Processed: tagging 769853
Processing commands for cont...@bugs.debian.org: tags 769853 - moreinfo Bug #769853 [release.debian.org] unblock: python-persistent/4.0.8-2 Removed tag(s) moreinfo. thanks Stopping processing here. Please contact me if you need assistance. -- 769853: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769853 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.141871947426873.transcr...@bugs.debian.org
Processed: tagging 769854
Processing commands for cont...@bugs.debian.org: tags 769854 - moreinfo Bug #769854 [release.debian.org] unblock: zodb/1:3.9.7-3 Removed tag(s) moreinfo. thanks Stopping processing here. Please contact me if you need assistance. -- 769854: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769854 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.141871947726896.transcr...@bugs.debian.org
Bug#769853: /769854: unblock: python-persistent and python-zodb
Hi,
Julien Cristau jcris...@debian.org writes:
On Fri, Dec 12, 2014 at 12:44:08 +0900, Arnaud Fontaine wrote:
I have attached the debdiff with the packages currently in unstable,
would you consider unblocking these changes if I upload the packages to
unstable?
Yes, I would.
Thanks! I have just uploaded both packages to unstable. Compared to my
previous debdiff, I have just merged the work done by Gediminas for the
next version of ZODB (basically only patch filenames are different and
the changelog entry has been modified accordingly), but the content of
python-zodb binary package is exactly the same.
I have attached debdiffs for both packages in case of.
Adam D. Barratt a...@adam-barratt.org.uk writes:
Control: tags 769854 + confirmed moreinfo
Control: tags 769853 + confirmed moreinfo
If the upload can be made soon, that should be fine. Please remove the
moreinfo tags once the packages are in unstable.
Done.
Cheers,
--
Arnaud Fontaine
diff -Nru python-persistent-4.0.8/debian/changelog python-persistent-4.0.8/debian/changelog
--- python-persistent-4.0.8/debian/changelog 2014-11-14 18:30:25.0 +0900
+++ python-persistent-4.0.8/debian/changelog 2014-12-10 17:41:09.0 +0900
@@ -1,3 +1,13 @@
+python-persistent (4.0.8-3) unstable; urgency=medium
+
+ * Team upload.
+ * Revert change in previous upload in favor of removing persistent
+module from python-zodb and make it depend upon this package (with
+upstream ACK). Closes: #767554.
++ d/control: Add Breaks/Replaces against python-zodb 1:3.9.7-4~.
+
+ -- Arnaud Fontaine ar...@debian.org Wed, 10 Dec 2014 17:33:13 +0900
+
python-persistent (4.0.8-2) unstable; urgency=medium
* Team upload.
diff -Nru python-persistent-4.0.8/debian/control python-persistent-4.0.8/debian/control
--- python-persistent-4.0.8/debian/control 2014-11-14 18:31:01.0 +0900
+++ python-persistent-4.0.8/debian/control 2014-12-10 17:37:40.0 +0900
@@ -22,7 +22,8 @@
Package: python-persistent
Architecture: any
Depends: ${misc:Depends}, ${python:Depends}, ${shlibs:Depends}
-Conflicts: python-zodb ( 3.11.0~)
+Breaks: python-zodb ( 1:3.9.7-4~)
+Replaces: python-zodb ( 1:3.9.7-4~)
Description: Automatic persistence for Python objects
This package contains a generic persistence implementation for Python. It
forms the core protocol for making objects interact transparently with
diff -Nru zodb-3.9.7/debian/changelog zodb-3.9.7/debian/changelog
--- zodb-3.9.7/debian/changelog 2014-11-17 12:10:50.0 +0900
+++ zodb-3.9.7/debian/changelog 2014-12-16 17:16:27.0 +0900
@@ -1,3 +1,29 @@
+zodb (1:3.9.7-4) unstable; urgency=medium
+
+ * Team upload.
+ * Revert change in previous upload in favor of removing persistent
+module from this package and make it depend upon python-persistent
+(with upstream ACK). Closes: #767554.
++ d/control: Add Depends against python-persistent.
++ d/rules: Delete persistent module from final package.
++ d/p/persistent-module-4.x-compat.patch: persistent 4.x uses bytes
+ instead of repr() but ZODB 4.0.0a4 still uses repr() which is
+ incompatible.
++ d/tests/all: Remove persistent from the list of tests being ran.
++ d/tests/control: zope.testing.doctest has been removed in
+ python-zope.testing 4.0.0 and tests cannot be ran anymore. So update
+ Depends accordingly even though 4.0.0~ is only in stable instead of
+ backporting many patches. Fix this issue properly when packing NUR
+ after the release of Jessie.
+ * d/p/test-spurious-failure-under-python27.patch: Fix python2.7 tests.
+
+ [ Gediminas Paulauskas ]
+ * d/p/new-transaction.patch: Fix test failure with new transaction.
+ * d/p/testUtils.patch: Fix test failure with python2.7 (= 2.7.6).
+ * d/tests: Switch to zope.testrunner.
+
+ -- Arnaud Fontaine ar...@debian.org Tue, 16 Dec 2014 17:12:06 +0900
+
zodb (1:3.9.7-3) unstable; urgency=medium
* Team upload.
@@ -237,4 +263,3 @@
* Initial release (Closes: #158552, #159072, #188435)
-- Fabio Tranchitella kob...@debian.org Thu, 18 Aug 2005 21:49:17 +
-
diff -Nru zodb-3.9.7/debian/control zodb-3.9.7/debian/control
--- zodb-3.9.7/debian/control 2014-11-17 12:09:52.0 +0900
+++ zodb-3.9.7/debian/control 2014-12-16 16:40:16.0 +0900
@@ -19,13 +19,12 @@
Depends: ${pydeb:Depends},
${python:Depends},
${misc:Depends},
- ${shlibs:Depends}
+ ${shlibs:Depends},
+ python-persistent
Provides: ${pydeb:Provides},
${python:Provides},
- python-persistent
Suggests: ${pydeb:Suggests}
-Conflicts: zope3,
- python-persistent
+Conflicts: zope3
Description: Zope Object Database (ZODB)
The Zope Object Database is an object-oriented database for Python that
provides a high-degree of transparency. Applications can take advantage of
diff -Nru zodb-3.9.7/debian/patches/new-transaction.patch
Bug#773140: unblock: rabbitmq-server/3.3.5-1.1
rabbitmq-server maintainers, are there any other RC bugs that you're planning to file on the package? No other RC bugs. I submitted https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773259, which I hope has an appropriate severity of important. I've asked a couple developers their opinion on whether rabbitmq-server attempting to use SSLv3 [1] would be a bug. Rabbit's method to verify SSLv3 is disabled [2] uses s_client with the -ssl3 option which no longer works [3]. I believe this is a non-issue since SSLv3 is disabled in Jessie [4], but I would appreciate a confirmation. I apologize for the late bugs and 3.4.1-1 debacle, I had some terrible misunderstandings. -Blair 1. https://groups.google.com/forum/#!topic/rabbitmq-users/jk45xOPqeGY 2. https://gist.github.com/michaelklishin/3f47bae850bdd9f1a79a 3. https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=766297 4. https://lists.debian.org/debian-release/2014/11/msg00690.html -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/54901268.50...@gmail.com
Bug#773169: unblock: syncevolution/1.4.99.4-3
Hi, I forgot to attach a debdiff in the bugreport. Sorry for that. Now it's attached. Regards, Tino diff -Nru syncevolution-1.4.99.4/debian/changelog syncevolution-1.4.99.4/debian/changelog --- syncevolution-1.4.99.4/debian/changelog 2014-10-26 14:43:18.0 +0100 +++ syncevolution-1.4.99.4/debian/changelog 2014-12-04 22:46:12.0 +0100 @@ -1,3 +1,9 @@ +syncevolution (1.4.99.4-3) unstable; urgency=medium + + * Use TLS instead of SSLv3 in SyncML server script (Closes: #772040) + + -- Tino Mettler tino+deb...@tikei.de Thu, 04 Dec 2014 22:44:49 +0100 + syncevolution (1.4.99.4-2) unstable; urgency=medium * Fix FTBFS on kfreebsd due to missing SOCK_CLOEXEC diff -Nru syncevolution-1.4.99.4/debian/patches/0001-Fix-FTBFS-on-kfreebsd-due-to-missing-SOCK_CLOEXEC.patch syncevolution-1.4.99.4/debian/patches/0001-Fix-FTBFS-on-kfreebsd-due-to-missing-SOCK_CLOEXEC.patch --- syncevolution-1.4.99.4/debian/patches/0001-Fix-FTBFS-on-kfreebsd-due-to-missing-SOCK_CLOEXEC.patch 2014-10-26 14:13:38.0 +0100 +++ syncevolution-1.4.99.4/debian/patches/0001-Fix-FTBFS-on-kfreebsd-due-to-missing-SOCK_CLOEXEC.patch 2014-12-04 22:46:46.0 +0100 @@ -47,5 +47,5 @@ GuardFD childfd(fds[1]); -- -2.0.1 +2.1.3 diff -Nru syncevolution-1.4.99.4/debian/patches/0002-Use-TLS-instead-of-SSLv3-in-SyncML-server-script.patch syncevolution-1.4.99.4/debian/patches/0002-Use-TLS-instead-of-SSLv3-in-SyncML-server-script.patch --- syncevolution-1.4.99.4/debian/patches/0002-Use-TLS-instead-of-SSLv3-in-SyncML-server-script.patch 1970-01-01 01:00:00.0 +0100 +++ syncevolution-1.4.99.4/debian/patches/0002-Use-TLS-instead-of-SSLv3-in-SyncML-server-script.patch 2014-12-04 22:46:46.0 +0100 @@ -0,0 +1,30 @@ +From 7d2802314406b0d6218bd04889667e38710b414d Mon Sep 17 00:00:00 2001 +From: Tino Mettler tino+deb...@tikei.de +Date: Thu, 4 Dec 2014 17:11:22 +0100 +Subject: [PATCH] Use TLS instead of SSLv3 in SyncML server script + +This fixes a potential security risk. It also avoids connection problems +with clients that don't support SSLv3 anymore, like the syncevolution SyncML +client itself. + +Closes: #772040 +--- + test/syncevo-http-server.py | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/test/syncevo-http-server.py b/test/syncevo-http-server.py +index 57210ae..6c14088 100755 +--- a/test/syncevo-http-server.py b/test/syncevo-http-server.py +@@ -40,7 +40,7 @@ timeout=10 + + class ChainedOpenSSLContextFactory(ssl.DefaultOpenSSLContextFactory): + def __init__(self, privateKeyFileName, certificateChainFileName, +- sslmethod = SSL.SSLv3_METHOD): ++ sslmethod = SSL.TLSv1_METHOD): + + @param privateKeyFileName: Name of a file containing a private key + @param certificateChainFileName: Name of a file containing a certificate chain +-- +2.1.3 + diff -Nru syncevolution-1.4.99.4/debian/patches/series syncevolution-1.4.99.4/debian/patches/series --- syncevolution-1.4.99.4/debian/patches/series 2014-10-26 14:13:38.0 +0100 +++ syncevolution-1.4.99.4/debian/patches/series 2014-12-04 22:46:46.0 +0100 @@ -1,2 +1,3 @@ # debian/source/git-patches exported from git by quilt-patches-deb-export-hook 0001-Fix-FTBFS-on-kfreebsd-due-to-missing-SOCK_CLOEXEC.patch +0002-Use-TLS-instead-of-SSLv3-in-SyncML-server-script.patch
Processed: binNMU with outdated binutils
Processing control commands:
reopen -1
Bug #772798 {Done: Jonathan Wiltshire j...@debian.org} [release.debian.org]
nmu: smartmontools_6.3+svn4002-2
Bug reopened
Ignoring request to alter fixed versions of bug #772798 to the same values
previously set
--
772798: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=772798
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive:
https://lists.debian.org/handler.s.b772798.141873382225163.transcr...@bugs.debian.org
Bug#772798: binNMU with outdated binutils
Control: reopen -1 according to the amd64 build log, the binNMU was done using 2.24.90.20141128-1 please do another binNMU using the requested version. -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/549028ef.7070...@debian.org
Bug#773285: unattended-upgrades unblock request
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi release team, I would like to ask for allow unattended-upgrades 0.83.3 into testing. Version 0.83 has a regression when it sends out the summary mail of the completed upgrade. The full changelog: unattended-upgrades (0.83.3) unstable; urgency=medium [ Alexandre Detiste ] * add Raspbian template [ Michael Vogt ] * Attach all dpkg log to the summary mail on minimal-upgrades-steps mode (closes: #759693) -- Michael Vogt m...@debian.org Wed, 10 Dec 2014 21:36:34 +0100 unattended-upgrades (0.83.2) unstable; urgency=medium [ Martin-Éric Racine ] * debian/changelog: - updated to the DEP-5 format [ Alexandre Detiste ] * Fix spurious newlines -- Michael Vogt m...@debian.org Wed, 26 Nov 2014 10:19:48 +0100 unattended-upgrades (0.83.1) unstable; urgency=medium * unattended-upgrade: - fix regression and only send out the most recent dpkg log part when sending the summary mail (closes: #759693) * README.md: - improve documentation * debian/control: - update Vcs-Bzr location -- Michael Vogt m...@debian.org Mon, 24 Nov 2014 11:09:41 +0100 Thanks for your consideration, Michael signature.asc Description: Digital signature
Bug#773285: marked as done (unattended-upgrades unblock request)
Your message dated Tue, 16 Dec 2014 13:42:38 + with message-id 1653d74611fc166cf68e690c4ac81...@mail.adsl.funky-badger.org and subject line Re: Bug#773285: unattended-upgrades unblock request has caused the Debian Bug report #773285, regarding unattended-upgrades unblock request to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 773285: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773285 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi release team, I would like to ask for allow unattended-upgrades 0.83.3 into testing. Version 0.83 has a regression when it sends out the summary mail of the completed upgrade. The full changelog: unattended-upgrades (0.83.3) unstable; urgency=medium [ Alexandre Detiste ] * add Raspbian template [ Michael Vogt ] * Attach all dpkg log to the summary mail on minimal-upgrades-steps mode (closes: #759693) -- Michael Vogt m...@debian.org Wed, 10 Dec 2014 21:36:34 +0100 unattended-upgrades (0.83.2) unstable; urgency=medium [ Martin-Éric Racine ] * debian/changelog: - updated to the DEP-5 format [ Alexandre Detiste ] * Fix spurious newlines -- Michael Vogt m...@debian.org Wed, 26 Nov 2014 10:19:48 +0100 unattended-upgrades (0.83.1) unstable; urgency=medium * unattended-upgrade: - fix regression and only send out the most recent dpkg log part when sending the summary mail (closes: #759693) * README.md: - improve documentation * debian/control: - update Vcs-Bzr location -- Michael Vogt m...@debian.org Mon, 24 Nov 2014 11:09:41 +0100 Thanks for your consideration, Michael signature.asc Description: Digital signature ---End Message--- ---BeginMessage--- On 2014-12-16 13:28, Michael Vogt wrote: I would like to ask for allow unattended-upgrades 0.83.3 into testing. It's been there since last night's britney. :) Regards, Adam---End Message---
Bug#773290: unblock: squid3/3.4.8-5
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package squid3
This versione fixes serious bug #773032, which affects upgrades from wheezy to
jessie when no change has been made to the original configuration file.
diff -Nru squid3-3.4.8/debian/changelog squid3-3.4.8/debian/changelog
--- squid3-3.4.8/debian/changelog 2014-12-05 10:46:41.0 +0100
+++ squid3-3.4.8/debian/changelog 2014-12-16 14:33:14.0 +0100
@@ -1,3 +1,11 @@
+squid3 (3.4.8-5) unstable; urgency=medium
+
+ [ Luigi Gangitano lu...@debian.org ]
+ * debian/squid3.{pre,post}inst
+- Moved ACL manager fix to postinst (Closes: #773032)
+
+ -- Luigi Gangitano lu...@debian.org Tue, 16 Dec 2014 13:43:03 +0100
+
squid3 (3.4.8-4) unstable; urgency=medium
[ Luigi Gangitano lu...@debian.org ]
diff -Nru squid3-3.4.8/debian/squid3.postinst
squid3-3.4.8/debian/squid3.postinst
--- squid3-3.4.8/debian/squid3.postinst 2014-12-05 10:46:41.0 +0100
+++ squid3-3.4.8/debian/squid3.postinst 2014-12-16 14:33:14.0 +0100
@@ -62,8 +62,28 @@
echo Creating Squid HTTP proxy 3.x spool directory
structure
squid3 -z
fi
+
+ #
+ # Remove obsolete manager ACL definition.
+ # It will halt upgrade with fatal error if left.
+ #
+ if test -f /etc/squid3/squid.conf dpkg --compare-versions
$2 lt '3.4' grep -q ^[[:blank:]]*acl manager /etc/squid3/squid.conf ;
then
+ echo Filtering squid.conf manager ACL.
+ cp /etc/squid3/squid.conf
/etc/squid3/squid.conf.pre_3.4_upgrade
+ sed -e s/^\([ \t]*acl manager.*\)/# \1 # Commented out
on upgrade to 3.4/ /etc/squid3/squid.conf.pre_3.4_upgrade
/etc/squid3/squid.conf
+ fi
+ ;;
+ abort-upgrade)
+ #
+ # Revert the automated configuration changes we may have done
+ #
+ if test -f /etc/squid3/squid.conf.pre_3.4_upgrade; then
+ echo Removing squid.conf changes.
+ mv /etc/squid3/squid.conf.pre_3.4_upgrade
/etc/squid3/squid.conf
+ fi
+ exit 0
;;
- abort-upgrade|abort-remove|abort-deconfigure)
+ abort-remove|abort-deconfigure)
;;
*)
#
diff -Nru squid3-3.4.8/debian/squid3.preinst squid3-3.4.8/debian/squid3.preinst
--- squid3-3.4.8/debian/squid3.preinst 2014-12-05 10:46:41.0 +0100
+++ squid3-3.4.8/debian/squid3.preinst 2014-12-16 14:33:14.0 +0100
@@ -4,24 +4,8 @@
case $1 in
upgrade|install-upgrade)
- #
- # Remove obsolete manager ACL definition.
- # It will halt upgrade with fatal error if left.
- #
- if test -f /etc/squid3/squid.conf dpkg --compare-versions
$2 lt '3.4.8-3' grep -q ^[[:blank:]]*acl manager /etc/squid3/squid.conf
; then
- echo Filtering squid.conf manager ACL.
- cp /etc/squid3/squid.conf
/etc/squid3/squid.conf.pre_3.4_upgrade
- sed -e s/^\([ \t]*acl manager.*\)/# \1 # Commented out
on upgrade to 3.4/ /etc/squid3/squid.conf.pre_3.4_upgrade
/etc/squid3/squid.conf
- fi
;;
abort-upgrade)
- #
- # Revert the automated configuration changes we may have done
- #
- if test -f /etc/squid3/squid.conf.pre_3.4_upgrade; then
- echo Removing squid.conf changes.
- mv /etc/squid3/squid.conf.pre_3.4_upgrade
/etc/squid3/squid.conf
- fi
exit 0
;;
esac
unblock squid3/3.4.8-5
-- System Information:
Debian Release: 8.0
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Foreign Architectures: amd64
Kernel: Linux 3.16.0-4-686-pae (SMP w/2 CPU cores)
Locale: LANG=it_IT.UTF-8, LC_CTYPE=it_IT.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: sysvinit (via /sbin/init)
--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive:
https://lists.debian.org/20141216135117.20642.45063.report...@debian.openconsulting.it
Bug#773299: unblock: python-lightblue/0.3.2-2
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package python-lightblue
Version 0.3.2-2 fixes RC bug #562907 (missing dep on pybluez) that
led to the removal of the package. Note that the fixed package
was available before the removal but since the package is currently
orphaned, nobody took care of asking an unblock request here.
Unfortunately the upload contains a few more changes which are
usually not allowed during freeze. Though they are relatively safe since
that's the kind of changes that has been made on hundreds of other python
modules...
unblock python-lightblue/0.3.2-2
I can prepare a more targeted fix for t-p-u if you really want but I
believe that taking the package from unstable is better. FWIW I'm interested
in bringing this package back because it's a dependency that we need
for a package available in Kali Linux.
diff -u python-lightblue-0.3.2/debian/rules python-lightblue-0.3.2/debian/rules
--- python-lightblue-0.3.2/debian/rules
+++ python-lightblue-0.3.2/debian/rules
@@ -6,55 +6,2 @@
-PYVERSIONS = $(shell pyversions -i)
-
-configure: configure-stamp
-configure-stamp:
- dh_testdir
- touch configure-stamp
-
-build: build-stamp
-build-stamp: configure-stamp
- dh_testdir
- for PYTHON in $(PYVERSIONS); do \
- $$PYTHON ./setup.py build; \
- done
- touch $@
-
-clean:
- dh_testdir
- dh_testroot
- rm -f build-stamp configure-stamp
- [ ! -f ./setup.py ] || for PYTHON in $(PYVERSIONS); do \
- $$PYTHON ./setup.py clean || :; \
- done
- [ ! -d build ] || rm -rf build
- dh_clean
-
-install: build
- dh_testdir
- dh_testroot
- dh_clean -k
- dh_installdirs
- for PYTHON in $(PYVERSIONS); do \
- $$PYTHON ./setup.py install
--prefix=debian/python-lightblue/usr; \
- done
-
-binary-arch: build install
- dh_testdir
- dh_testroot
- dh_installdocs
- dh_installchangelogs CHANGELOG
- dh_pysupport
- dh_installman
- dh_link
- dh_strip
- dh_compress
- dh_fixperms
- dh_installdeb
- dh_shlibdeps
- dh_gencontrol
- dh_md5sums
- dh_builddeb
-
-binary-indep: build install
-
-binary: binary-indep binary-arch
-.PHONY: build clean binary-indep binary-arch binary install configure
+%:
+ dh $@ --with python2
diff -u python-lightblue-0.3.2/debian/changelog
python-lightblue-0.3.2/debian/changelog
--- python-lightblue-0.3.2/debian/changelog
+++ python-lightblue-0.3.2/debian/changelog
@@ -1,3 +1,13 @@
+python-lightblue (0.3.2-2) unstable; urgency=medium
+
+ * QA upload.
+ * Set QA Group as Maintainer.
+ * Add missing dependency on pybluez (Closes: #562907).
+ * python-support is deprecated. Port to dh_python2 and dh.
+ * Bump Standards-Version to 3.9.6
+
+ -- Andrew Starr-Bochicchio a...@debian.org Wed, 26 Nov 2014 20:24:35 -0500
+
python-lightblue (0.3.2-1) unstable; urgency=low
* New upstream version.
diff -u python-lightblue-0.3.2/debian/control
python-lightblue-0.3.2/debian/control
--- python-lightblue-0.3.2/debian/control
+++ python-lightblue-0.3.2/debian/control
@@ -1,13 +1,17 @@
Source: python-lightblue
Section: python
Priority: extra
-Maintainer: martin f. krafft madd...@debian.org
-Build-Depends: debhelper (= 6), python-all-dev, python-support (= 0.4),
libopenobex1-dev, python-bluez
-Standards-Version: 3.7.3
+Maintainer: Debian QA Group packa...@qa.debian.org
+Build-Depends: debhelper (= 9),
+ libopenobex1-dev,
+ python-all-dev (= 2.6.6-3~),
+ python-bluez
+Standards-Version: 3.9.6
+X-Python-Version: = 2.6
Package: python-lightblue
Architecture: any
-Depends: ${shlibs:Depends}, ${python:Depends}
+Depends: python-bluez, ${misc:Depends}, ${python:Depends}, ${shlibs:Depends}
Provides: ${python:Provides}
Description: cross-platform Bluetooth API for Python
The package provides a Python API which provides simple access to Bluetooth
diff -u python-lightblue-0.3.2/debian/copyright
python-lightblue-0.3.2/debian/copyright
--- python-lightblue-0.3.2/debian/copyright
+++ python-lightblue-0.3.2/debian/copyright
@@ -15,10 +15,10 @@
LightBlue is licensed under the MIT license, as reproduced below,
and in each individual source code file.
-The LightBlue implementation for Python for Series 60 uses some
-source files from the PDIS project from the Helsinki Institute for
+The LightBlue implementation for Python for Series 60 uses some
+source files from the PDIS project from the Helsinki Institute for
Information Technology (HIIT). The license for these sources is also
-reproduced below.
+reproduced below.
-- System Information:
Debian Release: 8.0
APT prefers squeeze-lts
APT policy: (500, 'squeeze-lts'), (500, 'unstable'), (500, 'testing'), (500,
Bug#769961: hard-coded UIDs and GIDs
There is probably something that could be probed. For example, all Android devices must be running 'zygote' since that's what starts all the other processes. .hc signature.asc Description: OpenPGP digital signature
Bug#773140: unblock: rabbitmq-server/3.3.5-1.1
That new upstream version was uploaded at urgency=high the day before the freeze, with no explanation other than new upstream release. Given that 3.4.0 had been out for a fortnight by that point, it looks very much like trying to game the freeze. :-( It indeed looks bad. I believe this is just a mistake. FYI, I had a few exchanges with Blair Hester, who is the sponsored person for the upload of 3.4.0, and he feels bad about the current situation, and would like to fix it. James Page, the sponsor for the upload, also expressed his regret. But let's not discuss that, and let's try to fix things in Jessie. rabbitmq-server maintainers, are there any other RC bugs that you're planning to file on the package? There's another issue about SSLv3, but considering that this has been disabled from Sid/Jessie, so as Blair Hester wrote, we don't think rabbitmq-server in Debian is affected. I'm not aware of any other issue. Now, seeing that 3.4.0 is in Sid, is it ok to target testing-proposed-updates for 3.3.5-1.1 here? We would also update Sid to 3.4.1 then. Please let me know, and I'll work out with Blair Hester and probably Matt Kraai kr...@ftbfs.org to do the actual upload. Cheers, Thomas Goirand (zigo) -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/54905424.8050...@debian.org
Processed: Re: Bug#773140: unblock: rabbitmq-server/3.3.5-1.1
Processing control commands: tags -1 + confirmed moreinfo Bug #773140 [release.debian.org] unblock: rabbitmq-server/3.3.5-1.1 Added tag(s) confirmed. -- 773140: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773140 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b773140.141874808424542.transcr...@bugs.debian.org
Bug#773140: unblock: rabbitmq-server/3.3.5-1.1
Control: tags -1 + confirmed moreinfo On 2014-12-16 15:47, Thomas Goirand wrote: Now, seeing that 3.4.0 is in Sid, is it ok to target testing-proposed-updates for 3.3.5-1.1 here? We would also update Sid to 3.4.1 then. Please let me know, and I'll work out with Blair Hester and probably Matt Kraai kr...@ftbfs.org to do the actual upload. I've toyed with asking you to revert the 3.4.0 upload in sid, as has been done for some other such requests. At the moment I'm leaning slightly towards accepting the t-p-u upload, so please get it tested and uploaded before I change my mind again[*] :-) and remove the moreinfo tag afterwards. [*] As ever, nothing in this decision implies a precedent for any future requests for this or any other package. Regards, Adam -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/636059e64831929118131f7ce4a32...@mail.adsl.funky-badger.org
Bug#773195: marked as done (unblock macchanger/1.7.0-4)
Your message dated Tue, 16 Dec 2014 18:28:49 +
with message-id 20141216182849.gb11...@lupin.home.powdarrmonkey.net
and subject line Re: Bug#773195: unblock macchanger/1.7.0-4
has caused the Debian Bug report #773195,
regarding unblock macchanger/1.7.0-4
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
773195: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773195
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
---BeginMessage---
Package: release.debian.org
User: release.debian@packages.debian.org
Usertags: unblock
Severity: normal
unblock macchanger/1.7.0-4
The new behavior of this package to automatically enable itself surprised some
users, and broke one's custom wifi setup. So this update adds a debconf
question to prompt the user whether to run it automatically or not.
$ debdiff /tmp/macchanger_1.7.0-3.2.dsc macchanger_1.7.0-4.dsc
diff -Nru macchanger-1.7.0/debian/changelog macchanger-1.7.0/debian/changelog
--- macchanger-1.7.0/debian/changelog 2014-11-29 13:50:42.0 +0100
+++ macchanger-1.7.0/debian/changelog 2014-12-15 14:11:01.0 +0100
@@ -1,3 +1,9 @@
+macchanger (1.7.0-4) unstable; urgency=low
+
+ * add debconf option to prompt whether to automatically run (Closes: #768189)
+
+ -- Hans-Christoph Steiner h...@eds.org Mon, 15 Dec 2014 12:07:44 +0100
+
macchanger (1.7.0-3.2) unstable; urgency=medium
* Non-maintainer upload.
diff -Nru macchanger-1.7.0/debian/config macchanger-1.7.0/debian/config
--- macchanger-1.7.0/debian/config 1970-01-01 01:00:00.0 +0100
+++ macchanger-1.7.0/debian/config 2014-12-15 14:07:56.0 +0100
@@ -0,0 +1,23 @@
+#!/bin/sh -e
+
+# Source debconf library.
+. /usr/share/debconf/confmodule
+
+
+if [ -f /etc/default/macchanger ]; then
+ENABLE_ON_POST_UP_DOWN=false
+. /etc/default/macchanger
+
+if [ $ENABLE_ON_POST_UP_DOWN = true ]; then
+db_set macchanger/automatically_run true
+else
+db_set macchanger/automatically_run false
+fi
+fi
+
+db_input high macchanger/automatically_run || true
+db_go
+
+#DEBHELPER#
+
+exit 0
diff -Nru macchanger-1.7.0/debian/default macchanger-1.7.0/debian/default
--- macchanger-1.7.0/debian/default 1970-01-01 01:00:00.0 +0100
+++ macchanger-1.7.0/debian/default 2014-12-15 14:11:01.0 +0100
@@ -0,0 +1,11 @@
+# before bringing up any network interface, run macchanger. Careful, this is
+# not guaranteed to prevent leaking your real MAC address before the new one
+# gets assigned!
+#
+ENABLE_ON_POST_UP_DOWN=false
+
+
+# by default, macchanger runs on all network interfaces but loopback (lo). If
+# you only want it to run on specific network interfaces, set them here:
+#
+#ENABLE_INTERFACES=wlan0
diff -Nru macchanger-1.7.0/debian/if-pre-up.d/macchanger
macchanger-1.7.0/debian/if-pre-up.d/macchanger
--- macchanger-1.7.0/debian/if-pre-up.d/macchanger 2014-11-29
13:50:42.0 +0100
+++ macchanger-1.7.0/debian/if-pre-up.d/macchanger 1970-01-01
01:00:00.0 +0100
@@ -1,32 +0,0 @@
-#!/bin/sh
-#
-# randomize MAC address before connecting to wifi or ethernet
-#
-# This script should always be run in if-pre-up.d, but unfortunately
-# NetworkManager does not run if-pre-up.d scripts before it sets up a network
-# connection (https://bugzilla.gnome.org/show_bug.cgi?id=387832).
-# if-post-down.d scripts are run, so there is a symlink to this script
-# there. That means when running network config from the terminal, macchanger
-# will be run twice, but it'll only be run in if-post-down.d when using
-# NetworkManager.
-
-package=macchanger
-
-. /etc/default/${package}
-
-LOGFILE=/var/log/${package}.log
-
-if [ $ENABLE_ON_POST_DOWN != yes ]; then
-echo disabled in /etc/default/${package} $LOGFILE
-exit
-fi
-
-echo IFACE = $IFACE $LOGFILE
-
-# quit if we're called for the loopback
-if [ $IFACE = lo ]; then
-echo ignoring loopback $LOGFILE
- exit 0
-fi
-
-/usr/bin/${package} -e $IFACE $LOGFILE 21
diff -Nru macchanger-1.7.0/debian/ifupdown.sh
macchanger-1.7.0/debian/ifupdown.sh
--- macchanger-1.7.0/debian/ifupdown.sh 1970-01-01 01:00:00.0 +0100
+++ macchanger-1.7.0/debian/ifupdown.sh 2014-12-15 14:07:56.0 +0100
@@ -0,0 +1,32 @@
+#!/bin/sh
+#
+# randomize MAC address before connecting to wifi or ethernet
+#
+# This script should always be run in if-pre-up.d, but unfortunately
+# NetworkManager does not run if-pre-up.d scripts before it sets up a network
+# connection (https://bugzilla.gnome.org/show_bug.cgi?id=387832).
+# if-post-down.d scripts are run, so there is a symlink to this script
+# there.
Processed: Re: Bug#773299: unblock: python-lightblue/0.3.2-2
Processing control commands: tag -1 moreinfo Bug #773299 [release.debian.org] unblock: python-lightblue/0.3.2-2 Added tag(s) moreinfo. -- 773299: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773299 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b773299.14187548913978.transcr...@bugs.debian.org
Bug#773299: unblock: python-lightblue/0.3.2-2
Control: tag -1 moreinfo On Tue, Dec 16, 2014 at 04:25:53PM +0100, Raphaël Hertzog wrote: Version 0.3.2-2 fixes RC bug #562907 (missing dep on pybluez) that led to the removal of the package. Note that the fixed package was available before the removal but since the package is currently orphaned, nobody took care of asking an unblock request here. I'm not enthusiastic about having an orphaned package in stable, if I'm really honest. That's largely why it was removed. Unfortunately the upload contains a few more changes which are usually not allowed during freeze. Though they are relatively safe since that's the kind of changes that has been made on hundreds of other python modules... Indeed, and they are invasive enough that we would normally refuse without exceptional circumstances. I can prepare a more targeted fix for t-p-u if you really want but I believe that taking the package from unstable is better. FWIW I'm interested in bringing this package back because it's a dependency that we need for a package available in Kali Linux. Can you not provide it in Kali? I like to be kind to derivatives where we can, but an orphaned package in Debian for the convenience of a derivative feels like the wrong way for this to work. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Bug#773169: marked as done (unblock: syncevolution/1.4.99.4-3)
Your message dated Tue, 16 Dec 2014 18:41:21 + with message-id 20141216184121.gd11...@lupin.home.powdarrmonkey.net and subject line Re: Bug#773169: unblock: syncevolution/1.4.99.4-3 has caused the Debian Bug report #773169, regarding unblock: syncevolution/1.4.99.4-3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 773169: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773169 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package syncevolution It fixes #772040 and contains no other changes. I'll consider adsbs hints in https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=772040#15 in a later version. However, I want to make syncevolution work again and fix the SSLv3 only thing first. unblock syncevolution/1.4.99.4-3 -- System Information: Debian Release: 8.0 APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.12.7-05353-g11687ee (SMP w/4 CPU cores) Locale: LANG=C, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Init: systemd (via /run/systemd/system) ---End Message--- ---BeginMessage--- On Mon, Dec 15, 2014 at 10:51:14AM +0100, Tino Mettler wrote: It fixes #772040 and contains no other changes. I'll consider adsbs hints in https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=772040#15 in a later version. However, I want to make syncevolution work again and fix the SSLv3 only thing first. Do you mean later as in Stretch, or Jessie? I'd rather fix it once and be done with it really, and not process another request later... but ok, just as you like. Unblocked. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature ---End Message---
Bug#773314: nmu: gcc-mingw-w64_14.2 and gnat-mingw-w64_14
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu Hi, Matthias tells me he's planning on requesting a freeze exception for gcc-4.9 4.9.2. If you grant his request, would it be at all possible to rebuild gcc-mingw-w64? That would cause it to rebuild with the then-current version of gcc-4.9 (so it should be done when gcc-4.9 has the same version in unstable and testing...). gnat-mingw-w64 is simply a split of gcc-mingw-w64 and should be rebuilt at the same time. nmu gcc-mingw-w64_14.2 . ALL . -m Rebuild with gcc 4.9.2. nmu gnat-mingw-w64_14 . ALL . -m Rebuild with gcc 4.9.2. Regards, Stephen -- System Information: Debian Release: 8.0 APT prefers testing APT policy: (500, 'testing'), (500, 'stable'), (200, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/8 CPU cores) Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init) -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141216184439.24096.41205.report...@heffalump.sk2.org
Bug#773174: unblock: debdelta/0.55 , or discuss on the matter
Control: tag -1 moreinfo On Mon, Dec 15, 2014 at 11:16:58AM +0100, A Mennucc wrote: Please unblock package debdelta, or let us discuss if there is some set of changes that you are willing to let into Jessie. [...] 1C) ship new GPG key; the key currently available in the clients in wheezy and in testing will expire 2015-08-24 so it will need to be updated during the lifetime of Jessie. 2P) Bug fix: owned and unowned files after purge (policy 6.8 + 10.7.3), (Closes: #617481). These are all the changes in debian/postrm and debian/postinst that you see in the debdiff 3C) Portuguese translation (Closes: #760731). 4C) add a stanza in etc/sources.conf to tell the client where to find deltas for backports These four. The first is RC; the others may as well be fixed along with it. I'll accept them through testing-proposed-updates in this case. Please prepare a suitable package and send a debdiff for approval before uploading. Remove the moreinfo tag when you are ready. Thanks, -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Processed: Re: Bug#773174: unblock: debdelta/0.55 , or discuss on the matter
Processing control commands: tag -1 moreinfo Bug #773174 [release.debian.org] unblock: debdelta/0.55 , or discuss on the matter Added tag(s) moreinfo. -- 773174: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773174 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b773174.141875588811083.transcr...@bugs.debian.org
Processed: Re: Bug#773178: unblock: biomaj-watcher/1.2.2-2
Processing control commands: tag -1 moreinfo Bug #773178 [release.debian.org] unblock: biomaj-watcher/1.2.2-2 Added tag(s) moreinfo. -- 773178: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773178 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b773178.141875621213171.transcr...@bugs.debian.org
Bug#773178: unblock: biomaj-watcher/1.2.2-2
Control: tag -1 moreinfo On Mon, Dec 15, 2014 at 10:57:55AM +, olivier sallou wrote: biomaj-watcher depended on tomcat6. Jessie uses Tomcat8 a,d biomaj-watcher does not work anymore. This fix release changes the package to use tomcat8 and fixes bug 769348 Do the files for Tomcat 6 get properly cleaned up on upgrade? -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Processed: tagging 773224
Processing commands for cont...@bugs.debian.org: tags 773224 + d-i Bug #773224 [release.debian.org] (preapproval) unblock: grub2/2.02~beta2-19 Added tag(s) d-i. thanks Stopping processing here. Please contact me if you need assistance. -- 773224: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773224 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.141875648215330.transcr...@bugs.debian.org
Bug#773178: unblock: biomaj-watcher/1.2.2-2
Yep, remove/purge cleans files. New tomcat8 modifications mainly changes configuration context file and modifies directories. Le mar. 16 déc. 2014 19:56, Jonathan Wiltshire j...@debian.org a écrit : Control: tag -1 moreinfo On Mon, Dec 15, 2014 at 10:57:55AM +, olivier sallou wrote: biomaj-watcher depended on tomcat6. Jessie uses Tomcat8 a,d biomaj-watcher does not work anymore. This fix release changes the package to use tomcat8 and fixes bug 769348 Do the files for Tomcat 6 get properly cleaned up on upgrade? -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51
Bug#773240: marked as done (unblock: krb5/1.12.1+dfsg-16)
Your message dated Tue, 16 Dec 2014 21:00:43 + with message-id 20141216210043.gg11...@lupin.home.powdarrmonkey.net and subject line Re: Bug#773240: unblock: krb5/1.12.1+dfsg-16 has caused the Debian Bug report #773240, regarding unblock: krb5/1.12.1+dfsg-16 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 773240: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773240 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package krb5 I request pre-approval of krb5 to apply upstream patches for CVE-2014-5353 and CVE-2014-5354, tracked as debian bugs #773226 and #773228. The attached debdiff is between the -15 in testing and the -16 I wish to upload to sid. unblock krb5/1.12.1+dfsg-16 -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.16-3-amd64 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash diff -Nru krb5-1.12.1+dfsg/debian/changelog krb5-1.12.1+dfsg/debian/changelog --- krb5-1.12.1+dfsg/debian/changelog 2014-11-21 12:36:17.0 -0500 +++ krb5-1.12.1+dfsg/debian/changelog 2014-12-15 16:20:33.0 -0500 @@ -1,3 +1,10 @@ +krb5 (1.12.1+dfsg-16) unstable; urgency=medium + + * Import upstream patches for CVE-2014-5353 and CVE-2014-5354, +Closes: #773226, Closes: #773228 + + -- Benjamin Kaduk ka...@mit.edu Mon, 15 Dec 2014 16:18:26 -0500 + krb5 (1.12.1+dfsg-15) unstable; urgency=medium * Also apply slapd-before-kdc.conf to krb5-admin-server.service.d, diff -Nru krb5-1.12.1+dfsg/debian/.git-dpm krb5-1.12.1+dfsg/debian/.git-dpm --- krb5-1.12.1+dfsg/debian/.git-dpm 2014-11-07 13:15:18.0 -0500 +++ krb5-1.12.1+dfsg/debian/.git-dpm 2014-12-15 16:18:26.0 -0500 @@ -1,6 +1,6 @@ # see git-dpm(1) from git-dpm package -69fa1fe36396c1f370c0dd91ca6de5ebd92c8601 -69fa1fe36396c1f370c0dd91ca6de5ebd92c8601 +877ad027ca2103f3ac2f581451fdd347a76b8981 +877ad027ca2103f3ac2f581451fdd347a76b8981 00dec38e79dd6436e9efed873df00e6ea11fdd0e 00dec38e79dd6436e9efed873df00e6ea11fdd0e krb5_1.12.1+dfsg.orig.tar.gz diff -Nru krb5-1.12.1+dfsg/debian/patches/0028-Support-keyless-principals-in-LDAP-CVE-2014-5354.patch krb5-1.12.1+dfsg/debian/patches/0028-Support-keyless-principals-in-LDAP-CVE-2014-5354.patch --- krb5-1.12.1+dfsg/debian/patches/0028-Support-keyless-principals-in-LDAP-CVE-2014-5354.patch 1969-12-31 19:00:00.0 -0500 +++ krb5-1.12.1+dfsg/debian/patches/0028-Support-keyless-principals-in-LDAP-CVE-2014-5354.patch 2014-12-15 16:18:26.0 -0500 @@ -0,0 +1,123 @@ +From 877ad027ca2103f3ac2f581451fdd347a76b8981 Mon Sep 17 00:00:00 2001 +From: Ben Kaduk ka...@mit.edu +Date: Wed, 19 Nov 2014 12:04:46 -0500 +Subject: Support keyless principals in LDAP [CVE-2014-5354] + +Operations like kadmin -q 'addprinc -nokey foo' or +kadmin -q 'purgekeys -all foo' result in principal entries with +no keys present, so krb5_encode_krbsecretkey() would just return +NULL, which then got unconditionally dereferenced in +krb5_add_ber_mem_ldap_mod(). + +Apply some fixes to krb5_encode_krbsecretkey() to handle zero-key +principals better, correct the test for an allocation failure, and +slightly restructure the cleanup handler to be shorter and more +appropriate for the usage. Once it no longer short-circuits when +n_key_data is zero, it will produce an array of length two with both +entries NULL, which is treated as an empty list by the LDAP library, +the correct behavior for a keyless principal. + +However, attributes with empty values are only handled by the LDAP +library for Modify operations, not Add operations (which only get +a sequence of Attribute, with no operation field). Therefore, only +add an empty krbprincipalkey to the modlist when we will be performing a +Modify, and not when we will be performing an Add, which is conditional +on the (misspelled) create_standalone_prinicipal boolean. + +CVE-2014-5354: + +In MIT krb5, when kadmind is configured to use LDAP for the KDC +database, an authenticated remote attacker can cause a NULL +dereference by inserting into the database a principal entry which +contains no long-term keys. + +In order for the LDAP KDC backend to translate a principal entry +from the database abstraction layer into the form expected by the +LDAP schema, the principal's keys are encoded into a +NULL-terminated array of length-value entries to be stored in the +LDAP
Bug#773319: pre-approval: unblock: sudo/1.8.10p3-1.1; possibly sudo/1.8.11p2-1.1?
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Hi release team,
With the maintainer's permission [1], I'd like to ask for your opinion
on how to proceed with #731583.
simple
Based on a patch provided by upstream, I created a debdiff (attached)
for 1.8.10p3 in testing with the following changelog entry:
* Backport upstream's fix for host specifications using a FQDN.
These were no longer working since 1.8.8. Closes: #731583
Considering that the severity of #731583 is serious, I assume an upload
to t-p-u should be OK?
/simple
controversial
Furthermore, I was wondering though whether you'd consider allowing
sudo/1.8.11p2 from unstable to migrate.
The diff between testing and unstable is huge (MBs), so this would be
very difficult to review and of course totally against freeze policy.
However, I am under the impression that
(a) it would be highly preferrable to support 1.8.11p2 in Jessie,
especially from a security POV
(b) According to [2,3,4], most of the changes are bugfixes. In fact,
I only count 7 non-fix changes and non-translation changes,
and most of the fix changes appear to be highly desirable.
Furthermore, the largest part of this code base, [3], has unstable since
2014-10-10, and its migration to testing was only interrupted by the
upload of revision -2 of [3] on 2014-10-20, so apparently juuust not
enough for the full 10-day period. This upload merely added two patches.
Then again, on 2014-10-30, [4] was uploaded. This new upstream release
contained only a single (apparently urgent) bugfix. However, this upload
reset the 10-day clock again, so 1.8.11p* did not enter testing again.
So there really isn't anything that new to Debian in the version in
unstable. Looking back, the easiest solution would probably have been to
ask for an unblock of [4] (the one-change fix) just after its upload on
2014-10-30, but that's water under the bridge now.
/controversial
If allowing 1.8.11p2 to migrate is something you'd consider discussing,
please let me know how I can help in your deliberations. If this change
is simply too big, please let me know if you are OK with the t-p-u
upload of the attached debdiff for 1.8.10p3, and I will then contact the
maintainer / look for NMU sponsorship.
Regards,
Christian
[1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=731583#104
[2] http://www.sudo.ws/sudo/stable.html#1.8.11
[3] http://www.sudo.ws/sudo/stable.html#1.8.11p1
[4] http://www.sudo.ws/sudo/stable.html#1.8.11p2
diff -Nru sudo-1.8.10p3/debian/changelog sudo-1.8.10p3/debian/changelog
--- sudo-1.8.10p3/debian/changelog 2014-09-14 18:26:06.0 +0200
+++ sudo-1.8.10p3/debian/changelog 2014-12-05 15:12:47.0 +0100
@@ -1,3 +1,11 @@
+sudo (1.8.10p3-1.1) unstable; urgency=medium
+
+ * Non-maintainer upload.
+ * Backport upstream's fix for host specifications using a FQDN. These were
+no longer working since 1.8.8. Closes: #731583
+
+ -- Christian Kastner deb...@kvr.at Fri, 05 Dec 2014 15:10:30 +0100
+
sudo (1.8.10p3-1) unstable; urgency=low
* new upstream release
diff -Nru
sudo-1.8.10p3/debian/patches/Fix-for-broken-FQDN-host-specifications.diff
sudo-1.8.10p3/debian/patches/Fix-for-broken-FQDN-host-specifications.diff
--- sudo-1.8.10p3/debian/patches/Fix-for-broken-FQDN-host-specifications.diff
1970-01-01 01:00:00.0 +0100
+++ sudo-1.8.10p3/debian/patches/Fix-for-broken-FQDN-host-specifications.diff
2014-12-05 15:20:43.0 +0100
@@ -0,0 +1,92 @@
+From: Christian Kastner deb...@kvr.at
+Date: Fri, 05 Dec 2014 14:58:50 +0100
+Subject: Fix for broken FQDN host specifications
+
+A bug was introduced in sudo 1.8.8 which broke host specifications using a
+FQDN, eg Host_Alias = host.example.com. Upstream has fixed this in 1.8.12.
+
+This patch contains the fix backported to 1.8.10p3.
+
+Origin: http://www.sudo.ws/repos/sudo/rev/4f75b01d4884
+Bug: http://www.sudo.ws/bugs/show_bug.cgi?id=678
+Bug-Debian: https://bugs.debian.org/731583
+Last-Update: 2014-05-12
+
+Index: sudo-1.8.10p3/plugins/sudoers/sudoers.c
+===
+--- sudo-1.8.10p3.orig/plugins/sudoers/sudoers.c
sudo-1.8.10p3/plugins/sudoers/sudoers.c
+@@ -799,32 +799,69 @@ set_loginclass(struct passwd *pw)
+ #endif
+
+ /*
+- * Look up the fully qualified domain name and set user_host and user_shost.
++ * Look up the fully qualified domain name of user_host and user_runhost.
++ * Sets user_host, user_shost, user_runhost and user_srunhost.
+ * Use AI_FQDN if available since canonical is not always the same as fqdn.
+ */
+ static void
+ set_fqdn(void)
+ {
+ struct addrinfo *res0, hint;
++bool remote;
+ char *p;
+ debug_decl(set_fqdn, SUDO_DEBUG_PLUGIN)
+
++/* If the -h flag was given we need to resolve both host and runhost. */
++remote = strcmp(user_runhost, user_host) != 0;
++
+ memset(hint, 0, sizeof(hint));
+
Bug#773290: marked as done (unblock: squid3/3.4.8-5)
Your message dated Tue, 16 Dec 2014 21:03:07 +
with message-id 20141216210307.gh11...@lupin.home.powdarrmonkey.net
and subject line Re: Bug#773290: unblock: squid3/3.4.8-5
has caused the Debian Bug report #773290,
regarding unblock: squid3/3.4.8-5
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
773290: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773290
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
---BeginMessage---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package squid3
This versione fixes serious bug #773032, which affects upgrades from wheezy to
jessie when no change has been made to the original configuration file.
diff -Nru squid3-3.4.8/debian/changelog squid3-3.4.8/debian/changelog
--- squid3-3.4.8/debian/changelog 2014-12-05 10:46:41.0 +0100
+++ squid3-3.4.8/debian/changelog 2014-12-16 14:33:14.0 +0100
@@ -1,3 +1,11 @@
+squid3 (3.4.8-5) unstable; urgency=medium
+
+ [ Luigi Gangitano lu...@debian.org ]
+ * debian/squid3.{pre,post}inst
+- Moved ACL manager fix to postinst (Closes: #773032)
+
+ -- Luigi Gangitano lu...@debian.org Tue, 16 Dec 2014 13:43:03 +0100
+
squid3 (3.4.8-4) unstable; urgency=medium
[ Luigi Gangitano lu...@debian.org ]
diff -Nru squid3-3.4.8/debian/squid3.postinst
squid3-3.4.8/debian/squid3.postinst
--- squid3-3.4.8/debian/squid3.postinst 2014-12-05 10:46:41.0 +0100
+++ squid3-3.4.8/debian/squid3.postinst 2014-12-16 14:33:14.0 +0100
@@ -62,8 +62,28 @@
echo Creating Squid HTTP proxy 3.x spool directory
structure
squid3 -z
fi
+
+ #
+ # Remove obsolete manager ACL definition.
+ # It will halt upgrade with fatal error if left.
+ #
+ if test -f /etc/squid3/squid.conf dpkg --compare-versions
$2 lt '3.4' grep -q ^[[:blank:]]*acl manager /etc/squid3/squid.conf ;
then
+ echo Filtering squid.conf manager ACL.
+ cp /etc/squid3/squid.conf
/etc/squid3/squid.conf.pre_3.4_upgrade
+ sed -e s/^\([ \t]*acl manager.*\)/# \1 # Commented out
on upgrade to 3.4/ /etc/squid3/squid.conf.pre_3.4_upgrade
/etc/squid3/squid.conf
+ fi
+ ;;
+ abort-upgrade)
+ #
+ # Revert the automated configuration changes we may have done
+ #
+ if test -f /etc/squid3/squid.conf.pre_3.4_upgrade; then
+ echo Removing squid.conf changes.
+ mv /etc/squid3/squid.conf.pre_3.4_upgrade
/etc/squid3/squid.conf
+ fi
+ exit 0
;;
- abort-upgrade|abort-remove|abort-deconfigure)
+ abort-remove|abort-deconfigure)
;;
*)
#
diff -Nru squid3-3.4.8/debian/squid3.preinst squid3-3.4.8/debian/squid3.preinst
--- squid3-3.4.8/debian/squid3.preinst 2014-12-05 10:46:41.0 +0100
+++ squid3-3.4.8/debian/squid3.preinst 2014-12-16 14:33:14.0 +0100
@@ -4,24 +4,8 @@
case $1 in
upgrade|install-upgrade)
- #
- # Remove obsolete manager ACL definition.
- # It will halt upgrade with fatal error if left.
- #
- if test -f /etc/squid3/squid.conf dpkg --compare-versions
$2 lt '3.4.8-3' grep -q ^[[:blank:]]*acl manager /etc/squid3/squid.conf
; then
- echo Filtering squid.conf manager ACL.
- cp /etc/squid3/squid.conf
/etc/squid3/squid.conf.pre_3.4_upgrade
- sed -e s/^\([ \t]*acl manager.*\)/# \1 # Commented out
on upgrade to 3.4/ /etc/squid3/squid.conf.pre_3.4_upgrade
/etc/squid3/squid.conf
- fi
;;
abort-upgrade)
- #
- # Revert the automated configuration changes we may have done
- #
- if test -f /etc/squid3/squid.conf.pre_3.4_upgrade; then
- echo Removing squid.conf changes.
- mv /etc/squid3/squid.conf.pre_3.4_upgrade
/etc/squid3/squid.conf
- fi
exit 0
;;
esac
unblock squid3/3.4.8-5
-- System Information:
Debian Release: 8.0
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Foreign Architectures: amd64
Kernel: Linux 3.16.0-4-686-pae (SMP w/2 CPU cores)
Locale: LANG=it_IT.UTF-8, LC_CTYPE=it_IT.UTF-8
Bug#771929: marked as done (unblock: openstack-pkg-tools/20)
Your message dated Tue, 16 Dec 2014 21:13:14 +
with message-id 20141216211314.gi11...@lupin.home.powdarrmonkey.net
and subject line Re: Bug#771929: (pre-approved) unblock: openstack-pkg-tools/20
has caused the Debian Bug report #771929,
regarding unblock: openstack-pkg-tools/20
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
771929: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=771929
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
---BeginMessage---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Dear release team,
Reproducing a message as a bug, as this is the prefered form.
I just wanted to let you know that it's been since the freeze that some
contributors and myself are aware of the very poor systemd support in
OpenStack which can lead to the service not being brought up at boot time.
Since we are slowly approaching the deep freeze deadline of the 5th of
December, I thought it was a good idea to let the release team know.
We're currently working on the issue, but this will mean:
- Update openstack-pkg-tools
- Rebuild all OpenStack packages for which daemon startups are handled
by openstack-pkg-tools
I believe that Mikaël Cluseau (hereby CC) has found a satisfying
solution, though it will need to be tested. His patch can be seen here:
http://lists.alioth.debian.org/pipermail/openstack-devel/2014-December/007950.html
(since I know some of you guys don't like web links and prefer to just read in
the body of the message, I've reproduced the patch at the end of this message)
Since systemd is the default in Jessie, I hope the release team will let
us fix things before the release. Please let me know if I have to worry
that the necessary patches wont be accepted...
Cheers,
Thomas Goirand (zigo)
P.S: Note that I am not a systemd user myself, though I do consider
systemd support every important since it's what we've choose as default.
commit 8b3217905de88f2037f0bbc6eac46dca776c8f48
Author: Mikaël Cluseau mcluseau at isi.nc
Date: Sun Nov 30 18:45:25 2014 +1100
Fix for bug #770706
---
init-template/init-script-template | 23 +--
init-template/pkgos-gen-systemd-unit | 10 +-
2 files changed, 18 insertions(+), 15 deletions(-)
diff --git a/init-template/init-script-template
b/init-template/init-script-template
index 0326b5d..fd20957 100644
--- a/init-template/init-script-template
+++ b/init-template/init-script-template
@@ -36,11 +36,13 @@ fi
# Exit if the package is not installed
[ -x $DAEMON ] || exit 0
-# Create /var/lock/X, /var/run/X, /var/lib/X and /var/log/X
-for i in lock run log lib ; do
-mkdir -p /var/$i/${PROJECT_NAME}
-chown ${SYSTEM_USER} /var/$i/${PROJECT_NAME}
-done
+# If ran as root, create /var/lock/X, /var/run/X, /var/lib/X and
/var/log/X as needed
+if [ x$USER = xroot ] ; then
+for i in lock run log lib ; do
+mkdir -p /var/$i/${PROJECT_NAME}
+chown ${SYSTEM_USER} /var/$i/${PROJECT_NAME}
+done
+fi
# This defines init_is_upstart which we use later on (+ more...)
. /lib/lsb/init-functions
@@ -65,6 +67,10 @@ do_stop() {
return $RETVAL
}
+do_systemd_start() {
+exec $DAEMON $DAEMON_ARGS
+}
+
case $1 in
start)
init_is_upstart /dev/null 21 exit 1
@@ -88,11 +94,8 @@ status)
status_of_proc $DAEMON $NAME exit 0 || exit $?
;;
systemd-start)
-do_start
+do_systemd_start
;;
-systemd-stop)
-do_stop
-;;
restart|force-reload)
init_is_upstart /dev/null 21 exit 1
log_daemon_msg Restarting $DESC $NAME
@@ -110,7 +113,7 @@ restart|force-reload)
esac
;;
*)
-echo Usage: $SCRIPTNAME
{start|stop|status|restart|force-reload|systemd-start|systemd-stop} 2
+echo Usage: $SCRIPTNAME
{start|stop|status|restart|force-reload|systemd-start} 2
exit 3
;;
esac
diff --git a/init-template/pkgos-gen-systemd-unit
b/init-template/pkgos-gen-systemd-unit
index b97e2a9..4c41ef0 100755
--- a/init-template/pkgos-gen-systemd-unit
+++ b/init-template/pkgos-gen-systemd-unit
@@ -12,7 +12,7 @@ fi
if [ -z ${SYSTEM_USER} ] ; then
SYSTEM_USER=${PROJECT_NAME}
fi
-if [ -z ${SYSTEM_USER} ] ; then
+if [ -z ${SYSTEM_GROUP} ] ; then
SYSTEM_GROUP=${PROJECT_NAME}
fi
@@ -33,12 +33,12 @@ $AFTER
[Service]
User=${SYSTEM_USER}
Group=${SYSTEM_GROUP}
+WorkingDirectory=/var/lib/${PROJECT_NAME}
+PermissionsStartOnly=true
+ExecStartPre=/bin/mkdir -p /var/lock/${PROJECT_NAME}
/var/log/${PROJECT_NAME} /var/lib/${PROJECT_NAME}
+ExecStartPre=/bin/chown ${SYSTEM_USER}:${SYSTEM_GROUP}
Bug#769853: marked as done (unblock: python-persistent/4.0.8-2)
Your message dated Tue, 16 Dec 2014 21:16:14 +
with message-id 20141216211614.gj11...@lupin.home.powdarrmonkey.net
and subject line Re: Bug#769853: unblock: python-persistent/4.0.8-2
has caused the Debian Bug report #769853,
regarding unblock: python-persistent/4.0.8-2
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
769853: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769853
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
---BeginMessage---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package python-persistent
This fixes an error when trying to install it together with python-zodb,
here is the changelog entry with further explanations:
diff -Nru python-persistent-4.0.8/debian/changelog
python-persistent-4.0.8/debian/changelog
--- python-persistent-4.0.8/debian/changelog 2014-06-26 04:29:59.0
+0900
+++ python-persistent-4.0.8/debian/changelog 2014-11-14 18:30:25.0
+0900
@@ -1,3 +1,13 @@
+python-persistent (4.0.8-2) unstable; urgency=medium
+
+ * Team upload.
+ * d/control: ZODB3 = 3.11a1 (python-zodb in Debian) has been split up
+into distinct packages (persistent, BTrees, ZODB and ZEO), so until
+python-zodb is updated to at least that version (eg after Jessie), add
+a Conflicts. Thanks to Andreas Beckmann. Closes: #767554.
+
+ -- Arnaud Fontaine ar...@debian.org Fri, 14 Nov 2014 18:22:35 +0900
+
python-persistent (4.0.8-1) unstable; urgency=medium
* Initial release. (Closes: #752679)
diff -Nru python-persistent-4.0.8/debian/control
python-persistent-4.0.8/debian/control
--- python-persistent-4.0.8/debian/control2014-06-26 00:34:29.0
+0900
+++ python-persistent-4.0.8/debian/control2014-11-14 18:31:01.0
+0900
@@ -22,6 +22,7 @@
Package: python-persistent
Architecture: any
Depends: ${misc:Depends}, ${python:Depends}, ${shlibs:Depends}
+Conflicts: python-zodb ( 3.11.0~)
Description: Automatic persistence for Python objects
This package contains a generic persistence implementation for Python. It
forms the core protocol for making objects interact transparently with
Thanks in advance!
unblock python-persistent/4.0.8-2
Regards,
--
Arnaud Fontaine
signature.asc
Description: PGP signature
---End Message---
---BeginMessage---
On Mon, Nov 17, 2014 at 01:58:30PM +0900, Arnaud Fontaine wrote:
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package python-persistent
This fixes an error when trying to install it together with python-zodb,
here is the changelog entry with further explanations:
Unblocked the final result.
--
Jonathan Wiltshire j...@debian.org
Debian Developer http://people.debian.org/~jmw
4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51
signature.asc
Description: Digital signature
---End Message---
Bug#769854: marked as done (unblock: zodb/1:3.9.7-3)
Your message dated Tue, 16 Dec 2014 21:16:35 +
with message-id 20141216211635.gk11...@lupin.home.powdarrmonkey.net
and subject line Re: Bug#769854: unblock: zodb/1:3.9.7-3
has caused the Debian Bug report #769854,
regarding unblock: zodb/1:3.9.7-3
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
769854: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769854
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
---BeginMessage---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package zodb
This fixes an error when trying to install it together with
python-persistent and also add a Provides, here is the changelog entry
with further explanations:
diff -Nru zodb-3.9.7/debian/changelog zodb-3.9.7/debian/changelog
--- zodb-3.9.7/debian/changelog 2011-11-08 22:53:42.0 +0900
+++ zodb-3.9.7/debian/changelog 2014-11-17 12:10:50.0 +0900
@@ -1,3 +1,14 @@
+zodb (1:3.9.7-3) unstable; urgency=medium
+
+ * Team upload.
+ * d/control: ZODB3 = 3.11a1 (python-zodb in Debian) has been split up
+into distinct packages (persistent, BTrees, ZODB and ZEO), so until
+python-zodb is updated to at least that version (eg after Jessie), add
+a Conflicts and Provides of python-persistent. Thanks to Andreas
+Beckmann. Closes: #767554.
+
+ -- Arnaud Fontaine ar...@debian.org Fri, 14 Nov 2014 18:34:36 +0900
+
zodb (1:3.9.7-2) unstable; urgency=low
* Team upload.
diff -Nru zodb-3.9.7/debian/control zodb-3.9.7/debian/control
--- zodb-3.9.7/debian/control 2011-10-21 14:24:36.0 +0900
+++ zodb-3.9.7/debian/control 2014-11-17 12:09:52.0 +0900
@@ -20,9 +20,12 @@
${python:Depends},
${misc:Depends},
${shlibs:Depends}
-Provides: ${pydeb:Provides}, ${python:Provides}
+Provides: ${pydeb:Provides},
+ ${python:Provides},
+ python-persistent
Suggests: ${pydeb:Suggests}
-Conflicts: zope3
+Conflicts: zope3,
+ python-persistent
Description: Zope Object Database (ZODB)
The Zope Object Database is an object-oriented database for Python that
provides a high-degree of transparency. Applications can take advantage of
Thanks in advance!
unblock zodb/1:3.9.7-3
Regards,
--
Arnaud Fontaine
signature.asc
Description: PGP signature
---End Message---
---BeginMessage---
On Mon, Nov 17, 2014 at 07:43:34AM +0100, Niels Thykier wrote:
Control: tags -1 moreinfo
On 2014-11-17 06:00, Arnaud Fontaine wrote:
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package zodb
This fixes an error when trying to install it together with
python-persistent and also add a Provides, here is the changelog entry
with further explanations:
Unblocked the final result.
--
Jonathan Wiltshire j...@debian.org
Debian Developer http://people.debian.org/~jmw
4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51
signature.asc
Description: Digital signature
---End Message---
Bug#769784: marked as done (unblock: carmetal/3.5.2+dfsg-1.1)
Your message dated Tue, 16 Dec 2014 21:20:40 + with message-id 20141216212040.gl11...@lupin.home.powdarrmonkey.net and subject line Re: Bug#769784: unblock: carmetal/3.5.2+dfsg-1.1 has caused the Debian Bug report #769784, regarding unblock: carmetal/3.5.2+dfsg-1.1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769784: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769784 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package carmetal The RC bugs targetting this package have been fixed ---source debdiff8--- diff -Nru carmetal-3.5.2+dfsg/debian/changelog carmetal-3.5.2+dfsg/debian/changelog --- carmetal-3.5.2+dfsg/debian/changelog2011-03-10 15:09:26.0 +0100 +++ carmetal-3.5.2+dfsg/debian/changelog2014-11-10 18:38:08.0 +0100 @@ -1,3 +1,17 @@ +carmetal (3.5.2+dfsg-1.1) unstable; urgency=medium + + * Non-maintainer upload. + * upgraded Standards-Version to 3.9.6 + * removed the --with quilt clauses from debian/rules + * removed --with clauses after commands like dh_auto_clean which ignore +this switch; added jh_* scripts in place. + * removed 'jh_depends --jvm=open sun6' from debian/rules. +Closes: #753787 + * checked that the package can be built and is working inside debian/sid. +Closes: #552990; Closes: #577119 + + -- Georges Khaznadar georg...@debian.org Mon, 10 Nov 2014 17:58:38 +0100 + carmetal (3.5.2+dfsg-1) unstable; urgency=low * New upstream release diff -Nru carmetal-3.5.2+dfsg/debian/control carmetal-3.5.2+dfsg/debian/control --- carmetal-3.5.2+dfsg/debian/control 2011-03-10 15:36:28.0 +0100 +++ carmetal-3.5.2+dfsg/debian/control 2014-11-10 17:58:16.0 +0100 @@ -2,9 +2,10 @@ Section: math Priority: extra Maintainer: Yves Combe y...@ycombe.net -Build-Depends: debhelper (= 7.0.50~), javahelper (= 0.32), quilt (= 0.46-7~), ant, ant-optional, docbook-to-man, rhino +Build-Depends: debhelper (= 7.0.50~), javahelper (= 0.32), + quilt (= 0.46-7~), ant, ant-optional, docbook-to-man, rhino Build-Depends-Indep: default-jdk -Standards-Version: 3.9.1 +Standards-Version: 3.9.6 Package: carmetal Architecture: all diff -Nru carmetal-3.5.2+dfsg/debian/rules carmetal-3.5.2+dfsg/debian/rules --- carmetal-3.5.2+dfsg/debian/rules2011-03-10 15:06:53.0 +0100 +++ carmetal-3.5.2+dfsg/debian/rules2014-11-10 18:07:09.0 +0100 @@ -6,17 +6,19 @@ export CLASSPATH=js.jar %: - dh --with javahelper,quilt $@ + dh --with javahelper $@ override_dh_auto_build: - dh_auto_build --with javahelper,quilt + dh_auto_build + jh_clean docbook-to-man debian/carmetal.sgml debian/carmetal.1 override_dh_auto_clean: - dh_auto_clean --with javahelper,quilt + dh_auto_clean + jh_clean rm -f debian/carmetal.1 override_jh_manifest: -override_jh_depends: - jh_depends --jvm=open sun6 +#override_jh_depends: +# jh_depends --jvm=open sun6 ---8--- Please, unblock carmetal/3.5.2+dfsg-1.1 -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (990, 'testing'), (650, 'stable'), (600, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.14-2-amd64 (SMP w/2 CPU cores) ---End Message--- ---BeginMessage--- On Sat, Dec 13, 2014 at 04:21:41PM +0100, Georges Khaznadar wrote: Dear Adam, I already replied this e-mail the 16th November, however I replied only to Jonathan Wiltshire j...@debian.org, not adding 769...@bugs.debian.org to the recipient list. Ah, that's fallen through the floorboards then. Sorry I didn't spot it. Please find attached the previous e-mail. I repeat here my argument: I am using carmetal in my high school, like some of my colleagues too. As Yves Combe did not reply, how can I take politely the reponsibility of that package? If you're prepared to take responsibility for it in Jessie, I'll unblock it (doing so now). The polite way to take over the package in general is to do useful work through NMUs, and at some point add yourself to Uploaders. The current maintainer may become more responsive in future, he could just be having a busy time. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394
Bug#773063: pre-approval unblock: quotatool/1.4.12-1.1
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Hi Jan, Jonathan, On 14-12-2014 12:54 , Jan Wagner wrote: Hi Bas, Am 14.12.2014 um 00:24 schrieb Jonathan Wiltshire: On Sat, Dec 13, 2014 at 10:26:59PM +0100, Jan Wagner wrote: Could you please state if you would approve to update the quotatool package via testing-proposed-updates, as there is a blocking release in unstable. This NMU is fixing #711502 and provides a working quota stack for jessie again as the package is actually not in testing. Normally this wouldn't even be up for discussion for a package that was removed in July and only fixed in November. But I think people might be surprised that we shipped without a working quotatool. However I'm not prepared to accept it through t-p-u. The version in unstable should be reverted with an epoch, and get the full 10 days ageing period. Jonathan, thanks for allowing this. I'm aware that I've left quotatool to rot for way too long :( it would be nice if you could handle that. (The confusion behind 1.6.2-1.1, a non-maintainer upload signed by the maintainer, defeats me completely...) I think it would be more reasonable for RM when the actual maintainer can deal with this? Sure, I will take this up. Hopefully, I'll be able to upload a reverted, epoched version by tomorrow. Thanks Jan, for contacting the release tema on my behalf! Bas. - -- Bas Zoetekouw And what shoulder and what art Could twist the sinews of thy heart? And when thy heart began to beat What dread hand and what dread feet? -BEGIN PGP SIGNATURE- Version: GnuPG/MacGPG2 v2.0.22 (Darwin) iQIcBAEBCAAGBQJUkKI3AAoJENGDpRe/qY3mI6kP/0AV7jiZPobQy92y/gMUlNvd Vu4eIKlhyVLJN6y+1CJJ4xpNWeBmkRB8xj3OvgaBxTeFVAJfqia/fter4P/PjCJD KkriNmry4v1jGE4KT1WJBsmwpUxEZNWTvejOjGE26377N/FsKsHROfrySHC/mSeJ CIlOYuZuij8u9WCscpvTE7eSTDS8cGRPyeMUUh+GG/lthF6/ZB7sp5l/p88CZfb6 v0IPN29PXPYfyYrbrb1vguU2ZjF9qAq9ZZO+igFAM+1cU6Z+BHgG1jpUSerDy+Ym pyffCOk8Y4i2DpStvm3zTZR4HL0D2vC1icmsTKMIRjF3DAAc9HP1aWuidoJyn3F/ Qfz5tDWALFmElWAjbQCGZvUTHxa1wFcG5CiwGU9eOfpu2rwonGZDkMZa297wkcTm BDzJ2DeawEgpbMrjme7zYJAnQtY8zgcIApV+6CN87HNXuqEzr9lyL+UnCZawjwSH cL02WyyKkKtLIM1S9jfNjRF/0H2TBTLsDzS9NqFgDr75HSpxXgyLAAvedOtAAagI QW/uLX+EKLBpy6Orn2wWUCGukx5WG+HqTMfAOMYg7YRGdPxRe4xbG/L0W/DwlKFS uLgQY3bYBxP5VNJZo+o5Whcehgf/2/8APfRWJy1nRQ6TIdx77krxvQ6nIVWP+uFj qXS56wfKsWKPNutTo5Ea =8kHu -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/5490a238.4010...@debian.org
Bug#773040: unblock: anarchism/14.0-3 (pre-approval)
Control: tag -1 confirmed moreinfo On Sat, Dec 13, 2014 at 03:36:29PM +0100, Holger Levsen wrote: this is a pre-approval unblock request for anarchism, mostly to have a non- bouncing maintainer address in jessie. I've also done six tiny other useful changes but didn't bump debian/compat ;-) Hmm not what we'd normally go for, but ok, I'll trade you an unblock for adopting it and restraining any bumpy urges. Please remove the moreinfo tag when it's ready to unblock. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Processed: Re: Bug#773040: unblock: anarchism/14.0-3 (pre-approval)
Processing control commands: tag -1 confirmed moreinfo Bug #773040 [release.debian.org] unblock: anarchism/14.0-3 (pre-approval) Added tag(s) confirmed and moreinfo. -- 773040: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773040 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b773040.141876596210424.transcr...@bugs.debian.org
Bug#773063: pre-approval unblock: quotatool/1.4.12-1.1
On Tue, Dec 16, 2014 at 10:20:56PM +0100, Bas Zoetekouw wrote: it would be nice if you could handle that. (The confusion behind 1.6.2-1.1, a non-maintainer upload signed by the maintainer, defeats me completely...) I think it would be more reasonable for RM when the actual maintainer can deal with this? Sure, I will take this up. Hopefully, I'll be able to upload a reverted, epoched version by tomorrow. Please remove the moreinfo tag and send a debdiff of this upload relative to the previous Jessie candidate (i.e. skip out the new upstream release in between) when it's ready. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
NEW changes in stable-new
Processing changes file: bsd-mailx_8.1.2-0.2006cvs-1+deb7u1_amd64.changes ACCEPT Processing changes file: bsd-mailx_8.1.2-0.2006cvs-1+deb7u1_armel.changes ACCEPT Processing changes file: bsd-mailx_8.1.2-0.2006cvs-1+deb7u1_armhf.changes ACCEPT Processing changes file: bsd-mailx_8.1.2-0.2006cvs-1+deb7u1_i386.changes ACCEPT Processing changes file: bsd-mailx_8.1.2-0.2006cvs-1+deb7u1_ia64.changes ACCEPT Processing changes file: bsd-mailx_8.1.2-0.2006cvs-1+deb7u1_kfreebsd-amd64.changes ACCEPT Processing changes file: bsd-mailx_8.1.2-0.2006cvs-1+deb7u1_kfreebsd-i386.changes ACCEPT Processing changes file: bsd-mailx_8.1.2-0.2006cvs-1+deb7u1_mips.changes ACCEPT Processing changes file: bsd-mailx_8.1.2-0.2006cvs-1+deb7u1_mipsel.changes ACCEPT Processing changes file: bsd-mailx_8.1.2-0.2006cvs-1+deb7u1_powerpc.changes ACCEPT Processing changes file: bsd-mailx_8.1.2-0.2006cvs-1+deb7u1_s390.changes ACCEPT Processing changes file: bsd-mailx_8.1.2-0.2006cvs-1+deb7u1_s390x.changes ACCEPT Processing changes file: bsd-mailx_8.1.2-0.2006cvs-1+deb7u1_sparc.changes ACCEPT Processing changes file: heirloom-mailx_12.5-2+deb7u1_amd64.changes ACCEPT Processing changes file: heirloom-mailx_12.5-2+deb7u1_armel.changes ACCEPT Processing changes file: heirloom-mailx_12.5-2+deb7u1_armhf.changes ACCEPT Processing changes file: heirloom-mailx_12.5-2+deb7u1_i386.changes ACCEPT Processing changes file: heirloom-mailx_12.5-2+deb7u1_ia64.changes ACCEPT Processing changes file: heirloom-mailx_12.5-2+deb7u1_kfreebsd-amd64.changes ACCEPT Processing changes file: heirloom-mailx_12.5-2+deb7u1_kfreebsd-i386.changes ACCEPT Processing changes file: heirloom-mailx_12.5-2+deb7u1_mips.changes ACCEPT Processing changes file: heirloom-mailx_12.5-2+deb7u1_mipsel.changes ACCEPT Processing changes file: heirloom-mailx_12.5-2+deb7u1_powerpc.changes ACCEPT Processing changes file: heirloom-mailx_12.5-2+deb7u1_s390.changes ACCEPT Processing changes file: heirloom-mailx_12.5-2+deb7u1_s390x.changes ACCEPT Processing changes file: heirloom-mailx_12.5-2+deb7u1_sparc.changes ACCEPT -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1y0zxc-0002jb...@franck.debian.org
Bug#772798: marked as done (nmu: smartmontools_6.3+svn4002-2)
Your message dated Tue, 16 Dec 2014 23:02:16 +0100 with message-id 20141216220216.gi1...@betterave.cristau.org and subject line Re: Bug#772798: binNMU with outdated binutils has caused the Debian Bug report #772798, regarding nmu: smartmontools_6.3+svn4002-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 772798: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=772798 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu nmu smartmontools_6.3+svn4002-2 . ALL . -m Rebuild against new binutils see #728113 As Kurt Roeckx suggested we need to rebuild smartmontools, see #728113 Cheers, Giuseppe ---End Message--- ---BeginMessage--- On Tue, Dec 16, 2014 at 13:43:27 +0100, Matthias Klose wrote: Control: reopen -1 according to the amd64 build log, the binNMU was done using 2.24.90.20141128-1 please do another binNMU using the requested version. Please file a separate bug and avoid breaking threads when following up. Thanks, Julien signature.asc Description: Digital signature ---End Message---
Bug#773324: unblock: rsbackup/1.1-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package rsbackup Recently (yesterday!), there was an Important bug filed against rsbackup, that it left stuff behind on --purge. Having a piuparts-clean archive has been a release goal since lenny. See bug #773181. The only change in this upload is to include the attached postrm (which cleans up the droppings piuparts identifies). I know that most Important bug-fixes won't be accepted at this point, but I'm hoping that given this is a newly-found bug, fixed very quickly, and with a very simple minimal diff, you'll consider making an exception :-) unblock rsbackup/1.1-3 Thanks! Matthew -- System Information: Debian Release: 7.7 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 3.2.0-4-686-pae (SMP w/1 CPU core) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash #! /bin/sh # Copyright © 2014 Richard Kettlewell. # # This program is free software: you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation, either version 3 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see http://www.gnu.org/licenses/. set -e case $1 in purge ) rm -f /etc/rsbackup/local rmdir --ignore-fail-on-non-empty /etc/rsbackup ;; esac
Bug#773240: unblock: krb5/1.12.1+dfsg-16
control: tags -1 -moreinfo On Tue, 16 Dec 2014, Jonathan Wiltshire wrote: Control: tag -1 confirmed moreinfo On Mon, Dec 15, 2014 at 04:36:28PM -0500, Benjamin Kaduk wrote: I request pre-approval of krb5 to apply upstream patches for CVE-2014-5353 and CVE-2014-5354, tracked as debian bugs #773226 and #773228. The attached debdiff is between the -15 in testing and the -16 I wish to upload to sid. Please go ahead and remove the moreinfo tag when it is in sid. Installed or uploaded for everything but sparc, which seems good enough. (You don't need pre-approval for genuine bug fixes, by the way.) #debian-release was not as confident, so I played it safe :) -Ben -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/alpine.gso.1.10.1412161722180.23...@multics.mit.edu
Processed: Re: Bug#773240: unblock: krb5/1.12.1+dfsg-16
Processing control commands:
tags -1 -moreinfo
Bug #773240 {Done: Jonathan Wiltshire j...@debian.org} [release.debian.org]
unblock: krb5/1.12.1+dfsg-16
Ignoring request to alter tags of bug #773240 to the same tags previously set
--
773240: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773240
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive:
https://lists.debian.org/handler.s.b773240.141876866627438.transcr...@bugs.debian.org
Processed: remove moreinfo tag
Processing commands for cont...@bugs.debian.org:
tags 773240 - moreinfo
Bug #773240 {Done: Jonathan Wiltshire j...@debian.org} [release.debian.org]
unblock: krb5/1.12.1+dfsg-16
Ignoring request to alter tags of bug #773240 to the same tags previously set
thanks
Stopping processing here.
Please contact me if you need assistance.
--
773240: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773240
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive:
https://lists.debian.org/handler.s.c.141876914130124.transcr...@bugs.debian.org
Processed: Re: Bug#773212: unblock: 0xffff/0.6.1-1
Processing control commands: tag -1 moreinfo Bug #773212 [release.debian.org] unblock: 0x/0.6.1-1 Added tag(s) moreinfo. -- 773212: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773212 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b773212.14187711508896.transcr...@bugs.debian.org
Bug#773212: unblock: 0xffff/0.6.1-1
Control: tag -1 moreinfo On Mon, Dec 15, 2014 at 05:29:49PM +0100, Sebastian Reichel wrote: Note: I have not yet uploaded 0.6.1-1 to sid, but its available from experimental. I sent a mail to debian-release, but have been request to file an unblock bug instead. So I've uploaded 0x 0.6.1-1 to experimental, which is a minor upstream release with 90% bug fixes (some of them security relevant). Since the diff is quite big I wanted to make sure, that the release team is ok with the changes before uploading them to sid (and let them transition to testing). We're really looking at targetted fixes for RC bugs at this stage. Is there anything in the release that is worth cherry-picking with that in mind? -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Bug#773081: marked as done (unblock: simgrid/3.11.1-9)
Your message dated Tue, 16 Dec 2014 23:03:07 +
with message-id 20141216230307.gq11...@lupin.home.powdarrmonkey.net
and subject line Re: Bug#773081: unblock: simgrid/3.11.1-9
has caused the Debian Bug report #773081,
regarding unblock: simgrid/3.11.1-9
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
773081: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773081
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
---BeginMessage---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package simgrid
The new version fixes the RC bug #755047 -- really this time, sorry.
The debdiff is attached.
Also, it'd be cool if you could cancel the autorm against that package.
Thanks for your hard work,
Mt
unblock simgrid/3.11.1-9
-- System Information:
Debian Release: jessie/sid
APT prefers testing-updates
APT policy: (500, 'testing-updates'), (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.16-2-amd64 (SMP w/4 CPU cores)
--
Arguing with an engineer is a lot like wrestling in the mud with a pig.
After a couple of hours, you realize the pig likes it.
diff -Nru simgrid-3.11.1/debian/changelog simgrid-3.11.1/debian/changelog
--- simgrid-3.11.1/debian/changelog 2014-07-05 00:20:44.0 +0200
+++ simgrid-3.11.1/debian/changelog 2014-12-13 22:16:07.0 +0100
@@ -1,3 +1,25 @@
+simgrid (3.11.1-9) unstable; urgency=medium
+
+ * add some dependencies to really fix #755047:
+- libsimgrid-dev breaks libsimgrid3.10 and libsimgrid3.11 (3.11.1-8)
+- libsimgrid3.11 breaks+replaces libsimgrid3.10
+- This should hint apt about how to solve my mess :-(
+
+ -- Martin Quinson mquin...@debian.org Sat, 13 Dec 2014 22:15:36 +0100
+
+simgrid (3.11.1-8) unstable; urgency=medium
+
+ * d/c: update VCS to not use any deprecated URLs
+ * d/c: improve short descriptions
+ * d/c: libsimgrid-java suggests java-virtual-machine, captain obvious.
+ * Install tesh and graphicator tools as part of the libsimgrid-dev,
+not as part of libsimgrid3.11 to allow the co-installation of
+several library versions (Closes: #755047).
+ * d/p/fix-bashism.diff: fix a bashism that mainly appears on Mac OSX
+(Closes: #772329).
+
+ -- Martin Quinson mquin...@debian.org Tue, 09 Dec 2014 01:47:57 +0100
+
simgrid (3.11.1-7) unstable; urgency=medium
* Disable LTO on all non-AMD architectures to circumvent a seemingly
diff -Nru simgrid-3.11.1/debian/control simgrid-3.11.1/debian/control
--- simgrid-3.11.1/debian/control 2014-07-05 00:20:44.0 +0200
+++ simgrid-3.11.1/debian/control 2014-12-13 22:16:07.0 +0100
@@ -11,12 +11,14 @@
transfig, ghostscript, texlive-font-utils
Standards-Version: 3.9.5
Homepage: http://simgrid.gforge.inria.fr/
-Vcs-Git: git://git.debian.org/git/collab-maint/simgrid.git
-Vcs-Browser: http://git.debian.org/?p=collab-maint/simgrid.git
+Vcs-Git: git://anonscm.debian.org/collab-maint/simgrid.git
+Vcs-Browser: http://anonscm.debian.org/gitweb/?p=collab-maint/simgrid.git
Package: libsimgrid3.11
Architecture: any
Depends: ${shlibs:Depends}, ${misc:Depends}
+Breaks: libsimgrid3.10
+Replaces: libsimgrid3.10
Recommends: lua5.1
Conflicts: simgrid ( 3.11)
Description: Toolkit for scalable simulation of distributed applications
@@ -34,7 +36,7 @@
Section: doc
Depends: ${misc:Depends}
Conflicts: simgrid ( 3.11)
-Description: Toolkit for scalable simulation of distributed applications
+Description: Documentation for the SimGrid Toolkit
SimGrid is a toolkit that provides core functionalities for the simulation of
distributed applications in heterogeneous distributed environments. SimGrid
can be used as a Grid simulator, a P2P simulator, a Cloud simulator, a MPI
@@ -50,7 +52,8 @@
Depends: ${shlibs:Depends}, ${misc:Depends}, libsimgrid3.11 (=
${source:Version})
Recommends: simgrid-doc (= ${source:Version})
Conflicts: simgrid ( 3.11)
-Description: Toolkit for scalable simulation of distributed applications
+Suggests: java-virtual-machine
+Description: Java bindings for the SimGrid Toolkit
SimGrid is a toolkit that provides core functionalities for the simulation of
distributed applications in heterogeneous distributed environments. SimGrid
can be used as a Grid simulator, a P2P simulator, a Cloud simulator, a MPI
@@ -71,10 +74,11 @@
libsimgrid3.11 (= ${binary:Version}),
libf2c2-dev,
Recommends: f2c, gcc, make, simgrid-doc (= ${source:Version})
+Breaks: libsimgrid3.10, libsimgrid3.11 (3.11.1-8)
Conflicts: simgrid
Replaces: simgrid
Bug#773178: marked as done (unblock: biomaj-watcher/1.2.2-2)
Your message dated Tue, 16 Dec 2014 23:10:11 +
with message-id 20141216231011.gs11...@lupin.home.powdarrmonkey.net
and subject line Re: Bug#773178: unblock: biomaj-watcher/1.2.2-2
has caused the Debian Bug report #773178,
regarding unblock: biomaj-watcher/1.2.2-2
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
773178: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773178
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
---BeginMessage---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
X-CC: debian-...@lists.debian.org
Please unblock package biomaj-watcher
biomaj-watcher depended on tomcat6. Jessie uses Tomcat8 a,d biomaj-watcher
does not work anymore. This fix release changes the package to use tomcat8
and fixes bug 769348
Here is debdiff:
diff -Nru biomaj-watcher-1.2.2/debian/changelog
biomaj-watcher-1.2.2/debian/changelog
--- biomaj-watcher-1.2.2/debian/changelog 2014-06-23 09:13:13.0
+0200
+++ biomaj-watcher-1.2.2/debian/changelog 2014-12-15 11:26:27.0
+0100
@@ -1,3 +1,9 @@
+biomaj-watcher (1.2.2-2) unstable; urgency=medium
+
+ * Switch to Tomcat 8 (Closes: #769348).
+
+ -- Olivier Sallou osal...@debian.org Mon, 15 Dec 2014 08:03:09 +0100
+
biomaj-watcher (1.2.2-1) unstable; urgency=medium
* New usptream release:
diff -Nru biomaj-watcher-1.2.2/debian/control
biomaj-watcher-1.2.2/debian/control
--- biomaj-watcher-1.2.2/debian/control 2014-06-23 09:13:56.0 +0200
+++ biomaj-watcher-1.2.2/debian/control 2014-12-15 08:04:53.0 +0100
@@ -21,7 +21,7 @@
Package: biomaj-watcher
Architecture: all
-Depends: ${misc:Depends}, default-jdk, tomcat6 (=6.0.32-3), biomaj (=
1.2.1), debconf,
+Depends: ${misc:Depends}, default-jdk, tomcat8 , biomaj (= 1.2.1),
debconf,
liblog4j1.2-java, libjsch-java (= 0.1.42),libjdom1-java (= 1.1),
libcommons-lang-java (=2.4),
libcommons-logging-java (=1.1),libquartz-java(=1.6),libxerces2-java,
unzip, zip, libgnumail-java
Description: biological data-bank updater - web interface
diff -Nru biomaj-watcher-1.2.2/debian/patches/series
biomaj-watcher-1.2.2/debian/patches/series
--- biomaj-watcher-1.2.2/debian/patches/series 2014-01-09
16:25:31.0 +0100
+++ biomaj-watcher-1.2.2/debian/patches/series 2014-12-15
10:37:02.0 +0100
@@ -1 +1,2 @@
prevent_jobs_file_move
+use_tomcat8
diff -Nru biomaj-watcher-1.2.2/debian/patches/use_tomcat8
biomaj-watcher-1.2.2/debian/patches/use_tomcat8
--- biomaj-watcher-1.2.2/debian/patches/use_tomcat8 1970-01-01
01:00:00.0 +0100
+++ biomaj-watcher-1.2.2/debian/patches/use_tomcat8 2014-12-15
10:40:03.0 +0100
@@ -0,0 +1,17 @@
+Subject: adapt xml for Tomcat8
+Description: use tomcat8, this impact the context descriptor
+Author: Olivier Sallou osal...@debian.org
+Last-Updated: 2014-12-15
+Forwarded: No
+--- a/usr/share/biomaj-watcher/bin/WatcherConfigurator.java
b/usr/share/biomaj-watcher/bin/WatcherConfigurator.java
+@@ -45,7 +45,8 @@
+ PrintWriter pw = new PrintWriter(biomajConf + /BmajWatcher.xml);
+
+ pw.println(?xml version=\1.0\ encoding=\UTF-8\?);
+- pw.println(Context path=\/BmajWatcher\
docBase=\/usr/share/java/webapps/biomaj-watcher\ reloadable=\false\
allowLinking=\true\);
++ pw.println(Context path=\/BmajWatcher\
docBase=\/usr/share/java/webapps/biomaj-watcher\ reloadable=\false\
);
++ pw.println(Resources allowLinking=\true\/);
+
+ pw.println(Parameter name=\ADMIN_LOGIN\ value=\ +
params.get(app_login) + \ override=\false\/);
+
diff -Nru biomaj-watcher-1.2.2/debian/postinst
biomaj-watcher-1.2.2/debian/postinst
--- biomaj-watcher-1.2.2/debian/postinst 2014-01-09 16:25:31.0 +0100
+++ biomaj-watcher-1.2.2/debian/postinst 2014-12-15 11:05:48.0 +0100
@@ -49,8 +49,8 @@
ln -s /usr/share/java/gnumail.jar
/usr/share/java/webapps/biomaj-watcher/WEB-INF/lib/gnumail.jar
#cp /usr/share/biomaj/lib/biomaj.jar /var/lib/tomcat6/shared/
- rm -f /var/lib/tomcat6/shared/biomaj.jar
- cp /usr/share/biomaj/lib/biomaj.jar
/var/lib/tomcat6/shared/biomaj.jar
+ rm -f /usr/share/java/webapps/biomaj-watcher/WEB-INF/lib/biomaj.jar
+ cp /usr/share/biomaj/lib/biomaj.jar
/usr/share/java/webapps/biomaj-watcher/WEB-INF/lib/biomaj.jar
# Install latest definition
cp /usr/share/java/webapps/biomaj-watcher/jobs.xsd
/etc/biomaj-watcher/jobs.xsd
@@ -62,24 +62,17 @@
# Update logs
set_perms /var/log/biomaj
- #chown -R tomcat6 /etc/biomaj/db_properties
- chown -R tomcat6 /usr/share/java/webapps/biomaj-watcher
- #chmod -R 775 /etc/biomaj/db_properties
-
NEW changes in stable-new
Processing changes file: shutdown-at-night_0.10+deb7u2_amd64.changes ACCEPT -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1y1181-0003bd...@franck.debian.org
Bug#773114: pre-approve unblock: tryton-server/3.4.0-3
Control: tag -1 moreinfo On Sun, Dec 14, 2014 at 03:59:07PM +0100, Mathias Behrle wrote: please approve the upload of tryton-server_3.4.0-3. This little fix corrects the piupart error at https://piuparts.debian.org/sid/fail/tryton-server_3.4.0-2.log Would you say this is release critical or just nice to have? Thanks, -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Processed: Re: Bug#773140: unblock: rabbitmq-server/3.3.5-1.1
Processing control commands: tag -1 confirmed moreinfo Bug #773140 [release.debian.org] unblock: rabbitmq-server/3.3.5-1.1 Ignoring request to alter tags of bug #773140 to the same tags previously set -- 773140: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773140 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b773140.141877167312018.transcr...@bugs.debian.org
Processed: Re: Bug#773114: pre-approve unblock: tryton-server/3.4.0-3
Processing control commands: tag -1 moreinfo Bug #773114 [release.debian.org] pre-approve unblock: tryton-server/3.4.0-3 Added tag(s) moreinfo. -- 773114: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773114 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b773114.141877175212426.transcr...@bugs.debian.org
Processed: Re: Bug#773124: unblock: poedit/1.6.10-2
Processing control commands: tag -1 moreinfo confirmed Bug #773124 [release.debian.org] unblock: poedit/1.6.10-2 Added tag(s) confirmed and moreinfo. -- 773124: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773124 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b773124.141877181813248.transcr...@bugs.debian.org
Bug#773140: unblock: rabbitmq-server/3.3.5-1.1
Control: tag -1 confirmed moreinfo On Tue, Dec 16, 2014 at 03:07:20AM -0800, Blair Hester wrote: rabbitmq-server maintainers, are there any other RC bugs that you're planning to file on the package? No other RC bugs. I submitted Ok, the t-p-u upload can go ahead. Please remove the moreinfo tag when it's ready to process. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Bug#773124: unblock: poedit/1.6.10-2
Control: tag -1 moreinfo confirmed On Sun, Dec 14, 2014 at 07:12:38PM +0100, Gianfranco Costamagna wrote: As per irc conversation, I would like to get a preupproved ack for the poedit unblock. Unblock asked for policy violation 12.5, a.k.a. missing copyright entries. http://anonscm.debian.org/cgit/debian-l10n/poedit.git/commit/?id=f391fbed1e294a23490bf9bb80613f56c32168a4 Please go ahead and remove the moreinfo tag when it's ready for processing. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Bug#773040: unblock: anarchism/14.0-3 (pre-approval)
control: tags -1 - moreinfo Hi Jonathan, On Dienstag, 16. Dezember 2014, Jonathan Wiltshire wrote: Hmm not what we'd normally go for, but ok, I'll trade you an unblock for adopting it and restraining any bumpy urges. Please remove the moreinfo tag when it's ready to unblock. thanks a lot once again, uploaded, accepted done! cheers, Holger signature.asc Description: This is a digitally signed message part.
Processed: Re: Bug#773299: unblock: python-lightblue/0.3.2-2
Processing control commands: tag -1 - moreinfo Bug #773299 [release.debian.org] unblock: python-lightblue/0.3.2-2 Removed tag(s) moreinfo. -- 773299: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773299 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b773299.141877217515183.transcr...@bugs.debian.org
Bug#773299: unblock: python-lightblue/0.3.2-2
Control: tag -1 - moreinfo On Tue, 16 Dec 2014, Jonathan Wiltshire wrote: I'm not enthusiastic about having an orphaned package in stable, if I'm really honest. That's largely why it was removed. I can understand that. That said we have plenty of such packages in stable and they are not much more problematic than others. I can prepare a more targeted fix for t-p-u if you really want but I believe that taking the package from unstable is better. FWIW I'm interested in bringing this package back because it's a dependency that we need for a package available in Kali Linux. Can you not provide it in Kali? I like to be kind to derivatives where we can, but an orphaned package in Debian for the convenience of a derivative feels like the wrong way for this to work. I can certainly provide it in Kali, but my aim is not to make the delta bigger... we want to push more of our package towards Debian, and not the opposite. :-) In fact, this package should probably be adopted by the python-modules team. I can make sure that this happens since I'm part of the team. Would that reassure you? Cheers, -- Raphaël Hertzog ◈ Debian Developer Support Debian LTS: http://www.freexian.com/services/debian-lts.html Learn to master Debian: http://debian-handbook.info/get/ -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141216232247.gb32...@home.ouaza.com
Processed: Re: Bug#773040: unblock: anarchism/14.0-3 (pre-approval)
Processing control commands: tags -1 - moreinfo Bug #773040 [release.debian.org] unblock: anarchism/14.0-3 (pre-approval) Removed tag(s) moreinfo. -- 773040: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773040 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b773040.141877223315280.transcr...@bugs.debian.org
Bug#773114: pre-approve unblock: tryton-server/3.4.0-3
* Jonathan Wiltshire: Bug#773114: pre-approve unblock: tryton-server/3.4.0-3 (Tue, 16 Dec 2014 23:15:47 +): Control: tag -1 moreinfo On Sun, Dec 14, 2014 at 03:59:07PM +0100, Mathias Behrle wrote: please approve the upload of tryton-server_3.4.0-3. This little fix corrects the piupart error at https://piuparts.debian.org/sid/fail/tryton-server_3.4.0-2.log Would you say this is release critical or just nice to have? The data directory of tryton-server (/var/lib/tryton) is not deleted after purge (unowned files after purge), which is not conform to policy. If this is enough RC I would like to defer to you. Cheers, Mathias -- Mathias Behrle PGP/GnuPG key availabable from any keyserver, ID: 0x8405BBF6 pgpCYW8xLIWiX.pgp Description: Digitale Signatur von OpenPGP
Bug#773328: nmu: ggcov_0.9-6
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu nmu ggcov_0.9-6 . ALL . -m Rebuild against new binutils. And another one ... Andreas -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141217012643.569.83415.report...@zam581.zam.kfa-juelich.de
Bug#773140: Uploaded to testing-proposed-updates
Control: tag 773140 - moreinfo Hi, I've uploaded rabbitmq-server/3.3.5-1.1 to testing-proposed-updates using the patch sent earlier. -- Matt -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141217061552.gl1...@ftbfs.org
Processed: Uploaded to testing-proposed-updates
Processing control commands: tag 773140 - moreinfo Bug #773140 [release.debian.org] unblock: rabbitmq-server/3.3.5-1.1 Removed tag(s) moreinfo. -- 773134: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773134 773140: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773140 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b773134.141879800425028.transcr...@bugs.debian.org
Processed: Uploaded to testing-proposed-updates
Processing control commands: tag 773140 - moreinfo Bug #773140 [release.debian.org] unblock: rabbitmq-server/3.3.5-1.1 Ignoring request to alter tags of bug #773140 to the same tags previously set -- 773140: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773140 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b773140.141879800425037.transcr...@bugs.debian.org
Bug#773140: marked as done (unblock: rabbitmq-server/3.3.5-1.1)
Your message dated Wed, 17 Dec 2014 07:21:30 +
with message-id f87fb0d2cdfac73725f908847e5c6...@mail.adsl.funky-badger.org
and subject line Re: Bug#773140: Uploaded to testing-proposed-updates
has caused the Debian Bug report #773140,
regarding unblock: rabbitmq-server/3.3.5-1.1
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
773140: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773140
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
---BeginMessage---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Is it OK to uploade rabbitmq-server/3.3.5-1.1 to testing-proposed-updates?
773134 reports that it is insecure because it trusts the X-Forwarded-For HTTP
header. The following patches were applied upstream to fix this:
* http://hg.rabbitmq.com/rabbitmq-management/rev/c3c41177a11a
* http://hg.rabbitmq.com/rabbitmq-management/rev/35e916df027d
rabbitmq-server/3.4.1-1 is already in unstable.
I've attached the patch that I'm planning to use.
unblock rabbitmq-server/3.3.5-1.1
-- System Information:
Debian Release: 8.0
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1,
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.16.0-4-amd64 (SMP w/12 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
diff -u rabbitmq-server-3.3.5/debian/changelog rabbitmq-server-3.3.5/debian/changelog
--- rabbitmq-server-3.3.5/debian/changelog
+++ rabbitmq-server-3.3.5/debian/changelog
@@ -1,3 +1,10 @@
+rabbitmq-server (3.3.5-1.1) testing-proposed-updates; urgency=medium
+
+ * Non-maintainer upload.
+ * Do not trust X-Forwarded-For (Closes: #773134).
+
+ -- Matt Kraai kr...@debian.org Sun, 14 Dec 2014 14:51:41 -0800
+
rabbitmq-server (3.3.5-1) unstable; urgency=low
* New upstream release:
only in patch2:
unchanged:
--- rabbitmq-server-3.3.5.orig/plugins-src/rabbitmq-management/src/rabbit_mgmt_util.erl
+++ rabbitmq-server-3.3.5/plugins-src/rabbitmq-management/src/rabbit_mgmt_util.erl
@@ -40,6 +40,9 @@
-include(rabbit_mgmt.hrl).
-include_lib(amqp_client/include/amqp_client.hrl).
+-include_lib(webmachine/include/wm_reqdata.hrl).
+-include_lib(webmachine/include/wm_reqstate.hrl).
+
-define(FRAMING, rabbit_framing_amqp_0_9_1).
%%
@@ -116,11 +119,7 @@
end,
case rabbit_access_control:check_user_pass_login(Username, Password) of
{ok, User = #user{tags = Tags}} -
-IPStr = wrq:peer(ReqData),
-%% inet_parse:address/1 is an undocumented function but
-%% exists in old versions of Erlang. inet:parse_address/1
-%% is a documented wrapper round it but introduced in R16B.
-{ok, IP} = inet_parse:address(IPStr),
+IP = peer(ReqData),
case rabbit_access_control:check_user_loopback(Username, IP) of
ok -
case is_mgmt_user(Tags) of
@@ -143,6 +142,17 @@
not_authorised(Login failed, ReqData, Context)
end.
+%% We can't use wrq:peer/1 because that trusts X-Forwarded-For.
+peer(ReqData) -
+WMState = ReqData#wm_reqdata.wm_state,
+{ok, {IP,_Port}} = peername(WMState#wm_reqstate.socket),
+IP.
+
+%% Like the one in rabbit_net, but we and webmachine have a different
+%% way of wrapping
+peername(Sock) when is_port(Sock) - inet:peername(Sock);
+peername({ssl, SSL}) - ssl:peername(SSL).
+
vhost(ReqData) -
case id(vhost, ReqData) of
none - none;
---End Message---
---BeginMessage---
On 2014-12-17 6:15, Matt Kraai wrote:
Control: tag 773140 - moreinfo
Hi,
I've uploaded rabbitmq-server/3.3.5-1.1 to testing-proposed-updates
using the patch sent earlier.
Unblocked, thanks.
Regards,
Adam---End Message---
