Accepted xserver-xorg-video-geode 2.11.21-3 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Thu, 28 Mar 2024 07:32:53 +0200
Source: xserver-xorg-video-geode
Architecture: source
Version: 2.11.21-3
Distribution: unstable
Urgency: medium
Maintainer: Martin-Éric Racine 
Changed-By: Martin-Éric Racine 
Closes: 1067861
Changes:
 xserver-xorg-video-geode (2.11.21-3) unstable; urgency=medium
 .
   * Switch to dpkg-source 3.0 (quilt) format (Closes: #1067861).
   * Migrate Build-Depends from pkg-config to pkgconf.
Checksums-Sha1:
 43b7c9a949795930f12ca4b5a31788f5e9bf2c95 2263 
xserver-xorg-video-geode_2.11.21-3.dsc
 3e63361efff8acf64a3add2495a26cca857ee613 18900 
xserver-xorg-video-geode_2.11.21-3.debian.tar.xz
 69212b62643bb8dc8e5911f8c7ec2d0cc85c082b 7583 
xserver-xorg-video-geode_2.11.21-3_source.buildinfo
Checksums-Sha256:
 c8fc67ce2bcf4fbe6d91001188438f35adfd2e5ca5d3946687490f6cda59ce88 2263 
xserver-xorg-video-geode_2.11.21-3.dsc
 d660b51a8d621c02b5649751f63a1b34f614743ab6f87ea253f3f4ce069ca442 18900 
xserver-xorg-video-geode_2.11.21-3.debian.tar.xz
 6e0b129a84e0f840be371daaa97413cba799b83be5dd1cec88d1de7793f1b5ae 7583 
xserver-xorg-video-geode_2.11.21-3_source.buildinfo
Files:
 073230408fb616c8ebf142f615e11a74 2263 x11 optional 
xserver-xorg-video-geode_2.11.21-3.dsc
 99d7b5bb0073f1eff4f010bf5b51c3c4 18900 x11 optional 
xserver-xorg-video-geode_2.11.21-3.debian.tar.xz
 95c98335bb47aa81cf6c8a49ede156fa 7583 x11 optional 
xserver-xorg-video-geode_2.11.21-3_source.buildinfo

-BEGIN PGP SIGNATURE-

iQHEBAEBCgAuFiEEQGIgyLhVKAI3jM5BH1x6i0VWQxQFAmYLSVYQHGJhZ2VAZGVi
aWFuLm9yZwAKCRAfXHqLRVZDFPHDDACG9az3F1wsm2jKFP3EIPrW/S8l9eLls3Hk
sGeNiucvaLDXztCle3cPPbwIFFbHOUOWEKo4YQssPuPWpilRvfIY8ZRHqo/1fkGS
6QD5gdkFl6GwhrZSJcyILXunqes4hDpC5FfDKSbQDpp9BYXKCOmccssXctNAHLHQ
03aPrt++05YrN4r2MgwIVowChMEp76WyaxpRt1MEwDkmfJZ5DQ+ExT0U/L0aXn1Q
6690is1WjEDdqiaAWcVOkX3/6kCFpTPvR33CtlUW9eiwtzf0qTFu082GSBkoDGME
L7eeevkfSt0oa7g9MIe+9I5yNxQuQDyUytouEfujoCo9ixA4fsKhHIS1GjE65EZu
dCMaQ8c/dhnu85TRa7YaaaVWaLNojpO2x5wUbCM/SL4pJR6XiK5Nnqt52DDNfHlP
nAWFkTu/PcokVPQHoGiIeqbsoGIdiMvk3uxLHItCW4l3AuhrXOR/K/CNHSOvnamn
Lgo/y8WBUNtLlGKWUURtz/Q9ls9/zvQ=
=0Tu+
-END PGP SIGNATURE-



pgpXYAmlrxmPo.pgp
Description: PGP signature

Re: Debian openssh option review: considering splitting out GSS-API key exchange

[Christoph Anton Mitterer]

Hey.

On Tue, 2024-04-02 at 01:30 +0100, Colin Watson wrote:
> All the same, I'm aware that some people now depend on having this
> facility in Debian's main openssh package: I get enough occasional
> bug
> reports to convince me that it's still in use.

Being one of those people, and having even asked for more patches to be
merged (#1053822) O:-) ... no, there was no social engineering
intended,... your approach sounds like a reasonable way to go.

Actually I think that most sites where I "need"/use GSSAPI... only
require the ticket for AFS, and do actually allow pubkey auth (but
right now, one doesn't have AFS access then).
Not sure if there's a simple out of the box way to just transfer that
but without all the other GSSAPI stuff?

Do you think it will be possible to have still only one `ssh`, `scp`,
etc. command and that will just use extra GSSAPI stuff if installed and
needed by a certain connection?


Cheers,
Chris.

Bug#1068215: ITP: python-undetected-chromedriver -- test undetected chromedrive

[Josenilson Ferreira da Silva]

Package: wnpp
Severity: wishlist
Owner: Josenilson Ferreira da Silva 
X-Debbugs-Cc: debian-devel@lists.debian.org, nilsonfsi...@hotmail.com

* Package name: python-undetected-chromedriver
  Version : 3.5.5
  Upstream Contact: UltrafunkAmsterdam 
* URL : 
https://github.com/ultrafunkamsterdam/undetected-chromedriver
* License : GPL3
  Programming Lang: Python
  Description : test undetected chromedrive

  "undetected-chromedriver" is a project that offers a solution to a common
 problem among developers working on browser test automation using Selenium
 WebDriver.
 .
 The project aims to overcome problems related to test failures when websites
 detect the use of "WebDriver. The module provides a wrapper around
 ChromeDriver (the driver for controlling the Google Chrome browser vi
 a Selenium), which implements several techniques to avoid detection and
 ensure your automated tests run without interruption.
 .
 With an easy-to-use interface, undetected-chromedriver" enables integration
 with existing automation projects, supporting a variety of platforms and
 development environments, making it a versatile tool for developers seeking
 stability and reliability in automated testing
 .
 Note: This package is a required dependency for the TeraBoxUtility
 ITP package: #1067395

Accepted ukui-biometric-auth 1.2.2.2-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Tue, 02 Apr 2024 11:46:17 +0800
Source: ukui-biometric-auth
Architecture: source
Version: 1.2.2.2-1
Distribution: unstable
Urgency: medium
Maintainer: Kylin Team 
Changed-By: handsome_feng 
Closes: 1066602
Changes:
 ukui-biometric-auth (1.2.2.2-1) unstable; urgency=medium
 .
   * Fix implicit function declaration (Closes: 1066602)
   * Update debian/wathch.
Checksums-Sha1:
 be148c5aaf17b5538454964b412cef75afd62de5 2241 ukui-biometric-auth_1.2.2.2-1.dsc
 68099ccc6577f3cc36eb79071346526e44a9c1b1 451532 
ukui-biometric-auth_1.2.2.2.orig.tar.gz
 b5f529dd008167af46a2e6f58b38e2c670847a24 2712 
ukui-biometric-auth_1.2.2.2-1.debian.tar.xz
 4bc2488b23d1a1a242d5ad4cbbd80d9f2b711fea 23416 
ukui-biometric-auth_1.2.2.2-1_source.buildinfo
Checksums-Sha256:
 c055d01688dfebd645b5dbfd94b6499b6e521864b31c244a4a8082b87a08b548 2241 
ukui-biometric-auth_1.2.2.2-1.dsc
 b4323ad0f22bdfb5f6f05a35a3242d3cddb4a94f43c406527f7f964329c863a0 451532 
ukui-biometric-auth_1.2.2.2.orig.tar.gz
 b00cb4ee40eeec5c4c06df12cf39db2424088810a0d738a5d685eb47a281 2712 
ukui-biometric-auth_1.2.2.2-1.debian.tar.xz
 808b71e6fa2b4567f36e7e921034a39b4f1e457e02e3344044225cb37f370105 23416 
ukui-biometric-auth_1.2.2.2-1_source.buildinfo
Files:
 669877466e72c651b430432a5101ac0f 2241 admin optional 
ukui-biometric-auth_1.2.2.2-1.dsc
 e5c1e23de985571979c3a65682d23cc6 451532 admin optional 
ukui-biometric-auth_1.2.2.2.orig.tar.gz
 a93bc15c85c6bde7bf07d4b15d632744 2712 admin optional 
ukui-biometric-auth_1.2.2.2-1.debian.tar.xz
 d13da9dd368a4e9490a48f5fd792aec9 23416 admin optional 
ukui-biometric-auth_1.2.2.2-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=+Aov
-END PGP SIGNATURE-



pgpQB6EmCZqPS.pgp
Description: PGP signature

Bug#1068212: ITP: python-grpcio-status -- Status proto mapping for gRPC

[Yogeswaran Umasankar]

Package: wnpp
Severity: wishlist
Owner: Yogeswaran Umasankar 
X-Debbugs-Cc: debian-devel@lists.debian.org, kd8...@gmail.com

* Package name: python-grpcio-status
  Version : 1.62.1
  Upstream Contact: The gRPC Authors 
* URL : https://github.com/OctopusAI/grpcio-status
* License : Apache-2.0
  Programming Lang: Python
  Description : Status proto mapping for gRPC

gRPC Python Status Proto is a reference package for GRPC Python
 status proto mapping. Planned to maintain it under DPT, and need
 a sponsor.

Accepted inn2 2.7.2~20240325-3 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Tue, 02 Apr 2024 01:17:02 +0200
Source: inn2
Architecture: source
Version: 2.7.2~20240325-3
Distribution: unstable
Urgency: medium
Maintainer: Marco d'Itri 
Changed-By: Marco d'Itri 
Changes:
 inn2 (2.7.2~20240325-3) unstable; urgency=medium
 .
   * Keep improving the autopkgtest.
Checksums-Sha1:
 56801ce7ba2b915d0ac695ff8fbe7d60b0c0b8f6 1630 inn2_2.7.2~20240325-3.dsc
 db5457a91ca05b6206e714eab23f0d986c462bb5 36848 
inn2_2.7.2~20240325-3.debian.tar.xz
 a29e4ea06e021a80950d871c49e7a3da5f75ee6e 8339 
inn2_2.7.2~20240325-3_amd64.buildinfo
Checksums-Sha256:
 e9bde658e0c92a30f99b6c4a5cd319ba61ab942f2fd6189a892810540663bb8d 1630 
inn2_2.7.2~20240325-3.dsc
 bc37beec40e8a9909263888a59053da5ff95c242e9e53538660ed9249b7b 36848 
inn2_2.7.2~20240325-3.debian.tar.xz
 792abfac26e1a052c94261a6c3b66a7e83823cc8f15c51d54c7a147c5df84c53 8339 
inn2_2.7.2~20240325-3_amd64.buildinfo
Files:
 e74ec6af469ab5f030efda842eae3e56 1630 news optional inn2_2.7.2~20240325-3.dsc
 24e362a6ab129379eab023bb896af4af 36848 news optional 
inn2_2.7.2~20240325-3.debian.tar.xz
 24cbe156de6f5872b4f781b73586fb8c 8339 news optional 
inn2_2.7.2~20240325-3_amd64.buildinfo

-BEGIN PGP SIGNATURE-

iHUEARYIAB0WIQQnKUXNg20437dCfobLPsM64d7XgQUCZgtBDQAKCRDLPsM64d7X
gQLyAP97+7TM0XBX8oBwK9FgroqD89c8j9p3BPPs7yMrjJGRJgEAv1s/7Jh1sNcZ
qUk9lqr50zCZeYNSXVWq0Nw3UAEyQAY=
=HJ1n
-END PGP SIGNATURE-



pgppHQiATuG3q.pgp
Description: PGP signature

Debian openssh option review: considering splitting out GSS-API key exchange

[Colin Watson]

[I've CCed openssh-unix-dev for awareness, but set Mail-Followup-To to
just debian-devel and debian-ssh to avoid potentially spamming them with
a long discussion.  If you choose to override this then that's your
call, but please be mindful of upstream's time.]

Following the xz-utils backdoor, I'm reconsidering some choices in
Debian's OpenSSH packaging.  Please note that significant rearchitecture
of the upstream code is out of scope for the Debian packaging, so I'm
going to disregard comments of the form "maybe there should be a module
loader so all these things can just be plug-ins" or other such blue-sky
things; from my point of view this is just about configuring things a
bit more wisely within more or less our current constraints.


libsystemd
==

This is the obvious thing on everyone's mind right now.  At the time I
merged that patch, "not NIHing code that's in a perfectly good library"
seemed like a reasonable trade-off, but we do seem to have ended up on
the wrong side of history on this one.  There's work in progress to land
readiness protocol notification upstream without libsystemd (thanks
Damien and Luca!), and I expect to cherry-pick this into Debian once
it's agreed, so we'll get rid of that linkage and reduce our patch load
a bit.

We also have a patch from Ubuntu to support the systemd socket
activation protocol.  I've rewritten this to avoid using libsystemd, and
I'll submit it upstream once the readiness notification work is sorted
out.  But it's not particularly invasive once the libsystemd linkage is
removed, so it's not the end of the world if this ends up staying in our
patch queue.


GSS-API key exchange


Way back in 2005, I merged the GSS-API key exchange patch into Debian's
main openssh package (https://bugs.debian.org/275472).  At the time it
seemed like a sensible overall reduction in maintenance burden (if I
remember correctly, the openssh-krb5 package often ended up lagging a
fair bit behind openssh).  While the patch is fairly large, it hasn't
generally been too hard to forward-port to newer versions of OpenSSH,
and Fedora carries it too so there's some sharing of work.

However, OpenSSH upstream has long rejected it, mainly on the basis that
they don't like adding new pre-authentication attack surface, and this
week seems like a good one to reconsider what patches we're shipping by
default.  gssapi.patch is the largest patch in our openssh package by an
order of magnitude, and easily the most intrusive in terms of complexity
and exposure, so I've somewhat regretted my choice to merge it a few
times over the years.

All the same, I'm aware that some people now depend on having this
facility in Debian's main openssh package: I get enough occasional bug
reports to convince me that it's still in use.  So, if I decide to split
it back out, I'd want to arrange for a somewhat graceful transition.
We've had it for nearly 20 years now, so we can take the time to do a
proper job that at least tries not to leave users in the lurch.

How does this rough plan sound?

 * for Debian trixie (current testing):

   * add dependency-only packages called something like
 openssh-client-gsskex and openssh-server-gsskex, depending on their
 non-gsskex alternatives
   * add NEWS.Debian entry saying that people need to install these
 packages if they want to retain GSS-API key exchange support
   * add release note saying the same

 * for Debian trixie+1 (or maybe after the next Ubuntu LTS, depending on
   exact timings):

   * add separate openssh-gsskex source package, carrying gssapi.patch
 in addition to whatever's in openssh, and whose binary packages
 Conflicts/Replaces/Provides the corresponding ones from openssh
   * add some kind of regular CI to warn about openssh-gsskex being out
 of date relative to openssh
   * drop gssapi.patch from openssh, except for small patches to
 configuration file handling to accept the relevant options with
 some kind of informative warning (compare
 https://bugs.debian.org/152657)

I guess we should decide whether the separate packages are to be needed
for GSS-API authentication as well as key exchange, because that affects
the choice of dependency-only package names in trixie.  If we only split
out gssapi.patch (for key exchange; sorry about the slightly misleading
name) but kept --with-kerberos5 (which also controls authentication),
then we'd significantly reduce our patch load but not sshd's linkage.

I've seen the suggestion of using libgssglue here
(https://fosstodon.org/@jas/112194876950058188).  That might be a good
idea and I have no particular objection to it, though I also don't know
much about it and it would probably be better if an expert did the work.
Perhaps it would make continuing to build the default variant using
--with-kerberos5 more palatable, since then the extra non-trivial
linkage would only affect people who turn on those options.


TCP wrappers


We carry a 

Re: Debian openssh option review: considering splitting out GSS-API key exchange

[Russ Allbery]

Christoph Anton Mitterer  writes:

> Actually I think that most sites where I "need"/use GSSAPI... only
> require the ticket for AFS, and do actually allow pubkey auth (but
> right now, one doesn't have AFS access then).

In past discussions of this patch, this has not been the case.  One of the
advantages of GSSAPI key exchange is that you can disable public keys for
all of your hosts and never manage known hosts, instead only using the
system Kerberos keytabs.  Since in a Kerberos environment you have to put
keytabs on every host *anyway*, and that *is* the host's identity in a
Kerberos environment, this reduces the number of key infrastructures you
have to manage by one, which matters to some Kerberos deployments.  This
arguably gives you better security in that specific environment because
keytabs do not rely on leap-of-faith initial authentication; the server is
always properly authenticated, even on first connect.

> Not sure if there's a simple out of the box way to just transfer that
> but without all the other GSSAPI stuff?

If you want your ticket to refresh remotely when you refresh it locally,
which is often needed for Kerberos applications like AFS, you do need key
exchange, since that's the mechanism that allows that to happen.

(I use both GSSAPI and tcpwrappers, so Colin's proposal would mean more
work for me, but given the situation, I'm willing to rework the way that I
use ssh to avoid both going forward.  More features are nice, but I can
see the merits of simplicity here.  But I no longer maintain a large
infrastructure built on Kerberos, so I'm not putting as much weight on the
GSSAPI support as I used to.)

-- 
Russ Allbery (r...@debian.org)  

Accepted armci-mpi 0.3.1~beta-7.1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Sat, 30 Mar 2024 23:17:18 +0100
Source: armci-mpi
Architecture: source
Version: 0.3.1~beta-7.1
Distribution: unstable
Urgency: medium
Maintainer: Debian Science Maintainers 

Changed-By: Samuel Thibault 
Closes: 1066227
Changes:
 armci-mpi (0.3.1~beta-7.1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * patches/fix-test.patch: Fix test_mpi_indexed_gets.c test and strengthen
 the others. Closes: #1066227.
   * patches/ftbfs.patch: Fix build with qa=+bug-implicit-func.
Checksums-Sha1:
 5e35564313bb23c5476ec0d4b29901eaf130a334 2244 armci-mpi_0.3.1~beta-7.1.dsc
 1145e58b76c9764087f83b92ba005e3cc9ac70b7 8892 
armci-mpi_0.3.1~beta-7.1.debian.tar.xz
 bf18015b7a8a7c0772eef3193e2d0bce2599aa7c 11951 
armci-mpi_0.3.1~beta-7.1_source.buildinfo
Checksums-Sha256:
 9d2330711c3481d4043b9bb3fc07b66ea47a3bee29dab277a8fbf676d7b6e0e7 2244 
armci-mpi_0.3.1~beta-7.1.dsc
 247c38caf64c2d1d8cabce01fa5bf5beee937e1a4ff7a060b6159430427a3574 8892 
armci-mpi_0.3.1~beta-7.1.debian.tar.xz
 64a502dc4e3fde9d9a09b2b2b0c513572ac239cfcb478de42d263c1d96015388 11951 
armci-mpi_0.3.1~beta-7.1_source.buildinfo
Files:
 0bb83bd43d5b30887e18613c1703f92f 2244 science optional 
armci-mpi_0.3.1~beta-7.1.dsc
 aaa0eef607ab0c4f19e65f08985d351f 8892 science optional 
armci-mpi_0.3.1~beta-7.1.debian.tar.xz
 cf0d47321223cb28ef91232a8f063763 11951 science optional 
armci-mpi_0.3.1~beta-7.1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=QHNo
-END PGP SIGNATURE-



pgp3uKvzh9rXm.pgp
Description: PGP signature

Accepted php-mock 2.5.0-1 (source) into experimental

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 19:56:47 -0400
Source: php-mock
Architecture: source
Version: 2.5.0-1
Distribution: experimental
Urgency: medium
Maintainer: Debian PHP PEAR Maintainers 
Changed-By: James Valleroy 
Closes: 1039799
Changes:
 php-mock (2.5.0-1) experimental; urgency=medium
 .
   * New upstream version 2.5.0 (Closes: #1039799)
   * Follow policy 4.6.2
   * Update copyright years
   * Add class alias to autoload template
Checksums-Sha1:
 e627b8a66533a05207715b933087fab32cf55995 2038 php-mock_2.5.0-1.dsc
 fc4d8032cc0f29f28b1733642649f2860f6bfe82 17928 php-mock_2.5.0.orig.tar.xz
 8a103cb99d57e19a6df8adec3fb3d6069180c1f6 2816 php-mock_2.5.0-1.debian.tar.xz
 0eb03bdead440d44606464d4c298f3ed051e6059 7679 php-mock_2.5.0-1_amd64.buildinfo
Checksums-Sha256:
 b33f9df74a6566541f2d3f83aa48d8c666b4f380f5459d70191cb662b11dc84d 2038 
php-mock_2.5.0-1.dsc
 c987793ee748582ed1fc4bd16067e7b5d994f7a9d7002c4e6e3802e3f4b7fabb 17928 
php-mock_2.5.0.orig.tar.xz
 b8f7b77fed9d5c4bff742e3069054918433c3da13ad96e9465fccd6e2f227d04 2816 
php-mock_2.5.0-1.debian.tar.xz
 032e3b720b9e399969d9933e025c2520916b248b714dcec2afa7829ace39a1ae 7679 
php-mock_2.5.0-1_amd64.buildinfo
Files:
 c16daaddce99806b5f3e8c07d637345f 2038 php optional php-mock_2.5.0-1.dsc
 35e122bd9ae056f2aaf132983e84b2e5 17928 php optional php-mock_2.5.0.orig.tar.xz
 97ba4c1f4e90ed44132408bf12d1d8d8 2816 php optional 
php-mock_2.5.0-1.debian.tar.xz
 d216190961d8fe98262a2715640f800f 7679 php optional 
php-mock_2.5.0-1_amd64.buildinfo

-BEGIN PGP SIGNATURE-
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=ZU4R
-END PGP SIGNATURE-



pgpkNSaoc5ZbU.pgp
Description: PGP signature

Accepted xcffib 1.5.0-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 23:49:33 +0200
Source: xcffib
Architecture: source
Version: 1.5.0-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Python Team 
Changed-By: Alexandre Detiste 
Closes: 1052375 1054820
Changes:
 xcffib (1.5.0-1) unstable; urgency=medium
 .
   * Team Upload.
   * New upstream version 1.5.0 (Closes: #1052375, #1054820)
   * remove obsolete dependency on python3-six
   * replace obsolete dependency pkg-config -> pkgconf
   * use new dh-sequence-python3
   * refresh patches
   * nose2 has been replaced by pytest
Checksums-Sha1:
 161b2a51a5883aae2dd99a67bbfde6e4dfea33fc 2484 xcffib_1.5.0-1.dsc
 0d40f29c54ded4e3a01ea00451a8b36f24499104 52834 xcffib_1.5.0.orig.tar.gz
 8079f3d6d034cc8d72232c86cf5b1fc26da4e4b0 5340 xcffib_1.5.0-1.debian.tar.xz
 da7bf8e237b134fdde5fd516c512c11b2a1dea4a 12089 xcffib_1.5.0-1_source.buildinfo
Checksums-Sha256:
 ac877b9151a89ed415ccb2da9a5f0c8148f5025a870546305c8a2c593409dc92 2484 
xcffib_1.5.0-1.dsc
 3bf9ce88b8a343a12eb1fc72a7b3e6091f8b65e682354510261b0a2cae1b00c5 52834 
xcffib_1.5.0.orig.tar.gz
 8b62ecbbfcb9e34193eb35f4c2610f6e35d0b46337b7ec6499345f9b3b898314 5340 
xcffib_1.5.0-1.debian.tar.xz
 5adf737931fd3d1189735cf565f933e99bbd91b31e141ed50f6bbebf1d52a6ae 12089 
xcffib_1.5.0-1_source.buildinfo
Files:
 8142a59ba8db0a863604e54a97d7d6ad 2484 python optional xcffib_1.5.0-1.dsc
 4e7b0075822c88e5523b5232202ce113 52834 python optional xcffib_1.5.0.orig.tar.gz
 44aa15217ab1eeac6685e145c814aaf0 5340 python optional 
xcffib_1.5.0-1.debian.tar.xz
 1784ead4458ff0fc288d5fbc0ffd0b0a 12089 python optional 
xcffib_1.5.0-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=uZGC
-END PGP SIGNATURE-



pgpGkkewwoF0L.pgp
Description: PGP signature

Accepted sigrok-firmware-fx2lafw 0.1.7-3 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 22:46:52 +0100
Source: sigrok-firmware-fx2lafw
Architecture: source
Version: 0.1.7-3
Distribution: unstable
Urgency: medium
Maintainer: Debian Electronics Packaging Team 

Changed-By: Jonathan McDowell 
Changes:
 sigrok-firmware-fx2lafw (0.1.7-3) unstable; urgency=medium
 .
   * Backport Intrustar ISDS205B + Hantek PSO2020 support from upstream git
   * Mark binary package as Multi-Arch: foreign
   * Set Rules-Requires-Root to no
   * DEP-3 tag sdcc compilation patches as being from upstream
   * Fix homepage URL to be https
   * Bump Standards-Version to 4.6.2
Checksums-Sha1:
 a96a1d41ef7a124b38c1dc59729dfafb48af47be 1524 
sigrok-firmware-fx2lafw_0.1.7-3.dsc
 a18274fb2e643c292262a3e6f324188838963f51 12912 
sigrok-firmware-fx2lafw_0.1.7-3.debian.tar.xz
 5d864d6d85d7a537c7acdd0262b7e859c71fc900 5668 
sigrok-firmware-fx2lafw_0.1.7-3_amd64.buildinfo
Checksums-Sha256:
 b91d41aa87f5960dbe502e1b6b7f981e091d09f81333eae70ed11ec398ff24d3 1524 
sigrok-firmware-fx2lafw_0.1.7-3.dsc
 62d9b782ed30cc575a80c680aa5e8c99dc80ee3fbbedbd66c3b5b4bf2b38c7bd 12912 
sigrok-firmware-fx2lafw_0.1.7-3.debian.tar.xz
 cfcec76b87819058f5a80f6f4dab686a73eba64877a409e32ec6ea8d08ecbccc 5668 
sigrok-firmware-fx2lafw_0.1.7-3_amd64.buildinfo
Files:
 387444c3a64524de031097aab49a7739 1524 electronics optional 
sigrok-firmware-fx2lafw_0.1.7-3.dsc
 479eccd7558145a21731d6ff0fa443d2 12912 electronics optional 
sigrok-firmware-fx2lafw_0.1.7-3.debian.tar.xz
 4da68fb2d685866189d29ee791adc70f 5668 electronics optional 
sigrok-firmware-fx2lafw_0.1.7-3_amd64.buildinfo

-BEGIN PGP SIGNATURE-

iHUEARYKAB0WIQSAYP1ALvrBQa1odmMPwJuF4mk8PAUCZgsrpAAKCRAPwJuF4mk8
PJW2AP4t/YHA9iCxHJ4/b+5MOpYc1CEMUrE8q1HUMnc9BDtfeAEApRi1MX5Zwfe7
UEDTQawgQlNBtmMf+eV/f/OjTHetoQM=
=NUhW
-END PGP SIGNATURE-



pgpAciSQEL2Lq.pgp
Description: PGP signature

Accepted abseil 20230802.1-4 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 17:50:22 -0400
Source: abseil
Architecture: source
Version: 20230802.1-4
Distribution: unstable
Urgency: medium
Maintainer: Benjamin Barenblat 
Changed-By: Benjamin Barenblat 
Changes:
 abseil (20230802.1-4) unstable; urgency=medium
 .
   * Add extra build dependencies to prevent premature migration (see
 https://bugs.debian.org/1059535#39) and to ensure tests have access to
 tzdata.
Checksums-Sha1:
 6097e2609319d41a88b11795ca7fc8b600d81b89 2493 abseil_20230802.1-4.dsc
 faba975c3c7963965a3588b08a4b6d71f06b0e99 9804 abseil_20230802.1-4.debian.tar.xz
 bbee9432dfbaa80fc9ee561a1fc1fabcb118d9df 7916 
abseil_20230802.1-4_amd64.buildinfo
Checksums-Sha256:
 efd02fc6737fea3f89bafb99960ddd709426226170e5532778886b62f39579d2 2493 
abseil_20230802.1-4.dsc
 a2d5c14bae020dd6aedf248c07477e38ce440d8498d19aec5fd3d2d527128f4e 9804 
abseil_20230802.1-4.debian.tar.xz
 85da35161d54beb9089bf96dfdc30f891ff56bd7ff36abf5209a2ff9fa37bc74 7916 
abseil_20230802.1-4_amd64.buildinfo
Files:
 bdd4fe7fba3cbeeb9b6a381c4f38a58d 2493 libs optional abseil_20230802.1-4.dsc
 6e39a33d71c3fe4060a23b003250bfac 9804 libs optional 
abseil_20230802.1-4.debian.tar.xz
 be1561692be09b9d3d95fbf86a2f495b 7916 libs optional 
abseil_20230802.1-4_amd64.buildinfo

-BEGIN PGP SIGNATURE-
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=JgwZ
-END PGP SIGNATURE-



pgpglL_OfI2WF.pgp
Description: PGP signature

Accepted golang-github-korandiz-v4l 1.1.0-2 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Sun, 31 Mar 2024 20:48:11 +0800
Source: golang-github-korandiz-v4l
Architecture: source
Version: 1.1.0-2
Distribution: unstable
Urgency: medium
Maintainer: Debian Go Packaging Team 
Changed-By: Maytham Alsudany 
Changes:
 golang-github-korandiz-v4l (1.1.0-2) unstable; urgency=medium
 .
   * Generate arch-specific files to support other Debian archs
   * d/control: change from Arch: all to Arch: any
Checksums-Sha1:
 26a8c8e6554dc4fdaf5d82811b75be0e52571a9d 2214 
golang-github-korandiz-v4l_1.1.0-2.dsc
 801d7eb4d1586c467d40331c652ce5481a8c827d 2232 
golang-github-korandiz-v4l_1.1.0-2.debian.tar.xz
 8d8d768c64f316955835e37fd6cd1262c957dfce 7457 
golang-github-korandiz-v4l_1.1.0-2_source.buildinfo
Checksums-Sha256:
 ed9c9b3bb00afef4f5878083d27626117fb2c75031f64b82d72888a6db41019e 2214 
golang-github-korandiz-v4l_1.1.0-2.dsc
 b1216436eb75e1a0dac81e8f5ae7bf611701ab3d6cd0d453fc9c5f830465e916 2232 
golang-github-korandiz-v4l_1.1.0-2.debian.tar.xz
 9de6f7432a30f3dd3e627006e6a097e64189a79447c6778fdabc40df3700bac3 7457 
golang-github-korandiz-v4l_1.1.0-2_source.buildinfo
Files:
 2e7e1568490b232f8faf521683823657 2214 golang optional 
golang-github-korandiz-v4l_1.1.0-2.dsc
 93f9e407691959a7adbbdc6c2299af2d 2232 golang optional 
golang-github-korandiz-v4l_1.1.0-2.debian.tar.xz
 9033f361c05b55c5e6636de255bf6b86 7457 golang optional 
golang-github-korandiz-v4l_1.1.0-2_source.buildinfo

-BEGIN PGP SIGNATURE-

iQIzBAEBCAAdFiEEtgob82PcExn/Co6JEWhSvN91FcAFAmYLMGoACgkQEWhSvN91
FcB6KA//U0agh6uFX3FFYLB/rsgkyffJRjP+liJh3LKZL22YSkRhj3BxVGv7IO6g
YhEeL6QBWe0bmK1vStDt7E2x8kPXeRdyLSH+0hyv7oSsw5CMS1QbyWpHZnHojZ31
/mhT84YdFkAdQvfUXSwgU1lHPY33WNatWfZKFIuXh2/gNDH7MYMMMtLtLZMiq4ly
ONDcTsx/uMWUh0HDspDtRA53+gv7RDWVzBso/COMbVBkrwmh99i/YQpqkmWqMvwh
LVA7d5cix8F2mFwpBmXwS4qwry14ptOlmR5WTugudnYFdmHBB/LP6GTFeLXQbgrc
G+ROlA1nuXSABIL+blboVxAyHZDlf23RSTvtbLQDXWqboIv7RvUH5oCs0umW0bkk
3dk1R4MJI9LYA60bqu9xZbjEVOHiRgN/MxFCNUjI2YfXn04jSNutVq6s1eV9EbHg
7MesGdlgS5exA69F6VntWBxx261C5AkpdmXr+LmP92/eEwm92GeddB5TaIrqVvRS
nCuQjicjK4fOSmGN7g0mhF91Ec6ftwRYsm6z+bzpFURAnRAwyYXxofEisugJg8m5
cme2qzxmJ7Po8SaiSUMSP6DwYlzRohDLnR7Gh8YwYFjoWregwJzb0vPqqDIs2GxF
D5vMsPjVYVm3nmHEKEfHYQ+tejJcvxBvHwfjmTrmDx+9CnkLH4E=
=8PoP
-END PGP SIGNATURE-



pgp0MUawJvG58.pgp
Description: PGP signature

Accepted eo-spell 3.7-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 01 Apr 2024 23:38:30 +0200
Source: eo-spell
Architecture: source
Version: 3.7-1
Distribution: unstable
Urgency: medium
Maintainer: Agustin Martin Domingo 
Changed-By: Agustin Martin Domingo 
Changes:
 eo-spell (3.7-1) unstable; urgency=medium
 .
   * New upstream version.
   * Upgrade Debian package for upstream 3.7 version.
   * rules: Use ispell to create Esperanto wordlist.
Checksums-Sha1:
 fea6c1ca1f8fb081396f1ed5126044a89ef94a4e 2168 eo-spell_3.7-1.dsc
 52901283e0958d54175d363900e9189eae8f4368 173428 eo-spell_3.7.orig.tar.bz2
 df94af8fd8d43a7ba4bc5d972da7ff86a7e1708b 11708 eo-spell_3.7-1.debian.tar.xz
 1620dfc2582e05e275a03ff118e8ad0b1b3b18ef 7424 eo-spell_3.7-1_amd64.buildinfo
Checksums-Sha256:
 f8bc69a625c486d0fe286573c1c812697b28054b46fae7a1fce474b0d2f053ad 2168 
eo-spell_3.7-1.dsc
 b0977b4856d4a9b4adde359056b65d5133a8c0c59d58b7100dab663eed927f58 173428 
eo-spell_3.7.orig.tar.bz2
 4a35f2fa9f81e332da81773ae34ebaab135c0ea86ca3092e9dcae06fd27d860d 11708 
eo-spell_3.7-1.debian.tar.xz
 e8c29a7fd9490377bcfd6ab107a23ce4d7a6d48a907f7578ce3edb8fd56a92df 7424 
eo-spell_3.7-1_amd64.buildinfo
Files:
 db901b283e2f8e5a10a075c9316c5bd6 2168 text optional eo-spell_3.7-1.dsc
 4c2e8602b3aaddf12feba85456db7213 173428 text optional eo-spell_3.7.orig.tar.bz2
 3a71664236ec95d9affb4133d04a4603 11708 text optional 
eo-spell_3.7-1.debian.tar.xz
 20a166fbd926f8a75f2b2dd1eec0b889 7424 text optional 
eo-spell_3.7-1_amd64.buildinfo

-BEGIN PGP SIGNATURE-
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=XfpU
-END PGP SIGNATURE-



pgpxvFarolWRw.pgp
Description: PGP signature

Re: Debian openssh option review: considering splitting out GSS-API key exchange

[Sirius]

In days of yore (Tue, 02 Apr 2024), Colin Watson thus quoth: 
> TCP wrappers
> 

Not used hosts.{allow,deny} for the last 17 years (since I started my
current employment) so I am biased. Honest opinion is that firewall and
fail2ban have pretty much obsoleted TCP wrappers.

> SELinux
> ===
> 
> For the time being my inclination is to leave this be, but I've seen the
> suggestion that pam_selinux is basically all you need
> (https://infosec.exchange/@alwayscurious/112192949171400643), so maybe
> it would be an option to drop --with-selinux in favour of that?  I've
> never used SELinux, so I'd need an expert to weigh on here.

If you need an expert on SELinux, you need Dan Walsh.

I have used SELinux for the last 17 years, from when it was a monolithic
policy to what it is like today in RHEL. SELinux is - as far as I know -
not an issue and have a fail-close rather than fail-open approach. IMHO,
if it is not used and you have the time to spare to drop it, do, otherwise
it should be safe with the status-quo on this.

And should Debian pick SELinux up fully and enable a targeted policy,
well, you will want this anyway.

-- 
Kind regards,

/S

Re: Debian openssh option review: considering splitting out GSS-API key exchange

[Howard Chu]

Damien Miller wrote:
> Another thing we're considering in OpenSSH is changing how we integrate
> with PAM. PAM's API demands loading modules into the authenticating
> process' address space, but obviously we've just been reminded that this
> is risky.

This was a long-standing problem with pam/nss-ldap, which we solved by moving 
all of the
actual libldap invocations to a separate nslcd process, and only communicated 
to it
across a unix domain socket via stubs in the pam/nss modules. Mixing instances 
of libraries
that applications call directly, with instances loaded implicitly by 
system-level mechanisms,
was always a bad idea and caused endless problems, even without malicious 
attackers.

> I think that I would prefer to move to a model where there PAM auth and
> account modules run in a helper process, and only the session module
> runs in the unprivileged post-auth sshd process.

We could probably generalize the stub wrapping that we used for nss/pam-ldapd / 
nslcd to
be a generic interface to a standalone pamd that actually loads the pam 
modules. Should
be a simple job.

> This means that PAM auth/account modules and their transitive library
> dependencies cannot affect the sshd address space. They would still
> likely need to run with privilege, could still fail permissively in
> unwanted situations and might still be able to cause problems directly
> (e.g. opening a reverse shell from the PAM module itself), but they
> would no longer have direct access to the contents of sshd network
> traffic, signatures, etc that are extremely useful in building NOBUS
> (https://en.wikipedia.org/wiki/NOBUS) backdoors like the xv one.
> 
> Where this gets challenging is that some PAM modules make assumptions
> that the auth, account and session modules all run in the same address
> space. These would break until re-architected to pass things explicitly,
> e.g. via environment variables, temp files, etc.

-- 
  -- Howard Chu
  CTO, Symas Corp.   http://www.symas.com
  Director, Highland Sun http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/

Accepted schedule 1.2.1-0.1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Tue, 02 Apr 2024 00:41:57 +0200
Source: schedule
Architecture: source
Version: 1.2.1-0.1
Distribution: unstable
Urgency: medium
Maintainer: Donncha O'Cearbhaill 
Changed-By: Alexandre Detiste 
Changes:
 schedule (1.2.1-0.1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * New upstream version 1.2.1
   * remove patch applied upstream
   * modernize gbp.conf
   * use new dh-sequence-python3
Checksums-Sha1:
 75356a9dbc52abfd3a72087db54ea2a45ceef3f1 2043 schedule_1.2.1-0.1.dsc
 f3b758bdc3873dd33d1fd9601e7fbcf01ab11b98 20251 schedule_1.2.1.orig.tar.gz
 64bbe1a77ec7c0c2e8cbd4bf504192cd251324d8 2540 schedule_1.2.1-0.1.debian.tar.xz
 bbffc1be5dcdf697810105e5636fb53accb737e3 7349 
schedule_1.2.1-0.1_source.buildinfo
Checksums-Sha256:
 6edfcf621d2dad387859d9fc147f4f3673b7848de502607e2bdf67d8c7bd1800 2043 
schedule_1.2.1-0.1.dsc
 843bc0538b99c93f02b8b50e3e39886c06f2d003b24f48e1aa4cadfa3f341279 20251 
schedule_1.2.1.orig.tar.gz
 9d41d2f9dea4927fa844111722daba4a58a8c19ab82dd0e54eed889bec5bff0d 2540 
schedule_1.2.1-0.1.debian.tar.xz
 0b2b430da5ab49692f5f3c1777d23441b9419a52e448697ae3f5835e2250c0d3 7349 
schedule_1.2.1-0.1_source.buildinfo
Files:
 f49fc213962e4ededec0a60eb50b234e 2043 python optional schedule_1.2.1-0.1.dsc
 ecb436a797e1a149bac4643330b268ca 20251 python optional 
schedule_1.2.1.orig.tar.gz
 8d555d140eaa3ed193412d4e0a5de237 2540 python optional 
schedule_1.2.1-0.1.debian.tar.xz
 0ae2bc24206b482c8b73bc1d49406249 7349 python optional 
schedule_1.2.1-0.1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=has3
-END PGP SIGNATURE-



pgpSkxsECr_Dk.pgp
Description: PGP signature

Re: Debian openssh option review: considering splitting out GSS-API key exchange

[Damien Miller]

On Tue, 2 Apr 2024, Colin Watson wrote:

[I'm not subscribed to the debian-* lists, please Cc me in replies if
you want me to see them]

> [I've CCed openssh-unix-dev for awareness, but set Mail-Followup-To to
> just debian-devel and debian-ssh to avoid potentially spamming them
> with a long discussion. If you choose to override this then that's
> your call, but please be mindful of upstream's time.]

Thanks Colin for considering how to reduce dependency chains for sshd.
I just remembered that this is not the first time that sshd has been
attacked via a transitive library dependency - it has happened before,
about 10 years ago:

https://www.welivesecurity.com/2014/02/21/an-in-depth-analysis-of-linuxebury/

Attacks like these are impossible for sshd to defend against itself.
Instead we have to look to minimising the number of libraries that end
up in sshd's address space, especially that of the privileged sshd
process.

We are currently exploring splitting sshd into separate binaries for
the listener, privileged monitor, pre- and post-auth network-facing
processes so that each can be reduced in size and functionality to
the minimum possible. This should remove a number of dependencies from
the privileged process. There's a draft of these changes at
https://github.com/djmdjm/openssh-wip/pull/26 but it's OpenBSD-only
at this stage. We're likely to proceed with splitting the listener
process from the rest of sshd hopefully before the next release.

Another thing we're considering in OpenSSH is changing how we integrate
with PAM. PAM's API demands loading modules into the authenticating
process' address space, but obviously we've just been reminded that this
is risky.

I think that I would prefer to move to a model where there PAM auth and
account modules run in a helper process, and only the session module
runs in the unprivileged post-auth sshd process.

This means that PAM auth/account modules and their transitive library
dependencies cannot affect the sshd address space. They would still
likely need to run with privilege, could still fail permissively in
unwanted situations and might still be able to cause problems directly
(e.g. opening a reverse shell from the PAM module itself), but they
would no longer have direct access to the contents of sshd network
traffic, signatures, etc that are extremely useful in building NOBUS
(https://en.wikipedia.org/wiki/NOBUS) backdoors like the xv one.

Where this gets challenging is that some PAM modules make assumptions
that the auth, account and session modules all run in the same address
space. These would break until re-architected to pass things explicitly,
e.g. via environment variables, temp files, etc.

Time permitting, I'll get a prototype of these changes made for wider
experimentation.

-d

Accepted faudio 24.04+dfsg-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 18:01:28 +0200
Source: faudio
Architecture: source
Version: 24.04+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Wine Team 
Changed-By: Stephen Kitt 
Changes:
 faudio (24.04+dfsg-1) unstable; urgency=medium
 .
   * New upstream release.
Checksums-Sha1:
 31f2bb3af03880cd4bdc4caf1144ea11d039451a 2074 faudio_24.04+dfsg-1.dsc
 58702e0be0bd65a81f070906d09f02298226a9c0 439204 faudio_24.04+dfsg.orig.tar.xz
 d45411d99306acb67cf535a59dbadc4cbc192184 8196 faudio_24.04+dfsg-1.debian.tar.xz
 d8dedc53d0128a173e1362617dfcde8586d9bdbd 12247 
faudio_24.04+dfsg-1_source.buildinfo
Checksums-Sha256:
 ccc97528673708e555959cfd8e8156c7e8e6c875cbe139c3467f980e1fe2dd35 2074 
faudio_24.04+dfsg-1.dsc
 46537a3a0eb48bd9613c2fb51210937e5079dcb7418f75ecf90966cf3fd74228 439204 
faudio_24.04+dfsg.orig.tar.xz
 4990553c723b01dd0a20b9f0d674cfd94370402186a368618757cff7b9baaaf6 8196 
faudio_24.04+dfsg-1.debian.tar.xz
 c3b4cb53ac74d4baa52a0e3d8c54139233d0a5ea40d7ada3cc117ec138bf1485 12247 
faudio_24.04+dfsg-1_source.buildinfo
Files:
 6737b709ddaf408b39c9b1623ef70e6e 2074 libs optional faudio_24.04+dfsg-1.dsc
 a273e5ed996aa067d0354e8a14ea09f6 439204 libs optional 
faudio_24.04+dfsg.orig.tar.xz
 84871e5d696d2bfddd9fdd192fe6bd88 8196 libs optional 
faudio_24.04+dfsg-1.debian.tar.xz
 ee13966583d42121d4b464c3f50360f2 12247 libs optional 
faudio_24.04+dfsg-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=i+sR
-END PGP SIGNATURE-



pgpAPMUlLOeCq.pgp
Description: PGP signature

Accepted procmail 3.24+really3.22-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 19:35:00 +0200
Source: procmail
Architecture: source
Version: 3.24+really3.22-1
Distribution: unstable
Urgency: medium
Maintainer: Santiago Vila 
Changed-By: Santiago Vila 
Closes: 1028356
Changes:
 procmail (3.24+really3.22-1) unstable; urgency=medium
 .
   * Revert to version 3.22. Fixes bug "Variable set with stdin pipe action
 fails leaving empty variable". Thanks a lot to Bob Proulx for the report.
 Closes: #1028356.
   * Most packaging changes from 3.24-1 are kept. The debian patches are taken
 from version 3.22-27 again, but renamed from NN to NN.patch.
   * Strip -Werror=implicit-function-declaration from CFLAGS.
Checksums-Sha1:
 6d9e930694aea1c1b5d7ba371a106f56b1352519 1445 procmail_3.24+really3.22-1.dsc
 cd4e44c15559816453fd60349e5a32289f6f2965 226817 
procmail_3.24+really3.22.orig.tar.gz
 3dcfeb84df77a3f6f8ddc222be7f65d13934fb37 20660 
procmail_3.24+really3.22-1.debian.tar.xz
 e33887d0c76ed1e501109fec0c08d7b1c010d2c5 5266 
procmail_3.24+really3.22-1_source.buildinfo
Checksums-Sha256:
 983de085ebdbb3b05d2f7d4e40825d23742d85b2ac0dc3cf45486cf74c2c0ad2 1445 
procmail_3.24+really3.22-1.dsc
 087c75b34dd33d8b9df5afe9e42801c9395f4bf373a784d9bc97153b0062e117 226817 
procmail_3.24+really3.22.orig.tar.gz
 6ac898a903a6afc2f145604aaddf94e8013f805407d13d446ebe93ad48fec75f 20660 
procmail_3.24+really3.22-1.debian.tar.xz
 33b1b2b36ac86a1c370b914685b72d6063a80d1354377d2da2c8a6eab2bf613d 5266 
procmail_3.24+really3.22-1_source.buildinfo
Files:
 df63a42fe8eb04386c10e2d84e61bd02 1445 mail optional 
procmail_3.24+really3.22-1.dsc
 1678ea99b973eb77eda4ecf6acae53f1 226817 mail optional 
procmail_3.24+really3.22.orig.tar.gz
 1fca977ba9495cef25f9a723448c7eab 20660 mail optional 
procmail_3.24+really3.22-1.debian.tar.xz
 66c0e9ceb41bd9be74d9adaeab7d9fa8 5266 mail optional 
procmail_3.24+really3.22-1_source.buildinfo

-BEGIN PGP SIGNATURE-

iQEzBAEBCgAdFiEE1Uw7+v+wQt44LaXXQc5/C58bizIFAmYK8TUACgkQQc5/C58b
izI41wf+PyHox579lozMxF5auNNYJ2FpDD1quuE6CN6Kh028I488yQIDFMbEsHo/
h9IhFEH7U9j1+fIJJMfQrdWs4CDtiCZTo6/K5jjNQWR2kbBKUmx4L0R6Hd/GV96J
45N9yl7r5S94xVBTto1fIAqLNlYg0WTOdUINFEZDhi1beQhumHPnhbfkcnKc/oen
Yy+Cd60Rm6jjimTKENanaF6tpTyX8a1U8bME4dvj2Qnv0Blp66IZ60NNjei9CtHC
8wWayb7w2Imqktee/EDLGj7j4AyX4FQLwuIDig4xKYcI4zzFBE/QMDf3kXtgoqbB
rg1WeufOwKNtQUeH0FaheVHVXXTvDw==
=buWP
-END PGP SIGNATURE-



pgpiu2olGTQ7A.pgp
Description: PGP signature

Accepted opm-simulators 2023.10+ds-3 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 01 Apr 2024 19:47:56 +0200
Source: opm-simulators
Architecture: source
Version: 2023.10+ds-3
Distribution: unstable
Urgency: medium
Maintainer: Debian Science Maintainers 

Changed-By: Markus Blatt 
Changes:
 opm-simulators (2023.10+ds-3) unstable; urgency=medium
 .
   * Fixed failing test test_LogOutputHelper on ppc64el
Checksums-Sha1:
 dcd50edb080eb9d154141804894536fa78a32838 3159 opm-simulators_2023.10+ds-3.dsc
 48c27a23ab36fb3ce075a704fc3cafb7ab8b5ce9 15352 
opm-simulators_2023.10+ds-3.debian.tar.xz
 cfe272b3229ac023dc7655707462440ed3f90446 17481 
opm-simulators_2023.10+ds-3_amd64.buildinfo
Checksums-Sha256:
 a9a5a543980e3d8caf206335a1f6ba0b74dde0c30fd72ddcab567273d5a15d03 3159 
opm-simulators_2023.10+ds-3.dsc
 52528a391e93f8b970121b6bb857d289ad78f1ac5de6d981ba51973d250c1391 15352 
opm-simulators_2023.10+ds-3.debian.tar.xz
 1e40263621bdeb0d23080d6b1f57ccc27a54b5bfa223aa33f76ec776c902ecf0 17481 
opm-simulators_2023.10+ds-3_amd64.buildinfo
Files:
 3027e1f668d5153030fc51dd507cdf0e 3159 libs optional 
opm-simulators_2023.10+ds-3.dsc
 97b65782a12280e33a24e87cc0ceb34b 15352 libs optional 
opm-simulators_2023.10+ds-3.debian.tar.xz
 060444388f4095552339a71dfda4e4dc 17481 libs optional 
opm-simulators_2023.10+ds-3_amd64.buildinfo

-BEGIN PGP SIGNATURE-
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=NDDv
-END PGP SIGNATURE-



pgpRWMdciqytS.pgp
Description: PGP signature

Accepted python-selenium 4.19.0+dfsg-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 19:08:18 +0200
Source: python-selenium
Architecture: source
Version: 4.19.0+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Sascha Girrulat 
Changed-By: Carsten Schoenert 
Changes:
 python-selenium (4.19.0+dfsg-1) unstable; urgency=medium
 .
   * [c427f0f] New upstream version 4.19.0+dfsg
   * [521e2b7] Rebuild patch queue from patch-queue branch
Checksums-Sha1:
 bccf92fed05a9123e12414cee227582ccf9a69f5 2502 python-selenium_4.19.0+dfsg-1.dsc
 d5ba94e86ced23602d17c905f33ad0f9358fe890 319240 
python-selenium_4.19.0+dfsg.orig.tar.gz
 03209274f2267a7678c6f565cb513a5110cd69ad 29564 
python-selenium_4.19.0+dfsg-1.debian.tar.xz
 2dd76f49c77b30d88098b8c6f213ee8d6bfab518 8395 
python-selenium_4.19.0+dfsg-1_amd64.buildinfo
Checksums-Sha256:
 acfb33bbef1080f4a4662a4f0adc1f726273adc3d7d5f8e815c5dc0e7535e8e3 2502 
python-selenium_4.19.0+dfsg-1.dsc
 4e823d2b7fb7bf022ffc6d73a995e784ce50b33fc0ed2a41d9c0e901ee1ea47c 319240 
python-selenium_4.19.0+dfsg.orig.tar.gz
 29adc97d6d60dd9b85a277bf7380659b585dc16eb98930b9531eebe9818c240a 29564 
python-selenium_4.19.0+dfsg-1.debian.tar.xz
 896e72458a5700120c02ccf506b3b6fc3c2b490736cbddba084a09d4f1114fd8 8395 
python-selenium_4.19.0+dfsg-1_amd64.buildinfo
Files:
 31c1da6a83da1819c81efe1be98dc2d1 2502 python optional 
python-selenium_4.19.0+dfsg-1.dsc
 8d90d524c2ba674f8638e40f9457e46e 319240 python optional 
python-selenium_4.19.0+dfsg.orig.tar.gz
 b27909b4bbddbb2ab9a08dd58830bc99 29564 python optional 
python-selenium_4.19.0+dfsg-1.debian.tar.xz
 5a2cc0663721c0eeb40c071a39415ec6 8395 python optional 
python-selenium_4.19.0+dfsg-1_amd64.buildinfo

-BEGIN PGP SIGNATURE-
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=hifb
-END PGP SIGNATURE-



pgpjkW9xJ9RAg.pgp
Description: PGP signature

Accepted pdl 1:2.086-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 19:48:34 +0200
Source: pdl
Architecture: source
Version: 1:2.086-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Perl Group 
Changed-By: Bas Couwenberg 
Changes:
 pdl (1:2.086-1) unstable; urgency=medium
 .
   * Team upload.
   * New upstream release.
   * Move libpgplot-perl to Recommends.
   * Refresh patches.
Checksums-Sha1:
 542db3e6d7c3d4e7e28ffb790c5ba7d2bcc4433c 2420 pdl_2.086-1.dsc
 10ce2110909f32b82e21f1e3e2a5370eeb17cbd3 2980703 pdl_2.086.orig.tar.gz
 14650b66433beb15e27bcacf72645d76dcf3d9eb 29508 pdl_2.086-1.debian.tar.xz
 ba0787d089a28c8640477004ce816c1574fdae62 14800 pdl_2.086-1_amd64.buildinfo
Checksums-Sha256:
 efa2991891ab72d34cbf96107a36b1b5793ae81decc8becf498b8513ca69b818 2420 
pdl_2.086-1.dsc
 e3875b02c57943c30752343301b26c2835635c4b4a5c2d2c26f5a75c3a06986e 2980703 
pdl_2.086.orig.tar.gz
 f409ffb477a98a71bb15acd105915ab781e077cf90a77acd52e5b47c6842eb8a 29508 
pdl_2.086-1.debian.tar.xz
 bae25276973f1fb6c586ccf9fd99f1b44c311ee03c82142dfeaf4cf5018cc014 14800 
pdl_2.086-1_amd64.buildinfo
Files:
 48a5865665dcdd00c898e4a508e09cc0 2420 math optional pdl_2.086-1.dsc
 22014203d6a62c2c1a24bbfdc970250a 2980703 math optional pdl_2.086.orig.tar.gz
 6ad609b46866cf7dcc107bef7f731690 29508 math optional pdl_2.086-1.debian.tar.xz
 450c0241795e51a532a82ebe2d08e2dc 14800 math optional 
pdl_2.086-1_amd64.buildinfo

-BEGIN PGP SIGNATURE-
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=tTU2
-END PGP SIGNATURE-



pgpICAnqqfOVS.pgp
Description: PGP signature

Accepted editorconfig-core 0.12.7-0.1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 14:31:14 -0400
Source: editorconfig-core
Built-For-Profiles: noudeb
Architecture: source
Version: 0.12.7-0.1
Distribution: unstable
Urgency: medium
Maintainer: Jonas Smedegaard 
Changed-By: Jeremy Bícha 
Changes:
 editorconfig-core (0.12.7-0.1) unstable; urgency=medium
 .
   * Non-maintainer upload
   * New upstream release
   * Drop obsolete dbgsym migration handling
   * Drop patches applied in new release
Checksums-Sha1:
 85369b1baefc05d6e674da2ab3d3bbb379021ce5 2593 editorconfig-core_0.12.7-0.1.dsc
 6113c758326b6c6034049461d5c30c3404c8eb63 13029 
editorconfig-core_0.12.7.orig-tests.tar.gz
 dc54eec9f0564cf3a372bb599758c06eaa76e332 77426 
editorconfig-core_0.12.7.orig.tar.gz
 30a53595420e4e9627b78d5d6e2635b4f4b1 16020 
editorconfig-core_0.12.7-0.1.debian.tar.xz
 a38a42f2b9bb25a0f8a214f15c64e035776eebba 14071 
editorconfig-core_0.12.7-0.1_source.buildinfo
Checksums-Sha256:
 26e4d12b96fd53923e849fd0a97536f2863bca971da82e7817bd3d8499731830 2593 
editorconfig-core_0.12.7-0.1.dsc
 ee2cd748c238063cb6aa19ea8dbaa9c05fed132e441aff249cf31511ed26fcc8 13029 
editorconfig-core_0.12.7.orig-tests.tar.gz
 f89d2e144fd67bdf0d7acfb2ac7618c6f087e1b3f2c3a707656b4180df422195 77426 
editorconfig-core_0.12.7.orig.tar.gz
 cb73a27ea3b37de507f3e2206537a0f13a5de1c8b8f5f34362f0eeeaf84b514a 16020 
editorconfig-core_0.12.7-0.1.debian.tar.xz
 1d082e8322460057977fe8e10c1be0a020c19b8e2adfed17fc918aa0f8f7acac 14071 
editorconfig-core_0.12.7-0.1_source.buildinfo
Files:
 8b1704f4e6fab0c1d78c905fe7e77049 2593 libs optional 
editorconfig-core_0.12.7-0.1.dsc
 6c88d1292e858578b009ded29701b04a 13029 libs optional 
editorconfig-core_0.12.7.orig-tests.tar.gz
 26d71a44ba4a0455807858ede0432d85 77426 libs optional 
editorconfig-core_0.12.7.orig.tar.gz
 a4326c71bd1ab3b87ccb7da7484d0e33 16020 libs optional 
editorconfig-core_0.12.7-0.1.debian.tar.xz
 26945e1235b62f51f4de93163fdf1c60 14071 libs optional 
editorconfig-core_0.12.7-0.1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=zCj6
-END PGP SIGNATURE-



pgpt1cUlXEuqy.pgp
Description: PGP signature

Accepted poke 4.0+dfsg-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 16:45:29 -0400
Source: poke
Architecture: source
Version: 4.0+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Poke Team 
Changed-By: Sergio Durigan Junior 
Changes:
 poke (4.0+dfsg-1) unstable; urgency=medium
 .
   * Source-only upload.
   * Upload to unstable.
Checksums-Sha1:
 dbe6c62ec3d8e6c52b9141b9641e0d3155148fe7 2267 poke_4.0+dfsg-1.dsc
 8325eec6fb131f8a9c8f503cf8d63b9491fd95f5 15852 poke_4.0+dfsg-1.debian.tar.xz
 7f7d62cb0667ab91f0e601204a43a455dad95eec 11568 poke_4.0+dfsg-1_amd64.buildinfo
Checksums-Sha256:
 b3923373b96256391c1a85dc4f0440324513433abee3929fa88c1d1902a0e0e4 2267 
poke_4.0+dfsg-1.dsc
 ceb01c2bec890ba8b7bd00ecd3b783ba1745ba4650a3ee641a01983ed141381d 15852 
poke_4.0+dfsg-1.debian.tar.xz
 4d96e5695592e7e2eadd2943c4af204ed0a8241bde9dd612807a205801d0adad 11568 
poke_4.0+dfsg-1_amd64.buildinfo
Files:
 56fe6ad60b06949fff9321f500fdb75e 2267 editors optional poke_4.0+dfsg-1.dsc
 e11e7c061818946842c1c682bb16830a 15852 editors optional 
poke_4.0+dfsg-1.debian.tar.xz
 3569a2daeb2fd37a8f65c8cf319fa0ab 11568 editors optional 
poke_4.0+dfsg-1_amd64.buildinfo

-BEGIN PGP SIGNATURE-
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=X5A+
-END PGP SIGNATURE-



pgp5i4DpPCNak.pgp
Description: PGP signature

Re: xz backdoor

[thomas]

On Mar 31, 2024 2:37 PM, Pierre-Elliott Bécue  Wrote:

> The PGP submodule of a Yubikey can host 3 keys, one signing, one 

> authent, and one encrypt. ISTR accessing the signing key is always 

> prompting for the PIN. Same for the encryption key. (I think both can be 

> configured otherwise)


Only for the signing operation, one can turn on the "force-sig" option so that 
the key always prompt for a pin. And that is not the default.


Thomas

Re: Validating tarballs against git repositories

[Bastian Blank]

On Mon, Apr 01, 2024 at 02:31:47AM +0200, gregor herrmann wrote:
> That's not mutually exclusive. When adding an additional git remote
> and using gbp-import-orig's --upstream-vcs-tag you get the best of
> both worlds.

And this will error out if there are unexpected changes in the tarball?
How will it be able to detect those?

Bastian

-- 
I've already got a female to worry about.  Her name is the Enterprise.
-- Kirk, "The Corbomite Maneuver", stardate 1514.0

Accepted rust-zxcvbn 2.2.2-2 (source) into experimental

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 06:21:52 -0400
Source: rust-zxcvbn
Architecture: source
Version: 2.2.2-2
Distribution: experimental
Urgency: medium
Maintainer: Debian Rust Maintainers 

Changed-By: Alexander Kjäll 
Changes:
 rust-zxcvbn (2.2.2-2) experimental; urgency=medium
 .
   * Team upload.
   * Package zxcvbn 2.2.2 from crates.io using debcargo 2.6.1
   * Upgrade itertools to 0.12.
Checksums-Sha1:
 7aeda1383c508d636ba43d3d756ecb30ba55bf75 2726 rust-zxcvbn_2.2.2-2.dsc
 14005f99481ebb80fc4a02840e5b0a623de2d2c8 3400 rust-zxcvbn_2.2.2-2.debian.tar.xz
 5ac08c66651cb3606ba54ec5606535d1abb401bc 7819 
rust-zxcvbn_2.2.2-2_source.buildinfo
Checksums-Sha256:
 0d1b3d28540403348bae5ef18dcc614c24b2246c8ce1fc7c569812e706a67f41 2726 
rust-zxcvbn_2.2.2-2.dsc
 2af240841bfcaf326a0e81e4c0b3241257f520694354702c8b936773056aab6b 3400 
rust-zxcvbn_2.2.2-2.debian.tar.xz
 ec543f90676fca3b1ef890321ff0a101ab2834dc5df3457b19c403aa1678bd82 7819 
rust-zxcvbn_2.2.2-2_source.buildinfo
Files:
 3b4efd279cb7ef752614ad0ebbffa278 2726 rust optional rust-zxcvbn_2.2.2-2.dsc
 3ba316c0b53f926ab49be08265aae2e5 3400 rust optional 
rust-zxcvbn_2.2.2-2.debian.tar.xz
 f3b45156f9a35c38a37507dd49cac0ef 7819 rust optional 
rust-zxcvbn_2.2.2-2_source.buildinfo

-BEGIN PGP SIGNATURE-

iQKTBAEBCgB9FiEEkb+/TWlWvV33ty0j3+aRrjMbo9sFAmYKitFfFIAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDkx
QkZCRjRENjk1NkJENURGN0I3MkQyM0RGRTY5MUFFMzMxQkEzREIACgkQ3+aRrjMb
o9uZ9Q//Zr06DqJQHgNTtyE+60TT+eCqkV3TPfxgSQL7PY5rP06gcVbMOkdyUwD/
twE2SSbmgYyDKsysD73uVqSGQbQJSBfteZLgPb3CEubLaEClNEY/CNgUIN8gnwcm
ntvKWpj/JJ3z98YvK6rWNTocNiyBHOPLycleigSY2oVjjvl6CVNQrej0EcT1QsSv
gkLdkaCwZg/fEu1gNrfpvGyp/ysqWY8Kyz4txcTNRwbVSwxgVW0JpkNYu1iDSQ/X
njnaWnGnrtS83XGZXITSERdXtjwL9STrPlP/8jqhukTjlncTqDz3xgQBQyS03ePM
q4N4OW2WFN7ZcivSMW8ZtltSS+jm33u6ajEVidrevwnbWhDKvECwNIvf7+IlVA4u
TFSJBhHxSZ3/GX98tAxmNawEA9IfrZlrZbVbaPhDV2AMlN1HdiywZduCYr3WBT6U
pDz9x32sr7mx0Zh3IpymzCxCgAiTjY1rdHu7xeB/G+lZRBBE7vqTXhedtacVmkLZ
NVFrnjY6+Ub0WALLzxfrRj/S3VkuxU/z+BF6b+v+D6Z3P6FYzYTn5XUU4j1fDgTB
NKzV9TevEp2QAEaY4JoQUBs+EscY38nDZTLyedMSeCGrWW+kqZU5LufTpoiH9z7j
QZKJ/dwNG6loZCDPIP9i+aC5F1MdNw61lJhY1ID7cTBw2M7GRUA=
=3SG2
-END PGP SIGNATURE-



pgphvXZ4gtdwA.pgp
Description: PGP signature

Re: Validating tarballs against git repositories

[Bastian Blank]

On Mon, Apr 01, 2024 at 12:03:48PM +0200, Bastian Blank wrote:
> On Mon, Apr 01, 2024 at 02:31:47AM +0200, gregor herrmann wrote:
> > That's not mutually exclusive. When adding an additional git remote
> > and using gbp-import-orig's --upstream-vcs-tag you get the best of
> > both worlds.
> And this will error out if there are unexpected changes in the tarball?
> How will it be able to detect those?

Okay, I looked into what it does.  It just adds another parent to the
commit with the import of the tar.  It does nothing else with this
information.

So in the end you still need to manually review all the stuff that the
tarball contains extra to the git.  And for that I don't see that it
actually gives some helping hands and makes it easier.

So I really don't see how this makes the problem in hand any better.
Again the workload of review is on the person doing the job.  Aka we do
fragile manual work instead of possibly failing automatic work.

Bastian

-- 
Women professionals do tend to over-compensate.
-- Dr. Elizabeth Dehaver, "Where No Man Has Gone Before",
   stardate 1312.9.

Re: Validating tarballs against git repositories

[Theodore Ts'o]

On Sat, Mar 30, 2024 at 08:44:36AM -0700, Russ Allbery wrote:
> Luca Boccassi  writes:
> 
> > In the end, massaged tarballs were needed to avoid rerunning autoconfery
> > on twelve thousands different proprietary and non-proprietary Unix
> > variants, back in the day. In 2024, we do dh_autoreconf by default so
> > it's all moot anyway.
> 
> This is true from Debian's perspective.  This is much less obviously true
> from upstream's perspective, and there are some advantages to aligning
> with upstream about what constitutes the release artifact.

My upstream perspective is that I've burned repeatedly with
incompatible version changes in autotools programs which causes my
configure.{in,ac} file to no longer create a working configure script,
or which causes subtle breakages.  So my practice is to use autoconf
on my Debian testing development system before checking in the
configure.ac and configure files --- but I ship the generated files
and I don't tell people to run autoreconf before running ./configure.
And if things break after they run autoreconf, I tell them, "you ran
autoreconf; you get to keep both pieces".

And there *have* been times when autoconf has gotten updated in Debian
testing, and the resulting configure script has broken, at which point
I curse at autotools, and fix the configure.ac and/or aclocal.m4
files, etc., and *then* check in the generated configure file and
autotool source files.

> Yes, perhaps it's time to switch to a different build system, although one
> of the reasons I've personally been putting this off is that I do a lot of
> feature probing for library APIs that have changed over time, and I'm not
> sure how one does that in the non-Autoconf build systems.  Meson's Porting
> from Autotools [1] page, for example, doesn't seem to address this use
> case at all.

The other problem is that many of the other build systems are much
slower than autoconf/makefile.  (Note: I don't use libtool, because
it's so d*mn slow.)  Or building the alternate system might require a
major bootstrapping phase, or requires downloading a JVM, etc.

> Maybe the answer is "you should give up on portability to older systems as
> the cost of having a cleaner build system," and that's not an entirely
> unreasonable thing to say, but that's going to be a hard sell for a lot of
> upstreams that care immensely about this.

Yeah, that too.  There are still people building e2fsprogs on AIX,
Solaris, and other legacy Unix systems, and I'd hate to break them, or
require a lot of pain for people who are building on MacPorts, et. al.
It hasn't been *all* that long ago that I started require C99
compilers

That being said, if someone who was worried about an Jia Tan-style
attack with e2fsprogs, first of all, you can verify that configure
corresponds to autoconf on the Debian testing at the time when the
archive was generated, and the officially released tar file is
generated via:

git archive --prefix=e2fsprogs-${ver}/ ${commit} | gzip -9n > $fn

... and the release tarballs are also in the pristine-tar branch of
e2fsprogs.  So even if kernel.org (preferred) and sourceforget.net
(legacy) servers for the e2fsprogs tar files completely implodes, and
you only have access to the git repo, you can still get the original
e2fsprogs tar files using pristine-tar.

- Ted

Accepted meld 3.22.2-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 12:09:55 -0400
Source: meld
Built-For-Profiles: noudeb
Architecture: source
Version: 3.22.2-1
Distribution: unstable
Urgency: medium
Maintainer: Debian GNOME Maintainers 

Changed-By: Jeremy Bícha 
Changes:
 meld (3.22.2-1) unstable; urgency=medium
 .
   * New upstream release
Checksums-Sha1:
 a23c58aa524b8503fa5974369542c47cbc1b8ff8 2082 meld_3.22.2-1.dsc
 6d3ca50cdb0ca808ebb7e21e55eb29743bd1a834 676376 meld_3.22.2.orig.tar.xz
 a27b5b76b8d5b3ff16f129b162fca159ffe91fe0 12844 meld_3.22.2-1.debian.tar.xz
 a25c6d7b3c6f8896eb7a6df848aeaf9fc04a0320 18176 meld_3.22.2-1_source.buildinfo
Checksums-Sha256:
 89416ea3fc68eb6f979095d19112db580652d72c2fd06fb8686cd1928f6e9355 2082 
meld_3.22.2-1.dsc
 46a0a713fbcd1b153b377a1e0757c8ce255c9822467658eacfbd89b1e92316ef 676376 
meld_3.22.2.orig.tar.xz
 5cad07f4d47f55d87fc1218ebb8a49f3d8dc09ddc45b11ce2b3f486075fec6f2 12844 
meld_3.22.2-1.debian.tar.xz
 e900cee937fdc45cd59e158707dfde5ecb263a849a0ff672415f5ff40162f4c1 18176 
meld_3.22.2-1_source.buildinfo
Files:
 54bfed676e3994acc9381b5c1d436f68 2082 gnome optional meld_3.22.2-1.dsc
 89cbf062f9c0b49618ff2ccd33285077 676376 gnome optional meld_3.22.2.orig.tar.xz
 073c8910d57259a3296edd92d2b0df50 12844 gnome optional 
meld_3.22.2-1.debian.tar.xz
 6060c4c3965246bbdb22b4f41f6bb1a6 18176 gnome optional 
meld_3.22.2-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=S8Is
-END PGP SIGNATURE-



pgpZmee4to46_.pgp
Description: PGP signature

Re: Validating tarballs against git repositories

[Theodore Ts'o]

On Mon, Apr 01, 2024 at 06:36:30PM +0200, Vincent Bernat wrote:
>
> I think that if Debian was using git instead of the generated tarball, this
> part of the backdoor would have just been included in the git repository as
> well. If we were able to magically switch everything to git (and we won't,
> we are not even able to agree on simpler stuff), I don't think it would have
> prevented the attack.

I'm not sure how much it would have helped, but I think the theory
behind eliminating the gap between the release tarball and the git
tree is the theory that in 2024, more developers are more likely to be
building and testing against the git tree, and so it might have been
more likely noticed.  After all, Jia Tan decided it was worth while to
check in 99% of the exploit in git, but to only enable it when it was
built from the release tarball.  If the exploit was always active when
built from the git tree, perhaps someone might have noticed before it
Debian uploaded the trojan'ed binary package to unstable, and then a
week or so later, having it promoted to testing.

I'm not sure how likely that would be for the specific case of
xz-utils, since it appears the number of developers (not just
Maintainers) was extremely small, but presumably Jia Tan decided to do
things in that way in the hopes of making less likely that the malware
would be noticed.

- Ted

Accepted licenserecon 1.10.1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 16:42:00 +0100
Source: licenserecon
Architecture: source
Version: 1.10.1
Distribution: unstable
Urgency: medium
Maintainer: Peter Blackman 
Changed-By: Peter Blackman 
Changes:
 licenserecon (1.10.1) unstable; urgency=medium
 .
   * Remove unwanted local files from source tarball
Checksums-Sha1:
 947a080649551f0e8d22a7f8354cdc4ede2e5d9c 1743 licenserecon_1.10.1.dsc
 26b9201a3949437a2e71fbe2163c305b92033e17 16032 licenserecon_1.10.1.tar.xz
 d36bf9bd37397d88700aacd4abf28c40037fceb3 7227 
licenserecon_1.10.1_source.buildinfo
Checksums-Sha256:
 f2e599ab355dffe40892e4adc2b666a99963c6055af59622efda76f237ffbf90 1743 
licenserecon_1.10.1.dsc
 aa9e0445aed072594db53de1e3d32005706eeca1bb2f2ad43274d3581dcb96ab 16032 
licenserecon_1.10.1.tar.xz
 71e581394f1d21a042a515d7313298278fac2964e418dd82718fbedd9fbd3d82 7227 
licenserecon_1.10.1_source.buildinfo
Files:
 8e176c7490a9d190af309afb70c05dad 1743 utils optional licenserecon_1.10.1.dsc
 f16b3ceb74901107f4588c37bc5b58b9 16032 utils optional 
licenserecon_1.10.1.tar.xz
 624526ebb04ba75a606a1501535ba518 7227 utils optional 
licenserecon_1.10.1_source.buildinfo

-BEGIN PGP SIGNATURE-

iQJNBAEBCgA3FiEE33HzyvBUkEl4+kj4tty6Zj6hsVAFAmYK4yAZHHBldGVyQHBi
bGFja21hbi5wbHVzLmNvbQAKCRC23LpmPqGxUHslD/0RgTwtMfQLwFf0Hpc6nAqS
1nENZeHlv8lxsbygiaPkxYY8hj5dQVa+A0ft+c3EREhxAWY1IBHgroHUcNRiLV+x
aR/l48vpdMEd6UZdjC8zI9eCKTvnxwjWPH0xx2/dCbYZa9W32R3zcEN4EMj7PRzL
Mwk29N+WhualYS5/6qOP0eABxptKzXR+Z9OJEdhA4/D1lnBpAqtmo+gFlXUJjNjt
zVrtFE7HUrAUIlcUltuNElLWZRa3wKIdb4WHFz3hLWlJxUtQhNvwuVl7n/EBT39b
S329YsnTC+z8pA7mhmzCFppXb1sMinl/ABj+Ep/TUFixS5zwaCKrCW4C80yOdttw
1oNuNApJQMdNwdib243n1My/vQnT9SBG1iiCbGepp2OBpAYZi/cVD6DdWB0GjpyQ
pbzp3inqYAK9F6BXUMTrFUfsf8aznpbj6ILhE2tr3fw0FXPA/hJH+qqqVMynraIj
HxzE7AbJR/mXfkfmuVBYPVY8A6V/wCwLjiH2RtkfU2zp62a+QSad0hHKB1MyvhOt
6KO0oM6ZOZdURRwa08CXwqbR8DpMyYkPDREtjfBDZH1/ABUbVSN0Bpcmbb1h80ok
Hf4cHw9pxypM3A5GWJqPsdKU+DmDJF8m9BLXfK/zaRLgH9qfsI7G2Q5f9XpbKyAh
ftTDyQvHR88EawpUhWMkDQ==
=KZaZ
-END PGP SIGNATURE-



pgpT0tPK6SIlj.pgp
Description: PGP signature

Accepted mini-buildd 2.1.14 (source) into experimental

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 18:40:41 +0200
Source: mini-buildd
Architecture: source
Version: 2.1.14
Distribution: experimental
Urgency: medium
Maintainer: Stephan Sürken 
Changed-By: Stephan Sürken 
Changes:
 mini-buildd (2.1.14) experimental; urgency=medium
 .
   Summary:
   Enables API values caching (speeds up HTML page rendering with many
   integrated API calls) and other mostly WEB GUI improvements.
 .
   Details:
   [ Gerhard A. Dittes ]
   * [41344b5] static/mini_buildd.css: improve menu item appearance when
 getting "mbd-attention"
   * [959550a] devel: fix "usage examples" regarding "profile network
 options"
   * [992add7] static/mini_buildd.css: indicate page (re)loading triggered
 by "limit before form" (if "clicked")
   * [527e483] manual/_templates/mbd-sidebar-apicalls.html: fix (potential)
 iframe recursion
   * [1fa6079] manual/_static/custom.css: finetune current theme
 ("Alabaster")
   * [14cf855] static/mini_buildd.css: improve "button click" feedback
 .
   [ Stephan Sürken ]
   * [8897be4] api/index.html: Drop redundant menu for API index
   * [b02f7e6] devel (mbd_pygrep->grep): Rather grep whole project, not
 just py code
   * [0ef8dfd] manual/conf.py: Update copyright years
   * [0cf4d72] values.py: Drop all values that definitely do not need to be
 cached
   * [bd92aea] values.py (misc refac): Fix naming, order; drop unused
 (DUMMY, ALL_DISTRIBUTIONS)
   * [269091a] values.models.py: Refacture codename set getter
   * [4692ed2] api.py (Argument._get_value): Rather move slightly confusing
 get_value() helper to api.py (only used there)
   * [ee0e60a] devel (sphinx-build): Needs 'version_py' call to always work
 standalone
   * [236cf36] devel,manual/administrator.rst: Drop (incomplete) profiling
 hint from manual && add (working) code to devel
   * [ae19aad] values.py: Simplify: Just use one properly named module
 function per value
   * [e9a9779] values.py: Enable caching for most dynamic values
Checksums-Sha1:
 e39200578075dd1fa9255a66f3c2342bcdd5179b 2282 mini-buildd_2.1.14.dsc
 ff89b13385cc833babbad12867903bf759681e07 597892 mini-buildd_2.1.14.tar.xz
 f153e3500e8ec836bd816d76c1070b44fe0dae6b 12255 
mini-buildd_2.1.14_source.buildinfo
Checksums-Sha256:
 8d9c27cada0e09ec3fef0a5a806d653713d8c4375c36423a4ff17f4e5051fd09 2282 
mini-buildd_2.1.14.dsc
 c4cf4e2545ce2481847431774bb0fcf5b9ee8cf108ed61afd6cad118d862efa9 597892 
mini-buildd_2.1.14.tar.xz
 f91af3984051188127f08f939d47aa5f56494e49708fbd8838048e3dbf9061c7 12255 
mini-buildd_2.1.14_source.buildinfo
Files:
 2645a108a0a9e26d90e9dd7ed97bcb5f 2282 devel optional mini-buildd_2.1.14.dsc
 5d723abdc07994510811dfaeb02a9fd8 597892 devel optional 
mini-buildd_2.1.14.tar.xz
 7f1a7e25b100b296fcf5d9ceea9fce6a 12255 devel optional 
mini-buildd_2.1.14_source.buildinfo

-BEGIN PGP SIGNATURE-
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=laXn
-END PGP SIGNATURE-



pgpMTvJx4mJBR.pgp
Description: PGP signature

Accepted pykeepass 4.0.7-2 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 12:52:27 -0400
Source: pykeepass
Built-For-Profiles: noudeb
Architecture: source
Version: 4.0.7-2
Distribution: unstable
Urgency: medium
Maintainer: Debian Python Team 
Changed-By: Jeremy Bícha 
Changes:
 pykeepass (4.0.7-2) unstable; urgency=medium
 .
   * Team upload
   * autopkgtest: Add Depends: python3-pkg-resources, python3-pyotp
Checksums-Sha1:
 2cf47b76cf2900eb50db54daeca001e47eba2b54 2265 pykeepass_4.0.7-2.dsc
 68fa8f576ec050864f1887584c6dfb0ee71d0227 4816 pykeepass_4.0.7-2.debian.tar.xz
 b9a730de077ef4c06911130b6ec8ba02f25c283a 8380 
pykeepass_4.0.7-2_source.buildinfo
Checksums-Sha256:
 e24b5d1df45b2e8d8344b1f9317da4fe6a83525d60f2fcb6dc7ac032b36dd69e 2265 
pykeepass_4.0.7-2.dsc
 e176ab4d1e4f1995ec6fc40ac8b99da989ec2ab3c833110cee877c28f905bd10 4816 
pykeepass_4.0.7-2.debian.tar.xz
 6d849c83658c0e4be28a7e7dcf85f290ebad283463e8d0129bfc474341df217a 8380 
pykeepass_4.0.7-2_source.buildinfo
Files:
 a7693556e3457538b627390a69229e0a 2265 python optional pykeepass_4.0.7-2.dsc
 c3b22a6dda6876f7da94647e21464473 4816 python optional 
pykeepass_4.0.7-2.debian.tar.xz
 f0d09c592bc5abe6af7b14d7ee625ed0 8380 python optional 
pykeepass_4.0.7-2_source.buildinfo

-BEGIN PGP SIGNATURE-
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=tgv7
-END PGP SIGNATURE-



pgp4P4jhvdx2J.pgp
Description: PGP signature

Accepted phosh 0.37.1-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 01 Apr 2024 16:41:33 +0200
Source: phosh
Architecture: source
Version: 0.37.1-1
Distribution: unstable
Urgency: medium
Maintainer: DebianOnMobile Maintainers 

Changed-By: Guido Günther 
Changes:
 phosh (0.37.1-1) unstable; urgency=medium
 .
   * New upstream release. This version doesn't require gnome-session >= 46 but
 can work with e.g. 45 as well.
   * Drop patches. Applied upstream
   * Switched to signed upstream tarballs
Checksums-Sha1:
 e00171f88091176359511c09d260ccf036926d4b 3236 phosh_0.37.1-1.dsc
 a23f9ba04687f5f9d5a5fb21679ae37e52492959 861640 phosh_0.37.1.orig.tar.xz
 a7cc1533aaa0636553cc423fd3184c04798a7579 833 phosh_0.37.1.orig.tar.xz.asc
 acceb96840605aa23918d8dea8401069e1c83e12 23028 phosh_0.37.1-1.debian.tar.xz
 db566bfab3fc51f3679a78907d1bc69261f719aa 25471 phosh_0.37.1-1_amd64.buildinfo
Checksums-Sha256:
 73876cedef7cf9e8f9965bdc8d524c5a5517c812a285eba8ef04bce281b82cb6 3236 
phosh_0.37.1-1.dsc
 ef81f818b14822cf7b89513c2163f14bd8402e404691c2a6acc7bafeec6d3ee3 861640 
phosh_0.37.1.orig.tar.xz
 a4888c7cdf51ae84045e9bf541d6b2b06d643f36499675ee3049f8a9478c68ea 833 
phosh_0.37.1.orig.tar.xz.asc
 e80ca04a6a7fcef2f1e6048c9e1b6d17d47908167cfd9e8b5c562fceb953ff4e 23028 
phosh_0.37.1-1.debian.tar.xz
 0ee9dcec4d057e770602367f947d7bc9a298a6e8d7048ba78f3d58aea5e83d04 25471 
phosh_0.37.1-1_amd64.buildinfo
Files:
 62cbac3dfb79b8772734cd4b8f27263c 3236 x11 optional phosh_0.37.1-1.dsc
 1071ccdd7cdc46083f868aee6a9c180a 861640 x11 optional phosh_0.37.1.orig.tar.xz
 52cff76e6695e73246d741c4953e9ffa 833 x11 optional phosh_0.37.1.orig.tar.xz.asc
 b53bce04939af6465d1f894db6f146b2 23028 x11 optional 
phosh_0.37.1-1.debian.tar.xz
 25b5cb34c401d944e327c692c887c37f 25471 x11 optional 
phosh_0.37.1-1_amd64.buildinfo

-BEGIN PGP SIGNATURE-
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=V/4e
-END PGP SIGNATURE-



pgpkGTrozJvVJ.pgp
Description: PGP signature

Accepted fwupd-efi 1:1.5-3 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 12:32:31 -0500
Source: fwupd-efi
Built-For-Profiles: noudeb
Architecture: source
Version: 1:1.5-3
Distribution: unstable
Urgency: medium
Maintainer: Debian EFI 
Changed-By: Mario Limonciello 
Changes:
 fwupd-efi (1:1.5-3) unstable; urgency=medium
 .
   * Backport some patches from upstream that should
 fix FTBFS on aarch64 with newer gnu-efi.
Checksums-Sha1:
 4811481a9078c2e8a2447329f00edda0c85fcfa1 2860 fwupd-efi_1.5-3.dsc
 1272e7507979eb07baeb63a1175d28051306270c 11624 fwupd-efi_1.5-3.debian.tar.xz
 a392a8bc074bb3b659fdd8d38dc34a997c6be534 8575 fwupd-efi_1.5-3_source.buildinfo
Checksums-Sha256:
 1aeb973340de34010a6883e21cac80ed67edb751e44b3480e2a3b2b303dcc0f8 2860 
fwupd-efi_1.5-3.dsc
 00bb8d5b35d983a9d6effb3a0bb1894b320ea54a238f03a8c449bf062f4e92a8 11624 
fwupd-efi_1.5-3.debian.tar.xz
 bc52c69c2997adbf3213e3945b22fc671cc1511f476724ce429ec5cb3058 8575 
fwupd-efi_1.5-3_source.buildinfo
Files:
 dd2e818a0db7699b778d924b5ca1c27d 2860 admin optional fwupd-efi_1.5-3.dsc
 6a8d38bab92431b0e7be49983f355194 11624 admin optional 
fwupd-efi_1.5-3.debian.tar.xz
 78d9a2a7b49932ea54416396e84d2a45 8575 admin optional 
fwupd-efi_1.5-3_source.buildinfo

-BEGIN PGP SIGNATURE-

iQJGBAEBCgAwFiEECwtuSU6dXvs5GA2aLRkspiR3AnYFAmYK8I8SHHN1cGVybTFA
Z21haWwuY29tAAoJEC0ZLKYkdwJ2/tcP/2yHGCefHVbXSIr9hoMTnmv4ZAczUPqZ
2POe4lI5UzACBflU4dqR8I5aG9nvGB5Q6OxNUyj8IhpHH8bnz2Oxiv36AiVb07P9
echisc9llQwLrRtuo2jx8XKOUj2nTaQnPDv4/Fp3VAx+cGHJbrELJpd9qKNDT/qV
2/j3Sn4lFqMtHKLWDimiNsoQ4oOwXjreKvG0ejFmrty3KLoXiJC1P3BhMI1eIu58
OGmBxqU1aN/X1Z28JBSLQnCfVUFtY8t1eLxnR32F8nbkWSZrT7PDbnkG7nodTeUu
yrWzUv4QlsuLJOM4hGfJE5oRe6pNti1vSXZjFmv02aFACFfx6XjatMOrjhgpWgZe
MBFxQx+KXkQmJdTWFcCPKvvrsYcUdc8OMDXxMPEaVObVjXCHp07h5Liy6D23a0pN
2PO5QCwGdj7uxESiu8vT2NDBvh6MwpRn/OlGHHHyniVG0dn8ZyXzbnBfklhzlmvs
zmRJgEU/Br8UbsVrY6spoyzOGEhTonEO13vlzjSIRMENNBVjny4UNVcb/qAToQMU
ysx8Uk/mVedfMbgeXNr1nQrwX6YOjo3MU9n7LRTBsVm25tSQ3n1AurLXGRCRVXee
yL/eoRloBbCgE6z3uMDpjkpgHtMDJJ37LmOsR0f4DuUB+/uQqviBM2hjFYZ0BiVT
Mnv7lDl+5cNT
=wZcb
-END PGP SIGNATURE-



pgpNgOF1RdIEI.pgp
Description: PGP signature

Accepted gnome-online-accounts 3.50.0-4 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 13:34:08 -0400
Source: gnome-online-accounts
Built-For-Profiles: noudeb
Architecture: source
Version: 3.50.0-4
Distribution: unstable
Urgency: medium
Maintainer: Debian GNOME Maintainers 

Changed-By: Jeremy Bícha 
Changes:
 gnome-online-accounts (3.50.0-4) unstable; urgency=medium
 .
   * Update Recommends to gnome-control-center | gnome-online-accounts-gtk
Checksums-Sha1:
 45aa33c82f3587ce8836c1e92cd1c6e828f34552 3155 
gnome-online-accounts_3.50.0-4.dsc
 84c8219f5cfb075c9421d64cdcc4fb458e817216 16352 
gnome-online-accounts_3.50.0-4.debian.tar.xz
 656292e61b43e4626f587145d3e145a1f75ff673 20062 
gnome-online-accounts_3.50.0-4_source.buildinfo
Checksums-Sha256:
 0e02bf4c0c5974e14c1e1584e9bb3f91321a58743a8aac6a71cdcb02fdaa11ed 3155 
gnome-online-accounts_3.50.0-4.dsc
 1caf57c862bc4995de2369cdabc5c6d41f7d753f51d2c86df5631deeed5485e5 16352 
gnome-online-accounts_3.50.0-4.debian.tar.xz
 ab92e28aa0d1b04b20e38e37fbcf1403e63ef70ce32e5517bb28d23748d77a32 20062 
gnome-online-accounts_3.50.0-4_source.buildinfo
Files:
 4feb64fc2cc9fe3a671edf5bb2204902 3155 gnome optional 
gnome-online-accounts_3.50.0-4.dsc
 f587596069511072a9fdbdca813484c5 16352 gnome optional 
gnome-online-accounts_3.50.0-4.debian.tar.xz
 4aa1659a191cab622bca1c69425ba0ea 20062 gnome optional 
gnome-online-accounts_3.50.0-4_source.buildinfo

-BEGIN PGP SIGNATURE-
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=7PcC
-END PGP SIGNATURE-



pgpcawGzWpCLO.pgp
Description: PGP signature

Accepted dh-python 6.20240401 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 13:23:32 -0400
Source: dh-python
Architecture: source
Version: 6.20240401
Distribution: unstable
Urgency: medium
Maintainer: Piotr Ożarowski 
Changed-By: Stefano Rivera 
Closes: 883004 1066833 1067822
Changes:
 dh-python (6.20240401) unstable; urgency=medium
 .
   [ Stefano Rivera ]
   * Remove python3-distutils from dh-python Depends. It doesn't exist as a
 package for 3.12, and is provided as a compatibility shim by setuptools.
 (Closes: #1066833)
   * Add support for testing with stestr. Thanks James Page for the patch.
 (Closes: #883004)
 .
   [ Julian Gilbey ]
   * Add python3-flit-scm to list of build-dependencies requiring
 SETUPTOOLS_SCM_PRETEND_VERSION (Closes: #1067822)
Checksums-Sha1:
 b24b01bcbc42a9001ee370394c4c031937670473 1688 dh-python_6.20240401.dsc
 3b7c3777edf06289465150eb1bc8b807289ea12b 122764 dh-python_6.20240401.tar.xz
 4cc71b369478ec9bd35587fbc6af3e01012e8c97 7475 
dh-python_6.20240401_source.buildinfo
Checksums-Sha256:
 c1694cc7faf2a7989216490b71f71be2e82c70ab860634ac1d819828500557c4 1688 
dh-python_6.20240401.dsc
 f9590a3214f3eaff322f2b3d9bf9a8d9408ab1e18bce6ce54a0a513374478815 122764 
dh-python_6.20240401.tar.xz
 7061797ee1e91600af941b7f0ead0bca2e7d4fde9644470f7218242a79115318 7475 
dh-python_6.20240401_source.buildinfo
Files:
 ac2d676a92f6c8b494a9bc2cebdc46bb 1688 python optional dh-python_6.20240401.dsc
 77acc3fda752bb2d0caa135ab61d4bc2 122764 python optional 
dh-python_6.20240401.tar.xz
 76b07a2535314a1f3c916354fea17e73 7475 python optional 
dh-python_6.20240401_source.buildinfo

-BEGIN PGP SIGNATURE-

iIoEARYKADIWIQTumtb5BSD6EfafSCRHew2wJjpU2AUCZgrwjhQcc3RlZmFub3JA
ZGViaWFuLm9yZwAKCRBHew2wJjpU2E19AQDsT0A1rJVMJr1C66QRBF3PHUqib3LS
C12ntuQDtSfwUQEA2M3BEh44psvaJgNOf21oLMYZ7Mz+wBy+rCj5EQ36+gk=
=G3Lw
-END PGP SIGNATURE-



pgphm8FQkUXVW.pgp
Description: PGP signature

Accepted rust-proc-macro-crate-1 1.3.1-1 (source amd64) into experimental

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 12 Feb 2024 17:09:07 -0500
Source: rust-proc-macro-crate-1
Binary: librust-proc-macro-crate-1-dev
Architecture: source amd64
Version: 1.3.1-1
Distribution: experimental
Urgency: medium
Maintainer: Debian Rust Maintainers 

Changed-By: Matthias Geiger 
Description:
 librust-proc-macro-crate-1-dev - Replacement for crate (macro_rules keyword) 
in proc-macros - Rust
Changes:
 rust-proc-macro-crate-1 (1.3.1-1) experimental; urgency=medium
 .
   * Team upload.
   * Package proc-macro-crate 1.3.1 from crates.io using debcargo 2.6.1
   * Introduce 1.x semver for compatibilty
Checksums-Sha1:
 28e2fda6635759f280e28a8c6ed9b39326c85e97 2432 
rust-proc-macro-crate-1_1.3.1-1.dsc
 7075d5ab9f5c72121239b86b1d30d4defc2ceb5c 9678 
rust-proc-macro-crate-1_1.3.1.orig.tar.gz
 6e92f39eb4dce059de33ac8cccb74cf300e5b51d 3084 
rust-proc-macro-crate-1_1.3.1-1.debian.tar.xz
 d148023af2ce451b5d13f2a5ccf8d2d8cc15ea51 11704 
librust-proc-macro-crate-1-dev_1.3.1-1_amd64.deb
 cd72fac680bedacb093298571aaf5be498dad22b 10561 
rust-proc-macro-crate-1_1.3.1-1_amd64.buildinfo
Checksums-Sha256:
 e946b08f315b2512640cf8b4b5684d51ac3fe2bc514e037a5455fe425c99e381 2432 
rust-proc-macro-crate-1_1.3.1-1.dsc
 7f4c021e1093a56626774e81216a4ce732a735e5bad4868a03f3ed65ca0c3919 9678 
rust-proc-macro-crate-1_1.3.1.orig.tar.gz
 fb0b397fdcd32d88668f149f260e21c0245b63ab87ca161776e83ba09411aee9 3084 
rust-proc-macro-crate-1_1.3.1-1.debian.tar.xz
 7b46bb3118843a57669f5fc69fafcdf849ac4a511e64fa6a1626955c7a035631 11704 
librust-proc-macro-crate-1-dev_1.3.1-1_amd64.deb
 01462e734c6d160fc83e0ddaaa8ca4a12fbfa89f0d4329a6d9e8d3b0a8513b28 10561 
rust-proc-macro-crate-1_1.3.1-1_amd64.buildinfo
Files:
 ad78325393bb6aca8c05244566d4b0c0 2432 rust optional 
rust-proc-macro-crate-1_1.3.1-1.dsc
 b5012003220ca5bf1512946914dfe295 9678 rust optional 
rust-proc-macro-crate-1_1.3.1.orig.tar.gz
 5a72a84c6d4b6c419d25c7b375083957 3084 rust optional 
rust-proc-macro-crate-1_1.3.1-1.debian.tar.xz
 bbb5a14778bb6108609fa93e6debe9d6 11704 rust optional 
librust-proc-macro-crate-1-dev_1.3.1-1_amd64.deb
 62e82b4c8e86b460c60863799c7c5d01 10561 rust optional 
rust-proc-macro-crate-1_1.3.1-1_amd64.buildinfo

-BEGIN PGP SIGNATURE-
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=fx9U
-END PGP SIGNATURE-



pgp_3DoHnNUWr.pgp
Description: PGP signature

Accepted glw 8.0.0-3 (source amd64) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Sun, 31 Mar 2024 13:00:14 +0200
Source: glw
Binary: libglw1-mesa-dev libglw1t64-mesa libglw1t64-mesa-dbgsym
Architecture: source amd64
Version: 8.0.0-3
Distribution: unstable
Urgency: medium
Maintainer: Debian X Strike Force 
Changed-By: Julien Cristau 
Description:
 libglw1-mesa-dev - GL widget library for Athena and Motif -- development files
 libglw1t64-mesa - GL widget library for Athena and Motif -- runtime
Closes: 1062170
Changes:
 glw (8.0.0-3) unstable; urgency=medium
 .
   * Add versioned build-dep on dpkg-dev for 64-bit time_t transition.
 .
 glw (8.0.0-2) unstable; urgency=low
 .
   [ Debian Janitor ]
   * Trim trailing whitespace.
   * Use secure copyright file specification URI.
   * Bump debhelper from deprecated 9 to 12.
 + debian/rules: Move --fail-missing argument to dh_missing.
   * Set debhelper-compat version in Build-Depends.
   * Drop unnecessary dependency on dh-autoreconf.
   * Use secure URI in Vcs control header Vcs-Git.
   * Update Vcs-* headers from URL redirect.
   * Use canonical URL in Vcs-Git.
   * Use secure URI in Homepage field.
   * Bump debhelper from old 12 to 13.
 + debian/rules: Drop --fail-missing argument to dh_missing, which is now 
the
   default.
 .
   [ Julien Cristau ]
   * Actually rename library package for 64-bit time_t transition
 (closes: #1062170).
Checksums-Sha1:
 7716bc84a31753a43c7e53f12e85c618d105651d 2017 glw_8.0.0-3.dsc
 c956deb158f261c3bf788c5f5b191eaf3d1689ef 4805 glw_8.0.0-3.diff.gz
 a1d212ee5cdcabb82ea95b054c5078eaab1a676c 9760 glw_8.0.0-3_amd64.buildinfo
 b37bbf3d83f1a49bd004abe73789c407d9d1378f 11092 
libglw1-mesa-dev_8.0.0-3_amd64.deb
 5b4c75973f2b47355d27411cd1c0588f0d7ba643 21760 
libglw1t64-mesa-dbgsym_8.0.0-3_amd64.deb
 55bdb1e81327701595e250661abc389cc924a63c 10232 
libglw1t64-mesa_8.0.0-3_amd64.deb
Checksums-Sha256:
 6927e4807ecdc7d1067a1dcdd2cb06dc081a8c61272248ac53acbdaa15e007ce 2017 
glw_8.0.0-3.dsc
 c0e901b7d4f8f72c87c3063f1c343e0d1020e7ad703860183097ca345a496dfe 4805 
glw_8.0.0-3.diff.gz
 5232236c82c9ab9930a681cf3e6d1b678c641b45ed669a1a7a8baf065c50ad1f 9760 
glw_8.0.0-3_amd64.buildinfo
 d7bdfb41f8c8c63bafd61fba199dd70353864f8b5f4e6b79463662a7179ebedf 11092 
libglw1-mesa-dev_8.0.0-3_amd64.deb
 bd794fcd6964c4f86e7f6d139a338f90cffd258b3382c71c4efa203af213ceba 21760 
libglw1t64-mesa-dbgsym_8.0.0-3_amd64.deb
 671a6285f7a2ba61908b838f4a3a0d32fbacbcb3ba60ce97e729117a71a8a83c 10232 
libglw1t64-mesa_8.0.0-3_amd64.deb
Files:
 00388d82a47ff5b247866d10e7dfc821 2017 libs optional glw_8.0.0-3.dsc
 49d44e155c286638cbb1208d6d39e1b9 4805 libs optional glw_8.0.0-3.diff.gz
 43203b9780ce6685d45900962de3af90 9760 libs optional glw_8.0.0-3_amd64.buildinfo
 14eff45350ab02725255d4b74aacd0f8 11092 libdevel optional 
libglw1-mesa-dev_8.0.0-3_amd64.deb
 b8d98abb10ca4ecb6581a8fb802c8b0e 21760 debug optional 
libglw1t64-mesa-dbgsym_8.0.0-3_amd64.deb
 2c3f5d7dd24cdab74a6ffba60993f5c1 10232 libs optional 
libglw1t64-mesa_8.0.0-3_amd64.deb

-BEGIN PGP SIGNATURE-

iQJIBAEBCgAyFiEEVXgdqzTmGgnvuIvhnbAjVVb4z60FAmYJUisUHGpjcmlzdGF1
QGRlYmlhbi5vcmcACgkQnbAjVVb4z61g8hAAsVOm6XReHWiHypKJQZ8GRxV4fnFv
geE6jc8FW+VVUvZI3VHl4s+URTcLaQQjW1Rw14v8ZWQySwU04gthS4elWXMnqCnf
C5r+DpO9T8eFFNqoo0mDwB+LZbPtP4XZpP8dkrjTnuRmmBnjslm3M9L8uqpRD0zv
tHHRuTUb6rfbw1s/XrPLJiDPbv5DWdKMjzpqjg3kKDfdM/QKoSjW4n4O6Ry22n9U
NBgYt+LjLxEXw0SS5Dp0UT/4a/8B9HP68sEV356+QGW+2rYOEnhaKoibRn9rCkN0
b+X2wmq5z0uQGxyuK85ffbheC6ByPgfjseZYvjctmUfI5CBIpS5vXfK74C+bywXd
KWICaQ7sM2hvbUHJ2wu3DeyAk4EJElQC47tMddvbRdpAsyGrP8u2YaSsgLkC3Iyy
D+Q2CyWf4Rs4CdV/LWh65Qsf7PTcOocIzEI4uzz4vAIJR9w5T+Q/rxK02QOJ6kZe
cf/W2ch9PW01xu09lspcO7y8neRGKARMA/f+GhUfe5FTEvoOYneSdppkj0RU/Nrn
D5Tqno81CaSLb1FH3VMRMYVRPeC9WhRNg+Y6UHREiJum3t7gPM2qHMp1wXIolg4U
UkPX+Jfvvrgic51hDn7Few4xiyzRr8raYnD7rLcIB4fbbA+AHsY1FA8Zc7xPvH5f
WnP3BmA5FIwkwI8=
=1hJU
-END PGP SIGNATURE-



pgpXEfQsBHpOR.pgp
Description: PGP signature

Accepted poke 4.0+dfsg-1~exp1 (source all amd64) into experimental

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Sun, 31 Mar 2024 15:55:19 -0400
Source: poke
Binary: elpa-poke libpoke-dev libpoke1 libpoke1-dbgsym poke poke-dbgsym vim-poke
Architecture: source all amd64
Version: 4.0+dfsg-1~exp1
Distribution: experimental
Urgency: medium
Maintainer: Debian Poke Team 
Changed-By: Sergio Durigan Junior 
Description:
 elpa-poke  - Extensible editor for structured binary data (Emacs mode)
 libpoke-dev - Extensible editor for structured binary data (development headers
 libpoke1   - Extensible editor for structured binary data (library)
 poke   - Extensible editor for structured binary data
 vim-poke   - Extensible editor for structured binary data (VIM addon)
Changes:
 poke (4.0+dfsg-1~exp1) experimental; urgency=medium
 .
   * New upstream version 4.0+dfsg
   * d/p/0001-Disable-building-docs-for-jitter.patch: Refresh.
   * d/rules: Clean up "rm" after dh_auto_install.
   * d/poke.install: Install new binary pokefmt.
   * d/rules: Remove (and don't install) pk-jojopatch.
   * Bump libpoke soname from 0 to 1.
 - d/control: Rename libpoke0 binary package to libpoke1.
 - d/libpoke0.install: Rename to libpoke1.install.
 - d/libpoke0.symbols: Rename to libpoke1.symbols.
   * d/libpoke1.symbols: Add new symbols.
   * d/control: B-D on pkgconf instead of pkg-config.
   * d/control: Update Maintainer to Debian Poke Team; add myself as Uploader.
Checksums-Sha1:
 1fe607aacb6a80d4dbc51db75edbfc050065876e 2287 poke_4.0+dfsg-1~exp1.dsc
 4cd4d41e4e850c52b3df0e2e55f8995a849a7d2d 4407764 poke_4.0+dfsg.orig.tar.xz
 ebbfbd83b181fa7d0d71cb0fd3e52d033e101597 15824 
poke_4.0+dfsg-1~exp1.debian.tar.xz
 6694080fb56b733c20467c289ef9c6c96ab95ee3 184456 
elpa-poke_4.0+dfsg-1~exp1_all.deb
 bd8977472863214eba95fbaba1793b7e5f306865 192076 
libpoke-dev_4.0+dfsg-1~exp1_amd64.deb
 86f815e173a58199e7920916f427ba7673c5c9c0 1022012 
libpoke1-dbgsym_4.0+dfsg-1~exp1_amd64.deb
 fef79e9211a1d6222cbb0a8c651d0c47ac552074 478508 
libpoke1_4.0+dfsg-1~exp1_amd64.deb
 130d89d17f0f9c27a00e0812f2dfe04450db84fb 254272 
poke-dbgsym_4.0+dfsg-1~exp1_amd64.deb
 688f1ec8ad5a57a8e00372f56c897ced6a8ca882 11685 
poke_4.0+dfsg-1~exp1_amd64.buildinfo
 b477bd2e2c7d1e1a23bb4eba2b300285bd0680b8 700256 poke_4.0+dfsg-1~exp1_amd64.deb
 1e2ba9c48bade2cada264c1ac9cb4289f3062b28 184032 
vim-poke_4.0+dfsg-1~exp1_all.deb
Checksums-Sha256:
 c78c824db904a100cedf67e8a845c10ef7241029b79b573fde46e491922335fa 2287 
poke_4.0+dfsg-1~exp1.dsc
 9d17ad8b1ea159a1c4e051e80672b766daa44c14bc80a6b71140fc3e306d676f 4407764 
poke_4.0+dfsg.orig.tar.xz
 1a1a12f63822dc15c91ecd2f1ce6130295a384d3a7d039eb8b9ede4f8cfee3ad 15824 
poke_4.0+dfsg-1~exp1.debian.tar.xz
 d4bbe9f453c898fe0ac3e131ff7173d1916e6f8da35afb43216914a551946b22 184456 
elpa-poke_4.0+dfsg-1~exp1_all.deb
 059c386a42732d635e4eb9013022ea9684871e206da402cd90d32b17e215d414 192076 
libpoke-dev_4.0+dfsg-1~exp1_amd64.deb
 5eae1f8e304d713fc493bdb3e5ad1b5667a2ec6504ef31dc3949dd754dd60d47 1022012 
libpoke1-dbgsym_4.0+dfsg-1~exp1_amd64.deb
 c9c3c7e1974fa3c1e11923cf6996b1a3d2cc05c71bc06ab7b9882de345aa56ea 478508 
libpoke1_4.0+dfsg-1~exp1_amd64.deb
 bb8e601648ae8ffd85fe8e6662765104bc78c909b3be422f61951faaf357d1e8 254272 
poke-dbgsym_4.0+dfsg-1~exp1_amd64.deb
 9d1bb0aea8d507f752f9f39a039e4fa9eeaf6933c31e0f4471eb647964fdc830 11685 
poke_4.0+dfsg-1~exp1_amd64.buildinfo
 6cbf33bb5628cb62ac19bffe8211546609ac3f6895d37545426e72acda2c0bae 700256 
poke_4.0+dfsg-1~exp1_amd64.deb
 8494e355c6903029813fc51aca69c0c52320125bebf55536f96a330fec34e398 184032 
vim-poke_4.0+dfsg-1~exp1_all.deb
Files:
 4fb68017321c87b1cbf24953fc827706 2287 editors optional poke_4.0+dfsg-1~exp1.dsc
 7109915f505186f636230f9a9498a005 4407764 editors optional 
poke_4.0+dfsg.orig.tar.xz
 4dbcd2b05ac739be3ef2b43f5380b128 15824 editors optional 
poke_4.0+dfsg-1~exp1.debian.tar.xz
 4420ddde829e4b7213e839bbfd98db57 184456 editors optional 
elpa-poke_4.0+dfsg-1~exp1_all.deb
 b04c497a286556eb5a17cd81117b54a6 192076 libdevel optional 
libpoke-dev_4.0+dfsg-1~exp1_amd64.deb
 4cb9d842350dd131c28dce20b2b7b876 1022012 debug optional 
libpoke1-dbgsym_4.0+dfsg-1~exp1_amd64.deb
 97c1e6ef2802360c6c5972788858cc64 478508 libs optional 
libpoke1_4.0+dfsg-1~exp1_amd64.deb
 a6acb43ffa9728f87ac55bf8e14f3e69 254272 debug optional 
poke-dbgsym_4.0+dfsg-1~exp1_amd64.deb
 e0d1029bbcd8de3ac0e058f68711b56a 11685 editors optional 
poke_4.0+dfsg-1~exp1_amd64.buildinfo
 69ea643b9c45add121c4e24483d97737 700256 editors optional 
poke_4.0+dfsg-1~exp1_amd64.deb
 b57d8c48f5c6fde2d8200866d2368187 184032 editors optional 
vim-poke_4.0+dfsg-1~exp1_all.deb

-BEGIN PGP SIGNATURE-

iQJIBAEBCgAyFiEEI3pUsQKHKL8A7zH00Ot2KGX8XjYFAmYJw9wUHHNlcmdpb2Rq
QGRlYmlhbi5vcmcACgkQ0Ot2KGX8XjbzOw//V1cvJfazxhbXU8KwfVXc9lm1JaoE
YSgTgKiQ2hrAE/azZKOojM6iU6ZFaxAX8xfki1EGG6gdGfxbr3W1Fou6wIA//tFS
0esIM2emexzv242YrbvacQTXgdRt4o/BJPPxIQXZwyJLu4JKMYsA47zdZFFT/928
IdN4byTd7i8gy1VqAZFSpt1SYi11wjrzWdN6A9hXbNv8b3RTy0UQHM7ouN/3Bc2p

Accepted mxml 4.0.1-1 (source arm64) into experimental

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Sat, 30 Mar 2024 11:25:14 +
Source: mxml
Binary: libmxml-dev libmxml4 libmxml4-dbgsym
Architecture: source arm64
Version: 4.0.1-1
Distribution: experimental
Urgency: medium
Maintainer: Alastair McKinstry 
Changed-By: Alastair McKinstry 
Description:
 libmxml-dev - small XML parsing library (development)
 libmxml4   - small XML parsing library (runtime)
Changes:
 mxml (4.0.1-1) experimental; urgency=medium
 .
   * New upstream release: Not libmxml1 -> libmxml4
   * Update patches
   * Standards-Version: 4.6.2
   * Fix typos in VCS urls in d/control
Checksums-Sha1:
 b7d7e350b9c47383b4ea43c59d900d91e832ed5d 1874 mxml_4.0.1-1.dsc
 8ae4722a4809ddd51788c1575b1d09f617525bd5 841996 mxml_4.0.1.orig.tar.xz
 59c865fdb211784048b891aea04869599f885f8f 11604 mxml_4.0.1-1.debian.tar.xz
 6c081545bda79afc8a7764703675a63dbebb965b 734120 libmxml-dev_4.0.1-1_arm64.deb
 2918c1d868ae05e034b855eb5266c560be5f9de1 40556 
libmxml4-dbgsym_4.0.1-1_arm64.deb
 b6101705a004dd88c39b6bcc32e87284c1b36252 23580 libmxml4_4.0.1-1_arm64.deb
 b11db8ebbd017c9c0acb583fc472ae40b9d3a54d 7699 mxml_4.0.1-1_arm64.buildinfo
Checksums-Sha256:
 dfb61cbd05700f8baf16b12fd4e416c8f73f9543c8f180480ce5ccbeb5264906 1874 
mxml_4.0.1-1.dsc
 df279256d09836128ec79e98453aaa39aa32b92d20dbaefac461badfeb5379d8 841996 
mxml_4.0.1.orig.tar.xz
 f8bcc95ec5a04411e1bd241b22f28153ee12bf8572d3ae54168386911b1db87c 11604 
mxml_4.0.1-1.debian.tar.xz
 37e86ef3e12a9fcd93afa6c22dab7c2b886544f24ada92c7463c15e29242fe7c 734120 
libmxml-dev_4.0.1-1_arm64.deb
 52b9ad6c09a6888b351974e0cb04261ea6cd8d7f9c30ef21edc124a646f0ebdf 40556 
libmxml4-dbgsym_4.0.1-1_arm64.deb
 47a9e30a27c2f1f14d6b7510e4de630ec8b10d376d83bf6208a16a671baff280 23580 
libmxml4_4.0.1-1_arm64.deb
 24ab154fbb907e785432c8b3ec3910cedefbb2bb78b01dd5a2c952cd50eb2089 7699 
mxml_4.0.1-1_arm64.buildinfo
Files:
 48ed0b11ae80d84dc96c3e5119bd2772 1874 libs optional mxml_4.0.1-1.dsc
 ae8ddea3bb918dd6ed47b2a943b76a11 841996 libs optional mxml_4.0.1.orig.tar.xz
 b957dbe2378d8be1328a103e32632130 11604 libs optional mxml_4.0.1-1.debian.tar.xz
 f08bc659e3d5a85762ad1331fa72dbac 734120 libdevel optional 
libmxml-dev_4.0.1-1_arm64.deb
 a15bef1f9257ce45c4a42b35aef7886c 40556 debug optional 
libmxml4-dbgsym_4.0.1-1_arm64.deb
 003f8b01c6c898a983df53d59810c826 23580 libs optional libmxml4_4.0.1-1_arm64.deb
 68985c59da8d5eb30cbb109e3a9f106d 7699 libs optional 
mxml_4.0.1-1_arm64.buildinfo

-BEGIN PGP SIGNATURE-
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=tk1c
-END PGP SIGNATURE-



pgph7NhU6_JDK.pgp
Description: PGP signature

Accepted ocrmypdf 16.1.2+dfsg1-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Sun, 31 Mar 2024 15:25:33 +0200
Source: ocrmypdf
Architecture: source
Version: 16.1.2+dfsg1-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Python Team 
Changed-By: Anton Gladky 
Closes: 1054243 1061264
Changes:
 ocrmypdf (16.1.2+dfsg1-1) unstable; urgency=medium
 .
   * [ab69dd4] New upstream version 16.1.2+dfsg1
   * [023612d] Update patch
   * [31332ef] Replace jbig2dec by jbig2. (Closes: #1054243)
   * [945b537] Remove python3-pypdf2 from d/t/control. (Closes: #1061264)
   * [26285ea] Set minimal pikepdf version to 8.14.0
Checksums-Sha1:
 df3d7cd52f51ca1a04459fa0914e3ba755a02d95 2523 ocrmypdf_16.1.2+dfsg1-1.dsc
 c24ed3cb13530769f9695a9571412ad9192f15d5 4835928 
ocrmypdf_16.1.2+dfsg1.orig.tar.xz
 ace84b4ec647927dd902db2500c8eff18e6ff5e2 38568 
ocrmypdf_16.1.2+dfsg1-1.debian.tar.xz
 6b15610c1fd69d0bb77d9b5a37b7bece47b21262 11602 
ocrmypdf_16.1.2+dfsg1-1_source.buildinfo
Checksums-Sha256:
 19ad9afe9028f6686c2ddefac8c4292c5645147b078d185bf97eb05e3da5df58 2523 
ocrmypdf_16.1.2+dfsg1-1.dsc
 999b8c9ccfc2b3c07087ba6bde78ae622d9774218d006677f9ae470269b7a1e9 4835928 
ocrmypdf_16.1.2+dfsg1.orig.tar.xz
 30d77469c9fbd14250422f49a0837167cdfc764cbfc571d2c68f90033ccca9a0 38568 
ocrmypdf_16.1.2+dfsg1-1.debian.tar.xz
 5d8585af27f62d23104292dd6acb13f7964b44ed2472bf6aa4425e6dbb5a536e 11602 
ocrmypdf_16.1.2+dfsg1-1_source.buildinfo
Files:
 f09cf6789998a8eb6d84bffb5e7e4a4c 2523 graphics optional 
ocrmypdf_16.1.2+dfsg1-1.dsc
 abf2806bd5c89c0ef2d61f8073743eed 4835928 graphics optional 
ocrmypdf_16.1.2+dfsg1.orig.tar.xz
 e910619fd1149ad95424a358795b3581 38568 graphics optional 
ocrmypdf_16.1.2+dfsg1-1.debian.tar.xz
 58b9678497f93b7f249dbcb35187b50c 11602 graphics optional 
ocrmypdf_16.1.2+dfsg1-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=TNvs
-END PGP SIGNATURE-



pgpz2eTmzPeF1.pgp
Description: PGP signature

Accepted python-pywebview 5.0.5+dfsg-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 14:51:18 -0400
Source: python-pywebview
Built-For-Profiles: noudeb
Architecture: source
Version: 5.0.5+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Python Team 
Changed-By: Jeremy Bícha 
Closes: 1063096
Changes:
 python-pywebview (5.0.5+dfsg-1) unstable; urgency=medium
 .
   * Team upload
   * New upstream release
   * Add patch to avoid dependency on proxy_tools which is not in Debian
 (Closes: #1063096)
Checksums-Sha1:
 3e21f3b12461cc7530c7c3f39d628113074290f7 2154 python-pywebview_5.0.5+dfsg-1.dsc
 04a16011df01ba4846e93c1b6cbf9529cbcdb61b 27085016 
python-pywebview_5.0.5+dfsg.orig.tar.xz
 d8e94b58fd8d5efaf8aee7fde3186149cabded5f 5068 
python-pywebview_5.0.5+dfsg-1.debian.tar.xz
 f2356028538c2da50121508e0e81fa9dd13c4a43 8096 
python-pywebview_5.0.5+dfsg-1_source.buildinfo
Checksums-Sha256:
 e6640b6f4e94a0b0757829af4cf4570c1dd3329178e22abf7694e5948cf1e27f 2154 
python-pywebview_5.0.5+dfsg-1.dsc
 2e88147125912b54a890f5728ea2fa15096ed8b884794bad28428f61bb80ff1f 27085016 
python-pywebview_5.0.5+dfsg.orig.tar.xz
 3426e616b7de2a9c1bfcd71c1ef42e1bba001f65172791d70d91dcd90548f4b5 5068 
python-pywebview_5.0.5+dfsg-1.debian.tar.xz
 083d707f0336ad99e7fa80935240e7e0495b30b5311ec4082658e00ca23eb8a5 8096 
python-pywebview_5.0.5+dfsg-1_source.buildinfo
Files:
 cd10277a7e160c51208ddbf0829e7aaa 2154 python optional 
python-pywebview_5.0.5+dfsg-1.dsc
 f26f0e7612fc2c0f1529ed1ce55df0fc 27085016 python optional 
python-pywebview_5.0.5+dfsg.orig.tar.xz
 366ca8a2c30c55dfc499ced4214d7b35 5068 python optional 
python-pywebview_5.0.5+dfsg-1.debian.tar.xz
 843ef618b3a9d9db4a845e168202e281 8096 python optional 
python-pywebview_5.0.5+dfsg-1_source.buildinfo

-BEGIN PGP SIGNATURE-

iQIzBAEBCgAdFiEETQvhLw5HdtiqzpaW5mx3Wuv+bH0FAmYLAkkACgkQ5mx3Wuv+
bH0Gfw/8D8UL6yW90O5HmK2e6gZc/DZxo8q2yNMgM+fFPzsddfRM9DmAc3hrIPr5
MujgpREIjZ7gUG+Uv02d1bi9dvp/4e+JSV57ne2q2354CtkMdy8a1DLQeQhUPUki
/jxohm7cc1qW7qxUoB+vrCbKz15fv6UIkkfuEtFuoSh5odig1Kjb6CdntoHdyp5t
nDOTvLWLwDGr2Uk1hZzHaPTz+tkHPGCbVgttTayiXt5oXH3mjrhi8/B1f5JnX5VD
xJWqwsQb9I8qe2s7hUgxf3IpZzryG7gUm6BpQEsLLLQTYpWnpMtRkd3doI197n3W
UuznEPbAnNACRPnls3aP+d8pEqEBBgEuCRB4RBJVYy52H1Lx+VI8xvOXrw9DiCUv
jFiSXMZJzlTcjvFHFW/cXjnuiwsMdgX+bhxryhOIHsSiNkJo2Xb+nHioD2yJy1Ej
zmk83HB9vCnLc+ZFKgb9mmB8IgNELB920jeEmSSbhiJRT6QpFusQz8xBEASombeW
9F9KT7vj/Py+kq6okYBwg3X2h683nxo5G1BHrRYNnKjrGR07G38nhfIDa/+kcA2v
HOmk35e0u3vHfyklnivNjB6GeFWO9MfLgiq0EUbDMVESTfjxVbYhJCGHZ0PdzomM
43aGWCAbsQT3usT+LXjr5hJXOPPBAnAQhcEGqqsQHrJwSgkkbhM=
=sjyX
-END PGP SIGNATURE-



pgpb_6YTfamup.pgp
Description: PGP signature

Accepted free42-nologo 3.1.7+ds-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 21:13:17 +0200
Source: free42-nologo
Architecture: source
Version: 3.1.7+ds-1
Distribution: unstable
Urgency: medium
Maintainer: Christian Stalp 
Changed-By: Stephen Kitt 
Changes:
 free42-nologo (3.1.7+ds-1) unstable; urgency=medium
 .
   * New upstream release.
Checksums-Sha1:
 1db8b3358c08569cec8e428ebcd862ed82caba38 1995 free42-nologo_3.1.7+ds-1.dsc
 4529ac0c55b4736e0896a6dd0b549993bbb5e9ae 454892 
free42-nologo_3.1.7+ds.orig.tar.xz
 6f890736f4c17d5b685b033e0fd3494a57466005 5752 
free42-nologo_3.1.7+ds-1.debian.tar.xz
 4da3fb294bd15b2a3f69802ddefe49a938643d89 15187 
free42-nologo_3.1.7+ds-1_source.buildinfo
Checksums-Sha256:
 5951360137ef0a1efde905b98641bf16126089a9e86f785b02e23b3cfd9b 1995 
free42-nologo_3.1.7+ds-1.dsc
 a7bbaf253cbe0fc43599ec487cd41165ac5e60fdb3ff6b198486d6a587f47eb5 454892 
free42-nologo_3.1.7+ds.orig.tar.xz
 639c7adb1321b78a22c38d0cd5351bf459e97a99893a82087b7ff1bfa13224cb 5752 
free42-nologo_3.1.7+ds-1.debian.tar.xz
 62acf213e4cdb6eca71aa57368c1ca1583406b5d4feb89ba4f2c09fcb73d6f69 15187 
free42-nologo_3.1.7+ds-1_source.buildinfo
Files:
 36be3f7186f97375020ee014f94ae6ba 1995 science optional 
free42-nologo_3.1.7+ds-1.dsc
 dcf48a67c198216c292996e08c13151b 454892 science optional 
free42-nologo_3.1.7+ds.orig.tar.xz
 d0a600ec48978d316cff4e7822dbe8c3 5752 science optional 
free42-nologo_3.1.7+ds-1.debian.tar.xz
 a9f8eca8634dc793c8c3cde000e06a43 15187 science optional 
free42-nologo_3.1.7+ds-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=GfFD
-END PGP SIGNATURE-



pgpeu2uyZreqi.pgp
Description: PGP signature

Accepted pikepdf 8.14.0+dfsg-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Sun, 31 Mar 2024 10:15:30 +0200
Source: pikepdf
Architecture: source
Version: 8.14.0+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Python Team 
Changed-By: Anton Gladky 
Changes:
 pikepdf (8.14.0+dfsg-1) unstable; urgency=medium
 .
   * Team upload.
   * New upstream version 8.14.0+dfsg.
 - Refresh patches.
 - Add python3-sphinx-autoapi to build-dep.
Checksums-Sha1:
 92f17ee7c9965dbb411b80dd7c6fe667fe9b8252 2585 pikepdf_8.14.0+dfsg-1.dsc
 0a846ac0476c4511f65e9cb272659eb1cf429107 2701528 
pikepdf_8.14.0+dfsg.orig.tar.xz
 f49a1f822d4b7d000c45cb8949778ed430a32cc8 1926836 
pikepdf_8.14.0+dfsg-1.debian.tar.xz
 c6a5373a249cf4f3cdc213762af798896ed9c59e 13211 
pikepdf_8.14.0+dfsg-1_source.buildinfo
Checksums-Sha256:
 c4d06fbda5a9de90b77df3ad7722a214ad43aeea0d5eed300e874986ef44dac5 2585 
pikepdf_8.14.0+dfsg-1.dsc
 440ffc492ebf9cfa9525cbaa1724a169ffb4608584971a945d658a99785886c8 2701528 
pikepdf_8.14.0+dfsg.orig.tar.xz
 0bd5d7e619ded6e88ee800b6eb71d1ea4e4acf28101891b75794269a80fc4b53 1926836 
pikepdf_8.14.0+dfsg-1.debian.tar.xz
 372661cfe7f959844c8eb461b707a4f6ba5f998c8f2a406ea8b350e09abb14a8 13211 
pikepdf_8.14.0+dfsg-1_source.buildinfo
Files:
 e0ae0963b18c172e6c2fdf8c0fd34d29 2585 python optional pikepdf_8.14.0+dfsg-1.dsc
 10951549f7e8f38f5981658bff8d716f 2701528 python optional 
pikepdf_8.14.0+dfsg.orig.tar.xz
 ededeb6fe0ed68901f5f4c739a381f36 1926836 python optional 
pikepdf_8.14.0+dfsg-1.debian.tar.xz
 f954a63820c4fbc6d882425cee040fc0 13211 python optional 
pikepdf_8.14.0+dfsg-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=XJW8
-END PGP SIGNATURE-



pgpERK_P2r0y1.pgp
Description: PGP signature

Bug#1068206: ITP: jolt -- A multi core friendly rigid body physics and collision detection library, written in C++, suitable for games and VR applications.

[Bret Curtis]

Package: wnpp
Severity: wishlist
Owner: Bret Curtis 
X-Debbugs-Cc: debian-devel@lists.debian.org

* Package name: jolt
  Version : 4.0.2
  Upstream Contact: Jorrit Rouwe 
* URL : https://github.com/jrouwe/JoltPhysics
* License : MIT
  Programming Lang: C++
  Description : A multi core friendly rigid body physics and collision 
detection library, written in C++, suitable for games and VR applications.

A multi core friendly rigid body physics and collision detection library 
suitable for games and VR applications, used by Horizon Forbidden West.

Extra Info:
This is already in use by several other project, of which is OpenMW which will 
eventually require this physics library.

Accepted pdfgrep 2.2.0-0.1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Tue, 26 Mar 2024 11:57:16 -0300
Source: pdfgrep
Architecture: source
Version: 2.2.0-0.1
Distribution: unstable
Urgency: medium
Maintainer: Christoph Egger 
Changed-By: Raul Cheleguini 
Closes: 103
Changes:
 pdfgrep (2.2.0-0.1) unstable; urgency=medium
 .
   [ Raul Cheleguini ]
   * Non-maintainer upload.
   * New upstream release.
   * d/control: Update Build-Depends to include pcre2, pkgconf and others.
 (Closes: #103).
Checksums-Sha1:
 833b57dcc55dafcb054dafc766847e5f49ebc6fc 2170 pdfgrep_2.2.0-0.1.dsc
 753e071c464bea4921d2eea3c9154c00c7e9dd09 213237 pdfgrep_2.2.0.orig.tar.gz
 0f92e624d30281f646eea5c01b918420395b0f59 228 pdfgrep_2.2.0.orig.tar.gz.asc
 92a0737de69439ab6b2357c90662aac227e5bea1 6384 pdfgrep_2.2.0-0.1.debian.tar.xz
 541e2620ac85e1f5ecdd415789621949c9a40b5f 8150 pdfgrep_2.2.0-0.1_amd64.buildinfo
Checksums-Sha256:
 ca4daf009bc7171f10338e183f375deab1d32bda59bf2350cbda58d7ce73edf0 2170 
pdfgrep_2.2.0-0.1.dsc
 0661e531e4c0ef097959aa1c9773796585db39c72c84a02ff87d2c3637c620cb 213237 
pdfgrep_2.2.0.orig.tar.gz
 897d6d58d67847d116d8461e95ea6ae632f06da36c6d4c5a6715a1fc77882af6 228 
pdfgrep_2.2.0.orig.tar.gz.asc
 544f07dd70909f4faec3520b86edebdb035a659d85fb5b625612912e04e6ea5c 6384 
pdfgrep_2.2.0-0.1.debian.tar.xz
 41779364c13ff286a8237aee66e65ab38ab8b14bd2bd0820cb7f0049ed597b61 8150 
pdfgrep_2.2.0-0.1_amd64.buildinfo
Files:
 42f843006accd5e7cb31916f83377076 2170 utils optional pdfgrep_2.2.0-0.1.dsc
 f74b5505e71e8bad576285c6bd1790d9 213237 utils optional 
pdfgrep_2.2.0.orig.tar.gz
 c05893f601923ee8da581cd1ee7bc2bd 228 utils optional 
pdfgrep_2.2.0.orig.tar.gz.asc
 631a5377d74d5f6dd817cfa90dd15219 6384 utils optional 
pdfgrep_2.2.0-0.1.debian.tar.xz
 d80700a52763edcc5b7c69d4ffdbed45 8150 utils optional 
pdfgrep_2.2.0-0.1_amd64.buildinfo

-BEGIN PGP SIGNATURE-
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=V0Xq
-END PGP SIGNATURE-



pgpac8qGQXfII.pgp
Description: PGP signature

Re: Validating tarballs against git repositories

[Gioele Barabucci]

On 31/03/24 08:59, Sven Joachim wrote:

The coreutils bootstrap script fetches files over the network, so it is
not possible to build the Debian package from upstream git tags.  At the
very least it would lack any translations, and there is also the
problem of the gnulib submodule.

Aren't these the same kinds of problem that affect go and rust packages?

--
Gioele Barabucci

Re: xz backdoor

[Theodore Ts'o]

On Mon, Apr 01, 2024 at 04:47:05PM +0100, Colin Watson wrote:
> On Mon, Apr 01, 2024 at 08:13:58AM -0700, Russ Allbery wrote:
> > Bastian Blank  writes:
> > > I don't understand what you are trying to say.  If we add a hard check
> > > to lintian for m4/*, set it to auto-reject, then it is fully irrelevant
> > > if the upload is a tarball or git.
> > 
> > Er, well, there goes every C package for which I'm upstream, all of which
> > have M4 macros in m4/* that do not come from an external source.
> 
> Ditto.  And a bunch of the packages where I'm not upstream too, such as
> that famously enthusiastic adopter of all things GNU, OpenSSH.

For e2fsprogs, almost all the M4 macros come from an external source;
but I had to patch one of the macros so that it would work on *BSD
when using pmake as opposed to GNU make.  And in another case, I
copied the macro from another package's git repo to fix a portability
issue with Mac OS X.

So it's highly likely that if you added a hard check in Lintian, both
of these would trigger for e2fsprogs.

Portability is hard.  Let's go shopping!

- Ted

Accepted swell-foop 1:46.0-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 13:28:36 -0400
Source: swell-foop
Built-For-Profiles: noudeb
Architecture: source
Version: 1:46.0-1
Distribution: unstable
Urgency: medium
Maintainer: Debian GNOME Maintainers 

Changed-By: Jeremy Bícha 
Changes:
 swell-foop (1:46.0-1) unstable; urgency=medium
 .
   * New upstream release
   * Add Build-Depends: librsvg2-dev
   * Release to unstable
 .
 swell-foop (1:46~alpha-1) experimental; urgency=medium
 .
   * New upstream release
   * Build-Depend on gtk4 instead of clutter
   * Add debian/upstream/metadata
   * Stop using debian/control.in and dh-sequence-gnome
   * Update standards version to 4.6.2, no changes needed
Checksums-Sha1:
 e9a52d3e80bc43f0f240415b1c70c27785e2d74d 2097 swell-foop_46.0-1.dsc
 8b76deda7179cc15deb486a994889a705f84bbc5 869096 swell-foop_46.0.orig.tar.xz
 68b607b3857f924105d689582f3dc0518f2b36af 25988 swell-foop_46.0-1.debian.tar.xz
 4bb4a6479875a3e429442e204006a668399b8895 17642 
swell-foop_46.0-1_source.buildinfo
Checksums-Sha256:
 b8537e24e2ee90a369c90b8c0ee0aedef52a677465695a03a97da4ca7a6209c5 2097 
swell-foop_46.0-1.dsc
 06f8ab7807d71cec948b868371f47fbadeefccb5c357e13d1ef3c8481891fca3 869096 
swell-foop_46.0.orig.tar.xz
 5d4926fffb41be13f8397ba9db1f8dddabe97a5c26bc975df33c1b636d453b39 25988 
swell-foop_46.0-1.debian.tar.xz
 2d02f12ec3def1fad6a204d0c680eb2fb8a94c5fb6fb1ce24f6dc6cd6642d098 17642 
swell-foop_46.0-1_source.buildinfo
Files:
 7840a287127124182db4fa524f489fa6 2097 games optional swell-foop_46.0-1.dsc
 cf32b23be4bd4d4732d581eee56274b4 869096 games optional 
swell-foop_46.0.orig.tar.xz
 36092b44a4c4c8f01bf20302cd12c62d 25988 games optional 
swell-foop_46.0-1.debian.tar.xz
 0ea9ee15c0883f73e8f8b8b879a9e027 17642 games optional 
swell-foop_46.0-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=w26s
-END PGP SIGNATURE-



pgpSLjaW9ERx3.pgp
Description: PGP signature

Accepted re2 20240401-1 (source) into experimental

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 13:19:43 -0400
Source: re2
Architecture: source
Version: 20240401-1
Distribution: experimental
Urgency: medium
Maintainer: Stefano Rivera 
Changed-By: Stefano Rivera 
Changes:
 re2 (20240401-1) experimental; urgency=medium
 .
   [ Stefano Rivera ]
   * New upstream release.
   * Update symbols for absl20230802. (libre2-11 hasn't hit unstable yet.)
   * Bump smoketest to --std=c++14.
 .
   [ Alexandre Detiste ]
   * remove extraneous python3-six build-dep
Checksums-Sha1:
 7656480f3253ae29ed41a3f7e7980268d7a1cef7 1416 re2_20240401-1.dsc
 e4c37ff7e8717719c8d535b9fd72bda50d60d33f 389819 re2_20240401.orig.tar.gz
 3774c97d30edb917a8ff0de1feb3fe1501c87578 10340 re2_20240401-1.debian.tar.xz
 f25302f951be9a3603ef271e813a4c73d13217bd 6422 re2_20240401-1_source.buildinfo
Checksums-Sha256:
 3fe4af18bd31fd0d1411b300979195edd0457e9673fd528aca9d25d512d9447d 1416 
re2_20240401-1.dsc
 3f6690c3393a613c3a0b566309cf04dc381d61470079b653afc47c67fb898198 389819 
re2_20240401.orig.tar.gz
 a80513768a04cc7aa2fb1306198bf1e1e9c4aac6e4689bc0fbd043730821eb10 10340 
re2_20240401-1.debian.tar.xz
 9a3e84f7e3f1a4a6d7b2cfe599b4b86bfa89a7f6d4585a6f137a739a93a6d072 6422 
re2_20240401-1_source.buildinfo
Files:
 7a6fd9c54f483dcc6028366d22b3 1416 libs optional re2_20240401-1.dsc
 05e993e11aa173b63552fb4d88e6524c 389819 libs optional re2_20240401.orig.tar.gz
 80a8b3cd62f0ae042b2330480cb08032 10340 libs optional 
re2_20240401-1.debian.tar.xz
 0a0be925d9fee3af72262c697dae2d29 6422 libs optional 
re2_20240401-1_source.buildinfo

-BEGIN PGP SIGNATURE-

iIoEARYKADIWIQTumtb5BSD6EfafSCRHew2wJjpU2AUCZgrsxBQcc3RlZmFub3JA
ZGViaWFuLm9yZwAKCRBHew2wJjpU2PW6AP9/7IqC088PVAGeIvI+PhwYJevbd/il
ebWYTq6P/d6FKwD/SgkgTLOmW2J9a4N6BvMviSJ9J3V7c+MObw9l64u7yQM=
=ASQA
-END PGP SIGNATURE-



pgpLspgivHAU8.pgp
Description: PGP signature

Accepted secrets 9.3-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 13:23:03 -0400
Source: secrets
Built-For-Profiles: noudeb
Architecture: source
Version: 9.3-1
Distribution: unstable
Urgency: medium
Maintainer: Debian GNOME Maintainers 

Changed-By: Jeremy Bícha 
Changes:
 secrets (9.3-1) unstable; urgency=medium
 .
   * Team upload
   * New upstream release
   * Add Build-Depends & Depends: python3-pykcs11 & python3-yubico
   * Bump minimum python3-pykeepass
Checksums-Sha1:
 d2de3ae5d63859c3190cc5434ec1d835e77569fb 2422 secrets_9.3-1.dsc
 ceb82988f29c76650803aa893de65b5bb220e826 460781 secrets_9.3.orig.tar.bz2
 f42f221efe8c2e4bee1a546ae9788799be8f368d 3220 secrets_9.3-1.debian.tar.xz
 d85f6d2e978e52e21925d152ac0fb9585e8ee160 18787 secrets_9.3-1_source.buildinfo
Checksums-Sha256:
 7d491e6b93ec7bf23215514d166cd25222900a99a34d740a488f078faa717f3d 2422 
secrets_9.3-1.dsc
 dc2533d60ef2b45268eac1706f0dd88d539b601a81421d605c2a17ebe4db75b0 460781 
secrets_9.3.orig.tar.bz2
 9d1e69e4edddab4e2bcca7e0daddcfa4c69e0741f080311dd287b03f33f97686 3220 
secrets_9.3-1.debian.tar.xz
 f68eb179fb8d4ac18746e33630cae6ec80bbe8f0f88db55cff548f747cbac209 18787 
secrets_9.3-1_source.buildinfo
Files:
 cdfb4b600e52386ea8d42ddc4945 2422 gnome optional secrets_9.3-1.dsc
 2021bbcfcf42eff3fd5988c5da0da4e9 460781 gnome optional secrets_9.3.orig.tar.bz2
 8c45092fedf62dd08ec0f63e6f11e668 3220 gnome optional 
secrets_9.3-1.debian.tar.xz
 9aaaf287bfe5d6097565a093177b3c71 18787 gnome optional 
secrets_9.3-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=PFt7
-END PGP SIGNATURE-



pgpyVTdJaW0wl.pgp
Description: PGP signature

Re: Firmwares (was Re: Bits from the DPL)

[Andrey Rakhmatullin]

On Mon, Apr 01, 2024 at 06:27:29PM +0200, Vincent Bernat wrote:
> On 2024-04-01 18:05, Jonathan Carter wrote:
> > The included firmware contributed to Debian 12 being a huge success,
> > but it wasn't the only factor.
> 
> Unfortunately, the shipped firmwares are now almost a year old, including
> for unstable. I am following the progress since quite a few years and I have
> seen many possible contributors trying to help and fail. The current
> situation is that Debian does not work well with recent AMD-based laptops
> due to firmware being too old. Therefore, we are back at users trying to
> update the firmware by copying them from random places (as for myself, I am
> using the deb generated by upstream's Makefile).
> 
> My personal impression is that we are repeating a common scheme in Debian:
> maintainers don't have time to move forward due to the task being
> non-trivial for reasons of our own, people are proposing to help (6 people
> in [1]), but this is ignored by the maintainers as they don't have time.
> 
> [1]: https://salsa.debian.org/kernel-team/firmware-nonfree/-/merge_requests
Why is updating the firmware packages not trivial? Is it because of
licensing issues? I always thought it's just copying a bunch of files from
the linux-firmware repo (but I also often wondered why is the package
often not up to date).

-- 
WBR, wRAR


signature.asc
Description: PGP signature

Accepted blueprint-compiler 0.12.0-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 14:18:15 -0400
Source: blueprint-compiler
Built-For-Profiles: noudeb
Architecture: source
Version: 0.12.0-1
Distribution: unstable
Urgency: medium
Maintainer: Debian GNOME Maintainers 

Changed-By: Jeremy Bícha 
Changes:
 blueprint-compiler (0.12.0-1) unstable; urgency=medium
 .
   * New upstream release
   * Drop all patches: applied in new release
   * Stop using dh-sequence-gnome
Checksums-Sha1:
 cc6e3c89bf6e31cc881c8ca12da276d962641b6c 2251 blueprint-compiler_0.12.0-1.dsc
 2351923765661fd3e24d7fc15f333dfbe798c1ca 90521 
blueprint-compiler_0.12.0.orig.tar.bz2
 4d0f1f7f5f79a55351dee70c07724eb3e66f7e96 3144 
blueprint-compiler_0.12.0-1.debian.tar.xz
 174cad54c80711d5825e5aa86cd3e1860d6f9aae 17946 
blueprint-compiler_0.12.0-1_source.buildinfo
Checksums-Sha256:
 afb9d07b3651dfa2037bb4bde328a92335a32101e38e187506c9fc237b517346 2251 
blueprint-compiler_0.12.0-1.dsc
 0f762e8a0dfef9aa46b4bddf8ed4bbc09b5d2fa2baff5dec109ccc513c6e9e00 90521 
blueprint-compiler_0.12.0.orig.tar.bz2
 cfd59961f9fdab11b2085a266387e5e7e427b2f7aafdbb06c3bd9220c7ddd90d 3144 
blueprint-compiler_0.12.0-1.debian.tar.xz
 370b3e2486bf7a5774a16e94c030416ac554614e18d0b330cdd7b52bc1fa966f 17946 
blueprint-compiler_0.12.0-1_source.buildinfo
Files:
 e05b5b5d9f6564bcee018e51d44ca8bf 2251 gnome optional 
blueprint-compiler_0.12.0-1.dsc
 4cffc9f5aa95dbb14368e62aaf4d3cc2 90521 gnome optional 
blueprint-compiler_0.12.0.orig.tar.bz2
 bd534b3facace8fe4571e12d2a570b51 3144 gnome optional 
blueprint-compiler_0.12.0-1.debian.tar.xz
 6d7c685bc2bfb15ab00159d8d5bc0d5b 17946 gnome optional 
blueprint-compiler_0.12.0-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=eZ2r
-END PGP SIGNATURE-



pgpesCYMThar6.pgp
Description: PGP signature

Accepted aegean 0.16.0+dfsg-4 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 01 Apr 2024 19:49:51 +0200
Source: aegean
Architecture: source
Version: 0.16.0+dfsg-4
Distribution: unstable
Urgency: medium
Maintainer: Debian Med Packaging Team 

Changed-By: Sascha Steinbiss 
Closes: 1068178
Changes:
 aegean (0.16.0+dfsg-4) unstable; urgency=medium
 .
   * Remove explicit runtime dependency on libgenometools0.
 Closes: #1068178
   * Add d/copyright information for debian/ directory.
   * Bump Standards-Version.
   * Add Rules-Requires-Root: no.
   * Update debhelper compat level to 13.
   * Only list files not installed.
   * Adjust renamed lintian tag overrides.
   * Bump watchfile version to 4.
Checksums-Sha1:
 d2ea1a806ae5e9eeb7c6c3a01870d305c516432d 2235 aegean_0.16.0+dfsg-4.dsc
 00691a8e3c55341d06cb35f66476e5f4b0a23426 9628 
aegean_0.16.0+dfsg-4.debian.tar.xz
 b23985289243e9d24af136a993fdff02ff93c37e 9177 
aegean_0.16.0+dfsg-4_amd64.buildinfo
Checksums-Sha256:
 710d89ddf5e359e827a0504644fcd7d7ed36bcdf3d8c79335033deb80dfbd090 2235 
aegean_0.16.0+dfsg-4.dsc
 18eaae267e4af9c076ea1679286b71f8a242d7e2124d09eb2457acd07b8e1f93 9628 
aegean_0.16.0+dfsg-4.debian.tar.xz
 da063b74db294fefd3ef59b77227ccf699a69733c2ac78b49aa543553f84e60a 9177 
aegean_0.16.0+dfsg-4_amd64.buildinfo
Files:
 e2fcd5125f2c256eff81fb8af1ccfa17 2235 science optional aegean_0.16.0+dfsg-4.dsc
 e15b076adebc76512ba2fa37111644de 9628 science optional 
aegean_0.16.0+dfsg-4.debian.tar.xz
 2fc0f304d5cb0c3ef7964fa9f0590bcd 9177 science optional 
aegean_0.16.0+dfsg-4_amd64.buildinfo

-BEGIN PGP SIGNATURE-
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=KOiA
-END PGP SIGNATURE-



pgpixL38hVALn.pgp
Description: PGP signature

Accepted fwupd-efi 1:1.5-4 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 15:27:41 -0500
Source: fwupd-efi
Built-For-Profiles: noudeb
Architecture: source
Version: 1:1.5-4
Distribution: unstable
Urgency: medium
Maintainer: Debian EFI 
Changed-By: Mario Limonciello 
Changes:
 fwupd-efi (1:1.5-4) unstable; urgency=medium
 .
   * Backport another patch for aarch64 FTBFS
Checksums-Sha1:
 3db3b888dee115c3248ecb2bdcb36b797ba11f96 2860 fwupd-efi_1.5-4.dsc
 aed00a1a0f6aa66751a1cba4d32fb74974627ad6 11820 fwupd-efi_1.5-4.debian.tar.xz
 6e01572a9a604e49813739bf8abbe16fbbde1857 8575 fwupd-efi_1.5-4_source.buildinfo
Checksums-Sha256:
 7f07b43f879d6d84bf18e842c954f3b83f42bd0cec0722ddeb8a6cfbc6c3a7fd 2860 
fwupd-efi_1.5-4.dsc
 02b2c1eec75daf36c2f6447c863188427814ce6b87ff9aa0b39f0d4f364d9fab 11820 
fwupd-efi_1.5-4.debian.tar.xz
 c7515a9acd8fa8675861ef41be275b058b805146947a638fc2ec9d6e02d30fa0 8575 
fwupd-efi_1.5-4_source.buildinfo
Files:
 0d04ade6fb8f50cab88ef52d0ad6e552 2860 admin optional fwupd-efi_1.5-4.dsc
 5462f2edf85c193e184a984bffeb71b4 11820 admin optional 
fwupd-efi_1.5-4.debian.tar.xz
 f8234659ed826760c0fab50cd406e572 8575 admin optional 
fwupd-efi_1.5-4_source.buildinfo

-BEGIN PGP SIGNATURE-

iQJGBAEBCgAwFiEECwtuSU6dXvs5GA2aLRkspiR3AnYFAmYLGs8SHHN1cGVybTFA
Z21haWwuY29tAAoJEC0ZLKYkdwJ22DQP/iDmx1NaLGF7ddyaz+WxqxV3HHGqFJwE
kal4GUmmrvAOFhiDn0evE9NyzRjZp1Ap2SSEp22IraHeDaWzpt+PcIv7wCuVViQ4
L5Pgp5/lgUDIT5ihW+y5nWwOLs/nZSWTjs8yLsutzNwG8iBmsDT+9c9I0tbwIG0s
CwcQOndJ+NjFdmuRLDHtLhwGWJN1X7rPAgik7PVLHzxPRfCNRQGyIkG+fX8lWEY9
yAFmgollSuTdFmuLl2c+PA9yD1YQ34AwFhEB+V6/agMPv0Xb1rYDyd/hRY+fwFUK
NsGP2qFSSH7ja0MfLuUJXyEBQxJ08bY5Eq3MKIgvrtdq5ex02sVhjGYpgjAkHBRc
xtWV3wDXlgPVIocgfctKYWu+OabTNmWFwz91oc0bhecHmv8wsovnoj2kq91rFmOu
l6FueIEndQ1EZW8Qx35ofvGbAgo0yLMRLGcnyKkZ+Cf5RlaiMUD//GDx1G4f10kd
rIi0zAxvwbzik6Ij0fV/oXpvmpKc/8xFmkIjx+EijYteUXrlhfQQ1c9Fudnha1hg
ufqaK7BOcV1TGsLKklsXUnK9lUS9QAt0hzCd38rIvPNQkDBKW+RUy2IjBJPM0K5U
fora7L05cDyWmyamu4yO1Bdd+QI0NgL6xkVnDWOGlo/ERIK3f0ZLUlb+CKOmhtU4
jFsReKYZesnd
=fwGJ
-END PGP SIGNATURE-



pgpCRX6cEsOUS.pgp
Description: PGP signature

Re: Bits from the DPL

[Christian Kastner]

Hi Jonathan,

just a brief correction:

On 2024-04-01 18:05, Jonathan Carter wrote:
> I don't want to single out DSA there, it's difficult and affects many
> other teams. The Salsa CI team also spent a lot of resources (time and
> money wise) to extend testing on AMD GPUs and other AMD hardware. It's
> fantastic and interesting work, and really more people within the
> project and in the outside world should know about it!

The AMD GPUs are not part of the official CI yet, as both our official
infrastructure (hosting the GPUs) and our policies (expressing hardware
relationships) do not permit it.

We are running a fork of debci and other packages at
https://ci.rocm.debian.net. Our forks have a number of experimental
features, notably our architectures are [CPU ISA]+[GPU ISA], for example
amd64+gfx1030 (Navi 21) or amd64+gfx1100 (Navi 31).

Our fork currently automatically tracks all Debian packages which
reverse-depend on any of our libraries. Developers are invited to add
ROCm support to their packages if it's supported upstream, and the
packages will automatically be tested on over a dozen AMD GPU
architectures within our infra.

We're finalizing our upgrade to ROCm 5.7+ (also on Ubuntu), and a proper
write-up will follow on Debian Planet.

Best,
Christian

PS: Our intention is of course to feed back all our changes to debci,
Policy and so on, but some of these are entirely novel and require
experimentation first, followed by discussion.

Accepted libjxmpp-java 1.0.1-4 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 15:13:17 -0400
Source: libjxmpp-java
Architecture: source
Version: 1.0.1-4
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers 

Changed-By: James Valleroy 
Closes: 1057520
Changes:
 libjxmpp-java (1.0.1-4) unstable; urgency=medium
 .
   [ Debian Janitor ]
   * Remove constraints unnecessary since buster (oldstable):
 + Build-Depends: Drop versioned constraint on gradle-debian-helper.
   * Apply multi-arch hints.
 + libjxmpp-java: Add Multi-Arch: foreign.
 .
   [ Vladimir Petko ]
   * d/p/02-avoid-this-escape.patch: workaround 'this-escape' warnings for
 Java 21 (Closes: #1057520).
 .
   [ James Valleroy ]
   * Follows policy 4.6.2
   * Update debian/* copyright statements
Checksums-Sha1:
 2aa7246f4fad38e3510b77710c538f606cc83532 2106 libjxmpp-java_1.0.1-4.dsc
 84d141571e7f0febd34217226858ba57612df171 5572 
libjxmpp-java_1.0.1-4.debian.tar.xz
 36f1e280039a302bc0a18d8158fe996292f59581 13547 
libjxmpp-java_1.0.1-4_amd64.buildinfo
Checksums-Sha256:
 dec7b1913e044ffa159daac24e28c057046ae2eecbf7b078f25393374fe371d0 2106 
libjxmpp-java_1.0.1-4.dsc
 9430c297be94a6a1339d72a4a076839c4efacb7185c2d821a4d33194e9f5ef93 5572 
libjxmpp-java_1.0.1-4.debian.tar.xz
 3b1e3ec7b48a0428b3cb25a62f0aca3fa60550f6e5c0471d62df34d8ec57fe70 13547 
libjxmpp-java_1.0.1-4_amd64.buildinfo
Files:
 44e8847e75dba7513ea2a187ef0730ff 2106 java optional libjxmpp-java_1.0.1-4.dsc
 9658d7b121e3a9a985937e695e86b39d 5572 java optional 
libjxmpp-java_1.0.1-4.debian.tar.xz
 e45e237a24684d48a0d56e83c2405471 13547 java optional 
libjxmpp-java_1.0.1-4_amd64.buildinfo

-BEGIN PGP SIGNATURE-
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=n6/W
-END PGP SIGNATURE-



pgpnQ6pnh55pO.pgp
Description: PGP signature

Accepted latexmk 1:4.84-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 21:21:17 +0200
Source: latexmk
Architecture: source
Version: 1:4.84-1
Distribution: unstable
Urgency: medium
Maintainer: Debian TeX Task Force 
Changed-By: Hilmar Preusse 
Changes:
 latexmk (1:4.84-1) unstable; urgency=medium
 .
   * New upstream release, refresh patches.
Checksums-Sha1:
 e6431050b80884942776ddff3e0b3b270de0a43c 2087 latexmk_4.84-1.dsc
 8f5126c0a62612feccb8c119c5861fa72809bf19 454628 latexmk_4.84.orig.tar.xz
 8af200b2258a5f1fd7357e00a946b8a3087842d8 6728 latexmk_4.84-1.debian.tar.xz
 a567d3492bec5a5ccc08375c9c69b35818152814 5936 latexmk_4.84-1_source.buildinfo
Checksums-Sha256:
 b39832b3025308394c61a3c01eb6f3af9325543be3a1cf14d94bb2639a24e4e1 2087 
latexmk_4.84-1.dsc
 0ad000d9b4ade81d89d30a39f520244a7313b26269832622f7592c1af7d320df 454628 
latexmk_4.84.orig.tar.xz
 58943dc7d80a42b29d2806a4c31cf21542993ddab3cd66d75e885d7d48910114 6728 
latexmk_4.84-1.debian.tar.xz
 55fb92455634df898ef52ed62bac8126c94a0baee4715d2c67441afc2584fa1a 5936 
latexmk_4.84-1_source.buildinfo
Files:
 ea2bc8ab4f6ea408a246c5775cd7bd28 2087 tex optional latexmk_4.84-1.dsc
 184ca8fb635df56f768d2be35b1cb072 454628 tex optional latexmk_4.84.orig.tar.xz
 3f28abac3eb44bbc0e549e275a92c606 6728 tex optional latexmk_4.84-1.debian.tar.xz
 eef4347b8b651567722e5a792bca9f57 5936 tex optional 
latexmk_4.84-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=oP66
-END PGP SIGNATURE-



pgpU7Yu4hGprT.pgp
Description: PGP signature

Accepted libei 1.2.1-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 16:55:38 -0400
Source: libei
Built-For-Profiles: noudeb
Architecture: source
Version: 1.2.1-1
Distribution: unstable
Urgency: medium
Maintainer: Debian X Strike Force 
Changed-By: Jeremy Bícha 
Changes:
 libei (1.2.1-1) unstable; urgency=medium
 .
   * New upstream release
Checksums-Sha1:
 3eb99722da021cd00d9e8982647f51e6cfe70076 2708 libei_1.2.1-1.dsc
 02962b52388bde37499f508bd1debda72bb2c94d 27565 libei_1.2.1.orig-munit.tar.gz
 cae307e2c72af66019ad125227f30c02b7da86d5 231338 libei_1.2.1.orig.tar.gz
 7b2334be24729cf696ac1cee01de1aaa85f978b9 5576 libei_1.2.1-1.debian.tar.xz
 5614a576a282b61e8ad124de8fa5fa97250e4936 9228 libei_1.2.1-1_source.buildinfo
Checksums-Sha256:
 2ba0d3d2f62bd142e1060c1b57c417cb1b46e2a4280e6da089e20db844fc03a4 2708 
libei_1.2.1-1.dsc
 b3f41c31bc724fee35136fcf187760e81949273bf4900f40b67fcf10fd948203 27565 
libei_1.2.1.orig-munit.tar.gz
 7e06f06aa4dd1f7d170a0e5194644fe5cc889adc9b7be16bed5f2c39145569a4 231338 
libei_1.2.1.orig.tar.gz
 bbcb276b5dc824e8f84867d436a8c8534976431f7a1890a729493995196f81f0 5576 
libei_1.2.1-1.debian.tar.xz
 b0bded88283a91b0394cc873056d496d067b75b68312d777c0ec4e87dbe04d68 9228 
libei_1.2.1-1_source.buildinfo
Files:
 14379c5af25c472f39716bf16ed58c3d 2708 x11 optional libei_1.2.1-1.dsc
 e328a78f73782d037c8b976b8fac23d5 27565 x11 optional 
libei_1.2.1.orig-munit.tar.gz
 39d18e5c56834d0b3e62b1e2af41a7a5 231338 x11 optional libei_1.2.1.orig.tar.gz
 5fd479e196813ee5b29092082085419a 5576 x11 optional libei_1.2.1-1.debian.tar.xz
 9886c91bfdf217dfdba1928f2cde1841 9228 x11 optional 
libei_1.2.1-1_source.buildinfo

-BEGIN PGP SIGNATURE-

iQIzBAEBCgAdFiEETQvhLw5HdtiqzpaW5mx3Wuv+bH0FAmYLH1sACgkQ5mx3Wuv+
bH2Ruw//R0PtgeKtg5I1wmyS/esqfYHRN1swCXU0zZn9Q3eylV2SiRy7S56wJbZE
Gjpcn24W2cVkq+MGADmOB0VyGd+tl2T0/dqqOr2Iw6yihJeKYTSaWVv9n17b6FVE
memDqgEsJnQQjqgYEQ0ZspCGYXpjWGekaerLwJzqujORSB6lU5dcs2U1ZDJvsIuV
YpHBIB6iLm4r4Mbpe58UBWIy9Ug02q55UnlzELvc+wwX+GP8iRYhCbgoPjA296ma
1NiDXJtByKutmW6LPUA6Ku/YcVWOIy1tFbm8gbUAHorcQADldVzuZSzed3mqyjLL
wv+CqGLeomfTuDvjQyjCqvucl61IJDufd8DENPneiuVQ5JlX7Sw7x6uolAsG3jLA
ZpG4/9DCbazuQtoGq9YgCE5wOcEO2RAWq03rv2+bWBvTcoxaQHsIiHPr0e7zCEeZ
llruWgt3Gg01irN/PGKuAPp66s0uoq+tXAM4UAsCZC0tLe+tR4y6kFhwhAjra9sC
0bN9U6Vo914ciB5V5+nT5ijH3oQtlmF84AO5Yiccue1My4RaS+UIaoUA1+RXhMb1
Mv7j0gHflWgD+vG9s8GbkNzyytp7aHHAyDKpNyelZaE9DJ4OE0xgPLs11kuOL5j/
cC2JK+4g4yLuQErKpBhd10N8MtHfgesrKctwA3w9AsyF1Bnlqw4=
=5d1D
-END PGP SIGNATURE-



pgpImH0RCI5jb.pgp
Description: PGP signature

Accepted pykeepass 4.0.7-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 12:31:36 -0400
Source: pykeepass
Built-For-Profiles: noudeb
Architecture: source
Version: 4.0.7-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Python Team 
Changed-By: Jeremy Bícha 
Closes: 1067506
Changes:
 pykeepass (4.0.7-1) unstable; urgency=medium
 .
   * Team upload
   * New upstream release (Closes: #1067506)
   * Add Build-Depends: pybuild-plugin-pyproject
   * Add Build-Depends: python3-pyotp for build tests
   * Cherry-pick patch to fix build
Checksums-Sha1:
 aa170dd63f318ca1a2dfe9e2111a7386d5eb6b02 2227 pykeepass_4.0.7-1.dsc
 8faa4dad61a53e592284c847a4515d6e0ecb1e1b 110217 pykeepass_4.0.7.orig.tar.gz
 f8df97bd1f492fd4be31a88cb50531a51414677a 4784 pykeepass_4.0.7-1.debian.tar.xz
 3c6aeb6e815b6d31f0e93c42b1d5e82cb3dff7c7 8210 
pykeepass_4.0.7-1_source.buildinfo
Checksums-Sha256:
 cf9f79b4560f8d35cc9f7c68e392654cbb80ccc2eb543e21c67d72e8f97c25af 2227 
pykeepass_4.0.7-1.dsc
 c1c8bba7314a8aff196dbb3c2bcbde6dfa64008f4e67637f06d5139d13095cfe 110217 
pykeepass_4.0.7.orig.tar.gz
 10525791d1b87b14adfbcd3e31c483fd8775e72c1b1250b75ae0a6b4ef18a9a7 4784 
pykeepass_4.0.7-1.debian.tar.xz
 34048c90f6179b00a3d24aedfca105cbfc3d8529acbfa02d3ff25c4b44df54e8 8210 
pykeepass_4.0.7-1_source.buildinfo
Files:
 ca011683ab95b19554d2787c91c55e62 2227 python optional pykeepass_4.0.7-1.dsc
 5f5aa9ac74ada7779385d65dc375279e 110217 python optional 
pykeepass_4.0.7.orig.tar.gz
 26d6a6d9c29480214653641ab177ef83 4784 python optional 
pykeepass_4.0.7-1.debian.tar.xz
 6421cd5d91961bd1843b17d5b8ad005b 8210 python optional 
pykeepass_4.0.7-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=5rD6
-END PGP SIGNATURE-



pgpDZtyFInOzi.pgp
Description: PGP signature

Re: Validating tarballs against git repositories

[Vincent Bernat]

On 2024-04-01 12:44, Bastian Blank wrote:


So in the end you still need to manually review all the stuff that the
tarball contains extra to the git.  And for that I don't see that it
actually gives some helping hands and makes it easier.

So I really don't see how this makes the problem in hand any better.
Again the workload of review is on the person doing the job.  Aka we do
fragile manual work instead of possibly failing automatic work.


I think that if Debian was using git instead of the generated tarball, 
this part of the backdoor would have just been included in the git 
repository as well. If we were able to magically switch everything to 
git (and we won't, we are not even able to agree on simpler stuff), I 
don't think it would have prevented the attack.

Accepted breezy 3.3.6-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 17:13:39 +0100
Source: breezy
Architecture: source
Version: 3.3.6-1
Distribution: unstable
Urgency: low
Maintainer: Debian Breezy Maintainers 
Changed-By: Jelmer Vernooij 
Changes:
 breezy (3.3.6-1) unstable; urgency=low
 .
   * New upstream release.
Checksums-Sha1:
 af3af3a2484c7f157cbdc2c6f826415c1aed8676 2626 breezy_3.3.6-1.dsc
 7ad2668ea2510ac4294f26b7207d65f415dfe1f5 9476173 breezy_3.3.6.orig.tar.gz
 301c7d1f5da72e3f936e022fb0952148f95086c2 74984 breezy_3.3.6-1.debian.tar.xz
 7d2266f83cd5d54830a288b264a3b2d54392ef13 19829 breezy_3.3.6-1_source.buildinfo
Checksums-Sha256:
 89c0fc8ab826aabbf6d6160db91a264064bc529710b923f85b87fe4003207b5e 2626 
breezy_3.3.6-1.dsc
 ca7430eaae51de6b3c88371dbf4a77765d2a242b100206ce58ebec79336e2607 9476173 
breezy_3.3.6.orig.tar.gz
 eab03a7532b654a1a4d1bd58d791d457e25b08d9a7d0382bd10869c61444d0b1 74984 
breezy_3.3.6-1.debian.tar.xz
 1b48be17e236ce660637320e26a10ee5a652ad6f02124cd30a88d29568bee4ae 19829 
breezy_3.3.6-1_source.buildinfo
Files:
 f8d9fac366af49e74ed4a5ade47e3bdf 2626 vcs optional breezy_3.3.6-1.dsc
 5d8adbdc13286da24aebd7371653042d 9476173 vcs optional breezy_3.3.6.orig.tar.gz
 4e0c55e5c97cdbf97e8f50bb6e33cb7f 74984 vcs optional 
breezy_3.3.6-1.debian.tar.xz
 8f9a5c556f816ff72dc704122c85feab 19829 vcs optional 
breezy_3.3.6-1_source.buildinfo

-BEGIN PGP SIGNATURE-

iQEzBAEBCgAdFiEEgIoEfJX3ae+y722SMG8hYYBCUGYFAmYK5S8ACgkQMG8hYYBC
UGYYWQf+Pp8+w1WXnr1o184nf65Ekz++FTDmGZOrO0jHapoPCblmFnCO/sBNsxpU
eXFVEmfVT+okDQRlCY/acGcLy6eclCrbavwJJptk9+B64RPqXOLcuYCqVcbuTv37
X9yeiQ/B77T36KnWqnIWxDLH40MkSP61YMZnMIMhmTczhiIY8aaoWWaqJWbR/bHl
zck+n7k6iKRH+Nq84Vlso7NKc+ABZ4EpfosoSJNXnEP2GP1CeTEwQF3RIfpQgrbI
MWPAWUjg1X8MxZo0zqXxtFMku6ejT/+q1w9LlZ9fzE3ZyO2pDmyaRRFH/0V2C60V
15hmdfHKnUOVG1wjvOV6qxcPepv28A==
=f0yz
-END PGP SIGNATURE-



pgpUTY_TVwO6J.pgp
Description: PGP signature

Accepted urlwatch 2.28-3 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Fri, 29 Mar 2024 21:56:51 +0100
Source: urlwatch
Architecture: source
Version: 2.28-3
Distribution: unstable
Urgency: medium
Maintainer: Maxime Werlen 
Changed-By: Maxime Werlen 
Closes: 1068014
Changes:
 urlwatch (2.28-3) unstable; urgency=medium
 .
   * Apply patch to switch from dead appdirs to platformdirs (Closes: #1068014)
   * Update copyright years
Checksums-Sha1:
 2ef75ade719997b73455fc707c7b7f993a9ded97 2178 urlwatch_2.28-3.dsc
 17da60657d2b78747f9644ac88712366b5aa58bc 9884 urlwatch_2.28-3.debian.tar.xz
 2b11bc20d5a3099df8a1126f17f813a0c65d602f 8359 urlwatch_2.28-3_source.buildinfo
Checksums-Sha256:
 05d25c3bf2e3fab8014ed13bcaeb9651a467e14c6b080d855f7cf3a4fb525c88 2178 
urlwatch_2.28-3.dsc
 af209b9c94c34f29eaa5abcb486eaa386f5ec537e41333978afd4e2b0d339542 9884 
urlwatch_2.28-3.debian.tar.xz
 d2ccb47070491f4d61f99600d7edfa7fb902ff64d00adc04fdd368948428aee9 8359 
urlwatch_2.28-3_source.buildinfo
Files:
 757ed21e3684f144fb09c7cd0d935c4c 2178 web optional urlwatch_2.28-3.dsc
 51b417bc73974efa5670b4d8476813e8 9884 web optional 
urlwatch_2.28-3.debian.tar.xz
 cff2c86f9239ba658d9ba9fcc49c3e5a 8359 web optional 
urlwatch_2.28-3_source.buildinfo

-BEGIN PGP SIGNATURE-
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=U70V
-END PGP SIGNATURE-



pgp0wQNy36sr1.pgp
Description: PGP signature

Accepted whois 5.5.22 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 01 Apr 2024 20:14:41 +0200
Source: whois
Architecture: source
Version: 5.5.22
Distribution: unstable
Urgency: medium
Maintainer: Marco d'Itri 
Changed-By: Marco d'Itri 
Changes:
 whois (5.5.22) unstable; urgency=medium
 .
   * Fixed a segmentation fault with --no-recursion.
   * Updated the .bm and .vi TLD servers.
   * Removed 4 new gTLDs which are no longer active.
Checksums-Sha1:
 e6c3d217631fde28a1250a7268a309ae292347e0 925 whois_5.5.22.dsc
 09bb6e5063cfb619fb420ce3252c161c7affbb0d 90884 whois_5.5.22.tar.xz
 1232597ff718f2d1f665fe02ad786481180907f1 5697 whois_5.5.22_amd64.buildinfo
Checksums-Sha256:
 474afb2a7f4a16a946d7586f0c41357688e0c757fc08862885d31dfd6d170d9a 925 
whois_5.5.22.dsc
 03f12c27ae85870d7bcd95b14f3fb8b174532b2f2a59d8380c42ae436d0630d7 90884 
whois_5.5.22.tar.xz
 e41bb3c3b750728ec8e229d636105b71a744023ba9d068f9adbadc7a578290f0 5697 
whois_5.5.22_amd64.buildinfo
Files:
 14c5ebe82105ba5689f17c1db2193a7f 925 net standard whois_5.5.22.dsc
 181d830358a9942dd4ad9cd82d1b1c29 90884 net standard whois_5.5.22.tar.xz
 e4d00cd929ecac2531de51a5f1fb1ce4 5697 net standard whois_5.5.22_amd64.buildinfo

-BEGIN PGP SIGNATURE-

iHUEARYIAB0WIQQnKUXNg20437dCfobLPsM64d7XgQUCZgr6mgAKCRDLPsM64d7X
ge72AQDyPqf4UhgoQ0APTsdi4iA8KA1MyvQQFtbog4OeSdSFnwEAnSXFZZO0Wswl
gfDIK55s+328rAF19mI97s2XASBgVQs=
=CHcj
-END PGP SIGNATURE-



pgprI6fCIzdUA.pgp
Description: PGP signature

Accepted libzypp 17.32.1-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 14:21:30 +0100
Source: libzypp
Architecture: source
Version: 17.32.1-1
Distribution: unstable
Urgency: medium
Maintainer: RPM packaging team 
Changed-By: Luca Boccassi 
Changes:
 libzypp (17.32.1-1) unstable; urgency=medium
 .
   * Update upstream source from tag 'upstream/17.32.1'
Checksums-Sha1:
 602cc170680fd28c9bcd3930a81494b88330f206 2756 libzypp_17.32.1-1.dsc
 40862ad68a86a1d701ad7398bdf44c73d1eec87d 7038758 libzypp_17.32.1.orig.tar.gz
 4507912ddcc25916d0311f06bc45ac4170ef513e 9900 libzypp_17.32.1-1.debian.tar.xz
 3593fc4ef1916354460d322bc5716ae3385b629c 16796 
libzypp_17.32.1-1_source.buildinfo
Checksums-Sha256:
 aafc546d6e746a4819d13bb1eba97045914d88196ab9331c4f5967c5d615d15b 2756 
libzypp_17.32.1-1.dsc
 033517054e895af83517a2e1b5ed8a8d87a38275f033c4f8dccb003a3a8a2412 7038758 
libzypp_17.32.1.orig.tar.gz
 0638b53d8addd99ae309012d1853ed8f090cb8c612e694287331bae2705f5d33 9900 
libzypp_17.32.1-1.debian.tar.xz
 b3bd09a7ecee2b7373782892dee03d27d57e613063aa991d4368c42484c4ed76 16796 
libzypp_17.32.1-1_source.buildinfo
Files:
 5c0d233fa9acaeb17050f5b36a9654cc 2756 libs optional libzypp_17.32.1-1.dsc
 de7611d5d051ad52c4e4a1522d0aeaf6 7038758 libs optional 
libzypp_17.32.1.orig.tar.gz
 cd70617fa837b237120b843a3673df11 9900 libs optional 
libzypp_17.32.1-1.debian.tar.xz
 4ff50c1cd439f87aca7dea8b229cef7b 16796 libs optional 
libzypp_17.32.1-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=zC++
-END PGP SIGNATURE-



pgp5Zr8UbvtCm.pgp
Description: PGP signature

Accepted nvidia-modprobe 545.29.06-1 (source) into experimental

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 01 Apr 2024 22:37:25 +0200
Source: nvidia-modprobe
Architecture: source
Version: 545.29.06-1
Distribution: experimental
Urgency: medium
Maintainer: Debian NVIDIA Maintainers 
Changed-By: Andreas Beckmann 
Changes:
 nvidia-modprobe (545.29.06-1) experimental; urgency=medium
 .
   * New upstream release.
   * Upload to experimental.
Checksums-Sha1:
 609bf2a64da2948874046ffed03c2b97049fa057 2152 nvidia-modprobe_545.29.06-1.dsc
 149cb878071e000b66b09a20f87703476096b6e4 41148 
nvidia-modprobe_545.29.06.orig.tar.bz2
 570e17ab1a975d1f6e68be3d83b92c75aeb480d3 5536 
nvidia-modprobe_545.29.06-1.debian.tar.xz
 091e61c5c26886a5156d70892a9ef2fd98f1819e 5706 
nvidia-modprobe_545.29.06-1_source.buildinfo
Checksums-Sha256:
 589fdf07063f14209a4f26f9f5bd5d897f55626df3fd4b387e3efbcc0b432638 2152 
nvidia-modprobe_545.29.06-1.dsc
 f0ce76ffed7f8f5f0f5467daac12deaf7ab61908dd0af5ac19129be679851d46 41148 
nvidia-modprobe_545.29.06.orig.tar.bz2
 4afd52d52bb97ed43470ec899114a4bf4d576d17790d31e4ea66da5e6bfc 5536 
nvidia-modprobe_545.29.06-1.debian.tar.xz
 f272b3a0295cc5d7a793dfd651dc3ccaa8474b58ac4f6652e328655b15d21a33 5706 
nvidia-modprobe_545.29.06-1_source.buildinfo
Files:
 284e6974dd1a78edde21840f79203911 2152 contrib/utils optional 
nvidia-modprobe_545.29.06-1.dsc
 7bee8b3827c970bd9a8a29e8602b2e15 41148 contrib/utils optional 
nvidia-modprobe_545.29.06.orig.tar.bz2
 b1985a476a12732b5c17b522f5062b04 5536 contrib/utils optional 
nvidia-modprobe_545.29.06-1.debian.tar.xz
 4ffbcb347cffd25a2a7ccf97de30169a 5706 contrib/utils optional 
nvidia-modprobe_545.29.06-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=QE6T
-END PGP SIGNATURE-



pgpynAPFpxtRR.pgp
Description: PGP signature

Accepted lincity-ng 2.10.1-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 18:58:18 +0200
Source: lincity-ng
Architecture: source
Version: 2.10.1-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Games Team 
Changed-By: Alexandre Detiste 
Closes: 1042506
Changes:
 lincity-ng (2.10.1-1) unstable; urgency=medium
 .
   * Team Upload
   * New upstream version 2.10.1
   * replace old autoconf+jam build with modern CMake (Closes: #1042506)
Checksums-Sha1:
 7204930ea578ea873eb362b9fe20d5f4f6825ba2 2177 lincity-ng_2.10.1-1.dsc
 cbc7e48068b762be77bfcfb8421fc685355cff2f 114742047 
lincity-ng_2.10.1.orig.tar.gz
 98e92387e23614a22b037dc36dbb8db14c48c973 8524 lincity-ng_2.10.1-1.debian.tar.xz
 753f736f5333e9e4a5c913f6b28e4f352316e8b9 15129 
lincity-ng_2.10.1-1_source.buildinfo
Checksums-Sha256:
 bdea5c39e380fc2d8238c795503b65a4624083283525297c08c96c276da0fc55 2177 
lincity-ng_2.10.1-1.dsc
 4246099f66bd7580b00c730d597d32196c5ded72d8f391cff21f8d0136e5bf7d 114742047 
lincity-ng_2.10.1.orig.tar.gz
 87ca3f86205b7df0d13d2c83d4554467a60078b01ac67d856c81a720326cde3c 8524 
lincity-ng_2.10.1-1.debian.tar.xz
 b30b015b2ebacc2837d47a893ac4e98bc00dd042b771b0b8d5b4fa109ac152bd 15129 
lincity-ng_2.10.1-1_source.buildinfo
Files:
 69a1cd7007f276adf5248ff52f0c9603 2177 games optional lincity-ng_2.10.1-1.dsc
 f4232d2b609ea510a327d0c143571cb1 114742047 games optional 
lincity-ng_2.10.1.orig.tar.gz
 892d8e0530f343a0e992c276708e65f1 8524 games optional 
lincity-ng_2.10.1-1.debian.tar.xz
 510f4a948e84ec6a7773dc71ab62d28e 15129 games optional 
lincity-ng_2.10.1-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=xoZU
-END PGP SIGNATURE-



pgp7YuYqRkeg3.pgp
Description: PGP signature

Accepted template-glib 3.36.2-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 13:17:06 -0400
Source: template-glib
Built-For-Profiles: noudeb
Architecture: source
Version: 3.36.2-1
Distribution: unstable
Urgency: medium
Maintainer: Debian GNOME Maintainers 

Changed-By: Jeremy Bícha 
Changes:
 template-glib (3.36.2-1) unstable; urgency=medium
 .
   * New upstream release
   * Stop using debian/control.in and dh-sequence-gnome
   * Update standards version to 4.6.2, no changes needed
Checksums-Sha1:
 57c24b1d671c7bb14623906ae0ffc0ab08b7e0ba 2433 template-glib_3.36.2-1.dsc
 c6039a2c08925281e5351eec74c0f6882be08b1c 64832 template-glib_3.36.2.orig.tar.xz
 726c88dff4d33de528656e88632d75edbe5821bb 4252 
template-glib_3.36.2-1.debian.tar.xz
 5678b8f61975ca70e23bb1cb01412129f06c5e66 11109 
template-glib_3.36.2-1_source.buildinfo
Checksums-Sha256:
 37231a1978b69d9a6a16a6304ee23ab8382e90dfd0eb59768a24fa45e4ca23a5 2433 
template-glib_3.36.2-1.dsc
 0020f3a401888ce763b3a17508c2f58e91972a483a0c547afdb7ccbe25619948 64832 
template-glib_3.36.2.orig.tar.xz
 5912d175f5e97caddf7dc74b5e18fc6a567e708ad041b8bcb676c358762ed7e8 4252 
template-glib_3.36.2-1.debian.tar.xz
 c826e51b2700af3bf0b05ece3be69e1177bd3078b00daeb87741e6293b238cc3 11109 
template-glib_3.36.2-1_source.buildinfo
Files:
 8451a60a5718ce46d89f550f3a202323 2433 libs optional template-glib_3.36.2-1.dsc
 e48ec153f5a7ead3ab53b62bc378bb57 64832 libs optional 
template-glib_3.36.2.orig.tar.xz
 f44a260079175dffb62fb8378b7c2999 4252 libs optional 
template-glib_3.36.2-1.debian.tar.xz
 6eb467ac191246606f445ea20656e6d6 11109 libs optional 
template-glib_3.36.2-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=kRnu
-END PGP SIGNATURE-



pgpX5ZnUh3KbF.pgp
Description: PGP signature

autoreconf --force not forcing (was Re: Validating tarballs against git repositories)

[Guillem Jover]

Hi!

On Sat, 2024-03-30 at 14:16:21 +0100, Guillem Jover wrote:
> Let's try to go in detail on how this was done on the build system
> side (I'm doing this right now, as previously only had skimmed over
> the process).
> 
> The build system hook was planted in the tarball by adding a modified
> m4/build-to-host.m4 file. This file is originally from gnulib (but
> gettext would usually embed it if it required it). The macros contained
> within are used by m4/gettext.m4 coming from gettext.
> 
> So to start with, this dependency (the AM_GNU_GETTEXT macro uses
> gl_BUILD_TO_HOST) is only present with newer gettext versions. The
> tarball was autoreconf'ed with gettext 0.22.4, Debian has gettext 0.21,
> which does not pull that dependency in. In that case if gettext.m4
> would get modified in this build now, then the hook would be inert,
> but once we update to a newer gettext then it would get activated
> again.
> 
> The m4/build-to-host.m4 file in addition to hooking the payload into
> the build system, also got its serial number bumped from 3 to 30.
> 
> And the bigger issue is that «autoreconf -f -i» does not even refresh
> the files (as you'd expect from the --force), if the .m4 serial is higher.
> So in Debian currently, the gettext.m4 in the tarball does not get
> refreshed (still pulling in the malicious build-to-host.m4, which
> would not happen with the gettext version from Debian), and if we
> updated to a newer gettext then it would not update build-to-host.m4
> anyway due to its bumped serial.
> 
> This seems like a serious bug in autoreconf, but I've not checked if
> this has been brought up upstream, and whether they consider it's
> working as intended. I expect the serial to be used only when not
> in --force mode though. :/

I filed a report to autoconf upstream at:

  https://lists.gnu.org/archive/html/bug-autoconf/2024-03/threads.html

the discussion now continues on the next month archive at:

  https://lists.gnu.org/archive/html/bug-autoconf/2024-04/msg3.html

We might have to perform a mass rebuild to check if there could be
fallout out of a true --force behavior change I guess.

Thanks,
Guillem

Accepted bsdgames 2.17-31 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 01 Apr 2024 18:10:52 +0200
Source: bsdgames
Architecture: source
Version: 2.17-31
Distribution: unstable
Urgency: medium
Maintainer: Debian Games Team 
Changed-By: Dr. Tobias Quathamer 
Closes: 1066266
Changes:
 bsdgames (2.17-31) unstable; urgency=medium
 .
   * Disable building of some games, in order to prepare for a new
 upstream version found at https://sourceforge.net/projects/bsd-games/
 - Update list of included games
 - Update d/rules for removed games
 - Update d/dirs for removed games
 - Remove obsolete .desktop files
   * List of games which have been removed:
 - bcd
 - boggle
 - countmail
 - hunt (This currently FTBFS. Closes: #1066266)
 - mille
 - monop
 - morse
 - number
 - phantasia
 - pig
 - pom
 - ppt
 - quiz
 - rain
 - random
 - wargames
 - worms
Checksums-Sha1:
 212b8167407001c211fea516d6f57249155b7691 1933 bsdgames_2.17-31.dsc
 593df23babcd0ca1b9121c587672e07451b27ffc 67804 bsdgames_2.17-31.debian.tar.xz
 a624668bb2922f4eb6ead3927caf8db0d4978976 7004 bsdgames_2.17-31_amd64.buildinfo
Checksums-Sha256:
 01c65aa9becb4381019e5a16bdc847cb94f85aab3e4715e2d3cb109b192a5fe3 1933 
bsdgames_2.17-31.dsc
 ac667f0d60d320ec26816dea618e1def7a79fa4f7b892a8021aa4d5f1c3a68a3 67804 
bsdgames_2.17-31.debian.tar.xz
 fe6ffaf3a2ac35ab42fd9f051204a75a493f47174198987f2163bfbe2d27db82 7004 
bsdgames_2.17-31_amd64.buildinfo
Files:
 611706d42ef94c06a2ccca28ec385495 1933 games optional bsdgames_2.17-31.dsc
 83687cb76f8ef00aa259082a84a78b6b 67804 games optional 
bsdgames_2.17-31.debian.tar.xz
 623cf868cfe20200d85b8679ae52b143 7004 games optional 
bsdgames_2.17-31_amd64.buildinfo

-BEGIN PGP SIGNATURE-

iQIzBAEBCAAdFiEE0cuPObxd7STF0seMEwLx8Dbr6xkFAmYK9WgACgkQEwLx8Dbr
6xl4Sw/+KSKIhZuvUI38d30KSSlMCNWf7yhM7fnMSD4E5lO++49p06HPU4ufDG6K
tY2wZFY73kgN+sWgfwhMLWCEhyVHDTV45sxsuQm+3MvK5aF6grO7Tzugn6NK0aqc
Qwxvu+vW3E8/vrWdNp0tiW+d5xNOScVg5iB3Tn6zrMvG9uLMEXY+XRQlc3C1fUTH
C1MzEa5DQuV+FajzRSY+xx1GQXB4iQLyq62njVY/EDDJdSF6Ta7Dzmjkdhniq3ym
3tjDeoxSIWtqUWXd8hiKU0hHZHdeJERJNxMrzDpp+ot31knL7rydTvRaBQcylJcQ
FYT1a463CHoRrRnRnpFOQyfXVxV9HbPxL1zp4GJMjTM2bbBZV0bS3v8wS+58gNX3
Uj5Bj2X98hWwZfV11AqBukAr6KwXfe06b7pB4OV3UyhIye0LnvU/1gNoOz2wO8Ly
U7Kc6N3Q/BSH6V3oykMWe8uXykcGJoB/wJh9y5Ej5ZLqMTOaq/0saU82HF3sBHy5
B/ZA3ay5Was/qkKr3plLRT7LspGtB0AwvtbJh21VQcmLMdKWp8Ac8J8IxtcgoJpC
RrIkNdPZInS67M8IcWSizOU34DmWd4g0QrfNiDFq2Ya3yev5g9FdFDhmdlIQN04b
KxcM6fJT5w+VUd9ip5XPqx2kGOwZVyVIYSp2xn91C47dUVqKU4g=
=t9hr
-END PGP SIGNATURE-



pgpcILrcxQpqE.pgp
Description: PGP signature

Accepted bolt 0.9.7-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 14:13:27 -0400
Source: bolt
Built-For-Profiles: noudeb
Architecture: source
Version: 0.9.7-1
Distribution: unstable
Urgency: medium
Maintainer: Debian freedesktop.org maintainers 

Changed-By: Jeremy Bícha 
Changes:
 bolt (0.9.7-1) unstable; urgency=medium
 .
   * New upstream release
Checksums-Sha1:
 e21b479c77125f3a257d08418329ee8a9d89bc91 2395 bolt_0.9.7-1.dsc
 23022916c353d7617d0ad0afe28ebf76a1774ba1 192526 bolt_0.9.7.orig.tar.bz2
 4181fa94c2f8393f61ae3b19ee2a96693b980e70 4388 bolt_0.9.7-1.debian.tar.xz
 8548aa99b0eff878ab588c5a25034381bde4514b 9586 bolt_0.9.7-1_source.buildinfo
Checksums-Sha256:
 4f9cc7e00f5c7e920fe43686a1c089c5ea7c84baedaee10c6f09197cbe29a64d 2395 
bolt_0.9.7-1.dsc
 2e77e3fb1836d8aedf93f850558bb2b154a1dabe5f1fb5123286a2b3213b1288 192526 
bolt_0.9.7.orig.tar.bz2
 f2dd99bcaa2a801b85af01519aa5168cea9488089b7200feee93b90581b334c2 4388 
bolt_0.9.7-1.debian.tar.xz
 21732b4a199242fa41d857994232dfeb3ca5bc7ebedc63ffba12f4fe9ff99aec 9586 
bolt_0.9.7-1_source.buildinfo
Files:
 a5546a3429ddf25faa92837d722514f5 2395 admin optional bolt_0.9.7-1.dsc
 bf313976e5eceb0b431686bb88b22aed 192526 admin optional bolt_0.9.7.orig.tar.bz2
 fc44cc34c0af794dd3ab0b80b34acc78 4388 admin optional bolt_0.9.7-1.debian.tar.xz
 6fecbf50504a5b17abd1e6ae723bd35f 9586 admin optional 
bolt_0.9.7-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=QfNE
-END PGP SIGNATURE-



pgpICqPIVhNxh.pgp
Description: PGP signature

Accepted uwsgi 2.0.24-3 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 22:01:33 +0200
Source: uwsgi
Architecture: source
Version: 2.0.24-3
Distribution: unstable
Urgency: medium
Maintainer: uWSGI packaging team 
Changed-By: Jonas Smedegaard 
Closes: 772386 1053196 1065996
Changes:
 uwsgi (2.0.24-3) unstable; urgency=medium
 .
   [ Alexandre Rossi ]
   * disable rados plugin on 32 bits archs;
 closes: #1053196, thanks to Thomas Goirand
   * drop useless dep on python3-distutils;
 closes: #1065996, thanks to Graham Inggs
   * fix bashism in initscript;
 closes: #772386, thanks to Raphael Geissert
Checksums-Sha1:
 ce6e052a5e3548e568f7c257dba3181195ff87b2 6916 uwsgi_2.0.24-3.dsc
 cd8acf0ec2443f52d2f822e1ee194d02ef0cac6d 73208 uwsgi_2.0.24-3.debian.tar.xz
 6d451974bf4ef72b14b0ac97367f8ec9fe2b775a 38756 uwsgi_2.0.24-3_amd64.buildinfo
Checksums-Sha256:
 c778ae67c80ba5d25f76b58051ee3f151ae558db9958602efdeeffbcdca9fea0 6916 
uwsgi_2.0.24-3.dsc
 e57155a57fd967a074599e6938e1c4ebb35a98970a03c52af2a32211bb152923 73208 
uwsgi_2.0.24-3.debian.tar.xz
 79328c2463c12d8452e2b26ae489670c80d59bcb9dba467a0356c80ed68c8643 38756 
uwsgi_2.0.24-3_amd64.buildinfo
Files:
 8f14b36b3b612de59ddbda191d33cdfe 6916 httpd optional uwsgi_2.0.24-3.dsc
 e1fea2e9e5007cc18f0662f217d05ce5 73208 httpd optional 
uwsgi_2.0.24-3.debian.tar.xz
 feeefe374a138539e5e99025db8e0acb 38756 httpd optional 
uwsgi_2.0.24-3_amd64.buildinfo

-BEGIN PGP SIGNATURE-
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=Z35V
-END PGP SIGNATURE-



pgpgExxYDYLzR.pgp
Description: PGP signature

Accepted atomes 1.1.14-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Wed, 20 Mar 2024 16:40:00 +0200
Source: atomes
Architecture: source
Version: 1.1.14-1
Distribution: unstable
Urgency: medium
Maintainer: Debichem Team 
Changed-By: Sébastien Le Roux 
Changes:
 atomes (1.1.14-1) unstable; urgency=medium
 .
   * New upstream version
   * Refreshing patches
 .
   [ Pierre Gruet ]
   * Replacing obsolete pkg-config by pkgconf in the build-dependencies
Checksums-Sha1:
 bc6d8b303c488a4531968dfd761b171cf1b8249b 2195 atomes_1.1.14-1.dsc
 2cb5512b6b2897d371ceb746eb462803498f44d8 3451946 atomes_1.1.14.orig.tar.gz
 ad181d9acf4776df268c71b07b2ed99fbd3acf46 14144 atomes_1.1.14-1.debian.tar.xz
 4a1e2935e86ac4b293842f857e46e54fc34f89ed 17560 atomes_1.1.14-1_amd64.buildinfo
Checksums-Sha256:
 e7ba15f73be224b8b08f2c7a9d31008f05985cb2d83dc86f959867d08dbac794 2195 
atomes_1.1.14-1.dsc
 2b70e58c2eaffa7026a52aa1bb6b34d541be04734ecb048fa5cd2e8ab4e5545e 3451946 
atomes_1.1.14.orig.tar.gz
 fa4fd5f22c57a741967fe273040e6c9a14fbce763b219ef59635f1aaddaced9a 14144 
atomes_1.1.14-1.debian.tar.xz
 d78ab6c88bd49a28c5171d8e55c4ea9aaa537b9de39347024fbd05aadf7675bd 17560 
atomes_1.1.14-1_amd64.buildinfo
Files:
 ac6ba963edc6ed408ad11a5ac60d13a1 2195 science optional atomes_1.1.14-1.dsc
 16e723703adb1e50f6c4c34a68dcb809 3451946 science optional 
atomes_1.1.14.orig.tar.gz
 c586493c59c2b84509b0aca84d678729 14144 science optional 
atomes_1.1.14-1.debian.tar.xz
 8f4a532502badcf88c2d062b3d33af69 17560 science optional 
atomes_1.1.14-1_amd64.buildinfo

-BEGIN PGP SIGNATURE-
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=rEm1
-END PGP SIGNATURE-



pgp9ZGAwI39on.pgp
Description: PGP signature

Accepted inn2 2.7.2~20240325-2 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 01 Apr 2024 19:23:25 +0200
Source: inn2
Architecture: source
Version: 2.7.2~20240325-2
Distribution: unstable
Urgency: medium
Maintainer: Marco d'Itri 
Changed-By: Marco d'Itri 
Changes:
 inn2 (2.7.2~20240325-2) unstable; urgency=medium
 .
   * inn2.postinst: hardcode the pathdb default, to support installation
 on the Debian CI infrastructure.
Checksums-Sha1:
 e5f475d3f1093508f4ee6f0c406483c9cae46098 1630 inn2_2.7.2~20240325-2.dsc
 f90261deace0f1b187855861c421bd444b037dd2 36752 
inn2_2.7.2~20240325-2.debian.tar.xz
 aa25659931a34c12a4304e5584d334639d5f9aa9 8339 
inn2_2.7.2~20240325-2_amd64.buildinfo
Checksums-Sha256:
 765e2f47ee2540781b039b8f44e49f97e585aa3f27de546d878421cb9a1d2b83 1630 
inn2_2.7.2~20240325-2.dsc
 29847ad4b4797bf76895c393655f8d305a1eb816ef9ee9f4792d9d664a9e72e6 36752 
inn2_2.7.2~20240325-2.debian.tar.xz
 a891efc64dc76dfbae68800fd1e7d44ca9516e5e3eed2894f3f30ef4d8181d75 8339 
inn2_2.7.2~20240325-2_amd64.buildinfo
Files:
 6431f6b776535b74639702d2fdb64c7c 1630 news optional inn2_2.7.2~20240325-2.dsc
 7c3df1a6471afde9435cce1d499f533e 36752 news optional 
inn2_2.7.2~20240325-2.debian.tar.xz
 be968ec2a8119b2e03fcf04fe4781c1d 8339 news optional 
inn2_2.7.2~20240325-2_amd64.buildinfo

-BEGIN PGP SIGNATURE-

iHUEARYIAB0WIQQnKUXNg20437dCfobLPsM64d7XgQUCZgruZAAKCRDLPsM64d7X
gU6YAPoDcEpnLn3XzICnMLOwmP05Mki6m71KTLRlUq4YAuqUjQEA4LtqqFUrHR62
VgJrNZV79TyeQzYMffd/vmJ3cNcgXwg=
=E2Rc
-END PGP SIGNATURE-



pgpC5ql7Q55Z2.pgp
Description: PGP signature

Re: Validating tarballs against git repositories

[Bastian Blank]

On Mon, Apr 01, 2024 at 06:36:30PM +0200, Vincent Bernat wrote:
> On 2024-04-01 12:44, Bastian Blank wrote:
> > So in the end you still need to manually review all the stuff that the
> > tarball contains extra to the git.  And for that I don't see that it
> > actually gives some helping hands and makes it easier.
> > 
> > So I really don't see how this makes the problem in hand any better.
> > Again the workload of review is on the person doing the job.  Aka we do
> > fragile manual work instead of possibly failing automatic work.
> 
> I think that if Debian was using git instead of the generated tarball, this
> part of the backdoor would have just been included in the git repository as
> well. If we were able to magically switch everything to git (and we won't,
> we are not even able to agree on simpler stuff), I don't think it would have
> prevented the attack.

Nothing prevents such an attack.  Prevent would be a 100% fix, which can
not exist.  However what we can do is to make it harder to pull off.

If they had been forced to commit all the activation code into the repo,
it would have been directly visible for everyone.  But instead, they
choose to only ship it in the tarballs.

That's why I asked if this would make it better, by removing this manual
review task from the maintainer.

Bastian

-- 
I object to intellect without discipline;  I object to power without
constructive purpose.
-- Spock, "The Squire of Gothos", stardate 2124.5

Debian packaging for git-credential-libsecret

[M Hickford]

Hi. It'd be great to package Git credential helper
git-credential-libsecret in Debian. There's a patch prepared, but it
needs the attention of a Debian developer. Is anyone here able to
help?  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878599

Kind regards
-M

Accepted gauche 0.9.14-2 (source amd64 all) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Thu, 28 Mar 2024 15:42:59 +0100
Source: gauche
Binary: gauche gauche-dbgsym gauche-dev gauche-dev-dbgsym gauche-doc 
gauche-gdbm gauche-gdbm-dbgsym gauche-zlib gauche-zlib-dbgsym libgauche-0.98-0 
libgauche-0.98-0-dbgsym
Architecture: source amd64 all
Version: 0.9.14-2
Distribution: unstable
Urgency: medium
Maintainer: NIIBE Yutaka 
Changed-By: Jens Thiele 
Description:
 gauche - Scheme script engine
 gauche-dev - Development files for Gauche
 gauche-doc - Reference manual of Gauche
 gauche-gdbm - gdbm binding for Gauche
 gauche-zlib - zlib binding for Gauche
 libgauche-0.98-0 - Gauche runtime shared library
Changes:
 gauche (0.9.14-2) unstable; urgency=medium
 .
   * debian/control: make gauche-dev depend on libmbedtls-dev
Checksums-Sha1:
 40be7e2b24833e69f75f6e3d93311774f4941d52 1668 gauche_0.9.14-2.dsc
 8c4187929a1a54e242de95143d53a9a11fb95509 9352431 gauche_0.9.14.orig.tar.gz
 6fa48335a3529cf26ad11a32a7d101cf865518bb 37280 gauche_0.9.14-2.debian.tar.xz
 289691ac5d96b3f53d58596fff70344570925014 2123892 
gauche-dbgsym_0.9.14-2_amd64.deb
 dd70c9eea27bb95263e4ec95d39060c167b2e2d6 10656 
gauche-dev-dbgsym_0.9.14-2_amd64.deb
 1f4e7ecbe8bcec7ed7d72c54dff9c43622d94852 1004 gauche-dev_0.9.14-2_amd64.deb
 ab3cf166ae5d001fe0cfa9d22c03b3a1998c25a0 2465932 gauche-doc_0.9.14-2_all.deb
 c9156cbbefb89543b987b792bfbda049bb7a170f 25308 
gauche-gdbm-dbgsym_0.9.14-2_amd64.deb
 8beab102be2a342a9b6f7e5da1b96a45e27a7748 326152 gauche-gdbm_0.9.14-2_amd64.deb
 c7276ac5e8302652fa98c2b9280354f9cc156258 34316 
gauche-zlib-dbgsym_0.9.14-2_amd64.deb
 7d2e5f24fe9da8dac59cce91b42ec093c569ca7b 314976 gauche-zlib_0.9.14-2_amd64.deb
 18fd164acc21f316b8f7c40558d7b3173e143a51 8768 gauche_0.9.14-2_amd64.buildinfo
 b6cf5135326c02a5522e75c46bd844c3d2cebe4a 3366776 gauche_0.9.14-2_amd64.deb
 105d9716e8647dc589b8f9a82baef13800446414 2391864 
libgauche-0.98-0-dbgsym_0.9.14-2_amd64.deb
 dec215b1a12432b7e9ef36164b1d6dad19c0f3dc 4157380 
libgauche-0.98-0_0.9.14-2_amd64.deb
Checksums-Sha256:
 f3b067d053fc7d04bc602c4731b2afa18e25e8d953af7d8f183bf109d3063c91 1668 
gauche_0.9.14-2.dsc
 02928f8535cf83f23ed6097f1b07b1fdb487a5ad2cb81d8a34d5124d02db3d48 9352431 
gauche_0.9.14.orig.tar.gz
 eab31ccc164cbf651126a3650fcbe5e5cff9789a5efbf766358c735eef30033b 37280 
gauche_0.9.14-2.debian.tar.xz
 de9561c8e49a4d93fad6cd71691b63199f3c331fd4ba881bcbfa49ab239efe53 2123892 
gauche-dbgsym_0.9.14-2_amd64.deb
 1329434fc51002fd82e1c6cadc659b7f57d2f8f7b54393c38df1e2004238653e 10656 
gauche-dev-dbgsym_0.9.14-2_amd64.deb
 02f09aeb0f09b4e6d4a08039b6a51b82145c1b75c641a281e9132e33b88a90f4 1004 
gauche-dev_0.9.14-2_amd64.deb
 d6e56f3b6ba19d04cfb424d73f2ea642f987e0a908af890132272de421667395 2465932 
gauche-doc_0.9.14-2_all.deb
 94130d4bd560f6206b03e477952b445e2a8ea330d50f5b282d113acf3e375a7d 25308 
gauche-gdbm-dbgsym_0.9.14-2_amd64.deb
 162c4b9c275b4471173d62c4c3b704b8ca35c778ecf3f21f387e0a412d3cd8d1 326152 
gauche-gdbm_0.9.14-2_amd64.deb
 3ca17042c0a4752811e87e19d828327b8f6d2810c171e450aff7fca26002a9d4 34316 
gauche-zlib-dbgsym_0.9.14-2_amd64.deb
 f0e8f85430b8f6a20e0b1e0e0bccae06dc9b44887be1518c864d62bebdedf5e5 314976 
gauche-zlib_0.9.14-2_amd64.deb
 2495bad9e107264e150dbeeb3bc6a9c41fa52c8f517a156a31a679a32bd25df8 8768 
gauche_0.9.14-2_amd64.buildinfo
 83f5ac73d1b131246a1b10ca0d4b71aed51954fdfa6e8e873f579a3f9589068d 3366776 
gauche_0.9.14-2_amd64.deb
 6f128d49b54dd27b8240137151307594557964f67b090d9089ece168c32f291c 2391864 
libgauche-0.98-0-dbgsym_0.9.14-2_amd64.deb
 6b4182835c61788201a0490de2c8c610b285bcd508e4f906a03d57de49f0c957 4157380 
libgauche-0.98-0_0.9.14-2_amd64.deb
Files:
 b4fb7b05373a623c3a90c3fab0a0e1f8 1668 lisp optional gauche_0.9.14-2.dsc
 997128b3d2b85b949d10f0637750b5b4 9352431 lisp optional 
gauche_0.9.14.orig.tar.gz
 71507b554a73c5d658f22b723c038e74 37280 lisp optional 
gauche_0.9.14-2.debian.tar.xz
 dd32edcbf1b7b2cbccb9a7c98dca63c4 2123892 debug optional 
gauche-dbgsym_0.9.14-2_amd64.deb
 07d6539aa2e9d5764d693d8d9c43503e 10656 debug optional 
gauche-dev-dbgsym_0.9.14-2_amd64.deb
 5d06420b71eeceebbcee92d9c4855ff2 1004 lisp optional 
gauche-dev_0.9.14-2_amd64.deb
 63571c566aaf45894a11df9ac9a83884 2465932 doc optional 
gauche-doc_0.9.14-2_all.deb
 b28d49fa96276f3dc4b78c2cd75e43fe 25308 debug optional 
gauche-gdbm-dbgsym_0.9.14-2_amd64.deb
 2f7b5a4957ed46c7602857c609fc6b4b 326152 lisp optional 
gauche-gdbm_0.9.14-2_amd64.deb
 72516e556dbf23af3168af35528caebf 34316 debug optional 
gauche-zlib-dbgsym_0.9.14-2_amd64.deb
 d9c3d82bdc8a7d70bb0e8f70a6ca0f9f 314976 lisp optional 
gauche-zlib_0.9.14-2_amd64.deb
 9b793b7cdf2791f63b187567918dbd2a 8768 lisp optional 
gauche_0.9.14-2_amd64.buildinfo
 efc2a33caee24b7fd99ecdc9709cc8d5 3366776 lisp optional 
gauche_0.9.14-2_amd64.deb
 34453cd06073f3ab2b4a005449f243c0 2391864 debug optional 
libgauche-0.98-0-dbgsym_0.9.14-2_amd64.deb
 f58eb2c8c9dd9900dd20b0a111adc7db 4157380 libs optional 
libgauche-0.98-0_0.9.14-2_amd64.deb

-BEGIN PGP 

Accepted hylafax 3:6.0.7-7 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 14:34:59 +0200
Source: hylafax
Architecture: source
Version: 3:6.0.7-7
Distribution: unstable
Urgency: medium
Maintainer: Giuseppe Sacco 
Changed-By: Giuseppe Sacco 
Closes: 688560 1020349
Changes:
 hylafax (3:6.0.7-7) unstable; urgency=medium
 .
   * Replace dependency on transitional dummy gsfonts with fonts-urw-base35
 (Closes: #1020349)
   * Changed main() signature in configure script in order to be accepted
 by stricter compilers (Closes: #688560)
   * Added temporary fix for making hylafax compile again in SID, see #1067362.
 This removes -Werror=implicit-function-declaration from CFLAGS that should
 be used while compiling hylafax sources, but it is begin used also while
 "configure" tests for gettext() availability.
Checksums-Sha1:
 8c8ea0fc193a03f2b63d712a8290f9568cda9f9d 2200 hylafax_6.0.7-7.dsc
 4cd9a283f30ab34cba5a341121c516fba5bc7d89 77668 hylafax_6.0.7-7.debian.tar.xz
 50c2fa7557ce387210cf5563cd0b2809f971a655 8516 hylafax_6.0.7-7_source.buildinfo
Checksums-Sha256:
 2f68f5d6e16337b5e5493b3e759dad50bb1c755470894659b878295a37ce0ab9 2200 
hylafax_6.0.7-7.dsc
 03ae69c2f47a5d00590f89a96d7336c760fcd2b07c780d360a796074dabb342f 77668 
hylafax_6.0.7-7.debian.tar.xz
 c13494167646b6677787a073093e72404d4a72d6e1e2c1a3d6910afb22fd9257 8516 
hylafax_6.0.7-7_source.buildinfo
Files:
 c587eec83e98d07171d7e9acf1f44e86 2200 comm extra hylafax_6.0.7-7.dsc
 69cc47b95d937a97157e7a0674a94473 77668 comm extra hylafax_6.0.7-7.debian.tar.xz
 271d19dec260644f7d063504632d3461 8516 comm extra 
hylafax_6.0.7-7_source.buildinfo

-BEGIN PGP SIGNATURE-

iQIzBAEBCgAdFiEEUVOdP2LoUi7Qx8Bwwq7bFEft0yEFAmYKqqoACgkQwq7bFEft
0yH7qxAAg4HsQEWTxg8tEEyDfsNmSvmQsdNpwYYx7aWo/nNEaiW9jGDt5RTKgO6B
sP7xIkXnKMoDNdJ0ajSmqxJM87IvYVdfo6qrEZWn+6N0EnQWFKDgzxgutWwxPCGr
1ofaZeeue52i091GPV0e0TPm2hG4G/aKTtlublxXLne3Zg69umxpmRPqbKrqRm13
GtW1D/L1+lXOKrDRWH48B+NKAs0mzHxiGpWFTX1SBsXlIxFERCe74X0gFsPtS1r7
QZr/QVt3EX0i0eJWuqLDJlfckDYPMt4ygknlvuRNBN/Kj3tAWrroVg+6FJzeXTft
Z0IiYi8UfURM6y8Dya+1gut6wxd+nN/uX/x6j+BI7+Y3wi074zlBr+tnuWWTxdah
egV+tKtkmoa2WSDEDur/fgrnWZ0+wNPg8A10nfKz2qt3tNunc/4zOfXfnhHcbZwP
k/fBElZoXKWDIS1fl+0mIXzCBDJFsUiM6O6tD43S2k90DIdcgQ06DS2gfGecbv6W
Ue7atLaf6qphApLWOMJbdBb435K/X1ziYjoF2SumMN+WwXRjxwPelXOCZh9EK8zn
chAuOLLaMLiC70o+6rtKPQloamhUA1242nnm8mcNm3bguLbSYfQ67yLtHsvgcW0t
OYY1XCygDUPVrhZ/+osoxKuBpkGNcFhAUu2gikjA+1uY9IrnJJw=
=/GP7
-END PGP SIGNATURE-



pgpSbn0v62Twk.pgp
Description: PGP signature

Accepted libgav1 0.19.0-2 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 15:14:00 +0200
Source: libgav1
Architecture: source
Version: 0.19.0-2
Distribution: unstable
Urgency: medium
Maintainer: Debian Multimedia Maintainers 
Changed-By: Sebastian Ramacher 
Closes: 1068180
Changes:
 libgav1 (0.19.0-2) unstable; urgency=medium
 .
   * Team upload
   * Upload to unstable (Closes: #1068180)
   * debian/patches: Temporarily disable cpu test
Checksums-Sha1:
 bc63d19850320357bb120517462e32a494dea4ca 1505 libgav1_0.19.0-2.dsc
 60bcb680b56e9299b0105d917c95799e3f181119 6708 libgav1_0.19.0-2.debian.tar.xz
 c497e9dbd633110201f06fd1eec26f51c92a1f53 6885 libgav1_0.19.0-2_source.buildinfo
Checksums-Sha256:
 6ee2aca70d03a0ecba22d32229f4d4b26f782003dd53a91e76900c83a5458da5 1505 
libgav1_0.19.0-2.dsc
 c0f5aef51b4b1ac5b8fa5999779e121af4eff3011aaabb80fd2c107f2bd56ab0 6708 
libgav1_0.19.0-2.debian.tar.xz
 c605b40a1fa7ab6018d52d47e9dad0d77e9cecde01699bdaab972b361b2bc6bf 6885 
libgav1_0.19.0-2_source.buildinfo
Files:
 5803c36d6a4fbc28ca44d18f50c63f22 1505 libs optional libgav1_0.19.0-2.dsc
 7e8bbacaed274232fb55e2797b81cbc5 6708 libs optional 
libgav1_0.19.0-2.debian.tar.xz
 7f14b7d072ec939cee65d0c18d176c92 6885 libs optional 
libgav1_0.19.0-2_source.buildinfo

-BEGIN PGP SIGNATURE-

iHUEARYKAB0WIQRCYn6EHZln2oPh+pAhk2s2YA/NiQUCZgq3PwAKCRAhk2s2YA/N
iZuGAP9riuav07p/GKPnjbKh/F0yeKrdMcYE30rR6MWwwOKn6AD/SJ5by90HNHCY
BDFVH7LmiO9vffpWYQ0lqBxTy7yeHA4=
=NZQb
-END PGP SIGNATURE-



pgpZrA0ResVHn.pgp
Description: PGP signature

Re: Validating tarballs against git repositories

[Colin Watson]

On Mon, Apr 01, 2024 at 05:24:45PM +0200, Simon Josefsson wrote:
> Colin Watson  writes:
> > On Mon, Apr 01, 2024 at 11:33:06AM +0200, Simon Josefsson wrote:
> >> Running ./bootstrap in a tarball may lead to different results than the
> >> maintainer running ./bootstrap in pristine git.  It is the same problem
> >> as running 'autoreconf -fvi' in a tarball does not necessarily lead to
> >> the same result as the maintainer running 'autoreconf -fvi' from
> >> pristine git.  The different is what is pulled in from the system
> >> environment.  Neither tool was designed to be run from within a tarball,
> >> so this is just bad practice that never worked reliable and without a
> >> lot of complexity it will likely not become reliable either.
> >
> > The practice of running "autoreconf -fi" or similar via dh-autoreconf
> > has worked extremely well at scale in Debian.  I'm sure there are
> > complex edge cases where it's caused problems, but it's far from being a
> > disaster area.
> 
> Agreed.  I'm saying it doesn't fix the problem that I perceive that some
> people appear to believe, i.e., that running 'autoreconf -fi' solves the
> re-bootrapping problem.

Indeed - I've been pointing this out to people pretty much since the
xz-utils backdoor was discovered.

> >> I have suggested before that upstream's (myself included) should publish
> >> PGP-signed *-src.tar.gz tarballs that contain the entire pristine git
> >> checkout including submodules,
> >
> > A while back I contributed support to Gnulib's bootstrap script to allow
> > pinning particular commits without using submodules.  I would recommend
> > this mode; submodules have very strange UI.
> 
> I never liked git submodules generally, so I would be happy to work on
> getting that to be supported -- do you have pointers for earlier works
> here?

https://lists.gnu.org/archive/html/bug-gnulib/2018-04/msg00029.html and
thread - it's been in gnulib for some years.  (I think you may have
misread me as saying that I'd tried to contribute this and that it never
made it, or something like that?)

> What is necessary, I think, is having something like this in
> bootstrap.conf:
> 
> gnulib_commit_id = 123abc567...

This is what I implemented, except I spelled it GNULIB_REVISION.  Then
see e.g.
https://gitlab.com/libpipeline/libpipeline/-/blob/main/bootstrap.conf.

> > As I noted in a comment on your blog, I think there is a case to be made
> > for .po files being committed to upstream git, and I'm not fond of the
> > practice of pulling them in only at bootstrap time (although I can
> > understand why that's come to be popular as a result of limited
> > maintainer time).  I have several reasons to believe this:
> 
> Those are all good arguments, but it still feels backwards to put these
> files into git.  It felt so good to externalize all the translation
> churn outside of my git (or then, CVS...) repositories many years ago.
> 
> I would prefer to maintain a po/SHA256SUMS in git and continue to
> download translations but have some mechanism to refuse to continue if
> the hashes differ.

I wonder if a middle ground would be automated commits of translations.
I don't think that's as robust, but a number of projects do it (e.g.
d-i) and at least it's amenable to having translations go through CI
rather than just being YOLOed straight into release tarballs.

-- 
Colin Watson (he/him)  [cjwat...@debian.org]

Accepted varnish 7.1.1-1.2 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 01 Apr 2024 17:56:26 +0200
Source: varnish
Architecture: source
Version: 7.1.1-1.2
Distribution: unstable
Urgency: medium
Maintainer: Varnish Package Maintainers 
Changed-By: Marco d'Itri 
Closes: 1054484
Changes:
 varnish (7.1.1-1.2) unstable; urgency=medium
 .
   [ Marco d'Itri ]
   * Non-maintainer upload.
   * Import the precedent non-maintainer upload.
 .
   [ Helmut Grohne ]
   * Install the systemd units using dh_installsystemd only.
 (Closes: #1054484)
Checksums-Sha1:
 5c863cf9f0e228d59821a690b50bdb5b356bf631 1796 varnish_7.1.1-1.2.dsc
 c5cf9dbef030e934916f8f2eeb368a88f7f5e3a3 27332 varnish_7.1.1-1.2.debian.tar.xz
 70b0e314c170940dbc8ed610c9710308d6b47843 10682 
varnish_7.1.1-1.2_amd64.buildinfo
Checksums-Sha256:
 39ace21be6eb0e2a21d311358b6682bf70722c1e4e3ec033e10633366f0546cd 1796 
varnish_7.1.1-1.2.dsc
 c7cfbecbe59a713896ce3b5f9f0f42adfcadb605642b636472d6c27322e78ca2 27332 
varnish_7.1.1-1.2.debian.tar.xz
 c388eb4578ead5fd31711449c38eacb668a663036b6d6c448c5f0e5f7ed6ea83 10682 
varnish_7.1.1-1.2_amd64.buildinfo
Files:
 9f11d274bdd3a2f2c845a6632cfb12e8 1796 web optional varnish_7.1.1-1.2.dsc
 dbaff443e442da6daa03b6b19459e053 27332 web optional 
varnish_7.1.1-1.2.debian.tar.xz
 0ba3ce9daf7110eeb5a087716df67f1a 10682 web optional 
varnish_7.1.1-1.2_amd64.buildinfo

-BEGIN PGP SIGNATURE-

iHUEARYIAB0WIQQnKUXNg20437dCfobLPsM64d7XgQUCZgrcdgAKCRDLPsM64d7X
gZs5AQDgtI9Jc5SZnD7FUJhaoS65n9x1VFp8PMZ4kcla+0fQaAD/bgWvZR8WwLny
5W+Y2OQX9+XXJE3J+IvFCtdAndyCcg0=
=yGyh
-END PGP SIGNATURE-



pgpPgGErxeA0L.pgp
Description: PGP signature

Re: xz backdoor

[Bastian Blank]

Hi

On Sun, Mar 31, 2024 at 07:48:35PM +0300, Adrian Bunk wrote:
> > What we can do unilaterally is to disallow vendoring those files.
> These files are supposed to be vendored in release tarballs,
> the sane approach for getting rid of such vendored files would
> be to discourage tarball uploads to the archive and encourage
> git uploads instead.

I don't understand what you are trying to say.  If we add a hard check
to lintian for m4/*, set it to auto-reject, then it is fully irrelevant
if the upload is a tarball or git.

> > Does it help?  At least in the case of autoconf it removes one common
> > source of hard to read files.
> But I doubt every DD would be able to review the 2k LOC non-vendored 
> autoconf code in xz.

But at least changes to this code are visible.  In this case the changes
to the m4 stuff did not exist in the somewhat reviewed repo, but just in
the unreviewed tarballs.

Bastian

-- 
Each kiss is as the first.
-- Miramanee, Kirk's wife, "The Paradise Syndrome",
   stardate 4842.6

Accepted shared-mime-info 2.4-4 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 07:58:12 -0400
Source: shared-mime-info
Built-For-Profiles: noudeb
Architecture: source
Version: 2.4-4
Distribution: unstable
Urgency: medium
Maintainer: Debian freedesktop.org maintainers 

Changed-By: Jeremy Bícha 
Changes:
 shared-mime-info (2.4-4) unstable; urgency=medium
 .
   * Revert 32-bit non-x86 bootstrapping
Checksums-Sha1:
 b9a73e496cfe134d4dd67e46f0d5775befc4c860 2237 shared-mime-info_2.4-4.dsc
 ecbd6c72c0fe35fe30bf4c3e18ada6df2819d63a 10688 
shared-mime-info_2.4-4.debian.tar.xz
 3a62e2cae72796567acf3faddbb459c7cd2a710a 9091 
shared-mime-info_2.4-4_source.buildinfo
Checksums-Sha256:
 29fbbd4fa08447241506ab6f6cde7ae4ff47d4578b46a86a65f96bf68fe56514 2237 
shared-mime-info_2.4-4.dsc
 25ff713e521dd6b29be2ab3e06e85f25231a6cbd46c4bb3abcb3ecaa7b31823c 10688 
shared-mime-info_2.4-4.debian.tar.xz
 e1384c43570ce6b1dcb43d2462fdf80d736261d421606566a95f35513b39f35a 9091 
shared-mime-info_2.4-4_source.buildinfo
Files:
 ebc51539e39687c6b1b0356dbe99cfad 2237 misc optional shared-mime-info_2.4-4.dsc
 43d78289c458ed2955a55f7508983954 10688 misc optional 
shared-mime-info_2.4-4.debian.tar.xz
 447bfb132d7a8814f680661bd9dadf3f 9091 misc optional 
shared-mime-info_2.4-4_source.buildinfo

-BEGIN PGP SIGNATURE-
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=KWQq
-END PGP SIGNATURE-



pgpSbfCJWEq7I.pgp
Description: PGP signature

Accepted r-cran-d3network 0.5.2.1-4 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 13:48:26 +0200
Source: r-cran-d3network
Architecture: source
Version: 0.5.2.1-4
Distribution: unstable
Urgency: medium
Maintainer: Debian R Packages Maintainers 
Changed-By: Joost van Baal-Ilić 
Changes:
 r-cran-d3network (0.5.2.1-4) unstable; urgency=medium
 .
   * d/control: removed myself from Uploaders.
Checksums-Sha1:
 9143a72693952853424bdfe1ea79db02d14790ee 2106 r-cran-d3network_0.5.2.1-4.dsc
 143871f2b5b9aa99caf53a560723a47328d21b07 2132 
r-cran-d3network_0.5.2.1-4.debian.tar.xz
 2245b0bb47f9a9084eb97bac4fa869b2204809ca 10962 
r-cran-d3network_0.5.2.1-4_source.buildinfo
Checksums-Sha256:
 4557706515f82dd6a833a6cec530b07d49f9eb76e54a4fa7df90a0c33ca728db 2106 
r-cran-d3network_0.5.2.1-4.dsc
 00a1b679c1f864683434a1b2566b5354d45ea1a3b600dc2addb5b79ff16f0953 2132 
r-cran-d3network_0.5.2.1-4.debian.tar.xz
 a9cf1dfe8fbffe58ae318947191eafb54d812fb7480ff4a1e38a107db6fa4ec8 10962 
r-cran-d3network_0.5.2.1-4_source.buildinfo
Files:
 7f7a18391d2e5bac0f6e16b8900e95e6 2106 gnu-r optional 
r-cran-d3network_0.5.2.1-4.dsc
 4dd3cec10e0ae6b3e9dad8aa2000dfba 2132 gnu-r optional 
r-cran-d3network_0.5.2.1-4.debian.tar.xz
 ab51cd5012202bf4b444bbfec0b741fd 10962 gnu-r optional 
r-cran-d3network_0.5.2.1-4_source.buildinfo

-BEGIN PGP SIGNATURE-

iQIzBAEBCgAdFiEEkqrZAbIbS8eaR6AwVPGmYxdIZxMFAmYKn30ACgkQVPGmYxdI
ZxMyZRAAgjOD25U/HTw23ucaZrE1AZH+fRrnJGSpt5EfycGwwgPa1YVru276cMr4
zmi7NF+Vhp2q7rnxBjYRZyvaoydiU9qoaLfEtPwlO7hmOrzrOrhOQnWHMoCHNIex
xTJVn8Fu+9KD7xf0NYttxGjS9Yyi9aPQmkagmHMmUYQjqXsxlSv6we/CDj8PmomN
QvFa1AtA1+cK4ECsG0J0LoeQuRHrJX4D2+pI5Y1P+dNreE8ZD0++kJXHVH7Blpyx
XHrknwOeDQOZSGTrqSCmZq1mnHYN+BjcN2hiURWSJwFqd3zt2muXoS7ztOZ7KlXs
9yedqkEOebmKnbBGc8i/0LdH4FpLDyeRfVR6vqONp6ODGg5GMidZpPOjx86pm346
kWAf9Wrx3CR6ly6SPiKK0R24nA3JbJHjViXpcfFP27V5j6yxlfv2oXZkP02564Ks
TMrhe/Pf4BYwxf8IAINxzQQ7MTZz5Ayoz0dmbqnZn+sLz/yhkI8i2v/lFOdoVhJK
8c4lEGGbGRrfMW/sRLAoFy28Cpr77rBTAkLz2XqjKk1RBmzdHQQI6ojfMa9y2zMH
7O5GImBWsFpmSgmk2YZQng5H63tYxPbyHwxhjKwNziLesmGQzUA60x0TyzHkpWaw
dqYxDvXINRMcANMTc2ZiypsMZgElX1R88NVo1E9CvxJvyJmc2sY=
=QEQw
-END PGP SIGNATURE-



pgp0ZxXmsFs1R.pgp
Description: PGP signature

Re: Validating tarballs against git repositories

[Andrey Rakhmatullin]

On Mon, Apr 01, 2024 at 04:10:55PM +0200, Alexandre Detiste wrote:
> Le lun. 1 avr. 2024 à 15:49, Colin Watson  a écrit :
> >
> > The practice of running "autoreconf -fi" or similar via dh-autoreconf
> > has worked extremely well at scale in Debian.  I'm sure there are
> > complex edge cases where it's caused problems, but it's far from being a
> > disaster area.
> 
> It's pretty uncommon, only old stuff.
> 
> That could be monitored (via lintian ?),
> anything with "--without autoreconf"
> or "overides dh_autoreconf".
Or compat < 10.

-- 
WBR, wRAR


signature.asc
Description: PGP signature

Re: xz backdoor

[Russ Allbery]

Bastian Blank  writes:

> I don't understand what you are trying to say.  If we add a hard check
> to lintian for m4/*, set it to auto-reject, then it is fully irrelevant
> if the upload is a tarball or git.

Er, well, there goes every C package for which I'm upstream, all of which
have M4 macros in m4/* that do not come from an external source.

-- 
Russ Allbery (r...@debian.org)  

Accepted smb4k 3.2.70-1 (source) into experimental

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 11:37:31 +0200
Source: smb4k
Architecture: source
Version: 3.2.70-1
Distribution: experimental
Urgency: medium
Maintainer: Debian KDE Extras Team 
Changed-By: Pino Toscano 
Changes:
 smb4k (3.2.70-1) experimental; urgency=medium
 .
   * New upstream development release.
   * Switch Vcs-* fields to the 'experimental' packaging branch.
   * Update the build dependencies according to the upstream build system:
 - bump cmake to 3.16
 - bump the Qt packages to 5.15.8
 - bump the KF packages to 5.103.0
 - drop libkf5plasma-dev, as smb4k is currently built without the Plasma
   widget
   * Update lintian overrides.
Checksums-Sha1:
 52030d082935058774668876ea1c5f77d4443541 2741 smb4k_3.2.70-1.dsc
 372dd440b88caf549338fd193ec30e37ac096220 4332880 smb4k_3.2.70.orig.tar.xz
 7fdf6c91bc1d42145a8070497ce7dabe43fa6bc3 7752 smb4k_3.2.70-1.debian.tar.xz
 72ed236dc5ce3fbddb67d1456876555859364777 18081 smb4k_3.2.70-1_source.buildinfo
Checksums-Sha256:
 f2658d86fdf7ed5e6120c8ff97bd3452f27f48a8873948ec7d615b8d044af257 2741 
smb4k_3.2.70-1.dsc
 388507003b755b2972ecef906771c1c4257dc416591d9393abc24135b6c4ebb2 4332880 
smb4k_3.2.70.orig.tar.xz
 c9fb957a629c94ed50caa9641b0a61e3d19d2f596ee1950b57de3cc3a30182e7 7752 
smb4k_3.2.70-1.debian.tar.xz
 0fdb0c232f4a24b40852ee1c2e1a00cd855eef8bbe15072a7b1a3988eca1e32e 18081 
smb4k_3.2.70-1_source.buildinfo
Files:
 e52c812f1e77a3fc7dbc2b06684e5257 2741 kde optional smb4k_3.2.70-1.dsc
 4508d16c73fb0f140ac902df14caa9b1 4332880 kde optional smb4k_3.2.70.orig.tar.xz
 aeaf332654f492aa1517376bb77df4aa 7752 kde optional smb4k_3.2.70-1.debian.tar.xz
 24ac8c2872b3e9db7e76cf5e2c7ede1f 18081 kde optional 
smb4k_3.2.70-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=YZzj
-END PGP SIGNATURE-



pgpo_X1vLfR9j.pgp
Description: PGP signature

Accepted debian-reference 2.121 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 18:24:03 +0900
Source: debian-reference
Architecture: source
Version: 2.121
Distribution: unstable
Urgency: medium
Maintainer: Osamu Aoki 
Changed-By: Osamu Aoki 
Changes:
 debian-reference (2.121) unstable; urgency=medium
 .
   [ eulalio ]
   * Translated using Weblate (Spanish)
 .
   [ Osamu Aoki ]
   * EN: Update losetup usage
   * po: update all languages on losetup
Checksums-Sha1:
 960bbb3f7686ad65f3f265017b9da487d96ac64a 3067 debian-reference_2.121.dsc
 92be3075356752e9628eb2527ec0af142371ef8e 2300044 debian-reference_2.121.tar.xz
Checksums-Sha256:
 61c98f42c3753bd349d6d752915d08cea37c32335678be3425eaf1c201f4a652 3067 
debian-reference_2.121.dsc
 d64c0711ff3442991a53c65e3f72b3aaa8b3b0656e07f535207e6e8857bc1b22 2300044 
debian-reference_2.121.tar.xz
Files:
 f7785a5ea57238daee964d970c76ff5f 3067 doc optional debian-reference_2.121.dsc
 c99b6b7e8e34946f5b3580bee4f7c21b 2300044 doc optional 
debian-reference_2.121.tar.xz

-BEGIN PGP SIGNATURE-

iQJFBAEBCgAvFiEEMTNyTWIHiBV56V1iHhNWiB3Y15EFAmYKgJwRHG9zYW11QGRl
Ymlhbi5vcmcACgkQHhNWiB3Y15FVFA//TnjHOGwBRHSCH5eiPgDM1zVognHQPlvv
VT0HnvBywQNdbKvs6ObTiGURjfgiT6c13eyQGAsrMOQhvXays4kNHm00Fes7Kkt3
XPFoxHAnGwNt2K+jBqJ2Su1t5Gz3yXvIKyf1z6vwcPXNt8Ju0tInKlzn8sWUfH/K
X4YP63bvSByV+1eY7Cm/hycPUVXuwyIBUjq68vzsch/KPb6vYmkzA1S0XTpmT6AH
swQhnL1yWcm9Zzwo1oiokoQ2xX6rtetw58vEhEbOWI26SPsr2E6dtAHQuuFSTqTP
62h91bZt9swm6oOt6EvBMAlAEci9ODbdoC0CBgjdKKxtm69pFMf63R3R0VM9Lp/O
kLXDHvD8j//Be7uI7jfUkpS8T74BgPgnCOZgc83XjD9kiwqXObo8R9h+YcZPC113
l2f142aKKz/h3KJby8PL5sBV9zI4r6Bysb20C3n5W6Oax6VNj2xys6RmfGcFzkVe
65Q0yTeAPJSO+ewhTaQSqz9oc7CC1FHJrxSWFZ1LKKe0MnouGAliHdx7qjpo6HH1
tTtYLNvk3xJKHTHPiwXuy7/FliOPSqqkFSU+ImE/mxYOHZlJ5d5bR8u2I2xiEJ1u
L+qnzs4zkhyLGyFpaMc+Fx7ECCWAoiPOYc6wHKwxUYh15Vh7xqgdq2fCkZBmOmo3
lzRuM4L1lGI=
=Da4Y
-END PGP SIGNATURE-



pgpSUTPHk8_l0.pgp
Description: PGP signature

Accepted gdm3 46.0-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 08:03:50 -0400
Source: gdm3
Built-For-Profiles: noudeb
Architecture: source
Version: 46.0-1
Distribution: unstable
Urgency: medium
Maintainer: Debian GNOME Maintainers 

Changed-By: Jeremy Bícha 
Changes:
 gdm3 (46.0-1) unstable; urgency=medium
 .
   * New upstream release
Checksums-Sha1:
 201165e18cf45988002a06c19c18fc5e432fb944 3142 gdm3_46.0-1.dsc
 14b7b85b1c5af3c2c448a11d70dd19eb5e008414 922828 gdm3_46.0.orig.tar.xz
 80773812d7cf5d10f425e61e7185812d672e4e1f 83884 gdm3_46.0-1.debian.tar.xz
 4b1364ea4ce41adfff686a7f22f44965a67de911 20079 gdm3_46.0-1_source.buildinfo
Checksums-Sha256:
 f134807b6732182b04f88dd1eca38de415c5d577af4155a2751dfcc2b4e360ec 3142 
gdm3_46.0-1.dsc
 8d6cb52176eca48b6bbf1cfe2fdae08d9677b5a0f2bca600dee4604de0dd1efc 922828 
gdm3_46.0.orig.tar.xz
 47c29e32a76cd9c0101a64ecfd757d3aabc52820736161a7b986bd359e214bff 83884 
gdm3_46.0-1.debian.tar.xz
 b2fc247e02dc8254c0b1c42bd14077a73a5a276f4ddf6724eaded4f1405335d2 20079 
gdm3_46.0-1_source.buildinfo
Files:
 640048b37d4c81038f0fe00c5dcfbefc 3142 gnome optional gdm3_46.0-1.dsc
 7c633379109fe5fb23734888649cdab0 922828 gnome optional gdm3_46.0.orig.tar.xz
 2b2f06cbca4c44da830f24bda9e15104 83884 gnome optional gdm3_46.0-1.debian.tar.xz
 99f894f07b8a078ecc76409772df19f3 20079 gnome optional 
gdm3_46.0-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=lhQp
-END PGP SIGNATURE-



pgpM1EnYT4KBy.pgp
Description: PGP signature

Accepted gnome-control-center 1:46.0.1-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 09:30:57 -0400
Source: gnome-control-center
Built-For-Profiles: noudeb
Architecture: source
Version: 1:46.0.1-1
Distribution: unstable
Urgency: medium
Maintainer: Debian GNOME Maintainers 

Changed-By: Jeremy Bícha 
Changes:
 gnome-control-center (1:46.0.1-1) unstable; urgency=medium
 .
   * New upstream release
   * Bump minimum gnome-online-accounts
   * Drop 6 patches applied in new release
   * Add patch to revert adding Remote Login page since it requires
 gnome-remote-desktop 46
Checksums-Sha1:
 9db9085a4d346d68d48978ecba293e17c2d9766d 3757 gnome-control-center_46.0.1-1.dsc
 3428e9e9010fadb8d37c69ef78feb5115e8dd66f 8007068 
gnome-control-center_46.0.1.orig.tar.xz
 3aebf2da4766684ffd4d3b9f61c464c88bf05e4b 54044 
gnome-control-center_46.0.1-1.debian.tar.xz
 010df09a1742e0d1d22eb0035d01b446bec917e2 21611 
gnome-control-center_46.0.1-1_source.buildinfo
Checksums-Sha256:
 9b22118a0013b139156feab2b43032a4f7758df7e757d4c138c5f3017209272c 3757 
gnome-control-center_46.0.1-1.dsc
 53cfbc25156b5ca0b302531ebaeefd7f915f39b08aca143d5b0ec80855221fe4 8007068 
gnome-control-center_46.0.1.orig.tar.xz
 c91f0e4e9c3e5083bd48cab8c591526309915b5135e6cd582c1e14aea1507180 54044 
gnome-control-center_46.0.1-1.debian.tar.xz
 c69768fbc3eb1d9431d532662f102bae53151d2cb1272fd8758e8edef22c7f67 21611 
gnome-control-center_46.0.1-1_source.buildinfo
Files:
 ea806c828b037342b7df80030f932021 3757 gnome optional 
gnome-control-center_46.0.1-1.dsc
 a1252c8b432df9f75360d555fad6b744 8007068 gnome optional 
gnome-control-center_46.0.1.orig.tar.xz
 707bcc84a46ce97c869178a8c13b58c3 54044 gnome optional 
gnome-control-center_46.0.1-1.debian.tar.xz
 219589abdee662029c015d78301ae109 21611 gnome optional 
gnome-control-center_46.0.1-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=9WaB
-END PGP SIGNATURE-



pgpHP3bAK2KNb.pgp
Description: PGP signature

Accepted gnome-online-accounts 3.50.0-3 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 09:29:38 -0400
Source: gnome-online-accounts
Built-For-Profiles: noudeb
Architecture: source
Version: 3.50.0-3
Distribution: unstable
Urgency: medium
Maintainer: Debian GNOME Maintainers 

Changed-By: Jeremy Bícha 
Closes: 1006398
Changes:
 gnome-online-accounts (3.50.0-3) unstable; urgency=medium
 .
   * Release to Unstable
 .
 gnome-online-accounts (3.50.0-2) experimental; urgency=medium
 .
   * Cherry-pick 2 patches to fix Microsoft authentication
 .
 gnome-online-accounts (3.50.0-1) experimental; urgency=medium
 .
   * New upstream release
   * Drop obsolete alternate Recommends: budgie-control-center,
 unity-control-center (Closes: #1006398)
 .
 gnome-online-accounts (3.49.4-1) experimental; urgency=medium
 .
   * New upstream release
   * Update libgoa-backend-1.0-dev dependencies to match pkgconfig file
 .
 gnome-online-accounts (3.49.3-1) experimental; urgency=medium
 .
   * New upstream release
   * Rename libgoa backend library package name to match new soname bump.
 The soname bump makes it more clear that everything using the backend
 library needs to stop using the library or adjust to the 3.49 changes.
   * Update symbols file
 .
 gnome-online-accounts (3.49.2-1) experimental; urgency=medium
 .
   * New upstream release
 - This is a major API break known to break the Online Accounts
   feature in cinnamon-control-center and unity-control-center.
   budgie-control-center has removed its Online Accounts feature
   because of this.
   * Switch to gtk4 and libadwaita
   * Don't enable msgraph (OneDrive) since it's not in Debian yet
   * Add Build-Depends: libdbus-1-dev
   * Update symbols file
Checksums-Sha1:
 79ef9cb1810bd510bb92f14378eae2dfc0f48d7e 3155 
gnome-online-accounts_3.50.0-3.dsc
 688c5b73251245f594890bf6ecec8053c4854e6a 16324 
gnome-online-accounts_3.50.0-3.debian.tar.xz
 d4ab20e9b49375e4f2048d04483aeb57635c9173 20062 
gnome-online-accounts_3.50.0-3_source.buildinfo
Checksums-Sha256:
 707d1cd9041dd62c6f5eaab4a2ade676cf2e27dc8d3599b980f4589fd3dc6119 3155 
gnome-online-accounts_3.50.0-3.dsc
 6fd2ad1b5285bf7a09e2fc338d7c5a38036b0f67b82583232dabbab79b156ad8 16324 
gnome-online-accounts_3.50.0-3.debian.tar.xz
 dfb5fed6b21618f96580d907118286755ed8a5ae137686b28966beceb65a64b4 20062 
gnome-online-accounts_3.50.0-3_source.buildinfo
Files:
 2bf971c768a20438c1d3b3e1abf30087 3155 gnome optional 
gnome-online-accounts_3.50.0-3.dsc
 ed286cc867b1895fb2f25cf58d42019e 16324 gnome optional 
gnome-online-accounts_3.50.0-3.debian.tar.xz
 d1ee3f5fecf46d214aecf10f58bcc59b 20062 gnome optional 
gnome-online-accounts_3.50.0-3_source.buildinfo

-BEGIN PGP SIGNATURE-
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=r5wZ
-END PGP SIGNATURE-



pgpIPLOl9p4Vr.pgp
Description: PGP signature

Accepted gobject-introspection 1.80.1-1 (source) into experimental

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 10:28:10 -0400
Source: gobject-introspection
Built-For-Profiles: noudeb
Architecture: source
Version: 1.80.1-1
Distribution: experimental
Urgency: medium
Maintainer: Debian GNOME Maintainers 

Changed-By: Jeremy Bícha 
Changes:
 gobject-introspection (1.80.1-1) experimental; urgency=medium
 .
   [ Jeremy Bícha ]
   * New upstream release
   * Drop time_t and off_t patches: applied in new release
 .
   [ Simon McVittie ]
   * d/copyright: Remove unused license paragraph
Checksums-Sha1:
 c6f567d8c0e8063004801768695f326834f4cf9e 4044 
gobject-introspection_1.80.1-1.dsc
 a86f8979d6e2cba0ff9122a6f699025b2d81bab6 5475296 
gobject-introspection_1.80.1.orig-glib.tar.xz
 175e675d09eae3a997e4cd4cfb19228e1cbd508c 1040228 
gobject-introspection_1.80.1.orig.tar.xz
 140b4301ca6a46dd1ad03fd3ff41838a63b720ae 56948 
gobject-introspection_1.80.1-1.debian.tar.xz
 150a9256ac8692983253a8421f8a57cdf268ec4e 11609 
gobject-introspection_1.80.1-1_source.buildinfo
Checksums-Sha256:
 697a3da78aa79591546b9a916be4733d8a96992a67da46a46f0537ede38e20a8 4044 
gobject-introspection_1.80.1-1.dsc
 b3764dd6e29b664085921dd4dd6ba2430fc19760ab6857ecfa3ebd4e8c1d114c 5475296 
gobject-introspection_1.80.1.orig-glib.tar.xz
 a1df7c424e15bda1ab639c00e9051b9adf5cea1a9e512f8a603b53cd199bc6d8 1040228 
gobject-introspection_1.80.1.orig.tar.xz
 ca74639e51c61b6790192a553825a5392018f2b1b25cad571ac71a95ec0c 56948 
gobject-introspection_1.80.1-1.debian.tar.xz
 d633a99f3b2c35f32fbbda0d270b15573dd257849488c7a6c148127934d83675 11609 
gobject-introspection_1.80.1-1_source.buildinfo
Files:
 70811de28ed67529272dd26966a05790 4044 devel optional 
gobject-introspection_1.80.1-1.dsc
 9df2169686c0b7f891067017002ad111 5475296 devel optional 
gobject-introspection_1.80.1.orig-glib.tar.xz
 ef1496a7a7abfcd31d25b3459ea86ebb 1040228 devel optional 
gobject-introspection_1.80.1.orig.tar.xz
 c2291d921ee31ad9c0cdf3e6ddf6 56948 devel optional 
gobject-introspection_1.80.1-1.debian.tar.xz
 1eb856c665b331e0e93d9a0ec3410676 11609 devel optional 
gobject-introspection_1.80.1-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=VWn2
-END PGP SIGNATURE-



pgpSbaxpcOAUW.pgp
Description: PGP signature

Accepted gnote 46.0-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 11:10:15 -0400
Source: gnote
Built-For-Profiles: noudeb
Architecture: source
Version: 46.0-1
Distribution: unstable
Urgency: medium
Maintainer: Debian GNOME Maintainers 

Changed-By: Jeremy Bícha 
Changes:
 gnote (46.0-1) unstable; urgency=medium
 .
   * New upstream release
Checksums-Sha1:
 3f8988ab78713aad0781f77b81fdccdc6d58f105 2179 gnote_46.0-1.dsc
 4f059dae00ce4a4f1c8c926e5ba1918d0d433a3c 3414728 gnote_46.0.orig.tar.xz
 8fb0f01b39442adc33c06cdd3e6629607c625f3f 8260 gnote_46.0-1.debian.tar.xz
 8cb7f28e0c8ff736473b63fda18b71c76a9a0973 17669 gnote_46.0-1_source.buildinfo
Checksums-Sha256:
 a2118aff4b3ec79055966c751ae5d0e0841247699f945d48f5ee3701a163eef1 2179 
gnote_46.0-1.dsc
 86df58a1595b215374691ab44bfc1613b49fdbca7708423a3d5658dcd3a015ed 3414728 
gnote_46.0.orig.tar.xz
 73f2a74c7a9fbd4af41daa58ee16d0032c7ae5f9cf7d51ba9e1764c552df44c1 8260 
gnote_46.0-1.debian.tar.xz
 b93e9136b827b8926ef42b9031f7a76f929ce30ad73d24c4096e73dfe127e3c8 17669 
gnote_46.0-1_source.buildinfo
Files:
 fd24507ba3121be319c7e7374136bddf 2179 gnome optional gnote_46.0-1.dsc
 203f652065cd51e7e4e9c25a4149ef55 3414728 gnome optional gnote_46.0.orig.tar.xz
 f85b96c57ad710af0d37e9dba4f3ff0f 8260 gnome optional gnote_46.0-1.debian.tar.xz
 789ca105c291e435080537ca1f4afc7f 17669 gnome optional 
gnote_46.0-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=iW1A
-END PGP SIGNATURE-



pgp_RrYvnGvrv.pgp
Description: PGP signature

Accepted gnome-weather 46.0-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 11:05:09 -0400
Source: gnome-weather
Built-For-Profiles: noudeb
Architecture: source
Version: 46.0-1
Distribution: unstable
Urgency: medium
Maintainer: Debian GNOME Maintainers 

Changed-By: Jeremy Bícha 
Changes:
 gnome-weather (46.0-1) unstable; urgency=medium
 .
   * New upstream release
   * Update Homepage
   * Stop using debian/control.in and dh-sequence-gnome
Checksums-Sha1:
 54cc96408f93a890f139899b8d3dabc60f7b4a66 2365 gnome-weather_46.0-1.dsc
 c3cdb9f895a0320ad1d2d516b1d941d2fc5dbe57 239644 gnome-weather_46.0.orig.tar.xz
 ac9967b18980c1dca7ad0fb3fc07c724e8ebe051 15092 
gnome-weather_46.0-1.debian.tar.xz
 359ccd98099663789b69877b5f328c74c5a958d1 7416 
gnome-weather_46.0-1_source.buildinfo
Checksums-Sha256:
 73a0c9eb20356ab0516668679c6d265215cccbbbd1c6ea6506811e580e4982d7 2365 
gnome-weather_46.0-1.dsc
 153826705ccf672e14f2fe4dfc782f8e89b7c4cbe4aafe95a5532fbde7a3d49d 239644 
gnome-weather_46.0.orig.tar.xz
 cc7d9247bf442eb858c25a2788f38f85c9b16e3203b59706dddfdb161e7933fb 15092 
gnome-weather_46.0-1.debian.tar.xz
 76996aae344db07cf500a18ca2a53048f95f217f53d64d0c43011a5d67484c8f 7416 
gnome-weather_46.0-1_source.buildinfo
Files:
 b487722f5ab788d3c28e50cff383f764 2365 gnome optional gnome-weather_46.0-1.dsc
 08c626cea07068b2a02d5faba90fdc14 239644 gnome optional 
gnome-weather_46.0.orig.tar.xz
 f8e4c72412ceafa456bf268256b0cfbe 15092 gnome optional 
gnome-weather_46.0-1.debian.tar.xz
 4be7ac24fbd571ce2c62536ee0f536fc 7416 gnome optional 
gnome-weather_46.0-1_source.buildinfo

-BEGIN PGP SIGNATURE-

iQIzBAEBCgAdFiEETQvhLw5HdtiqzpaW5mx3Wuv+bH0FAmYKzTkACgkQ5mx3Wuv+
bH0d5w//Wozg36IXrJv/Y3BcInWgjzrQgIfNq8TUYe7ty/r8qqMRC8NZ4wd9RJ64
b9VMxDwdZrv7HJDL04RdWgi5BR13Om1nCX2Uq2oP1X9BXCy3tEH4V/JWaQP/Mw8b
11M9pOIVaObrVMlEoxA4OoiRbamkxEbrVqdHtfoVBJlPpbTKcVDsy8KZVMzyMJR8
5L92GYkNP2YQpWWlc1HL3k4fie+XmGkN8g9beBN/OJ0Wb8nkxcmQrmE2VLYW1dME
jTyqabqK6raIgOSyMbMA5D93PWe+Wkt8iBEwAZfxiSxQn738qt1VX4tJ4vsQKVEH
P4YnbNmDt+xruJ9Y9Len3ETJZOoCqoRCtJ7g0jDvKjQLvnjnY5jqG8l+I9LIDbrg
bOy72uREnsK0V5EJrmOU4dGy0+9UzeBBcKO/eD7QG+tWhqYLACm//MwBzQF617Zy
7bjxuj9EBtytXodrdzbryqbaiw2ihnfV+0+0cUsdMMe758yPYGmfJaPN/X5J9enm
q2hOCKMd/B0+HG4oaPNdtq+ollgwTPv+j+FxudYHDadYMPVdxf/SVNoxQ7wkFg/X
jdhsSbEaWoVausdtXMEJCae0we/7iYOoJFMWnDkReXR2NJ+Ozyj5cBJMvsjA0VLh
eNxGbafBv3o6Wf9Dq+dGEKeLeZauDJ5VhprxJg1S5PNonOiWmEE=
=9i2x
-END PGP SIGNATURE-



pgpkg6PYQvhO4.pgp
Description: PGP signature

Accepted gap-ctbllib 1.3.9-1 (source) into unstable

[Debian FTP Masters]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 01 Apr 2024 14:51:56 +0200
Source: gap-ctbllib
Architecture: source
Version: 1.3.9-1
Distribution: unstable
Urgency: medium
Maintainer: Bill Allombert 
Changed-By: Bill Allombert 
Changes:
 gap-ctbllib (1.3.9-1) unstable; urgency=medium
 .
   * New upstream release.
Checksums-Sha1:
 4ee67d8a82d777b761507958fecc4db8733a68c7 1999 gap-ctbllib_1.3.9-1.dsc
 c669375eb4c6d67eb46ef8d3b6e4eeeb7c75b182 8826588 gap-ctbllib_1.3.9.orig.tar.xz
 911233f780239c501f3025b7373a489888ee1bd7 5344 gap-ctbllib_1.3.9-1.debian.tar.xz
 89f947ce91d69c3c1b6cff94ead10ac2ffee2d18 9822 
gap-ctbllib_1.3.9-1_source.buildinfo
Checksums-Sha256:
 48bdf322ffc7014c7fc9e3728e2003a47d507af7f303d5d5324db8e529b5a475 1999 
gap-ctbllib_1.3.9-1.dsc
 2647aac1d49facd93e74ccde60b94e85de55802895c4c482def9601e756a9a2e 8826588 
gap-ctbllib_1.3.9.orig.tar.xz
 2f6de6ff55678a21879e136e843bc14527531ea0c3ec74b9e5668701d011305a 5344 
gap-ctbllib_1.3.9-1.debian.tar.xz
 b66b9127bd7ce54a6b8c75425afc842f25664b69b6acb807dee28399ff129d6e 9822 
gap-ctbllib_1.3.9-1_source.buildinfo
Files:
 f19e5451c51e38d18efa763f8a6f42bb 1999 math optional gap-ctbllib_1.3.9-1.dsc
 e87dceca6f1e16790babcec717aaffb4 8826588 math optional 
gap-ctbllib_1.3.9.orig.tar.xz
 99b2a378df70164f1a5e4f19bc26c7e6 5344 math optional 
gap-ctbllib_1.3.9-1.debian.tar.xz
 d9cd01299817f6778ce5d5f08d181f2c 9822 math optional 
gap-ctbllib_1.3.9-1_source.buildinfo

-BEGIN PGP SIGNATURE-

iQIzBAEBCgAdFiEEQgKOpASi6dgKxFMUjw58K0Ui44cFAmYK0U8ACgkQjw58K0Ui
44cCgw/9GmxxJfXBtDKa9iqtUvmolCDjm1+R/+tKf2YNGusp3Z3dJv2koUbLEumW
0Um1qoEgX+t3sz89TEuu2Up7/1JQ1JEwFHxIeuHV3doIERrgVGBfv1dExBsWfxzI
qTrg2W0GoGRlN7pAji6aVAYt5yln18AhF5yT2k39OalPKLjQHpPsogLOtpYr8F4E
ZFRjPke7OQgLoqAIVa1cKxPq5CqWhWlfcFqkC96GCd20KGPWRsbN5bTRQoxl386F
ymrKXnm/DfEi8wP6zriTCMSZG9QWLUqQLJp03r/UYi/bp/4ryVM1u3tIOXBNT7Co
w/xn4/l1YfU0FkyEcx8gWE3RVOpn9qd4uen0Jz56LfbSu1b6pGqGvtBuUaVQkHwp
OwxUinH+jYMH2Ve8Md3F2WDeEVhlpXoRohKM9/ZSoOzAt3QtiPZXntCm+u8XNfB/
auaSOhUclseB7WooTeWFgx01OoBgbUqp0Ig6b4zXjZZyxU+zDrNpQFtvFBU+1/mM
yuLKLCX0vhFKFRzviOvQtKSm1iexzUj5+Vu7xNVAuvj8LRAk6tnIrwy7giB4+LkM
GsHlpC5pESNY8Ux5mxfxKXn130hpge/PQoTDGBUuSYDaV6sAtVarqSjIs4lWrm+B
XZWtrGdPoKvvSyoSsSKN0pIpzOtwmyYPB9QtJLmqNt0hH/27QxY=
=8YO1
-END PGP SIGNATURE-



pgpM25i4vNC34.pgp
Description: PGP signature

Re: xz backdoor

[Colin Watson]

On Mon, Apr 01, 2024 at 08:13:58AM -0700, Russ Allbery wrote:
> Bastian Blank  writes:
> > I don't understand what you are trying to say.  If we add a hard check
> > to lintian for m4/*, set it to auto-reject, then it is fully irrelevant
> > if the upload is a tarball or git.
> 
> Er, well, there goes every C package for which I'm upstream, all of which
> have M4 macros in m4/* that do not come from an external source.

Ditto.  And a bunch of the packages where I'm not upstream too, such as
that famously enthusiastic adopter of all things GNU, OpenSSH.

-- 
Colin Watson (he/him)  [cjwat...@debian.org]