Bug#1073259: libyojson-ocaml-dev should depend on yojson-tools
Package: libyojson-ocaml-dev Version: 2.2.1-1 Severity: serious Tags: ftbfs Control: affects -1 src:botch https://buildd.debian.org/status/fetch.php?pkg=botch=ppc64el=0.24-3%2Bb1=1718448612=0 ... + ydump ./tools/native.sh: 512: ydump: not found ... Packages (build) depending on libyojson-ocaml-dev and users upgrading to trixie might see breakage when depending on or installing libyojson-ocaml-dev no longer provides the ydump tool. There is likely no good reason against libyojson-ocaml-dev depending on yojson-tools.
Bug#1073063: ausweisapp should depend on qml6-module-qtquick-effects
On Fri, 2024-06-14 at 10:33 +0200, Sune Stolborg Vuorela wrote: > On Friday, June 14, 2024 10:25:59 AM CEST John Paul Adrian Glaubitz wrote: > > I'm not denying that. However, a package named "qml6-module-qtquick-effects" > > doesn't sound like an interpreter to me. > > > > Thus, I don't really see how I am supposed to know as a maintainer what > > packages add Depends except for trial and error. Why not have one canonical > > "qt-interpretor" package or similar that applications can depend on? > > This is a module for a interpreted language. It is not much different than a > python package might need a hardcoded dependency on python-foo if it uses > that. or a perl package might need a hardcoded dependency on libperl-foo-bar- > baz if it uses the Foo::Bar::Baz perl module for important functionality. > > all qml*-module packages are qml (interpreted language) extensions. > > And yes. trial and error - or reading the sources - is for many interpreted > languages the only way of figuring it out. Ugh, that's truly a step backwards and way to add more burden to maintainers. I guess we'll be seeing plenty of such bug reports in the future when extensions get moved around or new ones get added. Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer `. `' Physicist `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Bug#1073063: ausweisapp should depend on qml6-module-qtquick-effects
On Fri, 2024-06-14 at 09:39 +0200, Sune Stolborg Vuorela wrote: > Control: severity -1 serious > > Missing dependencies are RC > > > This is a common problem with Qt6 and has been reported for a different > > dependency before, see [1]. > > It is normal for interpreted languages to have their dependencies managed > manually. This is just another version of that. I'm not denying that. However, a package named "qml6-module-qtquick-effects" doesn't sound like an interpreter to me. Thus, I don't really see how I am supposed to know as a maintainer what packages add Depends except for trial and error. Why not have one canonical "qt-interpretor" package or similar that applications can depend on? Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer `. `' Physicist `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Bug#1073063: ausweisapp should depend on qml6-module-qtquick-effects
Control: severity -1 normal Hello Reinhard, On Wed, 2024-06-12 at 18:40 +0200, Reinhard Karcher wrote: > ausweisapp doesn't start the gui, because qml6-module-qtquick-effects > is not installed. It should depend on that package. > Installing qml6-module-qtquick-effects solves the problem. This is a common problem with Qt6 and has been reported for a different dependency before, see [1]. I haven't found a satisfactory solution as hard-coding a dependency as suggested in your bug report would mean that the package cannot undergo automatic transitions. I am therefore reducing the severity to normal as the package would otherwise be removed from testing. Adrian > [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070018#10 -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer `. `' Physicist `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Bug#1073046: cups: FTBFS on riscv64 due to testsuite timeouts
Source: cups Version: 2.4.7-2 Severity: serious Tags: ftbfs Justification: ftbfs User: debian-ri...@lists.debian.org Usertags: riscv64 X-Debbugs-Cc: debian-ri...@lists.debian.org Hello, src:cups currently FTBFS on riscv64 due to a testsuite timeout [1]: Running command tests... Performing 5.1-lpadmin.sh: FAIL Performing 5.2-lpc.sh: PASS Performing 5.3-lpq.sh: FAIL Performing 5.4-lpstat.sh: FAIL Performing 5.5-lp.sh: FAIL Performing 5.6-lpr.sh: FAIL Performing 5.7-lprm.sh: FAIL Performing 5.8-cancel.sh: FAIL Performing 5.9-lpinfo.sh: FAIL Performing restart test: ./run-stp-tests.sh: 811: kill: No such process E: Build killed with signal TERM after 600 minutes of inactivity This issue has been observed on sparc64, so it seems reproducible. Thanks, Adrian > [1] > https://buildd.debian.org/status/fetch.php?pkg=cups=riscv64=2.4.7-2=1718180226=0 -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer `. `' Physicist `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Bug#1069498: libx86emu: FTBFS on armhf: mem.c:581:12: error: implicit declaration of function ‘inb’; did you mean ‘ins’? [-Werror=implicit-function-declaration]
Hi Guillem, On Tue, 2024-06-11 at 13:42 +0200, Guillem Jover wrote: > > I had a look at this, and it seems like this package has never really > > worked on ARM systems at all? And this was hidden due to the missing > > declarations not being an error. > > > > AFAIK, only x86 (i386 and amd64), ia64 and alpha have port I/O, other > > systems have instead memory mapped I/O, but the code in mem.c is > > unconditionally calling port I/O functions such as in*() and out*(), > > provided by glibc. > > > > Until the upstream code is ported to systems with memory mapper I/O, I > > think the "best" way to resolve this would be to restrict the > > architecture list to: > > > > any-amd64 any-i386 alpha ia64 > > The attached patch implements this. It should not affect reverse build > depending packages (only hwinfo) which is already arch restricted to > «amd64 i386». > > I'm including the arm list to confirm the above, but also in case > someone there feels like porting the library to support memory mapped > I/O? (But perhaps that's not worth the effort.) It's perfectly fine to disable libx86emu on ARM as it has already been correctly stated, there are no I/O ports on ARM so the above code won't work on ARM. I also don't expect that to change in the future, so it's not worth bothering about this in the future, especially since the upstream project hasn't been very active lately [1]. Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer `. `' Physicist `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Bug#1072828: texlive-binaries upgrade breaks therion build
On Sun, Jun 09, 2024 at 12:02:02AM +0200, Preuße, Hilmar wrote: > On 08.06.2024 16:09, Adrian Bunk wrote: > > Hi, Hi Hilmar, >... > Hence I tend to say this is something specific for sbuild environments, > which could have lower priority than "serious". all testing I did for the below statement was plain dpkg-buildpackage in a chroot. > > Downgrading texlive-binaries to 2023.20230311.66589-9 OR > > installing texlive-fonts-recommended works around this issue. > > Why not simply adding texlive-fonts-recommended to BD (which carries the > Type1 fonts of logo10) and then solve the issue? >... Because that doesn't fix whatever the bug is, which might also affect other packages or users. a minimal example inside therion-6.2.1/thbook/ after a failed build seems to be TEXINPUTS="/<>/build/thbook;." /usr/bin/pdftex --output-dir=/<>/build/thbook thbook.tex Did anything break or change regarding --output-dir ? In the working case with the old version the generated file is in debian/.debhelper/generated/_source/home/.texlive2023/texmf-var/fonts/pk/ljfour/public/knuth-lib/logo10.720pk > H. cu Adrian
Bug#1072828: texlive-binaries upgrade breaks therion build
Package: texlive-binaries
Version: 2024.20240313.70630+ds-2
Severity: serious
Tags: ftbfs
Control: affects -1 src:therion
https://buildd.debian.org/status/fetch.php?pkg=therion=amd64=6.2.1-1%2Bb1=1717847632=0
...
FAILED: thbook/thbook.pdf /<>/build/thbook/thbook.pdf
cd /<>/thbook && /usr/bin/cmake -E env FORCE_SOURCE_DATE=1
TEXINPUTS="/<>/build/thbook;." /usr/bin/pdftex
--output-dir=/<>/build/thbook
\\def\\outputsize{0}\\def\\reproducible{}\\input\ thbook.tex && /usr/bin/cmake
-E env FORCE_SOURCE_DATE=1 TEXINPUTS="/<>/build/thbook;."
/usr/bin/pdftex --output-dir=/<>/build/thbook
\\def\\outputsize{0}\\def\\reproducible{}\\input\ thbook.tex && /usr/bin/cmake
-E env FORCE_SOURCE_DATE=1 TEXINPUTS="/<>/build/thbook;."
/usr/bin/pdftex --output-dir=/<>/build/thbook
\\def\\outputsize{0}\\def\\reproducible{}\\input\ thbook.tex
This is pdfTeX, Version 3.141592653-2.6-1.40.26 (TeX Live 2025/dev/Debian)
(preloaded format=pdftex)
restricted \write18 enabled.
entering extended mode
(./thbook.tex No glyph to unicode mapping found! (./etc/supp-mis.tex
loading : Context Support Macros / Miscellaneous (2004.10.26)
) (./etc/supp-pdf.tex
loading : Context Support Macros / PDF
) (./etc/optarg.tex) (./etc/verbatim.tex) (./ch00.tex [1{/var/lib/texmf/fonts/m
ap/pdftex/updmap/pdftex.map} <./pic/thbook.jpg>]
(/<>/build/thbook/version.tex) [2]
Warning: re-run to input a newly generated TOC file [3] [4]) (./ch01.tex
[5 <./pic/ageom.pdf>] [6] [7] [MP to PDF] (./mp/schema.1) [8]) (./ch02.tex
[9] [10 <./pic/agrippa.jpg>]
Overfull \hbox (9.55724pt too wide) in paragraph at lines 96--99
[]\tt [.MM[.DD[@HH[:MM[:SS[.SS]] [- [.MM[.DD[@HH[:MM[:SS[.SS]]
][]
[11] [12] [13] [14] [15] [16] [17] [18] [19] [20] [21] [22]
Overfull \hbox (2.61252pt too wide) in paragraph at lines 824--857
[]\tt ice-pillar[]\rm , []\tt ice-stalactite[]\rm , []\tt ice-stalagmite[]\rm
, []\tt map-connection[]$[]$\rm , []\tt paleo-material[]\rm ,
Overfull \hbox (4.79291pt too wide) in paragraph at lines 824--857
[]\tt photo[]\rm , []\tt root[]\rm , []\tt seed-germination[]\rm , []\tt sink[
]\rm , []\tt spring[]$[]$\rm , []\tt tree-trunk[]\rm , []\tt u[]$[]$\rm , []\tt
vegetable-debris[]\rm ,
[23] [24] [25]
Overfull \hbox (0.4216pt too wide) in paragraph at lines 1015--1031
[]\it passages: []\tt wall[]\rm , []\tt con-tour[]\rm , []\tt slope[]$[]$\rm ,
[]\tt floor-step[]\rm , []\tt pit[]\rm , []\tt pitch[] \rm (syn-onym of pit),
[]\tt ceiling-
Overfull \hbox (0.65195pt too wide) in paragraph at lines 1032--1044
[]\it passage fills: []\tt flow-stone[]\rm , []\tt moon-milk[]\rm , []\tt rock
-border[]$[]$\rm , []\tt rock-edge[]$[]$\rm , []\tt water-flow[]\rm , []\tt aby
ss-
Overfull \hbox (1.1684pt too wide) in paragraph at lines 1045--1053
[]\it equipment: []\tt fixed-ladder[]\rm , []\tt handrail[]\rm , []\tt rope[]\
rm , []\tt rope-ladder[]\rm , []\tt steps[]\rm , []\tt via-ferrata[]\rm , []\tt
walk-
[MP to PDF] (./mp/xsect.1) [26] [27] [28] [29] [30] [31] [32] [33] [34]
[35] [36] [37] [38] [39] [40] [41] [42] [43] [44]) (./ch03.tex [45] [46 <./pic/
herakl.pdf>] [47] [48] [49]
Overfull \hbox (3.98236pt too wide) in paragraph at lines 294--294
[]\tt fonts-setup
[50] [51] [52] [MP to PDF] (./mp/page.1) [53 <./pic/page.pdf>] [54] [55]
[56] [57] [58]
Overfull \hbox (1.67323pt too wide) in paragraph at lines 718--720
[][][]\tt wall-source [] $\mit .$ \rm set source d
ata for pas-sage wall mod-
[59] [60] [61] [62]) (./ch04.tex [63] [64] [65 <./pic/database.pdf>] [66])
(./ch05.tex [67] [68 <./pic/thom.jpg>] [69] [70] [71] [72] [73] [74] [75]
[76] [77]) (./ch06.tex [78] [79] [80] [81] [82] [83] [84] [85] [86] [87]
[88] [89] [90] [91] [92] [93]) (./ch07.tex Warning: skipping the case studies)
[94]
kpathsea: Running mktexpk --mfmode / --bdpi 600 --mag 1+0/600 --dpi 600 logo10
mktexpk: Running mf-nowin -progname=mf \mode:=ljfour; mag:=1+0/600;
nonstopmode; input logo10
This is METAFONT, Version 2.71828182 (TeX Live 2025/dev/Debian) (preloaded
base=mf)
(/usr/share/texlive/texmf-dist/fonts/source/public/knuth-lib/logo10.mf
(/usr/share/texlive/texmf-dist/fonts/source/public/knuth-lib/logo.mf [77]
[69] [84] [65] [70] [80] [83] [79] [78]) )
Font metrics written on /<>/build/thbook/log
o10.tfm.
Output written on /<>/build/thbook/logo10.60
0gf (9 characters, 1748 bytes).
Transcript written on /<>/build/thbook/logo1
0.log.
mktexpk: `mf-nowin -progname=mf \mode:=ljfour; mag:=1+0/600; nonstopmode; input
logo10' failed to make logo10.600pk.
kpathsea: Appending font creation commands to
/<>/build/thbook/missfont.log.
)
(\end occurred when \ifeof on line 10 was incomplete)
(see the transcript file for additional information)
!pdfTeX error: /usr/bin/pdftex (file logo10): Font logo10 at 600 not found
==> Fatal error occurred, no output PDF file produced!
...
Downgrading texlive-binaries to 2023.20230311.66589-9 OR
installing texlive-fonts-recommended works around this issue.
Bug#1072824: odin FTBFS with VTK 9.3.0
Source: odin Version: 2.0.5-5 Severity: serious Tags: ftbfs https://buildd.debian.org/status/fetch.php?pkg=odin=amd64=2.0.5-5%2Bb2=1717847424=0 ... checking for main in -lvtkIOLegacy-7.1... no checking for main in -lvtkIOLegacy-7.0... no checking for main in -lvtkIOLegacy-6.3... no checking for main in -lvtkIOLegacy-6.2... no checking for main in -lvtkIOLegacy-6.1... no checking for main in -lvtkIOLegacy-6.0... no checking for main in -lvtkIOLegacy-9.0... no checking for main in -lvtkIOLegacy-9.1... no checking for main in -lvtkIO... no checking for main in -lvtkRendering... no checking for main in -lvtkGraphics... no checking for main in -lvtkFiltering... no checking for main in -lvtkCommon... no checking for vtkStructuredPoints.h... no checking for vtkArrowSource.h... no configure: error: VTK library missing
Bug#1072823: liggghts FTBFS with VTK 9.3.0
Source: liggghts Version: 3.8.0+repack1-9.1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/fetch.php?pkg=liggghts=amd64=3.8.0%2Brepack1-9.1%2Bb2=1717846024=0 ... /<>/src/dump_vtk.cpp: In member function ‘void LAMMPS_NS::DumpVTK::write_vtp(vtkSmartPointer, int, const char*)’: /<>/src/dump_vtk.cpp:170:18: error: ‘class vtkXMLPPolyDataWriter’ has no member named ‘SetInput’; did you mean ‘GetInput’? 170 | pwriter->SetInput(data); | ^~~~ | GetInput /<>/src/dump_vtk.cpp:187:17: error: ‘class vtkXMLPolyDataWriter’ has no member named ‘SetInput’; did you mean ‘GetInput’? 187 | writer->SetInput(data); | ^~~~ | GetInput /<>/src/dump_vtk.cpp: In member function ‘void LAMMPS_NS::DumpVTK::write_vtu(vtkSmartPointer, int, const char*)’: /<>/src/dump_vtk.cpp:209:18: error: ‘class vtkXMLPUnstructuredGridWriter’ has no member named ‘SetInput’; did you mean ‘GetInput’? 209 | pwriter->SetInput(data); | ^~~~ | GetInput /<>/src/dump_vtk.cpp:226:17: error: ‘class vtkXMLUnstructuredGridWriter’ has no member named ‘SetInput’; did you mean ‘GetInput’? 226 | writer->SetInput(data); | ^~~~ | GetInput /<>/src/dump_vtk.cpp: In member function ‘void LAMMPS_NS::DumpVTK::write_vtr(vtkSmartPointer, int, const char*)’: /<>/src/dump_vtk.cpp:280:43: error: ‘class vtkDataObject’ has no member named ‘GetProducerPort’ 280 | pwriter->SetInputConnection(data->GetProducerPort()); | ^~~ /<>/src/dump_vtk.cpp:297:42: error: ‘class vtkDataObject’ has no member named ‘GetProducerPort’ 297 | writer->SetInputConnection(data->GetProducerPort()); | ^~~ /<>/src/dump_vtk.cpp: In member function ‘void LAMMPS_NS::DumpVTK::write_vtk_unstructured_grid(vtkSmartPointer, int, const char*, char*)’: /<>/src/dump_vtk.cpp:322:42: error: ‘class vtkDataObject’ has no member named ‘GetProducerPort’ 322 | writer->SetInputConnection(data->GetProducerPort()); | ^~~ /<>/src/dump_vtk.cpp: In member function ‘void LAMMPS_NS::DumpVTK::write_vtk_rectilinear_grid(vtkSmartPointer, int, const char*, char*)’: /<>/src/dump_vtk.cpp:347:42: error: ‘class vtkDataObject’ has no member named ‘GetProducerPort’ 347 | writer->SetInputConnection(data->GetProducerPort()); | ^~~ /<>/src/dump_vtk.cpp: In member function ‘void LAMMPS_NS::DumpVTK::write_vtk_poly(vtkSmartPointer, int, const char*, char*)’: /<>/src/dump_vtk.cpp:372:42: error: ‘class vtkDataObject’ has no member named ‘GetProducerPort’ 372 | writer->SetInputConnection(data->GetProducerPort()); | ^~~ ...
Bug#1072822: gdcm FTBFS with VTK 9.3.0
Source: gdcm Version: 3.0.24-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/fetch.php?pkg=gdcm=amd64=3.0.24-1%2Bb2=1717845766=0 ... -- Building Utilities/VTK as a VTK 9 Module CMake Error at /usr/lib/x86_64-linux-gnu/cmake/vtk-9.3/vtkModule.cmake:2121 (message): The `SPDX_DESTINATION` must not be an absolute path. Use `CMAKE_INSTALL_PREFIX` to keep everything in a single installation prefix. Call Stack (most recent call first): /usr/lib/x86_64-linux-gnu/cmake/vtk-9.3/vtkModule.cmake:2667 (_vtk_module_check_destinations) CMakeLists.txt:696 (vtk_module_build) -- Configuring incomplete, errors occurred!
Bug#1072821: wireshark: binNMUs revert t64 transition
Source: wireshark Version: 4.2.4-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/fetch.php?pkg=wireshark=amd64=4.2.5-1%2Bb1=1717834351=0 ... Description: libwireshark-dev - network packet dissection library -- development files libwireshark17 - network packet dissection library -- shared library libwiretap-dev - network packet capture library -- development files libwiretap14 - network packet capture library -- shared library libwsutil-dev - network packet dissection utilities library -- development files libwsutil15 - network packet dissection utilities library -- shared library tshark - network traffic analyzer - console version wireshark - network traffic analyzer - graphical interface wireshark-common - network traffic analyzer - common files wireshark-dev - network traffic analyzer - development tools Changes: wireshark (4.2.5-1+b1) sid; urgency=low, binary-only=yes . * Binary-only non-maintainer upload for amd64; no source changes. * Rebuild against Qt 6.6.2. ... debian/rules: ... ifneq ($(filter noble unstable testing trixie UNRELEASED,$(DEB_DISTRIBUTION)),) sed "$(CONTROL_IN_SED_CMD)" debian/control.t64.in > debian/control else sed "$(CONTROL_IN_SED_CMD)" debian/control.in > debian/control ... sid != unstable
Bug#1072390: python3-requirements: Breaks+Replaces must be (<< 0.9.0-0.3~)
Package: python3-requirements Version: 0.9.0-0.3 Severity: serious X-Debbugs-Cc: Gavin Lai (賴建宇) , Alexandre Detiste , SZ Lin (林上智) ... Unpacking python3-requirements (0.9.0-0.3) ... dpkg: error processing archive /tmp/apt-dpkg-install-QTQFZ9/47-python3-requirements_0.9.0-0.3_all.deb (--unpack): trying to overwrite '/usr/lib/python3/dist-packages/requirements/__init__.py', which is also in package python3-requirement-parser 0.9.0-0.2 ...
Bug#1070256: closed by Debian FTP Masters (reply to Alec Leamas ) (Bug#1070256: fixed in libcxx-serial 1.2.1-6)
On Wed, May 29, 2024 at 05:15:45PM +0200, Alec Leamas wrote: >... > I can see the build log, but have problems reproducing the problem. In > short, I do > > $ export DEB_BUILD_OPTIONS=nobench nocheck parallel=2 > $ dpkg-buildpackage --sanitize-env -us -uc -B -rfakeroot > > which configures and builds successfully. > > Attaching the build log. Have you any hint about what's going on? $ export DEB_BUILD_OPTIONS=nobench nocheck parallel=2 $ echo $DEB_BUILD_OPTIONS nobench $ export DEB_BUILD_OPTIONS="nobench nocheck parallel=2" $ echo $DEB_BUILD_OPTIONS nobench nocheck parallel=2 $ > Cheers! > --alec cu Adrian
Bug#1071759: firebird4.0 FTBFS with libre2-dev 20240501
Source: firebird4.0 Version: 4.0.4.3010.ds6-3 Severity: serious Tags: ftbfs patch Forwarded: https://github.com/FirebirdSQL/firebird/commit/936e045d50f4f6632017e1cb0edea6ef960fc80c https://buildd.debian.org/status/logs.php?pkg=firebird4.0=4.0.4.3010.ds6-3%2Bb1 ... In file included from /usr/include/absl/base/config.h:86, from /usr/include/absl/base/internal/invoke.h:40, from /usr/include/absl/base/call_once.h:34, from /usr/include/re2/re2.h:222, from /<>/src/common/../common/SimilarToRegex.h:25, from /<>/src/common/SimilarToRegex.cpp:22: /usr/include/absl/base/policy_checks.h:79:2: error: #error "C++ versions less than C++14 are not supported." 79 | #error "C++ versions less than C++14 are not supported." | ^ ...
Bug#1070256: closed by Debian FTP Masters (reply to Alec Leamas ) (Bug#1070256: fixed in libcxx-serial 1.2.1-6)
Control: reopen -1 On Sun, May 12, 2024 at 07:09:07PM +, Debian Bug Tracking System wrote: >... > Changes: > libcxx-serial (1.2.1-6) trixie; urgency=medium > . >* Avoid crash when running with nocheck profile. Closes: #1070256 >... 1.2.1-7 does still FTBFS: https://buildd.debian.org/status/fetch.php?pkg=libcxx-serial=sh4=1.2.1-7=1715548569=0 ifeq (,$(findstring nocheck,$(DEB_BUILD_PROFILES))) ENABLE_TESTS := ON else ENABLE_TESTS := OFF endif This should be DEB_BUILD_OPTIONS, not DEB_BUILD_PROFILES. cu Adrian
Bug#1064938: isospec - maintainer does not access email from ftp-master
Hi Bastian, The Debichem Group maintains ~ 140 packages with this maintainer address at lists.alioth.debian.org. Was this any misconfiguration on the debian.org side, or is/was this any issue at alioth-lists.debian.net, or what else might have gone wrong here? Thanks Adrian On Tue, Feb 27, 2024 at 11:23:14PM +0100, Bastian Blank wrote: > Package: isospec > Severity: serious > > - Forwarded message from debichem-devel-ow...@alioth-lists.debian.net > - > > From: debichem-devel-ow...@alioth-lists.debian.net > To: ftpmas...@ftp-master.debian.org > Subject: Processing of isospec_2.2.1-4.1~exp2_source.changes > > You are not allowed to post to this mailing list From: a domain which > publishes a DMARC policy of reject or quarantine, and your message has > been automatically rejected. If you think that your messages are > being rejected in error, contact the mailing list owner at > debichem-devel-ow...@alioth-lists.debian.net. > > > Date: Sat, 24 Feb 2024 02:03:38 + > From: Debian FTP Masters > To: debichem-de...@lists.alioth.debian.org > Subject: Processing of isospec_2.2.1-4.1~exp2_source.changes > > isospec_2.2.1-4.1~exp2_source.changes uploaded successfully to localhost > along with the files: > isospec_2.2.1-4.1~exp2.dsc > isospec_2.2.1-4.1~exp2.debian.tar.xz > isospec_2.2.1-4.1~exp2_source.buildinfo > > Greetings, > > Your Debian queue daemon (running on host usper.debian.org) > > > > - End forwarded message - > > -- > Hailing frequencies open, Captain.
Bug#1059133: dogecoin: FTBFS: error: invalid ‘static_cast’ from type ‘boost::detail::function::function_buffer_members::obj_ptr_t’ {aka ‘void*’} to type ‘void (*)(bool, const CBlockIndex*)’
Control: reassign -1 libboost1.83-dev 1.83.0-2.1 Control: retitle -1 libboost1.83-dev: Please add upstream fix needed for dogecoin Control: affects -1 src:dogecoin Control: tags -1 patch Control: forwarded -1 https://github.com/boostorg/function/pull/47 On Tue, Jan 09, 2024 at 06:37:44PM -0500, Chad Jacob Milios wrote: > Please see https://github.com/boostorg/function/pull/47 and let us know if > that minor modification helps you out. Yes, it does. cu Adrian
Bug#1028634: closed by Sergio Durigan Junior (Re: Bug#1028634: tiledarray: FTBFS: Could not find a package configuration file provided by "blaspp")
On Wed, Jan 24, 2024 at 08:09:03PM +, Debian Bug Tracking System wrote: >... > Date: Wed, 24 Jan 2024 14:59:30 -0500 > From: Sergio Durigan Junior > To: 1028634-cl...@bugs.debian.org > Subject: Re: Bug#1028634: tiledarray: FTBFS: Could not find a package > configuration file provided by "blaspp" > > On Tuesday, January 24 2023, Adrian Bunk wrote: > > > On Fri, Jan 13, 2023 at 11:59:48PM +0100, Sebastian Ramacher wrote: > >> Source: tiledarray > >> Version: 1.0.0-1 > >> Severity: serious > >> Tags: ftbfs > >>... > >> blasppConfig.cmake > >> blaspp-config.cmake > >> > >> Add the installation prefix of "blaspp" to CMAKE_PREFIX_PATH or set > >> "blaspp_DIR" to a directory containing one of the above files. If > >> "blaspp" > >> provides a separate development package or SDK, be sure it has been > >> installed. > >> Call Stack (most recent call first): > >> /usr/lib/cmake/BTAS/btas-config.cmake:104 (find_dependency) > >> cmake/modules/FindOrFetchBTAS.cmake:1 (find_package) > >> CMakeLists.txt:279 (include) > > > > This looks like a problem in libbtas-dev (unpackaged dependency blaspp?). > > The package is building correctly now. Closing the bug. >... It does still FTBFS: https://buildd.debian.org/status/logs.php?pkg=tiledarray=1.0.0-1 cu Adrian
Bug#1071643: horizon-eda: Missing build dependency on cppzmq-dev
On Thu, May 23, 2024 at 09:34:48AM +0200, Uwe Steinmann wrote: > Thanks Adrian! > > Quite strange. It does have a build depend on cppzmq-dev ... No, it does not: https://tracker.debian.org/media/packages/h/horizon-eda/control-2.6.0-2 >... > So I restarted from ground in pbuilder and > 1. copied >horizon-eda_2.6.0-3.debian.tar.xz, >... 2.6.0-3 is not in the archive. cu Adrian
Bug#1071643: horizon-eda: Missing build dependency on cppzmq-dev
Source: horizon-eda Version: 2.6.0-2 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=horizon-eda=2.6.0-2 ... Has header "zmq.hpp" : NO ../meson.build:46:8: ERROR: Problem encountered: cppzmq not found I haven't checked whether this is the only missing build dependency. BTW: The build dependency on libzmq5 looks wrong and is already covered by the build dependency on libzmq3-dev, please remove libzmq5 since this will break with the next soname change of libzmq.
Bug#1071452: dnsdbq FTBFS on 32bit with 64bit time_t
Source: dnsdbq
Version: 2.6.6-1
Severity: serious
Tags: ftbfs
https://buildd.debian.org/status/logs.php?pkg=dnsdbq=2.6.6-1
...
time.c: In function ‘timeval_str’:
time.c:83:36: error: format ‘%ld’ expects argument of type ‘long int’, but
argument 3 has type ‘__suseconds64_t’ {aka ‘long long int’} [-Werror=format=]
83 | sprintf(dst, ".%03ld", src->tv_usec % 1000);
|^ ~~~
|||
|long int __suseconds64_t
{aka long long int}
|%03lld
time.c:85:36: error: format ‘%ld’ expects argument of type ‘long int’, but
argument 3 has type ‘__suseconds64_t’ {aka ‘long long int’} [-Werror=format=]
85 | sprintf(dst, ".%06ld", src->tv_usec % 100);
|^ ~~
|||
|long int __suseconds64_t
{aka long long int}
|%06lld
cc1: all warnings being treated as errors
make[1]: *** [Makefile:76: time.o] Error 1
Bug#1071277: petsc4py: binary-all FTBFS
Source: petsc4py Version: 3.20.5-2 Severity: serious Tags: ftbfs https://buildd.debian.org/status/package.php?p=petsc4py=sid ... debian/rules execute_after_dh_auto_build-indep make[1]: Entering directory '/<>' PYTHONPATH=/<>/.pybuild/cpython3_3.11_petsc4py_real3.20/build http_proxy='127.0.0.1:9' sphinx-build -N -bhtml docs/source build/html # HTML generator Running Sphinx v7.2.6 Using PETSC inventory from https://petsc.org/release/objects.inv making output directory... done [autosummary] generating autosummary for: citing.rst, demo/demo.rst, demo/poisson2d/poisson2d.rst, documentation_standards.rst, index.rst, install.rst, overview.rst, petsc_options.rst, petsc_python_types.rst, reference.rst WARNING: [autosummary] failed to import petsc4py. Possible hints: * ValueError: not enough values to unpack (expected 2, got 1) * ModuleNotFoundError: No module named 'petsc4py' * KeyError: 'petsc4py' Extension error (sphinx.ext.autosummary): Handler for event 'builder-inited' threw an exception (exception: no module named petsc4py) make[1]: *** [debian/rules:78: execute_after_dh_auto_build-indep] Error 2
Bug#1071193: libqt6core6t64/experimental breaks ABI
On Wed, May 15, 2024 at 11:27:25PM +0300, Adrian Bunk wrote: > Package: libqt6core6t64 > Version: 6.6.2+dfsg-7 > Severity: serious > Tags: ftbfs > Control: affects -1 libqt6core5compat6 src:kf6-kwallet > > https://buildd.debian.org/status/logs.php?pkg=kf6-kwallet=6.0.0-1 > > ... > Get:32 https://deb.debian.org/debian experimental/main arm64 libqt6core6t64 > arm64 6.6.2+dfsg-7 [1579 kB] > ... > Get:291 https://deb.debian.org/debian unstable/main arm64 libqt6core5compat6 > arm64 6.4.2-4+b2 [126 kB] > ... > /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined > reference to `QUtf16::convertToUnicode(QByteArrayView, > QStringConverterBase::State*, DataEndianness)@Qt_6' > /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined > reference to `QUtf16::convertFromUnicode(QStringView, > QStringConverterBase::State*, DataEndianness)@Qt_6' > /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined > reference to `QUtf32::convertToUnicode(QByteArrayView, > QStringConverterBase::State*, DataEndianness)@Qt_6' > /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined > reference to `QUtf8::convertFromUnicode(QStringView)@Qt_6' > /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined > reference to `QUtf32::convertFromUnicode(QStringView, > QStringConverterBase::State*, DataEndianness)@Qt_6' > /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined > reference to `QUtf8::convertFromUnicode(QStringView, > QStringConverterBase::State*)@Qt_6' > /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined > reference to `QUtf8::convertToUnicode(QChar*, QByteArrayView)@Qt_6' > /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined > reference to `QUtf8::convertToUnicode(QByteArrayView, > QStringConverterBase::State*)@Qt_6' > collect2: error: ld returned 1 exit status > > > This is due to: > https://salsa.debian.org/qt-kde-team/qt6/qt6-base/-/commit/b1d2e462c65933b577ec49b4e4156ec8ad426b26 Apparently the symbols were moved to PRIVATE_API: _ZN5QUtf816convertToUnicodeE14QByteArrayViewPN20QStringConverterBase5StateE@@Qt_6_PRIVATE_API _ZN5QUtf816convertToUnicodeEPDs14QByteArrayView@@Qt_6_PRIVATE_API _ZN6QUtf1616convertToUnicodeE14QByteArrayViewPN20QStringConverterBase5StateE14DataEndianness@@Qt_6_PRIVATE_API _ZN6QUtf3216convertToUnicodeE14QByteArrayViewPN20QStringConverterBase5StateE14DataEndianness@@Qt_6_PRIVATE_API _ZN5QUtf818convertFromUnicodeE11QStringView@@Qt_6_PRIVATE_API _ZN5QUtf818convertFromUnicodeE11QStringViewPN20QStringConverterBase5StateE@@Qt_6_PRIVATE_API _ZN6QUtf1618convertFromUnicodeE11QStringViewPN20QStringConverterBase5StateE14DataEndianness@@Qt_6_PRIVATE_API _ZN6QUtf3218convertFromUnicodeE11QStringViewPN20QStringConverterBase5StateE14DataEndianness@@Qt_6_PRIVATE_API This is an upstream(?) ABI break, but since libqt6core5compat6 seems to be the only affected package something like Breaks: libqt6core5compat6 (<< 6.6) might be the best available option to avoid issues when upgrading from bookworm. cu Adrian
Bug#1071193: libqt6core6t64/experimental breaks ABI
Package: libqt6core6t64 Version: 6.6.2+dfsg-7 Severity: serious Tags: ftbfs Control: affects -1 libqt6core5compat6 src:kf6-kwallet https://buildd.debian.org/status/logs.php?pkg=kf6-kwallet=6.0.0-1 ... Get:32 https://deb.debian.org/debian experimental/main arm64 libqt6core6t64 arm64 6.6.2+dfsg-7 [1579 kB] ... Get:291 https://deb.debian.org/debian unstable/main arm64 libqt6core5compat6 arm64 6.4.2-4+b2 [126 kB] ... /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined reference to `QUtf16::convertToUnicode(QByteArrayView, QStringConverterBase::State*, DataEndianness)@Qt_6' /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined reference to `QUtf16::convertFromUnicode(QStringView, QStringConverterBase::State*, DataEndianness)@Qt_6' /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined reference to `QUtf32::convertToUnicode(QByteArrayView, QStringConverterBase::State*, DataEndianness)@Qt_6' /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined reference to `QUtf8::convertFromUnicode(QStringView)@Qt_6' /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined reference to `QUtf32::convertFromUnicode(QStringView, QStringConverterBase::State*, DataEndianness)@Qt_6' /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined reference to `QUtf8::convertFromUnicode(QStringView, QStringConverterBase::State*)@Qt_6' /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined reference to `QUtf8::convertToUnicode(QChar*, QByteArrayView)@Qt_6' /usr/bin/ld: /lib/aarch64-linux-gnu/libQt6Core5Compat.so.6: undefined reference to `QUtf8::convertToUnicode(QByteArrayView, QStringConverterBase::State*)@Qt_6' collect2: error: ld returned 1 exit status This is due to: https://salsa.debian.org/qt-kde-team/qt6/qt6-base/-/commit/b1d2e462c65933b577ec49b4e4156ec8ad426b26
Bug#1071191: elfkickers attempts to write to /usr/local during the build
Source: elfkickers Version: 0+git20240221+ds-1 Severity: serious Tags: ftbfs X-Debbugs-Cc: Gürkan Myczko https://buildd.debian.org/status/logs.php?pkg=elfkickers=0%2Bgit20240221%2Bds-1 ... dh_auto_install --destdir=debian/elfkickers/ -a make -j4 install DESTDIR=/<>/elfkickers-0\+git20240221\+ds/debian/elfkickers AM_UPDATE_INFO_DIR=no "INSTALL=install --strip-program=true" make[1]: Entering directory '/<>' mkdir -p /usr/local/bin cp bin/* /usr/local/bin/. cp: cannot create regular file '/usr/local/bin/./ebfc': Permission denied cp: cannot create regular file '/usr/local/bin/./elfls': Permission denied cp: cannot create regular file '/usr/local/bin/./elftoc': Permission denied cp: cannot create regular file '/usr/local/bin/./infect': Permission denied cp: cannot create regular file '/usr/local/bin/./objres': Permission denied cp: cannot create regular file '/usr/local/bin/./rebind': Permission denied cp: cannot create regular file '/usr/local/bin/./sstrip': Permission denied make[1]: *** [Makefile:28: install] Error 1
Bug#1071138: falkon/experimental FTBFS: missing build dependencies
Source: falkon Version: 24.04.80-2 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=falkon=24.04.80-2 ... CMake Error at CMakeLists.txt:108 (find_package): By not providing "FindKF6I18n.cmake" in CMAKE_MODULE_PATH this project has asked CMake to find a package configuration file provided by "KF6I18n", but CMake did not find one. Could not find a package configuration file provided by "KF6I18n" with any of the following names: KF6I18nConfig.cmake kf6i18n-config.cmake Add the installation prefix of "KF6I18n" to CMAKE_PREFIX_PATH or set "KF6I18n_DIR" to a directory containing one of the above files. If "KF6I18n" provides a separate development package or SDK, be sure it has been installed. -- Configuring incomplete, errors occurred! This is likely a missing build dependency on libkf6i18n-dev (untested). Looking at CMakeLists.txt, there are also optional dependencies where packages are now available in experimental.
Bug#1071137: pytorch-audio FTBFS with pytorch 2.1.2
Source: pytorch-audio Version: 0.13.1-1 Severity: serious Tags: ftbfs trixie sid patch Forwarded: https://github.com/pytorch/audio/commit/d1cc1da6a4d6cb2fa44eda457c141aa2ac73e11a https://buildd.debian.org/status/logs.php?pkg=pytorch-audio=0.13.1-1%2Bb3 ... In file included from /usr/include/torch/csrc/api/include/torch/types.h:3, from /usr/include/torch/script.h:3, from /<>/torchaudio/csrc/rnnt/compute_alphas.cpp:1: /usr/include/ATen/ATen.h:4:2: error: #error C++17 or later compatible compiler is required to use ATen. 4 | #error C++17 or later compatible compiler is required to use ATen. | ^ ...
Bug#1071133: firebird4.0: binary-all FTBFS
Source: firebird4.0 Version: 4.0.4.3010.ds6-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=firebird4.0=all ... dh_lintian sed -i -e "s/TRIPLET/x86_64-linux-gnu/g" \ debian/libib-util/usr/share/lintian/overrides/libib-util sed: can't read debian/libib-util/usr/share/lintian/overrides/libib-util: No such file or directory make[1]: *** [debian/rules:185: override_dh_lintian] Error 2
Bug#1071132: ovito accesses the internet during the build
Source: ovito
Version: 3.10.5~ds-1
Severity: serious
Tags: ftbfs
https://buildd.debian.org/status/fetch.php?pkg=ovito=all=3.10.5~ds-1=1713769268=0
...
Running Sphinx v7.2.6
loading intersphinx inventory from
https://ovito.org/docs/current/python/objects.inv...
loading intersphinx inventory from
https://docs.scipy.org/doc/scipy/objects.inv...
Warning, treated as error:
failed to reach any of the inventories with the following issues:
intersphinx inventory 'https://ovito.org/docs/current/python/objects.inv' not
fetchable due to :
HTTPSConnectionPool(host='ovito.org', port=443): Max retries exceeded with url:
/docs/current/python/objects.inv (Caused by
NewConnectionError(': Failed to establish a new connection: [Errno -3] Temporary
failure in name resolution'))
...
Bug#1071131: pytorch-geometric FTBFS (several reasons)
Source: pytorch-geometric Version: 2.3.1-2 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=pytorch-geometric=all
Bug#1058130: closed by Debian FTP Masters (reply to Ulises Vitulli ) (Bug#1058130: fixed in python-nmea2 1.19.0-1)
Control: reopen -1
On Mon, Feb 12, 2024 at 10:57:03PM +, Debian Bug Tracking System wrote:
>...
> python-nmea2 (1.19.0-1) unstable; urgency=medium
> .
>* New upstream release (Closes: #1058130).
>...
> Relevant part (hopefully):
> > fakeroot debian/rules clean
> > dh clean --with python3 --buildsystem=pybuild
> >dh_auto_clean -O--buildsystem=pybuild
> > I: pybuild base:310: python3.12 setup.py clean
> > Traceback (most recent call last):
> > File "/<>/setup.py", line 3, in
> > import imp
> > ModuleNotFoundError: No module named 'imp'
> > E: pybuild pybuild:395: clean: plugin distutils failed with: exit code=1:
> > python3.12 setup.py clean
> > dh_auto_clean: error: pybuild --clean -i python{version} -p "3.12 3.11"
> > returned exit code 13
> > make: *** [debian/rules:7: clean] Error 25
>...
The fix is not included in 1.19.0-2:
https://buildd.debian.org/status/fetch.php?pkg=python-nmea2=all=1.19.0-2=1715629490=0
cu
Adrian
Bug#1070854: clc-intercal FTBFS: dpkg-genbuildinfo: error: binary build with no binary artifacts found
On Tue, May 14, 2024 at 11:16:28AM +0100, Mark Brown wrote: > On Fri, May 10, 2024 at 05:25:35PM +0300, Adrian Bunk wrote: > > > chmod +x `pwd`/debian/clc-intercal/usr/bin/* > > dpkg-genbuildinfo --build=any > > -O../clc-intercal_1.00-1_ppc64el-buildd.buildinfo > > dpkg-genbuildinfo: error: binary build with no binary artifacts found; > > .buildinfo is meaningless > > dpkg-buildpackage: error: dpkg-genbuildinfo --build=any > > -O../clc-intercal_1.00-1_ppc64el-buildd.buildinfo subprocess returned exit > > status 25 > > I can't reproduce this, and nothing about the build I'm seeing in the > log looks meaningfully different to what I get when I build locally. I can reproduce it with dpkg-buildpackage -B > AFAICT there are .so files being installed among the various perl things > and dpkg-genbuildinfo runs happily. ... build-arch: build-indep: build-stamp ... # Build architecture-dependent files here. binary-arch: build install # We have nothing to do by default. # Build architecture-independent files here. binary-indep: build install ... This looks wrong for a package that builds no Architecture: all packages. cu Adrian
Bug#1071081: phpunit-environment/experimental FTBFS: Error: Call to undefined method SebastianBergmann\Environment\Runtime::getRawBinary()
Source: phpunit-environment Version: 7.1.0-1 Severity: serious Tags: ftbfs Forwarded: https://github.com/sebastianbergmann/environment/commit/ff8e9b0dc10315e13f3a7951eec6b227e66997e7 https://buildd.debian.org/status/fetch.php?pkg=phpunit-environment=all=7.1.0-1=1715633007=0 ... There was 1 error: 1) SebastianBergmann\Environment\RuntimeTest::testRawBinaryCanBeRetrieved Error: Call to undefined method SebastianBergmann\Environment\Runtime::getRawBinary() /<>/tests/RuntimeTest.php:48 ERRORS! Tests: 22, Assertions: 13, Errors: 1, Skipped: 8. make[1]: *** [debian/rules:12: override_dh_auto_test] Error 2
Bug#1063004: synfig: NMU diff for 64-bit time_t transition
On Sat, Feb 24, 2024 at 12:41:14PM -0800, Steve Langasek wrote: > Control: tags -1 - pending > Control: severity -1 serious > > Unfortunately, it appears synfig ftbfs in unstable and experimental: > > [...] > checking for Magick++ >= 6.4.2... configure: error: *** Unable to find > Magick++ > cd synfig-core && tail -v -n \+0 config.log > [...] > > > (https://buildd.debian.org/status/fetch.php?pkg=synfig=amd64=1.5.1%2Bdfsg-3.1%7Eexp1=1707063449=0) > > Therefore we will not be able to NMU this. Marking the bug serious as the > mass NMUs are imminent within a few days and this becomes a serious bug once > the toolchain changes land. This is due to experimental using a different dependency resolver than unstable, and graphicsmagick-libmagick-dev-compat also providing libmagick++-dev An upload to unstable will likely build fine, but technically it would in any case be more correct to Build-Depends: libmagick++-dev (>= 7:6.4.2) cu Adrian
Bug#1071075: python-easydev accesses the internet during the build
Source: python-easydev
Version: 0.13.2+dfsg1-1
Severity: serious
Tags: ftbfs
https://buildd.debian.org/status/fetch.php?pkg=python-easydev=all=0.13.2%2Bdfsg1-1=1714380640=0
...
=== FAILURES ===
__ test_isurl __
def test_isurl():
> assert isurl_reachable("www.google.com") == True
E AssertionError: assert False == True
E+ where False = isurl_reachable('www.google.com')
test/test_url.py:7: AssertionError
=== short test summary info
FAILED test/test_url.py::test_isurl - AssertionError: assert False == True
= 1 failed, 56 passed in 2.36s =
...
Bug#1071039: iptux FTBFS on 32bit with 64bit time_t
Source: iptux
Version: 0.9.1-1
Severity: serious
Tags: ftbfs
https://buildd.debian.org/status/logs.php?pkg=iptux=0.9.1-1
...
FAILED: src/iptux-core/libiptux-core.so.0.9.1.p/internal_SendFileData.cpp.o
c++ -Isrc/iptux-core/libiptux-core.so.0.9.1.p -Isrc/iptux-core
-I../src/iptux-core -Isrc -I../src -Isrc/api -I../src/api
-I/usr/include/glib-2.0 -I/usr/lib/arm-linux-gnueabihf/glib-2.0/include
-I/usr/include/sysprof-6 -I/usr/include/jsoncpp -I/usr/include/sigc++-2.0
-I/usr/lib/arm-linux-gnueabihf/sigc++-2.0/include -fdiagnostics-color=always
-D_GLIBCXX_ASSERTIONS=1 -Wall -Winvalid-pch -Wextra -Wpedantic -std=c++14
-Werror=format -g -O2 -ffile-prefix-map=/<>=.
-fstack-protector-strong -fstack-clash-protection -Wformat
-Werror=format-security -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64
-D_TIME_BITS=64 -Wdate-time -D_FORTIFY_SOURCE=2 -fPIC -pthread -MD -MQ
src/iptux-core/libiptux-core.so.0.9.1.p/internal_SendFileData.cpp.o -MF
src/iptux-core/libiptux-core.so.0.9.1.p/internal_SendFileData.cpp.o.d -o
src/iptux-core/libiptux-core.so.0.9.1.p/internal_SendFileData.cpp.o -c
../src/iptux-core/internal/SendFileData.cpp
../src/iptux-core/internal/SendFileData.cpp: In member function ‘void
iptux::SendFileData::SendDirFiles()’:
../src/iptux-core/internal/SendFileData.cpp:205:16: error: format ‘%lx’ expects
argument of type ‘long unsigned int’, but argument 8 has type ‘__time64_t’ {aka
‘long long int’} [-Werror=format=]
205 |":%s:%.9" PRIx64 ":%lx:%lx=%lx:%lx=%lx:", dirname,
|^~~~
../src/iptux-core/internal/SendFileData.cpp:205:16: error: format ‘%lx’ expects
argument of type ‘long unsigned int’, but argument 10 has type ‘__time64_t’
{aka ‘long long int’} [-Werror=format=]
205 |":%s:%.9" PRIx64 ":%lx:%lx=%lx:%lx=%lx:", dirname,
|^~~~
../src/iptux-core/internal/SendFileData.cpp:243:36: error: format ‘%lx’ expects
argument of type ‘long unsigned int’, but argument 6 has type ‘__time64_t’ {aka
‘long long int’} [-Werror=format=]
243 |":.:0:%lx:%lx=%lx:%lx=%lx:", IPMSG_FILE_RETPARENT,
| ~~^
||
|long unsigned int
| %llx
../src/iptux-core/internal/SendFileData.cpp:243:44: error: format ‘%lx’ expects
argument of type ‘long unsigned int’, but argument 8 has type ‘__time64_t’ {aka
‘long long int’} [-Werror=format=]
243 |":.:0:%lx:%lx=%lx:%lx=%lx:", IPMSG_FILE_RETPARENT,
| ~~^
||
|long unsigned int
| %llx
../src/iptux-core/internal/SendFileData.cpp:264:32: warning: cast between
incompatible function types from ‘int (*)(DIR*)’ to ‘GFunc’ {aka ‘void
(*)(void*, void*)’} [-Wcast-function-type]
264 | g_queue_foreach(, GFunc(closedir), NULL);
|^~~
cc1plus: some warnings being treated as errors
...
FAILED: src/iptux-core/libiptux-core.so.0.9.1.p/internal_TcpData.cpp.o
c++ -Isrc/iptux-core/libiptux-core.so.0.9.1.p -Isrc/iptux-core
-I../src/iptux-core -Isrc -I../src -Isrc/api -I../src/api
-I/usr/include/glib-2.0 -I/usr/lib/arm-linux-gnueabihf/glib-2.0/include
-I/usr/include/sysprof-6 -I/usr/include/jsoncpp -I/usr/include/sigc++-2.0
-I/usr/lib/arm-linux-gnueabihf/sigc++-2.0/include -fdiagnostics-color=always
-D_GLIBCXX_ASSERTIONS=1 -Wall -Winvalid-pch -Wextra -Wpedantic -std=c++14
-Werror=format -g -O2 -ffile-prefix-map=/<>=.
-fstack-protector-strong -fstack-clash-protection -Wformat
-Werror=format-security -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64
-D_TIME_BITS=64 -Wdate-time -D_FORTIFY_SOURCE=2 -fPIC -pthread -MD -MQ
src/iptux-core/libiptux-core.so.0.9.1.p/internal_TcpData.cpp.o -MF
src/iptux-core/libiptux-core.so.0.9.1.p/internal_TcpData.cpp.o.d -o
src/iptux-core/libiptux-core.so.0.9.1.p/internal_TcpData.cpp.o -c
../src/iptux-core/internal/TcpData.cpp
../src/iptux-core/internal/TcpData.cpp: In member function ‘void
iptux::TcpData::RecvSublayer(uint32_t)’:
../src/iptux-core/internal/TcpData.cpp:146:35: error: format ‘%lx’ expects
argument of type ‘long unsigned int’, but argument 7 has type ‘time_t’ {aka
‘long long int’} [-Werror=format=]
146 | snprintf(path, MAX_PATHLEN, "%s" PIC_PATH "/%" PRIx32 "-%" PRIx32
"-%lx",
|
^~~~
147 |g_get_user_cache_dir(), inAddrToUint32(pal->ipv4()),
count++,
148 |time(NULL));
|~~
||
|time_t {aka long long int}
Bug#1066629: ucspi-tcp: FTBFS: tcpserver.c:143:29: error: implicit declaration of function ‘getpid’ [-Werror=implicit-function-declaration]
On Sat, Apr 13, 2024 at 01:59:28AM +0300, Peter Pentchev wrote: >... > I will probably upload a new ucspi-tcp version in a couple of days. Any update on this? > G'luck, > Peter Thanks Adrian
Bug#1070956: octave-fits FTBFS with Octave 9.1.0
Source: octave-fits Version: 1.0.7-7 Severity: serious Tags: ftbfs trixie sid https://buildd.debian.org/status/fetch.php?pkg=octave-fits=amd64=1.0.7-7%2Bb4=1715454563=0 ... g++ -c -Wdate-time -D_FORTIFY_SOURCE=2 -fPIC -I/usr/include/octave-9.1.0/octave/.. -I/usr/include/octave-9.1.0/octave -pthread -fopenmp -g -O2 -ffile-prefix-map=/<>=. -fstack-protector-strong -fstack-clash-protection -Wformat -Werror=format-security -fcf-protection -Wall save_fits_image_multi_ext.cc -o /tmp/oct-bxJQR8.o save_fits_image_multi_ext.cc: In function ‘octave_value_list Fsave_fits_image_multi_ext(const octave_value_list&, int)’: save_fits_image_multi_ext.cc:140:60: error: passing ‘const NDArray’ as ‘this’ argument discards qualifiers [-fpermissive] 140 | double * datap = const_cast( image.fortran_vec() ); | ~^~ In file included from /usr/include/octave-9.1.0/octave/../octave/Array-util.h:31, from /usr/include/octave-9.1.0/octave/../octave/MSparse.h:31, from /usr/include/octave-9.1.0/octave/../octave/MatrixType.h:33, from /usr/include/octave-9.1.0/octave/../octave/mx-base.h:33, from /usr/include/octave-9.1.0/octave/../octave/Matrix.h:34, from /usr/include/octave-9.1.0/octave/../octave/oct.h:33, from save_fits_image_multi_ext.cc:19: /usr/include/octave-9.1.0/octave/../octave/Array.h:666:20: note: in call to ‘T* Array::fortran_vec() [with T = double; Alloc = std::allocator]’ 666 | OCTARRAY_API T * fortran_vec (); |^~~ save_fits_image.cc: In function ‘octave_value_list Fsave_fits_image(const octave_value_list&, int)’: save_fits_image.cc:132:58: error: passing ‘const NDArray’ as ‘this’ argument discards qualifiers [-fpermissive] 132 | double * datap = const_cast( image.fortran_vec() ); | ~^~ In file included from /usr/include/octave-9.1.0/octave/../octave/Array-util.h:31, from /usr/include/octave-9.1.0/octave/../octave/MSparse.h:31, from /usr/include/octave-9.1.0/octave/../octave/MatrixType.h:33, from /usr/include/octave-9.1.0/octave/../octave/mx-base.h:33, from /usr/include/octave-9.1.0/octave/../octave/Matrix.h:34, from /usr/include/octave-9.1.0/octave/../octave/oct.h:33, from save_fits_image.cc:19: /usr/include/octave-9.1.0/octave/../octave/Array.h:666:20: note: in call to ‘T* Array::fortran_vec() [with T = double; Alloc = std::allocator]’ 666 | OCTARRAY_API T * fortran_vec (); |^~~ make[1]: *** [Makefile:9: save_fits_image_multi_ext.oct] Error 1
Bug#1070912: libuv1: latest upload reverts time_t transition
Source: libuv1 Version: 1.48.0-2 Severity: serious The latest upload reverts the the time_t transition rename from libuv1 to libuv1t64.
Bug#1070872: libm.a lost fmod + fmodf on i386 + m68k
Package: libc6-dev Version: 2.38-7 Severity: serious Tags: ftbfs Control: affects -1 src:zsh https://buildd.debian.org/status/logs.php?pkg=zsh=5.9-6%2Bb1 ... gcc -static -o zsh main.o `cat stamp-modobjs` -lpcre2-8 -lgdbm -lcap -lncursesw -ltinfo -ltinfo -lrt -lm -lc ... ./obj-static/Src/../../Src/math.c:1260:(.text+0x1d8e): undefined reference to `fmod' collect2: error: ld returned 1 exit status make[3]: *** [Makefile:228: zsh] Error 1 $ objdump -t /usr/lib/i386-linux-gnu/libm.a | grep fmod w_fmodl_compat.o: file format elf32-i386 w_fmod_compat.o: file format elf32-i386 w_fmodf_compat.o: file format elf32-i386 e_fmodl.o: file format elf32-i386 g F .text 0013 __ieee754_fmodl w_fmodl.o: file format elf32-i386 g F .text 0085 __fmodl *UND* __ieee754_fmodl wF .text 0085 fmodf64x wF .text 0085 fmodl e_fmod.o: file format elf32-i386 g F .text 0013 __ieee754_fmod w_fmod.o: file format elf32-i386 e_fmodf.o: file format elf32-i386 g F .text 0013 __ieee754_fmodf w_fmodf.o: file format elf32-i386 e_fmodf128.o: file format elf32-i386 g F .text 0c9b __ieee754_fmodf128 *UND* __ieee754_fmodf128 *UND* __ieee754_fmodf128 w_fmodf128.o: file format elf32-i386 g F .text 0237 __fmodf128 *UND* __ieee754_fmodf128 wF .text 0237 fmodf128 $ With 2.37-13 this is instead: $ objdump -t /usr/lib/i386-linux-gnu/libm.a | grep fmod w_fmodl_compat.o: file format elf32-i386 w_fmod_compat.o: file format elf32-i386 w_fmodf_compat.o: file format elf32-i386 e_fmodl.o: file format elf32-i386 g F .text 0013 __ieee754_fmodl w_fmodl.o: file format elf32-i386 g F .text 0085 __fmodl *UND* __ieee754_fmodl wF .text 0085 fmodf64x wF .text 0085 fmodl e_fmod.o: file format elf32-i386 g F .text 0013 __ieee754_fmod w_fmod.o: file format elf32-i386 g F .text 006b __fmod *UND* __ieee754_fmod wF .text 006b fmodf32x wF .text 006b fmodf64 wF .text 006b fmod e_fmodf.o: file format elf32-i386 g F .text 0013 __ieee754_fmodf w_fmodf.o: file format elf32-i386 g F .text 0063 __fmodf *UND* __ieee754_fmodf wF .text 0063 fmodf32 wF .text 0063 fmodf e_fmodf128.o: file format elf32-i386 g F .text 0cc5 __ieee754_fmodf128 *UND* __ieee754_fmodf128 *UND* __ieee754_fmodf128 w_fmodf128.o: file format elf32-i386 g F .text 0237 __fmodf128 *UND* __ieee754_fmodf128 wF .text 0237 fmodf128 $
Bug#1070853: strace: test failures on 32bit with 64bit time_t
Control: retitle -1 strace: test failures on 32bit The tests also fail on i386, so do not seem to be related to time_t. cu Adrian
Bug#1070865: webkit2gtk/experimental FTBFS on big endian
Source: webkit2gtk Version: 2.45.1-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=webkit2gtk=2.45.1-1 ... In file included from /<>/Source/ThirdParty/skia/include/private/base/SkAPI.h:11, from /<>/Source/ThirdParty/skia/include/private/base/SkAssert.h:11, from /<>/Source/ThirdParty/skia/src/base/SkArenaAlloc.h:11, from /<>/Source/ThirdParty/skia/src/base/SkArenaAlloc.cpp:8: /<>/Source/ThirdParty/skia/include/private/base/SkLoadUserConfig.h:57:6: error: #error "The Skia team is not endian-savvy enough to support big-endian CPUs." 57 | #error "The Skia team is not endian-savvy enough to support big-endian CPUs." | ^ /<>/Source/ThirdParty/skia/include/private/base/SkLoadUserConfig.h:58:6: error: #error "If you still want to use Skia," 58 | #error "If you still want to use Skia," | ^ /<>/Source/ThirdParty/skia/include/private/base/SkLoadUserConfig.h:59:6: error: #error "please define I_ACKNOWLEDGE_SKIA_DOES_NOT_SUPPORT_BIG_ENDIAN." 59 | #error "please define I_ACKNOWLEDGE_SKIA_DOES_NOT_SUPPORT_BIG_ENDIAN." | ^ ...
Bug#1070854: clc-intercal FTBFS: dpkg-genbuildinfo: error: binary build with no binary artifacts found
Source: clc-intercal Version: 1:1.00-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=clc-intercal=1%3A1.00-1 ... chmod +x `pwd`/debian/clc-intercal/usr/bin/* dpkg-genbuildinfo --build=any -O../clc-intercal_1.00-1_ppc64el-buildd.buildinfo dpkg-genbuildinfo: error: binary build with no binary artifacts found; .buildinfo is meaningless dpkg-buildpackage: error: dpkg-genbuildinfo --build=any -O../clc-intercal_1.00-1_ppc64el-buildd.buildinfo subprocess returned exit status 25
Bug#1070853: strace: test failures on 32bit with 64bit time_t
Source: strace
Version: 6.8-1
Severity: serious
Tags: ftbfs
https://buildd.debian.org/status/fetch.php?pkg=strace=armhf=6.8-1=1715348223=0
https://buildd.debian.org/status/fetch.php?pkg=strace=armel=6.8-1=1715346678=0
https://buildd.debian.org/status/fetch.php?pkg=strace=powerpc=6.8-1=1715349316=0
...
FAIL: strace-k.test
PASS: umovestr_cached.test
FAIL: strace-k-with-depth-limit.test
FAIL: strace-k-demangle.test
PASS: strace-DD.test
FAIL: strace-k-p.test
PASS: strace--tips-full.test
PASS: qual_fault-syscall.test
PASS: qual_fault.test
PASS: filtering_syscall-syntax.test
PASS: looping_threads.test
==
strace 6.8: tests/test-suite.log
==
# TOTAL: 1350
# PASS: 1057
# SKIP: 289
# XFAIL: 0
# FAIL: 4
# XPASS: 0
# ERROR: 0
...
FAIL: strace-k
==
+ ../src/strace -V
+ TIMEOUT=timeout -k 5 -s XCPU 1500
+ timeout -k 5 -s XCPU 1500 true
+ [ 1 -eq 0 ]
+ exec timeout -k 5 -s XCPU 1500 ../../tests/strace-k.test
+ : 0
+ : -k
+ : --stack-trace
+ :
+ [ -f /proc/self/maps ]
+ check_prog grep
+ type grep
+ check_prog readlink
+ type readlink
+ check_prog sed
+ type sed
+ check_prog tr
+ type tr
+ command -v sed
+ path_to_sed=/usr/bin/sed
+ [ -x /usr/bin/sed ]
+ readlink -ev -- /usr/bin/sed
+ path_to_sed=/usr/bin/sed
+ /usr/bin/sed -n s/^[^/]\+[[:space:]]\(\/.*\)$/\1/p /proc/self/maps
+ grep -F -x -e /usr/bin/sed
+ run_prog ../stack-fcall
+ [ 1 -eq 0 ]
+ args=../stack-fcall
+ ../stack-fcall
+ [ x0 = x1 ]
+ run_strace -e chdir -k ../stack-fcall
+
+ args=-e chdir -k ../stack-fcall
+ ../../src/strace -o log -e chdir -k ../stack-fcall
+ expected=../../../tests/strace-k.expected
+ awk_script_common=
/^[^ ]/ {
if (out != "")
print out
syscall = gensub(/^([[:alnum:]_]+)\(.*/, "\\1", 1)
signal = gensub(/^--- ([A-Z]+) .*/, "\\1", 1)
if (syscall != $0) {
out = syscall
stop = 0
} else if (signal != $0) {
out = signal
stop = 0
} else {
out = ""
}
}
/^ > too many stack frames/ {
out = out " _too_many_stack_frames_"
stop = 1
}
+ awk_script_symbol=
/^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) / && !stop {
sym = gensub(/^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) .*$/, "\\1", 1)
out = out " " sym
if (sym == "main")
stop = 1
}
+ awk_script_source=
/^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) \[0x[a-f0-9]+\] ([^:]+):([0-9]+)$/ && !stop {
sym = gensub(/^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) .*$/, "\\1", 1)
if (sym == "main" || sym ~ /f[0-9]/) {
file = gensub(/^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) \[0x[a-f0-9]+\]
([^:]+):([0-9]+)$/, "\\2", 1)
line = gensub(/^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) \[0x[a-f0-9]+\]
([^:]+):([0-9]+)$/, "\\3", 1)
sub(".*/", "", file)
out = out " " sym "<" file ":" line ">"
if (sym == "main")
stop = 1
}
}
+ [ --stack-trace = --stack-trace ]
+ awk_script=
/^[^ ]/ {
if (out != "")
print out
syscall = gensub(/^([[:alnum:]_]+)\(.*/, "\\1", 1)
signal = gensub(/^--- ([A-Z]+) .*/, "\\1", 1)
if (syscall != $0) {
out = syscall
stop = 0
} else if (signal != $0) {
out = signal
stop = 0
} else {
out = ""
}
}
/^ > too many stack frames/ {
out = out " _too_many_stack_frames_"
stop = 1
}
/^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) / && !stop {
sym = gensub(/^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) .*$/, "\\1", 1)
out = out " " sym
if (sym == "main")
stop = 1
}
+ awk
/^[^ ]/ {
if (out != "")
print out
syscall = gensub(/^([[:alnum:]_]+)\(.*/, "\\1", 1)
signal = gensub(/^--- ([A-Z]+) .*/, "\\1", 1)
if (syscall != $0) {
out = syscall
stop = 0
} else if (signal != $0) {
out = signal
stop = 0
} else {
out = ""
}
}
/^ > too many stack frames/ {
out = out " _too_many_stack_frames_"
stop = 1
}
/^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) / && !stop {
sym = gensub(/^ >[^(]+\(([^+]+)\+0x[a-f0-9]+\) .*$/, "\\1", 1)
out = out " " sym
if (sym == "main")
stop = 1
}
log
+ LC_ALL=C grep -E -x -f ../../../tests/strace-k.expected
+ cat ../../../tests/strace-k.expected
+ cat out
+ cat
Failed pattern of expected output:
^chdir (__kernel_vsyscall )?(__)?chdir f3 f2 f1 f0 main
^SIGURG (__kernel_vsyscall )?(__)?kill f3 f2 f1 f0 main
Actual output:
chdir chdir f3
SIGURG kill f3
+ pattern=
+ pattern=No DWARF information found
+ [ -n No DWARF information found ]
+ LC_ALL=C grep -x > No DWARF information found
+ dump_log_and_fail_with ../../src/strace -e chdir -k ../stack-fcall
Bug#1070838: xine-lib-1.2 FTBFS with glibc 2.38
Source: xine-lib-1.2 Version: 1.2.13+hg20230710-2 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=xine-lib-1.2=1.2.13%2Bhg20230710-2%2Bb6 ... dh_makeshlibs -a dpkg-gensymbols: error: some symbols or patterns disappeared in the symbols file: see diff output below dpkg-gensymbols: warning: debian/libxine2-bin/DEBIAN/symbols doesn't match completely debian/libxine2-bin.symbols --- debian/libxine2-bin.symbols (libxine2-bin_1.2.13+hg20230710-2+b6_amd64) +++ dpkg-gensymbolsgeNc6J 2024-05-10 10:16:36.253605552 + @@ -404,8 +404,8 @@ xine_post_wire@Base 1.2.0 xine_post_wire_audio_port@Base 1.2.0 xine_post_wire_video_port@Base 1.2.0 - xine_private_strlcat@Base 1.2.9 - xine_private_strlcpy@Base 1.2.9 +#MISSING: 1.2.13+hg20230710-2+b6# xine_private_strlcat@Base 1.2.9 +#MISSING: 1.2.13+hg20230710-2+b6# xine_private_strlcpy@Base 1.2.9 xine_profiler_allocate_slot@Base 1.2.0 xine_profiler_init@Base 1.2.0 xine_profiler_print_results@Base 1.2.0 dh_makeshlibs: error: failing due to earlier errors make: *** [debian/rules:43: binary-arch] Error 25
Bug#1069389: kiwi: FTBFS on arm64: ImportError: sys.meta_path is None, Python is likely shutting down
Hello, On Sat, 2024-04-20 at 14:05 +0200, Lucas Nussbaum wrote: > During a rebuild of all packages in sid, your package failed to build > on arm64. > (...) > The full build log is available from: > http://qa-logs.debian.net/2024/04/20/kiwi_9.25.22-1_unstable-arm64.log > > All bugs filed during this archive rebuild are listed at: > https://bugs.debian.org/cgi-bin/pkgreport.cgi?tag=ftbfs-20240420;users=lu...@debian.org > or: > https://udd.debian.org/bugs/?release=na=ign=7=7=only=ftbfs-20240420=lu...@debian.org=1=1=1=1#results > > A list of current common problems and possible solutions is available at > http://wiki.debian.org/qa.debian.org/FTBFS . You're welcome to contribute! > > If you reassign this bug to another package, please mark it as 'affects'-ing > this package. See https://www.debian.org/Bugs/server-control#affects > > If you fail to reproduce this, please provide a build log and diff it with > mine > so that we can identify if something relevant changed in the meantime. FWIW, I am already working on updating the kiwi package in Debian to the latest upstream version. However, I ran into some testsuite issues that need to be sorted out upstream first [1]. Thanks, Adrian > [1] https://github.com/OSInside/kiwi/issues/2548 -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer `. `' Physicist `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Bug#1064516: Debdifffs for ruby-rack DSA
Hi,
attached are debdiffs for a ruby-rack DSA,
with the same fixes as in sid and buster.
cu
Adrian
diffstat for ruby-rack-2.1.4 ruby-rack-2.1.4
changelog | 10 +
patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch | 51
++
patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch | 46
+
patches/0003-Fixing-ReDoS-in-header-parsing.patch | 30 +
patches/series |3
5 files changed, 140 insertions(+)
diff -Nru ruby-rack-2.1.4/debian/changelog ruby-rack-2.1.4/debian/changelog
--- ruby-rack-2.1.4/debian/changelog2023-06-08 00:52:23.0 +0300
+++ ruby-rack-2.1.4/debian/changelog2024-05-02 23:46:12.0 +0300
@@ -1,3 +1,13 @@
+ruby-rack (2.1.4-3+deb11u2) bullseye-security; urgency=medium
+
+ * Non-maintainer upload.
+ * CVE-2024-25126: ReDoS in Content Type header parsing
+ * CVE-2024-26141: Reject Range headers which are too large
+ * CVE-2024-26146: ReDoS in Accept header parsing
+ * Closes: #1064516
+
+ -- Adrian Bunk Thu, 02 May 2024 23:46:12 +0300
+
ruby-rack (2.1.4-3+deb11u1) bullseye-security; urgency=high
* Add patch to restrict broken mime parsing.
diff -Nru
ruby-rack-2.1.4/debian/patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch
ruby-rack-2.1.4/debian/patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch
---
ruby-rack-2.1.4/debian/patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch
1970-01-01 02:00:00.0 +0200
+++
ruby-rack-2.1.4/debian/patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch
2024-05-02 23:46:12.0 +0300
@@ -0,0 +1,51 @@
+From bad2b5be29349b285e08d343f060f7c18065d416 Mon Sep 17 00:00:00 2001
+From: Jean Boussier
+Date: Wed, 6 Dec 2023 18:32:19 +0100
+Subject: Avoid 2nd degree polynomial regexp in MediaType
+
+---
+ lib/rack/media_type.rb | 13 +
+ 1 file changed, 9 insertions(+), 4 deletions(-)
+
+diff --git a/lib/rack/media_type.rb b/lib/rack/media_type.rb
+index 41937c99..7fc1e39d 100644
+--- a/lib/rack/media_type.rb
b/lib/rack/media_type.rb
+@@ -4,7 +4,7 @@ module Rack
+ # Rack::MediaType parse media type and parameters out of content_type string
+
+ class MediaType
+-SPLIT_PATTERN = %r{\s*[;,]\s*}
++SPLIT_PATTERN = /[;,]/
+
+ class << self
+ # The media type (type/subtype) portion of the CONTENT_TYPE header
+@@ -15,7 +15,11 @@ module Rack
+ # http://www.w3.org/Protocols/rfc2616/rfc2616-sec3.html#sec3.7
+ def type(content_type)
+ return nil unless content_type
+-content_type.split(SPLIT_PATTERN, 2).first.tap &:downcase!
++if type = content_type.split(SPLIT_PATTERN, 2).first
++ type.rstrip!
++ type.downcase!
++ type
++end
+ end
+
+ # The media type parameters provided in CONTENT_TYPE as a Hash, or
+@@ -27,9 +31,10 @@ module Rack
+ return {} if content_type.nil?
+
+ content_type.split(SPLIT_PATTERN)[1..-1].each_with_object({}) do |s,
hsh|
++ s.strip!
+ k, v = s.split('=', 2)
+-
+- hsh[k.tap(&:downcase!)] = strip_doublequotes(v)
++ k.downcase!
++ hsh[k] = strip_doublequotes(v)
+ end
+ end
+
+--
+2.30.2
+
diff -Nru
ruby-rack-2.1.4/debian/patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch
ruby-rack-2.1.4/debian/patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch
---
ruby-rack-2.1.4/debian/patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch
1970-01-01 02:00:00.0 +0200
+++
ruby-rack-2.1.4/debian/patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch
2024-05-02 23:46:12.0 +0300
@@ -0,0 +1,46 @@
+From ef52af28b6ac43789fd8fc05df098b56f220f0fa Mon Sep 17 00:00:00 2001
+From: Aaron Patterson
+Date: Tue, 13 Feb 2024 13:34:34 -0800
+Subject: Return an empty array when ranges are too large
+
+If the sum of the requested ranges is larger than the file itself,
+return an empty array. In other words, refuse to respond with any bytes.
+
+[CVE-2024-26141]
+---
+ lib/rack/utils.rb | 3 +++
+ test/spec_utils.rb | 4
+ 2 files changed, 7 insertions(+)
+
+diff --git a/lib/rack/utils.rb b/lib/rack/utils.rb
+index 16457f90..87c2a946 100644
+--- a/lib/rack/utils.rb
b/lib/rack/utils.rb
+@@ -382,6 +382,9 @@ module Rack
+ end
+ ranges << (r0..r1) if r0 <= r1
+ end
++
++ return [] if ranges.map(&:size).sum > size
++
+ ranges
+ end
+ module_function :get_byte_ranges
+diff --git a/test/spec_utils.rb b/test/spec_utils.rb
+index 5fd92241..67b77b0d 100644
+--- a/test/spec_utils.rb
b/test/spec_utils.rb
+@@ -548,6 +548,10 @@ describe Rack::Utils, "cookies" do
+ end
+
+ describe Rack::Utils, "byte_range" do
++ it "returns
Bug#1070720: tpm2-tss: test/unit/tcti-spidev failure on 32bit with 64bit time_t
Source: tpm2-tss Version: 4.1.0-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=tpm2-tss=4.1.0-1 ... SKIP: test/unit/tcti-libtpms WARNING:test:test/unit/tcti-libtpms.c:1793:main() _FILE_OFFSET == 64 would produce cmocka errors. SKIP test/unit/tcti-libtpms (exit status: 77) SKIP: test/unit/tcti-device === WARNING:tests:test/unit/tcti-device.c:454:main() _FILE_OFFSET == 64 would produce cmocka errors. SKIP test/unit/tcti-device (exit status: 77) SKIP: test/unit/tcti-pcap = WARNING:tests:test/unit/tcti-pcap.c:736:main() _FILE_OFFSET == 64 would produce cmocka errors. SKIP test/unit/tcti-pcap (exit status: 77) FAIL: test/unit/tcti-spidev === [==] tests: Running 1 test(s). [ RUN ] tcti_spi_init_test ERROR:tcti:src/tss2-tcti/tcti-spidev.c:48:platform_spi_acquire() SPI acquire failed: Bad file descriptor ERROR:tcti:src/tss2-tcti/tcti-spi-helper.c:164:spi_tpm_helper_log_register_access() READ register 0xd40f00 (4 bytes) failed in transaction start ERROR:tcti:src/tss2-tcti/tcti-spidev.c:68:platform_spi_release() SPI release failed: Bad file descriptor ERROR:tcti:src/tss2-tcti/tcti-spidev.c:48:platform_spi_acquire() SPI acquire failed: Bad file descriptor ERROR:tcti:src/tss2-tcti/tcti-spi-helper.c:164:spi_tpm_helper_log_register_access() READ register 0xd40f00 (4 bytes) failed in transaction start ERROR:tcti:src/tss2-tcti/tcti-spidev.c:68:platform_spi_release() SPI release failed: Bad file descriptor ERROR:tcti:src/tss2-tcti/tcti-spidev.c:48:platform_spi_acquire() SPI acquire failed: Bad file descriptor ERROR:tcti:src/tss2-tcti/tcti-spi-helper.c:164:spi_tpm_helper_log_register_access() READ register 0xd40f00 (4 bytes) failed in transaction start ERROR:tcti:src/tss2-tcti/tcti-spidev.c:68:platform_spi_release() SPI release failed: Bad file descriptor ... ERROR:tcti:src/tss2-tcti/tcti-spi-helper.c:164:spi_tpm_helper_log_register_access() READ register 0xd40f00 (4 bytes) failed in transaction start ERROR:tcti:src/tss2-tcti/tcti-spidev.c:68:platform_spi_release() SPI release failed: Bad file descriptor ERROR:tcti:src/tss2-tcti/tcti-spi-helper.c:728:Tss2_Tcti_Spi_Helper_Init() Probing TPM failed [ ERROR ] --- 0xa000a != 0 [ LINE ] --- test/unit/tcti-spidev.c:200: error: Failure! [ FAILED ] tcti_spi_init_test [==] tests: 1 test(s) run. [ PASSED ] 0 test(s). [ FAILED ] tests: 1 test(s), listed below: [ FAILED ] tcti_spi_init_test 1 FAILED TEST(S) FAIL test/unit/tcti-spidev (exit status: 1) SKIP: test/unit/fapi-io === WARNING:tests:test/unit/fapi-io.c:370:main() _FILE_OFFSET == 64 would produce cmocka errors. SKIP test/unit/fapi-io (exit status: 77) Testsuite summary for tpm2-tss 4.1.0 # TOTAL: 61 # PASS: 56 # SKIP: 4 # XFAIL: 0 # FAIL: 1 # XPASS: 0 # ERROR: 0 See ./test-suite.log Please report to https://github.com/tpm2-software/tpm2-tss/issues make[3]: *** [Makefile:33547: test-suite.log] Error 1
Bug#1070498: libvirt attempts to write to $HOME during the build
Source: libvirt Version: 10.3.0-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/fetch.php?pkg=libvirt=amd64=10.3.0-1=1714824148=0 ... 53) completion-command... In '/<>/tests/virshtestdata/completion-command.out': Offset 6 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 54) completion-command-complete ... In '/<>/tests/virshtestdata/completion-command-complete.out': Offset 6 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 55) completion-args ... In '/<>/tests/virshtestdata/completion-args.out': Offset 47 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 56) completion-arg-partial... In '/<>/tests/virshtestdata/completion-arg-partial.out': Offset 26 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 57) completion-arg-full-bool ... In '/<>/tests/virshtestdata/completion-arg-full-bool.out': Offset 7 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 58) completion-arg-full-bool-next ... In '/<>/tests/virshtestdata/completion-arg-full-bool-next.out': Offset 47 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 59) completion-arg-full-string... In '/<>/tests/virshtestdata/completion-arg-full-string.out': Offset 10 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 60) completion-arg-full-string-next ... In '/<>/tests/virshtestdata/completion-arg-full-string-next.out': Offset 47 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 61) completion-arg-full-argv ... In '/<>/tests/virshtestdata/completion-arg-full-argv.out': Offset 10 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 62) completion-arg-full-argv-next ... In '/<>/tests/virshtestdata/completion-arg-full-argv-next.out': Offset 6 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 63) completion-argv-multiple ... In '/<>/tests/virshtestdata/completion-argv-multiple.out': Offset 5 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 64) completion-argv-multiple-next ... In '/<>/tests/virshtestdata/completion-argv-multiple-next.out': Offset 268 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 65) completion-argv-multiple-positional ... In '/<>/tests/virshtestdata/completion-argv-multiple-positional.out': Offset 5 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 66) completion-argv-multiple-positional-next ... In '/<>/tests/virshtestdata/completion-argv-multiple-positional-next.out': Offset 268 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ] ... FAILED 67) completion-arg-positional-empty ... In '/<>/tests/virshtestdata/completion-arg-positional-empty.out': Offset 19 Expect [] Actual [error: Failed to create '/home/buildd/.cache/libvirt/virsh': Permission denied ]
Bug#1070497: webrtc-audio-processing/experimental FTBFS with gcc 13
Source: webrtc-audio-processing Version: 1.0-0.2 Severity: serious Tags: ftbfs https://tests.reproducible-builds.org/debian/rb-pkg/experimental/amd64/webrtc-audio-processing.html https://buildd.debian.org/status/fetch.php?pkg=webrtc-audio-processing=riscv64=1.0-0.2=1706028598=0 ... FAILED: webrtc/modules/audio_processing/libwebrtc-audio-processing-1.so.0.p/transient_file_utils.cc.o c++ -Iwebrtc/modules/audio_processing/libwebrtc-audio-processing-1.so.0.p -Iwebrtc/modules/audio_processing -I../webrtc/modules/audio_processing -Iwebrtc -I../webrtc -I/usr/include -fdiagnostics-color=always -D_FILE_OFFSET_BITS=64 -Wall -Winvalid-pch -std=c++14 -g -O2 -ffile-prefix-map=/<>=. -fstack-protector-strong -Wformat -Werror=format-security -Wdate-time -D_FORTIFY_SOURCE=2 -fPIC -pthread -DWEBRTC_LIBRARY_IMPL -DWEBRTC_ENABLE_SYMBOL_EXPORT -DNDEBUG -DWEBRTC_POSIX -DWEBRTC_LINUX -DWEBRTC_THREAD_RR -DWEBRTC_APM_DEBUG_DUMP=0 -MD -MQ webrtc/modules/audio_processing/libwebrtc-audio-processing-1.so.0.p/transient_file_utils.cc.o -MF webrtc/modules/audio_processing/libwebrtc-audio-processing-1.so.0.p/transient_file_utils.cc.o.d -o webrtc/modules/audio_processing/libwebrtc-audio-processing-1.so.0.p/transient_file_utils.cc.o -c ../webrtc/modules/audio_processing/transient/file_utils.cc In file included from ../webrtc/modules/audio_processing/transient/file_utils.cc:11: ../webrtc/modules/audio_processing/transient/file_utils.h:36:35: error: ‘uint8_t’ does not name a type 36 | int ConvertByteArrayToFloat(const uint8_t bytes[4], float* out); | ^~~ ../webrtc/modules/audio_processing/transient/file_utils.h:17:1: note: ‘uint8_t’ is defined in header ‘’; did you forget to ‘#include ’? 16 | #include "rtc_base/system/file_wrapper.h" +++ |+#include 17 | ../webrtc/modules/audio_processing/transient/file_utils.h:41:36: error: ‘uint8_t’ does not name a type 41 | int ConvertByteArrayToDouble(const uint8_t bytes[8], double* out); |^~~ ../webrtc/modules/audio_processing/transient/file_utils.h:41:36: note: ‘uint8_t’ is defined in header ‘’; did you forget to ‘#include ’? ../webrtc/modules/audio_processing/transient/file_utils.h:46:42: error: ‘uint8_t’ has not been declared 46 | int ConvertFloatToByteArray(float value, uint8_t out_bytes[4]); | ^~~ ../webrtc/modules/audio_processing/transient/file_utils.h:51:44: error: ‘uint8_t’ has not been declared 51 | int ConvertDoubleToByteArray(double value, uint8_t out_bytes[8]); |^~~ ...
Bug#1070491: rust-pipewire FTBFS on 32bit with 64bit time_t
Source: rust-pipewire
Version: 0.8.0-4
Severity: serious
Tags: ftbfs
https://buildd.debian.org/status/logs.php?pkg=rust-pipewire=0.8.0-4
...
error[E0308]: mismatched types
--> src/thread_loop.rs:142:43
|
142 | nix::sys::time::TimeSpec::new(abstime.tv_sec, abstime.tv_nsec)
| - ^^ expected `i64`,
found `i32`
| |
| arguments to this function are incorrect
|
note: associated function defined here
--> /usr/share/cargo/registry/nix-0.27.1/src/sys/time.rs:339:18
|
339 | pub const fn new(seconds: time_t, nanoseconds: timespec_tv_nsec_t) ->
Self {
| ^^^
help: you can convert an `i32` to an `i64`
|
142 | nix::sys::time::TimeSpec::new(abstime.tv_sec.into(),
abstime.tv_nsec)
| +++
error[E0308]: mismatched types
--> src/thread_loop.rs:152:25
|
152 | tv_sec: abstime.tv_sec(),
| expected `i32`, found `i64`
For more information about this error, try `rustc --explain E0308`.
error: could not compile `pipewire` (lib) due to 2 previous errors
...
Bug#1070489: rust-hypothesis FTBFS: test failures
Source: rust-hypothesis
Version: 0.11.1-1
Severity: serious
Tags: ftbfs
https://buildd.debian.org/status/logs.php?pkg=rust-hypothesis=0.11.1-1
https://buildd.debian.org/status/logs.php?pkg=rust-hypothesis=0.11.1-2
...
Running
`/<>/target/x86_64-unknown-linux-gnu/release/deps/cli-60d293523176a82c
--test-threads=1 --skip it_works --skip make --skip sync --skip tag_filter`
running 5 tests
test add_and_delete_annotation ... FAILED
test create_and_leave_group ... FAILED
test search_annotations ... FAILED
test update_annotation ... FAILED
test update_group ... FAILED
failures:
add_and_delete_annotation stdout
Error: path not found
Caused by:
path not found
Location:
tests/cli.rs:33:5
create_and_leave_group stdout
Error: path not found
Caused by:
path not found
Location:
tests/cli.rs:177:5
search_annotations stdout
Error: path not found
Caused by:
path not found
Location:
tests/cli.rs:114:5
update_annotation stdout
Error: path not found
Caused by:
path not found
Location:
tests/cli.rs:69:5
update_group stdout
thread 'update_group' panicked at 'assertion failed: group_id.is_ok()',
tests/cli.rs:218:5
stack backtrace:
0: rust_begin_unwind
at /usr/src/rustc-1.70.0/library/std/src/panicking.rs:578:5
1: core::panicking::panic_fmt
at /usr/src/rustc-1.70.0/library/core/src/panicking.rs:67:14
2: core::panicking::panic
at /usr/src/rustc-1.70.0/library/core/src/panicking.rs:117:5
3: cli::update_group
at ./tests/cli.rs:218:5
4: cli::update_group::{{closure}}
at ./tests/cli.rs:212:22
5: core::ops::function::FnOnce::call_once
at /usr/src/rustc-1.70.0/library/core/src/ops/function.rs:250:5
6: core::ops::function::FnOnce::call_once
at /usr/src/rustc-1.70.0/library/core/src/ops/function.rs:250:5
note: Some details are omitted, run with `RUST_BACKTRACE=full` for a verbose
backtrace.
failures:
add_and_delete_annotation
create_and_leave_group
search_annotations
update_annotation
update_group
test result: FAILED. 0 passed; 5 failed; 0 ignored; 0 measured; 0 filtered out;
finished in 0.04s
error: test failed, to rerun pass `--test cli`
Doc-tests hypothesis
Running `rustdoc --edition=2021 --crate-type lib --crate-name hypothesis
--test /<>/src/lib.rs --target x86_64-unknown-linux-gnu -L
dependency=/<>/target/x86_64-unknown-linux-gnu/release/deps -L
dependency=/<>/target/release/deps -L
native=/<>/target/x86_64-unknown-linux-gnu/release/build/ring-21217903804af83c/out
--test-args --test-threads=1 --test-args --skip --test-args it_works
--test-args --skip --test-args make --test-args --skip --test-args sync
--test-args --skip --test-args tag_filter --extern
assert_cmd=/<>/target/x86_64-unknown-linux-gnu/release/deps/libassert_cmd-134b03450b103fd5.rlib
--extern
chrono=/<>/target/x86_64-unknown-linux-gnu/release/deps/libchrono-366b82fe4c132a7f.rlib
--extern
clap=/<>/target/x86_64-unknown-linux-gnu/release/deps/libclap-0253bc5809b2cb30.rlib
--extern
clap_complete=/<>/target/x86_64-unknown-linux-gnu/release/deps/libclap_complete-e7897de87192b73b.rlib
--extern
color_eyre=/<>/target/x86_64-unknown-linux-gnu/release/deps/libcolor_eyre-9811652bc2e783d9.rlib
--extern
derive_builder=/<>/target/x86_64-unknown-linux-gnu/release/deps/libderive_builder-b3eb91696292575e.rlib
--extern
dotenv=/<>/target/x86_64-unknown-linux-gnu/release/deps/libdotenv-9f37bf59e8da3298.rlib
--extern
eyre=/<>/target/x86_64-unknown-linux-gnu/release/deps/libeyre-913f1aee7266adfa.rlib
--extern
futures=/<>/target/x86_64-unknown-linux-gnu/release/deps/libfutures-badab9fb8631b2a1.rlib
--extern
hypothesis=/<>/target/x86_64-unknown-linux-gnu/release/deps/libhypothesis-12767b8516e42793.rlib
--extern
predicates=/<>/target/x86_64-unknown-linux-gnu/release/deps/libpredicates-53aab59c9f2a01ff.rlib
--extern
reqwest=/<>/target/x86_64-unknown-linux-gnu/release/deps/libreqwest-1c860df583615e4b.rlib
--extern
serde=/<>/target/x86_64-unknown-linux-gnu/release/deps/libserde-c2f81dc8b529eb86.rlib
--extern
serde_json=/<>/target/x86_64-unknown-linux-gnu/release/deps/libserde_json-86e653e5692938d9.rlib
--extern
thiserror=/<>/target/x86_64-unknown-linux-gnu/release/deps/libthiserror-a30286b97953be04.rlib
--extern
tokio=/<>/target/x86_64-unknown-linux-gnu/release/deps/libtokio-f2e0886742c2d315.rlib
--extern
url=/<>/target/x86_64-unknown-linux-gnu/release/deps/liburl-a6463baef11a8609.rlib
-C embed-bitcode=no --cfg 'feature="clap"' --cfg 'feature="clap_complete"'
--cfg 'feature="cli"' --cfg 'feature="color-eyre"' --cfg 'feature="default"'
--cfg 'feature="eyre"' --error-format human`
running 18 tests
test src/annotations.rs - annotations::InputAnnotation (line 27) ... ok
test src/lib.rs - (line 44) - compile ... ok
test src/lib.rs - Hypothesis::create_annotation (line 213) ... FAILED
test src/lib.rs -
Bug#1064516: ruby-rack: diff for NMU version 2.2.7-1.1
Control: tags 1064516 + patch
Control: tags 1064516 + pending
Dear maintainer,
I've prepared an NMU for ruby-rack (versioned as 2.2.7-1.1) and uploaded
it to DELAYED/2. Please feel free to tell me if I should cancel it.
cu
Adrian
diffstat for ruby-rack-2.2.7 ruby-rack-2.2.7
changelog | 10 +
patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch | 51 ++
patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch | 46 +
patches/0003-Fixing-ReDoS-in-header-parsing.patch | 30 +
patches/series |3
5 files changed, 140 insertions(+)
diff -Nru ruby-rack-2.2.7/debian/changelog ruby-rack-2.2.7/debian/changelog
--- ruby-rack-2.2.7/debian/changelog 2023-07-10 17:32:41.0 +0300
+++ ruby-rack-2.2.7/debian/changelog 2024-05-02 22:55:26.0 +0300
@@ -1,3 +1,13 @@
+ruby-rack (2.2.7-1.1) unstable; urgency=high
+
+ * Non-maintainer upload.
+ * CVE-2024-25126: ReDoS in Content Type header parsing
+ * CVE-2024-26141: Reject Range headers which are too large
+ * CVE-2024-26146: ReDoS in Accept header parsing
+ * Closes: #1064516
+
+ -- Adrian Bunk Thu, 02 May 2024 22:55:26 +0300
+
ruby-rack (2.2.7-1) unstable; urgency=medium
* Team Upload
diff -Nru ruby-rack-2.2.7/debian/patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch ruby-rack-2.2.7/debian/patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch
--- ruby-rack-2.2.7/debian/patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch 1970-01-01 02:00:00.0 +0200
+++ ruby-rack-2.2.7/debian/patches/0001-Avoid-2nd-degree-polynomial-regexp-in-MediaType.patch 2024-05-02 22:55:26.0 +0300
@@ -0,0 +1,51 @@
+From e5c0e03f70624433d7132a5eb039f5f04787d20c Mon Sep 17 00:00:00 2001
+From: Jean Boussier
+Date: Wed, 6 Dec 2023 18:32:19 +0100
+Subject: Avoid 2nd degree polynomial regexp in MediaType
+
+---
+ lib/rack/media_type.rb | 13 +
+ 1 file changed, 9 insertions(+), 4 deletions(-)
+
+diff --git a/lib/rack/media_type.rb b/lib/rack/media_type.rb
+index 41937c99..7fc1e39d 100644
+--- a/lib/rack/media_type.rb
b/lib/rack/media_type.rb
+@@ -4,7 +4,7 @@ module Rack
+ # Rack::MediaType parse media type and parameters out of content_type string
+
+ class MediaType
+-SPLIT_PATTERN = %r{\s*[;,]\s*}
++SPLIT_PATTERN = /[;,]/
+
+ class << self
+ # The media type (type/subtype) portion of the CONTENT_TYPE header
+@@ -15,7 +15,11 @@ module Rack
+ # http://www.w3.org/Protocols/rfc2616/rfc2616-sec3.html#sec3.7
+ def type(content_type)
+ return nil unless content_type
+-content_type.split(SPLIT_PATTERN, 2).first.tap &:downcase!
++if type = content_type.split(SPLIT_PATTERN, 2).first
++ type.rstrip!
++ type.downcase!
++ type
++end
+ end
+
+ # The media type parameters provided in CONTENT_TYPE as a Hash, or
+@@ -27,9 +31,10 @@ module Rack
+ return {} if content_type.nil?
+
+ content_type.split(SPLIT_PATTERN)[1..-1].each_with_object({}) do |s, hsh|
++ s.strip!
+ k, v = s.split('=', 2)
+-
+- hsh[k.tap(&:downcase!)] = strip_doublequotes(v)
++ k.downcase!
++ hsh[k] = strip_doublequotes(v)
+ end
+ end
+
+--
+2.30.2
+
diff -Nru ruby-rack-2.2.7/debian/patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch ruby-rack-2.2.7/debian/patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch
--- ruby-rack-2.2.7/debian/patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch 1970-01-01 02:00:00.0 +0200
+++ ruby-rack-2.2.7/debian/patches/0002-Return-an-empty-array-when-ranges-are-too-large.patch 2024-05-02 22:55:26.0 +0300
@@ -0,0 +1,46 @@
+From e4a334bba45d1f66499973d65ba4db2679129153 Mon Sep 17 00:00:00 2001
+From: Aaron Patterson
+Date: Tue, 13 Feb 2024 13:34:34 -0800
+Subject: Return an empty array when ranges are too large
+
+If the sum of the requested ranges is larger than the file itself,
+return an empty array. In other words, refuse to respond with any bytes.
+
+[CVE-2024-26141]
+---
+ lib/rack/utils.rb | 3 +++
+ test/spec_utils.rb | 4
+ 2 files changed, 7 insertions(+)
+
+diff --git a/lib/rack/utils.rb b/lib/rack/utils.rb
+index c8e61ea1..72700503 100644
+--- a/lib/rack/utils.rb
b/lib/rack/utils.rb
+@@ -380,6 +380,9 @@ module Rack
+ end
+ ranges << (r0..r1) if r0 <= r1
+ end
++
++ return [] if ranges.map(&:size).sum > size
++
+ ranges
+ end
+
+diff --git a/test/spec_utils.rb b/test/spec_utils.rb
+index 90676258..6b069914 100644
+--- a/test/spec_utils.rb
b/test/spec_utils.rb
+@@ -590,6 +590,10 @@ describe Rack::Utils, "cookies" do
+ end
+
+ describe Rack::Utils, "byte_range" do
++ it "returns
Bug#1070022: libretro-beetle-psx FTBFS on mips64el with -Werror=implicit-function-declaration
Source: libretro-beetle-psx Version: 0.9.38.6+git20151019-3 Severity: serious Tags: ftbfs patch trixie sid https://buildd.debian.org/status/fetch.php?pkg=libretro-beetle-psx=mips64el=0.9.38.6%2Bgit20151019-3%2Bb1=1714231581=0 ... libretro-common/rthreads/rthreads.c: In function ‘scond_wait_timeout’: libretro-common/rthreads/rthreads.c:410:4: error: implicit declaration of function ‘gettimeofday’ [-Werror=implicit-function-declaration] 410 |gettimeofday(, NULL); |^~~~ cc1: some warnings being treated as errors make[2]: *** [Makefile:264: libretro-common/rthreads/rthreads.o] Error 1
Bug#1070021: libretro-beetle-pce-fast FTBFS on mips64el with -Werror=implicit-function-declaration
Source: libretro-beetle-pce-fast Version: 0.9.38.7+git20160609-2 Severity: serious Tags: ftbfs patch trixie sid Forwarded: https://github.com/libretro/libretro-common/commit/20a43ba79fe6b4ec094b3b20b7bc88f4cfe916fa https://buildd.debian.org/status/fetch.php?pkg=libretro-beetle-pce-fast=mips64el=0.9.38.7%2Bgit20160609-2%2Bb1=1714231411=0 ... libretro-common/rthreads/rthreads.c: In function ‘scond_wait_timeout’: libretro-common/rthreads/rthreads.c:423:4: error: implicit declaration of function ‘gettimeofday’ [-Werror=implicit-function-declaration] 423 |gettimeofday(, NULL); |^~~~ cc1: some warnings being treated as errors make[2]: *** [Makefile:332: libretro-common/rthreads/rthreads.o] Error 1
Bug#1070002: rust-alsa FTBFS on 32bit with 64bit time_t
Source: rust-alsa
Version: 0.8.1-3
Severity: serious
Tags: ftbfs
Control: affects -1 src:rust-cpal
https://tests.reproducible-builds.org/debian/rb-pkg/unstable/armhf/rust-alsa.html
https://buildd.debian.org/status/fetch.php?pkg=rust-cpal=armhf=0.15.2-3%2Bb1=1714250098=0
...
error: cannot construct `timespec` with struct literal syntax due to private
fields
--> /usr/share/cargo/registry/alsa-0.8.1/src/pcm.rs:1113:21
|
1113 | let mut h = timespec {tv_sec: 0, tv_nsec: 0};
|
|
= note: ... and other private field `__pad` that was not provided
error: cannot construct `timespec` with struct literal syntax due to private
fields
--> /usr/share/cargo/registry/alsa-0.8.1/src/pcm.rs:1119:21
|
1119 | let mut h = timespec {tv_sec: 0, tv_nsec: 0};
|
|
= note: ... and other private field `__pad` that was not provided
error: cannot construct `timespec` with struct literal syntax due to private
fields
--> /usr/share/cargo/registry/alsa-0.8.1/src/pcm.rs:1125:21
|
1125 | let mut h = timespec {tv_sec: 0, tv_nsec: 0};
|
|
= note: ... and other private field `__pad` that was not provided
error: could not compile `alsa` due to 3 previous errors
...
Bug#1070001: rust-net2 FTBFS on 32bit with 64bit time_t
Source: rust-net2 Version: 0.2.37-1 Severity: serious Tags: ftbfs trixie sid https://buildd.debian.org/status/fetch.php?pkg=rust-net2=armhf=0.2.37-1%2Bb1=1714277125=0 ... error[E0308]: mismatched types --> src/ext.rs:902:22 | 902 | tv_usec: (d % 1000) as suseconds_t, | ^ expected `i64`, found `i32` For more information about this error, try `rustc --explain E0308`. error: could not compile `net2` due to previous error ...
Bug#1070000: rust-time-0.1 FTBFS on 32bit with 64bit time_t
Source: rust-time-0.1
Version: 0.1.44-2
Severity: serious
Tags: ftbfs trixie sid
https://buildd.debian.org/status/fetch.php?pkg=rust-time-0.1=armhf=0.1.44-2%2Bb1=1714295931=0
...
error: cannot construct `timespec` with struct literal syntax due to private
fields
--> src/sys.rs:521:26
|
521 | let mut tv = libc::timespec { tv_sec: 0, tv_nsec: 0 };
| ^^
|
= note: ... and other private field `__pad` that was not provided
error: cannot construct `timespec` with struct literal syntax due to private
fields
--> src/sys.rs:527:26
|
527 | let mut ts = libc::timespec { tv_sec: 0, tv_nsec: 0 };
| ^^
|
= note: ... and other private field `__pad` that was not provided
error: cannot construct `timespec` with struct literal syntax due to private
fields
--> src/sys.rs:555:24
|
555 | t: libc::timespec {
|^^
|
= note: ... and other private field `__pad` that was not provided
error: could not compile `time` due to 3 previous errors
...
Bug#1069999: rust-unix-socket FTBFS on 32bit with 64bit time_t
Source: rust-unix-socket Version: 0.5.0-2 Severity: serious Tags: ftbfs trixie sid https://buildd.debian.org/status/fetch.php?pkg=rust-unix-socket=armhf=0.5.0-2%2Bb1=1714298139=0 ... error[E0308]: mismatched types --> src/lib.rs:122:30 | 122 | tv_usec: usecs, | ^ expected `i64`, found `i32` For more information about this error, try `rustc --explain E0308`. warning: `unix_socket` (lib) generated 31 warnings error: could not compile `unix_socket` due to previous error; 31 warnings emitted ...
Bug#1069998: rust-datetime FTBFS on 32bit with 64bit time_t
Source: rust-datetime
Version: 0.5.2-5
Severity: serious
Tags: ftbfs trixie sid
Control: affects -1 src:rust-zoneinfo-compiled
https://buildd.debian.org/status/fetch.php?pkg=rust-datetime=armhf=0.5.2-5%2Bb1=1714252645=0
...
error: cannot construct `timespec` with struct literal syntax due to private
fields
--> src/system.rs:74:18
|
74 | let mut tv = libc::timespec { tv_sec: 0, tv_nsec: 0 };
| ^^
|
= note: ... and other private field `__pad` that was not provided
...
Bug#1069993: rust-filetime FTBFS on 32bit with 64bit time_t
Source: rust-filetime Version: 0.2.22-1 Severity: serious Tags: ftbfs Control: affects -1 src:rust-notify src:rust-async-tar src:rust-cargo-util src:rust-cp-r https://buildd.debian.org/status/fetch.php?pkg=rust-filetime=armhf=0.2.22-1%2Bb1=1714259218=0 ... error[E0308]: mismatched types --> src/unix/utimes.rs:117:18 | 117 | tv_usec: (ft.nanoseconds() / 1000) as libc::suseconds_t, | ^^ expected `i64`, found `i32` For more information about this error, try `rustc --explain E0308`. error: could not compile `filetime` due to previous error ...
Bug#1069992: rust-socket2 FTBFS on 32bit with 64bit time_t
Source: rust-socket2 Version: 0.5.5-1 Severity: serious Tags: ftbfs Control: affects -1 src:rust-quinn-udp src:rust-oauth2 src:rust-nispor src:rust-netlink-proto src:rust-nb-connect src:rust-debbugs src:rust-dns-lookup src:rust-erbium-net src:rust-ethtool src:rust-genetlink src:rust-git2-curl src:rust-hyper-tls src:rust-mozim src:rust-mptcp-pm src:rust-curl https://buildd.debian.org/status/fetch.php?pkg=rust-socket2=armhf=0.5.5-1%2Bb1=1714293496=0 ... error[E0308]: mismatched types --> src/sys/unix.rs:1137:22 | 1137 | tv_usec: duration.subsec_micros() as libc::suseconds_t, | ^ expected `i64`, found `i32` For more information about this error, try `rustc --explain E0308`. error: could not compile `socket2` due to previous error ...
Bug#1069980: haskell-futhark FTBFS: Missing build dependency on alex
Source: haskell-futhark Version: 0.25.15-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=haskell-futhark=0.25.15-1 ... CallStack (from HasCallStack): withMetadata, called at libraries/Cabal/Cabal/src/Distribution/Simple/Utils.hs:370:14 in Cabal-3.8.1.0:Distribution.Simple.Utils Error: hlibrary.setup: The program 'alex' is required but it could not be ...
Bug#1069834: sccache FTBFS with itoa != 0.3.4
Source: sccache Version: 0.8.0-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=sccache=0.8.0-1 ... test test_rust_cargo_cmd_readonly_preemtive_block ... FAILED failures: test_rust_cargo_cmd_readonly_preemtive_block stdout Error: Unexpected failure. code=101 stderr=`` error: failed to select a version for the requirement `itoa = \"^0.3.4\"` (locked to 0.3.4) candidate versions found which didn\'t match: 1.0.9 location searched: directory source `/<>/debian/cargo_registry` (which is replacing registry `crates-io`) required by package `test-crate v0.1.0 (/<>/tests/test-crate)` perhaps a crate was updated and forgotten to be re-vendored? ``` ``` command=`cd "tests/test-crate" && CARGO_INCREMENTAL="0" CARGO_TARGET_DIR="/<>/debian/sccache_test_rust_cargoG4h5iT/cargo" RUSTC_WRAPPER="/<>/target/x86_64-unknown-linux-gnu/release/sccache" TEST_ENV_VAR="1" "/usr/bin/cargo" "build" "--color=never"` code=101 stdout="" stderr=``` error: failed to select a version for the requirement `itoa = \"^0.3.4\"` (locked to 0.3.4) candidate versions found which didn\'t match: 1.0.9 location searched: directory source `/<>/debian/cargo_registry` (which is replacing registry `crates-io`) required by package `test-crate v0.1.0 (/<>/tests/test-crate)` perhaps a crate was updated and forgotten to be re-vendored? ``` Stack backtrace: 0: 1: 2: 3: 4: 5: 6: 7: 8: 9: 10: failures: test_rust_cargo_cmd_readonly_preemtive_block test result: FAILED. 2 passed; 1 failed; 5 ignored; 0 measured; 0 filtered out; finished in 11.18s error: test failed, to rerun pass `--test sccache_cargo` dh_auto_test: error: env DEB_BUILDDIR= /<>/debian/dh-cargo/bin/cargo test returned exit code 101 make[1]: *** [debian/rules:29: override_dh_auto_test] Error 25
Bug#1069685: haskell-language-c-quote: Missing build dependency on alex
Source: haskell-language-c-quote Version: 0.13.0.1-1 Severity: serious Tags: ftbfs X-Debbugs-Cc: Debian Haskell Group , Kari Pahula https://buildd.debian.org/status/logs.php?pkg=haskell-language-c-quote=0.13.0.1-1 ... Error: hlibrary.setup: The program 'alex' version >=3 is required but it could not be found. ...
Bug#1069309: xfractint FTBFS: error: implicit declaration of function
Source: xfractint Version: 20.4.10-4 Severity: serious Tags: ftbfs X-Debbugs-Cc: Petter Reinholdtsen https://buildd.debian.org/status/logs.php?pkg=xfractint=20.4.10-4 ... /usr/bin/gcc -I../headers -g -O2 -Werror=implicit-function-declaration -ffile-prefix-map=/<>=. -fstack-protector-strong -fstack-clash-protection -Wformat -Werror=format-security -mbranch-protection=standard -I./headers -DXFRACT -DNOBSTRING -g -DBIG_ANSI_C -DLINUX -fno-builtin -fcommon -O2 -Wdate-time -D_FORTIFY_SOURCE=2 -c -o 3d.o 3d.c 3d.c: In function ‘longvmultpersp’: 3d.c:290:20: error: implicit declaration of function ‘multiply’ [-Werror=implicit-function-declaration] 290 | tmp[j] += multiply(s[i],m[i][j],bitshift); |^~~~ 3d.c:318:20: error: implicit declaration of function ‘divide’ [-Werror=implicit-function-declaration] 318 | tmpview[0] = divide(lview[0],denom,bitshift); |^~ cc1: some warnings being treated as errors make[3]: *** [: 3d.o] Error 1
Bug#1069222: purple-xmpp-carbons: debian/shlibs.local hardcodes dependency on libpurple0
Package: purple-xmpp-carbons Version: 0.2.3-1 Severity: serious Tags: trixie sid debian/shlibs.local hardcodes a dependency on libpurple0, which makes the package uninstallable on armel/armhf due to the 64-bit time_t rename to libpurple0t64.
Bug#1066216: hfsutils: diff for NMU version 3.2.6-15.1
On Sun, 2024-04-14 at 12:57 +0200, Sebastian Ramacher wrote: > I've prepared an NMU for hfsutils (versioned as 3.2.6-15.1) and > uploaded it to DELAYED/2. Please feel free to tell me if I > should delay it longer. Yes, please set it to 14 days. I am currently going through all my packages one after another to fix these issues. Thanks, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer `. `' Physicist `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Bug#1062881: mia: NMU diff for 64-bit time_t transition
On Sat, Feb 03, 2024 at 09:20:05PM +, Graham Inggs wrote: > Source: mia > Version: 2.4.7-13 > Severity: serious > Tags: patch pending sid trixie > Justification: library ABI skew on upgrade > User: debian-...@lists.debian.org > Usertags: time-t >... Was this forgotten to upload to unstable, or was there a reason why it was deemed unnecessary? Thanks Adrian
Bug#1066383: virtualjaguar: FTBFS: ./inlines.h:82:20: error: implicit declaration of function ‘m68k_read_memory_32’ [-Werror=implicit-function-declaration]
Control: tags -1 +patch
Hi,
On Wed, 2024-03-13 at 12:46 +0100, Lucas Nussbaum wrote:
> Relevant part (hopefully):
> > gcc -MMD -g -O2 -Werror=implicit-function-declaration
> > -ffile-prefix-map=/<>=. -fstack-protector-strong
> > -fstack-clash-protection -Wformat -Werror=format-security -fcf-protection
> > -I. -I./obj `sdl-config --cflags` -c obj/cpustbl.c -o obj/cpustbl.o
> > In file included from obj/cpustbl.c:3:
> > ./inlines.h: In function ‘m68k_do_rts’:
> > ./inlines.h:82:20: error: implicit declaration of function
> > ‘m68k_read_memory_32’ [-Werror=implicit-function-declaration]
> >82 | m68k_setpc(m68k_read_memory_32(m68k_areg(regs, 7)));
> > |^~~
> > ./inlines.h: In function ‘m68k_do_bsr’:
> > ./inlines.h:89:9: error: implicit declaration of function
> > ‘m68k_write_memory_32’ [-Werror=implicit-function-declaration]
> >89 | m68k_write_memory_32(m68k_areg(regs, 7), oldpc);
> > | ^~~~
> > ./inlines.h: In function ‘get_ibyte_prefetch’:
> > ./inlines.h:111:25: error: implicit declaration of function
> > ‘m68k_read_memory_8’ [-Werror=implicit-function-declaration]
> > 111 | #define get_ibyte(o)m68k_read_memory_8(regs.pc + (o) + 1)
> > | ^~
> > ./inlines.h:158:16: note: in expansion of macro ‘get_ibyte’
> > 158 | return get_ibyte(o);
> > |^
> > ./inlines.h: In function ‘get_iword_prefetch’:
> > ./inlines.h:112:25: error: implicit declaration of function
> > ‘m68k_read_memory_16’ [-Werror=implicit-function-declaration]
> > 112 | #define get_iword(o)m68k_read_memory_16(regs.pc + (o))
> > | ^~~
> > ./inlines.h:183:16: note: in expansion of macro ‘get_iword’
> > 183 | return get_iword(o);
> > |^
> > cc1: some warnings being treated as errors
> > make[2]: *** [Makefile:58: obj/cpustbl.o] Error 1
Thanks for the bug report! The attached patch fixes the problem for me. I'm
going to upload
an updated packages soon which will also include fixes for #1038585 [1].
Adrian
> [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1038585
--
.''`. John Paul Adrian Glaubitz
: :' : Debian Developer
`. `' Physicist
`-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
From d0c699e0c6a0781a6dd2f89492b38f9a1d50fa9c Mon Sep 17 00:00:00 2001
From: John Paul Adrian Glaubitz
Date: Sat, 13 Apr 2024 11:18:38 +0200
Subject: [PATCH] Fix missing inclusion of m68kinterface.h in
src/m68000/inlines.h
---
src/m68000/inlines.h | 1 +
1 file changed, 1 insertion(+)
diff --git a/src/m68000/inlines.h b/src/m68000/inlines.h
index 54de932..c037bd9 100644
--- a/src/m68000/inlines.h
+++ b/src/m68000/inlines.h
@@ -11,6 +11,7 @@
#define __INLINES_H__
#include "cpudefs.h"
+#include "m68kinterface.h"
STATIC_INLINE int cctrue(const int cc)
{
--
2.44.0
Bug#1068880: fwbuilder FTBFS: error: debhelper compat level specified both in debian/compat and in debian/control
Source: fwbuilder Version: 5.3.7-7 Severity: serious Tags: ftbfs X-Debbugs-Cc: Jeremy Bícha https://buildd.debian.org/status/logs.php?pkg=fwbuilder=5.3.7-7 ... fakeroot debian/rules clean dh clean dh: warning: Please specify the debhelper compat level exactly once. dh: warning: * debian/compat requests compat 9. dh: warning: * debian/control requests compat 12 via "debhelper-compat (= 12)" dh: warning: dh: warning: Hint: If you just added a build-dependency on debhelper-compat, then please remember to remove debian/compat dh: warning: dh: error: debhelper compat level specified both in debian/compat and in debian/control make: *** [debian/rules:13: clean] Error 255
Bug#1067141: kcemu: FTBFS with -Werror=implicit-function-declaration
Hello Zixing, On Wed, 2024-04-10 at 17:34 -0600, Zixing Liu wrote: > In Ubuntu, the attached patch was applied to achieve the following: > > * debian/patches/add-missing-includes.patch: Add missing includes. > Closes LP: #2060887. The issue has already been fixed upstream. I am waiting for upstream to make a new release as this would also fix #970666 [1]. Adrian > [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970666 -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer `. `' Physicist `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Bug#1068655: lomiri-telephony-service FTBFS with abseil 20230802.1
On Wed, Apr 10, 2024 at 09:02:50PM +, Mike Gabriel wrote: > Hi Adrian, Hi Mike, >... > I'd appreciate if you could take a look and shed some light on this. >... I would have mentioned if I had a clue about this, but I don't. In places like #debian-devel there might be people who understand at first sight what the problem might be. > Thanks! > Mike cu Adrian
Bug#1068586: ghc: Broken on arm{el,hf} because of time_t transition
[ Steve added, for the symbol list question ]
On Tue, Apr 09, 2024 at 09:44:43PM +0300, Ilias Tsitsimpis wrote:
> On Tue, Apr 09, 2024 at 08:53PM, Adrian Bunk wrote:
> > On Tue, Apr 09, 2024 at 07:23:29PM +0300, Ilias Tsitsimpis wrote:
> > > I believe it's not. haskell-hourglass used to work on arm{el,hf} just
> > > before the time64 transition.
> >
> > before this transition x32 was the only 32bit architecture with 64bit
> > time_t.
>
> Aha! Didn't know that, thanks for flagging this. I am surprised that we
> hadn't noticed this earlier (as we see now, GHC is completely broken).
I wouldn't call it "completely broken".
I'm too lazy to get exact numbers, but the arm{el,hf} situation is more
like 1000 packages built (a large part with tests) and 10 failed.
>...
> > > We need a way to identify every package that is broken.
> >
> > $ nm -D /usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHStime-1.12.2-ghc9.4.7.so |
> > grep gettimeofday
> > U gettimeofday@GLIBC_2.4
> > ...
> >
> > $ nm -D
> > /usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHSdirectory-1.3.7.1-ghc9.4.7.so |
> > grep utimensat
> > ...
> > U utimensat@GLIBC_2.6
> >
> > $ nm -D /usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHStime-1.12.2-ghc9.4.7.so |
> > grep localtime
> > U __localtime64_r@GLIBC_2.34
>
> Thank you! Can we maybe run this against all Haskell libraries and
> identify the ones that are currently broken? Maybe we have such a script
> already for the time64 transition.
Steve, do you have a list of all bad symbols for the time_t transition?
With this list it should be possible to just install all currently
installable Haskell packages on a porterbox and do something like
$ for s in gettimeofday utimensat localtime localtime_r; do for f in
/usr/lib/ghc/lib/arm-linux-ghc-9.4.7/*.so
/usr/lib/haskell-packages/ghc/lib/arm-linux-ghc-9.4.7/*.so; do nm -D $f | grep
$s@ && echo $f; done; done
U gettimeofday@GLIBC_2.4
/usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHStime-1.12.2-ghc9.4.7.so
U utimensat@GLIBC_2.6
/usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHSdirectory-1.3.7.1-ghc9.4.7.so
U utimensat@GLIBC_2.6
/usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHSunix-2.7.3-ghc9.4.7.so
$
That last one is likely
libraries/unix/System/Posix/Files/Common.hsc:foreign import ccall unsafe
"utimensat"
> > But the last one is the broken localtime_r one, is anything going wrong
> > with the ccall from TimeZone.hs to cbits there?
> >
> > get_current_timezone_seconds() returning long is wrong,
> > and might contribute to that bug:
> >
> > foreign import ccall unsafe "HsTime.h get_current_timezone_seconds"
> > get_current_timezone_seconds ::
> > CTime -> Ptr CInt -> Ptr CString -> IO CLong
> > ...
> > getTimeZoneCTime ctime =
> > ...
> > secs <- get_current_timezone_seconds ctime pdst pcname
> >
> > I don't know Haskell, but is this declaring ctime as CLong,
> > and then passing it instead of a CTime?
>
> I believe it returns the timezone in seconds (i.e., 3600 for +1 hour
> timezone), so CLong should be large enough to hold this value. My guess
> right now is that it fails due to the bogus CTime value that we pass, we
> need to test this.
Yes, I suspect that this function with
CTime -> Ptr CInt -> Ptr CString -> IO CLong
gets called as
CLong -> Ptr CInt -> Ptr CString -> IO CLong
but I'm surprised if Haskell does not catch something like that at
compile time.
> Ilias
cu
Adrian
Bug#1068723: quickflux: binary-any FTBFS
Source: quickflux Version: 1.1.3+git20201110.2a37acf-1 Severity: serious Tags: ftbfs X-Debbugs-Cc: Debian UBports Team https://buildd.debian.org/status/logs.php?pkg=quickflux=1.1.3%2Bgit20201110.2a37acf-1 ... debian/rules override_dh_installexamples make[1]: Entering directory '/<>' dh_installexamples rm debian/quickflux-doc/usr/share/doc/quickflux-doc/examples/middleware/.gitignore rm: cannot remove 'debian/quickflux-doc/usr/share/doc/quickflux-doc/examples/middleware/.gitignore': No such file or directory make[1]: *** [debian/rules:33: override_dh_installexamples] Error 1
Bug#1068586: ghc: Broken on arm{el,hf} because of time_t transition
On Tue, Apr 09, 2024 at 07:23:29PM +0300, Ilias Tsitsimpis wrote:
> Hi Adrian,
Hi Ilias,
> On Tue, Apr 09, 2024 at 12:56PM, Adrian Bunk wrote:
> > FTR, in haskell-hourglass this is #1001686 which already failed on x32
> > for this reason.
>
> I believe it's not. haskell-hourglass used to work on arm{el,hf} just
> before the time64 transition.
before this transition x32 was the only 32bit architecture with 64bit time_t.
> > My reading of the code is that this happens when
> > libraries/time/lib/cbits/HsTime.c returns 0x8000 due to
> > localtime_r() called in this function returning an error.
> >
> > The "localtime_r failed" is from
> > libraries/time/lib/Data/Time/LocalTime/Internal/TimeZone.hs
>...
> The fix here is to backport (at least) the following patches which
> change these calls to use the capi calling convention:
>
> *
> https://gitlab.haskell.org/ghc/packages/time/-/commit/d52314edb138b6ecd7e888c588f83917b0ee2c29
> *
> https://gitlab.haskell.org/ghc/packages/directory/-/commit/f6b288bd96fba5a955d1f73663eb52c1859ee765
This localtime_r issue I mentioned is not covered in the above commit in
time.
>...
> We need a way to identify every package that is broken.
$ nm -D /usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHStime-1.12.2-ghc9.4.7.so |
grep gettimeofday
U gettimeofday@GLIBC_2.4
...
$ nm -D /usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHSdirectory-1.3.7.1-ghc9.4.7.so
| grep utimensat
...
U utimensat@GLIBC_2.6
$ nm -D /usr/lib/ghc/lib/arm-linux-ghc-9.4.7/libHStime-1.12.2-ghc9.4.7.so |
grep localtime
U __localtime64_r@GLIBC_2.34
But the last one is the broken localtime_r one, is anything going wrong
with the ccall from TimeZone.hs to cbits there?
get_current_timezone_seconds() returning long is wrong,
and might contribute to that bug:
foreign import ccall unsafe "HsTime.h get_current_timezone_seconds"
get_current_timezone_seconds ::
CTime -> Ptr CInt -> Ptr CString -> IO CLong
...
getTimeZoneCTime ctime =
...
secs <- get_current_timezone_seconds ctime pdst pcname
I don't know Haskell, but is this declaring ctime as CLong,
and then passing it instead of a CTime?
> Ilias
cu
Adrian
Bug#1068586: ghc: Broken on arm{el,hf} because of time_t transition
On Sun, Apr 07, 2024 at 05:18:06PM +0300, Ilias Tsitsimpis wrote:
> Package: ghc
> Version: 9.4.7-3
> Severity: grave
> Justification: renders package unusable
>
> I recently uploaded a new version of GHC to unstable, in order to fix
> #1068179. As a result, GHC got rebuilt taking into account the new size
> for time_t on arm{el,hf}. This is evident from the build logs, where
> we now see:
>
>
> https://buildd.debian.org/status/fetch.php?pkg=ghc=armel=9.4.7-4=1712410679=0
>
> checking Haskell type for time_t... Int64
>
> whereas previously we had:
>
>
> https://buildd.debian.org/status/fetch.php?pkg=ghc=armel=9.4.7-3=1708366014=0
>
> checking Haskell type for time_t... Int32
>
>
> After this change, a number of Haskell packages have started to FTBFS:
>
> *
> https://buildd.debian.org/status/fetch.php?pkg=haskell-filestore=armel=0.6.5-3%2Bb2=1712457355=0
> *
> https://buildd.debian.org/status/fetch.php?pkg=haskell-fold-debounce=armel=0.2.0.11-1%2Bb2=1712466208=0
> *
> https://buildd.debian.org/status/fetch.php?pkg=haskell-hourglass=armel=0.2.12-5%2Bb2=1712462130=0
FTR, in haskell-hourglass this is #1001686 which already failed on x32
for this reason.
> Looking into this, I see that (at least) the getPOSIXTime method is
> broken on arm{el,hf}.
>...
https://buildd.debian.org/status/fetch.php?pkg=haskell-lambdahack=armhf=0.11.0.0-4%2Bb1=1712562043=0
https://buildd.debian.org/status/fetch.php?pkg=haskell-hledger-lib=armhf=1.30-1%2Bb1=1712566894=0
Exception: user error (localtime_r failed)
My reading of the code is that this happens when
libraries/time/lib/cbits/HsTime.c returns 0x8000 due to
localtime_r() called in this function returning an error.
The "localtime_r failed" is from
libraries/time/lib/Data/Time/LocalTime/Internal/TimeZone.hs
> Ilias
cu
Adrian
Bug#1068657: pkcs11-provider FTBFS with openssl 3.2.1-3
Source: pkcs11-provider
Version: 0.3-1
Severity: serious
Tags: ftbfs
https://buildd.debian.org/status/fetch.php?pkg=pkcs11-provider=ppc64el=0.3-1%2Bb2=1712517987=0
...
FAIL: basic-softhsm
===
Executing ./tbasic
## Raw Sign check error
openssl
pkeyutl -sign -inkey "${BASEURI}"
-pkeyopt pad-mode:none
-in ${TMPPDIR}/64Brandom.bin
-out ${TMPPDIR}/raw-sig.bin
Public Key operation error
00493C8EFF7F:error:027A:rsa routines:p11prov_sig_operate:data too small
for key size:signature.c:894:
## Sign and Verify with provided Hash and RSA
openssl dgst -sha256 -binary -out ${TMPPDIR}/sha256.bin ${SEEDFILE}
openssl
pkeyutl -sign -inkey "${PRIURI}"
-in ${TMPPDIR}/sha256.bin
-out ${TMPPDIR}/sha256-sig.bin
openssl
pkeyutl -verify -inkey "${PUBURI}"
-pubin
-in ${TMPPDIR}/sha256.bin
-sigfile ${TMPPDIR}/sha256-sig.bin
Signature Verified Successfully
## Sign and Verify with provided Hash and RSA with DigestInfo struct
openssl dgst -sha256 -binary -out ${TMPPDIR}/sha256.bin ${SEEDFILE}
openssl
pkeyutl -sign -inkey "${PRIURI}" -pkeyopt digest:sha256
-in ${TMPPDIR}/sha256.bin
-out ${TMPPDIR}/sha256-sig.bin
openssl
pkeyutl -verify -inkey "${PUBURI}" -pkeyopt digest:sha256
-pubin
-in ${TMPPDIR}/sha256.bin
-sigfile ${TMPPDIR}/sha256-sig.bin
Signature Verified Successfully
## DigestSign and DigestVerify with RSA
openssl
pkeyutl -sign -inkey "${BASEURI}"
-digest sha256
-in ${RAND64FILE}
-rawin
-out ${TMPPDIR}/sha256-dgstsig.bin
openssl
pkeyutl -verify -inkey "${BASEURI}" -pubin
-digest sha256
-in ${RAND64FILE}
-rawin
-sigfile ${TMPPDIR}/sha256-dgstsig.bin
Signature Verified Successfully
openssl
pkeyutl -verify -inkey "${PUBURI}"
-pubin
-digest sha256
-in ${RAND64FILE}
-rawin
-sigfile ${TMPPDIR}/sha256-dgstsig.bin
Signature Verified Successfully
RSA basic encrypt and decrypt
openssl
pkeyutl -encrypt -inkey "${PUBURI}" -pubin
-in ${SECRETFILE}
-out ${SECRETFILE}.enc
openssl
pkeyutl -decrypt -inkey "${PRIURI}"
-in ${SECRETFILE}.enc
-out ${SECRETFILE}.dec
## Test Disallow Public Export
openssl pkey -in $PUBURI -pubin -pubout -text
## Test CSR generation from RSA private keys
openssl
req -new -batch -key "${PRIURI}" -out ${TMPPDIR}/rsa_csr.pem
openssl
req -in ${TMPPDIR}/rsa_csr.pem -verify -noout
Certificate request self-signature verify OK
## Test fetching public keys without PIN in config files
openssl pkey -in $PUBURI -pubin -pubout -out ${TMPPDIR}/rsa.pub.nopin.pem
openssl pkey -in $ECPUBURI -pubin -pubout -out ${TMPPDIR}/ec.pub.nopin.pem
openssl pkey -in $ECXPUBURI -pubin -pubout -out ${TMPPDIR}/ecx.pub.nopin.pem
## Test fetching public keys with a PIN in URI
openssl pkey -in $BASEURIWITHPIN -pubin -pubout -out
${TMPPDIR}/rsa.pub.uripin.pem
openssl pkey -in $ECBASEURIWITHPIN -pubin -pubout -out
${TMPPDIR}/ec.pub.uripin.pem
openssl pkey -in $ECXBASEURIWITHPIN -pubin -pubout -out
${TMPPDIR}/ecx.pub.uripin.pem
## Test prompting without PIN in config files
## Test EVP_PKEY_eq on public RSA key both on token
## Test EVP_PKEY_eq on public EC key both on token
## Test EVP_PKEY_eq on public explicit EC key both on token
Failed to load key from URI: pkcs11:type=public;id=%00%07
FAIL basic-softhsm.t (exit status: 1)
...
Testsuite summary for pkcs11-provider 0.3
# TOTAL: 34
# PASS: 15
# SKIP: 18
# XFAIL: 0
# FAIL: 1
# XPASS: 0
# ERROR: 0
See tests/test-suite.log
Please report to s...@redhat.com
make[4]: *** [Makefile:1070: test-suite.log] Error 1
Bug#1068656: pgsql-http accesses the internet during the build
Source: pgsql-http
Version: 1.6.0-1
Severity: serious
Tags: ftbfs
X-Debbugs-Cc: Debian PostgreSQL Maintainers
https://buildd.debian.org/status/fetch.php?pkg=pgsql-http=arm64=1.6.0-1=1712600451=0
...
regression.diffs
diff -U3 /<>/expected/http.out /<>/results/http.out
--- /<>/expected/http.out 2023-08-10 16:17:30.0 +
+++ /<>/results/http.out 2024-04-08 18:20:45.564039027 +
@@ -9,11 +9,7 @@
-- Status code
SELECT status
FROM http_get('https://httpbun.org/status/202');
- status
-
-202
-(1 row)
-
+ERROR: Could not resolve host: httpbun.org
...
Bug#1068655: lomiri-telephony-service FTBFS with abseil 20230802.1
Source: lomiri-telephony-service
Version: 0.5.3-1
Severity: serious
Tags: ftbfs
https://buildd.debian.org/status/fetch.php?pkg=lomiri-telephony-service=amd64=0.5.3-1%2Bb3=1712518065=0
...
/<>/libtelephonyservice/contactwatcher.cpp: In member function
‘void ContactWatcher::updateAlias()’:
/<>/libtelephonyservice/contactwatcher.cpp:157:21: error:
‘dgettext’ is not a member of ‘C’; did you mean ‘dgettext’?
157 | setAlias(C::dgettext("telephony-service", "Private Number"));
| ^~~~
In file included from
/usr/include/x86_64-linux-gnu/c++/13/bits/messages_members.h:36,
from /usr/include/c++/13/bits/locale_facets_nonio.h:2064,
from /usr/include/c++/13/locale:43,
from /usr/include/c++/13/iomanip:45,
from /usr/include/absl/strings/internal/str_format/arg.h:23,
from /usr/include/absl/strings/str_format.h:78,
from /usr/include/absl/crc/crc32c.h:32,
from /usr/include/absl/crc/internal/crc_cord_state.h:23,
from /usr/include/absl/strings/cord.h:79,
from
/usr/include/absl/container/internal/hash_function_defaults.h:56,
from /usr/include/absl/container/node_hash_set.h:42,
from /usr/include/phonenumbers/phonenumberutil.h:33,
from /<>/libtelephonyservice/phoneutils.h:27,
from
/<>/libtelephonyservice/contactwatcher.cpp:25:
/usr/include/libintl.h:44:14: note: ‘dgettext’ declared here
44 | extern char *dgettext (const char *__domainname, const char *__msgid)
| ^~~~
/<>/libtelephonyservice/contactwatcher.cpp:159:21: error:
‘dgettext’ is not a member of ‘C’; did you mean ‘dgettext’?
159 | setAlias(C::dgettext("telephony-service", "Unknown Number"));
| ^~~~
/usr/include/libintl.h:44:14: note: ‘dgettext’ declared here
44 | extern char *dgettext (const char *__domainname, const char *__msgid)
| ^~~~
...
Bug#1068613: lomiri-history-service FTBFS with abseil 20230802.1
Source: lomiri-history-service Version: 0.5-1 Severity: serious Tags: ftbfs Forwarded: https://gitlab.com/ubports/development/core/history-service/-/merge_requests/35 https://buildd.debian.org/status/fetch.php?pkg=lomiri-history-service=amd64=0.5-1%2Bb2=1712518035=0 ... In file included from /usr/include/absl/base/config.h:86, from /usr/include/absl/algorithm/algorithm.h:29, from /usr/include/absl/algorithm/container.h:53, from /usr/include/absl/container/node_hash_set.h:40, from /usr/include/phonenumbers/phonenumberutil.h:33, from /<>/src/phoneutils.cpp:28: /usr/include/absl/base/policy_checks.h:79:2: error: #error "C++ versions less than C++14 are not supported." 79 | #error "C++ versions less than C++14 are not supported." | ^ ...
Bug#1068612: libopenmpi3t64: mca_pmix_pmix3x.so: undefined symbol: pmix_value_load on 32bit
Package: libopenmpi3t64 Version: 4.1.6-8 Severity: serious Tags: ftbfs Control: affects -1 src:hypre src:h5py src:fenics-dolfinx src:dune-uggrid src:dolfinx-mpc src:dolfin src:liggghts https://buildd.debian.org/status/fetch.php?pkg=dune-uggrid=i386=2.9.0-2%2Bb3=1712511034=0 ... orted: symbol lookup error: /usr/lib/i386-linux-gnu/openmpi/lib/openmpi3/mca_pmix_pmix3x.so: undefined symbol: pmix_value_load ...
Bug#1068610: dico: binary-all FTBFS
Source: dico Version: 2.11-4 Severity: serious Tags: ftbfs X-Debbugs-Cc: Helmut Grohne https://buildd.debian.org/status/logs.php?pkg=dico=all ... debian/rules execute_after_dh_installsystemd make[1]: Entering directory '/<>' ln -s dicod.service debian/dicod/`test -e debian/dicod/lib/systemd/system/dicod.service || echo usr/`lib/systemd/system/dictd.service ln: failed to create symbolic link 'debian/dicod/usr/lib/systemd/system/dictd.service': No such file or directory make[1]: *** [debian/rules:52: execute_after_dh_installsystemd] Error 1
Bug#1060407: gtkwave update for {bookworm,bullseye,buster}-security
On Thu, Apr 04, 2024 at 11:21:21AM +0200, Emilio Pozuelo Monfort wrote: > On 29/03/2024 00:06, Adrian Bunk wrote: >... > > As already mentioned in #1060407, the ghwdump tool (and manpage) was > > dropped in 3.3.110 from the upstream sources, and is now in ghdl-tools. > > For bullseye and buster it is therefore readded. > > > > As mentioned in #1060407 there are different tarballs for GTK 2 and GTK 3. > > Looking closer I realized that this is actually one tarball that > > supports GTK 1+2, and one tarball that supports GTK 2+3. > > I did stay at the GTK 1+2 tarball that was already used before > > for bullseye and buster since there was anyway a different upstream > > tarball required for the +really version that is required to avoid > > creating file conflicts with ghwdump when upgrading to bookworm. > > > > What does the security team consider the best versioning for bullseye? > > In #1060407 I suggested 3.3.104+really3.3.118-0.1, but now I ended up > > preferring 3.3.104+really3.3.118-0+deb11u1 > > I saw this earlier but I couldn't think of a better versioning scheme, > though this looked awkward. Now I have thought of a (possibly) better one, > so I'm stating it here in case we find ourselves in a similar situation in > the future and someone remembers this thread. > > I would have gone with > > 3.3.118-0.1~deb12u1 > 3.3.118+gtk2-0+deb11u1 > 3.3.118+gtk2-0+deb10u1 Rather 3.3.118~gtk2, since 3.3.118+gtk2 > 3.3.118 And as described above, +really is required due to ghwdump: Package: ghdl-tools Replaces: gtkwave (<< 3.3.110~) Breaks: gtkwave (<< 3.3.110~) Since I am readding ghwdump, the version has to be << 3.3.110~ > Cheers, > Emilio cu Adrian
Bug#1060407: gtkwave update for {bookworm,bullseye,buster}-security
On Sun, Mar 31, 2024 at 01:52:40PM +0200, Moritz Mühlenhoff wrote: > Hi Adrian, Hi Moritz, >... > > debdiffs contain only changes to debian/ > > The bookworm/bullseye debdiffs looks good, please upload to security-master, > thanks! both are now uploaded. > Note that both need -sa, but dak needs some special attention when > uploading to security-master. You'll need to wait for the ACCEPTED mail > before you can upload the next one. Done, but I am not sure this was necessary in this case since these are different upstream tarballs gtkwave_3.3.118.orig.tar.gz and gtkwave_3.3.104+really3.3.118.orig.tar.gz (The contents also differs since as mentioned one is the GTK 2+3 upstream tarball and the other one is the GTK 1+2 upstream tarball.) > Cheers, > Moritz cu Adrian
Bug#1067288: pulseaudio: FTBFS on x86: cpu-volume-test fails, segfault in svolume_orc_test
Control: reassign -1 src:pulseaudio 16.1+dfsg1-3 Control: forwarded -1 https://gitlab.freedesktop.org/pulseaudio/pulseaudio/-/issues/3803 On Fri, Mar 22, 2024 at 10:29:23AM +, Simon McVittie wrote: > Control: retitle -1 pulseaudio: FTBFS on x86: cpu-volume-test fails, segfault > in svolume_orc_test > Control: reassign -1 src:orc 1:0.4.38-1 > Control: forwarded -1 https://gitlab.freedesktop.org/gstreamer/orc/-/issues/66 > Control: tags 1067458 + ftbfs sid trixie > Control: merge 1067458 -1 > Control: affects 1067458 + src:pulseaudio > > On Wed, 20 Mar 2024 at 21:48:23 +0100, Lucas Nussbaum wrote: > > > === 47/53 > > > > > > test: cpu-volume-test > > > start time: 06:46:56 > > > duration: 2.82s > > > result: exit status 1 > > > command: > > > UBSAN_OPTIONS=halt_on_error=1:abort_on_error=1:print_summary=1:print_stacktrace=1 > > > > > > LD_LIBRARY_PATH=/<>/obj-x86_64-linux-gnu/src/pulse:/<>/obj-x86_64-linux-gnu/src/pulsecore:/<>/obj-x86_64-linux-gnu/src > > > MALLOC_PERTURB_=255 MAKE_CHECK=1 > > > ASAN_OPTIONS=halt_on_error=1:abort_on_error=1:print_summary=1 > > > /<>/obj-x86_64-linux-gnu/src/tests/cpu-volume-test > > > --- stdout > > > --- > > > Running suite(s): CPU > > > 66%: Checks: 3, Failures: 0, Errors: 1 > > > ../src/tests/cpu-volume-test.c:188:E:svolume:svolume_orc_test:0: (after > > > this point) Received signal 11 (Segmentation fault) > > > == > > This seems to be the same issue as #1067458. > > If a fix isn't obvious, could we perhaps roll back orc to 0.4.34 > (presumably versioned as 1:0.4.38+really0.4.34), or disable its use > in PulseAudio for now? According to the information in the upstream bug, PulseAudio has fixed the test now. > Thanks, > smcv cu Adrian
Bug#1067115: gross: diff for NMU version 1.0.2-4.1
On Sun, Mar 24, 2024 at 11:05:54PM +0100, Antonio Radici wrote: > On Sat, Mar 23, 2024 at 11:45:58PM +0200, Adrian Bunk wrote: > > Control: tags 1067115 + patch > > Control: tags 1067115 + pending > > > > Dear maintainer, > > > > I've prepared an NMU for gross (versioned as 1.0.2-4.1) and uploaded > > it to DELAYED/2. Please feel free to tell me if I should cancel it. > > > > Thanks for working on this, no reason to cancel it. >... Thanks, rescheduled for immediate upload. cu Adrian
Bug#1067115: gross: diff for NMU version 1.0.2-4.1
Control: tags 1067115 + patch
Control: tags 1067115 + pending
Dear maintainer,
I've prepared an NMU for gross (versioned as 1.0.2-4.1) and uploaded
it to DELAYED/2. Please feel free to tell me if I should cancel it.
cu
Adrian
diffstat for gross-1.0.2 gross-1.0.2
changelog|7 ++
patches/0001-fix-misuse-of-strncat.patch | 95 +++
patches/series |1
3 files changed, 103 insertions(+)
diff -Nru gross-1.0.2/debian/changelog gross-1.0.2/debian/changelog
--- gross-1.0.2/debian/changelog 2014-10-25 11:20:12.0 +0300
+++ gross-1.0.2/debian/changelog 2024-03-23 23:23:34.0 +0200
@@ -1,3 +1,10 @@
+gross (1.0.2-4.1) unstable; urgency=high
+
+ * Non-maintainer upload.
+ * CVE-2023-52159: Stack-based buffer overflow (Closes: #1067115)
+
+ -- Adrian Bunk Sat, 23 Mar 2024 23:23:34 +0200
+
gross (1.0.2-4) unstable; urgency=low
* debian/README: fixed a typo (Closes: 670596)
diff -Nru gross-1.0.2/debian/patches/0001-fix-misuse-of-strncat.patch gross-1.0.2/debian/patches/0001-fix-misuse-of-strncat.patch
--- gross-1.0.2/debian/patches/0001-fix-misuse-of-strncat.patch 1970-01-01 02:00:00.0 +0200
+++ gross-1.0.2/debian/patches/0001-fix-misuse-of-strncat.patch 2024-03-23 23:23:34.0 +0200
@@ -0,0 +1,95 @@
+From ec697f4dd5b057ad5af17468dac7955f3d1c03c6 Mon Sep 17 00:00:00 2001
+From: Dmitry Mikhirev
+Date: Wed, 27 Dec 2023 03:42:29 +0400
+Subject: fix misuse of strncat
+
+---
+ src/gross.c | 11 ---
+ src/worker.c | 21 -
+ 2 files changed, 20 insertions(+), 12 deletions(-)
+
+diff --git a/src/gross.c b/src/gross.c
+index 6e1a277..f477845 100644
+--- a/src/gross.c
b/src/gross.c
+@@ -111,7 +111,9 @@ configure_grossd(configlist_t *config)
+ configlist_t *cp;
+ const char *updatestr;
+ struct hostent *host = NULL;
+- char buffer[MAXLINELEN] = { '\0' };
++ char buffer[MAXLINELEN];
++ char *lineend;
++ size_t len;
+ params_t *pp;
+
+ cp = config;
+@@ -119,11 +121,14 @@ configure_grossd(configlist_t *config)
+ while (cp) {
+ pp = cp->params;
+ *buffer = '\0';
++ lineend = buffer;
++ len = 0;
+ while (pp) {
+-strncat(buffer, " ; ", MAXLINELEN - 1);
+-strncat(buffer, pp->value, MAXLINELEN - 1);
++len += snprintf(lineend, MAXLINELEN - len - 1, " ; %s", pp->value);
++lineend = buffer + len;
+ pp = pp->next;
+ }
++ buffer[MAXLINELEN - 1] = '\0';
+ logstr(GLOG_DEBUG, "config: %s = %s%s", cp->name, cp->value, buffer);
+ cp = cp->next;
+ }
+diff --git a/src/worker.c b/src/worker.c
+index 24f104b..63c0f06 100644
+--- a/src/worker.c
b/src/worker.c
+@@ -618,7 +618,8 @@ void
+ querylogwrite(querylog_entry_t *q)
+ {
+ char line[MAXLINELEN];
+- char buffer[MAXLINELEN];
++ size_t len = 0;
++ char *lineend = line;
+ char *actionstr;
+ check_match_t *m;
+
+@@ -655,25 +656,27 @@ querylogwrite(querylog_entry_t *q)
+ if (NULL == q->recipient)
+ q->recipient = "N/A";
+
+- snprintf(line, MAXLINELEN - 1, "a=%s d=%d w=%d c=%s s=%s r=%s", actionstr, q->delay, q->totalweight,
+- q->client_ip, q->sender, q->recipient);
++ len += snprintf(line, MAXLINELEN - 1, "a=%s d=%d w=%d c=%s s=%s r=%s", actionstr, q->delay, q->totalweight, q->client_ip, q->sender, q->recipient);
++ lineend = line +len;
+
+ if (q->helo) {
+- snprintf(buffer, MAXLINELEN - 1, " h=%s", q->helo);
+- strncat(line, buffer, MAXLINELEN - 1);
++ len += snprintf(lineend, MAXLINELEN - len - 1, " h=%s", q->helo);
++ lineend = line + len;
+ }
+
+ m = q->match;
+ while (m) {
+- snprintf(buffer, MAXLINELEN - 1, " m=%s", m->name);
+- strncat(line, buffer, MAXLINELEN - 1);
++ len += snprintf(lineend, MAXLINELEN - len - 1, " m=%s", m->name);
++ lineend = line + len;
+ if (m->weight) {
+- snprintf(buffer, MAXLINELEN - 1, "%+d", m->weight);
+- strncat(line, buffer, MAXLINELEN - 1);
++ len += snprintf(lineend, MAXLINELEN - len - 1, "%+d", m->weight);
++ lineend = line + len;
+ }
+ m = m->next;
+ }
+
++ line[MAXLINELEN - 1] = '\0';
++
+ logstr(GLOG_INFO, "%s", line);
+ }
+
+--
+2.30.2
+
diff -Nru gross-1.0.2/debian/patches/series gross-1.0.2/debian/patches/series
--- gross-1.0.2/debian/patches/series 2014-10-25 11:07:44.0 +0300
+++ gross-1.0.2/debian/patches/series 2024-03-23 23:23:34.0 +0200
@@ -1,3 +1,4 @@
0001-fix-manpage-errors.patch
0003-change-default-user.patch
0002-remove-getline.patch
+0001-fix-misuse-of-strncat.patch
Bug#1060407: gtkwave: diff for NMU version 3.3.118-0.1
Control: tags 1060407 + patch Control: tags 1060407 + pending Dear maintainer, I've prepared an NMU for gtkwave (versioned as 3.3.118-0.1) and uploaded it to DELAYED/2. Please feel free to tell me if I should cancel it. cu Adrian diffstat for gtkwave-3.3.116 gtkwave-3.3.118 ChangeLog| 44 LICENSE.TXT |2 configure| 20 +- configure.ac |2 contrib/bundle_for_osx/Info-gtkwave.plist|6 contrib/xml2stems/xml2stems.cc | 20 +- debian/changelog | 30 +++ share/appdata/Makefile.am|2 share/appdata/Makefile.in|2 share/appdata/gtkwave.appdata.xml| 20 -- share/appdata/io.github.gtkwave.GTKWave.metainfo.xml | 143 ++ src/debug.c | 39 +++ src/debug.h |3 src/extload.c|6 src/globals.h|2 src/helpers/evcd2vcd.c | 14 + src/helpers/fst/fstapi.c | 189 +-- src/helpers/lxt2_read.c | 96 + src/helpers/vcd2fst.c| 47 src/helpers/vcd2lxt.c| 69 ++ src/helpers/vcd2lxt2.c | 69 ++ src/helpers/vcd2vzt.c| 69 ++ src/helpers/vzt_read.c | 109 ++ src/libghw.c |3 src/liblzma/LzmaLib.c| 37 +++ src/main.c |4 src/ptranslate.c |2 src/savefile.c |4 src/ttranslate.c |2 src/vcd.c| 17 + src/vcd_partial.c| 17 + src/vcd_recoder.c| 15 + 32 files changed, 1000 insertions(+), 104 deletions(-) diff -Nru gtkwave-3.3.116/ChangeLog gtkwave-3.3.118/ChangeLog --- gtkwave-3.3.116/ChangeLog 2023-07-23 03:37:07.0 +0300 +++ gtkwave-3.3.118/ChangeLog 2023-12-31 23:11:04.0 +0200 @@ -1843,3 +1843,47 @@ Add GDK_WINDOWING_WAYLAND check for gdkwayland.h header usage. Changed sprintf to snprintf in fstapi.c. Fix init crash on show_base_symbols enabled. +3.3.117 08aug23 Fix stems reader processing code broken in 3.3.114. +3.3.118 17dec23 Update xml2stems to handle newer "loc" vs "fl" xml tags. + Change preg_regex_c_1 decl to use regex_t* as datatype. + Move gtkwave.appdata.xml to + io.github.gtkwave.GTKWave.metainfo.xml. + Fixed popen security advisories: + TALOS-2023-1786 + Fixed FST security advisories: + TALOS-2023-1777 + TALOS-2023-1783 + TALOS-2023-1785 + TALOS-2023-1789 + TALOS-2023-1790 + TALOS-2023-1791 + TALOS-2023-1792 + TALOS-2023-1793 + TALOS-2023-1797 + TALOS-2023-1798 + Fixed evcd2vcd security advisories: + TALOS-2023-1803 + Fixed VCD security advisories: + TALOS-2023-1804 + TALOS-2023-1805 + TALOS-2023-1806 + TALOS-2023-1807 + Fixed VZT security advisories: + TALOS-2023-1810 + TALOS-2023-1811 + TALOS-2023-1812 + TALOS-2023-1813 + TALOS-2023-1814 + TALOS-2023-1815 + TALOS-2023-1816 + TALOS-2023-1817 + Fixed LXT2 security advisories: + TALOS-2023-1818 + TALOS-2023-1819 + TALOS-2023-1820 + TALOS-2023-1821 + TALOS-2023-1822 + TALOS-2023-1823 + TALOS-2023-1824 + TALOS-2023-1826 + TALOS-2023-1827 diff -Nru gtkwave-3.3.116/configure gtkwave-3.3.118/configure --- gtkwave-3.3.116/configure 2023-07-23 03:37:07.0 +0300 +++ gtkwave-3.3.118/configure 2023-12-31 23:11:03.0 +0200 @@ -1,6 +1,6 @@ #! /bin/sh # Guess values for system-dependent variables and create Makefiles. -# Generated by GNU Autoconf 2.69 for gtkwave-gtk3 3.3.116. +# Generated by GNU Autoconf 2.69 for gtkwave-gtk3 3.3.118. # # Report bugs to . # @@ -580,8 +580,8 @@ # Identity of this package. PACKAGE_NAME='gtkwave-gtk3' PACKAGE_TARNAME='gtkwave-gtk3' -PACKAGE_VERSION='3.3.116' -PACKAGE_STRING='gtkwave-gtk3 3.3.116' +PACKAGE_VERSION='3.3.118' +PACKAGE_STRING='gtkwave-gtk3 3.3.118' PACKAGE_BUGREPORT='byb...@rocketmail.com' PACKAGE_URL='' @@ -1395,7 +1395,7 @@ # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF -\`configure' configures gtkwave-gtk3 3.3.116 to adapt to many kinds of systems. +\`configure' configures gtkwave-gtk3 3.3.118 to adap
Bug#1067386: anymarkup-core: FTBFS: dh_auto_test: error: pybuild --test --test-pytest -i python{version} -p "3.12 3.11" returned exit code 13
Control: reassign -1 src:python-flexmock Control: merge -1 1067358 Hi Lucas, On Wed, 2024-03-20 at 21:56 +0100, Lucas Nussbaum wrote: > > ERRORS > > > > _ ERROR collecting > > .pybuild/cpython3_3.12_anymarkup-core/build/test/test_libs_not_installed.py > > _ > > test/test_libs_not_installed.py:1: in > > from flexmock import flexmock > > /usr/lib/python3/dist-packages/flexmock/__init__.py:2: in > > from flexmock import _integrations # pylint: disable=unused-import > > /usr/lib/python3/dist-packages/flexmock/_integrations.py:101: in > > saved_pytest = runner.call_runtest_hook > > E AttributeError: module '_pytest.runner' has no attribute > > 'call_runtest_hook' > > === short test summary info > > > > ERROR test/test_libs_not_installed.py - AttributeError: module > > '_pytest.runne... > > Interrupted: 1 error during collection > > > > === 1 error in 0.21s > > === > > I think this is the same bug you reported in #1067358 [1]. anymarkup-core is affected since it uses python-flexmock as a build-dependency. Adrian > [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1067358 -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer `. `' Physicist `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Bug#1066995: pulseaudio: FTBFS with _TIME_BITS=64 on 32-bit systems
Source: pulseaudio Version: 16.1+dfsg1-3 Severity: serious Tags: upstream Justification: ftbfs User: debian-powe...@lists.debian.org Usertags: powerpc X-Debbugs-Cc: debian-powe...@lists.debian.org Hi, pulseaudio fails to built from source with _TIME_BITS=64 [1]: [632/648] cc -Isrc/utils/libpulsedsp.so.p -Isrc/utils -I../src/utils -I. -I.. -Isrc -I../src -fdiagnostics-color=always -Wall -Winvalid-pch -std=gnu11 -g -O2 -Werror=implicit-function-declaration -ffile-prefix-map=/<>=. -fstack-protector-strong -Wformat -Werror=format-security -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -D_TIME_BITS=64 -Wdate-time -D_FORTIFY_SOURCE=2 -fPIC -pthread -DHAVE_CONFIG_H -D_GNU_SOURCE -Wno-nonnull-compare -MD -MQ src/utils/libpulsedsp.so.p/padsp.c.o -MF src/utils/libpulsedsp.so.p/padsp.c.o.d -o src/utils/libpulsedsp.so.p/padsp.c.o -c ../src/utils/padsp.c FAILED: src/utils/libpulsedsp.so.p/padsp.c.o cc -Isrc/utils/libpulsedsp.so.p -Isrc/utils -I../src/utils -I. -I.. -Isrc -I../src -fdiagnostics-color=always -Wall -Winvalid-pch -std=gnu11 -g -O2 -Werror=implicit-function-declaration -ffile-prefix-map=/<>=. -fstack-protector-strong -Wformat -Werror=format-security -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -D_TIME_BITS=64 -Wdate-time -D_FORTIFY_SOURCE=2 -fPIC -pthread -DHAVE_CONFIG_H -D_GNU_SOURCE -Wno-nonnull-compare -MD -MQ src/utils/libpulsedsp.so.p/padsp.c.o -MF src/utils/libpulsedsp.so.p/padsp.c.o.d -o src/utils/libpulsedsp.so.p/padsp.c.o -c ../src/utils/padsp.c In file included from /usr/include/features.h:393, from /usr/include/endian.h:21, from /usr/include/linux/soundcard.h:43, from /usr/include/powerpc-linux-gnu/sys/soundcard.h:1, from ../src/utils/padsp.c:33: /usr/include/features-time64.h:26:5: error: #error "_TIME_BITS=64 is allowed only with _FILE_OFFSET_BITS=64" 26 | # error "_TIME_BITS=64 is allowed only with _FILE_OFFSET_BITS=64" | ^ This needs to be fixed for the time_t transition [2]. Thanks, Adrian > [1] > https://buildd.debian.org/status/fetch.php?pkg=pulseaudio=powerpc=16.1%2Bdfsg1-3%2Bb1=1710500596=0 > [2] https://wiki.debian.org/ReleaseGoals/64bit-time -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer `. `' Physicist `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 # This file is part of PulseAudio. # # PulseAudio is free software; you can redistribute it and/or modify # it under the terms of the GNU Lesser General Public License as published by # the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # # PulseAudio is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with PulseAudio; if not, see <http://www.gnu.org/licenses/>. ## Configuration file for PulseAudio clients. See pulse-client.conf(5) for ## more information. Default values are commented out. Use either ; or # for ## commenting. ; default-sink = ; default-source = ; default-server = ; default-dbus-server = ; autospawn = yes ; daemon-binary = /usr/bin/pulseaudio ; extra-arguments = --log-target=syslog ; cookie-file = ; enable-shm = yes ; shm-size-bytes = 0 # setting this 0 will use the system-default, usually 64 MiB ; auto-connect-localhost = no ; auto-connect-display = no # This file is part of PulseAudio. # # PulseAudio is free software; you can redistribute it and/or modify # it under the terms of the GNU Lesser General Public License as published by # the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # # PulseAudio is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with PulseAudio; if not, see <http://www.gnu.org/licenses/>. ## Configuration file for the PulseAudio daemon. See pulse-daemon.conf(5) for ## more information. Default values are commented out. Use either ; or # for ## commenting. ; daemonize = no ; fail = yes ; allow-module-loading = yes ; allow-exit = yes ; use-pid-file = yes ; system-instance = no ; local-server-type = user ; enable-shm = yes ; enable-memfd = yes ; shm-size-bytes = 0 # setting this 0 will use the system-default, usually 64 MiB ; lock-memory = no ; cpu-limit = no ; high-priority = yes ; nice-level = -11 ; realtime-scheduling = yes ; realtime-priority = 5 ; exit-idle-time = 20 ; scache-idle-time = 20 ; dl-search-path = (depends on architecture) ; load-default-script-file = yes ; default-scr
Bug#1066952: Defaulting to -Werror=implicit-function-declaration might not be a good idea
Package: dpkg-dev Version: 1.22.6 Severity: serious X-Debbugs-Cc: Steve Langasek There are at least 3 different ways how -Werror=implicit-function-declaration breaks packages: 1. Code that did emit implicit-function-declaration warnings during compilation before and does FTBFS now 2. Code that does FTBFS now due to other breakage caused by -Werror=implicit-function-declaration, e.g. in autoconf tests 3. Code that does still compile with -Werror=implicit-function-declaration but behaves differently, e.g. due to failing autoconf tests silently disabling features Cases from point 1 were always(?) bugs and it is good that they get fixed. The real-world effect of these bugs can be everywhere from "completely harmless" to "that was always broken". Debian has automation listing implicit-function-declaration warnings in all packages already running for several years: https://qa.debian.org/bls/bytag/W-implicit-declaration.html My main worry is point 3, issues like #1066394. #1066394 was found due to causing a FTBFS in a different package, but the more common case is likely that a program has some feature/plugin disabled and this won't be spotted until much later. "Much later" might be after the release of trixie a user upgrading to bookworm who uses this feature. Or it might result in a program silently using an insecure legacy codepath, e.g. after a test for getentropy() failed. A large part of the packages in unstable might not get recompiled between now and the release of trixie, creating the additional issue that any such problem might occur only after a security update or point release update if this is the next rebuild of the package in trixie.
Bug#1066003: libberkeleydb-perl: FTBFS on arm{el,hf}: Failed 1/35 test programs. 1/1861 subtests failed.
On Wed, Mar 13, 2024 at 10:48:45AM -0100, Graham Inggs wrote: >... > Ubuntu is further along in the time_t transition, so further > investigation is needed as to which package causes the change in buld > behaviour of db5.3. >... It's dpkg, Ubuntu disabled -Werror=implicit-function-declaration cu Adrian
Bug#1060407: Multiple security issues
On Wed, Jan 10, 2024 at 08:36:38PM +0100, Moritz Muehlenhoff wrote: > Source: gtkwave > Version: 3.3.116-1 > Severity: grave > Tags: security > X-Debbugs-Cc: Debian Security Team > > A very thorough security audit of gtkwave unveiled a total of 82 security > issues in gtkwave, all fixed in 3.3.118: > > CVE-2023-32650 CVE-2023-34087 CVE-2023-34436 CVE-2023-35004 > CVE-2023-35057 CVE-2023-35128 CVE-2023-35702 CVE-2023-35703 > CVE-2023-35704 CVE-2023-35955 CVE-2023-35956 CVE-2023-35957 > CVE-2023-35958 CVE-2023-35959 CVE-2023-35960 CVE-2023-35961 > CVE-2023-35962 CVE-2023-35963 CVE-2023-35964 CVE-2023-35969 > CVE-2023-35970 CVE-2023-35989 CVE-2023-35992 CVE-2023-35994 > CVE-2023-35995 CVE-2023-35996 CVE-2023-35997 CVE-2023-36746 > CVE-2023-36747 CVE-2023-36861 CVE-2023-36864 CVE-2023-36915 > CVE-2023-36916 CVE-2023-37282 CVE-2023-37416 CVE-2023-37417 > CVE-2023-37418 CVE-2023-37419 CVE-2023-37420 CVE-2023-37442 > CVE-2023-37443 CVE-2023-37444 CVE-2023-37445 CVE-2023-37446 > CVE-2023-37447 CVE-2023-37573 CVE-2023-37574 CVE-2023-37575 > CVE-2023-37576 CVE-2023-37577 CVE-2023-37578 CVE-2023-37921 > CVE-2023-37922 CVE-2023-37923 CVE-2023-38583 CVE-2023-38618 > CVE-2023-38619 CVE-2023-38620 CVE-2023-38621 CVE-2023-38622 > CVE-2023-38623 CVE-2023-38648 CVE-2023-38649 CVE-2023-38650 > CVE-2023-38651 CVE-2023-38652 CVE-2023-38653 CVE-2023-38657 > CVE-2023-39234 CVE-2023-39235 CVE-2023-39270 CVE-2023-39271 > CVE-2023-39272 CVE-2023-39273 CVE-2023-39274 CVE-2023-39275 > CVE-2023-39316 CVE-2023-39317 CVE-2023-39413 CVE-2023-39414 > CVE-2023-39443 CVE-2023-39444 > > Let's first fix unstable and then we can simple build 3.3.118 > for stable-security and oldstable-security as well. >... I looked at it for LTS, and there are at least two issues to consider: 1. GTK 2 versus GTK 3 Between bullseye and bookworm the UI switched from GTK 2 to GTK 3. The good news is that in buster both versions of 3.3.118 work with a small testcase. The bad news is that upstream has different tarballs for GTK 2 and GTK 3. 2. ghwdump moved to ghdl-tools The ghwdump tool (and manpage) was dropped in 3.3.110 from the upstream sources, and is now in ghdl-tools. My suggestion would be that I do: sid: 3.3.118-0.1 (or 3.3.118-1 if done by a maintainer) bookworm: 3.3.118-0.1~deb12u1 bullseye: 3.3.104+really3.3.118-0.1 (GTK 2 and with ghwdump re-added) buster: 3.3.104+really3.3.118-0.1~deb10u1 (or 3.3.98+really3.3.118-0.1) Any comments? Especially maintainer feedback would be appreciated. > Cheers, > Moritz cu Adrian
Bug#1064967: fontforge DSA (was: Re: Bug#1064967: fontforge: diff for NMU version 1:20230101~dfsg-1.1)
On Wed, Mar 13, 2024 at 08:39:47PM +0100, Salvatore Bonaccorso wrote:
> Hi Adrian,
Hi Salvatore,
> On Fri, Mar 08, 2024 at 02:03:55AM +0200, Adrian Bunk wrote:
> > Control: tags 1064967 + patch
> > Control: tags 1064967 + pending
> >
> > Dear maintainer,
> >
> > I've prepared an NMU for fontforge (versioned as 1:20230101~dfsg-1.1) and
> > uploaded it to DELAYED/2. Please feel free to tell me if I should cancel it.
> >
> > @Security team:
> > If wanted, I could afterwards also prepare (pu or DSA) updates for
> > bookworm and bullseye.
>
> We came to the conclusion that it warrants a DSA. Could you prepare
> debdiffs for bookworm-security and bulseye-security?
the debdiffs are attached.
Tested on both releases with the PoCs from [1] and that opening a normal
compressed font still works.
> Regards,
> Salvatore
cu
Adrian
[1]
https://www.canva.dev/blog/engineering/fonts-are-still-a-helvetica-of-a-problem/
diffstat for fontforge-20201107~dfsg fontforge-20201107~dfsg
changelog | 10
patches/0001-fix-splinefont-shell-command-injection-5367.patch | 181
++
patches/series |1
3 files changed, 192 insertions(+)
diff -Nru fontforge-20201107~dfsg/debian/changelog
fontforge-20201107~dfsg/debian/changelog
--- fontforge-20201107~dfsg/debian/changelog2021-01-15 17:55:46.0
+0200
+++ fontforge-20201107~dfsg/debian/changelog2024-03-15 22:56:38.0
+0200
@@ -1,3 +1,13 @@
+fontforge (1:20201107~dfsg-4+deb11u1) bullseye-security; urgency=medium
+
+ * Non-maintainer upload.
+ * CVE-2024-25081: Spline Font command injection via crafted filenames
+ * CVE-2024-25082: Spline Font command injection via crafted archives
+or compressed files
+ * Closes: #1064967
+
+ -- Adrian Bunk Fri, 15 Mar 2024 22:56:38 +0200
+
fontforge (1:20201107~dfsg-4) unstable; urgency=medium
* Rename extended to extendeddbl to avoid FTBFS on Hurd.
diff -Nru
fontforge-20201107~dfsg/debian/patches/0001-fix-splinefont-shell-command-injection-5367.patch
fontforge-20201107~dfsg/debian/patches/0001-fix-splinefont-shell-command-injection-5367.patch
---
fontforge-20201107~dfsg/debian/patches/0001-fix-splinefont-shell-command-injection-5367.patch
1970-01-01 02:00:00.0 +0200
+++
fontforge-20201107~dfsg/debian/patches/0001-fix-splinefont-shell-command-injection-5367.patch
2024-03-15 22:48:11.0 +0200
@@ -0,0 +1,181 @@
+From 216eb14b558df344b206bf82e2bdaf03a1f2f429 Mon Sep 17 00:00:00 2001
+From: Peter Kydas
+Date: Tue, 6 Feb 2024 20:03:04 +1100
+Subject: fix splinefont shell command injection (#5367)
+
+---
+ fontforge/splinefont.c | 125 +
+ 1 file changed, 90 insertions(+), 35 deletions(-)
+
+diff --git a/fontforge/splinefont.c b/fontforge/splinefont.c
+index 239fdc035..647daee10 100644
+--- a/fontforge/splinefont.c
b/fontforge/splinefont.c
+@@ -788,11 +788,14 @@ return( name );
+
+ char *Unarchive(char *name, char **_archivedir) {
+ char *dir = getenv("TMPDIR");
+-char *pt, *archivedir, *listfile, *listcommand, *unarchivecmd,
*desiredfile;
++char *pt, *archivedir, *listfile, *desiredfile;
+ char *finalfile;
+ int i;
+ int doall=false;
+ static int cnt=0;
++gchar *command[5];
++gchar *stdoutresponse = NULL;
++gchar *stderrresponse = NULL;
+
+ *_archivedir = NULL;
+
+@@ -827,18 +830,30 @@ return( NULL );
+ listfile = malloc(strlen(archivedir)+strlen("/" TOC_NAME)+1);
+ sprintf( listfile, "%s/" TOC_NAME, archivedir );
+
+-listcommand = malloc( strlen(archivers[i].unarchive) + 1 +
+- strlen( archivers[i].listargs) + 1 +
+- strlen( name ) + 3 +
+- strlen( listfile ) +4 );
+-sprintf( listcommand, "%s %s %s > %s", archivers[i].unarchive,
+- archivers[i].listargs, name, listfile );
+-if ( system(listcommand)!=0 ) {
+- free(listcommand); free(listfile);
+- ArchiveCleanup(archivedir);
+-return( NULL );
+-}
+-free(listcommand);
++command[0] = archivers[i].unarchive;
++command[1] = archivers[i].listargs;
++command[2] = name;
++command[3] = NULL; // command args need to be NULL-terminated
++
++if ( g_spawn_sync(
++ NULL,
++ command,
++ NULL,
++ G_SPAWN_SEARCH_PATH,
++ NULL,
++ NULL,
++ ,
++ ,
++ NULL,
++ NULL
++ ) == FALSE) { // did not successfully execute
++ ArchiveCleanup(archivedir);
++ return( NULL );
++}
++// Write out the listfile to be read in later
++FIL
Bug#1066885: libopenmpi3t64 hardcodes libpmix2 dependency
Package: libopenmpi3t64
Version: 4.1.6-6
Severity: serious
Package: libopenmpi3t64
Version: 4.1.6-6
Depends: ..., libpmix2t64 (>= 5.0.1), ..., libpmix2
This is due to:
Package: libopenmpi3t64
Depends: ${shlibs:Depends}, ${misc:Depends}, libhwloc-plugins, libpmix2
This might have been added due to
openmpi (3.1.1.real-4) unstable; urgency=medium
* Make libopenmpi3 pull in libpmix2 >= 3.0.0-1
-- Alastair McKinstry Wed, 18 Jul 2018 11:20:16 +0100
but now the manual dependency should just be dropped.
Bug#1064967: fontforge: diff for NMU version 1:20230101~dfsg-1.1
Control: tags 1064967 + patch
Control: tags 1064967 + pending
Dear maintainer,
I've prepared an NMU for fontforge (versioned as 1:20230101~dfsg-1.1) and
uploaded it to DELAYED/2. Please feel free to tell me if I should cancel it.
@Security team:
If wanted, I could afterwards also prepare (pu or DSA) updates for
bookworm and bullseye.
cu
Adrian
diff -Nru fontforge-20230101~dfsg/debian/changelog fontforge-20230101~dfsg/debian/changelog
--- fontforge-20230101~dfsg/debian/changelog 2023-01-18 20:05:41.0 +0200
+++ fontforge-20230101~dfsg/debian/changelog 2024-03-08 01:15:58.0 +0200
@@ -1,3 +1,13 @@
+fontforge (1:20230101~dfsg-1.1) unstable; urgency=high
+
+ * Non-maintainer upload.
+ * CVE-2024-25081: Spline Font command injection via crafted filenames
+ * CVE-2024-25082: Spline Font command injection via crafted archives
+or compressed files
+ * Closes: #1064967
+
+ -- Adrian Bunk Fri, 08 Mar 2024 01:15:58 +0200
+
fontforge (1:20230101~dfsg-1) unstable; urgency=medium
* New upstream version 20230101~dfsg
diff -Nru fontforge-20230101~dfsg/debian/patches/0001-fix-splinefont-shell-command-injection-5367.patch fontforge-20230101~dfsg/debian/patches/0001-fix-splinefont-shell-command-injection-5367.patch
--- fontforge-20230101~dfsg/debian/patches/0001-fix-splinefont-shell-command-injection-5367.patch 1970-01-01 02:00:00.0 +0200
+++ fontforge-20230101~dfsg/debian/patches/0001-fix-splinefont-shell-command-injection-5367.patch 2024-03-07 23:25:36.0 +0200
@@ -0,0 +1,181 @@
+From 216eb14b558df344b206bf82e2bdaf03a1f2f429 Mon Sep 17 00:00:00 2001
+From: Peter Kydas
+Date: Tue, 6 Feb 2024 20:03:04 +1100
+Subject: fix splinefont shell command injection (#5367)
+
+---
+ fontforge/splinefont.c | 125 +
+ 1 file changed, 90 insertions(+), 35 deletions(-)
+
+diff --git a/fontforge/splinefont.c b/fontforge/splinefont.c
+index 239fdc035..647daee10 100644
+--- a/fontforge/splinefont.c
b/fontforge/splinefont.c
+@@ -788,11 +788,14 @@ return( name );
+
+ char *Unarchive(char *name, char **_archivedir) {
+ char *dir = getenv("TMPDIR");
+-char *pt, *archivedir, *listfile, *listcommand, *unarchivecmd, *desiredfile;
++char *pt, *archivedir, *listfile, *desiredfile;
+ char *finalfile;
+ int i;
+ int doall=false;
+ static int cnt=0;
++gchar *command[5];
++gchar *stdoutresponse = NULL;
++gchar *stderrresponse = NULL;
+
+ *_archivedir = NULL;
+
+@@ -827,18 +830,30 @@ return( NULL );
+ listfile = malloc(strlen(archivedir)+strlen("/" TOC_NAME)+1);
+ sprintf( listfile, "%s/" TOC_NAME, archivedir );
+
+-listcommand = malloc( strlen(archivers[i].unarchive) + 1 +
+- strlen( archivers[i].listargs) + 1 +
+- strlen( name ) + 3 +
+- strlen( listfile ) +4 );
+-sprintf( listcommand, "%s %s %s > %s", archivers[i].unarchive,
+- archivers[i].listargs, name, listfile );
+-if ( system(listcommand)!=0 ) {
+- free(listcommand); free(listfile);
+- ArchiveCleanup(archivedir);
+-return( NULL );
+-}
+-free(listcommand);
++command[0] = archivers[i].unarchive;
++command[1] = archivers[i].listargs;
++command[2] = name;
++command[3] = NULL; // command args need to be NULL-terminated
++
++if ( g_spawn_sync(
++ NULL,
++ command,
++ NULL,
++ G_SPAWN_SEARCH_PATH,
++ NULL,
++ NULL,
++ ,
++ ,
++ NULL,
++ NULL
++ ) == FALSE) { // did not successfully execute
++ ArchiveCleanup(archivedir);
++ return( NULL );
++}
++// Write out the listfile to be read in later
++FILE *fp = fopen(listfile, "wb");
++fwrite(stdoutresponse, strlen(stdoutresponse), 1, fp);
++fclose(fp);
+
+ desiredfile = ArchiveParseTOC(listfile, archivers[i].ars, );
+ free(listfile);
+@@ -847,22 +862,28 @@ return( NULL );
+ return( NULL );
+ }
+
+-/* I tried sending everything to stdout, but that doesn't work if the */
+-/* output is a directory file (ufo, sfdir) */
+-unarchivecmd = malloc( strlen(archivers[i].unarchive) + 1 +
+- strlen( archivers[i].listargs) + 1 +
+- strlen( name ) + 1 +
+- strlen( desiredfile ) + 3 +
+- strlen( archivedir ) + 30 );
+-sprintf( unarchivecmd, "( cd %s ; %s %s %s %s ) > /dev/null", archivedir,
+- archivers[i].unarchive,
+- archivers[i].extractargs, name, doall ? "" : desiredfile );
+-if ( system(unarchivecmd)!=0 ) {
+- free(unarchivecmd); free(desiredfile);
+- ArchiveCleanup(archivedir);
+-return( NULL );
++command[0] = archivers[i].unarchive;
++command[1] = archivers[i].extractargs;
++command[2] = name;
++command[3] = doall ? "" : desiredfile;
++com
Bug#1065548: octave-statistics: binary-any FTBFS
Source: octave-statistics Version: 1.6.4-1 Severity: serious Tags: ftbfs https://buildd.debian.org/status/logs.php?pkg=octave-statistics=1.6.4-1 ... debian/rules execute_after_dh_installdeb make[1]: Entering directory '/<>' # Use local JavaScript and CSS files debian/local-url sed: can't read debian/octave-statistics-common/usr/share/doc/octave-statistics-common/docs/*.html: No such file or directory # Remove empty directory rmdir debian/octave-statistics-common/usr/share/octave/packages/statistics-*/doc/ rmdir: failed to remove 'debian/octave-statistics-common/usr/share/octave/packages/statistics-*/doc/': No such file or directory make[1]: *** [debian/rules:15: execute_after_dh_installdeb] Error 1
Bug#1065547: gst-python1.0 FTBFS: TypeError: function takes at most 0 arguments
Source: gst-python1.0
Version: 1.23.90-1
Severity: serious
Tags: ftbfs
https://buildd.debian.org/status/logs.php?pkg=gst-python1.0=1.23.90-1
https://buildd.debian.org/status/logs.php?pkg=gst-python1.0=1.24.0-1
...
3/3 =
test: Test fundamentals
start time: 12:22:01
duration: 2.03s
result: exit status 1
command: ASAN_OPTIONS=halt_on_error=1:abort_on_error=1:print_summary=1
GST_OVERRIDE_BUILD_PATH=/<>/build-3.12/testsuite/../gi/overrides
UBSAN_OPTIONS=halt_on_error=1:abort_on_error=1:print_summary=1:print_stacktrace=1
MALLOC_PERTURB_=73
GST_PLUGIN_LOADING_WHITELIST=gstreamer:gst-plugins-base:gst-python@/<>/build-3.12
GST_REGISTRY='/<>/build-3.12/testsuite/Test
fundamentals.registry'
GST_PLUGIN_PATH_1_0=/<>/build-3.12:/usr/lib/x86_64-linux-gnu/gstreamer-1.0:/usr/lib/x86_64-linux-gnu/gstreamer-1.0:/<>/build-3.12/plugin:/<>/testsuite
GST_OVERRIDE_SRC_PATH=/<>/testsuite/../gi/overrides
/usr/bin/python3.12 /<>/build-3.12/../testsuite/runtests.py
test_types.py
--- stderr ---
.EE.
==
ERROR: testConstructor (test_types.TestBitmask.testConstructor)
--
Traceback (most recent call last):
File "/<>/testsuite/test_types.py", line 387, in testConstructor
r = Gst.Bitmask(1 << 5)
^^^
TypeError: function takes at most 0 arguments (1 given)
==
ERROR: testGetValue (test_types.TestBitmask.testGetValue)
--
Traceback (most recent call last):
File "/<>/testsuite/test_types.py", line 393, in testGetValue
self.assertEqual(Gst.Structure('test,test=(bitmask)0x20')['test'], 1 << 5)
File "/<>/testsuite/../gi/overrides/Gst.py", line 330, in
__getitem__
return self.get_value(key)
^^^
TypeError: function takes at most 0 arguments (1 given)
==
ERROR: testStr (test_types.TestBitmask.testStr)
--
Traceback (most recent call last):
File "/<>/testsuite/test_types.py", line 398, in testStr
r = Gst.Bitmask(1 << 5)
^^^
TypeError: function takes at most 0 arguments (1 given)
...
FAILED (errors=30)
==
Summary of Failures:
3/3 Test fundamentals FAIL2.03s exit status 1
Ok: 2
Expected Fail: 0
Fail: 1
Unexpected Pass:0
Skipped:0
Timeout:0
dh_auto_test: error: cd build-3.12 && DEB_PYTHON_INSTALL_LAYOUT=deb
LC_ALL=C.UTF-8 MESON_TESTTHREADS=6 meson test returned exit code 1
make[1]: *** [debian/rules:28: override_dh_auto_test] Error 25
