 kmod_config_parse: 
/lib/modprobe.d/uinput.conf line 1: ignoring bad line starting with 'uhid'
Unpacking linux-image-4.14.0-3-amd64 (4.14.12-1) ...
...
update-initramfs: Generating /boot/initrd.img-4.14.0-3-amd64
libkmod: ERROR ../libkmod/libkmod-config.c:635 kmod_config_parse: 
/lib/modprobe.d/uinput.conf line 1: ignoring bad line starting with 'uhid'
libkmod: ERROR ../libkmod/libkmod-config.c:635 kmod_config_parse: 
/lib/modprobe.d/uinput.conf line 1: ignoring bad line starting with 'uhid'
...
(many times the same error)

Bug#886416: libnih: uninstallable, and FTBFS when rebuilt: FAIL test_parse (unexpected line numbering)

[Simon McVittie]

On Sat, 06 Jan 2018 at 03:01:35 +0100, Axel Beckert wrote:
> Axel Beckert wrote:
> > I don't know if that test suite failure shows that expat broke libnih
> > or if the test suite just needs to be adapted to the new expat
> > version.
> >  
> > -   TEST_FILE_EQ (output, ("test:foo:2:0: "
> > +   TEST_FILE_EQ (output, ("test:foo:1:36: "
> >"Invalid object path in  name 
> > attribute\n"));
> > TEST_FILE_END (output);
> > TEST_FILE_RESET (output);

It certainly seems more true to say that the error in
"\n" is at line 1 column 36 (the
closing double quote around the invalid object path) than at line 2
column 0 (after the newline).

> I'd appreciate some more eyes on that change as I have not much of an
> idea of libnih's guts.

I have no idea about how libnih works, but the change looks harmless at
worst - it's not as if it changes the behaviour of non-test code, and the
new output looks more correct than the old. (My only interest in libnih
is in keeping libpam-systemd installable on buildds.)

smcv

Bug#883526: closed by Andreas Rönnquist <gus...@debian.org> (Bug#883526: fixed in geeqie 1:1.4-1)

[Helmut Grohne]

Control: reopen -1
Control: affects 882785 + src:geeqie

On Wed, Jan 03, 2018 at 11:21:06PM +, Debian Bug Tracking System wrote:
>* New upstream version 1.4
>  - Really fixes the problems with trapping errors (Closes: 883526)

I'm very sorry to reopen this bug again, but this fix doesn't quite cut
it. I goes a long way, but is still incomplete.

This is how it looks like when gdk-pixbuf-csource[1] fails to run now:

|dh_auto_build -a -O--parallel -O--fail-missing
| make -j1
| make[1]: Entering directory '/<>'
| make  all-recursive
| make[2]: Entering directory '/<>'
| Making all in src
| make[3]: Entering directory '/<>/src'
| Making all in icons
| make[4]: Entering directory '/<>/src/icons'
| Making all in svg
| make[5]: Entering directory '/<>/src/icons/svg'
| make[5]: Nothing to be done for 'all'.
| make[5]: Leaving directory '/<>/src/icons/svg'
| make[5]: Entering directory '/<>/src/icons'
| sh: 1: /usr/bin/gdk-pixbuf-csource: Exec format error
| !!! Failed to generate icons_inline.h !!!
| make[5]: Leaving directory '/<>/src/icons'
| make[4]: Leaving directory '/<>/src/icons'
| make[4]: Entering directory '/<>/src'
| powerpc64le-linux-gnu-gcc -DHAVE_CONFIG_H -I. -I..   -Wdate-time 
-D_FORTIFY_SOURCE=2 -pthread -I/usr/include/glib-2.0 
-I/usr/lib/powerpc64le-linux-gnu/glib-2.0/include -pthread 
-I/usr/include/gtk-2.0 -I/usr/lib/powerpc64le-linux-gnu/gtk-2.0/include 
-I/usr/include/gio-unix-2.0/ -I/usr/include/cairo -I/usr/include/pango-1.0 
-I/usr/include/atk-1.0 -I/usr/include/cairo -I/usr/include/pixman-1 
-I/usr/include/gdk-pixbuf-2.0 -I/usr/include/libpng16 -I/usr/include/pango-1.0 
-I/usr/include/harfbuzz -I/usr/include/pango-1.0 -I/usr/include/glib-2.0 
-I/usr/lib/powerpc64le-linux-gnu/glib-2.0/include -I/usr/include/freetype2 
-I/usr/include/libpng16 -I/usr/include/lua5.1-I.. -I.. -g -O2 
-fdebug-prefix-map=/<>=. -fstack-protector-strong -Wformat 
-Werror=format-security -Werror -Wno-error=deprecated-declarations 
-Wno-error=sign-compare -Wno-error=return-type -c -o ui_bookmark.o ui_bookmark.c
| powerpc64le-linux-gnu-gcc -DHAVE_CONFIG_H -I. -I..   -Wdate-time 
-D_FORTIFY_SOURCE=2 -pthread -I/usr/include/glib-2.0 
-I/usr/lib/powerpc64le-linux-gnu/glib-2.0/include -pthread 
-I/usr/include/gtk-2.0 -I/usr/lib/powerpc64le-linux-gnu/gtk-2.0/include 
-I/usr/include/gio-unix-2.0/ -I/usr/include/cairo -I/usr/include/pango-1.0 
-I/usr/include/atk-1.0 -I/usr/include/cairo -I/usr/include/pixman-1 
-I/usr/include/gdk-pixbuf-2.0 -I/usr/include/libpng16 -I/usr/include/pango-1.0 
-I/usr/include/harfbuzz -I/usr/include/pango-1.0 -I/usr/include/glib-2.0 
-I/usr/lib/powerpc64le-linux-gnu/glib-2.0/include -I/usr/include/freetype2 
-I/usr/include/libpng16 -I/usr/include/lua5.1-I.. -I.. -g -O2 
-fdebug-prefix-map=/<>=. -fstack-protector-strong -Wformat 
-Werror=format-security -Werror -Wno-error=deprecated-declarations 
-Wno-error=sign-compare -Wno-error=return-type -c -o ui_fileops.o ui_fileops.c
| powerpc64le-linux-gnu-gcc -DHAVE_CONFIG_H -I. -I..   -Wdate-time 
-D_FORTIFY_SOURCE=2 -pthread -I/usr/include/glib-2.0 
-I/usr/lib/powerpc64le-linux-gnu/glib-2.0/include -pthread 
-I/usr/include/gtk-2.0 -I/usr/lib/powerpc64le-linux-gnu/gtk-2.0/include 
-I/usr/include/gio-unix-2.0/ -I/usr/include/cairo -I/usr/include/pango-1.0 
-I/usr/include/atk-1.0 -I/usr/include/cairo -I/usr/include/pixman-1 
-I/usr/include/gdk-pixbuf-2.0 -I/usr/include/libpng16 -I/usr/include/pango-1.0 
-I/usr/include/harfbuzz -I/usr/include/pango-1.0 -I/usr/include/glib-2.0 
-I/usr/lib/powerpc64le-linux-gnu/glib-2.0/include -I/usr/include/freetype2 
-I/usr/include/libpng16 -I/usr/include/lua5.1-I.. -I.. -g -O2 
-fdebug-prefix-map=/<>=. -fstack-protector-strong -Wformat 
-Werror=format-security -Werror -Wno-error=deprecated-declarations 
-Wno-error=sign-compare -Wno-error=return-type -c -o ui_help.o ui_help.c
| powerpc64le-linux-gnu-gcc -DHAVE_CONFIG_H -I. -I..   -Wdate-time 
-D_FORTIFY_SOURCE=2 -pthread -I/usr/include/glib-2.0 
-I/usr/lib/powerpc64le-linux-gnu/glib-2.0/include -pthread 
-I/usr/include/gtk-2.0 -I/usr/lib/powerpc64le-linux-gnu/gtk-2.0/include 
-I/usr/include/gio-unix-2.0/ -I/usr/include/cairo -I/usr/include/pango-1.0 
-I/usr/include/atk-1.0 -I/usr/include/cairo -I/usr/include/pixman-1 
-I/usr/include/gdk-pixbuf-2.0 -I/usr/include/libpng16 -I/usr/include/pango-1.0 
-I/usr/include/harfbuzz -I/usr/include/pango-1.0 -I/usr/include/glib-2.0 
-I/usr/lib/powerpc64le-linux-gnu/glib-2.0/include -I/usr/include/freetype2 
-I/usr/include/libpng16 -I/usr/include/lua5.1-I.. -I.. -g -O2 
-fdebug-prefix-map=/<>=. -fstack-protector-strong -Wformat 
-Werror=format-security -Werror -Wno-error=deprecated-declarations 
-Wno-error=sign-compare -Wno-error=return-type -c -o ui_menu.o ui_menu.c
| powerpc64le-linux-gnu-gcc -DHAVE_CONFIG_H -I. -I..   -Wdate-time 
-D_FORTIFY_SOURCE=2 -pthread -I/usr/include/glib-2.0 
-I/usr/lib/powerpc64le-linux-gnu/glib-2.0/include -pthread 
-I/usr/include/gtk-2.0 

Bug#878338: gcc-defaults FTBFS with debhelper 10.9

[John Paul Adrian Glaubitz]

> dh_compress: unknown option or error during option parsing; aborting
> debian/rules:1354: recipe for target 'binary-native' failed
> make: *** [binary-native] Error 25

I'm running into this on ia64 now but I'm not sure whom to blame.

"Unknown option or error" doesn't make it seem that debhelper is
working as expected, is it? At least there should be a comprehensible
error message.

Adrian

-- 
 .''`.  John Paul Adrian Glaubitz
: :' :  Debian Developer - glaub...@debian.org
`. `'   Freie Universitaet Berlin - glaub...@physik.fu-berlin.de
  `-GPG: 62FF 8A75 84E0 2956 9546  0006 7426 3B37 F5B5 F913

Bug#878338: gcc-defaults FTBFS with debhelper 10.9

[Adrian Bunk]

On Sat, Jan 06, 2018 at 02:09:44PM +0100, John Paul Adrian Glaubitz wrote:
> > dh_compress: unknown option or error during option parsing; aborting
> > debian/rules:1354: recipe for target 'binary-native' failed
> > make: *** [binary-native] Error 25
> 
> I'm running into this on ia64 now but I'm not sure whom to blame.
> 
> "Unknown option or error" doesn't make it seem that debhelper is
> working as expected, is it? At least there should be a comprehensible
> error message.

The comprehensive error messages are above, check the lines
  dh_compress: Requested unknown package ... via -N/--no-package, expected one 
of: ...

cu
Adrian

-- 

   "Is there not promise of rain?" Ling Tan asked suddenly out
of the darkness. There had been need of rain for many days.
   "Only a promise," Lao Er said.
   Pearl S. Buck - Dragon Seed

Bug#886367: IMPORTANT: ARE they (Chip-Makers) creasy! -- Changing CPU/MMU-Microcodes MUST NOT BE POSSIBLE outside the secured HW-Factories!

[Patrik Lori]

STOP, STOP, STOP -> ALL THIS "Microcode-Patch" Infos!
=

If Intel, AMD, ARM, .. now communicating, that they can change the 
CPU/MMU-Microcode outside there secured factories; they send (with this) very 
dangerous messages to all hackers.

Hackers can use "the same procedure" to do the oposit of these patches!

Changing CPU/MMU-Microcodes MUST NOT BE POSSIBLE outside the secured 
HW-Factories!

Otherwize, we are all in great new SECURITY-DANGER!

I hope the CPU/MMU-Microcode - Patch can NOT be manipulated or canceled 
afterwards !!!

Kind regards
Patrik
 


ifs³ Consulting+Engineering
Patrik Lori
CTO, cert. Computer Engineer & MAS-BA
Panoramastr. 6, 5625 Kallern, Switzerland
 
Web:http://www.ifs3.com 
Email:  patrik.l...@ifs3.com 
Mobile:+41 79 326 75 97
 
CONFIDENTIALITY NOTICE: This e-mail message including attachments, if any, is 
intended only for the person or entity to which it is addressed and may contain 
confidential and/or privileged material. Any unauthorised review, use, 
disclosure or distribution is prohibited. If you are not the intended 
recipient, please contact the sender by reply e-mail and destroy all copies of 
the original message. If you are the intended recipient but do not wish to 
receive communications through this medium, please do advise the sender 
immediately.

Bug#886466: src:cenon.app: New GCC warnings with gnustep-gui/0.26.2

[Yavor Doganov]

Source: cenon.app
Version: 4.0.2-1
Severity: normal
Tags: sid buster
User: pkg-gnustep-maintain...@lists.alioth.debian.org
Usertags: gnustep-gui0.26-transition gnustep-transition

This package builds successfully with gnustep-gui/0.26 but there are new
compiler warnings you might want to investigate.  Relevant portion from
the build log:

App.m: In function '-[App terminate:]':
App.m:1619:13: warning: multiple methods named '-terminate' found
 [[[module principalClass] instance] terminate];
 ^
In file included from /usr/include/GNUstep/Foundation/Foundation.h:119:0,
 from /usr/include/GNUstep/AppKit/AppKit.h:40,
 from App.m:42:
/usr/include/GNUstep/Foundation/NSTask.h:126:1: note: using '-(void)terminate'
 - (void) terminate;
 ^
/usr/include/GNUstep/Foundation/NSTask.h:126:1: note: also found 
'-(void)terminate'
In file included from /usr/include/GNUstep/AppKit/AppKit.h:108:0,
 from App.m:42:
/usr/include/GNUstep/AppKit/NSRunningApplication.h:97:1: note: also found 
'-(BOOL)terminate'
 - (BOOL)terminate;
 ^

Bug#886416: libnih: uninstallable, and FTBFS when rebuilt: FAIL test_parse (unexpected line numbering)

[Axel Beckert]

Control: tag -1 + pending

Hi Simon,

Simon McVittie wrote:
> > > -   TEST_FILE_EQ (output, ("test:foo:2:0: "
> > > +   TEST_FILE_EQ (output, ("test:foo:1:36: "
> > >"Invalid object path in  
> > > name attribute\n"));
[…]
> It certainly seems more true to say that the error in
> "\n" is at line 1 column 36 (the
> closing double quote around the invalid object path) than at line 2
> column 0 (after the newline).

Argh! Thanks for enlightening me what these numbers mean!

Yes, indeed, that looks much more sane now. Might be related to this
bug fix in expat 2.2.5:

   #137 #138  Fix a case of mistakenly reported parsing success where
XML_StopParser was called from an element handler

> > I'd appreciate some more eyes on that change as I have not much of an
> > idea of libnih's guts.
> 
> I have no idea about how libnih works, but the change looks harmless at
> worst - it's not as if it changes the behaviour of non-test code, and the
> new output looks more correct than the old.

Thanks for the review! Will prepare an upload.

> (My only interest in libnih is in keeping libpam-systemd installable
> on buildds.)

(My only interest in libnih is in being able to continue to not have to
use systemd as init system on my systems without having to uninstall
about 500 packages. :-P)

Regards, Axel
-- 
 ,''`.  |  Axel Beckert , https://people.debian.org/~abe/
: :' :  |  Debian Developer, ftp.ch.debian.org Admin
`. `'   |  4096R: 2517 B724 C5F6 CA99 5329  6E61 2FF9 CD59 6126 16B5
  `-|  1024D: F067 EA27 26B9 C3FC 1486  202E C09E 1D89 9593 0EDE

Bug#886429: [L10N,DE] apt: updated german program translation

[David Kalnischkies]

Hi,

Thanks for the update!

1.6~alpha6 has one small additional string:

#: methods/connect.cc
#, fuzzy, c-format
#| msgid "Connecting to %s (%s)"
msgid "Connected to %s (%s)"
msgstr "Verbindung mit %s (%s)"

(yes, there is now a "Connecting" as well as a "Connected" msg)


You can just reply here with what should be written there,
I will apply it then – no need to roll a new po.


Thanks again & "schönes Wochenende",

David Kalnischkies


signature.asc
Description: PGP signature

Bug#795261: add a warning for stripped python-*-dbg packages

[Matthias Klose]

[CCing Piotr]

On 06.01.2018 11:43, Chris Lamb wrote:
> tags 795261 + moreinfo
> thanks
> 
> 
 add a warning for stripped python-*-dbg packages
> 
> Thanks Mattia for your comments and for filing the other bug.
> 
> Matthias, can you send over the name of an example package so I can be
> sure I am 100% that I understand the issue correctly? :)

I currently don't have an example. But that would be a package that has a -dbg
*and* a -dbgsym package. Maybe Piotr could elaborate if pybuild now handles the
case correctly, and then maybe just close the issue?

Matthias

Bug#885989: Downgrade the severity of this bug, or close it

[Jeremy Lainé]

TLS guarantees you have established a secure connection to the host name 
you requested, nothing else. If a host name resolves to cloudflare's 
servers, that's the domain owner's decision. Almost every production 
deployment involves reverse proxies at one point or another (terminating 
TLS in the application server is exceedingly rare), so "end to end 
encryption" is definitely not the promise.


Suggested that detecting certain headers to flag "man in the middle 
attacks" is not a serious claim either.


This bug report should be closed as wontfix, and should not hold up a 
transition from unstable to testing.


Jeremy

Bug#886467: RFS: igmpproxy/0.2-1

[Pali Rohár]

Package: sponsorship-requests
Severity: normal

Dear mentors,

I am looking for a sponsor for my package "igmpproxy"

 * Package name: igmpproxy
   Version : 0.2-1
   Upstream Author : Pali Rohár 
 * URL : https://github.com/pali/igmpproxy
 * License : BSD-3-clause and GPL-2+
   Section : net

It builds those binary packages:

  igmpproxy  - IGMP multicast routing daemon

To access further information about this package, please visit the following 
URL:

  https://mentors.debian.net/package/igmpproxy


Alternatively, one can download the package with dget using this command:

  dget -x 
https://mentors.debian.net/debian/pool/main/i/igmpproxy/igmpproxy_0.2-1.dsc

More information about igmpproxy can be obtained from 
https://github.com/pali/igmpproxy.

Changes since the last upload:

  * New upstream release
  * Change upstream location
  * Update upstream license

Regards,
 Pali Rohár


signature.asc
Description: This is a digitally signed message part.

Bug#886468: To avoid installer lock-up, iso-scan should always ask if more than one iso image is found

[cruncher]

Package: iso-scan
Version: 1.56
Severity: important
Tags: d-i

Just tried with version 1.56, still the same "problem".

Regards



-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.14.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8), LANGUAGE=en_US:en 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Bug#886469: RFS: stormlib/9.22-1

[Pali Rohár]

Package: sponsorship-requests
Severity: normal

Dear mentors,

I am looking for a sponsor for my package "stormlib"

 * Package name: stormlib
   Version : 9.22-1
   Upstream Author : Ladislav Zezula 
 * URL : http://www.zezula.net/en/mpq/stormlib.html
 * License : MIT
   Section : libs

It builds those binary packages:

  libstorm-dev - Library for accessing the MPQ archives (development files)
  libstorm9  - Library for accessing the MPQ archives

To access further information about this package, please visit the following 
URL:

  https://mentors.debian.net/package/stormlib


Alternatively, one can download the package with dget using this command:

  dget -x 
https://mentors.debian.net/debian/pool/main/s/stormlib/stormlib_9.22-1.dsc

More information about stormlib can be obtained from 
http://www.zezula.net/en/mpq/stormlib.html.

Changes since the last upload:

  * New upstream release


Regards,
 Pali Rohár


signature.asc
Description: This is a digitally signed message part.

Bug#690294: phonon-backend-vlc breaks replaygain and fade in Amarok

[Thierry CHEN]

Raphael is not the only one to have the fade transitions lack on Amarok. 
I use Debian/KDE since 2003 and Amarok suddenly missed that 
fonctionality since wheezy I think. That is for me a reason that leaded 
me to recently prefer Guayadeque that lacks many other things that 
Amarok has. But the way that Amarok cuts lovely sounds is really unbearable.


Don't know if this post will help to solve that issue and it's a shame 
because Amarok is realy good for all the rest and I really miss it.


Thierry CHEN

On Tue, 16 Oct 2012 11:24:14 +0200 =?ISO-8859-1?Q?Rapha=EBl_HALIMI?= wrote:
> Le 13/10/2012 08:35, David Smith a écrit :
> >> phonon-backend-vlc seems unable to manipulate the sound volume at 
some point;
> >> manually changing it (with the little speaker icon near the time 
counter) still

> >> works, but replaygain and fade are broken.
> >>
> >
> >
> > Can you be more specific about "unable to manipulate the sound volume
> > at some point"?
>
> Sorry, I couldn't see how to describe this problem better : what I
> thought to be the "software" volume can be manipulated with Amarok's
> little speaker icon. But now, I'm not sure anymore that this icon
> represents "software" volume, because I just noticed that the volume
> buttons on my keyboard change both the master volume in veromix'
> plasmoid and on this little speaker icon in Amarok, which rather seems
> to represent VLC's volume in pulseaudio. Being a long-time Amarok user,
> I wrongly thought that this icon had the same function as the little
> volume slider that was at the same place in Amarok 1.
>
> > fade is not (yet) supported by VLC phonon backend for Amarok. VLC is
> > simply lacking the implementation for the feature. See here:
> > https://bugs.kde.org/show_bug.cgi?id=287124
> >
> > Since fade is not supported by the VLC phonon backend, it's
> > recommended to disable fade-out in Amarok when you use the VLC phonon
> > backend.
>
> I see. sorry, I didn't know. Now that you mention it, fade doesn't work
> with Gstreamer backend either (but replaygain does).
>
> > For ReplayGain, can you make sure you don't have conflicting gain
> > tags? Check if your files have a replaygain_track_peak tag, and if
> > so, remove it.
> >
> > As far as I know, Amarok itself does not calculate ReplayGain values,
> > you need to have a 3rd party app calculate it and store the
> > information in a ID3 tag.
> >
> > I have just tested using mp3gain from Wheezy with the Amarok from
> > Wheezy and the ReplayGain feature in Amarok works fine for me here
> > with both the gstreamer and vlc backends. Of course, I made sure
> > ReplayGain was enabled in Amarok in the menu. If you've used older
> > mp3gain versions, it's very possible you could end up with conflicting
> > ReplayGain tags which is known to cause problems as Amarok doesn't
> > know which tag to use and may decide to use the wrong one (or
> > neither). Also, if you use a very old version of mp3gain, the tag
> > might get ignored by Amarok completely.
>
> Most of my files are Ogg, but neither my MP3 files nor my Ogg files have
> any replaygain tags in them (clementine, which can use replaygain values
> stored in files as tags but can't calculate them - just as you say
> Amarok 2 does - doesn't adjust the volume either).
>
> IIRC Amarok 1 did calculate replaygain values (either by itself or by
> calling mp3gain/vorbisgain, I'm not sure) and stored them in its config
> directory. Since replaygain works in Amarok 2 with the Gstreamer
> backend, I think Amarok 2 imported these values from Amarok 1's
> configuration during first launch.
>

--

Thierry Chen
webologix.com 
Tél. 0750 838 207

webologix.com - Applications WEB
---

Bug#886471: wkhtmltopdf FTCBFS: runs qmake without cross flags

[Helmut Grohne]

Source: wkhtmltopdf
Version: 0.12.3.2-3
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap

wkhtmltopdf fails to cross build from source, because it fails to pass
cross flags to qmake. The easiest way of doing so is deferring the whole
task to dh_auto_configure. debhelper nowadays is capable of passing
those flags in addition to the hardening buildflags, so removing the
whole override becomes feasible.

After doing so, wkhtmltopdf still fails to cross build, because #886315.

Please consider applying the attached patch.

Helmut
diff --minimal -Nru wkhtmltopdf-0.12.3.2/debian/changelog 
wkhtmltopdf-0.12.3.2/debian/changelog
--- wkhtmltopdf-0.12.3.2/debian/changelog   2016-09-19 22:29:11.0 
+0200
+++ wkhtmltopdf-0.12.3.2/debian/changelog   2018-01-06 14:55:58.0 
+0100
@@ -1,3 +1,11 @@
+wkhtmltopdf (0.12.3.2-3.1) UNRELEASED; urgency=medium
+
+  * Non-maintainer upload.
+  * Fix FTCBFS: Let dh_auto_configure run qmake with the right flags. (Closes:
+#-1)
+
+ -- Helmut Grohne   Sat, 06 Jan 2018 14:55:58 +0100
+
 wkhtmltopdf (0.12.3.2-3) unstable; urgency=medium
 
   * Fix typos in long descriptions. Thanks to Victory for the suggestion.
diff --minimal -Nru wkhtmltopdf-0.12.3.2/debian/rules 
wkhtmltopdf-0.12.3.2/debian/rules
--- wkhtmltopdf-0.12.3.2/debian/rules   2016-03-05 12:57:21.0 +0100
+++ wkhtmltopdf-0.12.3.2/debian/rules   2018-01-06 14:55:55.0 +0100
@@ -1,13 +1,7 @@
 #!/usr/bin/make -f
 
 export DEB_BUILD_MAINT_OPTIONS=hardening=+all
-
-override_dh_auto_configure:
-   /usr/lib/$(shell dpkg-architecture -qDEB_HOST_MULTIARCH)/qt5/bin/qmake \
-   -makefile -nocache \
-   QMAKE_CFLAGS_RELEASE="$(CFLAGS) $(CPPFLAGS)" \
-   QMAKE_CXXFLAGS_RELEASE="$(CXXFLAGS) $(CPPFLAGS)" \
-   QMAKE_LFLAGS_RELEASE="$(LDFLAGS)"
+export QT_SELECT=qt5
 
 override_dh_auto_install:
# skip auto install and build/install manpages separately

Bug#886356: transition: ilmbase

[Matteo F. Vescovi]

Hi!

On 2018-01-05 at 11:54 (+0100), Emilio Pozuelo Monfort wrote:

[...]

> Go ahead.

Uploaded.

Thanks.

-- 
Matteo F. Vescovi


signature.asc
Description: PGP signature

Bug#803473: RFP: purple-facebook -- Plugin for pidgin to support new facebook chat

[nodiscc]

This plugin is still actively maintained and working to this day.

I hope someone will package this eventually, I may try to package in the
future but any help is welcome. By the way the project developer has set
up an automated Debian package build on
http://download.opensuse.org/repositories/home:/jgeboski/Debian_9.0/ but
it would be good to have this in the Debian archive.

Bug#886475: irssi: CVE-2018-5205 CVE-2018-5206 CVE-2018-5207 CVE-2018-5208

[Salvatore Bonaccorso]

Source: irssi
Version: 1.0.5-1
Severity: important
Tags: patch security upstream fixed-upstream

Hi,

the following vulnerabilities were published for irssi

CVE-2018-5205[0], CVE-2018-5206[1], CVE-2018-5207[2],
CVE-2018-5208[3], with advisory[4].

If you fix the vulnerabilities please also make sure to include the
CVE (Common Vulnerabilities & Exposures) ids in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2018-5205
[1] https://security-tracker.debian.org/tracker/CVE-2018-5206
[2] https://security-tracker.debian.org/tracker/CVE-2018-5207
[3] https://security-tracker.debian.org/tracker/CVE-2018-5208
[4] https://irssi.org/security/irssi_sa_2018_01.txt

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Bug#753723: lsat: diff for NMU version 0.9.7.1-2.2

[Luca Boccassi]

Control: tags 753723 + patch
Control: tags 753723 + pending

[Replace XX with correct value]
Dear maintainer,

I've prepared an NMU for lsat (versioned as 0.9.7.1-2.2) and
uploaded it to DELAYED/XX. Please feel free to tell me if I
should delay it longer.

Regards.
diff -u lsat-0.9.7.1/debian/changelog lsat-0.9.7.1/debian/changelog
--- lsat-0.9.7.1/debian/changelog
+++ lsat-0.9.7.1/debian/changelog
@@ -1,3 +1,11 @@
+lsat (0.9.7.1-2.2) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Suggest iproute2 instead of transitional package iproute.
+(Closes: #753723)
+
+ -- Luca Boccassi   Fri, 05 Jan 2018 22:45:41 +
+
 lsat (0.9.7.1-2.1) unstable; urgency=medium
 
   * Non-maintainer upload.
diff -u lsat-0.9.7.1/debian/control lsat-0.9.7.1/debian/control
--- lsat-0.9.7.1/debian/control
+++ lsat-0.9.7.1/debian/control
@@ -9,7 +9,7 @@
 Package: lsat
 Architecture: any
 Depends: ${shlibs:Depends}, ${misc:Depends}
-Suggests: nmap, lsof, iproute
+Suggests: nmap, lsof, iproute2
 Description: Security auditor tool
  The Linux Security Auditing Tool (LSAT) is a post install
  security auditor for Linux/Unix. It checks many system configurations


signature.asc
Description: PGP signature

Bug#886477: gthumb: Drop Build-Depends on libgnome-keyring-dev

[Jeremy Bicha]

Source: gthumb
Version: 3:3.6.0-2
Severity: important
User: pkg-gnome-maintain...@lists.alioth.debian.org
Usertags: oldlibs libgnome-keyring-removal
Tags: patch

Hi,

The libgnome-keyring library is deprecated and its usage is strongly
discouraged [1].

Your package gthumb declares a build-dependency on
libgnome-keyring-dev, but it looks like this is unused since gthumb
already uses libsecret instead [2].

Please drop that Build-Depends since we are trying to remove
libgnome-keyring from Debian Buster. (No patch attached but this is a
trivial fix.)

On behalf of the Debian GNOME team,
Jeremy Bicha

[1] https://git.gnome.org/browse/libgnome-keyring/commit/?id=6a5adea4aec93
[2] https://wiki.gnome.org/Projects/Libsecret

Bug#883703: apparmor: Feature pinning breaks mount

[intrigeri]

Hi John,

John Johansen:
> Attached is the patch for the kernel that is currently in testing

> From 1aa96ec6d0fce613e06fa4d073c8cf3e183989da Mon Sep 17 00:00:00 2001
> From: John Johansen 
> Date: Thu, 7 Dec 2017 00:28:27 -0800
> Subject: [PATCH] apparmor: fix regression in mount mediation when feature set
>  is pinned
> MIME-Version: 1.0
> Content-Type: text/plain; charset=UTF-8
> Content-Transfer-Encoding: 8bit

> When the mount code was refactored for Labels it was not correctly
> updated to check whether policy supported mediation of the mount
> class.  This causes a regression when the kernel feature set is
> reported as supporting mount and policy is pinned to a feature set
> that does not support mount mediation.

What's the status of this patch?

Context & meta: I'd like to pin the feature set to 4.9's in Debian
Stretch (and Tails) ASAP but if I do this now, I'll break "mount"
operations for all confined software. I appreciate the work you're
putting into the longer term, nicer solution (policy versioning); I'm
confident it will make things better for future stable releases of our
distros; but sadly it won't fix the problems we currently have in the
already released LTS distros that won't backport big kernel patch sets
to their stable kernel, so on the short term what we need, at least in
Debian and Tails, is bugfixes in the feature set pinning facility.

Cheers!

Bug#883627: RFS: network-manager-fortisslvpn/1.2.6-1 [ITP] -- NetworkManager Fortinet SSLVPN plugin

[Lubomir Rintel]

On Fri, 05 Jan 2018 11:49:35 +0100 Lubomir Rintel 
wrote:
> On Tue, 02 Jan 2018 18:01:00 +0100 Lubomir Rintel 
> wrote:
> > Download the package with dget using this command:
> 
> An updated version:
> 
> dget -x https://mentors.debian.net/debian/pool/main/n/network-manager
-fortisslvpn/network-manager-fortisslvpn_1.2.6-2.dsc

Back to -1 as has been suggested elsewhere:

https://mentors.debian.net/debian/pool/main/n/network-manager-fortisslvpn/network-manager-fortisslvpn_1.2.6-1.dsc

Bug#886233: vlc: VLC cannot be instaled with recent Mesa

[Sebastian Ramacher]

On 2018-01-04 15:38:14, Michal Suchanek wrote:
> On 3 January 2018 at 16:28, Sebastian Ramacher  wrote:
> > Control: found -1 2.2.4-13
> > Control: notfound -1 2.2.6-6
> > Control: forcemerge -1 855117
> >
> > On 2018-01-03 14:29:43, Michal Suchanek wrote:
> >> Package: src:vlc
> >> Followup-For: Bug #886233
> >>
> >> Actually, the issue is with libegl1-mesa which does not have the
> >> corresponding "vendor neutral" package.
> >
> > vlc (2.2.5-2) experimental; urgency=medium
> >
> >   [ Mateusz Łukasik ]
> >   * debian/{control,rules,vlc-plugin-video-output.install}: Disable OpenGL
> > ES 1 support, mesa has dropped it. (Closes: #855117)
> >
> > So this is a duplicate of #855117. I don't think this is worth a backport to
> > stable if that's what you are asking for. After all, mesa in stable is at
> > version 13.
> 
> Yes, the stable mesa and stable vlc work together. The part that this
> is fixed in 2.2.5 in experimental and is still broken in 2.2.7 in
> stable is quite confusing, though.

The current version in stable was branched of before this change. You can look
at the version graph in the BTS for more info.

> I think it still makes sense to remove the dependency in stable. It
> makes it possible to test newer mesa with stable vlc in case of
> graphics issues. As things are now you need to rebuild vlc to backport
> recent mesa which is not exactly nice.

… in that case someone needs to provide a backport of vlc. stable is the wrong
place to accomodate to changes in backports.

Cheers
-- 
Sebastian Ramacher


signature.asc
Description: PGP signature

Bug#885517: monkeysign: Recommends unmaintained pygtk

[Antoine Beaupré]

Control: forwarded -1 https://0xacab.org/monkeysphere/monkeysign/issues/21

At this point, I am thinking of dropping support for the Monkesign GUI
completely. Porting the GUI to GTK3/GI would be pretty close to a full
rewrite, which is not something I have the resources for at this
stage. If I would rewrite parts of Monkeysign, I would rather deal with
the [crufty GPG library][22] instead, as that is a much larger
liability. Furthermore, I have [another project][gameclock] that more
heavily relies on the GUI that I need to port away from GTK2 first, so
the odds of me working on this are slim, at best.

 [gameclock]: https://0xacab.org/anarcat/gameclock
 [22]: https://0xacab.org/monkeysphere/monkeysign/issues/22

Besides, GUI needs of the users are currently better served by the
"GNOME Keysign" project, which features a lot of the ideas of
Monkeysign, with extra features - which still [need to be documented][].

 []: https://0xacab.org/monkeysphere/monkeysign/issues/22

This would leave monkeysign as a commandline-only application; that
would make future maintenance easier and allow people to focus on a
single project as well for GUI improvements.

Those who wish to object to this are welcome to contribute patches to
port to GI. In the meantime, my next efforts on this will be to strip
the GTK dependencies from Monkeysign.

A.
-- 
If you have come here to help me, you are wasting our time.
But if you have come because your liberation is bound up with mine, then
let us work together.- Aboriginal activists group, Queensland, 1970s

Bug#886416: libnih: uninstallable, and FTBFS when rebuilt: FAIL test_parse (unexpected line numbering)

[Niko Tyni]

On Sat, Jan 06, 2018 at 02:03:21PM +0100, Axel Beckert wrote:

> Yes, indeed, that looks much more sane now. Might be related to this
> bug fix in expat 2.2.5:
> 
>#137 #138  Fix a case of mistakenly reported parsing success where
> XML_StopParser was called from an element handler

Yes. The relevant change seems to be

 
https://github.com/libexpat/libexpat/commit/718d51a66b0d69f3b8c5ff63d044c36dd5314232

as reverting that made the error go away for me.

Changing the libnih test suite to accomodate the expat fix seems correct
to me too fwiw. Thanks for your work on this!
-- 
Niko Tyni   nt...@debian.org

Bug#886472: update

[J P]

I should have put into the title that this is an armhf system running on an
small sbc.
top shows that there is available cpu and memory when firefox-esr hangs.

Bug#886224: printer-driver-cups-pdf: Virtual pdf printer error: no output and config problem

[Rudolf Polzer]

>> So I updated /etc/apparmor.d/usr.sbin.cupsd
>> and the pdf printing works.
> 
> With what did you update it?
>
In /etc/apparmor.d/usr.sbin.cupsd, below the line
  /usr/lib/cups/backend/cups-pdf {
I added the line
  capability mknod,
and I changed two lines from
  @{HOME}/PDF/ rw,
  @{HOME}/PDF/* rw,
to
  @{HOME}/my_pdf_directory/ rw,
  @{HOME}/my_pdf_directory/* rw,


>> The config problem remains unsolved.
> 
> Can you reproduce this problem?
> 
Yes - every time I delete the cups pdf printer and try to add a new
virtual pdf printer, I can select the printer make (Generic) but in the
next step I cannot select a pdf printer type - I have to select the
appropriate ppd file and I have to know where it is.

Bug#862851: vblade-persist: diff for NMU version 0.6-2.1

[Luca Boccassi]

Control: tags 862851 + patch
Control: tags 862851 + pending

[Replace XX with correct value]
Dear maintainer,

I've prepared an NMU for vblade-persist (versioned as 0.6-2.1) and
uploaded it to DELAYED/XX. Please feel free to tell me if I
should delay it longer.

Regards.
diff -u vblade-persist-0.6/debian/changelog vblade-persist-0.6/debian/changelog
--- vblade-persist-0.6/debian/changelog
+++ vblade-persist-0.6/debian/changelog
@@ -1,3 +1,11 @@
+vblade-persist (0.6-2.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Recommend iproute2 instead of transitional package iproute.
+(Closes: #862851)
+
+ -- Luca Boccassi   Fri, 05 Jan 2018 22:51:41 +
+
 vblade-persist (0.6-2) unstable; urgency=low
 
   * Debian packaging update:
diff -u vblade-persist-0.6/debian/control vblade-persist-0.6/debian/control
--- vblade-persist-0.6/debian/control
+++ vblade-persist-0.6/debian/control
@@ -12,7 +12,7 @@
 Section: admin
 Priority: optional
 Depends: vblade, runit (>= 1.8.0-2), ${misc:Depends}
-Recommends: iproute | net-tools
+Recommends: iproute2 | net-tools
 Description: create/manage supervised AoE exports
  This framework uses runit to supervise permanent exports of AoE block
  devices.  It gives administrators simple, fine-grained,


signature.asc
Description: PGP signature

Bug#886476: caja-seahorse: Depends on deprecated libgnome-keyring

[Jeremy Bicha]

Source: caja-seahorse
Version: 1.18.3-1
Severity: serious
User: pkg-gnome-maintain...@lists.alioth.debian.org
Usertags: oldlibs libgnome-keyring-removal

Hi,

The libgnome-keyring library is deprecated and its usage is strongly
discouraged [1].

Your package caja-seahorse declares a build-dependency on
libgnome-keyring-dev or links against libgnome-keyring0.

Please update your application to use libsecret instead [2].
Such a port should ideally happen with upstream being involved.

On behalf of the Debian GNOME team,
Jeremy Bicha

[1] https://git.gnome.org/browse/libgnome-keyring/commit/?id=6a5adea4aec93
[2] https://wiki.gnome.org/Projects/Libsecret

Bug#880554: xen domu freezes with kernel linux-image-4.9.0-4-amd64

[Valentin Vidic]

On Sat, Jan 06, 2018 at 03:08:26PM +0100, Yves-Alexis Perez wrote:
> According to that link, the fix seems to be configuration rather than code.
> Does this mean this bug against the kernel should be closed?

Yes, the problem seems to be in the Xen hypervisor and not the Linux
kernel itself.  The default value for the gnttab_max_frames parameter
needs to be increased to avoid domU disk IO hangs, for example:

  GRUB_CMDLINE_XEN="dom0_mem=10240M gnttab_max_frames=256"

So either close the bug or reassign it to xen-hypervisor package so
they can increase the default value for this parameter in the
hypervisor code.

-- 
Valentin

Bug#886479: lintian: Please detect packages that currently needs R³!=no

[Niels Thykier]

Package: lintian
Version: 2.5.66
Severity: wishlist

Hi,

Please consider adding a check for packages that (at the moment) must
definitely be needing Rules-Requires-Root != no.  A lower-bound on
this would be:

  Any _source_ building at least one _binary_ package containing at
  least one path with ownership different from "root:root".

This check should be at most a wishlist tag and would assist us in
telling how far we are from being able to flip the default for
Rules-Requires-Root.

Thanks,
~Niels

Bug#886224: printer-driver-cups-pdf: Virtual pdf printer error: no output and config problem

[Brian Potkin]

Rudolf - don't forget to reply to the bug. I have sent your last mail
there.


On Sat 06 Jan 2018 at 13:05:12 +0100, Rudolf Polzer wrote:

> >> So I updated /etc/apparmor.d/usr.sbin.cupsd
> >> and the pdf printing works.
> > 
> > With what did you update it?
> >
> In /etc/apparmor.d/usr.sbin.cupsd, below the line
>   /usr/lib/cups/backend/cups-pdf {
> I added the line
>   capability mknod,
> and I changed two lines from
>   @{HOME}/PDF/ rw,
>   @{HOME}/PDF/* rw,
> to
>   @{HOME}/my_pdf_directory/ rw,
>   @{HOME}/my_pdf_directory/* rw,

Thanks. This could help other users experiencing the same problem as
you.
 
> >> The config problem remains unsolved.
> > 
> > Can you reproduce this problem?
> > 
> Yes - every time I delete the cups pdf printer and try to add a new
> virtual pdf printer, I can select the printer make (Generic) but in the
> next step I cannot select a pdf printer type - I have to select the
> appropriate ppd file and I have to know where it is.

/usr/sbin/lpinfo -m | grep ^lsb

gives me a short list of PPDs. The two CUPS-PDF ones are near the top.
With you?

Cheers,

Brian.

Bug#886480: cobbler: CVE-2017-1000469

[Salvatore Bonaccorso]

Source: cobbler
Version: 2.6.6+dfsg1-13
Severity: normal
Tags: upstream security
Forwarded: https://github.com/cobbler/cobbler/issues/1845   

Hi,

the following vulnerability was published for cobbler.

CVE-2017-1000469[0]:
| Cobbler version up to 2.8.2 is vulnerable to a command injection
| vulnerability in the "add repo" component resulting in arbitrary code
| execution as root user.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-1000469
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000469
[1] https://github.com/cobbler/cobbler/issues/1845

Regards,
Salvatore

Bug#886483: sssd gets confused by existing config file

[Juha Jäykkä]

Package: sssd
Version: 1.16.0-3
Severity: minor

Dear Maintainer,

There is a regression in 1.16.0-2 and -3, rendering existing sssd configurations
unable to authenticate users. This happens if the old config file has 

services = nss, pam

in it. This used to be "the right way" of doing things but now with socket 
activated
nss and pam services sssd gets confused and its pam service no longer works. 
Removing
said line fixes it (hence "Severity: minor") but this is highly confusign to 
the admin
as the service seems to be up and running.

The clue is in the log:

Jan 06 14:50:47 rigel sssd_check_socket_activated_responders[8175]: (Sat Jan  6 
14:50:47:876645 2018) [sssd] [main] (0x0010): Misconfiguration found for the 
pam responder.
Jan 06 14:50:47 rigel sssd_check_socket_activated_responders[8175]: The pam 
responder has been configured to be socket-activated but it's still mentioned 
in the services' line in /etc/sssd/sssd.conf.
Jan 06 14:50:47 rigel sssd_check_socket_activated_responders[8175]: Please, 
consider either adjusting your services' line in /etc/sssd/sssd.conf or 
disabling the pam's socket by calling:
Jan 06 14:50:47 rigel sssd_check_socket_activated_responders[8175]: "systemctl 
disable sssd-pam.socket"
Jan 06 14:50:47 rigel systemd[1]: sssd-pam-priv.socket: Control process exited, 
code=exited status=17
Jan 06 14:50:47 rigel systemd[1]: sssd-pam-priv.socket: Failed with result 
'exit-code'.
Jan 06 14:50:47 rigel systemd[1]: Failed to listen on SSSD PAM Service 
responder private socket.
Jan 06 14:50:47 rigel systemd[1]: Dependency failed for SSSD PAM Service 
responder socket.
Jan 06 14:50:47 rigel systemd[1]: sssd-pam.socket: Job sssd-pam.socket/start 
failed with result 'dependency'.
Jan 06 14:50:47 rigel systemd[1]: Listening on SSSD NSS Service responder 
socket.

Note how the log says "please consider" instead of "this is an error, this will 
not work" and
later shows a failure.

>From the first "please consider" message I would presume sssd is supposed to 
>gracefully
recover. The service seems to start when needed and responds to some queries 
but always ends
auth process with

[sssd[pam]] [pam_dp_process_reply] (0x0010): Reply error.

And this means auth failure for pam of course.

Cheers,
Juha

P.S. This may be "works as intended" but considering it took me quite a while 
to figure
out why my existing, working configuration got broken and google came up with 
no help at all,
I would think at least getting this report onto google results would be helpful 
to some people.

Debian Release: buster/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.13.0-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) (ignored: LC_ALL 
set to en_GB.UTF-8), LANGUAGE=en_GB.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set 
to en_GB.UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages sssd depends on:
ii  python3-sss  1.16.0-3
ii  sssd-ad  1.16.0-3
ii  sssd-common  1.16.0-3
ii  sssd-ipa 1.16.0-3
ii  sssd-krb51.16.0-3
ii  sssd-ldap1.16.0-3
ii  sssd-proxy   1.16.0-3

sssd recommends no packages.

sssd suggests no packages.

-- no debconf information

Bug#886484: pgplot5 conflicts with giza-dev; please split it into lib- and -dev

[Sergio Gelato]

Package: pgplot5
Version: 5.2.2-19.3
Severity: wishlist
Tags: patch

It's high time to split pgplot5 into separate library and development
packages. This has been noted before (#648129, #710218) but has become
more important since giza (a GPL-licensed reimplementation of pgplot)
made into Debian and wcslib-dev recommends giza-dev. giza-dev conflicts
with pgplot5, making it harder to develop for giza on a system that has
applications linked with the pgplot5 libraries.

I have actually done this in a private fork of this package. I'm
attaching a patch derived from that work. Caveat: my private fork has
other changes which I've redacted out of the patch; that means I've
tested something similar, but not identical, to what I'm submitting
here. I've had to guess the revision number for the Breaks: and
Replaces: headers; adjust as needed.

As you can see, my proposed split is into:
-- libpgplot5
-- pgplot5-bin
-- pgplot5-dev
-- pgplot5-doc
with a metapackage pgplot5 which depends on all of the above.

The patch also increments Standards-Version: from 3.9.2 to 3.9.8.
A more experienced developer may want to check this (and continue on
to 4.1.3 or whatever will be current by the time this gets acted on).

I was tempted to add multiarch support (see #710218) but noticed
that grfont.dat is potentially architecture-dependent (especially when
mixing architectures with different endianness, e.g., on MIPS) and
decided to wait.
diff -ruN 19.3/debian/compat 19.4/debian/compat
--- 19.3/debian/compat	2006-07-15 20:18:19.0 +0200
+++ 19.4/debian/compat	2018-01-06 16:12:22.346255108 +0100
@@ -1 +1 @@
-5
+9
diff -ruN 19.3/debian/control 19.4/debian/control
--- 19.3/debian/control	2012-03-05 05:47:09.0 +0100
+++ 19.4/debian/control	2018-01-06 16:14:39.713263091 +0100
@@ -3,23 +3,96 @@
 Priority: optional
 Maintainer: Carlo Segre 
 XS-Autobuild: yes
-Build-Depends: debhelper (>= 5.0), gfortran, libpng-dev, zlib1g-dev, perl, 
+Build-Depends: debhelper (>= 9), gfortran, libpng-dev, zlib1g-dev, perl, 
 libx11-dev, libxaw7-dev, libxt-dev, x11proto-core-dev, libgif-dev
 Homepage: http://www.astro.caltech.edu/~tjp/pgplot/
-Standards-Version: 3.9.2
+Standards-Version: 3.9.8
 
 Package: pgplot5
-Architecture: any
-Depends: ${shlibs:Depends}, zlib1g, ${misc:Depends}
-Suggests: gfortran, libpng-dev, zlib1g-dev, libx11-dev, libxaw7-dev, 
-libxt-dev, x11proto-core-dev, libgif-dev
+Architecture: all
+Depends: pgplot5-bin, pgplot5-dev, pgplot5-doc, ${misc:Depends}
 Replaces: pgplot
 Conflicts: pgplot
-Description: large subroutine library for plotting scientific data
- This package contains both runtime and development libraries.  Many
- routines are included in pgplot for viewing scientific data. Many
- (about 70) output devices are supported.  2-D , 3-D , contour, image
- manipulation, etc. are well supported. Interactive routines are
- included. Both a C and a FORTRAN library are present. See
- http://astro.caltech.edu/~tjp/pgplot/ for documentation.
+Description: Fortran- and C-callable libraries for plotting scientific data
+ PGPLOT is a Fortran- or C-callable, device-independent graphics package for
+ making simple scientific graphs. It is intended for making graphical images
+ of publication quality with minimum effort on the part of the user. For most
+ applications, the program can be device-independent, and the output can be
+ directed to the appropriate device at run time. About 70 different kinds of
+ output device are supported. 2-D , 3-D , contour, image manipulation, etc.
+ are supported. Interactive routines are included.
+ .
+ This metapackage installs the development files and the documentation as well
+ as the library.
+
+Package: libpgplot5
+Architecture: any
+Depends: ${shlibs:Depends}, ${misc:Depends}
+Recommends: pgplot5-bin
+Breaks: pgplot5 (<< 5.2.2-19.4)
+Replaces: pgplot5 (<< 5.2.2-19.4)
+Description: PGPLOT shared library, version 5
+ PGPLOT is a Fortran- or C-callable, device-independent graphics package for
+ making simple scientific graphs. It is intended for making graphical images
+ of publication quality with minimum effort on the part of the user. For most
+ applications, the program can be device-independent, and the output can be
+ directed to the appropriate device at run time. About 70 different kinds of
+ output device are supported. 2-D , 3-D , contour, image manipulation, etc.
+ are supported. Interactive routines are included.
+ .
+ This package contains the shared libraries.
+ 
+Package: pgplot5-bin
+Architecture: any
+Depends: ${shlibs:Depends}, ${misc:Depends}
+Breaks: pgplot5 (<< 5.2.2-19.4)
+Replaces: pgplot5 (<< 5.2.2-19.4)
+Description: Supporting executable programs for PGPLOT
+ PGPLOT is a Fortran- or C-callable, device-independent graphics package for
+ making simple scientific graphs. It is intended for making graphical images
+ of publication quality with minimum effort on the part of the user. For most
+ applications, the program can be 

Bug#886470: nvidia-kernel-dkms: FTBFS against linux 4.14.12-2

[Luca Boccassi]

Control: tags -1 pending

On Sat, 6 Jan 2018 14:51:40 +0100 Sebastian Ramacher  wrote:
> Package: nvidia-kernel-dkms
> Version: 384.98-3
> Severity: grave
> Justification: renders package unusable
> 
> The build of kernel module fails against linux 4.14.12-2:
> | make: Entering directory '/usr/src/linux-headers-4.14.0-3-amd64'
> | /usr/src/linux-headers-4.14.0-3-common/Makefile:947: *** "Cannot
generate ORC metadata for CONFIG_UNWINDER_ORC=y, please install libelf-
dev, libelf-devel or elfutils-libelf-devel".  Stop.

See #886474 - I have added the dependency to the dkms packages as a
workaround.


> After installing libelf-dev, it fails further down:
> |gcc-7 -Wp,-MD,/var/lib/dkms/nvidia-current/384.98/build/nvidia-
uvm/.uvm8_pte_batch.o.d  -nostdinc -isystem /usr/lib/gcc/x86_64-linux-
gnu/7/include -I/usr/src/linux-headers-4.14.0-3-common/arch/x86/include 
-I./arch/x86/include/generated  -I/usr/src/linux-headers-4.14.0-3-
common/include -I./include -I/usr/src/linux-headers-4.14.0-3-
common/arch/x86/include/uapi -I./arch/x86/include/generated/uapi
-I/usr/src/linux-headers-4.14.0-3-common/include/uapi
-I./include/generated/uapi -include /usr/src/linux-headers-4.14.0-3-
common/include/linux/kconfig.h  -I/var/lib/dkms/nvidia-
current/384.98/build -I/var/lib/dkms/nvidia-current/384.98/build
-D__KERNEL__ -Wall -Wundef -Wstrict-prototypes -Wno-trigraphs -fno-
strict-aliasing -fno-common -fshort-wchar -Werror-implicit-function-
declaration -Wno-format-security -std=gnu89 -fno-PIE -mno-sse -mno-mmx
-mno-sse2 -mno-3dnow -mno-avx -m64 -falign-jumps=1 -falign-loops=1
-mno-80387 -mno-fp-ret-in-387 -mpreferred-stack-boundary=3 -mskip-rax-
setup -mtune=generic -mno-red-zone -mcmodel=kernel -funit-at-a-time
-DCONFIG_X86_X32_ABI -DCONFIG_AS_CFI=1 -DCONFIG_AS_CFI_SIGNAL_FRAME=1
-DCONFIG_AS_CFI_SECTIONS=1 -DCONFIG_AS_FXSAVEQ=1 -DCONFIG_AS_SSSE3=1
-DCONFIG_AS_CRC32=1 -DCONFIG_AS_AVX=1 -DCONFIG_AS_AVX2=1
-DCONFIG_AS_AVX512=1 -DCONFIG_AS_SHA1_NI=1 -DCONFIG_AS_SHA256_NI=1
-pipe -Wno-sign-compare -fno-asynchronous-unwind-tables -fno-delete-
null-pointer-checks -Wno-frame-address -Wno-format-truncation -Wno-
format-overflow -Wno-int-in-bool-context -O2 --param=allow-store-data-
races=0 -DCC_HAVE_ASM_GOTO -Wframe-larger-than=2048 -fstack-protector-
strong -Wno-unused-but-set-variable -Wno-unused-const-variable -fno-
var-tracking-assignments -g -pg -mfentry -DCC_USING_FENTRY
-Wdeclaration-after-statement -Wno-pointer-sign -fno-strict-overflow
-fno-stack-check -fconserve-stack -Werror=implicit-int -Werror=strict-
prototypes -Werror=date-time -Werror=incompatible-pointer-types
-Werror=designated-init  -I/var/lib/dkms/nvidia-
current/384.98/build/common/inc  -I/var/lib/dkms/nvidia-
current/384.98/build -Wall -MD -Wsign-compare -Wno-cast-qual -Wno-error 
-D__KERNEL__ -DMODULE -DNVRM -DNV_VERSION_STRING=\"384.98\" -Wno-
unused-function -Wuninitialized -fno-strict-aliasing -mno-red-zone
-mcmodel=kernel -DNV_UVM_ENABLE -Wno-sign-compare -Wno-format-extra-
args -Werror=undef -O2 -DNVIDIA_UVM_ENABLED
-DNVIDIA_UNDEF_LEGACY_BIT_MACROS -DLinux -D__linux__  -
I/var/lib/dkms/nvidia-current/384.98/build/nvidia-uvm  -DMODULE  -
DKBUILD_BASENAME='"uvm8_pte_batch"'  -DKBUILD_MODNAME='"nvidia_uvm"' -c
-o /var/lib/dkms/nvidia-current/384.98/build/nvidia-
uvm/.tmp_uvm8_pte_batch.o /var/lib/dkms/nvidia-
current/384.98/build/nvidia-uvm/uvm8_pte_batch.c
> | In file included from /usr/src/linux-headers-4.14.0-3-
common/arch/x86/include/asm/cpufeature.h:5:0,
> |  from /usr/src/linux-headers-4.14.0-3-
common/arch/x86/include/asm/thread_info.h:53,
> |  from /usr/src/linux-headers-4.14.0-3-
common/include/linux/thread_info.h:38,
> |  from /usr/src/linux-headers-4.14.0-3-
common/arch/x86/include/asm/preempt.h:7,
> |  from /usr/src/linux-headers-4.14.0-3-
common/include/linux/preempt.h:81,
> |  from /usr/src/linux-headers-4.14.0-3-
common/include/linux/spinlock.h:51,
> |  from /var/lib/dkms/nvidia-
current/384.98/build/common/inc/nv-lock.h:16,
> |  from /var/lib/dkms/nvidia-
current/384.98/build/common/inc/nv-linux.h:19,
> |  from /var/lib/dkms/nvidia-
current/384.98/build/nvidia-uvm/uvm_linux.h:39,
> |  from /var/lib/dkms/nvidia-
current/384.98/build/nvidia-uvm/uvm8_va_block.c:24:
> | /var/lib/dkms/nvidia-current/384.98/build/nvidia-
uvm/uvm8_va_block.c: In function ‘block_cpu_fault_locked’:
> | /usr/src/linux-headers-4.14.0-3-
common/arch/x86/include/asm/processor.h:826:39: error: implicit
declaration of function ‘task_stack_page’; did you mean
‘task_stack_vm_area’? [-Werror=implicit-function-declaration]
> |   unsigned long __ptr = (unsigned long)task_stack_page(task); \
> |^
> | /usr/src/linux-headers-4.14.0-3-
common/arch/x86/include/asm/processor.h:909:26: note: in expansion of
macro ‘task_pt_regs’
> |  #define KSTK_EIP(task)  

Bug#886484: Previous patch was incomplete; here is the missing chunk

[Sergio Gelato]

My previous submission omitted a simple but crucial part of the debian/rules
patch. Here it is. dh rules!
diff -ru a/debian/rules b/debian/rules
--- a/debian/rules	2018-01-06 17:43:47.663008942 +0100
+++ b/debian/rules	2018-01-06 17:46:56.633108575 +0100
@@ -115,95 +115,9 @@
 	$(INSTALL_DATA) $(bdir)/rgb.txt $(packagedir)/usr/lib/$(npackage)
 	$(INSTALL_DATA) $(bdir)/grpckg1.inc $(packagedir)/usr/lib/$(npackage)
 
-	#dh_movefiles
 	touch install-stamp
 	  
-binary-indep: build install
-#	$(checkdir)
-# There are no architecture-independent files to be uploaded
-# generated by this package.  If there were any they would be
-# made here.
-
-binary-arch: build install
-# dh_testversion	
-	dh_testdir -a
-	dh_testroot -a
-#	-rm -rf $(packagedir)
-#	install -d  $(packagedir)/DEBIAN
-
-# Insert appropriate lines into shlibs file
-#
-#	echo -e '$(shl1)\n' >$(packagedir)/DEBIAN/shlibs
-
-#	install -d $(packagedir)/usr/doc/$(npackage)/examples
-#	install -d $(packagedir)/usr/lib/$(npackage)
-#	install -d $(packagedir)/usr/bin
-#	cd $(packagedir) && install -d `cat ../dirs`
-
-	$(INSTALL_DATA) $(bdir)/pgplot.doc $(packagedir)/usr/share/doc/$(npackage)
-	$(GZIP_DATA) $(packagedir)/usr/share/doc/$(npackage)/pgplot.doc
-#	cp  pgdispd/aaaread.me  $(packagedir)/usr/share/doc/$(npackage)/pgdisp.txt
-#	$(GZIP_DATA) $(packagedir)/usr/share/doc/$(npackage)/pgdisp.txt
-	$(INSTALL_DATA) $(bdir)/drivers.list $(packagedir)/usr/share/doc/$(npackage)
-	$(GZIP_DATA) $(packagedir)/usr/share/doc/$(npackage)/drivers.list
-	$(INSTALL_DATA) $(bdir)/pgplot-routines.tex $(packagedir)/usr/share/doc/$(npackage)
-	$(GZIP_DATA) $(packagedir)/usr/share/doc/$(npackage)/pgplot-routines.tex
-	$(INSTALL_DATA) $(bdir)/pgplot.html $(packagedir)/usr/share/doc/$(npackage)
-	$(INSTALL_DATA) cpg/cpgplot.doc $(packagedir)/usr/share/doc/$(npackage)
-	$(GZIP_DATA) $(packagedir)/usr/share/doc/$(npackage)/cpgplot.doc
-#	$(INSTALL_DATA) cpg/cpgdemo.c $(packagedir)/usr/share/doc/$(npackage)/examples
-#	$(INSTALL_DATA) debian/pgplot.3x $(packagedir)/usr/man/man3
-#	gzip -9v $(packagedir)/usr/man/man3/*
-	dh_installman
-	dh_installdocs
-	$(INSTALL_DATA) aaaread.me $(packagedir)/usr/share/doc/$(npackage)
-#	$(INSTALL_DATA) install-unix.txt $(packagedir)/usr/share/doc/$(npackage)
-	$(INSTALL_DATA) ver5*.txt $(packagedir)/usr/share/doc/$(npackage)
-	dh_installexamples examples/*.f
-	dh_installexamples cpg/cpgdemo.c	
-#	cp examples/* $(packagedir)/usr/share/doc/$(npackage)/examples
-
-
-# Install installation scripts
-#
-#	cp debian/postinst $(packagedir)/DEBIAN/.
-#	chmod +x $(packagedir)/DEBIAN/postinst
-
-	dh_installchangelogs
-	$(INSTALL_DATA) debian/copyright $(packagedir)/usr/share/doc/$(npackage)
-	$(INSTALL_DATA) debian/changelog $(packagedir)/usr/share/doc/$(npackage)/changelog.Debian
-	$(GZIP_DATA) $(packagedir)/usr/share/doc/$(npackage)/changelog.Debian
-	dh_strip -a $(packagedir)/usr/bin/*
-	dh_makeshlibs -a
-	dh_link -a
-#	dh_dhelp 
-	dh_compress -a 
-	dh_fixperms -a
-#	dh_suidregister -a 
-	dh_installdeb -a 
-	dh_shlibdeps -a
-	dh_gencontrol -a
-	dh_md5sums -a
-	dh_builddeb -a
-
-#	cp debian/README.debian $(packagedir)/usr/doc/$(npackage)
-#	cp debian/changelog $(packagedir)/usr/doc/$(npackage)/changelog.Debian
-#	gzip -9v $(packagedir)/usr/doc/$(npackage)/changelog.Debian
-#	cp debian/copyright $(packagedir)/usr/doc/$(npackage)
-#	dpkg-shlibdeps $(packagedir)/usr/lib/libpgplot.so.$(version)
-#	dpkg-gencontrol
-#	chown -R root.root $(packagedir)
-#	chmod -R go=rX $(packagedir)
-#	dpkg --build $(packagedir) ..
-
-#define checkdir
-#	test -f debian/rules
-#endef
-
-binary: binary-indep binary-arch
-
-#checkroot:
-#	$(checkdir)
-#	test root = "`whoami`"
+binary binary-arch binary-indep: build install
+	dh $@
 
 .PHONY: build clean binary-indep binary-arch binary install

Bug#886384: rxvt-unicode: font issue with FreeType 2.8 and TrueType fonts

[Ryan Kavanagh]

Control: tags -1 + moreinfo

Hi Vincent,

Could you please let us know which fonts you're experiencing this with  and the
relevant urxvt settings so that we can reproduce this?

Best wishes,
Ryan

-- 
|_)|_/  Ryan Kavanagh  | GPG: 4E46 9519 ED67 7734 268F
| \| \  https://ryanak.ca/ |  BD95 8F7B F8FC 4A11 C97A


signature.asc
Description: PGP signature

Bug#886488: cinnamon: Font rendering issue

[Tiago Bortoletto Vaz]

Package: cinnamon
Version: 3.4.6-1
Severity: normal

Hi,

Considering this is only happening when using Cinnamon as my desktop
environment I'm reporting it here. Be free to forward to the proper team if
needed, or to ask for further info.

This is how the default font is being rendered in any application using 
Cinnamon in my PC: https://i.imgur.com/IiSF22N.png

Bests,

-- System Information:
Debian Release: 9.1
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.11.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages cinnamon depends on:
ii  cinnamon-common  3.4.6-1
ii  cinnamon-control-center  3.4.0-2
ii  cinnamon-desktop-data3.4.2-2
ii  cinnamon-screensaver 3.4.2-1
ii  cinnamon-session 3.4.2-1
ii  cinnamon-settings-daemon 3.4.4-2
ii  cjs  3.2.0-3
ii  cups-pk-helper   0.2.6-1+b1
ii  dconf-gsettings-backend [gsettings-backend]  0.26.0-2+b1
ii  gir1.2-accountsservice-1.0   0.6.43-1
ii  gir1.2-caribou-1.0   0.4.21-1+b1
ii  gir1.2-clutter-1.0   1.26.0+dfsg-3
ii  gir1.2-cmenu-3.0 3.2.0-3
ii  gir1.2-cogl-1.0  1.22.2-2
ii  gir1.2-cvc-1.0   3.2.4-4
ii  gir1.2-gdkpixbuf-2.0 2.36.5-2
ii  gir1.2-gkbd-3.0  3.22.0.1-1+b1
ii  gir1.2-glib-2.0  1.50.0-1+b1
ii  gir1.2-gnomedesktop-3.0  3.22.2-1
ii  gir1.2-gtk-3.0   3.22.16-1
ii  gir1.2-gtkclutter-1.01.8.2-2
ii  gir1.2-keybinder-3.0 0.3.1-1
ii  gir1.2-meta-muffin-0.0   3.4.1-1
ii  gir1.2-networkmanager-1.01.8.0-5
ii  gir1.2-notify-0.70.7.7-2
ii  gir1.2-pango-1.0 1.40.11-1
ii  gir1.2-polkit-1.00.105-18
ii  gir1.2-soup-2.4  2.56.0-2+deb9u1
ii  gir1.2-upowerglib-1.00.99.4-4+b1
ii  gir1.2-xapp-1.0  1.0.2-1
ii  gkbd-capplet 3.22.0.1-1+b1
ii  gnome-backgrounds3.22.1-1
ii  gnome-themes-standard3.22.3-1
ii  gsettings-desktop-schemas3.22.0-1
ii  iso-flags-png-320x2401.0.1-1
ii  libatk-bridge2.0-0   2.22.0-2
ii  libatk1.0-0  2.22.0-1
ii  libc62.25-5
ii  libcairo21.15.8-3
ii  libcinnamon-menu-3-0 3.2.0-3
ii  libcjs0  3.2.0-3
ii  libclutter-1.0-0 1.26.0+dfsg-3
ii  libcogl-pango20  1.22.2-2
ii  libcogl-path20   1.22.2-2
ii  libcogl201.22.2-2
ii  libcroco30.6.11-3
ii  libgdk-pixbuf2.0-0   2.36.5-2
ii  libgirepository-1.0-11.50.0-1+b1
ii  libgl1-mesa-glx [libgl1] 13.0.6-1+b2
ii  libglib2.0-0 2.54.2-3
ii  libglib2.0-bin   2.54.2-3
ii  libgstreamer1.0-01.12.4-1
ii  libgtk-3-0   3.22.16-1
ii  libjs-jquery 3.1.1-2
ii  libmuffin0   3.4.1-1
ii  libpango-1.0-0   1.40.11-1
ii  libpangocairo-1.0-0  1.40.11-1
ii  libstartup-notification0 0.12-4+b2
ii  libx11-6 2:1.6.4-3
ii  libxfixes3   1:5.0.3-1
ii  libxml2  2.9.4+dfsg1-2.2+deb9u1
ii  mesa-utils   8.3.0-5
ii  muffin   3.4.1-1
ii  nemo 3.4.7-1
ii  policykit-1-gnome0.105-6
ii  python   2.7.13-2
ii  python-dbus  1.2.4-1+b1
ii  python-gi-cairo  3.22.0-2
ii  python-lxml  3.8.0-1
ii  python-pam   0.4.2-13.2
ii  python-pexpect   4.2.1-1
ii 

Bug#886490: Reference generating sbuild chroots using propellor

[Sean Whitton]

Package: sbuild
Severity: wishlist

Dear maintainer,

On IRC you suggested filing a wishlist bug requesting documentation about how 
to generate an sbuild chroot using propellor.  Here is that bug :)  The docs to 
incorporate/point to are here: 
http://hackage.haskell.org/package/propellor/docs/Propellor-Property-Sbuild.html

Also useful might be: https://spwhitton.name/blog/entry/propellorsbuild/

Thanks.

-- 
Sean Whitton

Bug#886489: FTBFS: json_object.c:554:5: error: this statement may fall through [-Werror=implicit-fallthrough=]

[Jonas Meurer]

Source: json-c
Version: 0.12.1-1
Severity: serious
Justification: fails to build from source

Dear Maintainer,

json-c fails to build from source due to a potential implicit
fall-through in function json_object_get_int64() from json_object.c:

libtool: compile:  gcc -DHAVE_CONFIG_H -I. -Wdate-time -D_FORTIFY_SOURCE=2 
-Wall -Werror -Wno-error=deprecated-declarations 
-Wno-error=unused-but-set-variable -Wextra -Wwrite-strings 
-Wno-unused-parameter -std=gnu99 -D_GNU_SOURCE -D_REENTRANT -g -O2 
-fdebug-prefix-map=/<>=. -fstack-protector-strong -Wformat 
-Werror=format-security -c json_object.c  -fPIC -DPIC -o .libs/json_object.o
json_object.c: In function 'json_object_get_int64':
json_object.c:554:5: error: this statement may fall through 
[-Werror=implicit-fallthrough=]
  if (json_parse_int64(jso->o.c_string.str, ) == 0) return cint;
 ^
json_object.c:555:3: note: here
   default:
   ^~~
cc1: all warnings being treated as errors
Makefile:578: recipe for target 'json_object.lo' failed
make[3]: *** [json_object.lo] Error 1
make[3]: Leaving directory '/<>'


A quick look at the latest upstream release gave me the impression that
his might have been fixed upstream in release 0.13:

https://github.com/json-c/json-c/blob/json-c-0.13-20171207/json_object.c#L697-L703

Cheers
 jonas

-- System Information:
Debian Release: 9.3
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-5-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) (ignored: LC_ALL 
set to en_US.UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set 
to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#886477: gthumb: Drop Build-Depends on libgnome-keyring-dev

[Herbert Fortes]

Hi Jeremy Bicha,

> Source: gthumb
> Version: 3:3.6.0-2
> Severity: important
> User: pkg-gnome-maintain...@lists.alioth.debian.org
> Usertags: oldlibs libgnome-keyring-removal
> Tags: patch
> 
> Hi,
> 
> The libgnome-keyring library is deprecated and its usage is strongly
> discouraged [1].
> 
> Your package gthumb declares a build-dependency on
> libgnome-keyring-dev, but it looks like this is unused since gthumb
> already uses libsecret instead [2].
> 
> Please drop that Build-Depends since we are trying to remove
> libgnome-keyring from Debian Buster. (No patch attached but this is a
> trivial fix.)
> 
> On behalf of the Debian GNOME team,
> Jeremy Bicha
> 
> [1] https://git.gnome.org/browse/libgnome-keyring/commit/?id=6a5adea4aec93
> [2] https://wiki.gnome.org/Projects/Libsecret
> 

I will change the build-dep. And I also already
asked to change the information on the homepage 
of Gthumb.



Regards,
Herbert

Bug#886474: linux-headers-4.14.0-3-amd64: missing dependency on libelf-dev

[Sebastian Ramacher]

Package: linux-headers-4.14.0-3-amd64
Version: 4.14.12-2
Severity: important

(I am not sure if this is the correct package, so please reassign as you see
fit.)

Since the upgrade to 4.14.12-2 the virtualbox and nvidia kernel modules
(#886470) fail to build with:
| make: Entering directory '/usr/src/linux-headers-4.14.0-3-amd64'
| /usr/src/linux-headers-4.14.0-3-common/Makefile:947: *** "Cannot generate ORC 
metadata for CONFIG_UNWINDER_ORC=y, please install libelf-dev, libelf-devel or 
elfutils-libelf-devel".  Stop.

After installing libelf-dev as suggested, this part succeeds and the build
continues. Please add libelf-dev to the dependencies.

Cheers

-- System Information:
Debian Release: buster/sid
  APT prefers unstable-debug
  APT policy: (650, 'unstable-debug'), (650, 'buildd-unstable'), (650, 
'unstable'), (601, 'testing'), (600, 'experimental-debug'), (600, 
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.14.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8), LANGUAGE=en_US:en 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages linux-headers-4.14.0-3-amd64 depends on:
ii  linux-compiler-gcc-7-x86   4.14.12-2
ii  linux-headers-4.14.0-3-common  4.14.12-2
ii  linux-kbuild-4.14  4.14.12-2

linux-headers-4.14.0-3-amd64 recommends no packages.

linux-headers-4.14.0-3-amd64 suggests no packages.

-- no debconf information

-- 
Sebastian Ramacher


signature.asc
Description: PGP signature

Bug#753719: ucarp: diff for NMU version 1.5.2-2.1

[Luca Boccassi]

Control: tags 753719 + patch
Control: tags 753719 + pending
Control: severity -1 serious

Dear maintainer,

I've prepared an NMU for ucarp (versioned as 1.5.2-2.1) and
uploaded it to DELAYED/5. Please feel free to tell me if I
should delay it longer.

Kind regards,
Luca Boccassi
diff -u ucarp-1.5.2/debian/changelog ucarp-1.5.2/debian/changelog
--- ucarp-1.5.2/debian/changelog
+++ ucarp-1.5.2/debian/changelog
@@ -1,3 +1,11 @@
+ucarp (1.5.2-2.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Recommend iproute2 instead of transitional package iproute.
+(Closes: #753719)
+
+ -- Luca Boccassi   Fri, 05 Jan 2018 22:48:28 +
+
 ucarp (1.5.2-2) unstable; urgency=medium
 
   * Actually update config.{sub,guess}, (Closes: #727515, #744534).
diff -u ucarp-1.5.2/debian/control ucarp-1.5.2/debian/control
--- ucarp-1.5.2/debian/control
+++ ucarp-1.5.2/debian/control
@@ -14,7 +14,7 @@
 Package: ucarp
 Architecture: any
 Depends: ${shlibs:Depends}, ${misc:Depends}, ifupdown (>= 0.7.1)
-Recommends: iproute
+Recommends: iproute2
 Description: user-space replacement to VRRP -- automatic IP fail-over
  UCARP allows a pair of hosts to share common virtual IP addresses in 
  order to provide automatic fail-over. It is a portable user-land 


signature.asc
Description: PGP signature

Bug#883628: ITP: ioport -- direct access to I/O ports from the command line

[Lubomir Rintel]

On Fri, 5 Jan 2018 16:13:19 +0100 Tobias Frost  wrote:
> You want Debian revision -1, not -4..
> Sorry, have ask you again for another iteration...

https://mentors.debian.net/debian/pool/main/i/ioport/ioport_1.2-1.dsc

Thanks for your patience
Lubo

Bug#886224: printer-driver-cups-pdf: Virtual pdf printer error: no output and config problem

[Rudolf Polzer]

/usr/sbin/lpinfo -m | grep ^lsb
returns nothing here.

I used /usr/share/ppd/cups-pdf/CUPS-PDF_opt.ppd

The other file there (noopt instead of opt) works as well.

Bug#886486: pycurl: Please package latest upstream version 7.43.0.1

[Iain R. Learmonth]

Source: pycurl
Version: 7.43.0-2
Severity: normal

Hi,

The latest upstream version includes two of my patches adding support
for CURLOPT_CONNECT_TO and CURLINFO_HTTP_VERSION which are needed for
the upcoming release of my package "pathspider".

Please package this latest release, or consider including the two
patches that are needed for the new version of pathspider to function
correctly:

https://github.com/pycurl/pycurl/commit/d45c84812512e06bf8f9d7292b7365e5265bc380.patch
https://github.com/pycurl/pycurl/commit/9b34fef87f947ee95945e02b0d261f49d3eab792.patch

Thanks,
Iain.

-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.13.0-1-amd64 (SMP w/16 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_GB:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#882833:

[Thomas Preud'homme]

Changing ServerPath in ~/.config/akonadi/akonadiserverrc to /usr/sbin/mysqld-
akonadi solved the issue for me. Maybe this should be updated automatically 
somehow?

Best regards,

Thomas

signature.asc
Description: This is a digitally signed message part.

Bug#886224: printer-driver-cups-pdf: Virtual pdf printer error: no output and config problem

[Brian Potkin]

On Sat 06 Jan 2018 at 17:20:17 +0100, Rudolf Polzer wrote:

> /usr/sbin/lpinfo -m | grep ^lsb
> returns nothing here.

The CUPS web interface basically uses lpinfo to get lists of PPDs for
the printer models. Which is why there was nothing there to be selected
for the PDF printer. Very strange.

> I used /usr/share/ppd/cups-pdf/CUPS-PDF_opt.ppd
> 
> The other file there (noopt instead of opt) works as well.

/usr/share/ppd/ should contain at least cups-pdf, cupsfilters and custom
directories. The cupsfilters directory should have six files in it. If
you do 'lpinfo -m | less' and search for any of these files, do you find
them? (Check, as root, that the timestamp of /var/cache/cups/ppds.dat has
changed after using lpinfo).

Cheers,

Brian.

Bug#885282: gameclock: Depends on unmaintained pygtk

[Antoine Beaupré]

Control: forwarded -1 https://gitlab.com/anarcat/gameclock/issues/1

Understood.

Bug#886473: apt-setup lacks a dependency on gnupg

[Martin]

Package: apt-setup
Version: 1:0.134

Using additional repositories by preseeding with apt-setup/local0/repository 
and apt-setup/local0/key is currently broken, causing the installation to 
fail with a non-obvious error message at a late stage of the install. The 
reason seems to be that apt-key fails on line 38 of generators/60local, 
since apt requires gnupg to be installed for the attempted operation.


Until recently, base-installer has always pulled in gnupg. Presumably due to 
some other package depending on it. This is no longer the case.


As long as 60local is implemented as is, and the example-preseed.txt 
documents the use of additional repositories, apt-setup should ensure 
installing from additional repositories works.


My undestanding of prepare_gpg_home() in cmdline/apt-key.in of apt is that 
it is an active choice to not have apt itself depend on gnupg, thus making 
it the responsibility of the caller.


I can see that there is a wishlist bug #877013 addressing a similar issue. 
Don't know more about it's status than the bug report reveals, but would 
consider this is a separate issue of higher severity since it now actually 
breaks functionality rather than merely is about adding more granular 
security controls.


A work around which helped me and might be interesting for other bitten by 
this bug is to add "d-i base-installer/includes string gnupg" to the preseed 
file.


Unfortunately I cannot provide a patch, since I do not fully understand 
which mechanism to use to make a udeb of the installer environment pull in a 
package in the base-install of the target system. None of the packages I 
could suspect to be changed have seen any recent relevant commit activity, 
so I can't figure out exactly what made this break. It should not make much 
difference since it likely has been a missing dependency in apt-setup all 
along.

--
/Martin

Bug#824679: ipkungfu: diff for NMU version 0.6.1-6.2

[Luca Boccassi]

Control: tags 824679 + patch
Control: tags 824679 + pending

[Replace XX with correct value]
Dear maintainer,

I've prepared an NMU for ipkungfu (versioned as 0.6.1-6.2) and
uploaded it to DELAYED/XX. Please feel free to tell me if I
should delay it longer.

Regards.
diff -u ipkungfu-0.6.1/debian/changelog ipkungfu-0.6.1/debian/changelog
--- ipkungfu-0.6.1/debian/changelog
+++ ipkungfu-0.6.1/debian/changelog
@@ -1,3 +1,11 @@
+ipkungfu (0.6.1-6.2) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Depend on iproute2 instead of transitional package iproute.
+(Closes: #824679)
+
+ -- Luca Boccassi   Fri, 05 Jan 2018 22:59:11 +
+
 ipkungfu (0.6.1-6.1) unstable; urgency=medium
 
   * Non-maintainer upload.
diff -u ipkungfu-0.6.1/debian/control ipkungfu-0.6.1/debian/control
--- ipkungfu-0.6.1/debian/control
+++ ipkungfu-0.6.1/debian/control
@@ -11,7 +11,7 @@
 Architecture: any
 Depends:
  iptables (>= 1.2.7),
- iproute,
+ iproute2,
  kmod,
  ${shlibs:Depends},
  ${misc:Depends}


signature.asc
Description: PGP signature

Bug#841001: arno-iptables-firewall: diff for NMU version 2.0.1.f-1.1

[Luca Boccassi]

Control: tags 841001 + patch
Control: tags 841001 + pending

[Replace XX with correct value]
Dear maintainer,

I've prepared an NMU for arno-iptables-firewall (versioned as 2.0.1.f-1.1) and
uploaded it to DELAYED/XX. Please feel free to tell me if I
should delay it longer.

Regards.
diff -Nru arno-iptables-firewall-2.0.1.f/debian/changelog arno-iptables-firewall-2.0.1.f/debian/changelog
--- arno-iptables-firewall-2.0.1.f/debian/changelog	2015-12-29 19:23:27.0 +
+++ arno-iptables-firewall-2.0.1.f/debian/changelog	2018-01-05 22:57:30.0 +
@@ -1,3 +1,11 @@
+arno-iptables-firewall (2.0.1.f-1.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Depend on iproute2 instead of transitional package iproute.
+(Closes: #841001)
+
+ -- Luca Boccassi   Fri, 05 Jan 2018 22:57:30 +
+
 arno-iptables-firewall (2.0.1.f-1) unstable; urgency=medium
 
   * Bumped Standards-Version to 3.9.6; no changes necessary.
diff -Nru arno-iptables-firewall-2.0.1.f/debian/control arno-iptables-firewall-2.0.1.f/debian/control
--- arno-iptables-firewall-2.0.1.f/debian/control	2015-12-29 18:58:09.0 +
+++ arno-iptables-firewall-2.0.1.f/debian/control	2018-01-05 22:57:20.0 +
@@ -15,7 +15,7 @@
  gawk,
  debconf | cdebconf,
  ${misc:Depends},
- iproute
+ iproute2
 Recommends: curl,
 dnsutils,
 rsyslog (>= 5.8.1-1~)


signature.asc
Description: PGP signature

Bug#862847: apf-firewall: diff for NMU version 9.7+rev1-5.1

[Luca Boccassi]

Control: tags 862847 + patch
Control: tags 862847 + pending

[Replace XX with correct value]
Dear maintainer,

I've prepared an NMU for apf-firewall (versioned as 9.7+rev1-5.1) and
uploaded it to DELAYED/XX. Please feel free to tell me if I
should delay it longer.

Regards.
diff -u apf-firewall-9.7+rev1/debian/changelog apf-firewall-9.7+rev1/debian/changelog
--- apf-firewall-9.7+rev1/debian/changelog
+++ apf-firewall-9.7+rev1/debian/changelog
@@ -1,3 +1,11 @@
+apf-firewall (9.7+rev1-5.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Depend on iproute2 instead of transitional package iproute.
+(Closes: #862847)
+
+ -- Luca Boccassi   Fri, 05 Jan 2018 22:54:06 +
+
 apf-firewall (9.7+rev1-5) unstable; urgency=medium
 
   * QA upload
diff -u apf-firewall-9.7+rev1/debian/control apf-firewall-9.7+rev1/debian/control
--- apf-firewall-9.7+rev1/debian/control
+++ apf-firewall-9.7+rev1/debian/control
@@ -8,7 +8,7 @@
 
 Package: apf-firewall
 Architecture: all
-Depends: ${misc:Depends}, iptables, lsb-base, wget, iproute
+Depends: ${misc:Depends}, iptables, lsb-base, wget, iproute2
 Description: easy iptables based firewall system
  Advanced Policy Firewall (APF) is an iptables(netfilter) based firewall
  system designed around the essential needs of today's Internet deployed


signature.asc
Description: PGP signature

Bug#753723: still using transitional package dependency, will become uninstallable

[Luca Boccassi]

Control: severity 753723 serious
Control: severity 841001 serious
Control: severity 824679 serious
Control: severity 862847 serious
Control: severity 862851 serious

Apparently gedit (without closing the window after save) + mutt is not
a good combination...

The uploads are to DELAYED/5.

Kind regards,
Luca Boccassi

signature.asc
Description: This is a digitally signed message part

Bug#880554: xen domu freezes with kernel linux-image-4.9.0-4-amd64

[Yves-Alexis Perez]

control: reassign -1 xen-hypervisor-4.8-amd64

On Sat, 2018-01-06 at 15:23 +0100, Valentin Vidic wrote:
> On Sat, Jan 06, 2018 at 03:08:26PM +0100, Yves-Alexis Perez wrote:
> > According to that link, the fix seems to be configuration rather than
> > code.
> > Does this mean this bug against the kernel should be closed?
> 
> Yes, the problem seems to be in the Xen hypervisor and not the Linux
> kernel itself.  The default value for the gnttab_max_frames parameter
> needs to be increased to avoid domU disk IO hangs, for example:
> 
>   GRUB_CMDLINE_XEN="dom0_mem=10240M gnttab_max_frames=256"
> 
> So either close the bug or reassign it to xen-hypervisor package so
> they can increase the default value for this parameter in the
> hypervisor code.
> 
Ok, I'll reassign and let the Xen maintainers handle that (maybe in a stable
update).

@Xen maintainers: see the complete bug log for more information, but basically
it seems that a domu freezes happens with the “new” multi-queue xen blk
driver, and the fix is to increase a configuration value. Valentin suggests
adding that to the default.

Regards,
-- 
Yves-Alexis

signature.asc
Description: This is a digitally signed message part

Bug#886478: nut-driver.service fails to start at boot time

[Gilles Filippini]

Package: nut-server
Version: 2.7.4-5.1+b1
Severity: normal

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Hi,

Each time I reboot my computer, nut-driver.service fails to start:

$ sudo systemctl status nut-driver.service 
● nut-driver.service - Network UPS Tools - power device driver controller
   Loaded: loaded (/lib/systemd/system/nut-driver.service; static; vendor 
preset: enabled)
   Active: failed (Result: exit-code) since Sat 2018-01-06 14:54:49 CET; 1h 
0min ago
  Process: 846 ExecStart=/sbin/upsdrvctl start (code=exited, status=1/FAILURE)

janv. 06 14:54:46 maison systemd[1]: Starting Network UPS Tools - power device 
driver controller...
janv. 06 14:54:49 maison upsdrvctl[846]: Network UPS Tools - Generic HID driver 
0.41 (2.7.4)
janv. 06 14:54:49 maison upsdrvctl[846]: USB communication driver 0.33
janv. 06 14:54:49 maison upsdrvctl[846]: No matching HID UPS found
janv. 06 14:54:49 maison upsdrvctl[846]: Driver failed to start (exit status=1)
janv. 06 14:54:49 maison upsdrvctl[846]: Network UPS Tools - UPS driver 
controller 2.7.4
janv. 06 14:54:49 maison systemd[1]: nut-driver.service: Control process 
exited, code=exited status=1
janv. 06 14:54:49 maison systemd[1]: nut-driver.service: Failed with result 
'exit-code'.
janv. 06 14:54:49 maison systemd[1]: Failed to start Network UPS Tools - power 
device driver controller.

If I restart it manually afterwards it succeeds:
$ sudo systemctl restart nut-driver.service
$ sudo systemctl status nut-driver.service 
● nut-driver.service - Network UPS Tools - power device driver controller
   Loaded: loaded (/lib/systemd/system/nut-driver.service; static; vendor 
preset: enabled)
   Active: active (running) since Sat 2018-01-06 15:55:53 CET; 3s ago
  Process: 6881 ExecStart=/sbin/upsdrvctl start (code=exited, status=0/SUCCESS)
 Main PID: 6926 (usbhid-ups)
Tasks: 1 (limit: 4915)
   CGroup: /system.slice/nut-driver.service
   └─6926 /lib/nut/usbhid-ups -a eaton

janv. 06 15:55:47 maison systemd[1]: Starting Network UPS Tools - power device 
driver controller...
janv. 06 15:55:51 maison upsdrvctl[6881]: Using subdriver: MGE HID 1.39
janv. 06 15:55:51 maison upsdrvctl[6881]: Network UPS Tools - Generic HID 
driver 0.41 (2.7.4)
janv. 06 15:55:51 maison upsdrvctl[6881]: USB communication driver 0.33
janv. 06 15:55:53 maison usbhid-ups[6926]: Startup successful
janv. 06 15:55:53 maison upsdrvctl[6881]: Network UPS Tools - UPS driver 
controller 2.7.4
janv. 06 15:55:53 maison systemd[1]: Started Network UPS Tools - power device 
driver controller.

Thanks,

_g.

- -- System Information:
Distributor ID: PureOS
Description:PureOS GNU/Linux 8
Release:8
Codename:   green
Architecture: x86_64

Kernel: Linux 4.14.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8), 
LANGUAGE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages nut-server depends on:
ii  adduser  3.116
ii  init-system-helpers  1.51
ii  libc62.25-5
ii  libnspr4 2:4.16-1+b1
ii  libnss3  2:3.34-1
pn  libupsclient4
ii  libusb-0.1-4 2:0.1.12-31
ii  libwrap0 7.6.q-27
ii  lsb-base 9.20161125
pn  nut-client   
ii  udev 236-1

nut-server recommends no packages.

Versions of packages nut-server suggests:
pn  nut-cgi   
pn  nut-ipmi  
pn  nut-snmp  
pn  nut-xml   

-BEGIN PGP SIGNATURE-

iQEzBAEBCgAdFiEEoJObzArDE05WtIyR7+hsbH/+z4MFAlpQ6GIACgkQ7+hsbH/+
z4PnZQf/bKHypf//xxG4QaDvid4CZPkcPwulrYTwRk7ZFJlgT6Hha0INcNcOjQYq
WTwftXtanLdBAacB5aY2lMWHpA4JxnS+suJNAihvPeWdx7SoetfsbJwH6llFH/b0
d9m8je7liJaz8VypZT3cBDqjsGdCFJOm/+zDb5y2z28FOoVphleiXvmLh83zbFmq
vtsHer3Om16w7txKTx7ynjkikHsIcRh1C06xWMyft7Sw3oeeu4faD2KityxisDrZ
yKGSCFn2sVbb60ehaKzV38Faok74F715KVwn48/6JB9/gny2hTmDvBemR1d96Pkz
E1H6t5HPJdXsY5gxwuvG/sY5EpacdQ==
=OlTP
-END PGP SIGNATURE-

Bug#870641: light-locker: screen stays black after closing and opening laptop lid

[cruncher]

Package: light-locker
Version: 1.8.0-1
Followup-For: Bug #870641

Here the same with intel igpu.
After staying black, ctrl+alt+f1 and killing light-locker makes you able to go
back to desktop and resume work.

Regards



-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.14.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8), LANGUAGE=en_US:en 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages light-locker depends on:
ii  dconf-gsettings-backend [gsettings-backend]  0.26.1-2
ii  libc62.26-2
ii  libcairo21.15.8-3
ii  libdbus-1-3  1.12.2-1
ii  libdbus-glib-1-2 0.108-3
ii  libglib2.0-0 2.54.2-5
ii  libgtk-3-0   3.22.26-2
ii  libpango-1.0-0   1.40.14-1
ii  libpangocairo-1.0-0  1.40.14-1
ii  libsystemd0  236-2
ii  libx11-6 2:1.6.4-3
ii  libxext6 2:1.3.3-1+b2
ii  libxss1  1:1.2.2-1+b2
ii  lightdm  1.18.3-4

light-locker recommends no packages.

light-locker suggests no packages.

-- no debconf information

Bug#886481: RFP: herbie -- Synthesis for floating-point expressions

[Roman Lebedev]

Package: wnpp
Severity: wishlist

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

* Package name: herbie
  Version : 1.1
  Upstream Author : Pavel Panchekha 
* URL : https://herbie.uwplse.org/
* License : MIT
  Programming Lang: Racket
  Description : Synthesis for floating-point expressions

https://github.com/uwplse/herbie

Herbie synthesizes floating-point programs from real-number programs,
automatically handling simple numerical instabilities. 

Herbie can improve the accuracy of many real-world programs, and is used by
scientists in many disciplines. It has lead to two patches (for complex square
roots and trigonometric functions), in math.js an open-source mathematics
library. Herbie has semi-regular releases twice a year, maintains
backwards compatibility, and uses standardized formats.



-BEGIN PGP SIGNATURE-

iQIzBAEBCgAdFiEEjkF6151RK40WXe2HCDw+u0oWieAFAlpQ7KcACgkQCDw+u0oW
ieDSgA//cJ9IXLz7tlq7QU8Tci9Pv42Fg+/Uol18rX/o7XKWVyoTis81nrWPFf4U
yfr7e6PHcX+UP+GqezCmBvvGfhpgAmONeklxI48xVk5TkYSzNBGqDqlyDvkjC1t1
P1n1eOgzvl34+Yo9lpi1BueE6jw/pv3XlR+0T/MqZy+bdjlQ/JbLgGjMh0Tcs8pK
MwhdmZKKabv7ln5SVy6Q86YyoWGxa0DHUb/RSdkh52DD7KlQEA0VBmUyjbO2pfQI
SYV+B/hVFVCBXTSkA2PxKTiHcp0dlvf8pTC6GUGbC5KQKPhFEyU2Ps+Lza8zQswh
bm29UCjCd3Z362dLxpww0FYbKBCACUOpaPyZ/SjUbH3yV2RNjGddcUAJG37mjnTt
QTOISGiD+THtkhe+pQYZh6HwZKpAGimi/KFYL3Bz8PHl9We9DFk8kLoyTSWEh9CG
R3IK4xrtMypybFsbGBoFacMLCV8kKKMPBJKwkg71wkl/62ro+fyZFSL+Dsm3nygx
rcoUGeaMMTdEqGoLb0E8y5qFwdmiFVLzopzchyGH7Nq+cOZYMG25QN0EMGuynyzi
5RP7KQAe9s7UhKAxAy+1Oi82oxQrJFjnMQ3o0CynmPyOv9pURnZe7Ftli732twdc
COVuQBPpvg0uvPazMcsQHcXSgOvxqRfS7fo5TJG60amVG9kZPxM=
=ZoQI
-END PGP SIGNATURE-

Bug#886482: stretch-pu: package global/6.5.6-2

[Punit Agrawal]

Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu

Hi,

Recently CVE-2017-17531 was reported against gozilla binary contained
in GNU Global. The issue wasn't deemed to warrant a DSA by the Debian
Security team but I was wondering if this is something that is pu
material for the next stretch update.

The update contains a fix which has been backported from the upstream
release 6.6.1.

Thanks for your consideration.

Punit

-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: arm64, i386

Kernel: Linux 4.14.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_GB:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
diff -Nru global-6.5.6/debian/changelog global-6.5.6/debian/changelog
--- global-6.5.6/debian/changelog   2017-01-07 14:22:40.0 +
+++ global-6.5.6/debian/changelog   2018-01-03 21:41:34.0 +
@@ -1,3 +1,9 @@
+global (6.5.6-2+deb9u1) stretch; urgency=medium
+
+  * Backport fix for CVE-2017-17531 from 6.6.1 (Closes: #884912)
+
+ -- Punit Agrawal   Wed, 03 Jan 2018 21:41:34 +
+
 global (6.5.6-2) unstable; urgency=medium
 
   * Include gtags.conf manpage in the package
diff -Nru 
global-6.5.6/debian/patches/0002-gozilla-Validate-strings-before-launching-browser.patch
 
global-6.5.6/debian/patches/0002-gozilla-Validate-strings-before-launching-browser.patch
--- 
global-6.5.6/debian/patches/0002-gozilla-Validate-strings-before-launching-browser.patch
1970-01-01 01:00:00.0 +0100
+++ 
global-6.5.6/debian/patches/0002-gozilla-Validate-strings-before-launching-browser.patch
2018-01-03 21:41:34.0 +
@@ -0,0 +1,68 @@
+From: Punit Agrawal 
+Date: Wed, 3 Jan 2018 21:35:38 +
+Subject: gozilla: Validate strings before launching browser
+
+gozilla does not validate strings before launching the program
+specified by the BROWSER environment variable, which might allow
+remote attackers to conduct argument-injection attacks via a crafted
+URL. This issue is reported as CVE-2017-17531.
+
+Backport a fix for this issue from upstream 6.6.1.
+---
+ gozilla/gozilla.c | 26 +++---
+ 1 file changed, 19 insertions(+), 7 deletions(-)
+
+diff --git a/gozilla/gozilla.c b/gozilla/gozilla.c
+index 22d2a95..9d53271 100644
+--- a/gozilla/gozilla.c
 b/gozilla/gozilla.c
+@@ -611,7 +611,8 @@ make_url_file(const char *url)
+ void
+ show_page_by_url(const char *browser, const char *url)
+ {
+-  char com[1024];
++  STRBUF  *sb = strbuf_open(0);
++  STRBUF  *arg = strbuf_open(0);
+ 
+   /*
+* Browsers which have openURL() command.
+@@ -624,22 +625,33 @@ show_page_by_url(const char *browser, const char *url)
+   locatestring(browser, "netscape", MATCH_AT_LAST) ||
+   locatestring(browser, "netscape-remote", MATCH_AT_LAST))
+   {
+-  snprintf(com, sizeof(com), "%s -remote \"openURL(%s)\"", 
browser, url);
+-  system(com);
++  strbuf_puts(sb, quote_shell(browser));
++  strbuf_putc(sb, ' ');
++  strbuf_puts(sb, "-remote");
++  strbuf_putc(sb, ' ');
++  strbuf_sprintf(arg, "openURL(%s)", url);
++  strbuf_puts(sb, quote_shell(strbuf_value(arg)));
++  system(strbuf_value(sb));
+   }
+   /*
+* Load default browser of OSX.
+*/
+   else if (!strcmp(browser, "osx-default")) {
+-  snprintf(com, sizeof(com), "open \"%s\"", make_url_file(url));
+-  system(com);
++  strbuf_puts(sb, "open");
++  strbuf_putc(sb, ' ');
++  strbuf_puts(sb, quote_shell(make_url_file(url)));
++  system(strbuf_value(sb));
+   }
+   /*
+* Generic browser.
+*/
+   else {
+-  snprintf(com, sizeof(com), "%s \"%s\"", browser, url);
+-  system(com);
++  strbuf_puts(sb, quote_shell(browser));
++  strbuf_putc(sb, ' ');
++  strbuf_puts(sb, quote_shell(url));
++  system(strbuf_value(sb));
+   }
++  strbuf_close(sb);
++  strbuf_close(arg);
+ }
+ #endif
diff -Nru global-6.5.6/debian/patches/series global-6.5.6/debian/patches/series
--- global-6.5.6/debian/patches/series  2017-01-07 14:22:40.0 +
+++ global-6.5.6/debian/patches/series  2018-01-03 21:41:34.0 +
@@ -1 +1,2 @@
 0001-gtags-Fix-lintian-warning-with-gtags-manpage.patch
+0002-gozilla-Validate-strings-before-launching-browser.patch

Bug#878338: gcc-defaults FTBFS with debhelper 10.9

[Matthias Klose]

Control: tags -1 + pending

fixed in the packaging VCS

On 06.01.2018 14:09, John Paul Adrian Glaubitz wrote:
>> dh_compress: unknown option or error during option parsing; aborting
>> debian/rules:1354: recipe for target 'binary-native' failed
>> make: *** [binary-native] Error 25
> 
> I'm running into this on ia64 now but I'm not sure whom to blame.
> 
> "Unknown option or error" doesn't make it seem that debhelper is
> working as expected, is it? At least there should be a comprehensible
> error message.
> 
> Adrian
> 

Bug#886485: linux-image-4.9.0-5-686-pae: Hangs on boot at ".... node #0, CPUs: #1"

[LJ]

Package: src:linux
Version: 4.9.65-3+deb9u2
Severity: critical
Tags: security
Justification: breaks the whole system

Dear Maintainer,

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?
Updated the system as requested in Debian Security Advisory DSA-4078-1

Booting in recovery mode the final lines are:

[   0.058600] x86: Booting SMP configuration:
[   0.058632]  node  #0, CPUs:  :1

The cursor is flashing after the "#1" and the system hangs at that point.

I have video and a screenshot of boot if that helps.

Thanks,
LJ


-- Package-specific info:
** Kernel log: boot messages should be attached

** Model information

** PCI devices:
00:00.0 Host bridge [0600]: Intel Corporation 4th Gen Core Processor DRAM 
Controller [8086:0c00] (rev 06)
Subsystem: Gigabyte Technology Co., Ltd 4th Gen Core Processor DRAM 
Controller [1458:5000]
Control: I/O- Mem+ BusMaster+ SpecCycle- MemWINV- VGASnoop- ParErr- 
Stepping- SERR- FastB2B- DisINTx-
Status: Cap+ 66MHz- UDF- FastB2B+ ParErr- DEVSEL=fast >TAbort- SERR- 
Kernel driver in use: hsw_uncore

00:02.0 VGA compatible controller [0300]: Intel Corporation Xeon E3-1200 v3/4th 
Gen Core Processor Integrated Graphics Controller [8086:0402] (rev 06) (prog-if 
00 [VGA controller])
Subsystem: Gigabyte Technology Co., Ltd Xeon E3-1200 v3/4th Gen Core 
Processor Integrated Graphics Controller [1458:d000]
Control: I/O+ Mem+ BusMaster+ SpecCycle- MemWINV- VGASnoop- ParErr- 
Stepping- SERR- FastB2B- DisINTx+
Status: Cap+ 66MHz- UDF- FastB2B+ ParErr- DEVSEL=fast >TAbort- SERR- TAbort- SERR- TAbort- 
SERR- TAbort- SERR- TAbort- 
SERR- TAbort- SERR- TAbort- SERR- TAbort- Reset- FastB2B-
PriDiscTmr- SecDiscTmr- DiscTmrStat- DiscTmrSERREn-
Capabilities: [40] Express (v2) Root Port (Slot+), MSI 00
DevCap: MaxPayload 128 bytes, PhantFunc 0
ExtTag- RBE+
DevCtl: Report errors: Correctable- Non-Fatal- Fatal- 
Unsupported-
RlxdOrd- ExtTag- PhantFunc- AuxPwr- NoSnoop-
MaxPayload 128 bytes, MaxReadReq 128 bytes
DevSta: CorrErr- UncorrErr- FatalErr- UnsuppReq- AuxPwr+ 
TransPend-
LnkCap: Port #1, Speed 5GT/s, Width x1, ASPM L0s L1, Exit 
Latency L0s <1us, L1 <16us
ClockPM- Surprise- LLActRep+ BwNot+ ASPMOptComp-
LnkCtl: ASPM Disabled; RCB 64 bytes Disabled- CommClk-
ExtSynch- ClockPM- AutWidDis- BWInt- AutBWInt-
LnkSta: Speed 2.5GT/s, Width x0, TrErr- Train- SlotClk+ 
DLActive- BWMgmt- ABWMgmt-
SltCap: AttnBtn- PwrCtrl- MRL- AttnInd- PwrInd- HotPlug- 
Surprise-
Slot #0, PowerLimit 10.000W; Interlock- NoCompl+
SltCtl: Enable: AttnBtn- PwrFlt- MRL- PresDet- CmdCplt- HPIrq- 
LinkChg-
Control: AttnInd Unknown, PwrInd Unknown, Power- 
Interlock-
SltSta: Status: AttnBtn- PowerFlt- MRL- CmdCplt- PresDet- 
Interlock-
Changed: MRL- PresDet- LinkState-
RootCtl: ErrCorrectable- ErrNon-Fatal- ErrFatal- PMEIntEna- 
CRSVisible-
RootCap: CRSVisible-
RootSta: PME ReqID , PMEStatus- PMEPending-
DevCap2: Completion Timeout: Range ABC, TimeoutDis+, LTR+, OBFF 
Not Supported ARIFwd-
DevCtl2: Completion Timeout: 50us to 50ms, TimeoutDis-, LTR+, 
OBFF Disabled ARIFwd-
LnkCtl2: Target Link Speed: 5GT/s, EnterCompliance- SpeedDis-
 Transmit Margin: Normal Operating Range, 
EnterModifiedCompliance- ComplianceSOS-
 Compliance De-emphasis: -6dB
LnkSta2: Current De-emphasis Level: -3.5dB, 
EqualizationComplete-, EqualizationPhase1-
 EqualizationPhase2-, EqualizationPhase3-, 
LinkEqualizationRequest-
Capabilities: [80] MSI: Enable- Count=1/1 Maskable- 64bit-
Address:   Data: 
Capabilities: [90] Subsystem: Gigabyte Technology Co., Ltd 8 
Series/C220 Series Chipset Family PCI Express Root Port [1458:5001]
Capabilities: [a0] Power Management version 3
Flags: PMEClk- DSI- D1- D2- AuxCurrent=0mA 
PME(D0+,D1-,D2-,D3hot+,D3cold+)
Status: D0 NoSoftRst- PME-Enable- DSel=0 DScale=0 PME-
Kernel driver in use: pcieport
Kernel modules: shpchp

00:1c.2 PCI bridge [0604]: Intel Corporation 8 Series/C220 Series Chipset 
Family PCI Express Root Port #3 [8086:8c14] (rev d5) (prog-if 00 [Normal 
decode])
Control: I/O+ Mem+ BusMaster+ SpecCycle- MemWINV- VGASnoop- ParErr- 
Stepping- SERR- FastB2B- DisINTx-
Status: Cap+ 66MHz- UDF- FastB2B- ParErr- DEVSEL=fast >TAbort- SERR- TAbort- Reset- FastB2B-
PriDiscTmr- SecDiscTmr- DiscTmrStat- DiscTmrSERREn-
 

Bug#812721: gbp could filter out Files-Excluded: entries when committing to the pristine-tar branch

[Michael Stapelberg]

[+cc raphael (listed as DEP-14 driver)]

Sorry for the long delay.

On Wed, Nov 8, 2017 at 9:00 AM, Guido Günther  wrote:

> Hi,
> On Tue, Nov 07, 2017 at 10:07:54PM +0100, Michael Stapelberg wrote:
> > Thanks for your reply. Answers inline:
> >
> > On Mon, Nov 6, 2017 at 8:59 AM, Guido Günther  wrote:
> > > Hi,
> > > On Tue, Oct 31, 2017 at 05:24:05PM +0100, Michael Stapelberg wrote:
> > >> Hi Guido,
> > >>
> > >> The pkg-go team is currently discussing changes to its workflow, and
> > >> we’d be interested in resolving this feature request.
> > >
> > > Can you provide a pointer to the discussion?
> >
> > Have a look at https://lists.alioth.debian.org/pipermail/pkg-go-
> maintainers/Week-of-Mon-20171016/015809.html
> >
> > >
> > >>
> > >> Guido Günther  writes:
> > >> > I would rather do this with a dfsg-clean branch. You delete once and
> > >> > then use git tools from there on.
> > >>
> > >> Searching for how dfsg-clean branches should be named, I found
> > >> https://honk.sigxcpu.org/projects/git-buildpackage/
> manual-html/gbp.branch.naming.html,
> > >> which recommends “dfsg/latest”.
> > >>
> > >> However, my reading of section “About repacked upstream sources” of
> > >> http://dep.debian.net/deps/dep14/ directly contradicts the above
> advice:
> > >> DEP14 says upstream/* should contain the repackaged files.
> > >>
> > >> How do we reconcile this apparent contradiction?
> > >
> > > Since gbp makes no assumptions on this I'm happy to update the docs.
> How
> > > would we call the non-filtered branch then "nondfsg/latest"?  When we
> > > base our packaging on upstream git we'll likely use upstream's branch
> > > name but in case of tarballs we should provide a good recommendation.
> >
> > Just to make sure we’re talking about the same thing: the branch
> > you’re asking for naming recommendations is currently called
> > “upstream”, yes?
>
> Yes, I'm talking about the branch or rather namespace that has the
> pristine, unfiltered upstream sources. We probably don't need such a
> name if upstream uses git but in the case of tarballs when one wants to
> keep the unfiltered source.
>
> > If yes, then I don’t particularly like the name “nondfsg/latest”, as
> > it is a double-negative, but describes a very common case. Why not
> > keep calling it “upstream”, or “upstream/latest” if symmetry is
> > desired?
>
> Isn't that what we're using for the filtered sources. The longer I think
> about it I think that
>
> https://honk.sigxcpu.org/projects/git-buildpackage/
> manual-html/gbp.branch.naming.html
>
> fits better than DEP14. Maybe we should modify DEP14 to say that
> upstream/ keeps the unfiltered source and dfsgclean/ the filtered one?
>

Raphael, any thoughts?


>
> >
> > >
> > >> >> It would be great if gbp could produce the 1.2.3+dfsg tag itself by
> > >> >> reading debian/copyright and excluding the Files-Excluded: files.
> > >> >
> > >> > If somebody comes up with a clean patch I'm happy to merge that.
> > >>
> > >> Which part of gbp specifically should be patched here? AFAICT, there
> is
> > >> no command which pulls a new version from upstream yet. Should one be
> > >> added? What should it be called?
> > >
> > > My first reaction was to teach gbp import-orig to have a
> > >
> > > gbp import-orig "git-ref"
> > >
> > > mode that would do the right thing but I now think having
> > >
> > > gbp update "git-ref"
> > >
> > > that
> > >
> > > - does the excluding and tagging if necessary
> > > - merges to the debian branch
> > >
> > > is better. We need to make sure that gbp import-orig's filtering (using
> > > the --filter command line or filter= gbp.conf option) stays in sync
> with
> > > what we do so we don't have on tool using --filter= and the other one
> > > parsing debian/changelog.
> >
> > You’re saying gbp import-orig and gbp update should both support the
> > same filter option, in additon to d/copyright, yes?
>
> Yes.
>
> >
> > >
> > > If somebody comes up with a better name than "update" that's all fine.
> >
> > “update” is a rather generic term. Given that the underlying git
> > operation is “git pull”, how about “gbp pull-upstream”?
>
> See
>
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=812721#25
>
> alternatively "gbp import-ref". pull-upstream is wired since we want the
> upstream namespace to contain the already filtered sources.
> Cheers,
>  -- Guido
>



-- 
Best regards,
Michael

Bug#886439: byzanz-record should print messages on begin and end

[Markus Koschany]

Am 06.01.2018 um 00:56 schrieb Jörg Sommer:
> Package: byzanz
> Version: 0.3.0+git20160312-2
> Severity: wishlist
> 
> Hi,
> 
> it would be helpful if byzanz could print a message when the recording
> begins and ends, because it's not always recogniseable what's happening,
> esp. when the begin is delayed.
> 
> A proposal:
> 
> % byzanz-record --delay 4 -d 6
> Starting recording in 4 seconds
> Recording started
> Recording stopped

Yes, that would be useful. Unfortunately upstream is no longer active
but I would apply a patch for Debian if someone provided the code.

Regards,

Markus



signature.asc
Description: OpenPGP digital signature

Bug#882795: closed by Sébastien Villemot <sebast...@debian.org> (Bug#882795: fixed in cltl 1.0.28)

[Helge Kreutzmann]

reopen 882795
reopen 881407
found 882795 1.0.28
found 881407 1.0.28

Hello Sébastien,
On Fri, Dec 29, 2017 at 04:06:10PM +, Debian Bug Tracking System wrote:
> #882795: cltl: [INTL:de] updated German debconf translation
> 
> It has been closed by Sébastien Villemot .
> 
> Their explanation is attached below along with your original report.
…
>* Translation updates:
>  - Dutch (Frans Spiesschaert) (Closes: #881407)
>  - German (Helge Kreutzmann) (Closes: #882795)

Unfortunately you did not include the updated files both from the
German as well as from the Dutch team.

It would be kind if you could check *before* the upload, if all
strings are translated, e.g. by running
'msgfmt --statistics '

If you find such, most translators (including me) would be happy to
fix those strings.

Could you please perform an upload including our updates?

Thanks!

Greetings

Helge
-- 
  Dr. Helge Kreutzmann deb...@helgefjell.de
   Dipl.-Phys.   http://www.helgefjell.de/debian.php
64bit GNU powered gpg signed mail preferred
   Help keep free software "libre": http://www.ffii.de/


signature.asc
Description: Digital signature

Bug#880525: Patch for libargon2-0-udeb

[Jonas Meurer]

Hi,

I prepared a patch to add libargon2-0-udeb. Please find it attached. If
you don't mind, I can take care of the NMU and push the commit to the
argon2 packaging Git repository.

Cheers
 jonas
From 3fdc1540be2a58e1769db0537b8d6be15f39fab1 Mon Sep 17 00:00:00 2001
From: Jonas Meurer 
Date: Sat, 6 Jan 2018 17:27:20 +0100
Subject: [PATCH] Add libargon2-0-udeb package for debian-installer

---
 debian/changelog|  8 
 debian/control  | 23 +++
 debian/libargon2-0-udeb.install |  2 ++
 debian/rules|  3 +++
 4 files changed, 36 insertions(+)
 create mode 100755 debian/libargon2-0-udeb.install

diff --git a/debian/changelog b/debian/changelog
index fdbc0b2..eb33536 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,11 @@
+argon2 (0~20161029-1.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Add libargon2-0-udeb package for debian-installer. Required as
+dependency for libcryptsetup12-udeb. (Closes: #880525)
+
+ -- Jonas Meurer   Sat, 06 Jan 2018 17:54:34 +0100
+
 argon2 (0~20161029-1) unstable; urgency=medium
 
   [ Luca Bruno ]
diff --git a/debian/control b/debian/control
index 8a52bfe..be8bf16 100644
--- a/debian/control
+++ b/debian/control
@@ -72,3 +72,26 @@ Description: memory-hard hashing function - utility
   * A parallelism degree, which defines the number of parallel threads
  .
  This package contains the argon2 tool for hashing data on the command-line.
+
+Package: libargon2-0-udeb
+Section: debian-installer
+Package-Type: udeb
+Architecture: any
+Multi-Arch: same
+Pre-Depends: ${misc:Pre-Depends}
+Depends: ${shlibs:Depends}, ${misc:Depends}
+Description: memory-hard hashing function - runtime library (udeb)
+ Argon2 is a password-hashing function that can be used to hash passwords
+ for credential storage, key derivation, or other applications.
+ .
+ There are two main versions of Argon2: Argon2i and Argon2d.
+ Argon2i is the safest against side-channel attacks, while Argon2d provides
+ the highest resistance against GPU cracking attacks.
+ .
+ Argon2i and Argon2d are parametrized by:
+  * A time cost, which defines the amount of computation realized and
+therefore the execution time, given in number of iterations
+  * A memory cost, which defines the memory usage, given in kibibytes
+  * A parallelism degree, which defines the number of parallel threads
+ .
+ This udeb package includes the dynamic library for the Debian Installer.
diff --git a/debian/libargon2-0-udeb.install b/debian/libargon2-0-udeb.install
new file mode 100755
index 000..4c2c2a8
--- /dev/null
+++ b/debian/libargon2-0-udeb.install
@@ -0,0 +1,2 @@
+#!/usr/bin/dh-exec
+libargon2.so => usr/lib/${DEB_HOST_MULTIARCH}/${SONAME}
diff --git a/debian/rules b/debian/rules
index 8b31ebf..0959492 100755
--- a/debian/rules
+++ b/debian/rules
@@ -25,3 +25,6 @@ override_dh_install:
 
 override_dh_auto_test:
 	-$(MAKE) -j1 test
+
+override_dh_makeshlibs:
+	dh_makeshlibs -V --add-udeb="libargon2-1-udeb"
-- 
2.11.0



signature.asc
Description: OpenPGP digital signature

Bug#886487: pepperflashplugin-nonfree: Please packge again for i386

[Jean-Philippe MENGUAL]

Package: pepperflashplugin-nonfree
Version: 1.8.3+nmu1
Severity: normal

Dear Maintainer,

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?

I tried to install on an i386 machine.

   * What exactly did you do (or not do) that was effective (or
 ineffective)?

Impossible to install the package, it is not in snapshot. An old release in
snapshot could install, but did not set the key for google and failed.

Additionally, I installed from original website but not sure it works. The 
situation is
ambiguous.

   * What was the outcome of this action?
   * What outcome did you expect instead?

*** End of the template - remove these template lines ***

Many thanks. I may will propose a patch if it helps, from the source of tha 
package, but I dont have a i386 often with me.

regards 


-- System Information:
Debian Release: buster/sid
  APT prefers testing-debug
  APT policy: (500, 'testing-debug'), (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.12.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8), 
LANGUAGE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages pepperflashplugin-nonfree depends on:
ii  binutils   2.29.1-12
ii  ca-certificates20170717
ii  debconf [debconf-2.0]  1.5.65
ii  gnupg  2.2.3-1
ii  libatk1.0-02.26.1-2
ii  libcairo2  1.15.8-3
ii  libcurl3-gnutls7.57.0-1
ii  libfontconfig1 2.12.6-0.1
ii  libfreetype6   2.8.1-0.1
ii  libgcc11:7.2.0-18
ii  libglib2.0-0   2.54.2-5
ii  libgtk2.0-02.24.31-5
ii  libnspr4   2:4.16-1+b1
ii  libnss32:3.34-1
ii  libpango-1.0-0 1.40.14-1
ii  libpango1.0-0  1.40.14-1
ii  libstdc++6 7.2.0-18
ii  libx11-6   2:1.6.4-3
ii  libxext6   2:1.3.3-1+b2
ii  libxt6 1:1.1.5-1
ii  wget   1.19.2-1

pepperflashplugin-nonfree recommends no packages.

Versions of packages pepperflashplugin-nonfree suggests:
pn  chromium   
pn  hal
pn  ttf-dejavu 
pn  ttf-mscorefonts-installer  
pn  ttf-xfree86-nonfree

-- no debconf information

Bug#886440: linux: Support to build linux-libc-dev for the upcoming riscv64 architecture

[Ben Hutchings]

On Sat, 2018-01-06 at 01:09 +0100, Manuel A. Fernandez Montecelo wrote:
> Source: linux
> Version: 4.15~rc5-1~exp1
> Severity: wishlist
> Tags: patch
> User: debian-ri...@lists.debian.org
> Usertags: riscv64
> 
> Hello,
> 
> The 4.15 kernel comes with initial support for RISC-V.
> 
> Enabling support to build linux-libc-dev is one of the first steps to 
> bootstrap
> the architecture, so please consider enabling it.
> 
> If there's anything wrong or missing, please let me know.

You've missed out several steps:

1. Add the architecture definition to dpkg/unstable.
2. Backport that addition to dpkg/stable.
3. Get the stable update installed on ftp-master.

dak will reject uploads that mention an architecture that the local
dpkg doesn't recognise.

Ben.

-- 
Ben Hutchings
For every complex problem
there is a solution that is simple, neat, and wrong.



signature.asc
Description: This is a digitally signed message part

Bug#886485: linux-image-4.9.0-5-686-pae: Hangs on boot at ".... node #0, CPUs: #1"

[Yves-Alexis Perez]

On Sat, 2018-01-06 at 15:46 +, LJ wrote:
> Booting in recovery mode the final lines are:
> 
> [   0.058600] x86: Booting SMP configuration:
> [   0.058632]  node  #0, CPUs:  :1
> 
> The cursor is flashing after the "#1" and the system hangs at that point.
> 
> I have video and a screenshot of boot if that helps.

Looking at the lspci output you have a Xeon E3 from the 1200 series, but you
could provide your full /proc/cpuinfo?

You're running the system in 32bit mode, which KAISER/KPTI doesn't touch (so
meltdown is *not* fixed), so I guess it comes from the preparation patches for
 KAISER rather than KAISER itself.

Regards,
-- 
Yves-Alexis

signature.asc
Description: This is a digitally signed message part

Bug#547671: new website

[Carlo Stemberger]

New website: https://github.com/Audiveris/audiveris

Last version: 5.0.0

Best regards,

Carlo

--
 ,= ,-_-. =./  .-. _   _ ___  ___ _ __
((_/)o o(\_))  /   oo|| | | / __|/ _ \ '__|
 `-'(. .)`-'  /   /`'\| |_| \__ \  __/ |
 \_/ /   (\_;/)\__,_|___/\___|_|

Bug#886384: rxvt-unicode: font issue with FreeType 2.8 and TrueType fonts

[Vincent Lefevre]

On 2018-01-06 12:25:31 -0500, Ryan Kavanagh wrote:
> Could you please let us know which fonts you're experiencing this
> with and the relevant urxvt settings so that we can reproduce this?

Monospace-10, where:

$ fc-match Monospace
DejaVuSansMono.ttf: "DejaVu Sans Mono" "Book"

No specific urxvt settings, but I have Xft.dpi set to 132.

-- 
Vincent Lefèvre  - Web: 
100% accessible validated (X)HTML - Blog: 
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)

Bug#880246: magic-wormhole: FTBFS: dh_auto_test: pybuild --test -i python{version} -p 3.6 returned exit code 13

[Antoine Beaupré]

Control: tags -1 +patch

On 2018-01-01 23:24:14, Harlan Lieberman-Berg wrote:
> Hello Antoine,
>
> I ran into this recently, so I thought I'd take a quick whack at
> seeing if I can fix it by updating to the latest version of
> magic-wormhole.  Unfortunately, that FTBFS as well, due to a bunch of
> problems (including with some of its dependencies).  I've poked at a
> couple of the upstreams, but still waiting for them to merge stuff.
> (https://github.com/meejah/txtorcon/issues/247 causes test failures;
> waiting on the author to merge my PR).
>
> I've attached my work thus far as patches, so you have them.  I can
> also push them up directly to collab-maint, if you prefer.

I'm fine with you pushing to collab-maint - this is what it's for after
all. :)

So even after this you still FTBFS? Did you report that issue upstream
as well?

A.

-- 
L'ennui avec la grande famille humaine, c'est que tout le monde veut
en être le père.
- Mafalda

Bug#886440: linux: Support to build linux-libc-dev for the upcoming riscv64 architecture

[Manuel A. Fernandez Montecelo]

2018-01-06 18:15 GMT+01:00 Ben Hutchings :
> On Sat, 2018-01-06 at 01:09 +0100, Manuel A. Fernandez Montecelo wrote:
>> Source: linux
>> Version: 4.15~rc5-1~exp1
>> Severity: wishlist
>> Tags: patch
>> User: debian-ri...@lists.debian.org
>> Usertags: riscv64
>>
>> Hello,
>>
>> The 4.15 kernel comes with initial support for RISC-V.
>>
>> Enabling support to build linux-libc-dev is one of the first steps to 
>> bootstrap
>> the architecture, so please consider enabling it.
>>
>> If there's anything wrong or missing, please let me know.
>
> You've missed out several steps:
>
> 1. Add the architecture definition to dpkg/unstable.
> 2. Backport that addition to dpkg/stable.
> 3. Get the stable update installed on ftp-master.
>
> dak will reject uploads that mention an architecture that the local
> dpkg doesn't recognise.

It's requested, but not done:

  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=822914

Didn't know about dak, thanks for the notice.


Cheers.
-- 
Manuel A. Fernandez Montecelo 

Bug#733610: Webapp no longer part of Gramps

[Debian/GNU]

On 01/05/2018 10:03 PM, Ross Gammon wrote:
> The latest news is that the webapp was split out of Gramps to a project
> called gramps-connect. Then Gprime was created which is a web-based fork
> of Gramps & Gramps-connect.
> 
> https://genealogycollective.github.io/gprime/
> 
> Gprime is a better target to package once it is ready.
> 


since this bug is mainly as a reminder for the maintainer (rather than
for end users), i guess it should be properly closed (rather than kept
open with "wontfix")

fgdsam
IOhannes






signature.asc
Description: OpenPGP digital signature

Bug#881205: Assistance for maintaining src:backintime

[Ghislain Vaillant]

Dear Jonathan,

I was suprised to discover that backintime had been removed from
testing despite RC bug #881205 being fixed upstream [1].

For testing/unstable an update of the package to version 1.1.24 should
do the trick, whilst stretch/wheezy will require a backport of this
particular commit.

I was wondering whether you need any help with the maintenance of the
package, which I'd be happy to offer. It might also be useful to move
the package to team-maintenance long term, under collab-maint or one of
the Python packaging teams.

[1] https://github.com/bit-team/backintime/commit/cef81d0da93ff60125260
7df3db1a48f7f6f01

Cheers,
Ghis

Bug#761516: Please make modules cmake files available in /usr/share/cmake-3.9/Modules/

[Silvério Santos]

Situation: In Debian Buster gImageReader requires [1] FindQuaZip5.cmake in 
/usr/share/cmake-3.9/Modules/, as defined in [2]. Can the cmake file be made 
available there please?

[1] https://github.com/manisandro/gImageReader/commit/
8c65fabc0f715abff5e40a8efab73ae2d4903966
[2] https://cmake.org/Wiki/
CMake:How_To_Find_Libraries#Using_external_libraries

Bug#886036: Improve changelog version parsing

[Chris Lamb]

Hi Felix,

> * 0001 Addresses an issue when the version contains two hyphens; now
> the string is split properly into two parts.

Pushed here:

  
https://anonscm.debian.org/git/lintian/lintian.git/commit/?id=f3f373e5365a58d7ee3b126b8f1dfbda557d02a4

> * 0002 Removes an old exception allowing -0.X on native source NMUs,
> which now triggers the appropriate warning.

Pushed here:

  
https://anonscm.debian.org/git/lintian/lintian.git/commit/?id=ddd9095056f649718414ce6a7db20949ef65d1ac

Many thanks :)


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-

Bug#363531:

[Killyur Lin]

Bug#886463: ITP: centrifuge -- rapid and memory-efficient system for classification of DNA sequences

[Andreas Tille]

Package: wnpp
Severity: wishlist
Owner: Andreas Tille 

* Package name: centrifuge
  Version : 1.0.3~beta
  Upstream Author : Daehwan Kim, Li Song, Florian P. Breitwieser and Steven L. 
Salzberg
* URL : https://github.com/infphilo/centrifuge/
* License : GPL
  Programming Lang: C++
  Description : rapid and memory-efficient system for classification of DNA 
sequences
 Centrifuge is a very rapid and memory-efficient system for the
 classification of DNA sequences from microbial samples, with better
 sensitivity than and comparable accuracy to other leading systems. The
 system uses a novel indexing scheme based on the Burrows-Wheeler
 transform (BWT) and the Ferragina-Manzini (FM) index, optimized
 specifically for the metagenomic classification problem. Centrifuge
 requires a relatively small index (e.g., 4.3 GB for ~4,100 bacterial
 genomes) yet provides very fast classification speed, allowing it to
 process a typical DNA sequencing run within an hour. Together these
 advances enable timely and accurate analysis of large metagenomics data
 sets on conventional desktop computers.


Remark: This package will be maintained by the Debian Med team at
https://anonscm.debian.org/git/debian-med/centrifuge.git

Bug#886238: Please introduce official nosystemd build profile

[Chris Lamb]

Hleb,

> > (accusing Debian to "vandalize" open source by supporting systemd)
[…]
> 1) Proofs please. DDG & Google find only your words.

I was accused of this on the "dng" mailing list. It should be easy to
find the relevant threads.


Best wishes,

-- 
  ,''`.
 : :'  : Chris Lamb, Debian Project Leader 2017
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-

Bug#874218: w3m: Cannot disable TLSv1.1

[Tatsuya Kinoshita]

Control: tags -1 + pending

On September 4, 2017 at 12:38PM +0200, se (at example.com) wrote:
> I am proposing to:
> - extend this option to TLSv1.1
> - clarify the text as to distinguish between TLSv1.0 and TLSv1.1
>
> This while at the same time keeping compatibility with previously written
> config files (thus not changing the "t" option to disable TLSv1.0)
>
> You'll find a very basic diff attached.

Merged, and updated.

  - 
https://anonscm.debian.org/cgit/collab-maint/w3m.git/commit/?id=1b23ebf6449de5975f057ead439cc66041249783
  - 
https://anonscm.debian.org/cgit/collab-maint/w3m.git/commit/?id=762e28dc89fc80eb806d5da8a11ad05a036347fb

>>  if (strchr(ssl_forbid_method, 't1.1'))
>>  option |= SSL_OP_NO_TLSv1_1;

The current code doesn't support multi-character 't1.1', so '5' is
used instead.

Thanks,
--
Tatsuya Kinoshita


pgp6TyqLVH85w.pgp
Description: PGP signature

Bug#886456: python-pip: segfault when running 'pip install --upgrade ...'

[Felix Schulthess]

Package: python-pip
Version: 9.0.1-2
Severity: important

Dear Maintainer,

I was trying to upgrade ansible (which I initially installed with pip).
The result was, that the program segfaulted. I tried this with --user and
without, but it makes no difference.

There is a log and a strace here:

https://en.pastebin.ca/3956033
https://filebin.ca/3nFJW76lWAKu/pip_fail.strace.gz

Sorry, if I am making some mistakes, this is my first bug report.

-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages python-pip depends on:
ii  ca-certificates  20170717
ii  python   2.7.14-4
ii  python-pip-whl   9.0.1-2

Versions of packages python-pip recommends:
ii  build-essential12.4
ii  python-all-dev 2.7.14-4
ii  python-setuptools  38.2.4-2
ii  python-wheel   0.30.0-0.1

python-pip suggests no packages.

-- no debconf information

Bug#886453: [src:zfs-linux]

[Antonio Russo]

Control: reassign -1 spl-linux 0.7.4-1

The bug affects building spl.

Also for anyone trying to build this, you can build objtool in the
tools/objtool directory of the linux source (apt source linux). Then
copy it to

/usr/src/linux-headers-4.14.0-3-amd64/tools/objtool/objtool

Bug#886316: gcc-7: fix typo for N32 conditions in debian/rules2

[YunQiang Su]

On Sat, Jan 6, 2018 at 1:13 PM, Matthias Klose  wrote:
> On 05.01.2018 14:26, YunQiang Su wrote:
>> Ohhh, you are right.
>>
>> in fact it is a quite simple patch:
>>
>> just in debian/rules2, there are 4 snap
>> $(biarchn32)-$(biarch32) for N32,
>>
>> the $(biarchn32) should be $(biarch64) here.
>
> please attach a proper patch.
>
> I also see in rules2: --with-arch-64=mips64r2

We have new mipsn32r6(el), in fact this patch was tested with gcc-7-cross only,
as the native test is not needed now.

And without this patch, the default ISA will be mips3, beside this, it works.

>
> is this correct, or should that be r6?

So, mipsn32(el) are r2 and mipsn32r6(el) is r6.

>
> again, please attach a (tested) patch, please for gcc-7 and gcc-8.
>

I will clone this bug to gcc-8

>
> thanks, Matthias
>
>> On Thu, Jan 4, 2018 at 8:22 PM, James Cowgill  wrote:
>>> Hi,
>>>
>>> On 04/01/18 11:00, YunQiang Su wrote:
 Package: src:gcc-7
 Version: 7.2.0-18

 when detect mipsn32 triarch,
 we use ifeq ($(biarchn32)-$(biarch32),yes-yes), but we should use
   ifeq ($(biarch64)-$(biarch32),yes-yes)

>>>
>>> I guess you attached the wrong patch?
>>>
>>> James
>>>
>>
>>
>>
>



-- 
YunQiang Su
--- a/debian/rules2	2018-01-04 02:48:11.005697191 +
+++ b/debian/rules2	2018-01-04 02:46:51.940027390 +
@@ -593,7 +593,7 @@
 ifneq (,$(findstring mips64el-linux-gnuabin32,$(DEB_TARGET_GNU_TYPE)))
   CONFARGS += --with-madd4=no
   ifeq ($(multilib),yes)
-ifeq ($(biarchn32)-$(biarch32),yes-yes)
+ifeq ($(biarch64)-$(biarch32),yes-yes)
   CONFARGS += --enable-targets=all
   CONFARGS += --with-arch-64=mips64r2
   CONFARGS += --with-arch-32=mips32r2 --with-fp-32=xx
@@ -603,7 +603,7 @@
 
 ifneq (,$(findstring mips64-linux-gnuabin32,$(DEB_TARGET_GNU_TYPE)))
   ifeq ($(multilib),yes)
-ifeq ($(biarchn32)-$(biarch32),yes-yes)
+ifeq ($(biarch64)-$(biarch32),yes-yes)
   CONFARGS += --enable-targets=all
   CONFARGS += --with-arch-64=mips64r2
   CONFARGS += --with-arch-32=mips32r2 --with-fp-32=xx
@@ -658,7 +658,7 @@
 ifneq (,$(findstring mipsisa64r6el-linux-gnuabin32,$(DEB_TARGET_GNU_TYPE)))
   CONFARGS += --with-mips-plt
   ifeq ($(multilib),yes)
-ifeq ($(biarchn32)-$(biarch32),yes-yes)
+ifeq ($(biarch64)-$(biarch32),yes-yes)
   CONFARGS += --enable-targets=all
   CONFARGS += --with-arch-64=mips64r6 --with-tune-64=mips64r6
   CONFARGS += --with-arch-32=mips32r6 --with-tune-32=mips32r6
@@ -669,7 +669,7 @@
 ifneq (,$(findstring mipsisa64r6-linux-gnuabin32,$(DEB_TARGET_GNU_TYPE)))
   CONFARGS += --with-mips-plt
   ifeq ($(multilib),yes)
-ifeq ($(biarchn32)-$(biarch32),yes-yes)
+ifeq ($(biarch64)-$(biarch32),yes-yes)
   CONFARGS += --enable-targets=all
   CONFARGS += --with-arch-64=mips64r6 --with-tune-64=mips64r6
   CONFARGS += --with-arch-32=mips32r6 --with-tune-32=mips32r6

Bug#363531:

[Killyur Lin]

Bug#884835: [Pkg-mailman-hackers] Bug#884835: mailman3-suite: postinst fails if nginx is installed and apache2 is missing

[Philip Frei]

Hi,

On Wed, 20 Dec 2017 17:50:42 +0100 Pierre-Elliott
=?iso-8859-1?Q?B=E9cue?=  wrote:

> Please provide a little more output to explain how the postinst will
> fail? Did you chose "none" for the webserver to configure?

I installed mailman3-suite in a fresh KVM guest and discovered the same
error in the postinstall script.

It's possbile to complete the installation after uncommenting line 199
in /var/lib/dpkg/info/mailman3-suite.postinst.

BTW: There's no debconf question about choosing the webserver during
the installation. Only when I run dpkg-reconfigure mailman3-suite.

regards,
Philip

Bug#886454: pg_dump: invalid option -- 'i'

[Christoph Berg]

Package: phppgadmin
Version: 5.1-1.1

Date: Sat, 6 Jan 2018 06:20:56 +0100
From: roger21 
To: pkg-postgresql-pub...@lists.alioth.debian.org
Subject: [Pkg-postgresql-public] bug in the export feature of phpPgAdmin

Hi,

i can't do a descent bug report but still i'm trying to report that :

the export feature of phpPgAdmin fails since it uses an obsolete parameter
(-i) for pg_dump as reported by the apache/php error log :


error.log:/usr/lib/postgresql/9.6/bin/pg_dump: invalid option -- 'i'
error.log:Try "pg_dump --help" for more information.


the bug is in the file /usr/share/phppgadmin/dbexport.php :

at line 76 :

$cmd = $exe . " -i";"

must be replaced by :

"$cmd = $exe;"

the -i parameters does not need to be replaced by anything.


the bug is well known, there are even youtube video about the fix ...


the phpPgAdmin development seems discontinued but i hope this could be patched
since it is so minor.


cheers

Bug#886366: [src:linux]

[Antonio Russo]

Control: found linux/4.14.12-1

+1 for this also shows up in 4.14. It blocks building spl, and therefore
blocks migration for zfs users.

This also looks to have been reported a few months ago:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=833500

Bug#884887: Jochen's fix works for me

[Jeremy Lainé]

I can confirm that the change suggested by Jochen works, so the root 
cause is well understood.


One caveat : in my case the master preferences had trickled down into my 
own preferences in $HOME/.config/chromium/Default/Preferences so that I 
also had to remove the hardware.audio_capture_enabled entry there for 
the change to work.


As a result, users will probably remain affected by this issue even once 
the master preferences have been fixed.


Jeremy

Bug#886426: lintian: reports unoverridable bugs in auto-created dbgsym packages

[Chris Lamb]

tags 886426 + pending
thanks

Fixed in Git:

  
https://anonscm.debian.org/git/lintian/lintian.git/commit/?id=5f25c74cbebfa429837e6078278fab9f95ac73d6


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-

Bug#814677:

[Killyur Lin]

Bug#795261: add a warning for stripped python-*-dbg packages

[Chris Lamb]

tags 795261 + moreinfo
thanks


> > > add a warning for stripped python-*-dbg packages

Thanks Mattia for your comments and for filing the other bug.

Matthias, can you send over the name of an example package so I can be
sure I am 100% that I understand the issue correctly? :)


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-

Bug#886460: smarty3: CVE-2017-1000480

[Salvatore Bonaccorso]

Source: smarty3
Version: 3.1.31+20161214.1.c7d42e4+selfpack1-2
Severity: important
Tags: security upstream

Hi,

the following vulnerability was published for smarty3.

CVE-2017-1000480[0]:
| Smarty 3 before 3.1.32 is vulnerable to a PHP code injection when
| calling fetch() or display() functions on custom resources that does
| not sanitize template name.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-1000480
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000480

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Bug#886433: #886433

[Sébastien Delafond]

Control: tag -1 confirmed pending

The testing/ directory is new in recent in org-mode releases, and I
missed it when repacking org-mode-doc. I'll fix correct this with the
next upstream release.

Cheers,

--Seb