Bug#888510: stretch-pu: package xmltooling/1.6.0-4

2018-02-27 Thread Adam D. Barratt 
Hi,

On Wed, 2018-02-28 at 06:45 +0100, Salvatore Bonaccorso wrote:
> Hi
> 
> On Fri, Feb 23, 2018 at 04:51:23PM +, Adam D. Barratt wrote:
> > Control: tags -1 + moreinfo
> > 
> > On Fri, 2018-01-26 at 15:31 +0100, Ferenc Wágner wrote:
> > > The Security Team advised that CVE-2018-0486 should be fixed by a
> > > stable
> > > update, because it isn't exploitable in the stretch version of
> > > the
> > > Shibboleth stack, but software outside Debian could still be
> > > affected
> > > by the issue.  Stretch currently has version 1.6.0; upstream
> > > fixed
> > > this
> > > security issue in 1.6.3 (already uploaded to unstable).  Since
> > > 1.6.2
> > > was
> > > a revert of the most part of the changes in 1.6.1, 1.6.3 is
> > > effectively
> > > three code changes beyond 1.6.0: the security fix itself:
> > 
> > [...]
> > > Based on the above, a stable update straight to 1.6.3 does not
> > > seem
> > > unreasonable to me, but it's your call, certainly.  Backporting
> > > the
> > > first hunk (the relevant security fix) is easy enough.  On the
> > > other
> > > hand, having version numbers reflecting the reality can be
> > > useful.
> > 
> > Indeed, that doesn't seem entirely unreasonable.
> > 
> > > So, what version number should I post the debdiff for?  Please
> > > include the Debian part as well, I haven't prepared stable
> > > updates
> > > yet.
> > 
> > 1.6.3-1~deb9u1, in this case.
> > 
> > > Also, if you can estimate: when can we expect the next stable
> > > update,
> > > that is, how much time have I got for this process?
> > 
> > We can do better than that - the window for the next point release
> > closes next weekend. Of course, if you don't make that, there'll
> > always
> > be the next time.
> 
> FTR, there was a xmltooling DSA yesterday including the fix. But I
> guess the basic question remains if xmltooling still can be updated
> to
> 1.6.3 (or now 1.6.4 based version?) for stretch.

I was under the impression from the above exchange that Ferenc was
going to provide a debdiff so we could see exactly what that looked
like. I guess that now wants to be relative to the security update.

Regards,

Adam

Bug#888510: stretch-pu: package xmltooling/1.6.0-4

2018-02-27 Thread Salvatore Bonaccorso 
Hi

On Fri, Feb 23, 2018 at 04:51:23PM +, Adam D. Barratt wrote:
> Control: tags -1 + moreinfo
> 
> On Fri, 2018-01-26 at 15:31 +0100, Ferenc Wágner wrote:
> > The Security Team advised that CVE-2018-0486 should be fixed by a
> > stable
> > update, because it isn't exploitable in the stretch version of the
> > Shibboleth stack, but software outside Debian could still be affected
> > by the issue.  Stretch currently has version 1.6.0; upstream fixed
> > this
> > security issue in 1.6.3 (already uploaded to unstable).  Since 1.6.2
> > was
> > a revert of the most part of the changes in 1.6.1, 1.6.3 is
> > effectively
> > three code changes beyond 1.6.0: the security fix itself:
> [...]
> > Based on the above, a stable update straight to 1.6.3 does not seem
> > unreasonable to me, but it's your call, certainly.  Backporting the
> > first hunk (the relevant security fix) is easy enough.  On the other
> > hand, having version numbers reflecting the reality can be useful.
> 
> Indeed, that doesn't seem entirely unreasonable.
> 
> > So, what version number should I post the debdiff for?  Please
> > include the Debian part as well, I haven't prepared stable updates
> > yet.
> 
> 1.6.3-1~deb9u1, in this case.
> 
> > Also, if you can estimate: when can we expect the next stable update,
> > that is, how much time have I got for this process?
> 
> We can do better than that - the window for the next point release
> closes next weekend. Of course, if you don't make that, there'll always
> be the next time.

FTR, there was a xmltooling DSA yesterday including the fix. But I
guess the basic question remains if xmltooling still can be updated to
1.6.3 (or now 1.6.4 based version?) for stretch.

Regards,
Salvatore

Processed: retitle 889001 to stretch-pu: package publicsuffix/20180218.2049-0+deb9u1

2018-02-27 Thread Debian Bug Tracking System 
Processing commands for cont...@bugs.debian.org:

> retitle 889001 stretch-pu: package publicsuffix/20180218.2049-0+deb9u1
Bug #889001 [release.debian.org] stretch-pu: package 
publicsuffix/20180125.0922-0+deb9u1
Changed Bug title to 'stretch-pu: package publicsuffix/20180218.2049-0+deb9u1' 
from 'stretch-pu: package publicsuffix/20180125.0922-0+deb9u1'.
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
889001: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=889001
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#891668: stretch-pu: package piglit/0~git20150829-59d7066-1+deb9u1

2018-02-27 Thread Adrian Bunk 
Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu

   * Add the missing dependency on python-mako. (Closes: #830145)
diff -Nru piglit-0~git20150829-59d7066/debian/changelog 
piglit-0~git20150829-59d7066/debian/changelog
--- piglit-0~git20150829-59d7066/debian/changelog   2015-11-09 
09:44:36.0 +0200
+++ piglit-0~git20150829-59d7066/debian/changelog   2018-02-27 
22:25:56.0 +0200
@@ -1,3 +1,10 @@
+piglit (0~git20150829-59d7066-1+deb9u1) stretch; urgency=medium
+
+  * Non-maintainer upload.
+  * Add the missing dependency on python-mako. (Closes: #830145)
+
+ -- Adrian Bunk   Tue, 27 Feb 2018 22:25:56 +0200
+
 piglit (0~git20150829-59d7066-1) unstable; urgency=low
 
   * Update piglit version
diff -Nru piglit-0~git20150829-59d7066/debian/control 
piglit-0~git20150829-59d7066/debian/control
--- piglit-0~git20150829-59d7066/debian/control 2015-11-09 09:44:36.0 
+0200
+++ piglit-0~git20150829-59d7066/debian/control 2018-02-27 22:25:56.0 
+0200
@@ -26,6 +26,6 @@
 Package: piglit
 Architecture: any
 Depends: ${shlibs:Depends}, ${misc:Pre-Depends}, ${misc:Depends},
- ${python:Depends}, python-six
+ ${python:Depends}, python-six, python-mako
 Description: Open-source test suite for OpenGL implementations
  Piglit is an open-source test suite for OpenGL implementations.

Bug#872642: stretch-pu: package hdf5/1.10.0-patch1+docs-3

2018-02-27 Thread Gilles Filippini 
Adam D. Barratt a écrit le 27/02/2018 à 20:57 :
> On Tue, 2018-02-27 at 20:53 +0100, Gilles Filippini wrote:
>> Hi,
>>
>> On Sun, 27 Aug 2017 14:03:38 +0100 "Adam D. Barratt"
>>  wrote:
>>> Control: tags -1 + confirmed
>>>
>>> On Sat, 2017-08-19 at 19:20 +0200, Gilles Filippini wrote:
 HDF5 in stretch is affected by RC bug #871506 now fixed in
 unstable and
 testing.
 I have prepared release 1.10.0-patch1+docs-3+deb9u1 for stretch
 with the
 very same fix as in unstable. Debdiff attached.
>>>
>>> Please go ahead.
>>
>> I've just got reminded this pending upload request I had completely
>> forgotten about, because I missed the 'go' which occurred during my
>> holidays.
>> Since it is 6 months old now, could you please confirm that the 'go'
>> is
>> still granted?
> 
> Sure.

Done.

Thanks,

_g.



signature.asc
Description: OpenPGP digital signature

Bug#872642: stretch-pu: package hdf5/1.10.0-patch1+docs-3

2018-02-27 Thread Adam D. Barratt 
On Tue, 2018-02-27 at 20:53 +0100, Gilles Filippini wrote:
> Hi,
> 
> On Sun, 27 Aug 2017 14:03:38 +0100 "Adam D. Barratt"
>  wrote:
> > Control: tags -1 + confirmed
> > 
> > On Sat, 2017-08-19 at 19:20 +0200, Gilles Filippini wrote:
> > > HDF5 in stretch is affected by RC bug #871506 now fixed in
> > > unstable and
> > > testing.
> > > I have prepared release 1.10.0-patch1+docs-3+deb9u1 for stretch
> > > with the
> > > very same fix as in unstable. Debdiff attached.
> > 
> > Please go ahead.
> 
> I've just got reminded this pending upload request I had completely
> forgotten about, because I missed the 'go' which occurred during my
> holidays.
> Since it is 6 months old now, could you please confirm that the 'go'
> is
> still granted?

Sure.

Regards,

Adam

Bug#872642: stretch-pu: package hdf5/1.10.0-patch1+docs-3

2018-02-27 Thread Gilles Filippini 
Hi,

On Sun, 27 Aug 2017 14:03:38 +0100 "Adam D. Barratt"
 wrote:
> Control: tags -1 + confirmed
> 
> On Sat, 2017-08-19 at 19:20 +0200, Gilles Filippini wrote:
> > HDF5 in stretch is affected by RC bug #871506 now fixed in unstable and
> > testing.
> > I have prepared release 1.10.0-patch1+docs-3+deb9u1 for stretch with the
> > very same fix as in unstable. Debdiff attached.
> 
> Please go ahead.

I've just got reminded this pending upload request I had completely
forgotten about, because I missed the 'go' which occurred during my
holidays.
Since it is 6 months old now, could you please confirm that the 'go' is
still granted?

Thanks, and sorry about this delay.

_g.



signature.asc
Description: OpenPGP digital signature

Bug#891660: stretch-pu: package linux-igd/1.0+cvs20070630-5+deb9u1

2018-02-27 Thread Adrian Bunk 
Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu

   * Make the init script require $network; patch by Nye Liu (Closes: #885826)
diff -Nru linux-igd-1.0+cvs20070630/debian/changelog 
linux-igd-1.0+cvs20070630/debian/changelog
--- linux-igd-1.0+cvs20070630/debian/changelog  2014-10-08 02:23:46.0 
+0300
+++ linux-igd-1.0+cvs20070630/debian/changelog  2018-02-27 21:38:11.0 
+0200
@@ -1,3 +1,11 @@
+linux-igd (1.0+cvs20070630-5+deb9u1) stretch; urgency=medium
+
+  * QA upload.
+  * Set maintainer to the QA group.
+  * Make the init script require $network; patch by Nye Liu (Closes: #885826)
+
+ -- Adrian Bunk   Tue, 27 Feb 2018 21:38:11 +0200
+
 linux-igd (1.0+cvs20070630-5) unstable; urgency=low
 
   * Update to libupnp6 instead of libupnp4.
diff -Nru linux-igd-1.0+cvs20070630/debian/control 
linux-igd-1.0+cvs20070630/debian/control
--- linux-igd-1.0+cvs20070630/debian/control2014-10-02 12:22:36.0 
+0300
+++ linux-igd-1.0+cvs20070630/debian/control2018-02-27 21:38:11.0 
+0200
@@ -2,7 +2,7 @@
 Section: net
 Priority: optional
 Homepage: http://linux-igd.sourceforge.net/
-Maintainer: Nick Leverton 
+Maintainer: Debian QA Group 
 Build-Depends: debhelper (>= 9), iptables-dev, pkg-config, libupnp-dev (>= 
1:1.6.17)
 Standards-Version: 3.9.6
 
diff -Nru linux-igd-1.0+cvs20070630/debian/linux-igd.init 
linux-igd-1.0+cvs20070630/debian/linux-igd.init
--- linux-igd-1.0+cvs20070630/debian/linux-igd.init 2014-10-04 
07:00:20.0 +0300
+++ linux-igd-1.0+cvs20070630/debian/linux-igd.init 2018-02-27 
21:38:09.0 +0200
@@ -1,8 +1,8 @@
 #! /bin/sh
 ### BEGIN INIT INFO
 # Provides:  linux-igd
-# Required-Start:$remote_fs $syslog
-# Required-Stop: $remote_fs $syslog
+# Required-Start:$remote_fs $syslog $network
+# Required-Stop: $remote_fs $syslog $network
 # Default-Start: 2 3 4 5
 # Default-Stop:  0 1 6
 # Short-Description: UPnP Internet Gateway Device

Bug#891658: stretch-pu: package source-highlight/3.1.8-1.2~deb9u1

2018-02-27 Thread Adrian Bunk 
Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu

   * libsource-highlight-dev: Fix the dependency from
 libboost-dev to libboost-regex-dev. (Closes: #877645)
diff -Nru source-highlight-3.1.8/debian/changelog 
source-highlight-3.1.8/debian/changelog
--- source-highlight-3.1.8/debian/changelog 2015-10-31 00:23:15.0 
+0200
+++ source-highlight-3.1.8/debian/changelog 2018-02-27 20:50:06.0 
+0200
@@ -1,3 +1,18 @@
+source-highlight (3.1.8-1.2~deb9u1) stretch; urgency=medium
+
+  * Non-maintainer upload.
+  * Rebuild for stretch.
+
+ -- Adrian Bunk   Tue, 27 Feb 2018 20:50:06 +0200
+
+source-highlight (3.1.8-1.2) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * libsource-highlight-dev: Fix the dependency from
+libboost-dev to libboost-regex-dev. (Closes: #877645)
+
+ -- Adrian Bunk   Sat, 24 Feb 2018 20:36:52 +0200
+
 source-highlight (3.1.8-1.1) unstable; urgency=low
 
   * Non-maintainer upload
diff -Nru source-highlight-3.1.8/debian/control 
source-highlight-3.1.8/debian/control
--- source-highlight-3.1.8/debian/control   2015-10-24 13:58:32.0 
+0300
+++ source-highlight-3.1.8/debian/control   2018-02-24 20:36:52.0 
+0200
@@ -21,7 +21,7 @@
 Package: libsource-highlight-dev
 Section: libdevel
 Architecture: any
-Depends: dpkg (>= 1.15.4) | install-info, libboost-dev, libsource-highlight4v5 
(= ${binary:Version}), ${misc:Depends}, ${shlibs:Depends}
+Depends: dpkg (>= 1.15.4) | install-info, libboost-regex-dev, 
libsource-highlight4v5 (= ${binary:Version}), ${misc:Depends}, ${shlibs:Depends}
 Replaces: source-highlight (<< 3.1.4-1)
 Description: development files for source highlighting library
  These are the development files for the library that underlies the

Re: Proposed (lib)curl switch to openssl 1.1

2018-02-27 Thread Julien Cristau 
Hi,

I agree with Steve that we should absolutely leave the gnutls and nss
variants alone.  I disagree with him that there's value in keeping the
libcurl.so.4 SONAME for the openssl variant, in particular since
libcurl's ABI has proven to depend on which version of which crypto lib
it's using, so the (IMO dubious in general) likelihood of portability
across distros is rather diminished in this instance.  So I'd have gone
for libcurl-openssl.so.4 or similar.

But I'm also not doing this work, so if we have to deal with a
Conflicts/Replaces from libcurl3 to libcurl4 then I guess we'll deal
with it.

Cheers,
Julien

Bug#877195: the patches

2018-02-27 Thread Adam D. Barratt 
On Tue, 2018-02-27 at 13:22 +1100, Russell Coker wrote:
> What's the situation with this one?  Could it be included in the next
> Stretch 
> update?

The +confirmed and "... then OK" in my mail of December 2nd that you
quote below was intended as an acknowledgement that you could go ahead
with the upload.

> On Saturday, 9 December 2017 1:33:39 PM AEDT Russell Coker wrote:
> > On Saturday, 2 December 2017 11:05:24 AM AEDT Adam D. Barratt
> > wrote:
> > > IFF it's versioned as 2:2.20161023.1-9+deb9u1, uses "stretch" as
> > > the
> > > changelog distribution, is otherwise identical to the diff
> > > presented in
> > > this bug log and is built and tested on a stretch system, then
> > > OK.
> > 
> > I've attached a debdiff that only differs in file timestamps, the
> > version
> > change you requested, and the changelog timestamp.
> > 
> > I have tested it on my main mail server, one of my main web
> > servers, one of
> > my minor mail servers, and a shell server.  It passed all tests and
> > did
> > everything as well as expected with no regressions.
> > 
> > Please consider it for inclusion.
> 
> 
Regards,

Adam

Bug#891657: stretch-pu: package swt-gtk/3.8.2-3+deb9u1

2018-02-27 Thread Adrian Bunk 
Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu

   * libswt-webkit-gtk-3-jni: Add the missing dependency
 on libwebkitgtk-1.0-0. (Closes: #879170)
diff -Nru swt-gtk-3.8.2/debian/changelog swt-gtk-3.8.2/debian/changelog
--- swt-gtk-3.8.2/debian/changelog  2013-06-28 07:47:03.0 +0300
+++ swt-gtk-3.8.2/debian/changelog  2018-02-27 20:33:20.0 +0200
@@ -1,3 +1,11 @@
+swt-gtk (3.8.2-3+deb9u1) stretch; urgency=medium
+
+  * Non-maintainer upload.
+  * libswt-webkit-gtk-3-jni: Add the missing dependency
+on libwebkitgtk-1.0-0. (Closes: #879170)
+
+ -- Adrian Bunk   Tue, 27 Feb 2018 20:33:20 +0200
+
 swt-gtk (3.8.2-3) unstable; urgency=low
 
   * Fix FTBFS with glib 2.35 (Closes: #710649).
diff -Nru swt-gtk-3.8.2/debian/control swt-gtk-3.8.2/debian/control
--- swt-gtk-3.8.2/debian/control2013-06-28 07:47:03.0 +0300
+++ swt-gtk-3.8.2/debian/control2018-02-27 20:33:20.0 +0200
@@ -83,7 +83,7 @@
 
 Package: libswt-webkit-gtk-3-jni
 Architecture: any
-Depends: libswt-gtk-3-jni (= ${binary:Version}), ${shlibs:Depends}, 
${misc:Depends}
+Depends: libswt-gtk-3-jni (= ${binary:Version}), ${shlibs:Depends}, 
${misc:Depends}, libwebkitgtk-1.0-0
 Breaks: libswt-gtk-3-java (<< ${binary:Version}), libswt-gtk-3-java (>> 
${binary:Version})
 Description: Standard Widget Toolkit for GTK+ WebKit JNI library
  The Standard Widget Toolkit (SWT) is a fast and rich Java GUI toolkit.

Bug#891484: stretch-pu: package vagrant/1.9.1+dfsg-1+deb9u1

2018-02-27 Thread Adam D. Barratt 
Control: tags -1 -moreinfo +confirmed

On Mon, 2018-02-26 at 18:36 -0300, Antonio Terceiro wrote:
> On Mon, Feb 26, 2018 at 08:42:56PM +, Adam D. Barratt wrote:
> > Control: tags -1 + moreinfo
> > 
> > On Sun, 2018-02-25 at 22:10 -0300, Antonio Terceiro wrote:
> > > The platform from where vagrant downloads images has been
> > > discontinued
> > > and we need to switch the default download location plus
> > > documentation,
> > > usage messages etc to match the new platform. Without this
> > > update,
> > > vagrant is pretty useless.
> > > 
> > 
> > So far as I can tell, this issue also affects the version of
> > vagrant in
> > unstable and has not yet been fixed there. Assuming that's correct,
> > the
> > bug will need resolving in unstable first.
> 
> Ah, I thought I adjusted the bug metadata yesterday, but it seems I
> didn't.
> 
> No, unstable is not affected. This has been done upstream for a
> while,
> this update is a backport of the change -- which we already have in
> the
> version in unstable -- to stable.

Thanks. Please feel free to upload.

Regards,

Adam

Bug#891426: stretch-pu: package nvidia-modprobe/384.111-1~deb9u1

2018-02-27 Thread Adam D. Barratt 
On Tue, 2018-02-27 at 02:32 +0100, Andreas Beckmann wrote:
> On 2018-02-25 15:44, Adam D. Barratt wrote:
> > Control: tags -1 + confirmed
> > 
> > On Sun, 2018-02-25 at 15:02 +0100, Andreas Beckmann wrote:
> > > please allow the upgrade of nvidia-modprobe in stretch to a new
> > > upstream release matching the updated nvidia-graphics-drivers
> > > package.
> > Please go ahead.
> 
> That was uploaded yesterday, but I just uploaded another fix to sid
> that
> may be worthy to be fixed in stretch, too.
> 
> nvidia-modprobe (a setuid root binary) stopped working for regular
> users
> since dash started dropping privileges if euid != uid (like bash has
> been doing for ages). The fix is a oneliner: call setuid(0) before
> forking modprobe to preserve permissions through the recursive shell
> and
> modprobe invocations needed by our modprobe configuration using
> install
> commands.
> 
> The problem is reproducible in stretch if /bin/sh points to bash
> instead
> of dash.
> 
> The incremental source debdiff is attached.

That seems reasonable.

> If that is acceptable, please reject 384.111-1~deb9u1 and I'll upload
> 384.111-2~deb9u1 instead.
> 

Feel free to upload the new package, we can sort out the earlier upload
 later.

Regards,

Adam

Processed: Re: Bug#891484: stretch-pu: package vagrant/1.9.1+dfsg-1+deb9u1

2018-02-27 Thread Debian Bug Tracking System 
Processing control commands:

> tags -1 -moreinfo +confirmed
Bug #891484 [release.debian.org] stretch-pu: package vagrant/1.9.1+dfsg-1+deb9u1
Ignoring request to alter tags of bug #891484 to the same tags previously set
Bug #891484 [release.debian.org] stretch-pu: package vagrant/1.9.1+dfsg-1+deb9u1
Added tag(s) confirmed.

-- 
891484: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891484
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Processed: Re: Bug#891277: stretch-pu: package debian-edu-config/1.929+deb9u1

2018-02-27 Thread Debian Bug Tracking System 
Processing control commands:

> tags -1 -moreinfo +confirmed
Bug #891277 [release.debian.org] stretch-pu: package 
debian-edu-config/1.929+deb9u1
Removed tag(s) moreinfo.
Bug #891277 [release.debian.org] stretch-pu: package 
debian-edu-config/1.929+deb9u1
Added tag(s) confirmed.

-- 
891277: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891277
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#891277: stretch-pu: package debian-edu-config/1.929+deb9u1

2018-02-27 Thread Adam D. Barratt 
Control: tags -1 -moreinfo +confirmed

On Mon, 2018-02-26 at 21:26 +, mike.gabr...@das-netzwerkteam.de
wrote:
> Hi,
> 
> On Monday, February 26, 2018, Adam D. Barratt wrote:
> > Control: tags -1 + moreinfo
> > 
> > On Sat, 2018-02-24 at 02:25 +0100, Mike Gabriel wrote:
> > [...]
> > > 
> > 
> > +  * Chromium: Pre-configure Chromium Webbrowser system-wide to
> > auto-
> > > detect the
> > > +http proxy settings via WPAD (plus locking the proxy
> > > settings
> > > dialog for
> > > +users). (Closes: #891262).
> > > 
> > 
> > The BTS metadata for this bug indicates that it also affects d-e-c
> > in
> > unstable - is that correct?
> 
> The issue is fixed in unstable and the bug was especially opened for
> documenting the issue in stable/stretch.

OK. In that case, please go ahead.

> I will update the bug's metadata tomorrow, once I have my notebook at
> hand.

Thanks.

Regards,

Adam

Bug#888006: stretch-pu: package salt/2016.11.2+ds-1

2018-02-27 Thread Adam D. Barratt 
Control: tags -1 + confirmed

On Mon, 2018-02-26 at 21:15 +0100, Ondrej Novy wrote:
> Control: tags -1 - moreinfo
> 
> 2018-02-26 20:38 GMT+01:00 Adam D. Barratt 
> :
> > The metadata for #887724 indicates that it currently affects the
> > salt
> > package in unstable; is that correct?
> 
> no, package in unstable is not affected. Bug metadata fixed, sry.
> 

Thanks. Please feel free to upload.

Regards,

Adam

Processed: Re: Bug#888006: stretch-pu: package salt/2016.11.2+ds-1

2018-02-27 Thread Debian Bug Tracking System 
Processing control commands:

> tags -1 + confirmed
Bug #888006 [release.debian.org] stretch-pu: package salt/2016.11.2+ds-1
Added tag(s) confirmed.

-- 
888006: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=888006
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#887589: stretch-pu: package grilo-plugins/0.3.3-1

2018-02-27 Thread Adam D. Barratt 
Control: tags -1 + confirmed

On Mon, 2018-02-26 at 22:26 +0100, Alberto Garcia wrote:
> Control: tags -1 - moreinfo
> 
> On Mon, Feb 26, 2018 at 08:55:51PM +, Adam D. Barratt wrote:
> 
> > > I would like to upload a new grilo-plugins package, which
> > > contains
> > > a fix for https://bugs.debian.org/887469
> > 
> > The BTS metadata for that bug indicates that it affects the version
> > of grilo-plugins in unstable and has not yet been resolved there -
> > is that correct?
> 
> It's not correct, the version is sid is already patched.
[...]
> I'll update the metadata of the bug report.
> 

Thanks. Please feel free to upload.

Regards,

Adam

Processed: Re: Bug#887589: stretch-pu: package grilo-plugins/0.3.3-1

2018-02-27 Thread Debian Bug Tracking System 
Processing control commands:

> tags -1 + confirmed
Bug #887589 [release.debian.org] stretch-pu: package grilo-plugins/0.3.3-1
Added tag(s) confirmed.

-- 
887589: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=887589
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#891655: stretch-pu: package ax25-tools/0.0.10-rc4-1+deb9u1

2018-02-27 Thread Adrian Bunk 
Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu

   * Add patch 02-ptsname-prototype.patch to fix segfault at runtime
 - Closes: #878322
   * Updated 01-spelling-fixes.patch to account for other spelling errors
diff -Nru ax25-tools-0.0.10-rc4/debian/changelog 
ax25-tools-0.0.10-rc4/debian/changelog
--- ax25-tools-0.0.10-rc4/debian/changelog  2015-09-03 16:39:34.0 
+0300
+++ ax25-tools-0.0.10-rc4/debian/changelog  2018-02-27 20:11:05.0 
+0200
@@ -1,3 +1,12 @@
+ax25-tools (0.0.10-rc4-1+deb9u1) stretch; urgency=medium
+
+  * Non-maintainer upload.
+  * Add patch 02-ptsname-prototype.patch to fix segfault at runtime
+- Closes: #878322
+  * Updated 01-spelling-fixes.patch to account for other spelling errors
+
+ -- Adrian Bunk   Tue, 27 Feb 2018 20:11:05 +0200
+
 ax25-tools (0.0.10-rc4-1) unstable; urgency=medium
 
   * New upstream version.
diff -Nru ax25-tools-0.0.10-rc4/debian/patches/01-spelling-fixes.patch 
ax25-tools-0.0.10-rc4/debian/patches/01-spelling-fixes.patch
--- ax25-tools-0.0.10-rc4/debian/patches/01-spelling-fixes.patch
2015-09-03 16:35:54.0 +0300
+++ ax25-tools-0.0.10-rc4/debian/patches/01-spelling-fixes.patch
2018-02-27 20:10:29.0 +0200
@@ -1,5 +1,7 @@
 Fix spelling errors
 Author: col...@debian.org
+Author: Dave Hibberd 
+Last-Update: 2017-10-30
 
 --- a/ax25/axgetput/axgetput.c
 +++ b/ax25/axgetput/axgetput.c
@@ -12,6 +14,15 @@
} else {
  fprintf(stderr, "  -b value is the blocksize (framelen) of the 
transmitted data\n");
  fprintf(stderr, " default %d, which is a useful choice for ampr 
ax25.\n", BLOCKSIZ_DEFAULT);
+@@ -175,7 +175,7 @@
+ fprintf(stderr, " otherwise, the data will be read to memory until 
EOF.\n");
+ fprintf(stderr, "  -s is only available if stdin is a pipe\n");
+ fprintf(stderr, "  if filename specified in filter, the given name will 
be suggested instead.\n");
+-fprintf(stderr, "  filename may be ommited if used as filter.\n");
++fprintf(stderr, "  filename may be omitted if used as filter.\n");
+   }
+   fputc('\n', stderr);
+   fprintf(stderr, "Tips: - compressed download:\n");
 --- a/hdlcutil/sethdlc.8
 +++ b/hdlcutil/sethdlc.8
 @@ -94,7 +94,7 @@
@@ -145,6 +156,24 @@
  #BIN protocol.
  
  .LP
+@@ -60,7 +60,7 @@
+ .B yget
+ or
+ .B yput
+-is reserverd for the yapp protocol, which is not supported in this version.
++is reserved for the yapp protocol, which is not supported in this version.
+ 
+ .LP
+ .B II. DIDADIT Protocol
+@@ -68,7 +68,7 @@
+ .B rget
+ or
+ .B rput
+-is reserverd for the didadit protocol, which is not supported in this version.
++is reserved for the didadit protocol, which is not supported in this version.
+ .LP
+ Anyone like to implement yapp and didadit protcols?
+ .LP
 --- a/rose/rsuplnk.8
 +++ b/rose/rsuplnk.8
 @@ -47,7 +47,7 @@
@@ -178,6 +207,21 @@
write_ax25(buf, strlen(buf), 1);
sprintf(buf, "MD5 is recommended.\r");
write_ax25(buf, strlen(buf), 1);
+@@ -280,12 +280,12 @@
+   goto end;
+   }
+   if (!S_ISREG(statbuf.st_mode)) {
+-  sprintf(buf, "Error: password file .%s should 
be a regular file. Skiping..\r", PWFILE);
++  sprintf(buf, "Error: password file .%s should 
be a regular file. Skipping..\r", PWFILE);
+   write_ax25(buf, strlen(buf), 1);
+   goto end;
+   }
+   if (statbuf.st_uid != 0 && statbuf.st_uid != 
pw->pw_uid) {
+-  sprintf(buf, "Error: your password file .%s is 
not owned by you. Skiping..\r", PWFILE);
++  sprintf(buf, "Error: your password file .%s is 
not owned by you. Skipping..\r", PWFILE);
+   write_ax25(buf, strlen(buf), 1);
+   goto end;
+   }
 --- a/tcpip/ttylinkd.c
 +++ b/tcpip/ttylinkd.c
 @@ -427,7 +427,7 @@
@@ -189,3 +233,36 @@
close(skt);
close(ctl_skt);
return 0;
+--- a/ax25/ax25d.c
 b/ax25/ax25d.c
+@@ -1280,7 +1280,7 @@
+   AXL = axl_build;/* Assign our built list to AXL */
+ 
+   if (Logging)
+-  syslog(LOG_INFO, "new config file loaded successfuly");
++  syslog(LOG_INFO, "new config file loaded successfully");
+ 
+   update_maxfd();
+   return 0;
+--- a/dmascc/dmascc_cfg.1
 b/dmascc/dmascc_cfg.1
+@@ -82,7 +82,7 @@
+ on to \fImilliseconds\fR. Maximum wait time is 2500 ms.
+ .TP 10
+ .BI "\-\-persist "\fIf\fR
+-Set the persistance parameter to \fIf\fR. Must be between 0 and 255 
++Set the persistence parameter to \fIf\fR. Must be between 0 and 255

Bug#891652: stretch-pu: package iipimage/1.0-1+deb9u1

2018-02-27 Thread Adrian Bunk 
Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu

   * Fix apache configuration. Closes: #875637
diff -Nru iipimage-1.0/debian/changelog iipimage-1.0/debian/changelog
--- iipimage-1.0/debian/changelog   2016-04-15 09:46:07.0 +0300
+++ iipimage-1.0/debian/changelog   2018-02-27 19:48:33.0 +0200
@@ -1,3 +1,10 @@
+iipimage (1.0-1+deb9u1) stretch; urgency=medium
+
+  * Non-maintainer upload.
+  * Fix apache configuration. Closes: #875637
+
+ -- Adrian Bunk   Tue, 27 Feb 2018 19:48:33 +0200
+
 iipimage (1.0-1) unstable; urgency=medium
 
   * New upstream. Closes: #818988
diff -Nru iipimage-1.0/debian/iipsrv.conf iipimage-1.0/debian/iipsrv.conf
--- iipimage-1.0/debian/iipsrv.conf 2016-04-15 09:46:07.0 +0300
+++ iipimage-1.0/debian/iipsrv.conf 2018-02-27 19:48:33.0 +0200
@@ -2,7 +2,7 @@
 ScriptAlias /iipsrv/ "/usr/lib/iipimage-server/"
 
 # Set the options on that directory
-
+
AllowOverride None
Options None

@@ -17,7 +17,7 @@
 
# Set the module handler
AddHandler fcgid-script .fcgi
-
+
 
 # Set our environment variables for the IIP server
 FcgidInitialEnv VERBOSITY "1"

Bug#891651: stretch-pu: package libdap/3.18.2-2+deb9u1

2018-02-27 Thread Adrian Bunk 
Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu

   * Add libdap-doc.docs to install docs. Closes: #889210
libdap-doc lost the contents it had in jessie.

   * Drop description reference to external docs. Closes: #837429
diff -Nru libdap-3.18.2/debian/changelog libdap-3.18.2/debian/changelog
--- libdap-3.18.2/debian/changelog  2016-12-02 11:53:20.0 +0200
+++ libdap-3.18.2/debian/changelog  2018-02-27 19:01:38.0 +0200
@@ -1,3 +1,11 @@
+libdap (3.18.2-2+deb9u1) stretch; urgency=medium
+
+  * Non-maintainer upload.
+  * Add libdap-doc.docs to install docs. Closes: #889210
+  * Drop description reference to external docs. Closes: #837429
+
+ -- Adrian Bunk   Tue, 27 Feb 2018 19:01:38 +0200
+
 libdap (3.18.2-2) unstable; urgency=medium
 
   * Add a B-D on libfl-dev as this no longer supplied with flex.
diff -Nru libdap-3.18.2/debian/control libdap-3.18.2/debian/control
--- libdap-3.18.2/debian/control2016-12-02 11:53:20.0 +0200
+++ libdap-3.18.2/debian/control2018-02-27 19:01:38.0 +0200
@@ -26,9 +26,6 @@
  protocol which its software uses, many other groups have adopted DAP
  and provide compatible clients, servers and software development kits. 
  .
- The DAP is a NASA community standard; here is the official link to the 
- specification.
- .
  With OPeNDAP software, you access data using a URL, just like a URL you
  would use to access a web page. However, before you request any data, 
  you need to know how to request it in a form your browser can handle. 
diff -Nru libdap-3.18.2/debian/libdap-doc.docs 
libdap-3.18.2/debian/libdap-doc.docs
--- libdap-3.18.2/debian/libdap-doc.docs1970-01-01 02:00:00.0 
+0200
+++ libdap-3.18.2/debian/libdap-doc.docs2018-02-27 19:01:38.0 
+0200
@@ -0,0 +1 @@
+docs/html

Bug#891649: stretch-pu: package uglifyjs/2.7.5-2+deb9u1

2018-02-27 Thread Adrian Bunk 
Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu

   * Add fix from Bastien Roucariès to give manpage --help output
 contents, thanks to Ben Finney. (Closes: #847642)
diff -Nru uglifyjs-2.7.5/debian/changelog uglifyjs-2.7.5/debian/changelog
--- uglifyjs-2.7.5/debian/changelog 2017-02-08 13:15:28.0 +0200
+++ uglifyjs-2.7.5/debian/changelog 2018-02-27 18:49:24.0 +0200
@@ -1,3 +1,11 @@
+uglifyjs (2.7.5-2+deb9u1) stretch; urgency=medium
+
+  * Non-maintainer upload.
+  * Add fix from Bastien Roucariès to give manpage --help output
+contents, thanks to Ben Finney. (Closes: #847642)
+
+ -- Adrian Bunk   Tue, 27 Feb 2018 18:49:24 +0200
+
 uglifyjs (2.7.5-2) unstable; urgency=medium
 
   [ Jonas Smedegaard ]
diff -Nru uglifyjs-2.7.5/debian/patches/1003_fix_manpage_help_output.patch 
uglifyjs-2.7.5/debian/patches/1003_fix_manpage_help_output.patch
--- uglifyjs-2.7.5/debian/patches/1003_fix_manpage_help_output.patch
1970-01-01 02:00:00.0 +0200
+++ uglifyjs-2.7.5/debian/patches/1003_fix_manpage_help_output.patch
2018-02-27 00:13:34.0 +0200
@@ -0,0 +1,18 @@
+Description: Fix render help output
+Forwarded: no
+Author: Bastien Roucariès 
+Bug-Debian: https://bugs.debian.org/847642
+Last-Update: 2017-08-18
+---
+This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
+--- a/bin/uglifyjs
 b/bin/uglifyjs
+@@ -161,7 +161,7 @@
+ }
+ 
+ if (ARGS.h || ARGS.help) {
+-print(yargs.help());
++print(yargs.help().argv);
+ process.exit(0);
+ }
+ 
diff -Nru uglifyjs-2.7.5/debian/patches/series 
uglifyjs-2.7.5/debian/patches/series
--- uglifyjs-2.7.5/debian/patches/series2017-02-08 12:15:03.0 
+0200
+++ uglifyjs-2.7.5/debian/patches/series2018-02-27 00:14:53.0 
+0200
@@ -1,3 +1,4 @@
 1001_break_dep_loop.patch
 1002_avoid_timeout_in_tests.patch
+1003_fix_manpage_help_output.patch
 2002_node_conflict.patch
diff -Nru uglifyjs-2.7.5/debian/rules uglifyjs-2.7.5/debian/rules
--- uglifyjs-2.7.5/debian/rules 2016-12-09 13:42:49.0 +0200
+++ uglifyjs-2.7.5/debian/rules 2018-02-27 00:18:07.0 +0200
@@ -49,7 +49,10 @@
 DEB_INSTALL_MANPAGES_$(pkg) = debian/uglifyjs.1
 common-build-indep:: debian/stamp-build
 debian/stamp-build:
-   NODE_PATH=lib help2man --no-info bin/uglifyjs > debian/uglifyjs.1
+   NODE_PATH=lib help2man --no-info bin/uglifyjs | sed \
+   -e 's/[[:space:]]*\[string\]$$/ This parameter is a string./g' \
+   -e 's/[[:space:]]*\[boolean\]$$/ This parameter is a boolean./g' \
+   -e 's/[[:space:]]*\[array\]$$/ This parameter is an array./g'> 
debian/uglifyjs.1
$(if $(filter nocheck,$(DEB_BUILD_OPTIONS)),\
,\
NODE_PATH=lib nodejs test/run-tests.js \

Processed: tagging 891484

2018-02-27 Thread Debian Bug Tracking System 
Processing commands for cont...@bugs.debian.org:

> tags 891484 - moreinfo
Bug #891484 [release.debian.org] stretch-pu: package vagrant/1.9.1+dfsg-1+deb9u1
Removed tag(s) moreinfo.
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
891484: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891484
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#882697: stretch-pu: package apparmor/2.11.0-3+deb9u2

2018-02-27 Thread intrigeri 
Adam D. Barratt:
> Please feel free to upload.

Uploaded, thanks.

Processed: unblock 891620 with 890696

2018-02-27 Thread Debian Bug Tracking System 
Processing commands for cont...@bugs.debian.org:

> unblock 891620 with 890696
Bug #891620 [release.debian.org] transition: linphone
891620 was blocked by: 890696 890605 890606
891620 was not blocking any bugs.
Removed blocking bug(s) of 891620: 890696
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
891620: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891620
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Processed: block 891620 with 890606

2018-02-27 Thread Debian Bug Tracking System 
Processing commands for cont...@bugs.debian.org:

> block 891620 with 890606
Bug #891620 [release.debian.org] transition: linphone
891620 was blocked by: 890696 890605
891620 was not blocking any bugs.
Added blocking bug(s) of 891620: 890606
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
891620: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891620
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Processed: block 891620 with 890696 890605

2018-02-27 Thread Debian Bug Tracking System 
Processing commands for cont...@bugs.debian.org:

> block 891620 with 890696 890605
Bug #891620 [release.debian.org] transition: linphone
891620 was not blocked by any bugs.
891620 was not blocking any bugs.
Added blocking bug(s) of 891620: 890696 and 890605
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
891620: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891620
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Processed: Re: Bug#891585: nmu: intercal_30:0.30-1

2018-02-27 Thread Debian Bug Tracking System 
Processing commands for cont...@bugs.debian.org:

> tags 891585 + stretch
Bug #891585 [release.debian.org] nmu: intercal_30:0.30-1
Ignoring request to alter tags of bug #891585 to the same tags previously set
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
891585: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891585
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#891503: stretch-pu: package osinfo-db/0.20180226-1~deb9u1

2018-02-27 Thread Guido Günther 
On Mon, Feb 26, 2018 at 08:47:48PM +, Adam D. Barratt wrote:
> Control: tags -1 + confirmed
> 
> On Mon, 2018-02-26 at 10:59 +0100, Guido Günther wrote:
> > I'd like to update osinfo-db in stretch. This would allow us to have
> > up
> > to date information for operating system installs with e.g. gnome-
> > boxes
> > and virt-manager by adding new data for recent debian, ubuntu and
> > freebsd releases as well as updating existing ones.
> > 
> 
> I must admit that I'm confused by the changes of the type:
> 
> -  
> http://cdimage.debian.org/cdimage/archive/9.0.0/i386/iso-cd/debian-9.0.0-i386-netinst.iso;
> +  
> http://cdimage.debian.org/cdimage/archive/9.2.1/i386/iso-cd/debian-9.2.1-i386-netinst.iso;
>    
> 
> given that 9.3 was released on the same day as 8.10, and the latter is
> reflected in the diff.

We're only using releases that are under archive/ already since these
URLs stay stable a bit longer (#813797). It seems 9.3.0 hasn't been
archived yet while 8.10 is.

> In any case, please go ahead.

Uploaded. Thanks!
 -- Guido

> 
> Regards,
> 
> Adam
>

Bug#891620: transition: linphone

2018-02-27 Thread Bernhard Schmidt 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition

Hi,

please be gentle, first time library migration :-)

We would like to schedule a transition to get from the current, really really
old linphone to a newer one. The old src:linphone used to build two libraries
that are now in seperate source packages. All packages have been uploaded and
built in experimental.

Old:   New:
src:linphone libmediastreamer-base3 -> src:mediastreamer2 
libmediastreamer-base10
src:linphone libortp9   -> src:ortp libortp13
src:linphone liblinphone5   -> src:linphone liblinphone9

AFAICS there are only two reverse dependencies through libortp9. Kopete also
uses libmediastreamer. Unfortunately both fail

Bug#890696 Kopete FTBFS against libmediastreamer 2.16
Upstream bug, no activity for more than a year

Bug#890605 src:libosmo-abis FTBFS against standalone libortp
Upstream Patch available, version in experimental is fine

The Kopete bug is a blocker. However, Kopete also blocks the libssl1.0 and
qt4-removal.

Ben file:

title = "linphone";
is_affected = .depends ~ /libmediastreamer-base3|libortp9/ | .depends ~ 
/libmediastreamer-base10|libortp13/;
is_good = .depends ~ /libmediastreamer-base10|libortp13/;
is_bad = .depends ~ /libmediastreamer-base3|libortp9/;

Bernhard

Processed: Re: Bug#882697: stretch-pu: package apparmor/2.11.0-3+deb9u2

2018-02-27 Thread Debian Bug Tracking System 
Processing control commands:

> tags -1 + confirmed
Bug #882697 [release.debian.org] stretch-pu: package apparmor/2.11.0-3+deb9u2
Added tag(s) confirmed.

-- 
882697: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882697
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#882697: stretch-pu: package apparmor/2.11.0-3+deb9u2

2018-02-27 Thread Adam D. Barratt 

Control: tags -1 + confirmed

On 2018-02-27 7:47, intrigeri wrote:

Hi,

Adam D. Barratt:

What's the difference between this and +deb9u1? Is it simply this
change:



-++features-file=/etc/apparmor/features
+++features-file=/usr/share/apparmor-features/features



and the equivalent in debian/install?


Yes (modulo the timing matter regarding the Linux 4.14.x bug, which
was the only reason why +deb9u1 could not make it into a stable
release last time).


The changelog going from -3 to -3+deb9u2 is confusing, particularly
given that +deb9u1 has been available to users of proposed-updates for
some time. If the above is correct, please keep the previous changelog
stanza for +deb9u1 as-is and add a new entry for +deb9u2 describing 
the

path change.


Done and accordingly adjusted the maintainer scripts to remove
the old (now obsolete) /etc/apparmor/features conffile from systems
that had +deb9u1 installed.


Thanks.

Please feel free to upload.

Regards,

Adam