Bug#1040507: golang-1.21-go: downloads and runs binaries from the Internet without permission
Package: golang-1.21-go Version: 1.21~rc2-2 Severity: grave Tags: security Go 1.21 provides the `GOTOOLCHAIN` environment variable and associated functionality[0]. As part of this code, if go.mod indicates that a newer version of Go is required than the current toolchain supports, it proceeds by default to attempt to download a toolchain from the Internet and runs it without prompting the user. It is unclear what, if any cryptographic verification it performs, especially if the user has disabled GOPROXY and GOSUMDB for privacy reasons. As far as I know, the Go core team does not sign Linux binaries cryptographically, so at best the data would be verified by a hash, which is not sufficient. Debian itself uses a strong cryptographic signature for APT archives. In addition, it's possible that a newer version of the toolchain might contain some vulnerability which is not present in the current toolchain, and therefore might expose the user to new vulnerabilities that are not patched. This is not at all far-fetched, since Go is known to have regressions all the time, so security-based regressions are not at all out of the question. I don't believe this is an appropriate way for software distributed in Debian to behave, especially by default, and I'd like to request that it be patched out for security reasons. Steps to reproduce: 1. Clone a Go project (e.g., Git LFS). 2. Update go.mod to state "go 1.22". 3. Run /usr/lib/go-1.21/bin/go build 4. Notice the following output: go: downloading go1.22 (linux/amd64) go: download go1.22 for linux/amd64: toolchain not available [0] https://tip.golang.org/doc/toolchain -- System Information: Debian Release: trixie/sid APT prefers oldstable-security APT policy: (500, 'oldstable-security'), (500, 'unstable'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 6.3.0-1-amd64 (SMP w/20 CPU threads; PREEMPT) Kernel taint flags: TAINT_USER, TAINT_WARN Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8), LANGUAGE=en_CA:en Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages golang-1.21-go depends on: ii golang-1.21-src 1.21~rc2-2 Versions of packages golang-1.21-go recommends: ii g++ 4:12.3.0-1 ii gcc 4:12.3.0-1 ii libc6-dev 2.37-3 ii pkg-config1.8.1-1 ii pkgconf [pkg-config] 1.8.1-1 Versions of packages golang-1.21-go suggests: pn bzr | brz ii ca-certificates 20230311 ii git 1:2.40.1+next.20230427-1 pn mercurial pn subversion -- no debconf information -- brian m. carlson (he/him or they/them) Toronto, Ontario, CA signature.asc Description: PGP signature
Bug#921637: [pkg-go] Bug#921637: FTBFS: /usr/lib/ruby/vendor_ruby/ronn/roff.rb:165:in `block_filter': undefined method
On Sat, Feb 16, 2019 at 09:55:16PM -0500, Andrew Janke wrote: > I've confirmed this is the https://github.com/apjanke/ronn-ng/issues/24 bug > in ronn-ng. > > It looks liike an easy fix and I have pushed a ronn-ng 0.8.1.beta.1 > gem/release with the fix. Are you able to test against a prerelease gem? > > I've tested locally and it fixed the problem for git-lfs man generation. > I've also added an ordered-list example to Ronn-NG's internal test suite. It would be great if we could get this patch into buster. I realize that a new version may not be possible, but applying a patch to fix an FTBFS might be. As an upstream Git LFS maintainer, I'm already seeing people trying to build git-lfs packages on buster and (in Ubuntu) disco and failing to do so because of this bug. It will be difficult for us to build our own packages on buster if this isn't fixed. -- brian m. carlson: Houston, Texas, US OpenPGP: https://keybase.io/bk2204 signature.asc Description: PGP signature
Bug#913271: segfault - broken rust compiling
On Thu, Nov 08, 2018 at 09:29:43PM +0100, Sylvestre Ledru wrote: > Do you have more info than "it segfaults"? I can provide some reproduction steps, if that's helpful. 1. Install rustc and cargo. 2. git clone https://github.com/rust-lang-nursery/rust-clippy.git 3. cd rust-clippy 4. git checkout v0.0.212 5. cargo build --verbose 6. Notice build failures due to SIGSEGV. Note that if instead you compile with "cargo build --verbose --release" in step 5, you get #913414. rustc did work as recently as November 3, since a project of mine that exhibits the same behavior has that as its most recent commit. -- brian m. carlson: Houston, Texas, US OpenPGP: https://keybase.io/bk2204 signature.asc Description: PGP signature
Bug#898969: dnssec-trigger: fails with OpenSSL in experimental due to too-small key
On Mon, Oct 01, 2018 at 08:06:25PM -0700, Diane Trout wrote: > On Mon, 2018-10-01 at 20:23 +0200, Lee Garrett wrote: > > Hi, > > > > Any update on this bug? dnssec-trigger will be autoremoved due to > > this bug > > tomorrow. I'd like to see it in buster, though. > > > > Ooops I forgot, Also does this bug impact unbound? I tried checking the > unbound maintainer scripts and they're not doing anything to handle > this case > > What's > sudo -s openssl x509 \ > -in /etc/dnssec-trigger/dnssec_trigger_control.pem -text | \ > grep 'Public-Key' > > Look like on an effected system? I can't tell you for certain anymore, since I regenerated the key, but I ran a similar command at the time and it was 1536-bit. > On mine is 3072, and I don't seem to be impacted. > > I'm guessing I can use that to determine if I need to regenerate the > key Yes, that would be fine. Anything smaller than 2048 bits would require regeneration. > The other option is to just delete the key and regenerate it on the > specific version upgrade. If you're relying on the keygen target, note that as of the time I filed this bug report, it wrote the keys into the wrong location. I haven't checked if it's been fixed. -- brian m. carlson: Houston, Texas, US OpenPGP: https://keybase.io/bk2204 signature.asc Description: PGP signature
Bug#879984: libgcrypt20: copyright does not mention OCB patent license
Package: libgcrypt20 Version: 1.7.9-1 Severity: serious libgcrypt implements OCB, which is patented[0]. The author, Phil Rogaway, provides three licenses. * The first license applies to wholly open-source implementations that do not contain any closed-source components. * The second license applies to non-military software implementations. * The third license applies only to OpenSSL. Only the first license applies here, since libgcrypt is not derived from OpenSSL and the second license violates the DFSG. Because libgcrypt is LGPL and may legally be linked to proprietary code, it must contain a copy of the first patent license, as the patent license imposes further restrictions on the way it can legally be used and distributed. As a consequence, these terms must be listed in the copyright file. Because Debian must avail itself of the first patent license, it is therefore obligatory that libgcrypt20 not link against any proprietary code directly or indirectly, and this should be prominently disclosed as it restricts the text of the LGPL. If it is not possible for practical purposes that libgcrypt not link to proprietary software (say, because libgcrypt20 is linked into Xorg and people might want to use a proprietary graphics driver), then OCB support will need to be removed. [0] http://web.cs.ucdavis.edu/~rogaway/ocb/license.htm -- System Information: Debian Release: buster/sid APT prefers unstable-debug APT policy: (500, 'unstable-debug'), (500, 'unstable'), (500, 'stable'), (1, 'experimental-debug'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages libgcrypt20 depends on: ii libc6 2.24-17 ii libgpg-error0 1.27-3 libgcrypt20 recommends no packages. Versions of packages libgcrypt20 suggests: pn rng-tools -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US https://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: https://keybase.io/bk2204 signature.asc Description: PGP signature
Bug#811860: Unable to reproduce mcrl2 FTBFS
I'm unable to reproduce this FTBFS with g++ 4:7.1.0-1 and g++-7 7.1.0.12 on my amd64/sid system. It's possible this is no longer an issue and has been fixed by GCC upstream. Notably, that file compiles without warnings or errors on my system. -- brian m. carlson / brian with sandals: Houston, Texas, US https://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: https://keybase.io/bk2204 signature.asc Description: PGP signature
Bug#811628: Patch for kyototycoon FTBFS
tags 811628 + patch kthxbye Attached is a patch that makes kyotocabinet build (with warnings) with GCC 7. I tried building it with CXX="g++ -std=c++03", but kyotocabinet uses nullptr, so that wasn't going to work. I instead added the constexpr keyword which is now obligatory in C++ 11. I used "NULL" instead of nullptr because that was the existing style. -- brian m. carlson / brian with sandals: Houston, Texas, US https://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: https://keybase.io/bk2204 diff --git a/ktremotedb.h b/ktremotedb.h index 2dca1f6..80d02bb 100644 --- a/ktremotedb.h +++ b/ktremotedb.h @@ -298,7 +298,7 @@ class RemoteDB { RPCClient::ReturnValue rv = db_->rpc_.call("cur_get_key", , ); if (rv != RPCClient::RVSUCCESS) { db_->set_rpc_error(rv, outmap); -return false; +return NULL; } size_t ksiz; const char* kbuf = strmapget(outmap, "key", ); @@ -350,7 +350,7 @@ class RemoteDB { RPCClient::ReturnValue rv = db_->rpc_.call("cur_get_value", , ); if (rv != RPCClient::RVSUCCESS) { db_->set_rpc_error(rv, outmap); -return false; +return NULL; } size_t vsiz; const char* vbuf = strmapget(outmap, "value", ); @@ -411,7 +411,7 @@ class RemoteDB { *ksp = 0; *vbp = NULL; *vsp = 0; -return false; +return NULL; } size_t ksiz = 0; const char* kbuf = strmapget(outmap, "key", ); @@ -481,7 +481,7 @@ class RemoteDB { RPCClient::ReturnValue rv = db_->rpc_.call("cur_seize", , ); if (rv != RPCClient::RVSUCCESS) { db_->set_rpc_error(rv, outmap); -return false; +return NULL; } size_t ksiz = 0; const char* kbuf = strmapget(outmap, "key", ); diff --git a/ktulog.h b/ktulog.h index ab301ea..66cf4f7 100644 --- a/ktulog.h +++ b/ktulog.h @@ -48,7 +48,7 @@ class UpdateLogger { /* The accuracy of logical time stamp. */ static const uint64_t TSLACC = 1000 * 1000; /* The waiting seconds of auto flush. */ - static const double FLUSHWAIT = 0.1; + static constexpr double FLUSHWAIT = 0.1; public: /** * Reader of update logs. signature.asc Description: PGP signature
Bug#772225: Patch for bashism in couchdb
tags 772225 + patch kthxbye Attached is a patch to fix this issue. I haven't tested it because I'd need to see the broken behavior first to verify that it's fixed, and couchdb isn't currently installable on my system. It does pass dash -n and posh -n, but so did the unpatched version. -- brian m. carlson / brian with sandals: Houston, Texas, US https://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: https://keybase.io/bk2204 diff --git a/bin/couchdb.tpl.in b/bin/couchdb.tpl.in index ff06007..c93ed0a 100644 --- a/bin/couchdb.tpl.in +++ b/bin/couchdb.tpl.in @@ -298,7 +298,7 @@ stop_couchdb () { echo "Apache CouchDB failed to shutdown." return $SCRIPT_ERROR else -count=$[count+1] +count=$((count+1)) sleep 1 fi done signature.asc Description: PGP signature
Bug#849040: dnssec-trigger: fails to start
Package: dnssec-trigger Version: 0.13-1 Severity: grave Installing the dnssec-trigger package causes the daemon to fail to start. Running it by hand shows why: genre ok % dnssec-triggerd Dec 22 02:47:20 dnssec-triggerd[357453] error: could not set SSL_OP_NO_SSLv2 crypto error::lib(0):func(0):reason(0) Dec 22 02:47:20 dnssec-triggerd[357453] error: cannot setup SSL context Dec 22 02:47:20 dnssec-triggerd[357453] fatal error: could not init server I've seen this on two separate sid systems today. Downgrading fixes the problem. -- System Information: Debian Release: stretch/sid APT prefers unstable-debug APT policy: (500, 'unstable-debug'), (500, 'unstable'), (500, 'testing'), (1, 'experimental-debug'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 4.7.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages dnssec-trigger depends on: ii gir1.2-networkmanager-1.0 1.4.4-1 ii init-system-helpers1.46 ii libc6 2.24-8 ii libgdk-pixbuf2.0-0 2.36.1-1 ii libglib2.0-0 2.50.2-2 ii libgtk2.0-02.24.31-1 ii libldns2 1.7.0-1 ii libssl1.1 1.1.0c-2 ii python 2.7.13-1 ii python-gi 3.22.0-2 ii python-lockfile1:0.12.2-2 ii unbound1.6.0-2 dnssec-trigger recommends no packages. dnssec-trigger suggests no packages. -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | https://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: https://keybase.io/bk2204 signature.asc Description: PGP signature
Bug#837965: mate-power-manager: segfaults in strtod
t=0x55aa4390, previous_style=0x0) at msd-osd-window.c:501 style = #52 0x73f3 in g_cclosure_marshal_VOID__OBJECTv () from /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0 No symbol table info available. #53 0x73f2d0f2 in ?? () from /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0 No symbol table info available. #54 0x73f478bd in g_signal_emit_valist () from /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0 No symbol table info available. #55 0x73f47faf in g_signal_emit () from /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0 No symbol table info available. #56 0x75dcc0a3 in ?? () from /usr/lib/x86_64-linux-gnu/libgtk-3.so.0 No symbol table info available. #57 0x75ad17e6 in gtk_widget_get_style () from /usr/lib/x86_64-linux-gnu/libgtk-3.so.0 No symbol table info available. #58 0x5556a234 in msd_osd_window_style_set (widget=0x55aa4390, previous_style=0x0) at msd-osd-window.c:501 style = #59 0x73f3 in g_cclosure_marshal_VOID__OBJECTv () from /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0 No symbol table info available. #60 0x73f2d0f2 in ?? () from /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0 No symbol table info available. #61 0x73f478bd in g_signal_emit_valist () from /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0 No symbol table info available. #62 0x73f47faf in g_signal_emit () from /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0 No symbol table info available. #63 0x75dcc0a3 in ?? () from /usr/lib/x86_64-linux-gnu/libgtk-3.so.0 No symbol table info available. #64 0x75ad17e6 in gtk_widget_get_style () from /usr/lib/x86_64-linux-gnu/libgtk-3.so.0 No symbol table info available. #65 0x5556a234 in msd_osd_window_style_set (widget=0x55aa4390, previous_style=0x0) at msd-osd-window.c:501 style = #66 0x73f3 in g_cclosure_marshal_VOID__OBJECTv () from /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0 No symbol table info available. It goes on like this, presumably for some time. I suspect this is due to the new GTK. -- System Information: Debian Release: stretch/sid APT prefers unstable-debug APT policy: (500, 'unstable-debug'), (500, 'unstable'), (500, 'testing'), (1, 'experimental-debug'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 4.7.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages mate-power-manager depends on: ii dbus-x111.10.10-1 ii libatk1.0-0 2.21.90-2 ii libc6 2.24-2 ii libcairo-gobject2 1.14.6-1+b1 ii libcairo2 1.14.6-1+b1 ii libcanberra-gtk3-0 0.30-3 ii libcanberra00.30-3 ii libdbus-1-3 1.10.10-1 ii libdbus-glib-1-20.108-1 ii libgdk-pixbuf2.0-0 2.35.5-1 ii libglib2.0-02.49.7-1 ii libgnome-keyring0 3.12.0-1+b1 ii libgtk-3-0 3.21.6-1 ii libmate-desktop-2-171.14.1-1 ii libmate-panel-applet-4-11.14.2-1 ii libnotify4 0.7.6-2 ii libpango-1.0-0 1.40.2-1 ii libpangocairo-1.0-0 1.40.2-1 ii libstartup-notification00.12-4 ii libunique-3.0-0 3.0.2-2 ii libupower-glib3 0.99.4-3 ii libx11-62:1.6.3-1 ii libxext62:1.3.3-1 ii libxrandr2 2:1.5.0-1 ii libxrender1 1:0.9.9-2 ii mate-notification-daemon [notification-daemon] 1.14.1-1 ii mate-power-manager-common 1.14.0-2 ii notification-daemon 3.20.0-1 ii policykit-1 0.105-16 ii systemd 231-6 ii upower 0.99.4-3 mate-power-manager recommends no packages. Versions of packages mate-power-manager suggests: ii mate-polkit 1.14.0-1 -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | https://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: https://keybase.io/bk2204 signature.asc Description: PGP signature
Bug#788783: openssh-client: uses MD5 for key fingerprints
severity 788783 normal kthxbye On Wed, Jun 17, 2015 at 12:01:09PM +0100, Mark Wooding wrote: The best technique I can think of uses Kelsey and Schneier's expandable messages, which uses collisions in the underlying compression function to obtain a second preimage for the hash of a /very long/ original message. Because the original message is very long, there are lots of likely distinct chaining values obtained while hashing it. So the strategy is to look for collisions between these and intermediate values for your second-preimage message, so effectively you're searching for second preimages at the compression-function level, and get to count all of the applications of the compression function used to compute the hash of the challenge message towards your attack. But all of this still requires about 2^{128} compression-function applications total. There's a slight problem. You can't just stick the appropriate suffix of the target message onto the end of your second-preimage prefix, because there's a length in the final block. This is where the expandable messages come in, and this is where MD5's lack of collision resistance becomes significant: you look for a lot of collisions between message fragments of different lengths[1], so you can stitch them together to pad out the prefix to whatever length you need for the final block to come out right. It looks like I misread OpenSSH's key handling code, in that I missed the check for too many MPIs. That makes the chosen prefix attacks from Kuznetsov/Stevens less useful in this particular case. So I agree that in this case it is probably not sufficiently easy to be interesting, although I think we're both in agreement that MD5 should go away fast. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#788783: openssh-client: uses MD5 for key fingerprints
On Tue, Jun 16, 2015 at 11:13:58AM +0100, Mark Wooding wrote: The remaining possibility is that the adversary has managed to come up with a new public key (and matching private key) with the same fingerprint as the target key, which was generated by an honest party. But that's finding a second preimage, and it's /way/ harder than finding collisions. Yes, it is finding a second preimage in the general case. However, it's possible to exploit collisions to find a very similar key to the legitimate user's—one which may be trivially weak, say with a 20-bit prime as a factor—but which nevertheless works with RSA. e is almost always a trivially small value, so any prime where that e works is sufficient. The goal is to impersonate. Who cares if it's with an insecure key? Since a collision costs approximately $0.65 to generate, one could try the attack repeatedly until a suitable n is found. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#788783: openssh-client: uses MD5 for key fingerprints
Package: openssh-client Version: 1:6.7p1-6 Severity: grave Tags: security ssh-keygen and ssh itself are using MD5 for fingerprints: vauxhall ok % ssh-keygen -l -f ~/.ssh/id_rsa.pub 2048 9d:24:66:6e:37:8c:48:0f:28:1e:ba:36:b7:e3:47:e4 /home/bmc/.ssh/id_rsa.pub (RSA) vauxhall ok % awk '{print $2}' ~/.ssh/id_rsa.pub| base64 -d | md5sum 9d24666e378c480f281eba36b7e347e4 - MD5 is not suitable for any application requiring collision resistance, such as a key fingerprint. Please switch to one of the SHA-2 values instead, or upgrade to OpenSSH 6.8, which fixes this problem. This is in fact a security vulnerability, since if the attacker generates a valid RSA private key, they can generate an arbitrary e (even if it is inefficient) and d, since they know p and q. As a result, they have significant freedom to generate a key whose fingerprint collides with another given key, and therefore perform an MITM attack on first use. It is not a help that the length of the value is prepended, since there are more than enough bits to allow any valid length to be chosen. -- System Information: Debian Release: stretch/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.19.0-trunk-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages openssh-client depends on: ii adduser 3.113+nmu3 ii dpkg 1.18.1 ii libc6 2.19-18 ii libedit2 3.1-20150325-1 ii libgssapi-krb5-2 1.12.1+dfsg-20 ii libselinux1 2.3-2 ii libssl1.0.0 1.0.2c-1 ii passwd1:4.2-3 ii zlib1g1:1.2.8.dfsg-2+b1 Versions of packages openssh-client recommends: ii xauth 1:1.0.9-1 Versions of packages openssh-client suggests: pn keychain none pn libpam-ssh none pn monkeysphere none ii ssh-askpass-gnome [ssh-askpass] 1:6.7p1-6 -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#766784: libjson-pp-perl: can neither remove nor install newer version of this package: possible cause
On Mon, Oct 27, 2014 at 01:51:15PM +0100, Dominique Dumont wrote: Could you: - purge libjson-pp-perl Not without removing the diversion first. The original bug report demonstrates that I can't remove the package. Whether /usr/share/man/man1/json_pp.1.bundled.gz exists or not doesn't affect that. (It did not exist originally.) I managed to fix it by doing dpkg-divert --remove /usr/share/man/man1/json_pp.1.gz, which allowed the package to be removed. Whatever the underlying issue was should probably still be fixed, although this allows me to get aptitude working again. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#766784: libjson-pp-perl: can neither remove nor install newer version of this package
Package: libjson-pp-perl Version: 2.27300-1 Severity: grave I'm unable to get dpkg to do anything useful with this package. I can't upgrade to the supposedly fixed version, and now aptitude refuses to do anything else without either removing or upgrading libjson-pp-perl. vauxhall no % sudo dpkg -P libjson-pp-perl (Reading database ... 511466 files and directories currently installed.) Removing libjson-pp-perl (2.27300-1) ... No diversion 'diversion of /usr/bin/json_pp to /usr/bin/json_pp.bundled by libjson-pp-perl', none removed. Removing 'diversion of /usr/share/man/man1/json_pp.1.gz to /usr/share/man/man1/json_pp.1.bundled.gz by libjson-pp-perl' dpkg-divert: error: rename involves overwriting `/usr/share/man/man1/json_pp.1.gz' with different file `/usr/share/man/man1/json_pp.1.bundled.gz', not allowed dpkg: error processing package libjson-pp-perl (--purge): subprocess installed post-removal script returned error exit status 2 Errors were encountered while processing: libjson-pp-perl vauxhall no % sudo dpkg -i /var/cache/apt/archives/libjson-pp-perl_2.27300-2_all.deb Selecting previously unselected package libjson-pp-perl. (Reading database ... 511471 files and directories currently installed.) Preparing to unpack .../libjson-pp-perl_2.27300-2_all.deb ... Removing 'diversion of /usr/share/man/man1/json_pp.1.gz to /usr/share/man/man1/json_pp.1.bundled.gz by libjson-pp-perl' dpkg-divert: error: rename involves overwriting `/usr/share/man/man1/json_pp.1.gz' with different file `/usr/share/man/man1/json_pp.1.bundled.gz', not allowed dpkg: error processing archive /var/cache/apt/archives/libjson-pp-perl_2.27300-2_all.deb (--install): subprocess new pre-installation script returned error exit status 2 Errors were encountered while processing: /var/cache/apt/archives/libjson-pp-perl_2.27300-2_all.deb -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.17-rc5-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages libjson-pp-perl depends on: ii perl 5.20.1-2 Versions of packages libjson-pp-perl recommends: ii libjson-perl 2.61-1 libjson-pp-perl suggests no packages. -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#766784: libjson-pp-perl: can neither remove nor install newer version of this package
On Sat, Oct 25, 2014 at 08:52:54PM +0200, gregor herrmann wrote: Hrm. Something is broken here indeed; I'm just wondering how you got into this situation; my aptitude log shows on Mon, Oct 20 2014: [UPGRADE] libjson-pp-perl:amd64 2.27300-1 - 2.27300-2 Anyone around with any idea? I've attached the relevant portions of my dpkg.log in the hopes that might provide some useful information. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 2014-10-11 22:50:46 status half-configured libjson-pp-perl:all 2.27203-1 2014-10-11 22:50:46 status unpacked libjson-pp-perl:all 2.27203-1 2014-10-11 22:50:46 status half-installed libjson-pp-perl:all 2.27203-1 2014-10-11 22:50:47 status half-installed libjson-pp-perl:all 2.27203-1 2014-10-11 22:50:47 status unpacked libjson-pp-perl:all 2.27300-1 2014-10-11 22:50:47 status unpacked libjson-pp-perl:all 2.27300-1 2014-10-11 22:51:31 status unpacked libjson-pp-perl:all 2.27300-1 2014-10-11 22:51:31 status half-configured libjson-pp-perl:all 2.27300-1 2014-10-11 22:51:31 status installed libjson-pp-perl:all 2.27300-1 2014-10-23 23:23:42 status half-configured perl:amd64 5.20.1-1 2014-10-23 23:23:42 status unpacked perl:amd64 5.20.1-1 2014-10-23 23:23:42 status half-installed perl:amd64 5.20.1-1 2014-10-23 23:23:43 status half-installed perl:amd64 5.20.1-1 2014-10-23 23:23:43 status unpacked perl:amd64 5.20.1-2 2014-10-23 23:23:43 status unpacked perl:amd64 5.20.1-2 2014-10-23 23:23:43 status half-configured perl-base:amd64 5.20.1-1 2014-10-23 23:23:43 status unpacked perl-base:amd64 5.20.1-1 2014-10-23 23:23:43 status half-installed perl-base:amd64 5.20.1-1 2014-10-23 23:23:44 status half-installed perl-base:amd64 5.20.1-1 2014-10-23 23:23:44 status unpacked perl-base:amd64 5.20.1-2 2014-10-23 23:23:44 status unpacked perl-base:amd64 5.20.1-2 2014-10-23 23:23:46 status unpacked perl-base:amd64 5.20.1-2 2014-10-23 23:23:46 status half-configured perl-base:amd64 5.20.1-2 2014-10-23 23:23:46 status installed perl-base:amd64 5.20.1-2 2014-10-23 23:23:47 status half-configured perl-modules:all 5.20.1-1 2014-10-23 23:23:47 status unpacked perl-modules:all 5.20.1-1 2014-10-23 23:23:47 status half-installed perl-modules:all 5.20.1-1 2014-10-23 23:23:47 status half-installed perl-modules:all 5.20.1-1 2014-10-23 23:23:47 status unpacked perl-modules:all 5.20.1-2 2014-10-23 23:23:47 status unpacked perl-modules:all 5.20.1-2 2014-10-23 23:25:12 status half-configured libjson-pp-perl:all 2.27300-1 2014-10-23 23:25:12 status unpacked libjson-pp-perl:all 2.27300-1 2014-10-23 23:25:12 status half-installed libjson-pp-perl:all 2.27300-1 2014-10-23 23:25:13 status unpacked libjson-pp-perl:all 2.27300-1 2014-10-23 23:25:13 status installed libjson-pp-perl:all 2.27300-1 2014-10-23 23:25:26 status half-configured perl-doc:all 5.20.1-1 2014-10-23 23:25:26 status unpacked perl-doc:all 5.20.1-1 2014-10-23 23:25:26 status half-installed perl-doc:all 5.20.1-1 2014-10-23 23:25:27 status half-installed perl-doc:all 5.20.1-1 2014-10-23 23:25:27 status unpacked perl-doc:all 5.20.1-2 2014-10-23 23:25:27 status unpacked perl-doc:all 5.20.1-2 2014-10-23 23:26:44 status unpacked perl-modules:all 5.20.1-2 2014-10-23 23:26:44 status unpacked perl-modules:all 5.20.1-2 2014-10-23 23:26:44 status half-configured perl-modules:all 5.20.1-2 2014-10-23 23:26:44 status installed perl-modules:all 5.20.1-2 2014-10-23 23:26:44 status unpacked perl:amd64 5.20.1-2 2014-10-23 23:26:44 status half-configured perl:amd64 5.20.1-2 2014-10-23 23:26:44 status installed perl:amd64 5.20.1-2 2014-10-23 23:26:46 status unpacked perl-doc:all 5.20.1-2 2014-10-23 23:26:46 status half-configured perl-doc:all 5.20.1-2 2014-10-23 23:26:46 status installed perl-doc:all 5.20.1-2 2014-10-23 23:47:42 status half-configured libjson-pp-perl:all 2.27300-1 2014-10-23 23:47:42 status unpacked libjson-pp-perl:all 2.27300-1 2014-10-23 23:47:42 status half-installed libjson-pp-perl:all 2.27300-1 2014-10-23 23:47:42 status unpacked libjson-pp-perl:all 2.27300-1 2014-10-23 23:47:42 status installed libjson-pp-perl:all 2.27300-1 2014-10-23 23:48:15 status installed libjson-pp-perl:all 2.27300-1 2014-10-23 23:48:15 status half-configured libjson-pp-perl:all 2.27300-1 2014-10-23 23:48:15 status half-installed libjson-pp-perl:all 2.27300-1 2014-10-23 23:48:23 status half-installed libjson-pp-perl:all 2.27300-1 2014-10-23 23:48:23 status half-installed libjson-pp-perl:all 2.27300-1 2014-10-24 20:26:53 status half-installed libjson-pp-perl:all 2.27300-1 2014-10-24 20:26:53 status half-installed libjson-pp-perl:all 2.27300-1 2014-10-24 20:31:40 status half-installed libjson-pp-perl:all 2.27300-1 2014-10-24 20:31:40 status half-installed libjson-pp-perl:all 2.27300-1 2014-10-24 20:32:30 status half-installed libjson-pp-perl:all 2.27300-1 2014-10-24 20:32:30 status half-installed libjson-pp-perl:all
Bug#766784: libjson-pp-perl: can neither remove nor install newer version of this package
On Sat, Oct 25, 2014 at 09:58:15PM +0200, gregor herrmann wrote: Some things I don't understand in your log: - the missing upgrade and configure lines Sorry about that. I used awk to select the appropriate lines, and in some cases the package is in a differently-numbered field. I've attached one that contains the upgrade and configure lines this time. - that 2.27300-1 (tries to) get(s) installed 3 times I used aptitude, so I'm not sure why that happened. I think aptitude tries to reinstall the package if it fails the first time. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 2014-10-11 22:50:46 upgrade libjson-pp-perl:all 2.27203-1 2.27300-1 2014-10-11 22:50:46 status half-configured libjson-pp-perl:all 2.27203-1 2014-10-11 22:50:46 status unpacked libjson-pp-perl:all 2.27203-1 2014-10-11 22:50:46 status half-installed libjson-pp-perl:all 2.27203-1 2014-10-11 22:50:47 status half-installed libjson-pp-perl:all 2.27203-1 2014-10-11 22:50:47 status unpacked libjson-pp-perl:all 2.27300-1 2014-10-11 22:50:47 status unpacked libjson-pp-perl:all 2.27300-1 2014-10-11 22:51:31 configure libjson-pp-perl:all 2.27300-1 none 2014-10-11 22:51:31 status unpacked libjson-pp-perl:all 2.27300-1 2014-10-11 22:51:31 status half-configured libjson-pp-perl:all 2.27300-1 2014-10-11 22:51:31 status installed libjson-pp-perl:all 2.27300-1 2014-10-23 23:23:42 upgrade perl:amd64 5.20.1-1 5.20.1-2 2014-10-23 23:23:42 status half-configured perl:amd64 5.20.1-1 2014-10-23 23:23:42 status unpacked perl:amd64 5.20.1-1 2014-10-23 23:23:42 status half-installed perl:amd64 5.20.1-1 2014-10-23 23:23:43 status half-installed perl:amd64 5.20.1-1 2014-10-23 23:23:43 status unpacked perl:amd64 5.20.1-2 2014-10-23 23:23:43 status unpacked perl:amd64 5.20.1-2 2014-10-23 23:23:43 upgrade perl-base:amd64 5.20.1-1 5.20.1-2 2014-10-23 23:23:43 status half-configured perl-base:amd64 5.20.1-1 2014-10-23 23:23:43 status unpacked perl-base:amd64 5.20.1-1 2014-10-23 23:23:43 status half-installed perl-base:amd64 5.20.1-1 2014-10-23 23:23:44 status half-installed perl-base:amd64 5.20.1-1 2014-10-23 23:23:44 status unpacked perl-base:amd64 5.20.1-2 2014-10-23 23:23:44 status unpacked perl-base:amd64 5.20.1-2 2014-10-23 23:23:46 configure perl-base:amd64 5.20.1-2 none 2014-10-23 23:23:46 status unpacked perl-base:amd64 5.20.1-2 2014-10-23 23:23:46 status half-configured perl-base:amd64 5.20.1-2 2014-10-23 23:23:46 status installed perl-base:amd64 5.20.1-2 2014-10-23 23:23:47 upgrade perl-modules:all 5.20.1-1 5.20.1-2 2014-10-23 23:23:47 status half-configured perl-modules:all 5.20.1-1 2014-10-23 23:23:47 status unpacked perl-modules:all 5.20.1-1 2014-10-23 23:23:47 status half-installed perl-modules:all 5.20.1-1 2014-10-23 23:23:47 status half-installed perl-modules:all 5.20.1-1 2014-10-23 23:23:47 status unpacked perl-modules:all 5.20.1-2 2014-10-23 23:23:47 status unpacked perl-modules:all 5.20.1-2 2014-10-23 23:25:12 upgrade libjson-pp-perl:all 2.27300-1 2.27300-2 2014-10-23 23:25:12 status half-configured libjson-pp-perl:all 2.27300-1 2014-10-23 23:25:12 status unpacked libjson-pp-perl:all 2.27300-1 2014-10-23 23:25:12 status half-installed libjson-pp-perl:all 2.27300-1 2014-10-23 23:25:13 status unpacked libjson-pp-perl:all 2.27300-1 2014-10-23 23:25:13 status installed libjson-pp-perl:all 2.27300-1 2014-10-23 23:25:26 upgrade perl-doc:all 5.20.1-1 5.20.1-2 2014-10-23 23:25:26 status half-configured perl-doc:all 5.20.1-1 2014-10-23 23:25:26 status unpacked perl-doc:all 5.20.1-1 2014-10-23 23:25:26 status half-installed perl-doc:all 5.20.1-1 2014-10-23 23:25:27 status half-installed perl-doc:all 5.20.1-1 2014-10-23 23:25:27 status unpacked perl-doc:all 5.20.1-2 2014-10-23 23:25:27 status unpacked perl-doc:all 5.20.1-2 2014-10-23 23:26:44 configure perl-modules:all 5.20.1-2 none 2014-10-23 23:26:44 status unpacked perl-modules:all 5.20.1-2 2014-10-23 23:26:44 status unpacked perl-modules:all 5.20.1-2 2014-10-23 23:26:44 status half-configured perl-modules:all 5.20.1-2 2014-10-23 23:26:44 status installed perl-modules:all 5.20.1-2 2014-10-23 23:26:44 configure perl:amd64 5.20.1-2 none 2014-10-23 23:26:44 status unpacked perl:amd64 5.20.1-2 2014-10-23 23:26:44 status half-configured perl:amd64 5.20.1-2 2014-10-23 23:26:44 status installed perl:amd64 5.20.1-2 2014-10-23 23:26:46 configure perl-doc:all 5.20.1-2 none 2014-10-23 23:26:46 status unpacked perl-doc:all 5.20.1-2 2014-10-23 23:26:46 status half-configured perl-doc:all 5.20.1-2 2014-10-23 23:26:46 status installed perl-doc:all 5.20.1-2 2014-10-23 23:47:42 upgrade libjson-pp-perl:all 2.27300-1 2.27300-2 2014-10-23 23:47:42 status half-configured libjson-pp-perl:all 2.27300-1 2014-10-23 23:47:42 status unpacked libjson-pp-perl:all 2.27300-1 2014-10-23 23:47:42 status half-installed libjson-pp-perl:all 2.27300-1 2014-10-23 23:47:42
Bug#762760: bash: still vulnerable to environment exploits
Package: bash Version: 4.2+dfsg-0.1+deb7u1 Severity: critical Tags: security As Tavis Ormandy has tweeted[0], the existing patch is not sufficient to solve the problem: vauxhall ok % dpkg -l bash | grep ^ii; rm -f echo; env X='() { (a)=\' bash -c echo date; cat echo ii bash 4.2+dfsg-0.1+deb7u1 amd64GNU Bourne Again SHell bash: X: line 1: syntax error near unexpected token `=' bash: X: line 1: `' bash: error importing function definition for `X' Wed Sep 24 23:32:32 UTC 2014 This means all Debian systems are still vulnerable, as bash is an essential package. [0] https://twitter.com/taviso/status/514887394294652929 -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.17-rc5-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages bash depends on: ii base-files 7.5 ii dash 0.5.7-4 ii debianutils 4.4 ii libc62.19-11 ii libtinfo55.9+20140913-1 Versions of packages bash recommends: pn bash-completion none Versions of packages bash suggests: pn bash-doc none -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#757735: Need special debugging
tags 757735 + patch kthxbye On Sat, Aug 16, 2014 at 11:21:38AM +0200, Raphael Manfredi wrote: Brian, It's bad news to know that the program runs without optimizations but fails when compiled with optimizations: that either means the program is incorrectly doing something undefined, that leads to this different behaviour, or that some of the optimizations performed by the compiler are wrong. Before accusing the compiler, I need to rule out any problem in the code itself. This is why I need you to run a test where the whole program is optimized, and only the src/lib/xmalloc.c file is compiled without optimizations. I did exactly that. In fact, the attached patch makes it work just fine. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 From ddb58565422e853ed5c1ea9ca859d13f03929df3 Mon Sep 17 00:00:00 2001 From: brian m. carlson sand...@crustytoothpaste.net Date: Sat, 16 Aug 2014 15:08:34 + Subject: [PATCH] Prevent crash in xmalloc.o. xmalloc.o crashes with -O2, but works just fine with -O0. Limit the optimization on this file to avoid this problem. --- src/lib/Makefile.SH | 4 1 file changed, 4 insertions(+) diff --git a/src/lib/Makefile.SH b/src/lib/Makefile.SH index 9aa424a..8eb0057 100644 --- a/src/lib/Makefile.SH +++ b/src/lib/Makefile.SH @@ -71,6 +71,10 @@ COMMON_LIBS = $libs \$(RM) \$@ \$(CC) -c \$(JCFLAGS) \$ +all:: .FORCE_DEPEND + +xmalloc.o: JCFLAGS = \$(CFLAGS) -O0 $pthread $ccflags $large + !GROK!THIS! $spitshell Makefile '!NO!SUBS!' -- 2.1.0.rc1 signature.asc Description: Digital signature
Bug#757735: Chirugircal removing of compiler optimizations
On Fri, Aug 15, 2014 at 11:17:57AM +0200, Raphael Manfredi wrote: Hi Brian, The gdb trace shows that compiler optimizations are preventing debugging: some variables having been optimized out, and therefore their printed value, if any, is inconsistent. I built the package with DEB_BUILD_OPTIONS=noopt nostrip, which should have prevented it from being optimized or stripped. While this is not compulsory for packages to implement, it is recommended for situations like this so that it's easy for users to debug broken packages. If the program does not fail with optimizations removed, we have a subtle bug, which will be even harder to spot. But let's see first. It doesn't fail. It starts and runs normally. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#757735: Backtrace for gtk-gnutella 1.1.0
, __count = 0, __owner = 0, __nusers = 0, __kind = 1, __spins = 0, __elision = 0, __list = {__prev = 0x0, __next = 0x0}}, __size = '\000' repeats 16 times, \001, '\000' repeats 22 times, __align = 0}}, _dl_load_write_lock = {mutex = {__data = {__lock = 0, __count = 0, __owner = 0, __nusers = 0, __kind = 1, __spins = 0, __elision = 0, __list = {__prev = 0x0, __next = 0x0}}, __size = '\000' repeats 16 times, \001, '\000' repeats 22 times, __align = 0}}, _dl_load_adds = 75, _dl_initfirst = 0x0, _dl_cpuclock_offset = 5368405730006, _dl_profile_map = 0x0, _dl_num_relocations = 1805, _dl_num_cache_relocations = 4239, _dl_all_dirs = 0x77ff6000, _dl_error_catch_tsd = 0x7414aeb0 __libc_dl_error_tsd, _dl_rtld_map = {l_addr = 140737351892992, l_name = 0x400200 /lib64/ld-linux-x86-64.so.2, l_ld = 0x77ffce70, l_next = 0x77fba580, l_prev = 0x77fbbb58, l_real = 0x77ffd9f8 _rtld_global+2456, l_ns = 0, l_libname = 0x77ffe060 _dl_rtld_libname, l_info = {0x0, 0x0, 0x77ffcef0, 0x77ffcee0, 0x77ffce80, 0x77ffcea0, 0x77ffceb0, 0x77ffcf20, 0x77ffcf30, 0x77ffcf40, 0x77ffcec0, 0x77ffced0, 0x0, 0x0, 0x77ffce70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x77ffcf00, 0x0, 0x0, 0x77ffcf10, 0x0 repeats 12 times, 0x77ffcf60, 0x77ffcf50, 0x0, 0x0, 0x77ffcf80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x77ffcf70, 0x0 repeats 25 times, 0x77ffce90}, l_phdr = 0x77ddc040, l_entry = 0, l_phnum = 7, l_ldnum = 0, l_searchlist = {r_list = 0x0, r_nlist = 0}, l_symbolic_searchlist = {r_list = 0x0, r_nlist = 0}, l_loader = 0x0, l_versions = 0x77fb0a08, l_nversions = 6, l_nbuckets = 17, l_gnu_bitmask_idxbits = 3, l_gnu_shift = 8, l_gnu_bitmask = 0x77ddc2c0, {l_gnu_buckets = 0x77ddc2e0, l_chain = 0x77ddc2e0}, {l_gnu_chain_zero = 0x77ddc31c, l_buckets = 0x77ddc31c}, l_direct_opencount = 0, l_type = lt_library, l_relocated = 1, l_init_called = 1, l_global = 1, l_reserved = 0, l_phdr_allocated = 0, l_soname_added = 0, l_faked = 0, l_need_tls_init = 0, l_auditing = 0, l_audit_any_plt = 0, l_removed = 0, l_contiguous = 0, l_symbolic_in_local_scope = 0, l_free_initfini = 0, l_rpath_dirs = {dirs = 0x0, malloced = 0}, l_reloc_result = 0x0, l_versyms = 0x77ddc7c4, l_origin = 0x0, l_map_start = 140737351892992, l_map_end = 140737354129832, l_text_end = 140737351995760, l_scope_mem = {0x0, 0x0, 0x0, 0x0}, l_scope_max = 0, l_scope = 0x0, l_local_scope = {0x0, 0x0}, l_dev = 0, l_ino = 0, l_runpath_dirs = {dirs = 0x0, malloced = 0}, l_initfini = 0x0, l_reldeps = 0x0, l_reldepsmax = 0, l_used = 1, l_feature_1 = 0, l_flags_1 = 0, l_flags = 0, l_idx = 0, l_mach = {plt = 0, gotplt = 0, tlsdesc_table = 0x0}, l_lookup_cache = {sym = 0x77ddc420, type_class = 1, value = 0x77ffe1a8, ret = 0x404d08}, l_tls_initimage = 0x0, l_tls_initimage_size = 0, l_tls_blocksize = 0, l_tls_align = 0, l_tls_firstbyte_offset = 0, l_tls_offset = 0, l_tls_modid = 0, l_tls_dtor_count = 0, l_relro_addr = 2231296, l_relro_size = 1024, l_serial = 0, l_audit = 0x77ffde68 _rtld_global+3592}, audit_data = {{cookie = 0, bindflags = 0} repeats 16 times}, _dl_rtld_lock_recursive = 0x743e2270 __GI___pthread_mutex_lock, _dl_rtld_unlock_recursive = 0x743e35f0 __GI___pthread_mutex_unlock, _dl_make_stack_executable_hook = 0x743df3d0 __make_stacks_executable, _dl_stack_flags = 6, _dl_tls_dtv_gaps = false, _dl_tls_max_dtv_idx = 6, _dl_tls_dtv_slotinfo_list = 0x77faf4e0, _dl_tls_static_nelem = 6, _dl_tls_static_size = 4736, _dl_tls_static_used = 768, _dl_tls_static_align = 64, _dl_initial_dtv = 0x77fae290, _dl_tls_generation = 1, _dl_init_static_tls = 0x743dfae0 __pthread_init_static_tls, _dl_wait_lookup_done = 0x743dfc00 __wait_lookup_done, _dl_scope_free_list = 0x0} _dl_argc = 1 _dl_argv_internal = 0x7fffdcf8 #49 0x0001 in ?? () No symbol table info available. #50 0x7fffe11d in ?? () No symbol table info available. #51 0x in ?? () No symbol table info available. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#743664: ruby-*: file conflict on /usr/lib/x86_64-linux-gnu/ruby/vendor_ruby/2.1.0/mkmf.log
Package: ruby-atomic,ruby-bcrypt,ruby-curb,ruby-nokogiri Severity: serious dpkg says: Preparing to unpack .../ruby-bcrypt_3.1.7-2_amd64.deb ... Unpacking ruby-bcrypt (3.1.7-2) over (3.1.7-1) ... dpkg: error processing archive /var/cache/apt/archives/ruby-bcrypt_3.1.7-2_amd64.deb (--unpack): trying to overwrite '/usr/lib/x86_64-linux-gnu/ruby/vendor_ruby/2.1.0/mkmf.log', which is also in package ruby-atomic 1.1.16-1 Preparing to unpack .../ruby-curb_0.8.5-2_amd64.deb ... Unpacking ruby-curb (0.8.5-2) over (0.8.5-1) ... dpkg: error processing archive /var/cache/apt/archives/ruby-curb_0.8.5-2_amd64.deb (--unpack): trying to overwrite '/usr/lib/x86_64-linux-gnu/ruby/vendor_ruby/2.1.0/mkmf.log', which is also in package ruby-atomic 1.1.16-1 Preparing to unpack .../ruby-nokogiri_1.6.1+ds-2_amd64.deb ... Unpacking ruby-nokogiri (1.6.1+ds-2) over (1.6.1+ds-1) ... dpkg: error processing archive /var/cache/apt/archives/ruby-nokogiri_1.6.1+ds-2_amd64.deb (--unpack): trying to overwrite '/usr/lib/x86_64-linux-gnu/ruby/vendor_ruby/2.1.0/mkmf.log', which is also in package ruby-atomic 1.1.16-1 Errors were encountered while processing: /var/cache/apt/archives/ruby-bcrypt_3.1.7-2_amd64.deb /var/cache/apt/archives/ruby-curb_0.8.5-2_amd64.deb /var/cache/apt/archives/ruby-nokogiri_1.6.1+ds-2_amd64.deb It looks like you need to sort out which package should own this file. From what I can see of the contents, it looks like the answer is probably none of them, as it appears to be a build log which should not be included in the package. -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.14-rc7-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#742902: a2ps: CVE-2014-0466: does not invoke gs with -dSAFER
Package: a2ps Version: 1:4.14-1.2 Severity: grave Tags: security fixps does not invoke gs with -dSAFER. As a consequence, a malicious PostScript file could delete files with the privileges of the invoking user. I have provided a test script that can be invoked as such: ./test-wrapper-fixps fixps This was reported to the Debian Security Team, who assigned this CVE-2014-0466. It was also reported to upstream, who has not provided an update or issued a fixed version. This is being reported publicly as over 45 days has elapsed and neither upstream nor the security team has requested a delay or issued an advisory. -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.14-rc7-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages a2ps depends on: ii file 1:5.17-1 ii libc6 2.18-4 ii libpaper1 1.1.24+nmu2 ii psutils1.17.dfsg-1 Versions of packages a2ps recommends: ii bzip2 1.0.6-5 ii cups-bsd [lpr] 1.7.1-10 ii wdiff 1.2.1-2 Versions of packages a2ps suggests: pn emacsen-common none ii ghostscript 9.05~dfsg-8+b1 ii groff1.22.2-5 pn gv none pn html2ps none ii imagemagick 8:6.7.7.10+dfsg-1 pn t1-cyrillic none ii texlive-binaries [texlive-base-bin] 2013.20130729.30972-2+b2 -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 #!/bin/sh # test-wrapper: test if a program is running gs without -dSAFER # # Usage: test-wrapper program --option --option2 TEMPDIR=`mktemp -d` [ -n $TEMPDIR ] || exit 1 touch $TEMPDIR/remove-me groff -Tps EOM | sed -e '/%%Pages/d' $TEMPDIR/exploit.ps Text \X'ps: exec ($TEMPDIR/remove-me) deletefile' More text. EOM $@ $TEMPDIR/exploit.ps /dev/null if [ -e $TEMPDIR/remove-me ] then printf Program is not vulnerable.\n else printf Program is VULNERABLE!\n fi rm -r -- $TEMPDIR signature.asc Description: Digital signature
Bug#736287: ruby1.9.1: insecure SSL defaults (DES and unauthenticated ciphers)
], TLS_SRP_SHA_WITH_AES_128_CBC_SHA: [ is open to man-in-the-middle attacks because it does not authenticate the server ], TLS_SRP_SHA_WITH_AES_256_CBC_SHA: [ is open to man-in-the-middle attacks because it does not authenticate the server ] }, tls_version: TLS 1.2, rating: Bad } Clearly, negotiating plain DES ciphers or ciphers without authentication by default is unacceptable. I have no opinion on SRP, since I don't know enough about it. Please patch this vulnerability. I will clone the bug to ruby2.0 once I get the bug number. [0] https://bugs.ruby-lang.org/issues/9424 [1] https://gist.github.com/8302049.git -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.12-1-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages ruby1.9.1 depends on: ii libc6 2.17-97 ii libruby1.9.1 1.9.3.484-1 ruby1.9.1 recommends no packages. Versions of packages ruby1.9.1 suggests: ii graphviz2.26.3-16.1 ii ri1.9.1 1.9.3.484-1 pn ruby-switch none ii ruby1.9.1-dev 1.9.3.484-1 pn ruby1.9.1-examples none -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#736287: ruby1.9.1: insecure SSL defaults (DES and unauthenticated ciphers)
On Tue, Jan 21, 2014 at 09:49:01PM -0300, Antonio Terceiro wrote: While this is fair enough, I tend to agree with Ruby upstream that if this is a problem in openssl, it should be fixed there and not in every SSL client that uses OpenSSL: $ apt-cache rdepends libssl1.0.0 | wc -l 743 According to man ciphers(1ssl): DEFAULT the default cipher list. This is determined at compile time and, as of OpenSSL 1.0.0, is normally ALL:!aNULL:!eNULL. This must be the first cipher string specified. aNULL the cipher suites offering no authentication. So the default in OpenSSL is not to offer cipher suites that don't provide authentication. Ruby must therefore be overriding this. And honestly, even if OpenSSL is stupid enough to offer low- and export-strength ciphers, you should not. Nobody uses them nowadays; even in embargoed countries like Iran people have strong crypto. Also, IO::Socket::SSL, the Perl module for SSL/TLS, does not suffer from this vulnerability. Try using lwp-request, for example, to visit the test site. I am mostly clueless about SSL/TLS internals, but I suspect that if those ciphers are known to be insecure and are still supported by default, it is probably to keep compatibility with older servers out there? If we drop these insecure ciphers, which fraction of existing servers will not be interoperable with a secure SSL/TLS client? Nobody has intentionally configured their server to support them. Most reputable companies consider their presence to be a security vulnerability. I am one of several people responsible for security issues at work, and we do. If you look at one of the recent entries at [0] (for example, [1]) and go down to the Handshake Simulation page, all of those clients, *even IE 6 on XP*, support strong, authenticated 128+-bit crypto. Disabling these ciphers will not stop anybody from connecting to any server that is reasonably configured (i.e. not intentionally configured to provide only extremely weak security). [0] https://www.ssllabs.com/ssltest/index.html [1] https://www.ssllabs.com/ssltest/analyze.html?d=crustytoothpaste.net -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#567210: doc-available always returns false without network
On Tue, Jan 07, 2014 at 02:39:26PM +0100, Mathieu Malaterre wrote: Dear submitter, Could you please confirm that patch proposed at: http://bugs.debian.org/567210#39 Does solve the issue for you ? It does not appear to solve the problem. It still does not work when networking is disabled, and it takes a long time and hangs even when networking is enabled (probably because of rate-limiting on the W3C's server). With networking disabled: vauxhall ok % cat saxonb-xslt #!/bin/sh java -cp /etc/xml/resolver:/usr/share/java/xslthl.jar:/usr/share/java/xml-resolver.jar:/usr/share/java/saxonb.jar net.sf.saxon.Transform -x org.apache.xml.resolver.tools.ResolvingXMLReader -y org.apache.xml.resolver.tools.ResolvingXMLReader -r org.apache.xml.resolver.tools.CatalogResolver $@ vauxhall no % ./saxonb-xslt -s:foo.xml -xsl:foo.xsl Requested document is file:/tmp/saxonb-testcase/index.xhtml Missing‽ Requested document is index.xhtml Missing‽ Requested document is file:/tmp/saxonb-testcase/index.xhtml Missing‽ Requested document is index.xhtml Missing‽ -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#730428: nss: copyright file refers to wrong license
Package: src:nss Version: 2:3.15.3-1 Severity: serious The copyright file refers to the MPL 1.1, but the COPYING file in the tarball refers to MPL 2.0. The copyright file should probably be updated to refer to the newer version. -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.11-1-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#730228: lightdm: Network Manager refuses to work
Package: lightdm Version: 1.8.5-1 Severity: grave Justification: breaks unrelated packages on the system When I log in using lightdm 1.8.5-1, I no longer have privileges to manipulate Network Manager. Since I use Wi-Fi with my credentials in my personal keyring, this means that I have no network access. Also, the XFCE Log Out screen does not provide me the opportunity to restart or shut down the computer. Downgrading to 1.6.3-1 restores all of this functionality. I am using systemd and XFCE along with Network Manager, in case that matters. Note: The below information is for 1.6.3, since I have downgraded. -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.11-1-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages lightdm depends on: ii adduser3.113+nmu3 ii cdebconf [debconf-2.0] 0.185 ii consolekit 0.4.6-3+b1 ii dbus 1.6.18-1 ii debconf [debconf-2.0] 1.5.52 ii libc6 2.17-96 ii libgcrypt111.5.3-2 ii libglib2.0-0 2.38.1-2 ii libpam0g 1.1.3-10 ii libxcb11.9.1-3 ii libxdmcp6 1:1.1.1-1 ii lightdm-gtk-greeter [lightdm-greeter] 1.6.1-3 Versions of packages lightdm recommends: ii xserver-xorg 1:7.7+4 Versions of packages lightdm suggests: ii accountsservice 0.6.34-2 ii upower 0.9.23-2+b1 -- debconf information: lightdm/daemon_name: /usr/sbin/lightdm * shared/default-x-display-manager: lightdm -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#725386: ruby-rails-4.0: uninstallable due to insufficient version of ruby-sprockets-rails
Package: ruby-rails-4.0 Version: 4.0.0+dfsg-1 Severity: grave ruby-rails-4.0 depends on ruby-sprockets-rails (= 2.0.0~rc4), but that version is not in the archive: vauxhall ok % rmadison ruby-sprockets-rails ruby-sprockets-rails | 1.0.0-1 | jessie | source, all ruby-sprockets-rails | 1.0.0-1 | sid| source, all Between this bug and bug 719798 (missing dependencies for ruby-activerecord-4.0), this means that rails 4.0 is not installable. This is disappointing because I'd like to play with rails 4 but can't. I would build the missing from the git repository but the version available there is still 1.0.0. -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.11-trunk-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#719963: Solution for 719963
Removing inc/Scalar/Util.pm is sufficient to make the package build. Since every perl from 5.7.3 on has shipped Scalar::Util, it's not necessary to use the version in inc. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#719972: Untested patch for 719972
tags 719972 + patch kthxbye With the attached patch, I can get Makefile.PL to run properly (that is, not error out when running it). I have not build-tested this, because I don't feel like rebuilding apache just to get the build dependencies, but this should address the problem. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff --git a/Makefile.PL b/Makefile.PL index e12d475..b7e7a70 100644 --- a/Makefile.PL +++ b/Makefile.PL @@ -2,7 +2,7 @@ # ExtUtils::AutoInstall Bootstrap Code, version 7. BEGIN{my$p='ExtUtils::AutoInstall';my$v=0.52;$p-VERSION||0=$v or+evaluse $p $v;1or+do{my$e=$ENV{PERL_EXTUTILS_AUTOINSTALL}; -(!defined($e)||$e!~m/--(?:default|skip|testonly)/and-t STDIN or +(!defined($e)||$e!~m/--(?:default|skip|testonly)/ and-t STDIN or evaluse ExtUtils::MakeMaker;WriteMakefile(PREREQ_PM={'$p',$v} );1and exit)and print== $p $v required. Install it from CP. AN? [Y/n] andSTDIN!~/^n/i and print*** Installing $p\nand signature.asc Description: Digital signature
Bug#719503: Patch for mp3burn FTBFS with Perl 5.18
tags 719503 + patch kthxbye Attached is a patch that fixes the FTBFS. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff -ur mp3burn-0.4.2.bak/mp3burn mp3burn-0.4.2/mp3burn --- mp3burn-0.4.2.bak/mp3burn 2013-08-18 23:13:34.843372424 + +++ mp3burn-0.4.2/mp3burn 2013-08-18 23:14:15.663182707 + @@ -412,6 +412,8 @@ = Fmp3decoder. I(Note: Currently, the MP3 decoder must be able to accept mpg123-style command-line arguments.) +=back + =cut $mp3decoder = $encoder if $encoder; # -M overrides .mp3burnrc @@ -586,6 +588,8 @@ =head1 DIAGNOSTICS +=over 4 + =item Error in .mp3burnrc: Perl(1) cannot parse the F.mp3burnrc file. signature.asc Description: Digital signature
Bug#719504: Patch for netsend FTBFS
tags 719504 + patch kthxbye Attached is a patch to fix the FTBFS. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff -ur netsend-0.0~svnr250.bak/netsend.pod netsend-0.0~svnr250/netsend.pod --- netsend-0.0~svnr250.bak/netsend.pod 2013-08-18 23:21:11.461246945 + +++ netsend-0.0~svnr250/netsend.pod 2013-08-18 23:22:38.784839679 + @@ -128,6 +128,11 @@ =back +=back + +=back + +=back =head1 EXIT STATUS signature.asc Description: Digital signature
Bug#719501: Patch for FTBFS with Perl 5.18
tags 719501 + patch kthxbye Attached is a patch fixing the FTBFS with Perl 5.18. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff --git a/debian/vm.pod b/debian/vm.pod index 6928d3a..a26d061 100644 --- a/debian/vm.pod +++ b/debian/vm.pod @@ -26,9 +26,12 @@ Bvm - VoiceModem is the program for handling the voice modem functionality fro =item devicetest +=back =head1 OPTIONS +=over 4 + =item B-c n use compression type Bn @@ -68,6 +71,8 @@ set silence timeout in 0.1sec =item B-V n set silence threshold to n (0-100%%) +=back + =head1 SEE ALSO Lvgetty(1) signature.asc Description: Digital signature
Bug#719867: Patch for FTBFS with Perl 5.18
tags 719867 + patch kthxbye Attached is a patch that fixes the FTBFS. With the patch, it builds successfully. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 From 562d80c48e8924f07af8bba42a7b20a1b328b9c8 Mon Sep 17 00:00:00 2001 From: brian m. carlson sand...@crustytoothpaste.net Date: Sat, 17 Aug 2013 01:31:49 + Subject: [PATCH] Fix Perl module broken with Perl 5.18. Perl 5.18 stopped allowing qw() to be treated as if it had parentheses surrounding it; now the parentheses must be explicit. Add the parentheses to avoid a build failure. --- src/DefaultSig.pm | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/DefaultSig.pm b/src/DefaultSig.pm index ec838b4..fe9d189 100644 --- a/src/DefaultSig.pm +++ b/src/DefaultSig.pm @@ -19,7 +19,7 @@ use Sys::Hostname; our %HAVE_MODULE; BEGIN { -foreach my $module qw(Time::Zone) { +foreach my $module (qw(Time::Zone)) { eval use $module (); # import, but keep module's original name space for clarity $HAVE_MODULE{$module} = $EVAL_ERROR eq ''; } -- 1.8.4.rc2.564.g10ce5ae signature.asc Description: Digital signature
Bug#708983: libsnmp-base: file conflict with libsnmp15
Package: libsnmp-base Version: 5.7.2~dfsg-4 Severity: serious I get the following error on an attempt to upgrade: (Reading database ... 377035 files and directories currently installed.) Preparing to replace libsnmp-base 5.7.2~dfsg-4 (using .../libsnmp-base_5.7.2~dfsg-5_all.deb) ... Unpacking replacement libsnmp-base ... dpkg: error processing /var/cache/apt/archives/libsnmp-base_5.7.2~dfsg-5_all.deb (--unpack): trying to overwrite '/usr/bin/net-snmp-config', which is also in package libsnmp15 5.4.3~dfsg-3 dpkg-deb: error: subprocess paste was killed by signal (Broken pipe) Probably an appropriate dependency is necessary to ensure that this upgrade goes smoothly. Please note that currently the latest libsnmp15 available to me is 5.4.3~dfsg-3; even if this is fixed by a newer libsnmp15, you cannot rely on the two being upgraded together unless an appropriate dependency (including Breaks or Conflicts) is in place. -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.8-1-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/mksh-static libsnmp-base depends on no packages. libsnmp-base recommends no packages. Versions of packages libsnmp-base suggests: pn snmp-mibs-downloader none -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#700526: man-db: postinst exits with status 30
Package: man-db Version: 2.6.3-3 Severity: grave Justification: packages that don't install are unusable I see the following on installation: Setting up man-db (2.6.3-3) ... dpkg: error processing man-db (--configure): subprocess installed post-installation script returned error exit status 30 Errors were encountered while processing: man-db Retrying installation does not help. From the exit status, looks like a debconf-related issue. If you need more information, please let me know. -- System Information: Debian Release: 7.0 APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.7-trunk-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/mksh-static Versions of packages man-db depends on: ii bsdmainutils9.0.4 ii cdebconf [debconf-2.0] 0.181 ii debconf [debconf-2.0] 1.5.49 ii dpkg1.16.9 ii groff-base 1.22.1-3 ii libc6 2.13-38 ii libgdbm31.8.3-11 ii libpipeline11.2.2-1 ii zlib1g 1:1.2.7.dfsg-13 man-db recommends no packages. Versions of packages man-db suggests: ii elinks [www-browser] 0.12~pre5-9 ii google-chrome-beta [www-browser] 25.0.1364.84-r182155 ii groff 1.22.1-3 ii iceweasel [www-browser] 16.0.2-1 ii konqueror [www-browser] 4:4.8.4-2 ii less 456-1 ii lynx-cur [www-browser]2.8.8dev.15-2 ii w3m [www-browser] 0.5.3-8 -- debconf information: man-db/install-setuid: false man-db/auto-update: true -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#700526: man-db: postinst exits with status 30
On Thu, Feb 14, 2013 at 12:04:50AM +, Colin Watson wrote: On Wed, Feb 13, 2013 at 11:11:01PM +, brian m. carlson wrote: I see the following on installation: Setting up man-db (2.6.3-3) ... dpkg: error processing man-db (--configure): subprocess installed post-installation script returned error exit status 30 Errors were encountered while processing: man-db Retrying installation does not help. From the exit status, looks like a debconf-related issue. I need the output with DEBCONF_DEBUG=developer set in the environment, please (generally useful for anything even speculatively debconf-related). Setting up man-db (2.6.3-3) ... debconf (developer): frontend started debconf (developer): frontend running, package name is man-db debconf (developer): starting /var/lib/dpkg/info/man-db.config configure 2.6.3-3 debconf (developer): -- VERSION 2.0 debconf (developer): -- 0 2.0 debconf (developer): -- INPUT medium man-db/install-setuid debconf (developer): -- 30 question skipped dpkg: error processing man-db (--configure): subprocess installed post-installation script returned error exit status 30 Errors were encountered while processing: man-db -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#700526: man-db: postinst exits with status 30
reassign 700526 mksh severity 700526 important retitle 700526 mksh-static breaks debconf kthxbye On Thu, Feb 14, 2013 at 01:25:41AM +, Colin Watson wrote: On Thu, Feb 14, 2013 at 12:09:35AM +, brian m. carlson wrote: On Thu, Feb 14, 2013 at 12:04:50AM +, Colin Watson wrote: I need the output with DEBCONF_DEBUG=developer set in the environment, please (generally useful for anything even speculatively debconf-related). Setting up man-db (2.6.3-3) ... debconf (developer): frontend started debconf (developer): frontend running, package name is man-db debconf (developer): starting /var/lib/dpkg/info/man-db.config configure 2.6.3-3 debconf (developer): -- VERSION 2.0 debconf (developer): -- 0 2.0 debconf (developer): -- INPUT medium man-db/install-setuid debconf (developer): -- 30 question skipped dpkg: error processing man-db (--configure): subprocess installed post-installation script returned error exit status 30 Errors were encountered while processing: man-db Hm, and yet the code is: db_input medium man-db/install-setuid || true So there's no reason why this should cause a failure, and it should have carried on to GO. Time for bigger guns: could you run the whole thing under 'strace -f -s4096 -o man-db.trace' and attach the resulting man-db.trace file, please? I found the problem. Something about debconf does not work well with mksh-static as /bin/sh. Reassigning. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#694369: fop: lacks appropriate dependency on new version of libxmlgraphics-commons-java
Package: fop Version: 1:1.1.dfsg-1 Severity: serious Without upgrading libxmlgraphics-commons-java to the version in experimental, I get the following: vauxhall no % fop -q -pdf working/shoot.pdf -fo working/shoot.fo [warning] /usr/bin/fop: Unable to locate servlet-api in /usr/share/java Exception in thread main java.lang.NoSuchMethodError: org.apache.xmlgraphics.util.Service.providerNames(Ljava/lang/Class;)Ljava/util/Iterator; at org.apache.fop.fo.ElementMappingRegistry.setupDefaultMappings(ElementMappingRegistry.java:74) at org.apache.fop.fo.ElementMappingRegistry.init(ElementMappingRegistry.java:66) at org.apache.fop.apps.FopFactory.init(FopFactory.java:166) at org.apache.fop.apps.FopFactory.newInstance(FopFactory.java:190) at org.apache.fop.cli.CommandLineOptions.init(CommandLineOptions.java:124) at org.apache.fop.cli.Main.startFOP(Main.java:160) at org.apache.fop.cli.Main.main(Main.java:208) An appropriate versioned dependency is required here. -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.6-trunk-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages fop depends on: ii default-jre-headless [java2-runtime-headless]1:1.6-47 ii libfop-java 1:1.1.dfsg-1 ii openjdk-6-jre-headless [java2-runtime-headless] 6b24-1.11.5-1 ii openjdk-7-jre-headless [java2-runtime-headless] 7u3-2.1.3-1 Versions of packages fop recommends: ii libsaxon-java 1:6.5.5-8 Versions of packages fop suggests: ii fop-doc 1:1.1.dfsg-1 ii libservlet2.5-java 6.0.35-5+nmu1 -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#693632: gcc-snapshot dependencies
gcc-snapshot also depends on libc6 = 2.14, which is also not in Debian. eglibc does not appear to be in the NEW queue, either. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#640939: [Pkg-cups-devel] Bug#640939: Raising severity of 640939
On Fri, Sep 07, 2012 at 12:19:06PM +0100, Brian Potkin wrote: On Fri 07 Sep 2012 at 00:04:55 +, brian m. carlson wrote: On Wed, Sep 05, 2012 at 04:12:34PM +0100, Brian Potkin wrote: Progressing to the end of the install was a matter of pressing the Enter key each time the root password was asked for. Yeah, that's it. It looks like the issue here is that cups prompts to use Basic authentication when there's no chance that will work. So once it stops doing that, the upgrade issue will go away automatically. You don't fancy reducing the severity of the bug, do you? None of the package maintainer scripts are doing the prompting, only Kerberos users are affected and there is an easy way to work round it. I don't especially. The fact is that the bug does cause the upgrade process to hang, and since it very often happens during a dovecot upgrade (coincidentally, but frequently), it means that important services are down for longer than I want (and when I notice, I'm often not in a position to fix the problem). This would be an even worse disaster if it happened at the same time as a postfix upgrade. Upgrades must be able to run unattended, period. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#640939: [Pkg-cups-devel] Bug#640939: Raising severity of 640939
On Wed, Sep 05, 2012 at 04:12:34PM +0100, Brian Potkin wrote: On Fri 29 Jun 2012 at 03:04:03 +, brian m. carlson wrote: # Default authentication type, when authentication is required... DefaultAuthType Negotiate You are using Kerberos? This could be a consequence of #663995. The original Red Hat report is at: https://bugzilla.redhat.com/show_bug.cgi?format=multipleid=837602 I tested this conjecture after installing and setting up Kerberos. Well, yes, and no. I have it set up for Kerberos, but I'm not actually using it for anything at the moment. I don't ever remotely administer the cups server; I just SSH into it if I need to mess with the print queues. 5. The error_log contained 12 lines of the form: Authorized using Basic, expected Negotiate My logs don't go back far enough for me to see whether this message appeared. Progressing to the end of the install was a matter of pressing the Enter key each time the root password was asked for. Yeah, that's it. It looks like the issue here is that cups prompts to use Basic authentication when there's no chance that will work. So once it stops doing that, the upgrade issue will go away automatically. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#640939: [Pkg-cups-devel] Bug#640939: Raising severity of 640939
I forgot to send this to the bug. Doing so now. On Tue, Jun 19, 2012 at 01:07:26PM +0200, Martin Pitt wrote: tag 640939 moreinfo unreproducible thanks Hello all, I discussed this with Till, and we both have no real idea how to get to a situation where lpadmin as root asks for a password. It is already called with -h /var/run/cups/cups.sock to ensure it's not talking to a remote server. It seems you need a particular cups configuration to achieve this. Can you please attach your /etc/cups/cupsd.conf, /etc/cups/client.conf, and ~/.cups/client.conf ? (You might not have the latter two) Have you tried upgrading hplip-cups? That's how I get it; in fact, it just happened again the other day. I originally filed this bug there, but the maintainer reassigned it here. Anyway, the cupsd.conf is attached; the other two don't exist. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 # # # Sample configuration file for the CUPS scheduler. See man cupsd.conf for a # complete description of this file. # # Log general information in error_log - change warn to debug # for troubleshooting... LogLevel warn # Deactivate CUPS' internal logrotating, as we provide a better one, especially # LogLevel debug2 gets usable now MaxLogSize 0 # Administrator user group... SystemGroup lpadmin Listen *:631 Listen /var/run/cups/cups.sock # Show shared printers on the local network. Browsing On BrowseOrder allow,deny BrowseAllow all BrowseLocalProtocols CUPS dnssd # Default authentication type, when authentication is required... DefaultAuthType Negotiate # Restrict access to the server... Location / Order allow,deny /Location Location /printers Order allow,deny Allow from @LOCAL /Location # Restrict access to the admin pages... Location /admin Order allow,deny /Location # Restrict access to configuration files... Location /admin/conf AuthType Default Require user @SYSTEM Order allow,deny /Location # Set the default printer/job policies... Policy default #Limit Send-Document Send-URI Set-Job-Attributes Get-Notifications # Order deny,allow #/Limit # Job-related operations must be done by the owner or an administrator... Limit Send-Document Send-URI Hold-Job Release-Job Restart-Job Purge-Jobs Set-Job-Attributes Create-Job-Subscription Renew-Subscription Cancel-Subscription Get-Notifications Reprocess-Job Cancel-Current-Job Suspend-Current-Job Resume-Job CUPS-Move-Job CUPS-Get-Document Require user @OWNER @SYSTEM Order deny,allow /Limit #Limit Hold-Job Release-Job Restart-Job Purge-Jobs Create-Job-Subscription Renew-Subscription Cancel-Subscription Reprocess-Job Cancel-Current-Job Suspend-Current-Job Resume-Job CUPS-Move-Job CUPS-Get-Document # Require user @OWNER @SYSTEM # Order deny,allow #/Limit # All administration operations require an administrator to authenticate... Limit CUPS-Add-Modify-Printer CUPS-Delete-Printer CUPS-Add-Modify-Class CUPS-Delete-Class CUPS-Set-Default CUPS-Get-Devices AuthType Default Require user @SYSTEM Order deny,allow /Limit # All printer operations require a printer operator to authenticate... Limit Pause-Printer Resume-Printer Enable-Printer Disable-Printer Pause-Printer-After-Current-Job Hold-New-Jobs Release-Held-New-Jobs Deactivate-Printer Activate-Printer Restart-Printer Shutdown-Printer Startup-Printer Promote-Job Schedule-Job-After CUPS-Accept-Jobs CUPS-Reject-Jobs AuthType Default Require user @SYSTEM Order deny,allow /Limit # Only the owner or an administrator can cancel or authenticate a job... Limit Cancel-Job CUPS-Authenticate-Job Require user @OWNER @SYSTEM Order deny,allow /Limit Limit All Order deny,allow /Limit /Policy # Set the authenticated printer/job policies... Policy authenticated # Job-related operations must be done by the owner or an administrator... Limit Create-Job Print-Job Print-URI AuthType Default Order deny,allow /Limit Limit Send-Document Send-URI Hold-Job Release-Job Restart-Job Purge-Jobs Set-Job-Attributes Create-Job-Subscription Renew-Subscription Cancel-Subscription Get-Notifications Reprocess-Job Cancel-Current-Job Suspend-Current-Job Resume-Job CUPS-Move-Job CUPS-Get-Document AuthType Default Require user @OWNER @SYSTEM Order deny,allow /Limit # All administration operations require an administrator to authenticate... Limit CUPS-Add-Modify-Printer CUPS-Delete-Printer CUPS-Add-Modify-Class CUPS-Delete-Class CUPS-Set-Default AuthType Default Require user @SYSTEM Order deny,allow /Limit # All printer operations require a printer operator to authenticate... Limit Pause-Printer Resume-Printer Enable-Printer Disable-Printer Pause-Printer-After-Current-Job Hold-New-Jobs Release-Held-New-Jobs Deactivate-Printer
Bug#640939: Further information
Here's the output of ps -efH when the problem occurs: root 591878 591834 0 02:40 pts/000:00:00 sudo aptitude root 591899 591878 1 02:40 pts/000:00:21 aptitude root 613588 591899 4 02:56 pts/100:00:11 /usr/bin/dpkg --status-fd 19 --unpack --auto-deconfigure /var/cache/apt/archives/dmidecode_2.11+201203 root 617631 613588 0 02:58 pts/100:00:00 /usr/bin/perl -w /usr/share/debconf/frontend /var/lib/dpkg/info/cups.postinst triggered /usr/share/c root 617639 617631 0 02:58 pts/100:00:00 /bin/sh /var/lib/dpkg/info/cups.postinst triggered /usr/share/cups/ppd-updaters root 617815 617639 0 02:58 pts/100:00:00 lpadmin -h /var/run/cups/cups.sock -p Deskjet-5740 -m drv:///hpcups.drv/hp-deskjet_5700.ppd As you can see, this is the cups postinst when it's being triggered. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#647992: Progress?
This bug log hasn't been updated in a week. Is there any reason the proposed patch isn't acceptable? chromium is broken in its default configuration and the current workaround has significant security implications. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#649351: bup and python 2.7
I rebuilt bup for python 2.7 and IIRC it built just fine. So all we really need here is an upload with the minimum changes. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#625756: electric-fence: FTBFS due to OOM with gcc-4.5
On Mon, Sep 19, 2011 at 03:55:57PM +0100, Colin Watson wrote: On Thu, Sep 08, 2011 at 06:14:49PM +0100, Colin Watson wrote: * Build with -fno-tree-dse, since otherwise GCC = 4.5 misoptimises allocateMoreSlots() (closes: #625756, LP: #749139). In fact, as GCC upstream pointed out, a more targeted - and I think more correct - fix is -fno-builtin-malloc. -fno-tree-dse won't really hurt much, but it will probably lose out on a bit of optimisation. Honestly, I don't see why GCC treats malloc as a built-in. Whatever implementation of malloc is provided by the system is the one to use, and I can't see why for the life of me GCC thinks it can do anything better with a built-in function than the system one does. Therefore, unless there's a very compelling reason I haven't thought of, this is a GCC bug; GCC shouldn't treat malloc specially at all. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#641038: icedtea-plugin: uninstallable on amd64/sid due to openjdk update
Package: icedtea-plugin Version: 1.1-1 Severity: grave Due to the update to openjdk that Breaks icedtea-web, icedtea-plugin is uninstallable on amd64/sid. Because I need a working Java plugin for various purposes, this prevents me from updating openjdk 6 and 7. Please fix this as soon as possible. -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.1.0-rc4-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages icedtea-plugin depends on: ii icedtea-netx1.1-1 ii libatk1.0-0 2.0.1-2 ii libc6 2.13-20 ii libcairo2 1.10.2-6.1 ii libfontconfig1 2.8.0-3 ii libfreetype62.4.6-2 ii libgcc1 1:4.6.1-9 ii libgdk-pixbuf2.0-0 2.24.0-1 ii libglib2.0-02.28.6-3 ii libgtk2.0-0 2.24.6-1 ii libnspr4-0d 4.8.9-1 ii libpango1.0-0 1.28.4-3 ii libstdc++6 4.6.1-9 ii openjdk-6-jre 6b23~pre8-1 ii xulrunner-1.9.1 1.9.1.19-3 icedtea-plugin recommends no packages. icedtea-plugin suggests no packages. -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#638576: libxerces2-java: FTBFS on amd64/sid
Package: libxerces2-java Version: 2.9.1-4.1 Severity: serious Justification: no longer builds from source libxerces2-java doesn't build anymore. Attached is the build log from my system. -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.0.0-1-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages libxerces2-java depends on: ii default-jre-headless [ 1:1.6-40 Standard Java or Java compatible R ii gcj-4.4-jre-headless [ 4.4.6-6 Java runtime environment using GIJ ii gcj-4.6-jre-headless [ 4.6.1-3 Java runtime environment using GIJ ii gcj-jre-headless [java 4:4.6.1-2 Java runtime environment using GIJ ii libjaxp1.3-java1.3.05-1 Java XML parser and transformer AP ii openjdk-6-jre-headless 6b23~pre7-1 OpenJDK Java runtime, using Hotspo ii openjdk-7-jre-headless 7~b147-2.0~pre2-3 OpenJDK Java runtime, using Hotspo Versions of packages libxerces2-java recommends: pn libxerces2-java-gcj none (no description available) Versions of packages libxerces2-java suggests: pn libxerces2-java-doc none (no description available) -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 Script started on Fri 19 Aug 2011 09:06:05 PM UTC buildpkg: command line : dpkg-buildpackage -us -uc -rfakeroot buildpkg: CC : gcc buildpkg: CXX : g++ buildpkg: PATH : /home/bmc/bin:/usr/local/bin:/usr/local/sbin:/usr/bin:/usr/sbin:/bin:/sbin:/usr/bin/X11:/usr/games dpkg-buildpackage: export CFLAGS from dpkg-buildflags (origin: vendor): -g -O2 dpkg-buildpackage: export CPPFLAGS from dpkg-buildflags (origin: vendor): dpkg-buildpackage: export CXXFLAGS from dpkg-buildflags (origin: vendor): -g -O2 dpkg-buildpackage: export FFLAGS from dpkg-buildflags (origin: vendor): -g -O2 dpkg-buildpackage: export LDFLAGS from dpkg-buildflags (origin: vendor): dpkg-buildpackage: source package libxerces2-java dpkg-buildpackage: source version 2.9.1-4.1 dpkg-buildpackage: source changed by Giuseppe Iuculano iucul...@debian.org dpkg-buildpackage: host architecture amd64 dpkg-source --before-build libxerces2-java-2.9.1 fakeroot debian/rules clean /usr/share/cdbs/1/rules/simple-patchsys.mk:31: WARNING: simple-patchsys.mk is deprecated - please use source format 3.0 (quilt) instead test -x debian/rules dh_testroot /usr/bin/make -f debian/rules reverse-config make[1]: Entering directory `/tmp/libxerces2-java-2.9.1' /usr/share/cdbs/1/rules/simple-patchsys.mk:31: WARNING: simple-patchsys.mk is deprecated - please use source format 3.0 (quilt) instead make[1]: Nothing to be done for `reverse-config'. make[1]: Leaving directory `/tmp/libxerces2-java-2.9.1' if [ reverse-patches = reverse-patches ]; then rm -f debian/stamp-patched; fi patches: debian/patches/01_xjavac_taskdef.patch debian/patches/02_build_dont_unzip.patch debian/patches/03_bootclasspath.patch debian/patches/04_CVE-2009-2625.patch Trying reverse patch debian/patches/04_CVE-2009-2625.patch at level 1 ... success. Trying reverse patch debian/patches/03_bootclasspath.patch at level 1 ... 0 ... success. Trying reverse patch debian/patches/02_build_dont_unzip.patch at level 1 ... 0 ... success. Trying reverse patch debian/patches/01_xjavac_taskdef.patch at level 1 ... 0 ... success. if [ reverse-patches != reverse-patches ]; then touch debian/stamp-patched; fi if [ reverse-patches != reverse-patches ] ; then \ /usr/bin/make -f debian/rules update-config ; \ fi for dir in debian/patches ; do \ rm -f $dir/*.log ; \ done dh_clean rm -f debian/libxerces2-java.substvars rm -f debian/libxerces2-java.*.debhelper rm -rf debian/libxerces2-java/ rm -f debian/libxerces2-java-gcj.substvars rm -f debian/libxerces2-java-gcj.*.debhelper rm -rf debian/libxerces2-java-gcj/ rm -f debian/libxerces2-java-doc.substvars rm -f debian/libxerces2-java-doc.*.debhelper rm -rf debian/libxerces2-java-doc/ rm -f debian/*.debhelper.log rm -f debian/files find . \( \( -type f -a \ \( -name '#*#' -o -name '.*~' -o -name '*~' -o -name DEADJOE \ -o -name '*.orig' -o -name '*.rej' -o -name '*.bak' \ -o -name '.*.orig' -o -name .*.rej -o -name '.SUMS' \ -o -name TAGS -o \( -path '*/.deps/*' -a -name '*.P' \) \ \) -exec rm -f {} \; \) -o \ \( -type d -a -name autom4te.cache -prune -exec rm -rf {} \; \) \) cd . /usr/lib/jvm/default-java/bin/java -classpath /usr/share/ant/lib/ant.jar:/usr/share/ant/lib/ant
Bug#638576: Patch for and explanation of xerces FTBFS
tags 638576 + patch retitle 638576 libxerces2-java: FTBFS due to Commons resolver changes kthxbye Because of the change of name of the Commons resolver jar, Xerces FTBFS. Attached is a patch that changes the two references to the jar so that everything works. It built successfully for me with this patch. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff -ur libxerces2-java-2.9.1/debian/ant.properties libxerces2-java.old/debian/ant.properties --- libxerces2-java-2.9.1/debian/ant.properties 2011-08-19 21:59:19.0 + +++ libxerces2-java.old/debian/ant.properties 2011-08-19 21:57:06.956896977 + @@ -1,4 +1,4 @@ jar.apis=jaxp-1.3.jar -jar.resolver=xml-commons-resolver-1.1.jar +jar.resolver=xml-resolver-1.2.jar tools.dir=/usr/share/java diff -ur libxerces2-java-2.9.1/debian/rules libxerces2-java.old/debian/rules --- libxerces2-java-2.9.1/debian/rules 2011-08-19 21:59:19.0 + +++ libxerces2-java.old/debian/rules 2011-08-19 21:57:06.956896977 + @@ -21,7 +21,7 @@ # Additional JARs to add to the class path, either full path or just the # basename for JARs in /usr/share/java. The .jar suffix may also be ommitted -DEB_JARS := xml-commons-resolver-1.1 +DEB_JARS := xml-resolver-1.2 #jaxp-1.3.jar stylebook # Ant targets to call signature.asc Description: Digital signature
Bug#638045: Also affects sendmail
This bug also affects sendmail: Aug 18 23:07:03 castro sm-mta[6270]: p7IJ3C7F001708: AUTH=client, available mechanisms do not fulfill requirements Please make sure that whatever upload occurs does not break sendmail. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#636258: firmware-b43-installer: exits from postinst with error code 1
Package: firmware-b43-installer Version: 1:014-6 Severity: grave Tags: patch lakeview no % sudo dpkg --configure -a Setting up firmware-b43-installer (1:014-6) ... dpkg: error processing firmware-b43-installer (--configure): subprocess installed post-installation script returned error exit status 1 Errors were encountered while processing: firmware-b43-installer Running the shell script under sh -x produces: lakeview no % sudo sh -x /var/lib/dpkg/info/firmware-b43-installer.postinst configure + set -e + uname -r + cut -d- -f1 + dpkg --compare-versions 2.6.25 gt 3.0.0 + + grep -o 14e4:4320 (rev 03) lspci -n + chip= So basically, the grep is failing, and so under set -e, the script fails. I've tested this theory by doing: lakeview ok % chip=`lspci -n | grep -o 14e4:4320 (rev 03)` bmc@lakeview:/tmp (2011-08-01/19:15:21)(pts/7)(ac+100%)(failed:1:none) And this causes a failure with error 1 (as you can see by failed:1). Adding || true to the end of the line makes it succeed, and I've attached a patch that does that. I've marked this grave since the package fails to install for any b43 user other than those using 14e4:4320 rev 3. -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.0.0-1-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages firmware-b43-installer depends on: ii b43-fwcutter 1:014-6Utility for extracting Broadcom 43 ii bzip2 1.0.5-6high-quality block-sorting file co ii wget 1.12-5 retrieves files from the web Versions of packages firmware-b43-installer recommends: ii linux-image-2 2.6.39-3 Linux 2.6.39 for 64-bit PCs ii linux-image-3 3.0.0-1Linux 3.0.0 for 64-bit PCs ii linux-image-3 3.0.0-1Linux 3.0.0 for 64-bit PCs, PREEMP ii linux-image-3 3.0.0~rc6-1~experimental.1 Linux 3.0.0-rc6 for 64-bit PCs firmware-b43-installer suggests no packages. -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 --- /tmp/firmware-b43-installer.postinst 2011-08-01 19:19:39.427865365 + +++ /var/lib/dpkg/info/firmware-b43-installer.postinst 2011-08-01 19:19:46.0 + @@ -38,7 +38,7 @@ } # Fix for BCM4306/3 [14e4:4320] (rev 03) -chip=`lspci -n | grep -o 14e4:4320 (rev 03)` +chip=`lspci -n | grep -o 14e4:4320 (rev 03)` || true if [ $chip ] ; then echo Your card is BCM4306/3 [14e4:4320] (rev 03), firwmare 5.10.56.27.3 will be used latest_firmware signature.asc Description: Digital signature
Bug#629589: Causes sendmail to crash, too
On Wed, Jun 08, 2011 at 08:51:35AM +0200, Ondřej Surý wrote: first let me thank you for reporting the bugs in GSSAPI and for patience :). You've been most helpful. Thanks for your quick response. I very much appreciate it. I've just uploaded version with patch from upstream bugzilla applied. Hope this is last serious bug which creeped in. If you get this, then both sendmail and mutt are working correctly, so there shouldn't be any problem. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#628525: libsasl2-modules-gssapi-mit: authentication now fails always
On Mon, May 30, 2011 at 11:17:00PM +0200, Ondřej Surý wrote: On Mon, May 30, 2011 at 20:08, brian m. carlson sand...@crustytoothpaste.net wrote: On Mon, May 30, 2011 at 12:12:46PM +0200, Ondřej Surý wrote: is it auxprop or saslauthd based? Sendmail uses saslauthd. Dovecot (for IMAP) uses its own SASL implementation. On the server, the new version is installed. It's only when the client uses the new version that problems occur. Thanks, that's good to know. Actually, I was wrong. Sendmail doesn't work with the new version on the server. I just hadn't restarted it since the upgrade. If I use the new version with sendmail, neither the new nor the old version works on the client. I can do that. Since you're a DD, I'm also happy to give you an account on the server so that you can try to send and receive mail normally. Simply give me your preferred username and I'll generate a random Kerberos password (which I'll send you encrypted under your public key) that you can use to acquire and use Kerberos credentials. username: ondrej Your password is on its way. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#628525: libsasl2-modules-gssapi-mit: authentication now fails always
Embedded GNU C Library: Shared lib ii libcome 1.41.12-4common error description library ii libgssa 1.9+dfsg-1+b1MIT Kerberos runtime libraries - k ii libk5cr 1.9+dfsg-1+b1MIT Kerberos runtime libraries - C ii libkrb5 1.9+dfsg-1+b1MIT Kerberos runtime libraries ii libsasl 2.1.24~rc1.dfsg1+cvs2011-05-23-2 Cyrus SASL - pluggable authenticat ii libssl1 1.0.0d-2 SSL shared libraries libsasl2-modules-gssapi-mit recommends no packages. libsasl2-modules-gssapi-mit suggests no packages. -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#628525: Additional information
I forgot to mention one thing that may be useful to know. When storing sent messages on an IMAP server, mutt actually opens another connection, and hence re-authenticates. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#624899: Merging libedit FTBFS bug with pmake bug
reassign 624899 pmake forcemerge 610516 624899 affects 624899 libedit kthxbye This is really the same bug, which is in pmake's system makefiles. Therefore, I'm merging the bugs and marking them as affecting libedit. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#624962: Patch for sword FTBFS
tags 624962 + patch kthxbye Attached is a patch to fix the FTBFS with GCC 4.6. In both cases, it appears that someone is intentionally trying to stuff an integer in a pointer, so I essentially made the integer type a long so that it would work on both 32-bit and 64-bit systems. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff -ur sword.old/src/modules/swmodule.cpp sword-1.6.1+dfsg/src/modules/swmodule.cpp --- sword.old/src/modules/swmodule.cpp 2011-05-26 21:48:08.0 + +++ sword-1.6.1+dfsg/src/modules/swmodule.cpp 2011-05-26 22:05:28.0 + @@ -536,7 +536,7 @@ } } listKey *resultKey; -listKey.GetElement()-userData = (void *)((__u32)(h-score(i)*100)); +listKey.GetElement()-userData = (void *)((long)(h-score(i)*100)); } (*percent)(98, percentUserData); } diff -ur sword.old/tests/ciphertest.cpp sword-1.6.1+dfsg/tests/ciphertest.cpp --- sword.old/tests/ciphertest.cpp 2011-05-26 21:48:08.0 + +++ sword-1.6.1+dfsg/tests/ciphertest.cpp 2011-05-26 22:09:42.0 + @@ -30,7 +30,7 @@ } - int encipher = atoi(argv[2]); + long encipher = atoi(argv[2]); SWFilter *filter = new CipherFilter(argv[1]); signature.asc Description: Digital signature
Bug#624921: Patch for mediatomb FTBFS
tags 624921 + patch kthxbye This patch makes mediatomb #include cstddef instead of new to get size_t and therefore fixes the FTBFS. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#624883: Patch for moon FTBFS
tags 624883 + patch kthxbye Attached is a patch which fixes the FTBFS by including sys/stat.h. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff -ur moon.old/src/pipeline.cpp moon-1.0.1/src/pipeline.cpp --- moon.old/src/pipeline.cpp 2009-03-03 17:27:01.0 + +++ moon-1.0.1/src/pipeline.cpp 2011-05-18 21:50:57.0 + @@ -19,6 +19,7 @@ #include fcntl.h #include errno.h #include stdlib.h +#include sys/stat.h #include pthread.h #include sched.h diff -ur moon.old/tools/mopen/mopen1.cpp moon-1.0.1/tools/mopen/mopen1.cpp --- moon.old/tools/mopen/mopen1.cpp 2009-03-03 17:27:19.0 + +++ moon-1.0.1/tools/mopen/mopen1.cpp 2011-05-18 21:52:39.0 + @@ -20,6 +20,7 @@ #include fcntl.h #include errno.h #include stdlib.h +#include sys/stat.h #include downloader.h #include runtime.h signature.asc Description: Digital signature
Bug#625078: Patch to fix acovea FTBFS
tags 625078 + patch kthxbye This patch fixes the FTBFS by including sys/stat.h. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff -ur acovea.old/libacovea/acovea.cpp acovea-5.1.1/libacovea/acovea.cpp --- acovea.old/libacovea/acovea.cpp 2011-05-18 21:59:42.0 + +++ acovea-5.1.1/libacovea/acovea.cpp 2011-05-18 22:03:23.0 + @@ -42,6 +42,7 @@ #include fcntl.h #include unistd.h +#include sys/stat.h #include sys/types.h #include sys/wait.h signature.asc Description: Digital signature
Bug#625005: Patch to fix cdrdao FTBFS
tags 625005 + patch kthxbye This patch fixes the FTBFS by including sys/stat.h. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff -ur cdrdao.old/dao/ScsiIf-linux.cc cdrdao-1.2.3/dao/ScsiIf-linux.cc --- cdrdao.old/dao/ScsiIf-linux.cc 2011-05-18 22:00:28.0 + +++ cdrdao-1.2.3/dao/ScsiIf-linux.cc 2011-05-18 22:05:38.0 + @@ -27,6 +27,7 @@ #include assert.h #include sys/ioctl.h #include glob.h +#include sys/stat.h #include asm/param.h #include scsi/scsi.h #include scsi/sg.h signature.asc Description: Digital signature
Bug#626976: network-manager-openconnect: file conflict with openconnect
Package: network-manager-openconnect Version: 0.8.999-1 Severity: serious When trying to install n-m-oc 0.8.999-1 while openconnect 2.25-0.1+b1 is installed, I get a file conflict: (Reading database ... 315540 files and directories currently installed.) Preparing to replace network-manager-openconnect 0.7.999-1+b1 (using .../network-manager-openconnect_0.8.999-1_amd64.deb) ... Unpacking replacement network-manager-openconnect ... dpkg: error processing /var/cache/apt/archives/network-manager-openconnect_0.8.999-1_amd64.deb (--unpack): trying to overwrite '/usr/lib/NetworkManager/nm-openconnect-auth-dialog', which is also in package openconnect 2.25-0.1+b1 configured to not write apport reports Errors were encountered while processing: /var/cache/apt/archives/network-manager-openconnect_0.8.999-1_amd64.deb E: Sub-process /usr/bin/dpkg returned an error code (1) A package failed to install. Trying to recover: Upgrading to openconnect 3.02-1 fixes the problem, so it looks like this is a case of insufficient dependencies. -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.39-rc7-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages network-manager-openconnect depends on: ii libatk1.0-0 2.0.0-1 The ATK accessibility toolkit ii libc6 2.13-4 Embedded GNU C Library: Shared lib ii libcairo2 1.10.2-6 The Cairo 2D vector graphics libra ii libdbus-1-3 1.4.8-3 simple interprocess messaging syst ii libdbus-glib-1-20.92-1 simple interprocess messaging syst ii libfontconfig1 2.8.0-2.2generic font configuration library ii libfreetype62.4.4-1 FreeType 2 font engine, shared lib ii libgconf2-4 2.32.1-2 GNOME configuration database syste ii libglade2-0 1:2.6.4-1library to load .glade files at ru ii libglib2.0-02.28.6-1 The GLib library of C routines ii libgtk2.0-0 2.24.4-3 The GTK+ graphical user interface ii libnm-glib-vpn1 0.8.999-1network management framework (GLib ii libnm-glib2 0.8.4.0-1network management framework (GLib ii libnm-util1 0.8.4.0-1network management framework (shar ii libpango1.0-0 1.28.3-6 Layout and rendering of internatio ii libxml2 2.7.8.dfsg-2+b1 GNOME XML library ii network-manager 0.8.999-1network management framework (daem ii openconnect 2.25-0.1+b1 Open client for Cisco AnyConnect V ii zlib1g 1:1.2.3.4.dfsg-3 compression library - runtime network-manager-openconnect recommends no packages. network-manager-openconnect suggests no packages. -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#625756: electric-fence: FTBFS due to OOM with gcc-4.5
Package: electric-fence Version: 2.1.16 Severity: serious When I build electric-fence from source on amd64/sid with gcc-4.5 or gcc-4.6, the ./tstheap 3072 call gets to iteration 100 and then starts allocating massive amounts of memory. Within less than a minute it goes through 3.5GB of physical memory and 5GB of swap. It is then killed by the OOM killer. As a consequence, the package fails to build from source. I've looked at the code and haven't been able to track down the problem yet. The code does work correctly without optimization, but still goes out of control at -O1. I suspect this is a consequence of optimizer improvements. -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.39-rc5-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages electric-fence depends on: ii libc6 2.13-2 Embedded GNU C Library: Shared lib electric-fence recommends no packages. electric-fence suggests no packages. -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#617212: Causes of net-snmp FTBFS
From what I can see, there are two bugs here. The first one is that the package doesn't work with gold because some of the binaries don't link against libcrypto. Fixing this requires delving into the autotools. The other issue is that the package FTBFS with /bin/sh as dash. If I change it instead to use bash for /bin/sh, it builds fine until it encounters the first bug. It appears that something (libtool, it looks like) is trying to use +=, which is available in bash, but not dash. #621743 may be helpful. Please take care of these as soon as possible, since this FTBFS prevents net-snmp from being rebuilt for the Perl 5.12 transition and net-snmp is a dependency of many packages. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#625257: libnih1: uninstallable in sid
Package: libnih1 Version: 1.0.3-3 Severity: grave libnih1 depends on libc6 ( 2.12). libc6 2.13 is now in unstable, rendering libnih1 uninstallable. I'm not sure why such a strict dependency would be needed, but perhaps a mention in the documentation why might be appropriate if it is. -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.38-2-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages libnih1 depends on: ii libc6 2.11.2-13 Embedded GNU C Library: Shared lib libnih1 recommends no packages. libnih1 suggests no packages. -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#625257: Strict dependencies due to __abort_msg
I've done some more looking into this bug, and it seems the reason that the dependency is so strict is that libnih1 depends on the __abort_msg symbol, which, since it is GLIBC_PRIVATE, triggers a stricter dependency. I personally think that the inflexibility of the dependencies outweighs the usefulness of the nih_log_abort_message. upstart is the only binary package using libnih1 from a non-libnih source package, and if upstart crashes, well, no crash dump will be saved and no debuggers will be run. Take from that what you will. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#625257: libnih1: uninstallable in sid
On Mon, May 02, 2011 at 02:55:35PM -0700, Scott James Remnant wrote: That strict dependency appears to come from libc itself; it's not a source dep. Yes, as I discovered (and sent to the bug), it's because of the use of __abort_msg, which is part of version GLIBC_PRIVATE. What I ended up doing is patching the __abort_msg use out, rebuilding libnih1, installing it (since the dep is gone), upgrading libc6 and friends, and then rebuilding the package with the __abort_msg use back in. The only other alternative would be to remove upstart, and I don't have the time to unbreak a system before Wednesday afternoon. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#564990: Patch for parts of fsvs FTBFS
Attached is a patch to fix the compilation errors in fsvs. I built using gcc 4.6, since that's what I have by default. There are a couple problems that I want to point out. The size of an integer constant expression (which is what must be used as array sizes), shall have, according to N1124, integer type and shall only have operands that are integer constants, enumeration constants, character constants, sizeof expressions whose results are integer constants, and floating constants that are the immediate operands of casts. Cast operators in an integer constant expression shall only convert arithmetic types to integer types, except as part of an operand to the sizeof operator. You are not allowed to call functions or use floating point math, ever. So instead of *3.32, I used *332/100. Also, you can't initialize variable-length arrays, so I used a workaround for those two cases involving preprocessor constants. You may choose to adopt a different solution. Linking requires -laprutil-1, but that isn't provided at the moment, so the package will still FTBFS with my patch. Also, you'll need some version of libdb-dev because otherwise db.h isn't provided and the package fails very early. I used libdb4.8-dev since that's what APR uses. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff -ur fsvs.old/src/helper.c fsvs-1.1.17/src/helper.c --- fsvs.old/src/helper.c 2011-04-24 21:03:55.0 + +++ fsvs-1.1.17/src/helper.c 2011-04-24 21:04:34.0 + @@ -1674,7 +1674,7 @@ { static int last=0; /* Sadly GCC doesn't statically solve sizeof(rev)*log(10)/log(2) ... */ - static char buffers[2][(int)(sizeof(rev)*3.32)+3]; + static char buffers[2][(int)(sizeof(rev)*332/100)+3]; last++; if (last= sizeof(buffers)/sizeof(buffers[0])) last=0; diff -ur fsvs.old/src/options.c fsvs-1.1.17/src/options.c --- fsvs.old/src/options.c 2011-04-24 21:03:55.0 + +++ fsvs-1.1.17/src/options.c 2011-04-24 21:16:51.0 + @@ -20,6 +20,7 @@ * Functions dealing with user settings. */ #define ENV_PREFIX FSVS_ +#define ENV_PREFIX_LENGTH 5 /** A structure to associate a string with an integer. */ struct opt___val_str_t @@ -632,7 +633,7 @@ * loop via \c getenv() over all options? */ char *opt__variable_from_option(enum opt__settings_e which) { - static char buffer[ strlen(ENV_PREFIX) + + static char buffer[ ENV_PREFIX_LENGTH + sizeof(opt__list[0].name) + 1] = ENV_PREFIX; char * const target=buffer+strlen(ENV_PREFIX); int i; diff -ur fsvs.old/src/status.c fsvs-1.1.17/src/status.c --- fsvs.old/src/status.c 2011-04-24 21:03:55.0 + +++ fsvs-1.1.17/src/status.c 2011-04-24 21:18:43.0 + @@ -400,8 +400,9 @@ int status; time_t now; int print; - const int bar_chart_width=20; - static const char bar_chart[bar_chart_width+1]=###; +#define BAR_CHART_WIDTH 20 + const int bar_chart_width=BAR_CHART_WIDTH; + static const char bar_chart[BAR_CHART_WIDTH+1]=###; float pct; signature.asc Description: Digital signature
Bug#623988: gnome-games: lightsoff needs seed and gir1.2-gtkclutter-1.0
Package: gnome-games Version: 1:3.0.1.1-1 Severity: serious File: /usr/games/lightsoff lightsoff refuses to run unless the packages seed and gir1.2-gtkclutter-1.0 are both installed. The dependencies for the gnome-games package make no mention of these at all. -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.38-1-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages gnome-games depends on: ii fruit 2.1.dfsg-5 chess engine, to calculate chess m ii gnome-games-data1:3.0.1.1-1 data files for the GNOME games ii gnuchess5.07-7 Plays a game of chess, either agai ii guile-1.8-libs 1.8.7+1-3.2 Main Guile libraries ii hoichess0.10.3-5 xboard compatible chess engine to ii libatk1.0-0 2.0.0-1 The ATK accessibility toolkit ii libc6 2.11.2-13Embedded GNU C Library: Shared lib ii libcairo-gobject2 1.10.2-6 The Cairo 2D vector graphics libra ii libcairo2 1.10.2-6 The Cairo 2D vector graphics libra ii libcanberra-gtk3-0 0.26-3 Gtk+ 3.0 helper for playing widget ii libcanberra00.24-1 a simple abstract interface for pl ii libclutter-1.0-01.6.10-3 Open GL based interactive canvas l ii libclutter-gtk-1.0-01.0.0-1 Open GL based interactive canvas l ii libfontconfig1 2.8.0-2.2generic font configuration library ii libfreetype62.4.4-1 FreeType 2 font engine, shared lib ii libgcc1 1:4.6.0-5GCC support library ii libgconf2-4 2.32.1-2 GNOME configuration database syste ii libgdk-pixbuf2.0-0 2.23.3-3 GDK Pixbuf library ii libgl1-mesa-glx [libgl1 7.10.2-1 A free implementation of the OpenG ii libglib2.0-02.28.6-1 The GLib library of C routines ii libglu1-mesa [libglu1] 7.10.2-1 The OpenGL utility library (GLU) ii libgmp102:5.0.1+dfsg-7 Multiprecision arithmetic library ii libgtk-3-0 3.0.8-1 The GTK+ graphical user interface ii libice6 2:1.0.7-1X11 Inter-Client Exchange library ii libpango1.0-0 1.28.3-6 Layout and rendering of internatio ii librsvg2-2 2.32.1-1 SAX-based renderer library for SVG ii librsvg2-common 2.32.1-1 SAX-based renderer library for SVG ii libsm6 2:1.2.0-1X11 Session Management library ii libsqlite3-03.7.5-1 SQLite 3 shared library ii libstdc++6 4.6.0-5 The GNU Standard C++ Library v3 ii libx11-62:1.4.3-1X11 client-side library ii mesa-utils 8.0.1-2 Miscellaneous Mesa GL utilities ii zlib1g 1:1.2.3.4.dfsg-3 compression library - runtime Versions of packages gnome-games recommends: pn gnome-games-extra-datanone (no description available) ii gvfs 1.7.2-1userspace virtual filesystem - ser Versions of packages gnome-games suggests: ii gnome-hearts 0.3-2+b2 The classic hearts card game for t -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#618353: liferea: FTBFS with GCC 4.5
framework (GLib ii libnotify1 [libnotify1-gtk2 0.5.0-2 sends desktop notifications to a n ii libpango1.0-0 1.28.3-4 Layout and rendering of internatio ii libsm6 2:1.2.0-1X11 Session Management library ii libsoup2.4-12.30.2-1 an HTTP library implementation in ii libsqlite3-03.7.5-1 SQLite 3 shared library ii libwebkit-1.0-2 1.2.7-1 Web content engine library for Gtk ii libx11-62:1.4.1-5X11 client-side library ii libxml2 2.7.8.dfsg-2 GNOME XML library ii libxslt1.1 1.1.26-6 XSLT 1.0 processing library - runt ii liferea-data1.6.4-1 architecture independent data for Versions of packages liferea recommends: ii curl 7.21.4-1 Get a file from an HTTP, HTTPS or ii dbus 1.4.6-1simple interprocess messaging syst ii dbus-x11 1.4.6-1simple interprocess messaging syst ii wget 1.12-2.1 retrieves files from the web Versions of packages liferea suggests: ii network-manager 0.8.2-6network management framework daemo -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#616394: libvte9: too-loose dependency on libvte-common
Package: libvte9 Version: 1:0.27.5-1 Severity: serious I decided to try libvte9 in experimental to see if it solves a bug I have (#616392). Unfortunately, without also upgrading libvte-common, I get a complaint from vte that it can't find /etc/termcap and gnome-terminal ceases to function in any useful way. You need a tighter dependency on libvte-common so that the proper version is installed. -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.38-rc6-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages libvte9 depends on: ii libatk1.0-0 1.32.0-2 The ATK accessibility toolkit ii libc6 2.11.2-13 Embedded GNU C Library: Shared lib ii libcairo2 1.10.2-4 The Cairo 2D vector graphics libra ii libfontconfig12.8.0-2.1 generic font configuration library ii libfreetype6 2.4.4-1FreeType 2 font engine, shared lib ii libgdk-pixbuf2.0-02.23.0-2 GDK Pixbuf library ii libglib2.0-0 2.28.1-1+b1The GLib library of C routines ii libgtk2.0-0 2.24.1-1 The GTK+ graphical user interface ii libncurses5 5.7+20100313-5 shared libraries for terminal hand ii libpango1.0-0 1.28.3-3 Layout and rendering of internatio ii libvte-common 1:0.27.5-1 Terminal emulator widget for GTK+ ii libx11-6 2:1.4.1-5 X11 client-side library libvte9 recommends no packages. libvte9 suggests no packages. -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#613478: atlas: builds using non-generic instructions in -base package
Package: atlas Version: 3.8.3-29 Severity: serious When building an *unmodified* atlas source on sid/amd64, I see command lines like the following: gcc -o ATL_xerbla.o -c -DL2SIZE=4194304 -I/tmp/atlas-3.8.3/build/atlas-base/include -I/tmp/atlas-3.8.3/build/atlas-base/../..//include -I/tmp/atlas-3.8.3/build/atlas-base/../..//include/contrib -DAdd_ -DF77_INTEGER=int -DStringSunStyle -DATL_OS_Linux -DATL_ARCH_Core2 -DATL_CPUMHZ=2000 -DATL_USE64BITS -DATL_GAS_x8664 -DWALL -DATL_NCPU=2 -fomit-frame-pointer -mfpmath=sse -msse3 -O2 -Wa,--noexecstack -fPIC -m64 /tmp/atlas-3.8.3/build/atlas-base/../..//src/auxil/ATL_xerbla.c The problem here is -msse3. Not all amd64 machines support SSE3 (in /proc/cpuinfo, pni), although mine does. A package built this way will almost certainly fail on systems that do not. Also, -DATL_ARCH_Core2 makes me nervous as well; if that enables anything that the lowest common denominator amd64 machine would not have, it will break things. And again, atlas should not need to know how fast my CPU is (-DATL_CPUMHZ); that also isn't portable. Optimization flags on amd64 should really be limited in this case to -O2 -fomit-frame-pointer. -mfpmath=sse is the default on amd64, and so is -m64. -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.37-trunk-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#611698: nodejs: conflicts with package node needlessly
Package: nodejs Version: 0.2.6-1 Severity: serious Tags: experimental It appears that nodejs in experimental has acquired a Conflicts with node. According to the changes file for that release: * Use upstream binary names for node and node-waf, conflicts with node package. (Closes: #597571) I still don't believe that is allowed by Debian Policy. Section 10.1 states: Two different packages must not install programs with different functionality but with the same filenames. (The case of two programs having the same functionality but different implementations is handled via alternatives or the Conflicts mechanism. See Section 3.9, `Maintainer Scripts' and Section 7.4, `Conflicting binary packages - `Conflicts'' respectively.) If this case happens, one of the programs must be renamed. The maintainers should report this to the `debian-devel' mailing list and try to find a consensus about which program will have to be renamed. If a consensus cannot be reached, _both_ programs must be renamed. #597571 had been marked wontfix, but then was mysteriously closed in experimental. If this isn't in contravention of Debian Policy (which is possible, I suppose), then what's been done to resolve it so it isn't should be put in README.Debian or NEWS.Debian. -- System Information: Debian Release: 6.0 APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.37-trunk-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#609243: libiconv.so.2: cannot open shared object file: No such file or directory
On Fri, Jan 07, 2011 at 11:24:08PM +0530, Ramkumar Ramachandra wrote: From an upstream script, iconv can refer to either apr-iconv or gnu-iconv: http://www.apache.org/dist/apr/apr-iconv-$(VERSION).tar.gz http://ftp.gnu.org/pub/gnu/libiconv/libiconv-$(VERSION).tar.gz If I try to fetch and compile one of these by hand, Subversion fails with yet another error (I suspect that Subversion was compiled with threading support while APR was not): You don't need to: lakeview ok % nm -D /lib/libc.so.6 | grep iconv 0001f3c0 T iconv 0001f570 T iconv_close 0001f1a0 T iconv_open iconv is built into glibc, so Debian systems come with it out of the box. The GNU libiconv is only useful for those systems that don't come with one or come with one that is very limited. There's really no reason that a Debian system should ever need a separate libiconv. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#608711: Patch for 608711
tags 608711 + patch kthxbye Attached is the diff referred to by upstream. It applies without problems and I have confirmed that applying it causes it to build successfully on kfreebsd-amd64. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff --git a/kern.c b/kern.c index f809337..9d5f51e 100644 --- a/kern.c +++ b/kern.c @@ -338,7 +338,7 @@ void k_add_vif(int socket, vifi_t vifi, struct uvif *v) /* * Delete a virtual interface in the kernel. */ -void k_del_vif(int socket, vifi_t vifi, struct uvif *v) +void k_del_vif(int socket, vifi_t vifi, struct uvif *v __attribute__((unused))) { /* * Unfortunately Linux MRT_DEL_VIF API differs a bit from the *BSD one. It @@ -350,7 +350,7 @@ void k_del_vif(int socket, vifi_t vifi, struct uvif *v) struct vifctl vc; vc.vifc_vifi = vifi; -uvif_to_vifctl(vc, v); +uvif_to_vifctl(vc, v); /* 'v' is used only on Linux systems. */ if (setsockopt(socket, IPPROTO_IP, MRT_DEL_VIF, (char *)vc, sizeof(vc)) 0) #else /* *BSD et al. */ signature.asc Description: Digital signature
Bug#608701: Patch for 608701
tags 608701 + patch kthxbye It looks like dictfmt will run just fine with mawk or other new awks, so I've used Aleksey Cheusov's suggestion and created a patch which specifies AWK=/usr/bin/awk. Running dictunformat --help now works. The patch is attached. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff -ur dictd.old/debian/rules dictd-1.11.2+dfsg//debian/rules --- dictd.old/debian/rules 2011-01-04 16:45:56.0 + +++ dictd-1.11.2+dfsg//debian/rules 2011-01-04 16:47:06.0 + @@ -58,6 +58,7 @@ dh_testdir LDFLAGS=$(LDFLAGS) \ + AWK=/usr/bin/awk \ ./configure --verbose \ --prefix=/usr \ --libexecdir=/usr/lib/dictd \ signature.asc Description: Digital signature
Bug#607978: Patch for 607978
tags 607978 + patch kthxbye This patch should fix the FTBFS on kFreeBSD. Please be aware that the issue is not (yet) fixed upstream since the upstream fix is conditional on __FreeBSD__ and not __FreeBSD_kernel__. I have sent Con Kolivas a patch to fix this as well. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff --git a/rzip.h b/rzip.h index f605f9c..3094d57 100644 --- a/rzip.h +++ b/rzip.h @@ -192,6 +191,10 @@ static inline i64 get_ram(void) } #endif +#if defined(__FreeBSD__) || defined(__FreeBSD_kernel__) + #define mremap fake_mremap +#endif + #define FLAG_SHOW_PROGRESS 2 #define FLAG_KEEP_FILES 4 #define FLAG_TEST_ONLY 8 signature.asc Description: Digital signature
Bug#607662: ncurses-base: backspace key deletes forwards on the kFreeBSD console
On Thu, Dec 23, 2010 at 05:10:28PM +0100, Sven Joachim wrote: I don't see how this follows. People having an xterm-like terminal that is not compatible with Debian's xterm terminfo entry can easily work around it by setting TERM=xterm-r6 or similar when they connect to a Debian machine. What are FreeBSD users going to do when we introduce an incompatible cons25 entry? And what should GNU/kFreeBSD users do when they connect to a non-Debian machine? If we push the new entry upstream, it will be picked up by the majority of Linux distributions, since it will go into ncurses. FreeBSD has an ncurses port and so does NetBSD. I believe it is likely that we can get the definition pushed to FreeBSD if we can convert it to termcap. If it can be converted to termcap, I'll be happy to push it to FreeBSD, NetBSD, and OpenBSD, assuming they'll accept it. I've attached the necessary patches to create the cons25-debian terminfo entry and the patch for sysvinit, which seem to work for me in a fresh kfreebsd-amd64 installation in kvm (patching /etc/inittab is necessary, though). If they're useful, great; if not, that's okay, too. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff -ur ncurses.old/debian/rules ncurses-5.7+20100313/debian/rules --- ncurses.old/debian/rules 2010-12-22 00:12:49.0 + +++ ncurses-5.7+20100313/debian/rules 2010-12-22 01:42:26.0 + @@ -114,7 +114,7 @@ v/vt220 v/vt52 x/xterm x/xterm-debian x/xterm-xfree86 x/xterm-color \ x/xterm-mono x/xterm-r5 x/xterm-r6 x/xterm-vt220 \ x/xterm-256color s/screen-256color s/screen-256color-bce \ - w/wsvt25 w/wsvt25m E/Eterm E/Eterm-color + w/wsvt25 w/wsvt25m E/Eterm E/Eterm-color c/cons25-debian # Blacklist terminfo entries shipped by other Debian packages so that we do # not begin shipping them by accident. diff -ur ncurses.old/misc/terminfo.src ncurses-5.7+20100313/misc/terminfo.src --- ncurses.old/misc/terminfo.src 2010-12-22 00:12:49.0 + +++ ncurses-5.7+20100313/misc/terminfo.src 2010-12-22 01:48:59.0 + @@ -1774,6 +1774,9 @@ cons25|ansis|ansi80x25|freebsd console (25-line ansi mode), acsc=-\030.^Y0\333`\004a\260f\370g\361h\261i\025j\331k\277l\332m\300n\305q\304t\303u\264v\301w\302x\263y\363z\362~\371, use=cons25w, +cons25-debian|freebsd console with debian backspace (25-line ansi mode), + kbs=\177, kdch1=\E[3~, + use=cons25, cons25-m|ansis-mono|ansi80x25-mono|freebsd console (25-line mono ansi mode), colors@, pairs@, bold@, dim@, op@, rmul=\E[m, setab@, setaf@, diff -ur sysvinit.old/debian/share/inittab.kfreebsd-gnu sysvinit-2.88dsf/debian/share/inittab.kfreebsd-gnu --- sysvinit.old/debian/share/inittab.kfreebsd-gnu 2010-12-22 16:27:27.0 + +++ sysvinit-2.88dsf/debian/share/inittab.kfreebsd-gnu 2010-12-22 16:28:06.0 + @@ -51,12 +51,12 @@ # Note that on most Debian systems ttyv6 is used by the X Window System, # so if you want to add more getty's go ahead but skip ttyv6 if you run X. # -1:2345:respawn:/sbin/getty 38400 ttyv0 cons25 -2:23:respawn:/sbin/getty 38400 ttyv1 cons25 -3:23:respawn:/sbin/getty 38400 ttyv2 cons25 -4:23:respawn:/sbin/getty 38400 ttyv3 cons25 -5:23:respawn:/sbin/getty 38400 ttyv4 cons25 -6:23:respawn:/sbin/getty 38400 ttyv5 cons25 +1:2345:respawn:/sbin/getty 38400 ttyv0 cons25-debian +2:23:respawn:/sbin/getty 38400 ttyv1 cons25-debian +3:23:respawn:/sbin/getty 38400 ttyv2 cons25-debian +4:23:respawn:/sbin/getty 38400 ttyv3 cons25-debian +5:23:respawn:/sbin/getty 38400 ttyv4 cons25-debian +6:23:respawn:/sbin/getty 38400 ttyv5 cons25-debian # Example how to put a getty on a serial line (for a terminal) # diff -ur sysvinit.old/src/init.c sysvinit-2.88dsf/src/init.c --- sysvinit.old/src/init.c 2010-12-22 16:27:27.0 + +++ sysvinit-2.88dsf/src/init.c 2010-12-22 16:29:02.0 + @@ -751,11 +751,11 @@ #ifdef __FreeBSD_kernel__ /* * The kernel of FreeBSD expects userland to set TERM. Usually, we want - * cons25. Later, gettys might disagree on this (i.e. we're not using - * syscons) but some boot scripts, like /etc/init.d/xserver-xorg, still - * need a non-dumb terminal. + * cons25-debian. Later, gettys might disagree on this (i.e. we're not + * using syscons) but some boot scripts, like /etc/init.d/xserver-xorg, + * still need a non-dumb terminal. */ - putenv (TERM=cons25); + putenv (TERM=cons25-debian); #endif (void) tcgetattr(fd, tty); signature.asc Description: Digital signature
Bug#528861: Help figuring out why ksh is not building
ksh is not building on mips or mipsel. From what I can see from the build logs, it looks like certain headers are not getting included or not getting included correctly, but I don't have access to a mips or mipsel machine. The maintainer has been unable to reproduce the problem under qemu. debian-mips, could one of you please look into this to see what the problem might be? -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#607737: Third revision of patch
Attached is a patch that is functionally equivalent to the last one, but fixes the comments so that there's no confusion. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff -ur libuninum.old/unicode.h libuninum-2.7/unicode.h --- libuninum.old/unicode.h 2010-12-21 21:35:42.0 + +++ libuninum-2.7/unicode.h 2010-12-21 23:57:33.0 + @@ -1,8 +1,10 @@ -typedef unsigned long UTF32; /* at least 32 bits */ -typedef unsigned short UTF16; /* at least 16 bits */ -typedef unsigned short UCS2; /* at least 16 bits */ -typedef unsigned char UTF8; /* 8 bits */ -typedef unsigned char Boolean; /* 0 or 1 */ +#include stdint.h + +typedef uint32_t UTF32; /* 32 bits */ +typedef uint16_t UTF16; /* 16 bits */ +typedef uint16_t UCS2; /* 16 bits */ +typedef uint8_t UTF8; /* 8 bits */ +typedef uint8_t Boolean; /* 0 or 1 */ #define UNI_MAX_ASCII (UTF32)0x007F #define UNI_MAX_BMP (UTF32)0x diff -ur libuninum.old/uninum.c libuninum-2.7/uninum.c --- libuninum.old/uninum.c 2010-12-21 21:35:42.0 + +++ libuninum-2.7/uninum.c 2010-12-22 00:00:14.0 + @@ -35,11 +35,11 @@ */ -#define ucslen(x) wcslen((signed long *) x) -#define ucscpy(x,y) (UTF32 *)wcscpy((signed long *)x,(signed long *)y) -#define ucscat(x,y) (UTF32 *)wcscat((signed long *)x,(signed long *)y) -#define ucschr(x,y) (UTF32 *)wcschr((signed long *)x,(signed long)y) -#define ucsrchr(x,y) (UTF32 *)wcsrchr((signed long *)x,(signed long)y) +#define ucslen(x) wcslen((wchar_t *) x) +#define ucscpy(x,y) (UTF32 *)wcscpy((wchar_t *)x,(wchar_t *)y) +#define ucscat(x,y) (UTF32 *)wcscat((wchar_t *)x,(wchar_t *)y) +#define ucschr(x,y) (UTF32 *)wcschr((wchar_t *)x,(wchar_t)y) +#define ucsrchr(x,y) (UTF32 *)wcsrchr((wchar_t *)x,(wchar_t)y) #define UNINUM signature.asc Description: Digital signature
Bug#607737: Patch for 607737
tags 607737 + patch kthxbye I can reproduce this problem on amd64. With the attached patch, the numconv example works as intended. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff -ur libuninum.old/unicode.h libuninum-2.7/unicode.h --- libuninum.old/unicode.h 2010-12-21 21:35:42.0 + +++ libuninum-2.7/unicode.h 2010-12-21 21:36:04.0 + @@ -1,4 +1,4 @@ -typedef unsigned long UTF32; /* at least 32 bits */ +typedef unsigned int UTF32; /* at least 32 bits */ typedef unsigned short UTF16; /* at least 16 bits */ typedef unsigned short UCS2; /* at least 16 bits */ typedef unsigned char UTF8; /* 8 bits */ signature.asc Description: Digital signature
Bug#607737: Patch for 607737
On Tue, Dec 21, 2010 at 11:55:34PM +0100, Jakub Wilk wrote: * brian m. carlson sand...@crustytoothpaste.net, 2010-12-21, 21:39: diff -ur libuninum.old/unicode.h libuninum-2.7/unicode.h --- libuninum.old/unicode.h 2010-12-21 21:35:42.0 + +++ libuninum-2.7/unicode.h 2010-12-21 21:36:04.0 + @@ -1,4 +1,4 @@ -typedef unsigned long UTF32; /* at least 32 bits */ +typedef unsigned intUTF32; /* at least 32 bits */ typedef unsigned short UTF16; /* at least 16 bits */ typedef unsigned short UCS2; /* at least 16 bits */ typedef unsigned charUTF8; /* 8 bits */ While I can image that this patch make things better, please note that it also breaks ABI (on 64-bit arches). So it does. Does libuninum work at all on 64-bit architectures? If not, then ABI breakage is not really relevant. Nevertheless, I'm looking to see if I can fix the problem without breaking ABI. Also, when upstream bumps the SONAME, you should probably convince them to come into the 90s and use stdint.h. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#605777: Bug#607662: ncurses-base: backspace key deletes forwards on the kFreeBSD console
On Tue, Dec 21, 2010 at 08:24:35AM +0100, Petr Salinger wrote: You really can't just unilaterally change the cons25 terminfo entry. If this proposed change is implemented, people running stock FreeBSD will have their consoles broken if they log into a Debian system. If kFreeBSD needs different settings than the stock cons25 entry, it needs to create and use a different TERM type. Yes, changing cons25 terminfo entry is no option. The creating of completely new terminfo entry is also no option, as it means the new entry would be unknown on all other systems. Moreover it would need changes to some other packages, at least sysvinit. The new entry would presumably be pushed to ncurses upstream, who has already weighed in here. I'll write the terminfo entry myself and attach it to this bug. Assuming I can test this with kvm, I'll also look at patching sysvinit and seeing what breaks. My proposed name for the terminal name is cons25-debian, but you're obviously free to change it to something more suitable. Also feel free to point me towards programs that break that I should test. Obviously, I'll be testing vim. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#607737: Patch for 607737
On Tue, Dec 21, 2010 at 11:55:34PM +0100, Jakub Wilk wrote: * brian m. carlson sand...@crustytoothpaste.net, 2010-12-21, 21:39: diff -ur libuninum.old/unicode.h libuninum-2.7/unicode.h --- libuninum.old/unicode.h 2010-12-21 21:35:42.0 + +++ libuninum-2.7/unicode.h 2010-12-21 21:36:04.0 + @@ -1,4 +1,4 @@ -typedef unsigned long UTF32; /* at least 32 bits */ +typedef unsigned intUTF32; /* at least 32 bits */ typedef unsigned short UTF16; /* at least 16 bits */ typedef unsigned short UCS2; /* at least 16 bits */ typedef unsigned charUTF8; /* 8 bits */ While I can image that this patch make things better, please note that it also breaks ABI (on 64-bit arches). Okay. I've looked, and I'm certain this has never worked on a 64-bit machine: uninum.c: In function ‘wcsrev’: uninum.c:192:3: warning: passing argument 1 of ‘wcslen’ from incompatible pointer type /usr/include/wchar.h:284:15: note: expected ‘const wchar_t *’ but argument is of type ‘long int *’ uninum.c:193:3: warning: passing argument 1 of ‘wcslen’ from incompatible pointer type /usr/include/wchar.h:284:15: note: expected ‘const wchar_t *’ but argument is of type ‘long int *’ These are just a few of the myriad warnings. sizeof(wchar_t) is 4 and sizeof(long) is 8 on 64-bit machines, so anything using these functions is going to fail. Theoretically, these functions could be patched to convert the data on-the-fly or could be manually rewritten using static functions that handle longs instead of wchar_ts, but I'm not a masochist, so I'm not going to do it. I've attached a patch that uses stdint.h to define these types so we don't have this problem again. It also fixes some areas I didn't get before. They aren't actually problems, since they're incorrect pointer casts and the wcs* functions handle them correctly, but it prevents a lot of the warning messages from above. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff -ur libuninum.old/unicode.h libuninum-2.7/unicode.h --- libuninum.old/unicode.h 2010-12-21 21:35:42.0 + +++ libuninum-2.7/unicode.h 2010-12-21 23:57:33.0 + @@ -1,8 +1,10 @@ -typedef unsigned long UTF32; /* at least 32 bits */ -typedef unsigned short UTF16; /* at least 16 bits */ -typedef unsigned short UCS2; /* at least 16 bits */ -typedef unsigned char UTF8; /* 8 bits */ -typedef unsigned char Boolean; /* 0 or 1 */ +#include stdint.h + +typedef uint32_t UTF32; /* at least 32 bits */ +typedef uint16_t UTF16; /* at least 16 bits */ +typedef uint16_t UCS2; /* at least 16 bits */ +typedef uint8_t UTF8; /* 8 bits */ +typedef uint8_t Boolean; /* 0 or 1 */ #define UNI_MAX_ASCII (UTF32)0x007F #define UNI_MAX_BMP (UTF32)0x diff -ur libuninum.old/uninum.c libuninum-2.7/uninum.c --- libuninum.old/uninum.c 2010-12-21 21:35:42.0 + +++ libuninum-2.7/uninum.c 2010-12-22 00:00:14.0 + @@ -35,11 +35,11 @@ */ -#define ucslen(x) wcslen((signed long *) x) -#define ucscpy(x,y) (UTF32 *)wcscpy((signed long *)x,(signed long *)y) -#define ucscat(x,y) (UTF32 *)wcscat((signed long *)x,(signed long *)y) -#define ucschr(x,y) (UTF32 *)wcschr((signed long *)x,(signed long)y) -#define ucsrchr(x,y) (UTF32 *)wcsrchr((signed long *)x,(signed long)y) +#define ucslen(x) wcslen((wchar_t *) x) +#define ucscpy(x,y) (UTF32 *)wcscpy((wchar_t *)x,(wchar_t *)y) +#define ucscat(x,y) (UTF32 *)wcscat((wchar_t *)x,(wchar_t *)y) +#define ucschr(x,y) (UTF32 *)wcschr((wchar_t *)x,(wchar_t)y) +#define ucsrchr(x,y) (UTF32 *)wcsrchr((wchar_t *)x,(wchar_t)y) #define UNINUM signature.asc Description: Digital signature
Bug#607662: ncurses-base: backspace key deletes forwards on the kFreeBSD console
On Mon, Dec 20, 2010 at 10:06:00PM +0100, Sven Joachim wrote: The changes to the kFreeBSD console and the kbdcontrol package (see #605065 and #605777) need to be accompanied by changing the cons25 terminfo entry accordingly, otherwise ncurses-based programs severely misbehave. You really can't just unilaterally change the cons25 terminfo entry. If this proposed change is implemented, people running stock FreeBSD will have their consoles broken if they log into a Debian system. If kFreeBSD needs different settings than the stock cons25 entry, it needs to create and use a different TERM type. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#558703: Patch doesn't seem correct
I've looked at the provided patch, and I don't think it's correct. First of all, we have vsscanf in glibc, so there's no reason that we should need to provide one. Second, if this code is built as a shared library, which I believe it is, then we've just exported a symbol by removing the static. That's bad because (a) it conflicts with glibc, which may cause linking problems and crashes, and (b) other shared libraries may use this vsscanf, which will not work if there are more than five stdarg arguments. The right way to fix this is to find out why HAVE_VSSCANF is not be defined properly. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#605868: sbox-dtc cgi has incorrect Unix rights
On Sat, Dec 04, 2010 at 04:25:22PM +0800, Thomas Goirand wrote: Package: sbox-dtc Version: 1.11.2-1 Severity: grave The file /usr/lib/cgi-bin/sbox should have the SUID bit set, as this is the way sbox works, and also, it should be owned by the root user to allow chroot in the vhost directory. The patch would be simple. Just adding this in the postinst: chmod u=+rwS /usr/lib/cgi-bin/sbox chown root.root /usr/lib/cgi-bin/sbox You probably want to use root:root here (that is, a colon instead of a dot) because POSIX mandates the use of the colon. People running with POSIXLY_CORRECT or _POSIX2_VERSION set in the environment will see the chmod invocation fail. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#606145: Patch for leafpad
tags 606145 + patch kthxbye The problem here is that when writing out the file, we use fputs. fputs only operates on C strings and stops when it reaches a NUL byte. Of course, since UTF-16 is a double-byte character set, ASCII characters are encoded with one byte being 0 (NUL). The easy solution is to use fwrite with the byte count we get from and the attached patch does so. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 diff -ur leafpad.old/src/file.c leafpad-0.8.17/src/file.c --- leafpad.old/src/file.c 2010-12-17 16:07:36.0 + +++ leafpad-0.8.17/src/file.c 2010-12-17 16:14:39.0 + @@ -228,7 +228,7 @@ GTK_MESSAGE_ERROR, _(Can't open file to write)); return -1; } - if (fputs(str, fp) == EOF) { + if (fwrite(str, 1, wbytes, fp) != wbytes) { run_dialog_message(gtk_widget_get_toplevel(view), GTK_MESSAGE_ERROR, _(Can't write file)); return -1; signature.asc Description: Digital signature
Bug#606282: Needs to link statically with libbfd
ksplice-objmanip needs to link statically with libbfd. According to the binutils-dev package description: Note that building Debian packages which depend on the shared libbfd is Not Allowed. If you build dynamically, then you'll have to do a binNMU every time the binutils package gets updated. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#550228: New cyrus 2.[34]?
On Thu, Dec 02, 2010 at 03:52:38PM +0100, Ondřej Surý wrote: cyrus-imapd-2.4 is sitting in NEW queue. Thank you very much. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#566143: Embedded copy of libasyncns0
This is to let the secure-testing team know that libloudmouth1-0 embeds a copy of libasyncns0 and this should therefore be listed in the embedded code copies file. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#550228: New cyrus 2.[34]?
Is there any movement on a new Cyrus 2.3 or 2.4 package? This bug has been open for over a year without a fix. My preference is for a cyrus-clients newer than 2.2 (since that's all I ever use of the suite), especially since that will get rid of the dependencies on Heimdal. I don't have a huge amount of time right now, but if there's something you need me to work on or test with cyrus-clients, I'm happy to do that. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#515555: ok to remove db 4.5?
Python 2.5 has been built against db 4.8. Is it okay to reassign this to ftp.debian.org for removal? -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#601386: Unreproducible
tags 601386 + unreproducible kthxbye 2.0.2-1etch1 is very old; etch was oldstable, but is not supported anymore. I cannot reproduce this bug with the version of nano currently in unstable (2.2.5-1). I do see that nano converts lines ending in CRLF to LF only, which is arguably a bug, but that's it. Can you reproduce this with a newer version (at least 2.0.7-5)? -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#598896: Confirming 598896
I can confirm this behavior. I have nearly identical hardware (ThinkPad R60 with 945GM) and see the exact same thing. I am quite certain that KMS and all the other fun bits of the DRI are working correctly. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#597151: gwibber: refuses to post to Twitter
Package: gwibber Version: 2.31.94-1 Severity: grave Gwibber refuses to post to Twitter (I don't have any other accounts). When I type in my tweet and hit send, the box clears but it never shows up either in my feed or at the Twitter website. I've included the output on the terminal below. Also, it appears that there is a gwibber-error process that is defunct: lakeview ok % ps ax |grep gwibber 26920 pts/12 Sl+0:02 /usr/bin/python /usr/bin/gwibber 26928 ?SLl0:00 /usr/bin/python /usr/bin/gwibber-service 26937 ?S 0:00 /usr/bin/python /usr/bin/gwibber-service 26938 ?S 0:00 /usr/bin/python /usr/bin/gwibber-service 26946 ?Z 0:00 [gwibber-error] defunct 27002 pts/7S+ 0:00 grep gwibber Note that when I installed 2.31.93-1, I did not install some of the recommendations (those that directly or indirectly depended on erlang). Nevertheless, it worked. I have since installed those packages. I don't know if that is relevant or not. Another behavior that I've seen is the accounts window popping up at certain times. Again, this may not be related. Terminal output: lakeview ok % gwibber ** (gwibber:26920): WARNING **: Trying to register gtype 'WnckWindowState' as enum when in fact it is of type 'GFlags' ** (gwibber:26920): WARNING **: Trying to register gtype 'WnckWindowActions' as enum when in fact it is of type 'GFlags' ** (gwibber:26920): WARNING **: Trying to register gtype 'WnckWindowMoveResizeMask' as enum when in fact it is of type 'GFlags' ERROR:dbus.proxies:Introspect error on com.Gwibber.Streams:/com/gwibber/Streams: dbus.exceptions.DBusException: org.freedesktop.DBus.Error.ServiceUnknown: The name com.Gwibber.Streams was not provided by any .service files ERROR:dbus.proxies:Introspect error on com.Gwibber.Accounts:/com/gwibber/Accounts: dbus.exceptions.DBusException: org.freedesktop.DBus.Error.ServiceUnknown: The name com.Gwibber.Accounts was not provided by any .service files ERROR:dbus.proxies:Introspect error on com.Gwibber.Searches:/com/gwibber/Searches: dbus.exceptions.DBusException: org.freedesktop.DBus.Error.ServiceUnknown: The name com.Gwibber.Searches was not provided by any .service files Position: 0 Position: 0 -- System Information: Debian Release: squeeze/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32-5-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages gwibber-service depends on: ii python 2.6.6-1 interactive high-level object-orie ii python-dbus 0.83.1-1simple interprocess messaging syst ii python-egenix-mxdatetime 3.1.3-4 date and time handling routines fo ii python-gnomekeyring 2.30.0-1+b1 Python bindings for the GNOME keyr ii python-imaging 1.1.7-2 Python Imaging Library ii python-notify0.1.1-2+b2 Python bindings for libnotify ii python-oauth 1.0.1-2 Python library implementing of the ii python-pycurl7.19.0-3+b1 Python bindings to libcurl ii python-simplejson2.1.1-1 simple, fast, extensible JSON enco ii python-support 1.0.10 automated rebuilding support for P ii python-xdg 0.19-2 Python library to access freedeskt Versions of packages gwibber-service recommends: ii desktopcouch [python-desktopc 0.6.8-1Desktop CouchDB Framework instance ii python-desktopcouch-records 0.6.6-1transitional dummy package for Des ii python-indicate 0.4.1-2Python bindings for libindicate ii python-libproxy 0.3.1-1automatic proxy configuration mana gwibber-service suggests no packages. -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#594719: fop: must depend on libxmlgraphics-commons-java 1.4 or above
Package: fop Version: 1:1.0.dfsg-2 Severity: serious fop 1.0 uses the class org.apache.xmlgraphics.util.uri.CommonURIResolver, which is only found in libxmlgraphics-commons-java 1.4 or above. Otherwise fop fails with an exception about the missing class. The dependencies should be adjusted appropriately. Transcript: lakeview ok % fop -fo /home/bmc/checkouts/website-bmc/build/writings/aoif/an-orange-in-flight.fo -pdf /tmp/aoif.pdf [warning] /usr/bin/fop: Unable to locate servlet-api in /usr/share/java Exception in thread main java.lang.NoClassDefFoundError: org/apache/xmlgraphics/util/uri/CommonURIResolver at org.apache.fop.apps.FOURIResolver.init(FOURIResolver.java:56) at org.apache.fop.apps.FopFactory.init(FopFactory.java:155) at org.apache.fop.apps.FopFactory.newInstance(FopFactory.java:177) at org.apache.fop.cli.CommandLineOptions.init(CommandLineOptions.java:121) at org.apache.fop.cli.Main.startFOP(Main.java:157) at org.apache.fop.cli.Main.main(Main.java:205) Caused by: java.lang.ClassNotFoundException: org.apache.xmlgraphics.util.uri.CommonURIResolver at java.net.URLClassLoader$1.run(URLClassLoader.java:217) at java.security.AccessController.doPrivileged(Native Method) at java.net.URLClassLoader.findClass(URLClassLoader.java:205) at java.lang.ClassLoader.loadClass(ClassLoader.java:321) at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:294) at java.lang.ClassLoader.loadClass(ClassLoader.java:266) ... 6 more -- System Information: Debian Release: squeeze/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32-5-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages fop depends on: ii default-jre-headless [jav 1:1.6-40 Standard Java or Java compatible R ii gcj-4.4-jre-headless [jav 4.4.4-10 Java runtime environment using GIJ ii gcj-4.5-jre-headless [jav 4.5.0-10 Java runtime environment using GIJ ii gcj-jre-headless [java2-r 4:4.4.4-2 Java runtime environment using GIJ ii java-wrappers 0.1.16 wrappers for java executables ii libavalon-framework-java 4.2.0-7Common framework for Java server a ii libbatik-java 1.7-6 xml.apache.org SVG Library ii libbsf-java 1:2.4.0-4 Bean Scripting Framework to suppor ii libcommons-io-java1.4-3 Common useful IO related classes ii libcommons-logging-java 1.1.1-8commmon wrapper interface for seve ii libxalan2-java2.7.1-5XSL Transformations (XSLT) process ii libxerces2-java 2.9.1-4.1 Validating XML parser for Java wit ii libxml-commons-external-j 1.3.05-2 XML Commons external code - DOM, S ii libxmlgraphics-commons-ja 1.4.dfsg-1 reusable components used by Batik ii libxp61:1.0.0.xsf1-2 X Printing Extension (Xprint) clie ii libxt61:1.0.7-1 X11 toolkit intrinsics library ii libxtst6 2:1.1.0-3 X11 Testing -- Record extension li ii openjdk-6-jre-headless [j 6b18-1.8.1-1 OpenJDK Java runtime, using Hotspo Versions of packages fop recommends: ii libsaxon-java 1:6.5.5-6 The Saxon XSLT Processor Versions of packages fop suggests: ii fop-doc 1:1.0.dfsg-2 Documentation for fop pn libservlet2.4-java none (no description available) -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature
Bug#593138: ruby1.9.1: FTBFS on sparc: test suite hangs
On Sun, Aug 15, 2010 at 10:05:08PM +0200, Lucas Nussbaum wrote: On 15/08/10 at 19:57 +, brian m. carlson wrote: On Sun, Aug 15, 2010 at 08:36:28PM +0200, Lucas Nussbaum wrote: Ruby's test suite (make test-all) hangs on sparc. I had to do a manual upload after disabling the test suite. Could you provide us with a log of the failing build? buildd.debian.org doesn't have one, and it would be helpful to know exactly where the problem occurred. I'll run a test build on my Ultra 5, but it's not SMP, so it may not trigger the bug. I'll report back. Sorry, I didn't keep it, but it was reproducible on sperger.d.o. Unfortunately, since I'm not a DD, I don't have access to the Debian buildds or porter boxes. I did a test build on my Ultra 5 and got a segfault, but no hang. I'll investigate the segfault and determine whether or not it's related; in any case, the code shouldn't segfault. -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 signature.asc Description: Digital signature