Bug#989507: unblock: collectd/5.12.0-6
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package collectd [ Reason ] Fixing #968950 collectd-dev: missing meta_data.h header file included by plugin.h [ Impact ] Building c plugins for collectd is not possible anymore. [ Tests ] There are header files being shipped again. No tests for that. [ Risks ] Plugins still fail to build. I have nothing to test that unfortunately. Otherwise - no changes, so no risks. [ Checklist ] [X] all changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in testing unblock collectd/5.12.0-6 -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index 74daf54..c6a6057 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,12 @@ +collectd (5.12.0-6) unstable; urgency=medium + + * [b4e7861] collectd-dev: Add missing header files again. +Thanks to Benjamin Drung (Closes: #968950) + * [3261aa1] Also create necessary directories + * [6c0c6be] Fix target location in dh_install + + -- Bernd Zeimetz Tue, 01 Jun 2021 17:56:33 +0200 + collectd (5.12.0-5) unstable; urgency=medium * [11ee08b] Disable tokyotyrant. diff --git a/debian/collectd-dev.install b/debian/collectd-dev.install index a3dd678..ffd3f5f 100644 --- a/debian/collectd-dev.install +++ b/debian/collectd-dev.install @@ -1,4 +1,3 @@ src/liboconfig/oconfig.h usr/include/collectd/liboconfig -src/*.h usr/include/collectd/core -src/daemon/*.h usr/include/collectd/core/daemon +usr/include/collectd/core diff --git a/debian/rules b/debian/rules index 5cf4804..ad8880f 100755 --- a/debian/rules +++ b/debian/rules @@ -275,17 +275,24 @@ install-indep: dh_testroot dh_prep dh_installdirs -i - dh_install -i + set -e ;\ + find src -path src/libcollectdclient -prune -o -path src/liboconfig -prune -o -name '*.h' -print | while read i; do \ + d=$$(echo "$${i}" | sed 's,^src,debian/tmp/usr/include/collectd/core,') ;\ + mkdir -p $$(echo "$${i}" | sed -e 's,^src,debian/tmp/usr/include/collectd/core,' -e 's,/[^/]*$$,,') ;\ + cp "$${i}" "$${d}" ;\ + done + + dh_install -i + # update include path for collectd header files ( set -e; \ cd $(CURDIR)/debian/collectd-dev/usr/include/collectd/; \ - for lib in $$(find . -type f -name '*.h'); do \ + headers=$$(find . -type f -name '*.h'); \ + for lib in $$headers; do \ libname=$$(basename $$lib); \ fullpath=$$(echo $$lib | sed -r -e 's,^\./,collectd/,'); \ - for dir in $$(find . -mindepth 1 -type d); do \ - sed -r -i -e "s,(include\s+)\".*\<$$libname\",\1\"$$fullpath\"," $$dir/*.h; \ - done; \ + sed -r -i -e "s,(include\s+)\".*\<$$libname\",\1\"$$fullpath\"," $$headers; \ done ) install-arch: build @@ -299,9 +306,9 @@ install-arch: build rm -f debian/tmp/usr/lib/collectd/*.la rm -f debian/tmp/usr/lib/libcollectdclient.la rm -f debian/tmp/etc/collectd.conf - + dh_install -a --sourcedir=$(CURDIR)/debian/tmp --fail-missing - + perl ./debian/bin/gen_plugin_deps.pl mkdir -p debian/collectd-core/usr/share/lintian/overrides/ [The following lists of changes regard files as different if they have different names, permissions or owners.] Files in second set of .debs but not in first - -rw-r--r-- root/root /usr/include/collectd/core/utils/avltree/avltree.h -rw-r--r-- root/root /usr/include/collectd/core/utils/cmds/cmds.h -rw-r--r-- root/root /usr/include/collectd/core/utils/cmds/flush.h -rw-r--r-- root/root /usr/include/collectd/core/utils/cmds/getthreshold.h -rw-r--r-- root/root /usr/include/collectd/core/utils/cmds/getval.h -rw-r--r-- root/root /usr/include/collectd/core/utils/cmds/listval.h -rw-r--r-- root/root /usr/include/collectd/core/utils/cmds/parse_option.h -rw-r--r-- root/root /usr/include/collectd/core/utils/cmds/putnotif.h -rw-r--r-- root/root /usr/include/collectd/core/utils/cmds/putval.h -rw-r--r-- root/root /usr/include/collectd/core/utils/common/common.h -rw-r--r-- root/root /usr/include/collectd/core/utils/config_cores/config_cores.h -rw-r--r-- root/root /usr/include/collectd/core/utils/crc32/crc32.h -rw-r--r-- root/root /usr/include/collectd/core/utils/cur
Bug#987542: unblock: gpsd/3.22-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package gpsd Adding missing Breaks/Replaces and fixing a bit of mess in the symbols files. gpsd (3.22-3) unstable; urgency=medium * [c6838e37] Remove duplicate lines from symbol files. Thanks to Matthias Klose (Closes: #985930) * [5c240253] Mark String::QString(QString const&)@Base as optional. Required for backporting. * [2dfbaa07] Updating debian/control from debian/control.in * [c582b2aa] gpsd-tools: add missing Breaks+Replaces gpsd-tools needs Breaks/Replaces for gpsd-clients (<< 3.20-10) Thanks to Andreas Beckmann (Closes: #987208) -- Bernd Zeimetz Sun, 25 Apr 2021 12:17:57 +0200 Full diff is attached. Thanks, Bernd unblock gpsd/3.22-3 -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index dfef5f900..f0b5369f7 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,16 @@ +gpsd (3.22-3) unstable; urgency=medium + + * [c6838e37] Remove duplicate lines from symbol files. +Thanks to Matthias Klose (Closes: #985930) + * [5c240253] Mark String::QString(QString const&)@Base as optional. +Required for backporting. + * [2dfbaa07] Updating debian/control from debian/control.in + * [c582b2aa] gpsd-tools: add missing Breaks+Replaces +gpsd-tools needs Breaks/Replaces for gpsd-clients (<< 3.20-10) +Thanks to Andreas Beckmann (Closes: #987208) + + -- Bernd Zeimetz Sun, 25 Apr 2021 12:17:57 +0200 + gpsd (3.22-2) unstable; urgency=medium [ Bernd Zeimetz ] diff --git a/debian/control b/debian/control index 30665b4e2..a38b8c82f 100644 --- a/debian/control +++ b/debian/control @@ -63,8 +63,8 @@ Architecture: any Depends: ${shlibs:Depends}, ${misc:Depends}, libgps28 (= ${binary:Version}), Suggests: gpsd -Breaks: python-gps, gpsd (<< 3.20-9) -Replaces: python-gps +Breaks: python-gps, gpsd (<< 3.20-9), gpsd-clients (<< 3.20-10) +Replaces: python-gps, gpsd-clients (<< 3.20-10) Description: Global Positioning System - tools The gpsd service daemon can monitor one or more GPS devices connected to a host computer, making all data on the location and movements of the diff --git a/debian/control.in b/debian/control.in index cb2df897d..7ff2aa444 100644 --- a/debian/control.in +++ b/debian/control.in @@ -63,8 +63,8 @@ Architecture: any Depends: ${shlibs:Depends}, ${misc:Depends}, libgpsLIBGPSSONAME (= ${binary:Version}), Suggests: gpsd -Breaks: python-gps, gpsd (<< 3.20-9) -Replaces: python-gps +Breaks: python-gps, gpsd (<< 3.20-9), gpsd-clients (<< 3.20-10) +Replaces: python-gps, gpsd-clients (<< 3.20-10) Description: Global Positioning System - tools The gpsd service daemon can monitor one or more GPS devices connected to a host computer, making all data on the location and movements of the diff --git a/debian/libgpsLIBGPSSONAME.symbols b/debian/libgpsLIBGPSSONAME.symbols index 03ae8f936..3f66558b5 100644 --- a/debian/libgpsLIBGPSSONAME.symbols +++ b/debian/libgpsLIBGPSSONAME.symbols @@ -9,8 +9,6 @@ libgps.so.LIBGPSSONAME libgpsLIBGPSSONAME #MINVER# (c++)"gpsmm::stream(int)@Base" 3.3 (c++)"gpsmm::waiting(int)@Base" 3.3 (c++)"gpsmm::~gpsmm()@Base" 3.3 - (c++)"gpsmm::~gpsmm()@Base" 3.3 - (c++)"gpsmm::~gpsmm()@Base" 3.3 (c++)"typeinfo for gpsmm@Base" 3.3 (c++)"typeinfo name for gpsmm@Base" 3.3 (c++)"vtable for gpsmm@Base" 3.3 diff --git a/debian/libqgpsmmLIBGPSSONAME.symbols b/debian/libqgpsmmLIBGPSSONAME.symbols index 84edae24e..d3d51ab01 100644 --- a/debian/libqgpsmmLIBGPSSONAME.symbols +++ b/debian/libqgpsmmLIBGPSSONAME.symbols @@ -36,18 +36,12 @@ libQgpsmm.so.LIBGPSSONAME libqgpsmmLIBGPSSONAME #MINVER# (c++)"gpsmm::waiting(int)@Base" 3.3 (c++)"gpsmm::clear_fix()@Base" 3.3 (c++)"gpsmm::~gpsmm()@Base" 3.3 - (c++)"gpsmm::~gpsmm()@Base" 3.3 - (c++)"gpsmm::~gpsmm()@Base" 3.3 -#MISSING: 3.18# (c++|optional)"QDebug::~QDebug()@Base" 3.3 #MISSING: 3.18# (c++|optional)"QDebug::~QDebug()@Base" 3.3 (c++|optional)"QString::~QString()@Base" 3.3 - (c++|optional)"QString::~QString()@Base" 3.3 - (c++|optional)"QList::~QList()@Base" 3.5 (c++|optional)"QList::~QList()@Base" 3.5 (c++)"typeinfo for gpsmm@Base" 3.3 (c++)"typeinfo name for gpsmm@Base" 3.3 (c++)"vtable for gpsmm@Base" 3.3 -#MISSING: 3.18# (c++|optional)"QByteArray::~QByteArray()@Base" 3.3 #MISSING: 3.18# (c++|optional)"QByteArray::~QByteArray()@Base" 3.3 (c++)"shiftleft(unsigned char*, int, unsigned short)@Base"
Bug#982949: Please allow libvirt-python 7.0.0 into bullseye
Hi Paul, On Wed, 2021-02-17 at 18:37 +0100, Paul Gevers wrote: > libvirt-python is a key package. and it should match libvirt. Having libvirt-python 6.x and libvirt 7.0 is (imho, ymmv...) much worse than an completely (from us) untested libvirt-python. Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Re: Virtual Debian BSP Salzburg
On Tue, 2021-02-09 at 19:31 +0100, Luna Jernberg wrote: > Hello! > > Is it okay to only attend some of the BSP Event?, Noticed now in my > calendar that i was double booked on that weekend Of course. Every single minute spent on fixing bugs is welcome :) -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#979341: transition: gpsd
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi release team, just in time gpsd upstream pushed the first release candidate of 3.22, which is due to be released within the next few days. As usual its comes with a soname bump and a small api change, so I've uploaded -rc1 to experimental, ready to upload to unstable. Only one build-rdep fails to build against it (foxtrotgps, fix in progress, #979252), as you can see here. https://salsa.debian.org/debian-gps-team/pkg-gpsd/-/pipelines/215214 Please ack the start of the transition. Thanks, Bernd Ben file: title = "gpsd"; is_affected = .depends ~ /^lib.*gps.*26$/ | .depends ~ /^lib.*gps.*28$/; is_good = .depends ~ /^lib.*gps.*28$/; is_bad = .depends ~ /^lib.*gps.*26$/; -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#948375: buster-pu: package ceph/12.2.12+dfsg-1
Hi Julien, > That's kind of unreadable. We like to have the proposed diff directly > in the p-u bug, along with a description of the changes, what they fix, > what the risks are. how does a 48k lines diff as text help you? Its a mix of fixes for about 70 bugs (and 12.2.13 was released already, so >>100 bugs). Of course, you can read the diff, but you wouldn't be able to review it properly. > Pointers to more information elsewhere are not bad, > but they don't replace information that should be in the bug. In this > case the upstream changelog doesn't really provide much context on which > if any of the fixed issues are serious enough for us to want the update > in stable. https://docs.ceph.com/docs/master/releases/luminous/#v12-2-11-luminous has all the info. Including links to th ebugs and the discussion. Including various CVEs. It is a stable point release, like it is done for firefox and others. it is very well tested by upstream and I will definitely not start to pick single commit - I don't have the infrastructure to run the regression tests and that is done by upstream in a proper way. And I hope you also don't want to risk to ship something that slowly degrades stored data. >> - I've basically imported the changes the Ubuntu people have done in >> Ubuntu together with 12.2.12. So I assume this should work well, I did >> not yet test it properly as I want to wait for a reply from you. I'll >> prepare a backport of 14.2.x as soon as it migrates to testing anyway. >> > A reply from us tends to not be forthcoming before the proposed changes > have been tested, so there's a bit of a chicken and egg issue. But I'm not wasting an enourmous amount of time if there is a chance that you say no anyway. >> - The issue with ceph is that upstream doesn't do QA for 32bit and our >> selection of unusual architectures. I don't know if it builds on all >> buildds without trying... >> > There should be porterboxes available for all our release architectures. I'll remove 32bit for bullseye, its way too broken to fix it properly anyway, and not supported by upstream anymore. It is really sad that Debian was not able to ship ceph in a proper state until now, the former maintainers had similar discussions with the release team and its even completely broken on arm64 in stable. Really sad about this, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#948375: buster-pu: package ceph/12.2.12+dfsg-1
Hi release team! any news on this? There are various bugs in ceph in buster and there was 12.2.13 released in the meantime... Bernd On 1/7/20 11:37 PM, Bernd Zeimetz wrote: > Package: release.debian.org > Severity: normal > Tags: buster > User: release.debian@packages.debian.org > Usertags: pu > > > Hi release-team! > > I have a bit complicated idea for a buster-pu: ceph. > Buster shipped with 12.2.11 and last April upstream released 12.2.12 as > bugfix release. As usual with ceph, the diff is *huge*, but it is a > bugfix-only release. So here are a few facts: > > - upstream changes: https://ceph.io/releases/v12-2-12-luminous-released/ > > - proposed diff: > > https://salsa.debian.org/ceph-team/ceph/compare/luminous%2Funstable...debian%2Fbuster > > - I've basically imported the changes the Ubuntu people have done in > Ubuntu together with 12.2.12. So I assume this should work well, I did > not yet test it properly as I want to wait for a reply from you. I'll > prepare a backport of 14.2.x as soon as it migrates to testing anyway. > > - The issue with ceph is that upstream doesn't do QA for 32bit and our > selection of unusual architectures. I don't know if it builds on all > buildds without trying... > > - 12.2.X is already EOL at ceph upstream I just took over the > maintenance of ceph, so... everything is late. Things should be better > for bullseye. > > - The packaging is not yet as close to the upstream packaging as I'd > like to have it. Upstream's packaging is very well tested and > supported, we should stick to that as far as possible. > > For bullseye we'll have the same question: Big updates from upstream as > their pointrelease. Target will probably be 15.2.X (Octopus), which is > not yet released, but I hope it will be before bullseye will go into > freeze. > > > So... whats your opinion on that? > > > Thanks, > > Bernd > -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Re: Bug#948722: qemu-block-extra, (build-)dependencies unsatisfiable on mipsel.
Hi, I might have a workaround, if ceph-dencoder is the only piece that fails. Unfortunately I doubt it is, but I'll give it a try in experimental soon. Bernd Am 16. Jänner 2020 00:55:11 MEZ schrieb peter green : >On 14/01/2020 10:24, Michael Tokarev wrote: >> Control: severity -1 normal >> Control: tag -1 + moreinfo >> >> 12.01.2020 18:37, peter green wrote: >>> Package: qemu-block-extra >>> Version: 1:4.2-1 >>> Severity: serious >>> >>> The binary packages built from the ceph source package were recently >removed from mipsel, because the new version of ceph runs out of >address space >>> during the build. Your package build-depends on libradios-dev and >librbd-dev and depends on librados2 and librbd1 which are built from >the ceph source >>> package. So qemu-block-extra is now uninstallable and the qemu >source package is unbuildable on mipsel. >> Hm. For the start, I see that new ceph packages are being built on >mips/mips64 >> right now as I write this. So things aren't that simple, at least. > >Ceph 14.2.4 was uploaded to unstable in late december, but failed to >build on many architectures. The maintainer found workarounds for most >of them, but could not find any soloution to the address space >exhaustion issue on mipsel (when a build says "out of memory" it nearly >always really means out of address space). > >With version 14.2.4-8 the maintainer decided it was time to give up on >mipsel, he removed mipsel from the architecture lists and filed a >removal request with the ftp masters. >https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947887 > >It seems that with version 1.4.2.5-1 mipsel was quietly re-added to the >achitecture list, I do not know if this was a mistake or if the >maintainer was deliberately testing if the problem had gone away. >Either way ceph has continued to fail to build on mipsel. > >> Next, even if we're now uninstallable on some architecture, it is >definitely not >> our fault, > >It's not about "fault". > >> so I don't see why this bugreport is of serious severity. >rc policy "Packages must be buildable within the same release." > >I'm not going to play severity ping-pong with you, but I am ccing the >ceph maintainers and the release team in-case they want to give a >position on this. >> Also, it has >> nothing to do with this particular version of qemu, either. >True enough, afaict normal practice is to file bugs against the current >version in testing/unstable unless there is reason not to. >>And more, it has >> nothing to do with qemu-block-extra package, too, even if that's the >only pkg >> which actually uses the library in question, -- we _build_-depend on >librados-dev >> too, so it is qemu source which FTBFS on mips. >If you would preffer to reassign to the source package that is fine by >me, doesn't make much practical difference. >> >> So far I don't quite understand what's going on with ceph on mips, >hence adding >> a "moreinfo" tag. We shouldn't drop optional features on different >architectures >> easily, > >If I thought this was just some transient issue I wouldn't have >bothered filing this bug, but I doubt it is. > >> or else it would quickly become a mess, not understanding which >features >> of which packages are enabled on which architecture (I speak here >about general >> debian, not about this particular (pair of) package). >At some point I think Debian needs to have a hard think about how >32-bit architectures are supported, possiblly introducing official >support for cross-building heavier packages, but so-far there doesn't >seem to have been a strong will to do so. -- Diese Nachricht wurde von meinem Android-Gerät mit K-9 Mail gesendet.
Re: Bug#948722: qemu-block-extra, (build-)dependencies unsatisfiable on mipsel.
On 2020-01-16 00:55, peter green wrote: It seems that with version 1.4.2.5-1 mipsel was quietly re-added to the achitecture list, I do not know if this was a mistake or if the maintainer was deliberately testing if the problem had gone away. Either way ceph has continued to fail to build on mipsel. That was actually only planned to happen for experimental, but was accidentally merged to unstable. I'm not going to play severity ping-pong with you, but I am ccing the ceph maintainers and the release team in-case they want to give a position on this. My position is easy: if you either fix clang #947886 or g++ #947886, then this issue will go away. There is nothing I can do about it, I've tested all useful combinations of memory-saving flags on ceph. As long as this does not happen, qemu needs to drop support for ceph on mipsel. What I can try is to build with clang-9 and see if that helps, but so far please remove ceph support from qemu on mipsel and be done. The other option would be to remove qemu from mipsel as I'd assume that the architectures is too slow to be useful for qemu anyway. -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#948468: (unplanned) transition: gpsd
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi release team, unfortunately gpsd upstream missed to change the soname version (seems its actually mentioned in the commit message, but the change is missing) and I also missed that one struct changed in a subtle way. Additionally I've learned that some build-rdeps use parts of libgps that are not part of the official API. These parts changed, so there will be some FTBFS. I'll take care of them where necessary, although I know that some people are already working on fixes (pabs for example). gpsd 3.20-2 is in NEW right now and will go to experimental, if you don't object I'd upload it to unstable to make the mess smaller than it is now. I'll also implement a CI check for soname bumps in the gpsd upstream CI ;) Ben file: title = "gpsd"; is_affected = .depends ~ /^lib.*gps.*25$/ | .depends ~ /^lib.*gps.*26$/; is_good = .depends ~ /^lib.*gps.*26$/; is_bad = .depends ~ /^lib.*gps.*25$/; Sorry & thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#948375: buster-pu: package ceph/12.2.12+dfsg-1
Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu Hi release-team! I have a bit complicated idea for a buster-pu: ceph. Buster shipped with 12.2.11 and last April upstream released 12.2.12 as bugfix release. As usual with ceph, the diff is *huge*, but it is a bugfix-only release. So here are a few facts: - upstream changes: https://ceph.io/releases/v12-2-12-luminous-released/ - proposed diff: https://salsa.debian.org/ceph-team/ceph/compare/luminous%2Funstable...debian%2Fbuster - I've basically imported the changes the Ubuntu people have done in Ubuntu together with 12.2.12. So I assume this should work well, I did not yet test it properly as I want to wait for a reply from you. I'll prepare a backport of 14.2.x as soon as it migrates to testing anyway. - The issue with ceph is that upstream doesn't do QA for 32bit and our selection of unusual architectures. I don't know if it builds on all buildds without trying... - 12.2.X is already EOL at ceph upstream I just took over the maintenance of ceph, so... everything is late. Things should be better for bullseye. - The packaging is not yet as close to the upstream packaging as I'd like to have it. Upstream's packaging is very well tested and supported, we should stick to that as far as possible. For bullseye we'll have the same question: Big updates from upstream as their pointrelease. Target will probably be 15.2.X (Octopus), which is not yet released, but I hope it will be before bullseye will go into freeze. So... whats your opinion on that? Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#942044: buster-pu: package open-vm-tools/2:10.3.10-1+deb10u2
Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu Hi release-team, I'd like to update open-vm-tools with the next pointrelease as upstream found some memory leaks which need to be fixed. This includes a very minor security issue where root would have access to soon expiring saml tokens - but root has access to them anyway (for example by running a hacked version of open-vm-tools). This is #941955 Upstream changes are here: https://github.com/vmware/open-vm-tools/commits/stable-10.3.10-vix-memory-leaks debdiff is attached to this mail. Please let me know when I can upload the buster-pu. Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index 316bfa27..8432b78a 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,17 @@ +open-vm-tools (2:10.3.10-1+deb10u2) buster; urgency=medium + + * [d512626] Fix memory leaks and error handling. +From the upstream stable-10.3.10-vix-memory-leaks branch: +commit 26b9edbeb79d1c67b9ae73a0c97c48999c1fb503 +Fix leaks in ListAliases and ListMappedAliases +commit 7b874f37f970aab2adddb063a8363594f47abf70 +End VGAuth impersonation in the case of error. +commit 015db4c06a8be65eb96cf62421e8b5366993452f +Fix memory leaks in 'vix' tools plugin. +Thanks to Oliver Kurth (Closes: #941955) + + -- Bernd Zeimetz Wed, 09 Oct 2019 14:18:48 +0200 + open-vm-tools (2:10.3.10-1+deb10u1) buster; urgency=medium * [efb4df1] Fix guest OS reporting for Debian/Buster. diff --git a/debian/patches/015db4c0_Fix-memory-leaks-in-vix-tools-plugin b/debian/patches/015db4c0_Fix-memory-leaks-in-vix-tools-plugin new file mode 100644 index ..e0d161c1 --- /dev/null +++ b/debian/patches/015db4c0_Fix-memory-leaks-in-vix-tools-plugin @@ -0,0 +1,80 @@ +From 015db4c06a8be65eb96cf62421e8b5366993452f Mon Sep 17 00:00:00 2001 +From: Oliver Kurth +Date: Wed, 29 Aug 2018 13:29:45 -0700 +Subject: [PATCH] Fix memory leaks in 'vix' tools plugin. + +* vix plugin retrieves the power script file paths from the +config file but doesn't free them and this causes a memory leak. +Fixed the code to free the filepaths. + +* In GuestAuthPasswordAuthenticateImpersonate function, the VGAuth +handle is not freed when the impersonation fails. Fixed the +code to call VGAuth_UserHandleFree in the error path. + +Note: I executed one guest operation with wrong credentials. +Every failure leaks 75 bytes of memory. (in Centos 64-bit VM) + +* Fixed another minor issue in the code. At couple of places in +the code, replaced 'err' with 'vgErr' for storing the return value +of VGAuth_UserHandleAccessToken. +--- + open-vm-tools/services/plugins/vix/vixTools.c | 20 +-- + 1 file changed, 14 insertions(+), 6 deletions(-) + +--- a/open-vm-tools/services/plugins/vix/vixTools.c b/open-vm-tools/services/plugins/vix/vixTools.c +@@ -2522,10 +2522,10 @@ VixTools_GetToolsPropertiesImpl(GKeyFile +char *guestName; +int osFamily; +char *packageList = NULL; +- const char *powerOffScript = NULL; +- const char *powerOnScript = NULL; +- const char *resumeScript = NULL; +- const char *suspendScript = NULL; ++ char *powerOffScript = NULL; ++ char *powerOnScript = NULL; ++ char *resumeScript = NULL; ++ char *suspendScript = NULL; +char *osName = NULL; +char *osNameFull = NULL; +Bool foundHostName; +@@ -2726,6 +2726,10 @@ abort: +free(tempDir); +free(osName); +free(osNameFull); ++ free(suspendScript); ++ free(resumeScript); ++ free(powerOnScript); ++ free(powerOffScript); + #else +/* + * FreeBSD. We do not require all the properties above. +@@ -11583,7 +11587,7 @@ GuestAuthPasswordAuthenticateImpersonate + + #ifdef _WIN32 +// this is making a copy of the token, be sure to close it +- err = VGAuth_UserHandleAccessToken(ctx, newHandle, userToken); ++ vgErr = VGAuth_UserHandleAccessToken(ctx, newHandle, userToken); +if (VGAUTH_FAILED(vgErr)) { + err = VixToolsTranslateVGAuthError(vgErr); + goto done; +@@ -11599,6 +11603,10 @@ done: +free(username); +Util_ZeroFreeString(password); + ++ if (VIX_OK != err) { ++ VGAuth_UserHandleFree(newHandle); ++ newHandle = NULL; ++ } +return err; + #else +return VIX_E_NOT_SUPPORTED; +@@ -11729,7 +11737,7 @@ impersonate: + + #ifdef _WIN32 +// this is making a copy of the token, be sure to close it +- err = VGAuth_UserHandleAccessToken(ctx, newHandle, userToken); ++ vgErr = VGAuth_UserHandleAccessToken(ctx, newHandle, userToken); +if (VGAUTH_FAILED(vgErr)) { + err = VixToolsTranslateVGAuthError(vgErr); + goto done; diff --git a/debian/patches/26b9edbe_Fix-leaks-in-ListAliases-and-ListMappedAliases
Bug#941289: transition: gpsd
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi, I'd (finally) like to start the gpsd transition to libgps25 and friends. There reverse dependencies build well against the new version (thanks to Christian Ehrhardt for testing), with the only exception being collectd, which is RC buggy and not in testing right now anyway. The rc issues (and others) seem to be fixed in an upcoming upstream release - and I don't want to wait for that.. There were some other broken rdeps, but they are removed from the archive for good... Please let me know when I should upload to unstable. Thanks, Bernd Ben file: title = "gpsd"; is_affected = .depends ~ /^lib.*gps.*23$/ | .depends ~ /^lib.*gps.*25$/; is_good = .depends ~ /^lib.*gps.*25$/; is_bad = .depends ~ /^lib.*gps.*23$/; -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#934183: buster-pu: package open-vm-tools/2:10.3.10-1+deb10u1
On 8/18/19 4:35 PM, Adam D. Barratt wrote: > On Wed, 2019-08-07 at 21:44 +0200, Bernd Zeimetz wrote: >> I'd like to upload a fix for open-vm-tools to proposed-updates which >> actually allows to recognize buster. >> >> `lsb_release -sd` currently prints >> Debian GNU/Linux 10 (buster) >> but the current implementation in open-vm-tools expects 10. in the >> output. > > Please go ahead; thanks. Uploaded. Thanks, Bend -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#934183: stretch-pu: package open-vm-tools/2:10.3.10-1+deb10u1
Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu Hi release-team, I'd like to upload a fix for open-vm-tools to proposed-updates which actually allows to recognize buster. `lsb_release -sd` currently prints Debian GNU/Linux 10 (buster) but the current implementation in open-vm-tools expects 10. in the output. I'd assume that this issue will be fixed with the pointrelease anyway, as the lsb_release output should change to 10.1, but I think it makes sense to fix it, just in case people do partial upgrades. Diff is attached. Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index fdd98af2..316bfa27 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,17 @@ +open-vm-tools (2:10.3.10-1+deb10u1) buster; urgency=medium + + * [efb4df1] Fix guest OS reporting for Debian/Buster. +Without this fix, open-vm-tools report other4xLinux64Guest instead of +Debian/Buster. +Reason is the output of lsb_release, which outputs: +$ lsb_release -sd +Debian GNU/Linux 10 (buster) +But the code in open-vm-tools expects '10.'. +Thanks to Oliver Kurth (Closes: #934005) + * [2308b74] Updating gbp.conf for buster. + + -- Bernd Zeimetz Wed, 07 Aug 2019 21:09:29 +0200 + open-vm-tools (2:10.3.10-1) unstable; urgency=high * [122e511] Update upstream source from tag 'upstream/10.3.10' diff --git a/debian/gbp.conf b/debian/gbp.conf index bf4163e8..9a54689e 100644 --- a/debian/gbp.conf +++ b/debian/gbp.conf @@ -1,3 +1,6 @@ +[DEFAULT] +debian-branch = buster + [buildpackage] sign-tags = True posttag = git push && git push --tags diff --git a/debian/patches/fix-buster-OS-reporting b/debian/patches/fix-buster-OS-reporting new file mode 100644 index ..eb9b2159 --- /dev/null +++ b/debian/patches/fix-buster-OS-reporting @@ -0,0 +1,11 @@ +--- a/open-vm-tools/lib/misc/hostinfoPosix.c b/open-vm-tools/lib/misc/hostinfoPosix.c +@@ -814,7 +814,7 @@ HostinfoGetOSShortName(char *distro, + Str_Strcpy(distroShort, STR_OS_DEBIAN_8, distroShortSize); + } else if (strstr(distroLower, "9.")) { + Str_Strcpy(distroShort, STR_OS_DEBIAN_9, distroShortSize); +- } else if (strstr(distroLower, "10.")) { ++ } else if (strstr(distroLower, "10")) { + Str_Strcpy(distroShort, STR_OS_DEBIAN_10, distroShortSize); + } +} else if (StrUtil_StartsWith(distroLower, "enterprise linux") || diff --git a/debian/patches/series b/debian/patches/series index 8140b204..39debc1e 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -1,3 +1,4 @@ debian/pam-use-common-auth-account debian/max_nic_count debian/scsi-udev-rule +fix-buster-OS-reporting
Bug#926481: stretch-pu: package open-vm-tools/2:10.1.5-5055683-4+deb9u2
Hi Salvatore, On 4/26/19 10:06 PM, Salvatore Bonaccorso wrote: > Hi Bernd, > > On Sat, Apr 13, 2019 at 09:56:16PM +0100, Adam D. Barratt wrote: >> Control: tags -1 + confirmed >> >> On Fri, 2019-04-05 at 23:15 +0200, Bernd Zeimetz wrote: >>> as discuassed with the security team, I'd like to fix #925959 >>> with the next stable pointrelease. The proposed debdiff is attached. >>> >> >> Please go ahead. > > Did you saw the the ack from Adam? It is now unfortunately too late > for this upcoming point release, but would then be possible for the > next one. yes, unfortunately I was pretty busy, so it took some time :( Uploaded a few seconds ago. Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#929517: unblock: gpsd/3.17-7
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi release-team, please unblock package gpsd Lisandro Damián Nicanor Pérez Meyer reported, that it is unnecessary hard for an admin to enable gpsd to start at boot time (instead of relying on udev to handle it). I think this should be fixed for buster. Patch is attached. Thanks, bernd unblock gpsd/3.17-7 -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index 16bb69795..4d554b0d0 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,13 @@ +gpsd (3.17-7) unstable; urgency=medium + + [ Lisandro Damián Nicanor Pérez Meyer ] + * [ffb32ff8] Allow gpsd.service to be enabled by the admin at boot time. +Be sure to keep it disabled. The admin needs to explicitely start +it if needed. +Closes: #928681 + + -- Bernd Zeimetz Sat, 25 May 2019 11:55:30 +0200 + gpsd (3.17-6) unstable; urgency=medium * [0a8e4e18] Pull json fixes from upstream to fix a stack-based diff --git a/debian/patches/full-systemd-support b/debian/patches/full-systemd-support index 4624e110a..0fd20724c 100644 --- a/debian/patches/full-systemd-support +++ b/debian/patches/full-systemd-support @@ -1,6 +1,6 @@ --- a/systemd/gpsd.service +++ b/systemd/gpsd.service -@@ -7,9 +7,7 @@ After=chronyd.service +@@ -7,8 +7,7 @@ After=chronyd.service [Service] Type=forking EnvironmentFile=-/etc/default/gpsd @@ -9,5 +9,4 @@ +ExecStart=/usr/sbin/gpsd $GPSD_OPTIONS $DEVICES [Install] --WantedBy=multi-user.target - Also=gpsd.socket + WantedBy=multi-user.target diff --git a/debian/rules b/debian/rules index e458b9ca1..7e7e5a6fe 100755 --- a/debian/rules +++ b/debian/rules @@ -190,7 +190,8 @@ binary: install-stamp dh_installdocs dh_installman dh_installmenu - dh_systemd_enable -pgpsd + dh_installsystemd -pgpsd --restart-after-upgrade gpsdctl@.service gpsd.socket + dh_installsystemd -pgpsd --no-enable --no-start gpsd.service dh_installinit dh_systemd_start -pgpsd --restart-after-upgrade dh_installexamples
Bug#926610: unblock: ceph/12.2.11+dfsg1-2.1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi release team, please unblock package ceph. I've NMUed it to add a missing systemd @.service file, which basically renedered the package unusuable (unless you'd be doing crazy stuff which is far away from the documented process of setting up a ceph cluster). Find the short diff below. unblock ceph/12.2.11+dfsg1-2.1 Thanks, Bernd bzed@think ~debian/BSP/ceph (git)-[luminous/unstable] % git diff-tree -p debian/12.2.11+dfsg1-2..debian/12.2.11+dfsg1-2.1 diff --git a/debian/changelog b/debian/changelog index 92d40bfbe4..44d4e3a672 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,11 @@ +ceph (12.2.11+dfsg1-2.1) unstable; urgency=medium + + * Non-maintainer upload. + * [3194010] Install ceph-volume@.service into ceph-osd. +(Closes: #924061) + + -- Bernd Zeimetz Fri, 05 Apr 2019 15:12:52 +0200 + ceph (12.2.11+dfsg1-2) unstable; urgency=medium * [27a321] Fix builds on 32bit architectures diff --git a/debian/rules b/debian/rules index d167e96e96..ae1c2270e1 100755 --- a/debian/rules +++ b/debian/rules @@ -123,8 +123,10 @@ override_dh_installinit: install -d -m0755 debian/ceph-osd/lib/systemd/system install -m0644 systemd/ceph-osd@.service debian/ceph-osd/lib/systemd/system install -m0644 systemd/ceph-disk@.service debian/ceph-osd/lib/systemd/system + install -m0644 systemd/ceph-volume@.service debian/ceph-osd/lib/systemd/system sed -i s./etc/sysconfig/./etc/default/.g debian/ceph-osd/lib/systemd/system/ceph-osd@.service sed -i s./etc/sysconfig/./etc/default/.g debian/ceph-osd/lib/systemd/system/ceph-disk@.service + sed -i s./etc/sysconfig/./etc/default/.g debian/ceph-osd/lib/systemd/system/ceph-volume@.service install -m0644 systemd/ceph-osd.target debian/ceph-osd/lib/systemd/system # systemd:ceph-mds install -d -m0755 debian/ceph-mds/lib/systemd/system bzed@think ~debian/BSP/ceph (git)-[luminous/unstable] % -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#926548: unblock: nfs-utils/1:1.3.4-2.5
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi release-team, please unblock package nfs-utils. I've NMUed the package to fix #895381: [ Micha Lenk ] * [abaa2ab] handle_gssd_upcall: Fix failure to find uid in upcall string 'mech=krb5' by adding the suggested upstream commits as debian/patches/0010-gssd-replace-non-thread-safe-strtok-with-strsep.patch and debian/patches/0011-gssd-Duplicate-the-upcall-string-for-error-messages.patch. rpc.gssd: WARNING: handle_gssd_upcall: failed to find uid in upcall string 'mech=krb5' (Closes: #895381) Diff is attached. unblock nfs-utils/1:1.3.4-2.5 Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index bd57693..f341ef5 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,17 @@ +nfs-utils (1:1.3.4-2.5) unstable; urgency=medium + + * Non-maintainer upload. + + [ Micha Lenk ] + * [abaa2ab] handle_gssd_upcall: Fix failure to find uid in upcall string 'mech=krb5' +by adding the suggested upstream commits as +debian/patches/0010-gssd-replace-non-thread-safe-strtok-with-strsep.patch and + debian/patches/0011-gssd-Duplicate-the-upcall-string-for-error-messages.patch. +rpc.gssd: WARNING: handle_gssd_upcall: failed to find uid in upcall string 'mech=krb5' +(Closes: #895381) + + -- Bernd Zeimetz Sat, 06 Apr 2019 18:30:39 +0200 + nfs-utils (1:1.3.4-2.4) unstable; urgency=medium [ Laurent Bigonville ] diff --git a/debian/patches/0010-gssd-replace-non-thread-safe-strtok-with-strsep.patch b/debian/patches/0010-gssd-replace-non-thread-safe-strtok-with-strsep.patch new file mode 100644 index 000..ee0c376 --- /dev/null +++ b/debian/patches/0010-gssd-replace-non-thread-safe-strtok-with-strsep.patch @@ -0,0 +1,41 @@ +From: Frank Sorenson +Date: Wed, 15 Feb 2017 10:36:47 -0500 +Subject: gssd: replace non-thread-safe strtok with strsep + +gssd uses the non-thread-safe strtok() function, which +can lead to incorrect program behavior. + +Replace strtok() with the thread-safe strsep(). + +Signed-off-by: Frank Sorenson +Signed-off-by: Steve Dickson + +Origin: upstream, http://git.linux-nfs.org/?p=steved/nfs-utils.git;a=commitdiff;h=5ae8be8 +Bug: https://bugzilla.redhat.com/show_bug.cgi?id=1419280 +Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=895381 +Last-Update: 2019-04-05 + +--- + utils/gssd/gssd_proc.c | 3 ++- + 1 file changed, 2 insertions(+), 1 deletion(-) + +diff --git a/utils/gssd/gssd_proc.c b/utils/gssd/gssd_proc.c +index d74d3724..30c6aceb 100644 +--- a/utils/gssd/gssd_proc.c b/utils/gssd/gssd_proc.c +@@ -729,10 +729,11 @@ handle_gssd_upcall(struct clnt_upcall_info *info) + char*target = NULL; + char*service = NULL; + char*enctypes = NULL; ++ char*pbuf = info->lbuf; + + printerr(2, "\n%s: '%s' (%s)\n", __func__, info->lbuf, clp->relpath); + +- for (p = strtok(info->lbuf, " "); p; p = strtok(NULL, " ")) { ++ while ((p = strsep(, " "))) { + if (!strncmp(p, "mech=", strlen("mech="))) + mech = p + strlen("mech="); + else if (!strncmp(p, "uid=", strlen("uid="))) +-- +2.20.1 + diff --git a/debian/patches/0011-gssd-Duplicate-the-upcall-string-for-error-messages.patch b/debian/patches/0011-gssd-Duplicate-the-upcall-string-for-error-messages.patch new file mode 100644 index 000..fa42430 --- /dev/null +++ b/debian/patches/0011-gssd-Duplicate-the-upcall-string-for-error-messages.patch @@ -0,0 +1,92 @@ +From: Frank Sorenson +Date: Wed, 15 Feb 2017 10:38:53 -0500 +Subject: gssd: Duplicate the upcall string for error messages + +strsep() modifies the input string, so error messages +may output only part of the upcall string. + +Make a copy of the upcall string, and use that in any +error messages. + +Signed-off-by: Frank Sorenson +Signed-off-by: Steve Dickson + +Origin: upstream, http://git.linux-nfs.org/?p=steved/nfs-utils.git;a=commitdiff;h=0a4f5e4 +Bug: https://bugzilla.redhat.com/show_bug.cgi?id=1419280 +Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=895381 +Last-Update: 2019-04-05 + +--- + utils/gssd/gssd_proc.c | 17 + + 1 file changed, 13 insertions(+), 4 deletions(-) + +diff --git a/utils/gssd/gssd_proc.c b/utils/gssd/gssd_proc.c +index 30c6aceb..4fc81c30 100644 +--- a/utils/gssd/gssd_proc.c b/utils/gssd/gssd_proc.c +@@ -729,10 +729,17 @@ handle_gssd_upcall(struct clnt_upcall_info *info) + char*target = NULL; + char*service
Bug#926484: unblock: gpsd/3.17-6
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi release-team, please unblock package gpsd. The applied diff was discussed with the release team and we've decided its the best way to fix the json related fixes. Diff between 3.17-5 und 3.17-6 is attached to this mail. * [0a8e4e18] Pull json fixes from upstream to fix a stack-based buffer overflow, which may allow remote attackers to execute arbitrary code on embedded platforms via traffic on Port 2947/TCP or crafted JSON inputs. CVE-2018-17937 / Closes: #925327 The update also fixes several other json parser bugs. - ECMA-404 says JSON \u must have 4 hex digits - Allow for \u escapes with fewer than 4 digits. - Fail on bad escape string. unblock gpsd/3.17-6 Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index ebd29108b..16bb69795 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,19 @@ +gpsd (3.17-6) unstable; urgency=medium + + * [0a8e4e18] Pull json fixes from upstream to fix a stack-based +buffer overflow, which may allow remote attackers to execute +arbitrary code on embedded platforms via traffic on Port +2947/TCP or crafted JSON inputs. +CVE-2018-17937 / Closes: #925327 +The update also fixes several other json parser bugs. +- ECMA-404 says JSON \u must have 4 hex digits +- Allow for \u escapes with fewer than 4 digits. +- Fail on bad escape string. + * [71020f4f] Update git-buildpackage config to build from the +buster branch. + + -- Bernd Zeimetz Fri, 05 Apr 2019 23:31:30 +0200 + gpsd (3.17-5) unstable; urgency=medium * [fd1e83f9] Add pkg-config as Build-Dependency. diff --git a/debian/gbp.conf b/debian/gbp.conf index 1529a93db..151b02d6b 100644 --- a/debian/gbp.conf +++ b/debian/gbp.conf @@ -4,7 +4,7 @@ # the default branch for upstream sources: #upstream-branch = upstream # the default branch for the debian patch: -#debian-branch = master +debian-branch = buster # the default tag formats used: #upstream-tag = upstream/%(version)s #debian-tag = debian/%(version)s diff --git a/debian/patches/json-cve-fix b/debian/patches/json-cve-fix new file mode 100644 index 0..e81237bee --- /dev/null +++ b/debian/patches/json-cve-fix @@ -0,0 +1,170 @@ +--- a/json.c b/json.c +@@ -30,7 +30,7 @@ will match the right spec against the ac + recognize the JSON "null" value. Secondly, arrays may not have + character values as elements (this limitation could be easily removed + if required). Third, all elements of an array must be of the same +-type. ++type. Fourth, it can not handle NaN's in doubles (Issue 53150). + +There are separate entry points for beginning a parse of either + JSON object or a JSON array. JSON "float" quantities are actually +@@ -59,7 +59,7 @@ reusable module; search for "microjson". + + PERMISSIONS +This file is Copyright (c) 2010 by the GPSD project +- BSD terms apply: see the file COPYING in the distribution root for details. ++ SPDX-License-Identifier: BSD-2-clause + + ***/ + #include +@@ -188,7 +188,7 @@ static int json_internal_read_object(con + char *lptr; + + if (end != NULL) +- *end = NULL;/* give it a well-defined value on parse failure */ ++ *end = NULL;/* give it a well-defined value on parse failure */ + + /* stuff fields with defaults in case they're omitted in the JSON input */ + for (cursor = attrs; cursor->attribute != NULL; cursor++) +@@ -294,7 +294,8 @@ static int json_internal_read_object(con + } + if (cursor->attribute == NULL) { + json_debug_trace((1, +-"Unknown attribute name '%s' (attributes begin with '%s').\n", ++"Unknown attribute name '%s'" ++ " (attributes begin with '%s').\n", + attrbuf, attrs->attribute)); + /* don't update end here, leave at attribute start */ + return JSON_ERR_BADATTR; +@@ -374,6 +375,12 @@ static int json_internal_read_object(con + if (pval == NULL) + /* don't update end here, leave at value start */ + return JSON_ERR_NULLPTR; ++ else if (pval > valbuf + JSON_VAL_MAX - 1 ++ || pval > valbuf + maxlen) { ++ json_debug_trace((1, "String value too long.\n")); ++ /* don't update end here, leave at value start */ ++ return JSON_ERR_STRLONG;/* */
Bug#926481: stretch-pu: package open-vm-tools/2:10.1.5-5055683-4+deb9u2
Package: release.debian.org Severity: normal Tags: stretch User: release.debian@packages.debian.org Usertags: pu Hi release team, as discuassed with the security team, I'd like to fix #925959 with the next stable pointrelease. The proposed debdiff is attached. Please let me know if its okay to upload. Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index 0be9f865..9b8f4cbb 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,20 @@ +open-vm-tools (2:10.1.5-5055683-4+deb9u2) stable; urgency=medium + + * [34db05f] /tmp/VMwareDnD permissions security fix. +Fix possible security issue with the permissions of the intermediate +staging directory and path +/tmp/VMwareDnD is a staging directory used for DnD and CnP. It should be +a regular directory, but malicious code or user may create the /tmp/VMwareDnD +as a symbolic link which points elsewhere on the system. This may provide +user access to user B's files. +Do not set the permission of the root directory if the root directory +already exists and has the wrong permission. The permission of the directory +must be 1777 if it is created by the VMToolsi. If not, then the directory +has been created or modified by malicious code or user, so just cancel the +host to guest DnD or CnP operation. (Closes: #925959) + + -- Bernd Zeimetz Fri, 05 Apr 2019 23:10:04 +0200 + open-vm-tools (2:10.1.5-5055683-4+deb9u1) stretch; urgency=medium * [dec8df6] Upstream fix for CVE-2015-5191 (Closes: #869633) diff --git a/debian/patches/e88f91b00a715b79255de6576506d80ecfdb064c_vmware_dnd_fix.patch b/debian/patches/e88f91b00a715b79255de6576506d80ecfdb064c_vmware_dnd_fix.patch new file mode 100644 index ..43daed8a --- /dev/null +++ b/debian/patches/e88f91b00a715b79255de6576506d80ecfdb064c_vmware_dnd_fix.patch @@ -0,0 +1,54 @@ +commit e88f91b00a715b79255de6576506d80ecfdb064c +Author: Oliver Kurth +Date: Tue Jan 29 14:03:19 2019 -0800 + +Fix possible security issue with the permissions of the intermediate +staging directory and path + +/tmp/VMwareDnD is a staging directory used for DnD and CnP. It should be +a regular directory, but malicious code or user may create the /tmp/VMwareDnD +as a symbolic link which points elsewhere on the system. This may provide +user access to user B's files. + +Do not set the permission of the root directory if the root directory +already exists and has the wrong permission. The permission of the directory +must be 1777 if it is created by the VMToolsi. If not, then the directory +has been created or modified by malicious code or user, so just cancel the +host to guest DnD or CnP operation. + +--- a/open-vm-tools/services/plugins/dndcp/dnd/dndCommon.c b/open-vm-tools/services/plugins/dndcp/dnd/dndCommon.c +@@ -276,12 +276,11 @@ DnDCreateRootStagingDirectory(void) +} + +if (File_Exists(root)) { +- if (!DnDRootDirUsable(root) && +- !DnDSetPermissionsOnRootDir(root)) { ++ if (!DnDRootDirUsable(root)) { + /* +- * The directory already exists and its permissions are wrong and +- * cannot be set, so there's not much we can do. ++ * The directory already exists and its permissions are wrong. + */ ++ Log("%s: The root dir is not usable.\n", __FUNCTION__); + return NULL; + } +} else { +--- a/open-vm-tools/services/plugins/dndcp/dnd/dndXdg.c b/open-vm-tools/services/plugins/dndcp/dnd/dndXdg.c +@@ -318,12 +318,11 @@ CreateApparentRootDirectory(void) +} + +if (File_Exists(root)) { +- if ( !DnDRootDirUsable(root) +- && !DnDSetPermissionsOnRootDir(root)) { ++ if (!DnDRootDirUsable(root)) { + /* +- * The directory already exists and its permissions are wrong and +- * cannot be set, so there's not much we can do. ++ * The directory already exists and its permissions are wrong. + */ ++ Log_Trivia("dnd: The root dir is not usable.\n"); + return NULL; + } +} else { diff --git a/debian/patches/series b/debian/patches/series index 2c8fbff7..58f5849b 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -5,3 +5,4 @@ from_arch/0001-Fix-vmxnet-module-on-kernels-3.16.patch debian/enable_vmhgfs-fuse_by_default debian/vmxnet_fix_kernel_4.7.patch debian/cve-2015-5191.patch +e88f91b00a715b79255de6576506d80ecfdb064c_vmware_dnd_fix.patch
Bug#924550: unblock: open-vm-tools/2:10.3.5-8
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package open-vm-tools Together with the people from VMware and Canonical two bugs that were mainly race conditions on boot time. - ensure the vmwgfx is being loaded before vmtoolsd is run - ensure vgauth is started before vmtoolsd a third patch is an Ubuntu-only change and does not affect Debian at all. Patch series is attached. Thanks a lot, Bernd unblock open-vm-tools/2:10.3.5-8 -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F >From 71b468f7f855139adfc8cd48cc0f63167d01b9bb Mon Sep 17 00:00:00 2001 From: Christian Ehrhardt Date: Mon, 4 Mar 2019 09:30:57 +0100 Subject: [PATCH 1/5] make vgauth service execution more reliable Since d3d47039 "Start vgauth before vmtoolsd" there is a potential race of starting vgauth so early that it might have issues. This was discussed back in the day in [1] to [2], but confirmed to be ok by VMWare. We were all somewhat convinced by this, but a bad feeling remained not only with me but also with Bernd [4]. A recent SRU review denial made me rethink all of it and I think we can make it safer without thwarting the purpose of the original change. Note: Disambiguation of service names used below: vgauth - open-vm-tools.vgauth.service vmtoolsd - open-vm-tools.service fs - systemd-remount-fs.service tmp- systemd-tmpfiles-setup.service cloud-init - cloud-init-local.service Currently we have these dependency requirements: - vgauth should be before vmtoolsd - cloud init should be before vmtoolsd - cloud init has to be really early in general - therefore this is using DefaultDependencies=No That lead to this graph: fs / tmp -> vmtoolsd -> cloud-init And d3d47039 added it to be like: fs / tmp -> vmtoolsd -> cloud-init ^ vgauth --| But there is no need to have vgauth without any pre-dependencies at all. It is only needed to be "before" vmtoolsd, therefore we can make it: fs / tmp -> vgauth -> vmtoolsd -> cloud-init That will make execution of vgauth much less error-prone (even though I have no hard issue to report) while at the same time holding up all known required ordering constraints. [1]: https://bugs.launchpad.net/ubuntu/+source/open-vm-tools/+bug/1804287/comments/3 [2]: https://bugs.launchpad.net/ubuntu/+source/open-vm-tools/+bug/1804287/comments/12 [3]: https://bugs.launchpad.net/ubuntu/+source/open-vm-tools/+bug/1804287/comments/25 [4]: https://github.com/bzed/pkg-open-vm-tools/pull/15#issuecomment-447237910 Signed-off-by: Christian Ehrhardt --- debian/open-vm-tools.vgauth.service | 1 + 1 file changed, 1 insertion(+) diff --git a/debian/open-vm-tools.vgauth.service b/debian/open-vm-tools.vgauth.service index af538a6a..86f03f22 100644 --- a/debian/open-vm-tools.vgauth.service +++ b/debian/open-vm-tools.vgauth.service @@ -3,6 +3,7 @@ Description=Authentication service for virtual machines hosted on VMware Documentation=http://github.com/vmware/open-vm-tools ConditionVirtualization=vmware DefaultDependencies=no +After=systemd-remount-fs.service systemd-tmpfiles-setup.service PartOf=open-vm-tools.service [Service] -- 2.20.1 >From e1198113a6cf0d5c952b57c748b266bdd6b6c1f0 Mon Sep 17 00:00:00 2001 From: Bernd Zeimetz Date: Mon, 4 Mar 2019 20:03:56 +0100 Subject: [PATCH 2/5] Updating changelog --- debian/changelog | 43 +++ 1 file changed, 43 insertions(+) diff --git a/debian/changelog b/debian/changelog index c611227f..d7ffa8bb 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,46 @@ +open-vm-tools (2:10.3.5-7) unstable; urgency=medium + + [ Christian Ehrhardt ] + * [71b468f] make vgauth service execution more reliable. +Since d3d47039 "Start vgauth before vmtoolsd" there is a potential race +of starting vgauth so early that it might have issues. This was +discussed back in the day in [1] to [2], but confirmed to be ok by +VMWare. +We were all somewhat convinced by this, but a bad feeling remained not +only with me but also with Bernd [4]. +A recent SRU review denial made me rethink all of it and I think we can +make it safer without thwarting the purpose of the original change. +Note: Disambiguation of service names used below: +vgauth - open-vm-tools.vgauth.service +vmtoolsd - open-vm-tools.service +fs - systemd-remount-fs.service +tmp- systemd-tmpfiles-setup.service +cloud-init - cloud-init-local.service +Currently we have these dependency requirements: +- vgauth should be before vmtoolsd +- cloud init should be before vmtoolsd +- cloud init has to be really early in general + - therefore this is
Bug#894159: transition: icu
Hi, > pyicu FTBFS, seems unmaintained. Last upload was in 2016 and since then > there were seven upstream releases. Version 1.9.8+ builds fine with the new > ICU version. Maintainer also Cc-d, may I overtake it? unmaintained is the wrong word, I try to have it uptodate before the next release - and I'm almost sure that I've uploaded the current version before the last freeze. I'd be happy if you could maintain it - I'm missing the time for it. Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#879440: transition: gpsd
Hi, On 10/26/2017 10:52 AM, Emilio Pozuelo Monfort wrote: > How do you know that there won't be build failures? Did you review the > upstream > changes, particularly the ABI breaks, and verified that none of the rdeps use > any of the removed symbols, removed struct fields...? yes, I'm doing that since libgps12 or so and never had a transition that was not smooth. gpsd upstream (including myself, who is doing a lot of testing before a release actually happens) is sane and as long as people use documented stuff from libgps.h they are safe as long as there is not api breakage announced. > Can you do a quick rdep > rebuild? There are tools to help with that, e.g. ratt. done that just for you, but excluding the KDE stuff which builds for way too long - yes, all thing just build fine. Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#879552: transition: freeipmi
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition hi release team, freeipmi needs a transistion - I've uploaded the new version to experimental, will have to go trough NEW first, though. I don't expect any breakages for binNMUs. Please let me know when I can upload it to unstable. Cheers, Bernd Ben file: title = "freeipmi"; is_affected = .depends ~ /libfreeipmi16|libipmimonitoring5a/ | .depends ~ /libfreeipmi17|libipmimonitoring6/; is_good = .depends ~ /libfreeipmi17|libipmimonitoring6/; is_bad = .depends ~ /libfreeipmi16|libipmimonitoring5a/; -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#879440: transition: gpsd
Hi, uploaded to exp. cheers, Bernd On 10/21/2017 06:30 PM, Emilio Pozuelo Monfort wrote: > Control: tags -1 moreinfo > > On 21/10/17 17:55, Bernd Zeimetz wrote: >> Package: release.debian.org >> Severity: normal >> User: release.debian@packages.debian.org >> Usertags: transition >> >> hi release team, >> >> the libgps libray has some symbol changes and needs a soname bump. >> buuild failures are not expected. >> >> please let me know when i can upload the new version. > > Please upload to experimental now, and let us know when it is accepted. That > way > there will be an auto tracker created on release.debian.org/transitions/ that > we > can look at to see potential collisions with other transitions, and then when > we > ack the transition there is no extra delay due to NEW. > > Thanks, > Emilio > -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#879440: transition: gpsd
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition hi release team, the libgps libray has some symbol changes and needs a soname bump. buuild failures are not expected. please let me know when i can upload the new version. thanks, Bernd Ben file: title = "gpsd"; is_affected = .depends ~ /libq?gps(mm)?22/ | .depends ~ /libq?gps(mm)?23/; is_good = .depends ~ /libq?gps(mm)?23/; is_bad = .depends ~ /libq?gps(mm)?22/; -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#869661: stretch-pu: package open-vm-tools/2:10.1.5-5055683-4+deb9u1
Hi, On 08/08/2017 05:49 PM, Adam D. Barratt wrote: > +open-vm-tools (2:10.1.5-5055683-4+deb9u1) stable; urgency=medium > > We generally prefer the changelog distribution to be "stretch". changed... > Please go ahead. .. and uploaded. Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#869661: stretch-pu: package open-vm-tools/2:10.1.5-5055683-4+deb9u1
Package: release.debian.org Severity: normal Tags: stretch User: release.debian@packages.debian.org Usertags: pu Hi release team, as discussed in #869633 I'd like to fix CVE-2015-5191 in open-vm-tools with the next stretch pointrelease. A debdiff is attached, I'll upload it to stable(-pu) as soon as I have an ack from you. Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index 97fd671f..4bac2108 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +open-vm-tools (2:10.1.5-5055683-4+deb9u1) stable; urgency=medium + + * [dec8df6] Upstream fix for CVE-2015-5191 (Closes: #869633) + * [ff10dcb] Update gbp.conf for stretch. + + -- Bernd Zeimetz <b...@debian.org> Tue, 25 Jul 2017 11:40:02 +0200 + open-vm-tools (2:10.1.5-5055683-4) unstable; urgency=medium * [27689b3] Load the fuse module before mounting /run/vmblock-fuse. diff --git a/debian/gbp.conf b/debian/gbp.conf index bf4163e8..64996533 100644 --- a/debian/gbp.conf +++ b/debian/gbp.conf @@ -1,3 +1,5 @@ +[DEFAULT] +debian-branch = stretch [buildpackage] sign-tags = True posttag = git push && git push --tags diff --git a/debian/patches/debian/cve-2015-5191.patch b/debian/patches/debian/cve-2015-5191.patch new file mode 100644 index ..3312be08 --- /dev/null +++ b/debian/patches/debian/cve-2015-5191.patch @@ -0,0 +1,413 @@ +commit 22e58289f71232310d30cf162b83b5151a937bac +Author: Oliver Kurth <oku...@vmware.com> +Date: Thu Jul 6 17:00:55 2017 -0700 + +randomly generate tmp directory name + +diff --git a/open-vm-tools/libDeployPkg/linuxDeployment.c b/open-vm-tools/libDeployPkg/linuxDeployment.c +index 1c8f7855..8e536a97 100644 +--- a/open-vm-tools/libDeployPkg/linuxDeployment.c b/open-vm-tools/libDeployPkg/linuxDeployment.c +@@ -43,6 +43,8 @@ + #include "mspackWrapper.h" + #include "rpcout.h" + #include "toolsDeployPkg.h" ++#include ++#include + + /* + * These are covered by #ifndef to give the ability to change these +@@ -52,12 +54,17 @@ + + #define CLEANUPCMD "/bin/rm -r -f " + +-#ifndef EXTRACTPATH +-#define EXTRACTPATH "/tmp/.vmware/linux/deploy" ++#ifndef TMP_PATH_VAR ++#define TMP_PATH_VAR "/tmp/.vmware/linux/deploy" + #endif + +-#ifndef CLEANUPPATH +-#define CLEANUPPATH "/tmp/.vmware" ++#ifndef IMC_TMP_PATH_VAR ++#define IMC_TMP_PATH_VAR "@@IMC_TMP_PATH_VAR@@" ++#endif ++ ++// '/tmp' below will be addressed by PR 1601405. ++#ifndef TMP_DIR_PATH_PATTERN ++#define TMP_DIR_PATH_PATTERN "/tmp/.vmware-imgcust-dXX" + #endif + + #ifndef BASEFILENAME +@@ -115,13 +122,14 @@ struct List { + // Private functions + static Bool GetPackageInfo(const char* pkgName, char** cmd, uint8* type, uint8* flags); + static Bool ExtractZipPackage(const char* pkg, const char* dest); +-static Bool CreateDir(const char *path); + static void Init(void); + static struct List* AddToList(struct List* head, const char* token); + static int ListSize(struct List* head); + static int Touch(const char* state); + static int UnTouch(const char* state); + static int TransitionState(const char* stateFrom, const char* stateTo); ++static bool CopyFileToDirectory(const char* srcPath, const char* destPath, ++const char* fileName); + static int Deploy(const char* pkgName); + static char** GetFormattedCommandLine(const char* command); + static int ForkExecAndWaitCommand(const char* command); +@@ -151,8 +159,17 @@ static LogFunction sLog = NoLogging; + NORETURN void + Panic(const char *fmtstr, ...) + { +- /* Ignored */ +- sLog(log_warning, "Panic callback invoked. \n"); ++ va_list args; ++ ++ char *tmp = Util_SafeMalloc(MAXSTRING); ++ ++ va_start(args, fmtstr); ++ vsprintf(tmp, fmtstr, args); ++ ++ sLog(log_error, "Panic callback invoked: %s\n", tmp); ++ ++ free(tmp); ++ +exit(1); + } + +@@ -169,12 +186,19 @@ Panic(const char *fmtstr, ...) + * + **/ + void +-Debug(const char *fmtstr, +- va_list args) ++Debug(const char *fmtstr, ...) + { +- /* Ignored */ + #ifdef VMX86_DEBUG +- sLog(log_warning, "Debug callback invoked. \n"); ++ va_list args; ++ ++ char *tmp = Util_SafeMalloc(MAXSTRING); ++ ++ va_start(args, fmtstr); ++ vsprintf(tmp, fmtstr, args); ++ ++ sLog(log_debug, "Debug callback invoked: %s\n", tmp); ++ ++ free(tmp); + #endif + } + +@@ -874,11 +898,13 @@ static int + CloudInitSetup(const char *tmpDirPath) + { +int deployStatus = DEPLOY_ERROR; +- const char *cloudInitTmpDirPath = "/var/run/vmware-imc"; ++ static const char *cloudInitTmpDirPath = "/var/run/vmware-imc"; +int forkExecResult; +char command[1024]; +Bool cloudInitTmp
Bug#860048: unblock: open-vm-tools/2:10.1.5-5055683-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi release team, VMware asked me to change the boot order of vmtoolsd to start before cloud init. This was necessary as the cloud-init is started early in the boot process now - and without running vmtoolsd before cloud-init a VM customization is not possible. For details see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859677 https://bugs.launchpad.net/cloud-init/+bug/1667831 Debdiff is attached. unblock open-vm-tools/2:10.1.5-5055683-3 Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index 658a4222..5bcddde2 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,12 @@ +open-vm-tools (2:10.1.5-5055683-3) unstable; urgency=medium + + * [0aa95b6] Start open-vm-tools before cloud-init-local.service. +Required for a working guest customization as reported by VMware. +Also add cloud-init to 'Suggests'. +Thanks to Sankar Tanguturi (Closes: #859677) + + -- Bernd Zeimetz <b...@debian.org> Sun, 09 Apr 2017 21:54:21 +0200 + open-vm-tools (2:10.1.5-5055683-2) unstable; urgency=medium * [651cdfe] Depend on iproute2. diff --git a/debian/control b/debian/control index 5935c52f..432b11f7 100644 --- a/debian/control +++ b/debian/control @@ -19,7 +19,7 @@ Package: open-vm-tools Architecture: amd64 i386 Depends: ${misc:Depends}, ${shlibs:Depends}, pciutils, iproute2 Recommends: ethtool, zerofree, fuse, lsb-release -Suggests: open-vm-tools-desktop +Suggests: open-vm-tools-desktop, cloud-init Breaks: open-vm-tools-desktop (<< 2:10.0.7-3227872-2~) Replaces: open-vm-tools-desktop (<< 2:10.0.7-3227872-2~) Description: Open VMware Tools for virtual machines hosted on VMware (CLI) diff --git a/debian/open-vm-tools.service b/debian/open-vm-tools.service index 426d4fbd..a988f08e 100644 --- a/debian/open-vm-tools.service +++ b/debian/open-vm-tools.service @@ -2,6 +2,8 @@ Description=Service for virtual machines hosted on VMware Documentation=http://open-vm-tools.sourceforge.net/about.php ConditionVirtualization=vmware +DefaultDependencies=no +Before=cloud-init-local.service [Service] ExecStart=/usr/bin/vmtoolsd
Bug#855857: unblock: nagios-plugins-contrib/21.20170222
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package nagios-plugins-contrib We had to fix several plugins: - check_raid: failed to work with EPN, #851351 - check_raid: detection of broken hotspares fails for mdadm raids. #855054 - check_ssl_cert: broken due to changes introduced with openssl 1.1. #855253 I've added an autopkgtest to ensure that such issues are detected earlier. - check_cert_expire_dirs failed to find check_cert_expire, so it did not work at all. #855155 A diff between 20.20170118 and 21.20170222 is attached. Thanks, Bernd unblock nagios-plugins-contrib/21.20170222 -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/check_ssl_cert/tests b/check_ssl_cert/tests new file mode 100644 index 000..5417af1 --- /dev/null +++ b/check_ssl_cert/tests @@ -0,0 +1,2 @@ +Depends: openssl, curl, file +Test-Command: /usr/lib/nagios/plugins/check_ssl_cert -H www.debian.org diff --git a/debian/changelog b/debian/changelog index 5e48333..c6fb690 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,26 @@ +nagios-plugins-contrib (21.20170222) unstable; urgency=medium + + [ Bernd Zeimetz ] + * [5091e4a] Disable EPN for check_raid. +Thanks to Daniel Pocock (Closes: #851351) + * [5bdff51] check_raid: fix failed mdadm hotspare detection. +Thanks to Sascha Steinbiss (Closes: #855054) + * [5232be1] percona-nagios-plugins: fix bashism. +Thanks to Raphael Geissert (Closes: #772278) + + [ Stefan Schörghofer ] + * [6495faa] Fixes check_ssl_cert problems with Openssl > 1.1.x +(Closes: #855253) + + [ Bernd Zeimetz ] + * [bf4fb49] Add autopkgtest for check_ssl_cert. + * [9aacdb6] Auto update of debian/tests/control + * [0d7ac29] Fix check_cert_expire_dirs to make it work at all. +check_cert_expire_dirs was not able to find +check_cert_expire. Fixing that. (Closes: #855155) + + -- Bernd Zeimetz <b...@debian.org> Wed, 22 Feb 2017 14:32:22 +0100 + nagios-plugins-contrib (20.20170118) unstable; urgency=medium [ Evgeni Golov ] diff --git a/debian/patches/check_raid/fix_mdadm_hotspare_failure_detection b/debian/patches/check_raid/fix_mdadm_hotspare_failure_detection new file mode 100644 index 000..c81437a --- /dev/null +++ b/debian/patches/check_raid/fix_mdadm_hotspare_failure_detection @@ -0,0 +1,11 @@ +--- a/check_raid/check_raid b/check_raid/check_raid +@@ -3661,7 +3661,7 @@ $fatpacked{"App/Monitoring/Plugin/CheckR + } elsif (@fd > 0) { + # FIXME: this is same as above? + $this->warning; +- $s .= "hot-spare failure:". join(",", @{$md{failed_disks}}) .":$md{status}"; ++ $s .= "hot-spare failure:". join(",", @fd) .":$md{status}"; + + } else { + $s .= "$md{status}"; diff --git a/debian/patches/check_raid/no_epn b/debian/patches/check_raid/no_epn new file mode 100644 index 000..9ce8a44 --- /dev/null +++ b/debian/patches/check_raid/no_epn @@ -0,0 +1,8 @@ +--- a/check_raid/check_raid b/check_raid/check_raid +@@ -1,4 +1,5 @@ + #!/usr/bin/perl ++# nagios: -epn + + # This chunk of stuff was generated by App::FatPacker. To find the original + # file's code, look for the end of this BEGIN block or the string 'FATPACK' diff --git a/debian/patches/check_ssl_cert/bug-855253-fix b/debian/patches/check_ssl_cert/bug-855253-fix new file mode 100644 index 000..c0408f9 --- /dev/null +++ b/debian/patches/check_ssl_cert/bug-855253-fix @@ -0,0 +1,196 @@ +--- a/check_ssl_cert/check_ssl_cert-1.37/check_ssl_cert b/check_ssl_cert/check_ssl_cert-1.37/check_ssl_cert +@@ -969,8 +969,12 @@ + + if [ -n "${OCSP}" ] ; then + +-ISSUER_CERT="$( mktemp -t "${0##*/}XX" 2> /dev/null )" +-if [ -z "${ISSUER_CERT}" ] || [ ! -w "${ISSUER_CERT}" ] ; then ++ISSUER_CERT_TMP="$( mktemp -t "${0##*/}XX" 2> /dev/null )" ++if [ -z "${ISSUER_CERT_TMP}" ] || [ ! -w "${ISSUER_CERT_TMP}" ] ; then ++unknown 'temporary file creation failure.' ++fi ++ISSUER_CERT_TMP2="$( mktemp -t "${0##*/}XX" 2> /dev/null )" ++if [ -z "${ISSUER_CERT_TMP2}" ] || [ ! -w "${ISSUER_CERT_TMP2}" ] ; then + unknown 'temporary file creation failure.' + fi + +@@ -992,7 +996,7 @@ + + # Cleanup before program termination + # Using named signals to be POSIX compliant +-trap 'rm -f $CERT $ERROR $ISSUER_CERT' EXIT HUP INT QUIT TERM ++trap 'rm -f $CERT $ERROR $ISSUER_CERT_TMP $ISS
Bug#855855: unblock: open-vm-tools/2:10.1.0-4449150-4
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package open-vm-tools It fixes the following bugs: #855337: upstream asked me to activate the vgauth service. Its necessary for guest operations initiated from the vSphere datacenter. #851240: removing a duplicate udev rule as upstream ships its own file now. Also I left a pull request to update the Homepage field in debian/control in the upload. Diff between -3 and -4 is attached. Thanks, Bernd unblock open-vm-tools/2:10.1.0-4449150-4 -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index a870e962..6ca08caa 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,23 @@ +open-vm-tools (2:10.1.0-4449150-4) unstable; urgency=medium + + [ Chris Glass ] + * [d55b33f] Point the control file's homepage to the new one. +The upstream open-vm-tools switched from sourceforge to github. This +simply updates the link to reflect that. +Signed-off-by: Chris Glass <chris.gl...@canonical.com> + + [ Bernd Zeimetz ] + * [f44a9a8] Drop duplicate udev rules. +Timeouts are set in 99-vmware-scsi-udev.rules now, +shipped by upstream. +Thanks to Bernhard Schmidt (Closes: #851240) + * [21df3fa] Install vgauth.service. +vgauth is a service that allows authentication in the guest using SAML +tokens. Necessary for guest operations initiated from the vSphere +datacenter. (Closes: #855337) + + -- Bernd Zeimetz <b...@debian.org> Tue, 21 Feb 2017 22:45:06 +0100 + open-vm-tools (2:10.1.0-4449150-3) unstable; urgency=medium * [17b04da] Override dh_md5sums for arch-dependent packages only. diff --git a/debian/control b/debian/control index 994d73c2..cab79610 100644 --- a/debian/control +++ b/debian/control @@ -9,7 +9,7 @@ Build-Depends: libxinerama-dev, libxss-dev, libxtst-dev, dh-autoreconf, dh-systemd, libmspack-dev, libssl1.0-dev, libxerces-c-dev, libxml-security-c-dev Standards-Version: 3.9.6 -Homepage: http://open-vm-tools.sourceforge.net/ +Homepage: https://github.com/vmware/open-vm-tools Vcs-Git: https://github.com/bzed/pkg-open-vm-tools.git Vcs-Browser: https://github.com/bzed/pkg-open-vm-tools diff --git a/debian/open-vm-tools.udev b/debian/open-vm-tools.udev index 343100bd..b015a82f 100644 --- a/debian/open-vm-tools.udev +++ b/debian/open-vm-tools.udev @@ -1,12 +1,3 @@ -# VMware SCSI devices Timeout adjustment -# -# Modify the timeout value for VMware SCSI devices so that -# in the event of a failover, we don't time out. -# See Bug 271286 for more information. - -ACTION=="add|change", SUBSYSTEMS=="scsi", ATTRS{vendor}=="VMware " , ATTRS{model}=="Virtual disk", RUN+="/bin/sh -c 'echo 180 >/sys$DEVPATH/device/timeout'" - - # VMWare Virtual Sockets permissions # # after loading the vsock module, a block device /dev/vsock will be created with permission 0600 diff --git a/debian/open-vm-tools.vgauth.service b/debian/open-vm-tools.vgauth.service new file mode 100644 index ..94f7c89e --- /dev/null +++ b/debian/open-vm-tools.vgauth.service @@ -0,0 +1,12 @@ +[Unit] +Description=Authentication service for virtual machines hosted on VMware +Documentation=http://github.com/vmware/open-vm-tools +ConditionVirtualization=vmware +PartOf=open-vm-tools.service + +[Service] +ExecStart=/usr/bin/VGAuthService +TimeoutStopSec=5 + +[Install] +RequiredBy=open-vm-tools.service diff --git a/debian/rules b/debian/rules index 2e4194e7..f63ec5c1 100755 --- a/debian/rules +++ b/debian/rules @@ -115,8 +115,13 @@ override_dh_fixperms: dh_fixperms -Xvmware-user-suid-wrapper +override_dh_systemd_enable: + dh_systemd_enable -popen-vm-tools + dh_systemd_enable -popen-vm-tools --name vgauth + override_dh_systemd_start: - dh_systemd_start + dh_systemd_start -popen-vm-tools + dh_systemd_start -popen-vm-tools --name vgauth sed -i 's,run-vmblock-fuse,run-vmblockx2dfuse,g' debian/*.debhelper override_dh_installchangelogs:
Re: Transition to SQLAlchemy 1.1.x
Dear Thomas, On 11/26/2016 10:49 PM, Thomas Goirand wrote: > Not amused, you might know that your relation to the Python Modules team is not the best, and I assume you still are not allowed to commit there at all. You might feel honored, you are the only DD who managed to come into such a situation. So instead of starting a largish discussion and wasting peoples' time you could just have said: 'ouch, that was a bad timing, can you help me to get these packages fixed?' and I'm sure your openstack would be happy again already. sqlalchemy 1.0 is in maintenance mode only and will receive only critical updates, so we clearly want to have 1.1 in stretch. You might want to learn that openstack is not Debian. There are way more packages and things to consider than openstack alone. Best regards, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Re: OpenSSL 1.1.0
Hi, > > OpenSSL 1.0 + 1.1 > == > > * Every package will be buildable but we can expect surprises on > runtime due to dlopen'ed libraries, indirect use, etc > * Release delay seems certain but difficult to determine > * Even with a release delay, we cannot be 100% sure all the rutnime > surprises will be gone > * We need to support 2 versions of OpenSSL and be prepared for > third-party applications (not included with Debian) to fail due to > runtime surprises > * Different support cycles upstream (one LTSL, one not) > * We will be providing both versions of OpenSSL for the end-user to > choose (when he has the knowledge) I think releasing with 1.0+1.1 makes sense, but without forcing 1.1 to be the default. Single packages which support 1.1 very well should be able to use it, but maintainers should not be forced to even try to migrate to a new version. This would even make it possible to backport packages to support the new OpenSSL version. Maybe even apache2. In the meantime people could use haproxy in front of it, or whatever else they like. Having ChaCha20 is nice, but delaying a release for it is not an option (hint: people won't be able to use ChaCha20 while they are waiting for a release... :)) best regards, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Re: OpenSSL 1.1.0
Hi, so whats your suggestions to solve issues like I have with open-vm-tools: Most build-dependencies switch to 1.1.0 - but one (libxml-security-c-dev) sticks with 1.0, as far as I've seen in the bts because shibboleth won't be able to use 1.1.0. Not shipping open-vm-tools is not an option, as it will break support for Debian on basically all installations under a vmware hypervisor. Which are a lot. Whats your suggestion? Best regards, Bernd P.S. imho the time for the openssl transition was the worst one possible at all, it *will* result in security bugs and/or a delayed release. -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F signature.asc Description: OpenPGP digital signature
Bug#803605: transition: gpsd
On 11/01/2015 01:14 PM, Sebastiaan Couwenberg wrote: > On Sat, 31 Oct 2015 19:42:18 +0100 Bernd Zeimetz wrote: >> gpsd needs a transition again. I do not expect build failures >> or functional problems in the packages using libgps or >> libqgpsmm. > > direwolf & merkaartor fail to build due to missing compatibility with > libgps22. thanks for the hint, guess I missed the sat struct change :( -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#803605: transition: gpsd
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition hi release team, gpsd needs a transition again. I do not expect build failures or functional problems in the packages using libgps or libqgpsmm. Please let me know when I should upload it to unstable. Thanks, Bernd Ben file: title = "gpsd"; is_affected = .depends ~ /libgps21|libqgpsmm21/ | .depends ~ /libgps22|libqgpsmm22/; is_good = .depends ~ /libgps22|libqgpsmm22/; is_bad = .depends ~ /libgps21|libqgpsmm21/; -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#803605: transition: gpsd
> You can go ahead. uploaded, thanks. -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
Bug#780798: wheezy-pu: package open-vm-tools/2:8.8.0+2012.05.21-724730-1+nmu2+deb7u1
On 06.05.2015 23:00, Adam D. Barratt wrote: Well it's not really any extra work for you. ;-) ;-) I'll try and sort this out over the next couple of days, but in the meantime how does this sound? (Comments from others welcome too.) The open-vm-tools package contains tools for working with VMWare systems, including the ability to build some related kernel modules on-demand (DKMS). The version of open-vm-tools in Wheezy is no longer compatible with the kernel currently shipped in Wheezy. This update resolves the incompatibility by allowing open-vm-tools to build against both older I'd write something like '...by allowing the kernel modules in the open-vm-tools-dkms package to build against both older ...' and newer Wheezy kernels. People who are not using the -dkms package don't need to update, it might make sense to let them know. Thanks a lot, bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/75d47d4760435420da09059e5716d...@mail.recluse.de
Bug#780798: wheezy-pu: package open-vm-tools/2:8.8.0+2012.05.21-724730-1+nmu2+deb7u1
On 05/05/2015 02:19 PM, Adam D. Barratt wrote: On 2015-05-04 21:20, Bernd Zeimetz wrote: as several people are rather unhappy abotu open-vm-tools-dkms being broken in wheezy - and they don't seem to be able to pick it form proposed-updates - would it be okwy to update it via wheezy-updates before the next point release happens? Is there some technical issue with them pulling the package from o-p-u, or do they just not want to? actually just more a question of people not willing or not knowing how to get packages from o-p-u (and/or failing to read the bugreport which includes a link to the instructions...). Depending on the way people are using the vmware modules, they can't update their kernel without breaking things. On the other hand, upgrading to jessie should work just fine, too. I'm not keen on the extra work to get it updates via w-u, but depending on when the next point release might happen it might make sense to do it to make our users happy. -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/554a6c53.9090...@debian.org
Bug#780798: wheezy-pu: package open-vm-tools/2:8.8.0+2012.05.21-724730-1+nmu2+deb7u1
Hi Adam, as several people are rather unhappy abotu open-vm-tools-dkms being broken in wheezy - and they don't seem to be able to pick it form proposed-updates - would it be okwy to update it via wheezy-updates before the next point release happens? thanks cheers, Bernd On 03/22/2015 09:27 PM, Adam D. Barratt wrote: Control: tags -1 + pending On Thu, 2015-03-19 at 17:09 +0100, Bernd Zeimetz wrote: I've uploaded open-vm-tools 2:8.8.0+2012.05.21-724730-1+nmu2+deb7u1 which fixes #779081. The bug was introduced with the new kernel revision in the last point release - d_alias was moved into the d_u struct. I've added a patch which checks for the loction of d_alias and uses the appropriate one. Flagged for acceptance. Regards, Adam -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/5547d4a3.5030...@debian.org
Bug#780798: wheezy-pu: package open-vm-tools/2:8.8.0+2012.05.21-724730-1+nmu2+deb7u1
Package: release.debian.org Severity: normal Tags: wheezy User: release.debian@packages.debian.org Usertags: pu Hi release team, I've uploaded open-vm-tools 2:8.8.0+2012.05.21-724730-1+nmu2+deb7u1 which fixes #779081. The bug was introduced with the new kernel revision in the last point release - d_alias was moved into the d_u struct. I've added a patch which checks for the loction of d_alias and uses the appropriate one. Please pick this fix for the next point release as for those who (still) need the dkms modules (vmwar eplayer users or old esx installations) won't be able to upgrade to the recent kernel otherwise. Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index 71e14e1..332f472 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,12 @@ +open-vm-tools (2:8.8.0+2012.05.21-724730-1+nmu2+deb7u1) stable; urgency=medium + + * [6f4a32b1] Add patch to handle the move of d_alias to d_u.d_alias. +Thanks to Stefan Schueller (Closes: #779081) + * [b32d3413] Add git-buildpackage config for wheezy. + * [3f1b34b0] Updating Maintainer. + + -- Bernd Zeimetz b...@debian.org Thu, 19 Mar 2015 16:44:25 +0100 + open-vm-tools (2:8.8.0+2012.05.21-724730-1+nmu2) testing-proposed-updates; urgency=low * Non-maintainer upload. diff --git a/debian/control b/debian/control index 1e402eb..83e7d74 100644 --- a/debian/control +++ b/debian/control @@ -1,7 +1,7 @@ Source: open-vm-tools Section: admin Priority: extra -Maintainer: Daniel Baumann daniel.baum...@progress-technologies.net +Maintainer: Bernd Zeimetz b...@debian.org Build-Depends: debhelper (= 9), autotools-dev, dkms, doxygen, libcunit1-dev, libdumbnet-dev, libfuse-dev, libgtk2.0-dev, libgtkmm-2.4-dev, diff --git a/debian/gbp.conf b/debian/gbp.conf new file mode 100644 index 000..34d5f7b --- /dev/null +++ b/debian/gbp.conf @@ -0,0 +1,5 @@ +# Configuration file for git-buildpackage and friends + +[DEFAULT] +debian-branch = wheezy +pristine-tar = True diff --git a/debian/patches/04-vmhgfs-d_alias-kernel-3.18.1-tools-9.9.0.patch b/debian/patches/04-vmhgfs-d_alias-kernel-3.18.1-tools-9.9.0.patch new file mode 100644 index 000..9919e6c --- /dev/null +++ b/debian/patches/04-vmhgfs-d_alias-kernel-3.18.1-tools-9.9.0.patch @@ -0,0 +1,51 @@ +--- a/modules/linux/vmhgfs/inode.c b/modules/linux/vmhgfs/inode.c +@@ -1818,7 +1818,13 @@ HgfsPermission(struct inode *inode, + + /* Find a dentry with valid d_count. Refer bug 587789. */ + list_for_each(pos, inode-i_dentry) { +- dentry = list_entry(pos, struct dentry, d_alias); ++ dentry = list_entry(pos, struct dentry, ++#if defined(VMW_D_ALIAS_3181) || LINUX_VERSION_CODE = KERNEL_VERSION(3, 18, 1) ++ d_u.d_alias ++#else ++ d_alias ++#endif ++ ); + #if LINUX_VERSION_CODE KERNEL_VERSION(2, 6, 38) + dcount = atomic_read(dentry-d_count); + #else +--- a/modules/linux/vmhgfs/Makefile.kernel b/modules/linux/vmhgfs/Makefile.kernel +@@ -33,6 +33,7 @@ EXTRA_CFLAGS += $(call vm_check_build, $ + EXTRA_CFLAGS += $(call vm_check_build, $(AUTOCONF_DIR)/getsb1.c,, -DVMW_GETSB_2618) + EXTRA_CFLAGS += $(call vm_check_build, $(AUTOCONF_DIR)/statfs1.c,, -DVMW_STATFS_2618) + EXTRA_CFLAGS += $(call vm_check_build, $(AUTOCONF_DIR)/inode1.c,, -DVMW_INODE_2618) ++EXTRA_CFLAGS += $(call vm_check_build, $(AUTOCONF_DIR)/d_alias.c,, -DVMW_D_ALIAS_3181) + + MODPOST_VMCI_SYMVERS := $(wildcard $(MODULEBUILDDIR)/VMwareVMCIModule.symvers) + +--- /dev/null b/modules/linux/shared/autoconf/d_alias.c +@@ -0,0 +1,21 @@ ++/* ++ * Copyright (C) 2015 Ross Smith II. MIT Licensed. ++ * ++ */ ++ ++#include compat_version.h ++#include compat_autoconf.h ++ ++#include linux/dcache.h ++ ++/* ++ * After 3.18.1, the dentry d_alias field was moved to struct d_u. ++ * ++ * This test will fail on a kernel with such a patch. ++ */ ++void test(void) ++{ ++ struct dentry dentry; ++ ++ dentry.d_alias.next = NULL; ++} diff --git a/debian/patches/series b/debian/patches/series index 0aaf8da..48f12f0 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -1,3 +1,4 @@ 01-kvers.patch 02-procps.patch 03-dkms.patch +04-vmhgfs-d_alias-kernel-3.18.1-tools-9.9.0.patch
Bug#780496: unblock: xserver-xorg-video-vmware/13.0.2-3.1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock hi release team, please unblock package xserver-xorg-video-vmware. on request of jcristau I've NMUed xserver-xorg-video-vmware to fix #765490. The bug stopped people from being able to logout properly as x was stuck in an infinite loop. Also it is supposed to fix various resizing issues. While looking trough the upstream commits I also found a fix for an array out of bounds issue, which was spotted by coverity. I took the chance to fix this problem, too. All patches were taken from upstream http://cgit.freedesktop.org/xorg/driver/xf86-video-vmware/log/ commit ids are listed in the NMU diff, which is attached to this mail. Thanks, Bernd unblock xserver-xorg-video-vmware/13.0.2-3.1 -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff -u xserver-xorg-video-vmware-13.0.2/debian/changelog xserver-xorg-video-vmware-13.0.2/debian/changelog --- xserver-xorg-video-vmware-13.0.2/debian/changelog +++ xserver-xorg-video-vmware-13.0.2/debian/changelog @@ -1,3 +1,14 @@ +xserver-xorg-video-vmware (1:13.0.2-3.1) unstable; urgency=medium + + * Non-maintainer upload as requested by jcristau. + * Fixing resizing issues xorg being stuck in a loop at logoff. +(Closes: #765490) +Patch 32562129750077a23f26f2e69adc8403eb24bf3f from upstream. + * Fixing an array out of bounds indexing, upstream +b1697434348799b0808a6c9e9a899394075b980c. + + -- Bernd Zeimetz b...@debian.org Sat, 14 Mar 2015 22:57:20 +0100 + xserver-xorg-video-vmware (1:13.0.2-3) unstable; urgency=medium * rules: avoid mixing implicit and normal rules; make 4 doesn't like that diff -u xserver-xorg-video-vmware-13.0.2/debian/patches/series xserver-xorg-video-vmware-13.0.2/debian/patches/series --- xserver-xorg-video-vmware-13.0.2/debian/patches/series +++ xserver-xorg-video-vmware-13.0.2/debian/patches/series @@ -1 +1,2 @@ -# placeholder +32562129750077a23f26f2e69adc8403eb24bf3f.patch +b1697434348799b0808a6c9e9a899394075b980c.patch only in patch2: unchanged: --- xserver-xorg-video-vmware-13.0.2.orig/debian/patches/32562129750077a23f26f2e69adc8403eb24bf3f.patch +++ xserver-xorg-video-vmware-13.0.2/debian/patches/32562129750077a23f26f2e69adc8403eb24bf3f.patch @@ -0,0 +1,29 @@ +From 32562129750077a23f26f2e69adc8403eb24bf3f Mon Sep 17 00:00:00 2001 +From: Thomas Hellstrom thellst...@vmware.com +Date: Wed, 3 Sep 2014 07:08:41 -0700 +Subject: vmware/vmwgfx: Don't add pixmaps to the pixmap list if they're + already on it + +This could cause loops through the list to spin indefinitely. +This would most likely occur at VT switches. + +Signed-off-by: Thomas Hellstrom thellst...@vmware.com +Reviewed-by: Jakob Bornecrantz ja...@vmware.com + +diff --git a/vmwgfx/vmwgfx_saa.c b/vmwgfx/vmwgfx_saa.c +index b9204c6..bca3d93 100644 +--- a/vmwgfx/vmwgfx_saa.c b/vmwgfx/vmwgfx_saa.c +@@ -694,7 +694,8 @@ vmwgfx_modify_pixmap_header (PixmapPtr pixmap, int w, int h, int depth, + + vmwgfx_pix_resize(pixmap, old_pitch, old_height, old_width); + vmwgfx_pixmap_free_storage(vpix); +-WSBMLISTADDTAIL(vpix-pixmap_list, vsaa-pixmaps); ++if (WSBMLISTEMPTY(vpix-pixmap_list)) ++ WSBMLISTADDTAIL(vpix-pixmap_list, vsaa-pixmaps); + + return TRUE; + +-- +cgit v0.10.2 + only in patch2: unchanged: --- xserver-xorg-video-vmware-13.0.2.orig/debian/patches/b1697434348799b0808a6c9e9a899394075b980c.patch +++ xserver-xorg-video-vmware-13.0.2/debian/patches/b1697434348799b0808a6c9e9a899394075b980c.patch @@ -0,0 +1,27 @@ +From b1697434348799b0808a6c9e9a899394075b980c Mon Sep 17 00:00:00 2001 +From: Jakob Bornecrantz ja...@vmware.com +Date: Thu, 14 Aug 2014 16:42:05 +0200 +Subject: vmware/legacy: Fix out of bound array indexing + +Spotted by coverity. + +Reported-by: Adam Jackson a...@redhat.com +Reviewed-by: Adam Jackson a...@redhat.com +Signed-off-by: Jakob Bornecrantz ja...@vmware.com + +diff --git a/src/vmwarevideo.c b/src/vmwarevideo.c +index 261e579..816f1ca 100644 +--- a/src/vmwarevideo.c b/src/vmwarevideo.c +@@ -837,7 +837,7 @@ vmwareVideoPlay(ScrnInfoPtr pScrn, VMWAREVideoPtr pVid, + cmdSetRegs.body.streamId = pVid-streamId; + + items = cmdSetRegs.body.items; +-for (i = SVGA_VIDEO_ENABLED; i SVGA_VIDEO_NUM_REGS; i++) { ++for (i = SVGA_VIDEO_ENABLED; i SVGA_VIDEO_DATA_GMRID; i++) { + items[i].regId = i; + } + +-- +cgit v0.10.2 +
Re: Serious issue with release candidate under VMWare (#765490)
Hi Norbert, I noted my concerns on the bug-report, I thought that counts as talking to the package maintainers. Using This helps as Subject for mails to the BTS was not really helpful for sure, I could image that most people assumed it was spam. Here are some suggestions: - write a proper mail to the maintainer mailing list (debia...@lists.debian.org). - I don't know how much the usability of Debian is affected when the vmware xorg driver is being used. The BTS allows to change the severity. You might want to include a reason if you do so in your mail, also please note that people might still decide to ignore this issue for the upcoming release. See https://www.debian.org/Bugs/Developer#severities for details. - Use virtualbox or some other virtualization system. As far as I understand debian policy, such fixed wont ever make it into Jessie later (outside of -backports). You understand it wrong (assuming that the fix is really this single line change...). Cheers, Bernd Kind Regards, Norbert Lange -- Ursprüngliche Nachricht -- Von: Adam D. Barratt a...@adam-barratt.org.uk An: la...@chello.at Cc: debian-release@lists.debian.org Datum: 5. März 2015 um 13:36 Betreff: Re: Serious issue with release candidate under VMWare Hi, On 2015-03-05 11:30, la...@chello.at wrote: There is still an serious issue if you run Jessie under VMWare Workstation/Player. Most of the time the X-Server will hang on shutdown, causing the Machine to hang (not even possible to switch to a VT) and results in unclean kills. The Bug is already in the tracker, together with a patch from upstream. xserver-xorg-video-vmware Bug ( https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=765490 ) Please add this fix, otherwise Jessie will likely need some backport fixes for VMWare during its entire lifetime. Have you talked to the package maintainers? Leaving aside any question of whether the bug would qualify at this stage of the freeze, there's definitely no way the package can be updated in jessie when the fix isn't even in unstable. Regards, Adam -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/55035185.6080...@bzed.de
Bug#778297: unblock: open-vm-tools/2:9.4.6-1770165-8
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package open-vm-tools open-vm-tools-dkms fails to build against the recent jessie kernel headers, 2:9.4.6-1770165-8 fixes this by using d_u.d_alias instead of d_alias, depending on the kernel version. Patch is attached. unblock open-vm-tools/2:9.4.6-1770165-8 Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index f6b5705..6213450 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,11 @@ +open-vm-tools (2:9.4.6-1770165-8) unstable; urgency=medium + + * [406817b6] Add patch to move from d_alias to d_u.d_alias. +Make open-vm-tools build with the recent jessie kernel again. +Thanks to Timo Metsala (Closes: #778293) + + -- Bernd Zeimetz b...@debian.org Fri, 13 Feb 2015 11:26:59 +0100 + open-vm-tools (2:9.4.6-1770165-7) unstable; urgency=medium * [8df5b4ac] Adding patch to fix CVE-2014-4199. diff --git a/debian/patches/debian/d_alias_fix b/debian/patches/debian/d_alias_fix new file mode 100644 index 000..7368349 --- /dev/null +++ b/debian/patches/debian/d_alias_fix @@ -0,0 +1,26 @@ +--- a/modules/linux/vmhgfs/inode.c b/modules/linux/vmhgfs/inode.c +@@ -1838,7 +1838,11 @@ HgfsPermission(struct inode *inode, +p, + #endif +inode-i_dentry, ++#if LINUX_VERSION_CODE KERNEL_VERSION(3, 16, 7) +d_alias) { ++#else ++ d_u.d_alias) { ++#endif + int dcount = compat_d_count(dentry); + if (dcount) { + LOG(4, (Found %s %d \n, dentry-d_name.name, dcount)); +@@ -1891,7 +1895,11 @@ HgfsPermission(struct inode *inode, + /* Find a dentry with valid d_count. Refer bug 587879. */ + list_for_each(pos, inode-i_dentry) { + int dcount; ++#if LINUX_VERSION_CODE KERNEL_VERSION(3, 16, 7) + struct dentry *dentry = list_entry(pos, struct dentry, d_alias); ++#else ++ struct dentry *dentry = list_entry(pos, struct dentry, d_u.d_alias); ++#endif + dcount = compat_d_count(dentry); + if (dcount) { + LOG(4, (Found %s %d \n, (dentry)-d_name.name, dcount)); diff --git a/debian/patches/series b/debian/patches/series index bb3ff13..044ee69 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -1,3 +1,4 @@ +debian/d_alias_fix upstream/3a9f229_Harden-HostinfoOSData-against-PATH-attacks upstream/54780b8_Debian-guys-want-to-play-with-FreeBSD-kernels-and-Linux-userland
Bug#776675: unblock: libdumbnet/1.12-6
reopen 776675 retitle 776675 unblock libdumbnet/1.12-6 thanks Hi, unfortunately... Just did a QA upload fixing #775896 - I've reverted the descision to make /usr/share/doc/libdumnet-dev a symlink. Diff attached. i did not expect people to test upgrades from testing to unstable and I failed to migrate the broken symlink back to a directory properly. So unfortunately we need a new unblock: unblock libdumbnet/1.12-6 New diff from -5 to -6 is attached. thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff -u libdumbnet-1.12/debian/changelog libdumbnet-1.12/debian/changelog --- libdumbnet-1.12/debian/changelog +++ libdumbnet-1.12/debian/changelog @@ -1,3 +1,11 @@ +libdumbnet (1.12-6) unstable; urgency=medium + + * QA upload. + * Make people who test upgrades from testing to unstable +happy (Closes: #775896). + + -- Bernd Zeimetz b...@debian.org Thu, 05 Feb 2015 19:06:08 +0100 + libdumbnet (1.12-5) unstable; urgency=medium * QA upload. diff -u libdumbnet-1.12/debian/control libdumbnet-1.12/debian/control --- libdumbnet-1.12/debian/control +++ libdumbnet-1.12/debian/control @@ -26,6 +26,7 @@ Package: libdumbnet-dev Section: libdevel Depends: ${shlibs:Depends}, libdumbnet1 (= ${binary:Version}) +Pre-Depends: dpkg (= 1.17.14) Architecture: any Description: A dumb, portable networking library -- development files libdumbnet provides a simplified, portable interface to several low-level reverted: --- libdumbnet-1.12/debian/preinst +++ libdumbnet-1.12.orig/debian/preinst @@ -1,21 +0,0 @@ -#!/bin/sh -set -e - -case $1 in -install|upgrade) -# dpkg does not replace directories by symlinks or vice versa. -if [ -L /usr/share/doc/libdumbnet-dev ]; then -rm -f /usr/share/doc/libdumbnet-dev -fi -;; -abort-upgrade) -;; -*) -echo preinst called with unknown argument \`$1' 2 -exit 1 -;; -esac - -#DEBHELPER# - -exit 0 only in patch2: unchanged: --- libdumbnet-1.12.orig/debian/libdumbnet-dev.postinst +++ libdumbnet-1.12/debian/libdumbnet-dev.postinst @@ -0,0 +1,8 @@ +#!/bin/sh +set -e + +dpkg-maintscript-helper symlink_to_dir /usr/share/doc/libdumbnet-dev /usr/share/doc/libdumbnet1 '1.12-6~' libdumbnet-dev -- $@ + +#DEBHELPER# + +exit 0 only in patch2: unchanged: --- libdumbnet-1.12.orig/debian/libdumbnet-dev.postrm +++ libdumbnet-1.12/debian/libdumbnet-dev.postrm @@ -0,0 +1,8 @@ +#!/bin/sh +set -e + +dpkg-maintscript-helper symlink_to_dir /usr/share/doc/libdumbnet-dev /usr/share/doc/libdumbnet1 '1.12-6~' libdumbnet-dev -- $@ + +#DEBHELPER# + +exit 0 only in patch2: unchanged: --- libdumbnet-1.12.orig/debian/libdumbnet-dev.preinst +++ libdumbnet-1.12/debian/libdumbnet-dev.preinst @@ -0,0 +1,8 @@ +#!/bin/sh +set -e + +dpkg-maintscript-helper symlink_to_dir /usr/share/doc/libdumbnet-dev /usr/share/doc/libdumbnet1 '1.12-6~' libdumbnet-dev -- $@ + +#DEBHELPER# + +exit 0
Bug#776675: unblock: libdumbnet/1.12-5
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package libdumbnet Just did a QA upload fixing #775896 - I've reverted the descision to make /usr/share/doc/libdumnet-dev a symlink. Diff attached. unblock libdumbnet/1.12-5 thanks, bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff -u libdumbnet-1.12/debian/rules libdumbnet-1.12/debian/rules --- libdumbnet-1.12/debian/rules +++ libdumbnet-1.12/debian/rules @@ -58,7 +58,7 @@ dh_testroot $(MAKE) DESTDIR=$$(pwd)/debian/libdumbnet1 install mkdir -p debian/libdumbnet-dev/usr/lib \ - debian/libdumbnet-dev/usr/share/doc \ + debian/libdumbnet-dev/usr/share/doc/libdumbnet-dev \ debian/libdumbnet-dev/usr/share/man/man1 mkdir -p debian/python-dumbnet/usr/lib mv debian/libdumbnet1/usr/include \ @@ -74,10 +74,11 @@ debian/python-dumbnet/usr/lib cp debian/dumbnet-config.1 debian/libdumbnet-dev/usr/share/man/man1/ ln -s dumbnet-config.1 debian/libdumbnet-dev/usr/share/man/man1/dnet-config.1 - ln -s libdumbnet1 debian/libdumbnet-dev/usr/share/doc/libdumbnet-dev + ln -s ../libdumbnet1 debian/libdumbnet-dev/usr/share/doc/libdumbnet-dev/docs ln -s dumbnet-config debian/libdumbnet-dev/usr/bin/dnet-config dh_installchangelogs - dh_installdocs TODO README + dh_installdocs -plibdumbnet1 TODO README + dh_installdocs -Nlibdumbnet1 dh_python2 -ppython-dumbnet for E in debian/python-dumbnet/usr/lib/python*; do \ rm -f $$E/site-packages/*egg-info; \ diff -u libdumbnet-1.12/debian/changelog libdumbnet-1.12/debian/changelog --- libdumbnet-1.12/debian/changelog +++ libdumbnet-1.12/debian/changelog @@ -1,3 +1,11 @@ +libdumbnet (1.12-5) unstable; urgency=medium + + * QA upload. + * Fix missing doc folder during upgrades +(Closes: #775896) + + -- Bernd Zeimetz b...@debian.org Fri, 30 Jan 2015 22:53:35 +0100 + libdumbnet (1.12-4) unstable; urgency=low * QA upload. only in patch2: unchanged: --- libdumbnet-1.12.orig/debian/preinst +++ libdumbnet-1.12/debian/preinst @@ -0,0 +1,21 @@ +#!/bin/sh +set -e + +case $1 in +install|upgrade) +# dpkg does not replace directories by symlinks or vice versa. +if [ -L /usr/share/doc/libdumbnet-dev ]; then +rm -f /usr/share/doc/libdumbnet-dev +fi +;; +abort-upgrade) +;; +*) +echo preinst called with unknown argument \`$1' 2 +exit 1 +;; +esac + +#DEBHELPER# + +exit 0
Bug#776199: unblock: gpsd/3.11-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package gpsd Andreas Beckmann asked me to update the fix for #774872 to support updates from Lenny to jessie without prompting due to modified conffiles. I've happily applied his patch. Diff is attached. unblock gpsd/3.11-3 thanks, bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index 88fd6f2..b2eee72 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +gpsd (3.11-3) unstable; urgency=medium + + [ Andreas Beckmann ] + * [dd6bbdf1] avoid prompting due to modified lenny conffiles + + -- Bernd Zeimetz b...@debian.org Sun, 25 Jan 2015 12:15:44 +0100 + gpsd (3.11-2) unstable; urgency=medium * [a759614c] Avoid prompting due to modified squeeze conffiles. diff --git a/debian/gpsd.preinst b/debian/gpsd.preinst index aba1c8d..463f57d 100644 --- a/debian/gpsd.preinst +++ b/debian/gpsd.preinst @@ -13,9 +13,10 @@ case $1 in if [ -f /etc/default/gpsd ]; then cp /etc/default/gpsd /etc/default/gpsd.dpkg-pre_3.10 gpsd_hashsum=$(md5sum /etc/default/gpsd | awk '{print $1}') -# handle upgrades from squeeze - wheeze - jessie +# handle upgrades from lenny - squeeze - wheeze - jessie case ${gpsd_hashsum} in -5944bab322c2a6df28cf0e64f7f7ec86|4d3f8665963201dc74721ef06bf27989) +# wheezy # squeeze# lenny # lenny - squeeze - wheezy +5944bab322c2a6df28cf0e64f7f7ec86|4d3f8665963201dc74721ef06bf27989|d19811464c448c0852ad541be3f7fdc3|370942c4da267af152f6c3178137e60f) rm -f /etc/default/gpsd ;; esac
Bug#776132: unblock: rhn-client-tools/1.8.26-4
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package rhn-client-tools Due to a change in the xmlrpc library rhnlib threw a backtrace while transferring the installed packages list to the spacewalk server, rendering the whole spacewalk integration more or less useless as soon as you started using multiarch. As multiarch is a very common thing these days this in a RC issue in my opinion. Reason for the problem was the installTime function in rhn-client-tools which returned None as timestamp for multiarch packages (which xmlrpclib didn't want to send over the wire anymore). 1.8.26-4 fixes this problem. diff is attached. unblock rhn-client-tools/1.8.26-4 Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index fba8c8e..c8ee7b0 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,13 @@ +rhn-client-tools (1.8.26-4) unstable; urgency=medium + + * [e3525938] Fix installTime function for multiarch. +This should avoid to send None as timestamp via +xmlrpc, which resulted in a traceback due to changes in +xmlrpc, breaking spacewalk support. +Thanks to Klaas Demter and Philipp Born (Closes: #728365) + + -- Bernd Zeimetz b...@debian.org Sat, 24 Jan 2015 09:39:24 +0100 + rhn-client-tools (1.8.26-3) unstable; urgency=medium * [11430f4f] Merge branch 'master' of diff --git a/debian/patches/installTime_multiarch_fix b/debian/patches/installTime_multiarch_fix new file mode 100644 index 000..3ca70dc --- /dev/null +++ b/debian/patches/installTime_multiarch_fix @@ -0,0 +1,32 @@ +--- a/src/up2date_client/debUtils.py b/src/up2date_client/debUtils.py +@@ -34,12 +34,14 @@ def parseVRE(version): + release = tmp[-1] + return version, release, epoch + +-def installTime(pkg_name): +-path = '/var/lib/dpkg/info/%s.list' % pkg_name +-if os.path.isfile(path): +- return os.path.getmtime(path) +-else: +- return None ++def installTime(pkg_name, arch=None): ++paths = ['/var/lib/dpkg/info/%s.list' % (pkg_name,)] ++if arch: ++paths.append('/var/lib/dpkg/info/%s:%s.list' % (pkg_name, arch)) ++for path in paths: ++if os.path.isfile(path): ++ return os.path.getmtime(path) ++return None + + #FIXME: Using Apt cache might not be an ultimate solution. + # It could be better to parse /var/lib/dpkg/status manually. +@@ -70,7 +72,7 @@ def getInstalledPackageList(msgCallback + 'version': version, + 'release': release, + 'arch': pkg.installed.architecture + '-deb', +-'installtime': installTime(pkg.name) ++'installtime': installTime(pkg.name, pkg.installed.architecture) + } + pkg_list.append(package) + diff --git a/debian/patches/series b/debian/patches/series index e69de29..7a8b14e 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -0,0 +1 @@ +installTime_multiarch_fix
Bug#775407: unblock: pmacct/1.5.0-4
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package pmacct 1.5.0-4 ships a fix for a regression which was introduced in the 1.5 series of pmacct: ipv6 accounting using network files - which is a very common case - was broken and fixed by upstream with the used patch. pmacct (1.5.0-4) unstable; urgency=medium * [d7df1811] Fix identification of dummy entry. Upstream commit dff5ca21847d799759de27e8fd080e1f7a04cc30 (Closes: #775330) -- Bernd Zeimetz b...@debian.org Wed, 14 Jan 2015 10:42:30 +0100 patch is attached. unblock pmacct/1.5.0-4 thanks, bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index 1ba0d1c..1765453 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +pmacct (1.5.0-4) unstable; urgency=medium + + * [d7df1811] Fix identification of dummy entry. +Upstream commit dff5ca21847d799759de27e8fd080e1f7a04cc30 (Closes: #775330) + + -- Bernd Zeimetz b...@debian.org Wed, 14 Jan 2015 10:42:30 +0100 + pmacct (1.5.0-3) unstable; urgency=medium * [e9cf7671] Add Homepage and Vcs information. diff --git a/debian/patches/ip_dummy_masknum_fix b/debian/patches/ip_dummy_masknum_fix new file mode 100644 index 000..6da2696 --- /dev/null +++ b/debian/patches/ip_dummy_masknum_fix @@ -0,0 +1,37 @@ +Taken from upstream + +commit dff5ca21847d799759de27e8fd080e1f7a04cc30 +Author: paolo paolo +Date: Tue Jan 13 13:43:24 2015 + + +* fix, net_aggr.c: identification of dummy entry now based on masknum only. + Thanks to Bernd Zeimetz for his support resolving the issue. + +--- a/src/net_aggr.c b/src/net_aggr.c +@@ -1,6 +1,6 @@ + /* + pmacct (Promiscuous mode IP Accounting package) +-pmacct is Copyright (C) 2003-2014 by Paolo Lucente ++pmacct is Copyright (C) 2003-2015 by Paolo Lucente + */ + + /* +@@ -464,7 +464,7 @@ struct networks_table_entry *binsearch(s + + ret = networks_cache_search(nc, addr); + if (ret) { +-if (!ret-mask ret-masknum) return NULL; /* dummy entry identification */ ++if (ret-masknum == 255) return NULL; /* dummy entry identification */ + else return ret; + } + +@@ -1792,7 +1792,7 @@ struct networks6_table_entry *binsearch6 + + ret = networks_cache_search6(nc, addr); + if (ret) { +-if (!ret-mask ret-masknum) return NULL; /* dummy entry identification */ ++if (ret-masknum == 255) return NULL; /* dummy entry identification */ + else return ret; + } + diff --git a/debian/patches/series b/debian/patches/series index 68dcd47..b4f6aee 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -1,2 +1,3 @@ fix-syslog-format-security af_link.patch +ip_dummy_masknum_fix
Bug#774905: unblock: gpsd/3.11-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package gpsd as it fixes rc bug #774872. gpsd (3.11-2) unstable; urgency=medium * [a759614c] Avoid prompting due to modified squeeze conffiles. Thanks to Andreas Beckmann (Closes: #774872) -- Bernd Zeimetz b...@debian.org Thu, 08 Jan 2015 21:35:30 +0100 unblock gpsd/3.11-2 Thanks a lot, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index aff8c09..88fd6f2 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +gpsd (3.11-2) unstable; urgency=medium + + * [a759614c] Avoid prompting due to modified squeeze conffiles. +Thanks to Andreas Beckmann (Closes: #774872) + + -- Bernd Zeimetz b...@debian.org Thu, 08 Jan 2015 21:35:30 +0100 + gpsd (3.11-1) unstable; urgency=medium * [325d1900] Merge tag 'upstream/3.11' diff --git a/debian/gpsd.preinst b/debian/gpsd.preinst index d57be64..aba1c8d 100644 --- a/debian/gpsd.preinst +++ b/debian/gpsd.preinst @@ -1,4 +1,4 @@ -#! /bin/sh +#!/bin/bash # preinst script for gpsd # # see: dh_installdeb(1) @@ -12,9 +12,13 @@ case $1 in # move config file if [ -f /etc/default/gpsd ]; then cp /etc/default/gpsd /etc/default/gpsd.dpkg-pre_3.10 -if [ $(md5sum /etc/default/gpsd | awk '{print $1}') = 5944bab322c2a6df28cf0e64f7f7ec86 ]; then -rm -f /etc/default/gpsd -fi +gpsd_hashsum=$(md5sum /etc/default/gpsd | awk '{print $1}') +# handle upgrades from squeeze - wheeze - jessie +case ${gpsd_hashsum} in +5944bab322c2a6df28cf0e64f7f7ec86|4d3f8665963201dc74721ef06bf27989) +rm -f /etc/default/gpsd +;; +esac fi fi ;;
Bug#771445: unblock: open-vm-tools/2:9.4.6-1770165-7
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package open-vm-tools 2:9.4.6-1770165-7 fixes CVE-2014-4199 / #770809 thanks, bernd unblock open-vm-tools/2:9.4.6-1770165-7 -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index 89d3cb3..f6b5705 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +open-vm-tools (2:9.4.6-1770165-7) unstable; urgency=medium + + * [8df5b4ac] Adding patch to fix CVE-2014-4199. +Thanks to Moritz Muehlenhoff (Closes: #770809) + + -- Bernd Zeimetz b...@debian.org Sat, 29 Nov 2014 15:57:20 +0100 + open-vm-tools (2:9.4.6-1770165-6) unstable; urgency=medium * [6b514014] Fix installation of systemd services. diff --git a/debian/patches/debian/fix-CVE-2014-4199 b/debian/patches/debian/fix-CVE-2014-4199 new file mode 100644 index 000..3764b62 --- /dev/null +++ b/debian/patches/debian/fix-CVE-2014-4199 @@ -0,0 +1,123 @@ +--- a/scripts/common/vm-support b/scripts/common/vm-support +@@ -27,9 +27,7 @@ usage() + } + + +-TARFILE=vm-`date +%Y-%m-%d`.$$.tar + VER=0.89 +-OUTPUT_DIR=vm-support.$$ + + # banner(): prints any number of strings padded with + # newlines before and after. +@@ -83,7 +81,7 @@ checkOutputDir() + if [ $? != 0 ]; then + banner Could not create ./${OUTPUT_DIR}$dir... \ + Have you run out of disk space? Continuing +- return -1 ++ return 1 + fi +fi +return 0 +@@ -195,22 +193,20 @@ fi + # possible information leakage. + umask 0077 + +-# Clear up temporary files if the process is killed midway. +-trap rm -rf ${OUTPUT_DIR}; exit 1 HUP INT QUIT TERM ABRT +- +- +-# make a subdir to put all your files in. die if it does not create +-mkdir $OUTPUT_DIR + ++TARFILE=$(mktemp vm-$(date +%Y-%m-%d.XX).tar) ++OUTPUT_DIR=`mktemp -d` + if [ $? != 0 ]; then + error Could not create ./${OUTPUT_DIR}. Please cd to a directory to which +- you can write. ++you can write. + fi ++# Clear up temporary files if the process is killed midway. ++trap chmod -R u+w ${OUTPUT_DIR}; rm -rf ${OUTPUT_DIR} ${TARFILE}; exit 1 HUP INT QUIT TERM ABRT + + banner Collecting support information... + + # Common stuff that we gather for all OSes. +-runcmd echo vm-support version: $VER /tmp/vm-support-version.$$.txt ++runcmd echo vm-support version: $VER /tmp/vm-support-version.txt + + addfiles /etc/vmware-tools + addfiles /var/log/boot* +@@ -219,14 +215,14 @@ addfiles /var/log/messages* + addfiles /var/log/syslog* + addfiles /var/run/vmware-* + +-runcmd df /tmp/df.$$.txt +-runcmd ifconfig -a /tmp/ifconfig.$$.txt +-runcmd mount /tmp/mount.$$.txt +-runcmd dmesg /tmp/dmesg.$$.txt +-runcmd ulimit -a /tmp/ulimit-a.$$.txt +-runcmd uptime /tmp/uptime.$$.txt +-runcmd date /tmp/date.$$.txt +-runcmd umask /tmp/umask.$$.txt ++runcmd df /tmp/df.txt ++runcmd ifconfig -a /tmp/ifconfig.txt ++runcmd mount /tmp/mount.txt ++runcmd dmesg /tmp/dmesg.txt ++runcmd ulimit -a /tmp/ulimit-a.txt ++runcmd uptime /tmp/uptime.txt ++runcmd date /tmp/date.txt ++runcmd umask /tmp/umask.txt + + + # stageLinux(): gather information for troubleshooting Linux guests. +@@ -272,29 +268,29 @@ stageLinux() +addfile /proc/irq + +# Commands to run ($1) and redirect to logs ($2) for inclusion. +- runcmd ps auwwx /tmp/ps-auwwx.$$.txt +- runcmd lspci -H1 -M /tmp/lspci1.$$.txt +- runcmd lspci -H1 -M -vn /tmp/lspci2.$$.txt +- runcmd /sbin/lsmod /tmp/modules.$$.txt +- runcmd uname -a /tmp/uname.$$.txt +- runcmd cat /etc/issue /tmp/issue.$$.txt +- runcmd rpm -qa /tmp/rpm-qa.$$.txt +- runcmd netstat -lan /tmp/netstat-lan.$$.txt +- runcmd route /tmp/route.$$.txt +- runcmd free /tmp/free.$$.txt ++ runcmd ps auwwx /tmp/ps-auwwx.txt ++ runcmd lspci -H1 -M /tmp/lspci1.txt ++ runcmd lspci -H1 -M -vn /tmp/lspci2.txt ++ runcmd /sbin/lsmod /tmp/modules.txt ++ runcmd uname -a /tmp/uname.txt ++ runcmd cat /etc/issue /tmp/issue.txt ++ runcmd rpm -qa /tmp/rpm-qa.txt ++ runcmd netstat -lan /tmp/netstat-lan.txt ++ runcmd route /tmp/route.txt ++ runcmd free /tmp/free.txt + } + + + # stageFreeBSD(): gather information for troubleshooting FreeBSD guests. + stageFreeBSD() + { +- runcmd ps auwwx /tmp/ps-auwwx.$$.txt ++ runcmd ps auwwx /tmp/ps-auwwx.txt + } + + # stageSolaris(): gather information for troubleshooting Solaris guests. + stageSolaris() + { +- runcmd ps eaf /tmp/ps-eaf.$$.txt ++ runcmd ps eaf /tmp/ps-eaf.txt + } + + case `uname` in +@@ -336,6 +332,7 @@ if [ $? != 0 ]; then + fi + + # Clean up temporary files ++chmod -R u+w $OUTPUT_DIR # needed if run as non-root user. + rm -rf $OUTPUT_DIR + + if [ $? != 0 ]; then diff --git a/debian/patches/series b/debian/patches/series index 378a50e..bb3ff13
Bug#770716: unblock: apt-spacewalk/1.0.6-4.1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package apt-spacewalk 1.0.6-4.1 fixes #769508 which made apt-spacewalk uninstallable. Patch is attached. Thanks, Bernd unblock apt-spacewalk/1.0.6-4.1 -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash diff -u apt-spacewalk-1.0.6/debian/changelog apt-spacewalk-1.0.6/debian/changelog --- apt-spacewalk-1.0.6/debian/changelog +++ apt-spacewalk-1.0.6/debian/changelog @@ -1,3 +1,11 @@ +apt-spacewalk (1.0.6-4.1) unstable; urgency=medium + + * Non-maintainer upload. + * Check for post_invoke.py to exist before attempting to invoke it +(Closes: 769508) + + -- Andreas Bombe a...@debian.org Sat, 22 Nov 2014 18:42:41 +0100 + apt-spacewalk (1.0.6-4) unstable; urgency=medium * [99f9479e] Integrate NMU that went missing. only in patch2: unchanged: --- apt-spacewalk-1.0.6.orig/50spacewalk +++ apt-spacewalk-1.0.6/50spacewalk @@ -11,5 +11,5 @@ } }; DPkg::Post-Invoke { -/usr/lib/apt-spacewalk/post_invoke.py; +[ ! -e /usr/lib/apt-spacewalk/post_invoke.py ] || /usr/lib/apt-spacewalk/post_invoke.py; };
Bug#770716: unblock: apt-spacewalk/1.0.6-4.1
Control: tags -1 -moreinfo On 11/23/2014 04:41 PM, Adam D. Barratt wrote: On Sun, 2014-11-23 at 16:13 +0100, Bernd Zeimetz wrote: Please unblock package apt-spacewalk 1.0.6-4.1 fixes #769508 which made apt-spacewalk uninstallable. Patch is attached. While the patch looks fine, the package appears to be in DELAYED/5 and we can't unblock packages that aren't in unstable. Oh, seems the NMUer failed to move it... Done so some minutes ago, package accepted in unstable. Please remove the moreinfo tag once the package has reached the archive. done Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/547254ca.3030...@debian.org
Bug#768596: unblock: lua-json/1.3.2-1
On 08.11.2014 16:50, Bernd Zeimetz wrote: I've merge the next bugfix release of the 1.3 series to make lua-json work at all again. 1.3.2 fixes/changes: - compatibility with lpeg 0.12 See #719519 (grave...) for details. -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20d26aa7d9fdce2fef6d2dfe11e61...@mail.recluse.de
Bug#768596: unblock: lua-json/1.3.2-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package lua-json I've merge the next bugfix release of the 1.3 series to make lua-json work at all again. 1.3.2 fixes/changes: - compatibility with lpeg 0.12 - sets _ENV to nil using local _ENV = nil to avoid global writing this avoids problems in strict environments - enhance documentation and lpeg testing information. thanks, bernd unblock lua-json/1.3.2-1 -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash diff --git a/README b/README index 7a79d97..8022ef5 100644 --- a/README +++ b/README @@ -12,16 +12,18 @@ Bug reports: Requirements Lua 5.1, 5.2, or LuaJIT 2.0 - LPeg (Tested with 0.7, 0.8, 0.9, 0.10 ... 0.6 mostly works) + LPeg (Tested with 0.7, 0.8, 0.9, 0.10, 0.12rc2 ... 0.6 mostly works) For regressionTest: lfs (Tested with 1.4.1) For lunit-tests: lunit = 0.4 +NOTE: LPeg 0.11 may not work - it crashed during my tests + Lua versions tested recently: -Lua 5.1.4 + strict -Lua 5.2.0 -LuaJIT-2.0.0-beta10 + strict +Lua 5.1.4 + strict + pl.strict +Lua 5.2.0 + pl.strict +LuaJIT-2.0.0-beta10 + strict + pl.strict License All-but tests: MIT-style, See LICENSE for details @@ -58,6 +60,9 @@ Module/Function overview: --null Reference value to represent 'null' in a well-defined way to allow for null values to be inserted into an array/table + --merge (t : table, ... : tables) + Shallow-merges a sequence of tables onto table t by iterating over each using + pairs and assigning. Attribution: parsing test suite from JSON_checker project of http://www.json.org/ diff --git a/ReleaseNotes.txt b/ReleaseNotes.txt index 7c33066..61ca4e3 12 --- a/ReleaseNotes.txt +++ b/ReleaseNotes.txt @@ -1 +1 @@ -docs/ReleaseNotes-1.3.1.txt \ No newline at end of file +docs/ReleaseNotes-1.3.2.txt \ No newline at end of file diff --git a/debian/changelog b/debian/changelog index a8f..d1f7fb2 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,15 @@ +lua-json (1.3.2-1) unstable; urgency=medium + + * [25eb09ad] Merge branch 'upstream' +Closes: #719519 +Merging upstream version 1.3.2 which is a bugfix release +to make luajson work with lpeg again. It also sets _ENV to nil using local +_ENV = nil to avoid global writing. +Documentation and tests were updated accordingly and enhanced. + * [b2bdecd4] Remove transitional package. + + -- Bernd Zeimetz b...@debian.org Sat, 08 Nov 2014 16:31:39 +0100 + lua-json (1.3.1-1) unstable; urgency=medium * [3d18e710] Merge tag 'upstream/1.3.1' diff --git a/debian/control b/debian/control index a6462b3..4c32abe 100644 --- a/debian/control +++ b/debian/control @@ -17,12 +17,3 @@ Provides: liblua5.1-json, ${lua:Provides} XB-Lua-Versions: ${lua:Versions} Description: JSON decoder/encoder for Lua LuaJSON is a customizable JSON decoder/encoder using LPEG for parsing. - -Package: liblua5.1-json -Section: oldlibs -Priority: extra -Architecture: all -Depends: ${misc:Depends}, lua-json -Description: Transitional package for lua-json - This is a transitional package to ease upgrades to the lua-json - package. It can safely be removed. diff --git a/docs/ReleaseNotes-1.3.2.txt b/docs/ReleaseNotes-1.3.2.txt new file mode 100644 index 000..3dc2dd8 --- /dev/null +++ b/docs/ReleaseNotes-1.3.2.txt @@ -0,0 +1,27 @@ +luajson v1.3.2 Release Notes + + +User Visible Changes + +One of the main changes in this release is compatibility with LPeg 0.12 and +more sane _ENV manipulation to avoid problems in strict environments. +The documentation has also been updated to reflect the behavior of the +often-used 'merge' utility to avoid surprises in behavior. + +Plans for next release +-- +A future release will have a stronger focus on decoder performance. It may +mean a reduction in flexibility by removing options and breaking compatibility. + +Updates since 1.3.1 +=== + +Thomas Harning Jr (6): + all: + sets _ENV to nil using local _ENV = nil to avoid global writing + decoder: + fixes compatibility with lpeg 0.12 by closing off 0-length captures in loops + docs: + documents testing with the Penlight 'strict' module + adds merge behavior documentation + updates LPeg testing information diff --git a/lua/json.lua b/lua/json.lua index bfbbaff..b3e5400 100644 --- a/lua/json.lua +++ b/lua/json.lua @@ -8,7 +8,7 @@ local util = require(json.util) local _G = _G -_ENV = nil +local _ENV = nil local json = { _VERSION = 1.3, diff --git a/lua/json/decode.lua b/lua/json/decode.lua index 739c2e8..b2c357c
Bug#768198: unblock: pmacct/1.5.0-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package pmacct This upload ensures smooth upgrades from sysv to systemd and fixes some bugs in the systemd config. unblock pmacct/1.5.0-3 thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index a4c8fb4..1ba0d1c 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,15 @@ +pmacct (1.5.0-3) unstable; urgency=medium + + * [e9cf7671] Add Homepage and Vcs information. + * [3783d4a2] Fix dpkg dependency for easy backporting. + * [7090c1cc] Fix systemd service files. +- Read the appropriate config file +- Use Type=forking to make upgrades easier. +Thanks to Malcolm Scott (Closes: #767977) + * [9cc618e2] Add ${misc:Depends} to Depends. + + -- Bernd Zeimetz b...@debian.org Wed, 05 Nov 2014 18:27:55 +0100 + pmacct (1.5.0-2) unstable; urgency=medium * [5ede5bde] Build with ulog support on linux only. diff --git a/debian/control b/debian/control index 7443a63..69b8555 100644 --- a/debian/control +++ b/debian/control @@ -15,11 +15,14 @@ Build-Depends: debhelper (= 9), autotools-dev, dh-systemd Standards-Version: 3.9.6 +Homepage: http://www.pmacct.net/ +Vcs-Git: https://github.com/bzed/pkg-pmacct.git +Vcs-Browser: https://github.com/bzed/pkg-pmacct Package: pmacct Architecture: any -Depends: ${shlibs:Depends}, net-tools [linux-any] | freebsd-net-tools [kfreebsd-any], psmisc, lsb-base (= 3.2-14) -Pre-Depends: dpkg (= 1.17.5) +Depends: ${shlibs:Depends}, net-tools [linux-any] | freebsd-net-tools [kfreebsd-any], psmisc, lsb-base (= 3.2-14), ${misc:Depends} +Pre-Depends: dpkg (= 1.15.8) Description: promiscuous mode traffic accountant pmacct is a tool designed to gather traffic information (bytes and number of packets) by listening on a promiscuous interface or for Netflow data, diff --git a/debian/pmacct.nfacctd.service b/debian/pmacct.nfacctd.service index 4494bec..86cf431 100644 --- a/debian/pmacct.nfacctd.service +++ b/debian/pmacct.nfacctd.service @@ -3,8 +3,9 @@ Description=netflow accounting daemon After=network.target [Service] +Type=forking EnvironmentFile=-/etc/default/nfacctd -ExecStart=/usr/sbin/nfacctd -f ${PMACCTD_CONF} $DAEMON_OPTS +ExecStart=/usr/sbin/nfacctd -f ${NFACCTD_CONF} $DAEMON_OPTS [Install] WantedBy=multi-user.target diff --git a/debian/pmacct.pmacctd.service b/debian/pmacct.pmacctd.service index f4dc7d8..70c1ec3 100644 --- a/debian/pmacct.pmacctd.service +++ b/debian/pmacct.pmacctd.service @@ -3,6 +3,7 @@ Description=promiscuous mode accounting daemon After=network.target [Service] +Type=forking EnvironmentFile=-/etc/default/pmacctd ExecStart=/usr/sbin/pmacctd -f ${PMACCTD_CONF} $DAEMON_OPTS diff --git a/debian/pmacct.sfacctd.service b/debian/pmacct.sfacctd.service index 965bc56..29d76ff 100644 --- a/debian/pmacct.sfacctd.service +++ b/debian/pmacct.sfacctd.service @@ -3,8 +3,9 @@ Description=sflow accounting daemon After=network.target [Service] +Type=forking EnvironmentFile=-/etc/default/sfacctd -ExecStart=/usr/sbin/sfacctd -f ${PMACCTD_CONF} $DAEMON_OPTS +ExecStart=/usr/sbin/sfacctd -f ${SFACCTD_CONF} $DAEMON_OPTS [Install] WantedBy=multi-user.target diff --git a/debian/pmacct.uacctd.service b/debian/pmacct.uacctd.service index f990b92..3862a02 100644 --- a/debian/pmacct.uacctd.service +++ b/debian/pmacct.uacctd.service @@ -3,8 +3,9 @@ Description=ulog accounting daemon After=network.target [Service] +Type=forking EnvironmentFile=-/etc/default/uacctd -ExecStart=/usr/sbin/uacctd -f ${PMACCTD_CONF} $DAEMON_OPTS +ExecStart=/usr/sbin/uacctd -f ${UACCTD_CONF} $DAEMON_OPTS [Install] WantedBy=multi-user.target
Bug#766417: unblock: nagios-plugins-contrib/13.20141017
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please lower the transition time of nagios-plugins-contrib to 5 days - we found some show-stopping bugs in important plugins as check_raid, fixed in the last upload. thanks, bernd unblock nagios-plugins-contrib/13.20141017 -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16-2-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/2014102450.18773.31906.report...@think.bzed.org
Bug#765576: unblock: open-vm-tools/2:9.4.6-1770165-6
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock hi, please reduce the waiting time for open-vm-tools to 5 days. -6 fixes various bugs discussed in #764295, including broken package upgrades. -5 migrated shortly before I managed to have -6 uploaded... Thanks, Bernd unblock open-vm-tools/2:9.4.6-1770165-6 -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16-2-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141016110224.3404.63321.report...@think.bzed.org
Bug#732218: transition: gpsd
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Hi, Feel free to upload to sid. Let us know when binNMUs can be scheduled. uploaded right now. Thanks! - -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -BEGIN PGP SIGNATURE- Version: GnuPG v1 Comment: Using GnuPG with Icedove - http://www.enigmail.net/ iQIcBAEBCAAGBQJTK2m+AAoJEOs2Fxpv+UNf5DcP/0QLdsst1iEc6AGejKLYCw3f Rtk97hieeF2jr03vL1ewcMGkuobq/OQs6cIDpVc8y6ug63B9H0515jHixaZrAU3T VhVrnxmfwKq460ljGsIJBbcU3e5qJlExMstkzWdqc3PVr7nIex+nprhWfo2bJpZI LEjOXK8JH5Qr38xWoLtcfHdgUj60mCjSF6Eab0lz1YI0IB/kFRVaKe8JeQNBr9ll Gwpq2yG0keb1z54vh2pVSDqL5+GRtrsPZvo/lETXlH2g+MEfGhr8GswP3LWhLUtf ZMLqJ6TkmL7a63U88aqgqQK7fTqKQP4P+E3qfLyoE9Nvs+s1ik9CQPFSBjW48Qz6 nd9FOHHrTVUFTIfaePf8SWxxht8GmQghLzrWUPWYrIoTNRyJ3unEedE3BNHw8eV+ 5vISDS7VQjwhYlXk2zphltcEVdj8vvogEeDJdYYK7uh5/mMW9lkD+mkfkDuVWIPc GhBoSn+RBLpDX9dXW6VQ+x1q0kVJ2xOk62oE2kdaujq5fLl1LruhDgvoo+IM8HEd 6oQLikC0tahyioZq0fbD9qN4RaKzsSloqKUoVBge0GYIsLLYRd++C31SCXbsWVo1 uzRAnVyy3gvh1zeKIAGkM2cWcJr68ANFEqgp+WY8QCH433kK6wC1Jo8JDdYfmnEo zwfirnPXPoKcp0hM8MkC =HFXg -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/532b69bf.4060...@debian.org
Bug#732218: transition: gpsd
Hi again, this is a friendly reminder not to forgot about this bug. at least a reply with a possible time frame would be nice. Thanks, Bernd On 12/15/2013 07:41 PM, Bernd Zeimetz wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi release team, gpsd 3.10 (currently in experimental) comes with a soname bump in libgps/libqgpsmm. As the list of reverse dependencies is rather long (like kdeish stuff), please let me know when its save to upload it to unstable. There were no changes which should stop the build-rdepds from building fine, so I don't expect issues. Thanks, Bernd Ben file: title = gpsd; is_affected = .depends ~ lib(gps|qgpsmm)20 | .depends ~ lib(gps|qgpsmm)21; is_good = .depends ~ lib(gps|qgpsmm)21; is_bad = .depends ~ lib(gps|qgpsmm)20; -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/52ca8f46.1010...@bzed.de
Bug#732218: transition: gpsd
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi release team, gpsd 3.10 (currently in experimental) comes with a soname bump in libgps/libqgpsmm. As the list of reverse dependencies is rather long (like kdeish stuff), please let me know when its save to upload it to unstable. There were no changes which should stop the build-rdepds from building fine, so I don't expect issues. Thanks, Bernd Ben file: title = gpsd; is_affected = .depends ~ lib(gps|qgpsmm)20 | .depends ~ lib(gps|qgpsmm)21; is_good = .depends ~ lib(gps|qgpsmm)21; is_bad = .depends ~ lib(gps|qgpsmm)20; -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20131215184156.22791.59127.report...@think.bzed.org
Re: DSA concerns for jessie architectures
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 06/22/2013 07:26 PM, Martin Zobel-Helas wrote: * sparc: no working nflog (mild concern); no stable kernels in stable (compiling clisp for instance crashes the kernel reliably on smetana). We need to run sparc with oldstable kernels to provide stable machines. That's not an option for long. I think all machines except stadler and sompek are US IIIi machines. The problem with US IIIi is, that sun never published the cpu specs - they would have done it if somebody would have paid for the lawyers to look trough them before publishing. US IIi support was implemented by a student working at SUN under NDA and US IV and later was published. So I think if dropping (official) support for US IIIi CPUs would keep the port alive, we should do that. Running Debian on the more recent machines makes more sense anyway imho. The older ones are nice, but they consume a lt of power. - -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (GNU/Linux) Comment: Using GnuPG with Icedove - http://www.enigmail.net/ iQIcBAEBCAAGBQJR7DExAAoJEOs2Fxpv+UNffpcP/2Rs12KtUr1R8Fj/SUFsGTGi Qq4IyIsq6T9+0be/Q2NT+8vKhqy9eAfLIGPYfEfMP/gQUXHxqURF7452FCum5pCe PPbhpGMFL67rX9I9tdNbYGEcD6KnHksHc64PaV4FkCd5W/dvQzaVHxfP5I7TjFL2 JQVrfqYTi546kPN7kqo6YhNNC+jFRBJOxB+2RhdEddg12xU9/08/YIy865qJqXSP 0X+xBfiGu040AKUC+Ml4ZjFGKDnCOKhuuAKDYnyZLjLSFjTkE00WowKDS8JmJRLC ls89Xha2K4Sk01io+f4iermCjRsHD/GvS4mNIG5HsEQYHROdWoCFNRl4hAdGI0zZ CvFnxaJLwQ+cd0dsoFO/OkuRLTYOrjHKTniOjrWcgaOl0L6C6K4Jhyh+jpl2GmO/ sUs/K3jtUBos5Q1ojetmm/rAXjEFe3giOokosUP1DOB8fWUnYqRDYf5ODOeEucot nzl6lfvp+g2nQVQAAOqpSqxCYYhue23Mg8ZYfW1L/I8mNIvClrcSVfHAAP3URQeY eDGoyPNX6AIYiFX8J121ynfMa/TujGURfoPcQWWGFb3NyJ4/RM/FrTAAseldcIlW 2nfpRUX118LEYLQ6Jj4JQn7Ci6lL+SUgI2HfSRu/5a1aoBrEVhVF5ItUbMU6B0Vx YTnzPB7WteSULAbu90Iz =H+fH -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/51ec3137.1020...@bzed.de
Bug#706727: unblock: gpsd/3.6-5
Hi, It was /far/ too late to get in before the release at that point, so... thought so, but as I didn't find the time to read all the lists I thought I could give it a try :) Pretty busy these days... +gpsd (3.6-5) unstable; urgency=medium + + * [818fb0a6] Fixing two security bugs in gpsd +- one triggered by malformed NMEA packets, making gpsd crash +- the other one is a possible DOS in the AIS parser, + CVE-2013-2038 +Thanks to Salvatore Bonaccorso (Closes: #706665) Please use 3.6-4+deb7u1 as the version and wheezy as the upload target. uploaded. Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/5192a80c.5070...@debian.org
Bug#706727: unblock: gpsd/3.6-5
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi! Please unblock package gpsd as it fixes CVE-2013-2038 The bug is not *that* bad, so if you don't have the time to get it in before wheezy is released, I'll prepare an update for the first point release, no problem at all. Thanks, Bernd unblock gpsd/3.6-5 diff --git a/debian/changelog b/debian/changelog index 4fb3c27..54e87f3 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,13 @@ +gpsd (3.6-5) unstable; urgency=medium + + * [818fb0a6] Fixing two security bugs in gpsd +- one triggered by malformed NMEA packets, making gpsd crash +- the other one is a possible DOS in the AIS parser, + CVE-2013-2038 +Thanks to Salvatore Bonaccorso (Closes: #706665) + + -- Bernd Zeimetz b...@debian.org Fri, 03 May 2013 20:57:35 +0200 + gpsd (3.6-4) unstable; urgency=low * [8607cd96] Add some bugfixes from upstream. diff --git a/debian/patches/08edc49_Address-Savannah-bug-38511 b/debian/patches/08edc49_Address-Savannah-bug-38511 new file mode 100644 index 000..23803a6 --- /dev/null +++ b/debian/patches/08edc49_Address-Savannah-bug-38511 @@ -0,0 +1,23 @@ +From 08edc49d8f63c75bfdfb480b083b0d960310f94f Mon Sep 17 00:00:00 2001 +From: Eric S. Raymond e...@thyrsus.com +Date: Wed, 10 Apr 2013 22:22:34 -0400 +Subject: [PATCH] Address Savannah bug #38511: + +ais_context-bitlen = sizeof(ais_context-bits)/8 is not checked +--- + drivers.c |4 + 1 file changed, 4 insertions(+) + +--- a/drivers.c b/drivers.c +@@ -1332,6 +1332,10 @@ static bool aivdm_decode(const char *buf + (1 (7 - ais_context-bitlen % 8)); + } + ais_context-bitlen++; ++ if (ais_context-bitlen sizeof(ais_context-bits)) { ++ gpsd_report(LOG_INF, overlong AIVDM payload truncated.\n); ++ return false; ++ } + } + /*@ +shiftnegative @*/ + } diff --git a/debian/patches/dd9c3c2_Fix-a-malformed-packet-crash b/debian/patches/dd9c3c2_Fix-a-malformed-packet-crash new file mode 100644 index 000..e60fcea --- /dev/null +++ b/debian/patches/dd9c3c2_Fix-a-malformed-packet-crash @@ -0,0 +1,33 @@ +From dd9c3c2830cb8f8fd8491ce68c82698dc5538f50 Mon Sep 17 00:00:00 2001 +From: Eric S. Raymond e...@thyrsus.com +Date: Wed, 24 Apr 2013 07:44:35 -0400 +Subject: [PATCH] Fix a malformed-packet crash. + +Under weird circumstances, this line of device input + +$GPGGA,030130$GPGLL,2638.1728,N,08011.3893,W,030131.000,A,A*41 + +could core-dump the packet parser. The context had to be exactly +right for it to happen. The bug was an incorrect attempt at optimizing +recovery from this rare case. +--- + NEWS |3 ++- + packet.c |5 ++--- + test/daemon/triton400.log | 11 ++- + www/faq.html.in |4 ++-- + 4 files changed, 12 insertions(+), 11 deletions(-) + +--- a/packet.c b/packet.c +@@ -471,9 +471,8 @@ static void nextstate(struct gps_packet_ + /* not strictly correct, but helps for interpreting logfiles */ + lexer-state = NMEA_RECOGNIZED; + else if (c == '$'){ +- /* faster recovery from missing sentence trailers */ +- lexer-state = NMEA_DOLLAR; +- lexer-inbufptr += (n-1); ++ lexer-state = GROUND_STATE; ++ character_pushback(lexer); + } else if (!isprint(c)) + lexer-state = GROUND_STATE; + break; diff --git a/debian/patches/series b/debian/patches/series index 9c47577..c9b2081 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -6,3 +6,5 @@ a3f6c60_Do-not-assume-little_endian-just-because-__BIG_ENDIAN__-is-not-defined 5158d66_Fix-the-leap-seconds-notify c5623da_Another-fix-the-leap-seconds-notify 7f25576_Rebuild-some-binary-driver-tests.-Explain-why-this-is-needed +08edc49_Address-Savannah-bug-38511 +dd9c3c2_Fix-a-malformed-packet-crash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20130503195559.32687.55044.report...@think.bzed.org
Bug#703360: unblock: zbar/0.10+doc-8
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi release team, please unblock the package zbar as the last upload makes the Python extension actually work on arm* (and maybe other architectures). See #702499 for details. I'm also fixing #634774 with the upload as I had it commited already, replacing [!kfreebsd-* !hurd-*] by [linux-any]. Hope thats okay, although absolutely not release critical. Full diff between -7 and -8 is attached. Thanks, Bernd unblock zbar/0.10+doc-8 -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index e27a8ee..2ddb8ab 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,15 @@ +zbar (0.10+doc-8) unstable; urgency=low + + * [5c38da40] Use [linux-any] instead of [!kfreebsd-*]. +Thanks to Robert Millan (Closes: #634774) + * [1f15f52e] Add sentinel to PyGetSetDef imagescanner_getset[]. +Ensure that the loop is terminated which reads the +imagescanner_getset[] array on import - otherwise we'll run into +a segfault, at least on arm. +Thanks to Anton Gladky and Peter Green (Closes: #702499) + + -- Bernd Zeimetz b...@debian.org Sun, 17 Mar 2013 22:46:47 +0100 + zbar (0.10+doc-7) unstable; urgency=low * [48425c37] Ack'ing NMU. diff --git a/debian/control b/debian/control index 452084f..e25d6ef 100644 --- a/debian/control +++ b/debian/control @@ -2,7 +2,7 @@ Source: zbar Section: libs Priority: optional Maintainer: Bernd Zeimetz b...@debian.org -Build-Depends: debhelper (= 7), autotools-dev (= 20100122.1~), libgtk2.0-dev, libmagick++-dev, libqt4-dev, libx11-dev, pkg-config, python-all-dev (= 2.6.6-3~), python-all-dbg (= 2.6.6-3~), python-gtk2-dev, perl, dpkg-dev (= 1.15.6), dh-autoreconf, quilt (= 0.46-7~), libv4l-dev [!kfreebsd-i386 !kfreebsd-amd64 !hurd-i386] +Build-Depends: debhelper (= 7), autotools-dev (= 20100122.1~), libgtk2.0-dev, libmagick++-dev, libqt4-dev, libx11-dev, pkg-config, python-all-dev (= 2.6.6-3~), python-all-dbg (= 2.6.6-3~), python-gtk2-dev, perl, dpkg-dev (= 1.15.6), dh-autoreconf, quilt (= 0.46-7~), libv4l-dev [linux-any] Standards-Version: 3.8.4 Homepage: http://zbar.sourceforge.net/ XS-Python-Version: = 2.4 diff --git a/debian/patches/python-zbar-import-fix-am.patch b/debian/patches/python-zbar-import-fix-am.patch new file mode 100644 index 000..5d632a6 --- /dev/null +++ b/debian/patches/python-zbar-import-fix-am.patch @@ -0,0 +1,12 @@ +--- a/python/imagescanner.c b/python/imagescanner.c +@@ -67,7 +67,8 @@ imagescanner_get_results (zbarImageScann + } + + static PyGetSetDef imagescanner_getset[] = { +-{ results, (getter)imagescanner_get_results, }, ++{ results, (getter)imagescanner_get_results, NULL, NULL, NULL}, ++{NULL} /* Sentinel */ + }; + + static PyObject* diff --git a/debian/patches/series b/debian/patches/series index 7f82554..027a79b 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -1 +1,2 @@ 0001-Description-Linux-2.6.38-and-later-do-not-support-th.patch +python-zbar-import-fix-am.patch
Bug#686197: closed by Adam D. Barratt a...@adam-barratt.org.uk (Re: Bug#686197: unblock: rhnsd/4.9.15-1)
reopen 686197 retitle 686197 unblock: rhn-client-tools/1.8.9-3 thanks Hi, unfortunately I missed yet another dependency, which was not available on !linux. Apart from a new changelog entry, the diff is tiny: - python-dmidecode, lsb-release, gnupg, python-gudev, debconf, python-openssl + python-dmidecode, lsb-release, gnupg, python-gudev [linux-any], hal [!linux-any], debconf, python-openssl Support for hal is already in the rhn-client-tools, just the dependency was missing. So please unblock: rhn-client-tools/1.8.9-3 thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/506d6794.2030...@debian.org
Bug#686197: unblock: rhnsd/4.9.15-1
Hi Adam, [...] (Leaving aside arguments as to whether we should be introducing new packages now, ) an unblock wouldn't help. There may not have been any bugs filed against the package but it /is/ buggy, which is why it failed to migrate during the month that it had an automatic exception: thanks for the explanation - indeed I missed that piece while looking for reasons why the migration did not happen and there was no bug, so nobody noticed it. As python-ethtool will never work on !linux architectures, we've removed the strict dependency on it in rhn-client-tools. The diff is rather simple, so I would appreciate if you could unblock rhn-client-tools/1.8.9-2 instead. The diff between -1 and -2 is attached. Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/README.source b/debian/README.source new file mode 100644 index 000..c37f176 --- /dev/null +++ b/debian/README.source @@ -0,0 +1,2 @@ +This Debian package uses quilt(1) for patch management. +Please see /usr/share/doc/quilt/README.source for more information. diff --git a/debian/changelog b/debian/changelog index a8579c3..2d4ca4e 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +rhn-client-tools (1.8.9-2) unstable; urgency=low + + * [c611b6e2] Remove the dependency on !linux arches on python-ethtool. + * [bf0389ab] Add README.source. + + -- Bernd Zeimetz b...@debian.org Thu, 13 Sep 2012 00:55:56 +0200 + rhn-client-tools (1.8.9-1) unstable; urgency=low * Initial Debian release diff --git a/debian/control b/debian/control index da91206..5aa2e04 100644 --- a/debian/control +++ b/debian/control @@ -3,16 +3,16 @@ Section: python Priority: extra Maintainer: Miroslav Suchý miros...@suchy.cz Uploaders: Bernd Zeimetz b...@debian.org -Build-Depends: python (= 2.6.6-3~), debhelper (= 7.0.50~), intltool +Build-Depends: python (= 2.6.6-3~), debhelper (= 7.0.50~), intltool, quilt (= 0.48-3~) Standards-Version: 3.9.3 Homepage: https://fedorahosted.org/spacewalk Vcs-Browser: http://anonscm.debian.org/gitweb/?p=collab-maint/spacewalk/rhn-client-tools.git Vcs-Git: git://anonscm.debian.org/collab-maint/spacewalk/rhn-clint-tools.git Package: rhn-client-tools -Architecture: all +Architecture: any Depends: ${python:Depends}, ${misc:Depends}, python-rhn (= 2.5.40), - python-ethtool, python-dbus, python-apt (= 0.7.100), python-newt, + python-ethtool [linux-any], python-dbus, python-apt (= 0.7.100), python-newt, python-dmidecode, lsb-release, gnupg, python-gudev, debconf, python-openssl Recommends: apt-spacewalk Suggests: python-gnome2, python-gtk2, python-glade2 diff --git a/debian/patches/0001-workaround-missing-python-ethtool.patch b/debian/patches/0001-workaround-missing-python-ethtool.patch new file mode 100644 index 000..353308c --- /dev/null +++ b/debian/patches/0001-workaround-missing-python-ethtool.patch @@ -0,0 +1,42 @@ +From 8baef61c8b6b9564e7e936f52575d5eb75b5ee38 Mon Sep 17 00:00:00 2001 +From: =?UTF-8?q?Miroslav=20Such=C3=BD?= msu...@redhat.com +Date: Thu, 30 Aug 2012 10:53:01 +0200 +Subject: [PATCH] workaround missing python-ethtool + +On Debian/kfreebsd is not available python-ethtoool. It is because it requires libnl, +which is Linux specific. +So if python-ethtools is not present, do not fail and just print warning, +that hardware information about network interfaces are not present. +And read_network_interfaces() will return empty dictionary. +--- + .../rhel/rhn-client-tools/src/up2date_client/hardware.py | 12 +++- + 1 file changed, 11 insertions(+), 1 deletion(-) + +--- a/src/up2date_client/hardware.py b/src/up2date_client/hardware.py +@@ -22,7 +22,13 @@ import os + import sys + import config + +-import ethtool ++try: ++import ethtool ++ethtool_present = True ++except ImportError: ++sys.stderr.write(Warning: information about network interfaces could not be retrieved on this platform.\n) ++ethtool_present = False ++ + import gettext + t = gettext.translation('rhn-client-tools', fallback=True) + _ = t.ugettext +@@ -524,6 +530,10 @@ def read_network_interfaces(): + intDict = {} + intDict['class'] = NETINTERFACES + ++if not ethtool_present: ++# ethtool is not available on non-linux platforms (as kfreebsd), skip it ++return intDict ++ + interfaces = list(set(ethtool.get_devices() + ethtool.get_active_devices())) + for interface in interfaces: + try: diff --git a/debian/patches/series b/debian/patches/series new file mode 100644 index 000..d5110c0 --- /dev/null +++ b/debian/patches/series @@ -0,0 +1 @@ +0001-workaround-missing-python-ethtool.patch diff --git a/debian/rules b/debian/rules index 33dad7d..1f3b0f4 100755 --- a/debian/rules +++ b/debian/rules @@ -22,6 +22,9 @@ override_dh_auto_install: rm -rf
Bug#683299: please unblock: open-vm-tools/2:8.8.0+2012.05.21-724730-4
On 09/10/2012 02:39 PM, Mehdi Dogguy wrote: On 18/08/12 17:51, Julien Cristau wrote: On Tue, Aug 14, 2012 at 16:24:52 +0200, Thijs Kinkhorst wrote: Hi, As it seems, Daniel has uploaded a version of open-vm-tools that reverts the contentious changes. This version has been in unstable for 11 days now and no bugs have been reported since. Can you please review and unblock? Bernd is working on a package fixing the init script bugs too. I was waiting on that (and then was offline for a few days). CC'ing Bernd to get a status update. Any news? :) I was just waiting for an okay form Julien to upload, with no much luck so far unfortunately. I can upload it to t-p-u whenever you like. Cheers, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/504de236.1090...@debian.org
Bug#686197: unblock: rhnsd/4.9.15-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock hi, rhnsd was uploaded before the freeze, did not have any RC bugs and looking at http://packages.qa.debian.org/r/rhnsd.html and similar sites I can't see a reason why it was not unblocked automatically to migrate to testing as the other packages which were uploaded around that time. As this is the only missing piece to add spacewalk client support to wheezy, it would be great if you could unblock it. thanks, bernd unblock rhnsd/4.9.15-1 -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20120829184810.7017.79558.report...@think.bzed.org
Bug#683965: unblock: gimp-resynthesizer/0.16-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi release team, please unblock package gimp-resynthesizer - unfortunately dh_installdoc went missing when I cleaned up debian/rules to make a transitional package, so there is no copyright file in the empty binary package. Also i took the chance to move it to extra/oldlibs. Diff is below. Thanks, Bernd unblock gimp-resynthesizer/0.16-3 diff -u gimp-resynthesizer-0.16/debian/changelog gimp-resynthesizer-0.16/debian/changelog --- gimp-resynthesizer-0.16/debian/changelog +++ gimp-resynthesizer-0.16/debian/changelog @@ -1,3 +1,12 @@ +gimp-resynthesizer (0.16-3) unstable; urgency=low + + * Add dh_installdocs which went missing, so the empty transitional +package will ship with a copyright file. (Closes: #683939) + * Move to priority extra / section oldlibs to make deborphan +and friends happy. + + -- Bernd Zeimetz b...@debian.org Sun, 05 Aug 2012 21:19:59 +0200 + gimp-resynthesizer (0.16-2) unstable; urgency=low * Transitional package (Closes: #614211) diff -u gimp-resynthesizer-0.16/debian/rules gimp-resynthesizer-0.16/debian/rules --- gimp-resynthesizer-0.16/debian/rules +++ gimp-resynthesizer-0.16/debian/rules @@ -24,6 +24,7 @@ dh_testdir dh_testroot dh_installchangelogs + dh_installdocs dh_compress dh_fixperms dh_installdeb diff -u gimp-resynthesizer-0.16/debian/control gimp-resynthesizer-0.16/debian/control --- gimp-resynthesizer-0.16/debian/control +++ gimp-resynthesizer-0.16/debian/control @@ -1,6 +1,6 @@ Source: gimp-resynthesizer -Section: graphics -Priority: optional +Section: oldlibs +Priority: extra Maintainer: Bernd Zeimetz b...@debian.org Build-Depends: debhelper (= 5.0.0) Standards-Version: 3.7.3.0 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20120805195805.28754.14412.report...@think.bzed.org
Bug#683299: unblock: open-vm-tools/2:8.8.0+2012.05.21-724730-3
[ CCing da-manager@ to make sure they know that you still fail in maintaining your packages properly ] Hi, so yet again you managed to make a mess of open-vm-tools short time before a release. open-vm-tools is essential for a lot of people, running thousands of machines running Debian in a vmware environment - and not in a simple desktop virtualization. So I think you should finally pass the package into the hands of somebody who is willing to maintain it properly and test changes early enough to ensure they make their way into the next release. Actually I'm wondering if you even have a proper environment to test the package properly. On 07/31/2012 03:30 AM, Daniel Baumann wrote: On 07/31/2012 01:50 AM, Daniel Baumann wrote: there's nothing i can do about it except asking you to unblock said version, which i did. almost.. in addition to what the other people on the thread[0] already said.. here are the individual git commits as patches attached, constituting the complete diff between wheezy and sid. the actual diff for anything that wasn't unblocked/freeze-exempted before already, is patch 8 only (and patch 9 for the changelog entry). [0] http://lists.debian.org/debian-release/2012/07/msg01706.html To add some of my comments to your changelog: + * Switching to xz compression. Why? Is this really release critical? + * Loading modules through kmod instead of initscript. The initscript way was always ugly, but it is known to work. Why change it short before the release? I doubt its well tested enough. + * Adding sleep during restart in initscript. Why one second? Is it enough? Is there a proper way instead of sleeping? + * Removing old dpkg trigger for update-initramfs. See above. How can you be sure it was well enough tested? + * Updating GPL boilerplate in copyright file. Well, seems the copyright file was buggy, so yes, I guess this change makes sense. + * Calling dh_dkms with version argument (Closes: #677503). + [ Thijs Kinkhorst ] + * Updating dkms.conf to make modules build again, thanks to H.A.J. +Koster (Closes: #679886). These two look like the only real fixes which need to be done at this point of time before the release. Probably you should upload a package with these three changes, send excuses for your behaviour to the release team and ask them in a nice way to accept the changes. Of course you should document why they are necessary and send the patches. Like everybody else does. If you are not willing to do so, please orphan the package so somebody who has the time to maintain it and who is able to fix bugs during the freeze in a manner which would be appropriate for a Debian developer (and which is far far far away from what you are showing here). Best regards, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/5017a04d.3040...@debian.org
Bug#683299: unblock: open-vm-tools/2:8.8.0+2012.05.21-724730-3
On 07/31/2012 02:34 PM, Daniel Baumann wrote: On 07/31/2012 11:07 AM, Bernd Zeimetz wrote: so yet again you managed to make a mess of open-vm-tools short time before a release. i didn't. please read the whole thread carefully, thank you. Yes you did, as several people tried to explain to you already. But I'm not going to bother myself with that anymore, assuming that you will manage to do an upload according to the rules of the release team asap. -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/5017d4db.9070...@debian.org
Bug#683299: unblock: open-vm-tools/2:8.8.0+2012.05.21-724730-3
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 07/31/2012 03:45 PM, Daniel Baumann wrote: On 07/31/2012 03:40 PM, Julien Cristau wrote: Based on what? tests on my computer. As it was already explained to you before the release of Squeeze, this is far far far away from proper testing for a package like open-vm-tools. It should be tested on current (and maybe even older) ESX instalations. Ballooning, live-migrations, snapshots with quiesce option and all the other nice features need to work before it should be released as stable. If the system is under load, what guarantees that it won't take more time? as often there are no guarantees, but i tested it under quite some cpu and IO load, and it worked for me. regarding testing migration.. even if it wouldn't help in 100% of all cases, it's better to have it safer in most cases, the current testing package does not have a sleep at all. Why not add a proper way to handle it instead of a broken workaround? Nope. The proper way is for stop to not return until it's actually stopped. it does that. but again, it's safer in some cases to have the sleep, just to be on the safe side. So you've patched your kill(1) to block until the process is gone? Luckily this patch did not make it into Debian. - -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQIcBAEBCAAGBQJQGG1fAAoJEOs2Fxpv+UNfhi8P/29kD5WcWIOHC4375Ob9I5ZR BAvC5mOnjnrvRgZRn5lFS5QH0Qs7+VCW7dGBwpgOV8+ZXvP653u4B/ska99Ut5GR gqgc7d7s5T1U71XDuTQvMGzbb7uVYEntYmKVfOyYsTDobeUMTO33BX4JqDU9OxMr JtYNutHuSCR8KlNBYYkr8Xvh3+ZU8Z/iZsuTNtYb9cw/G0yy2RYRb+b3uQpf+Jw2 NP/HbLzpPZAkmbPUnIUiTQ+gTcYe6JV1pjugnhy4VDHuin/O3+LlSOLutz3WT7gz sIGyWohbk9SFgQHAgiedLum43miRb5e8/sew8y44A8o8kBRCEElSNLnVMYHwshCx WDedWe/+7hDb8mUBOyf5tmegE8cT9LtR7q8bl4WESIiDDSDPY7s6TqEZcNkzkVc4 CV7TqWXRofELeF/znMOVcFnvgAT/f4C2rojRrGGwihYvbIt6du+K7yejWqFShhCt rbJgK3TV7CuvRGnDE4NOvKGCCLr9OaG4T/xev9PT7BhBsELYgDUkRNS6Vv2gJxZI 0tOs5BzWkZgUP82dPrIEdoZR1M8tshY2BmMnrQkrnZenTZbFh7JOLyPB1lcT7Xvh G56gvUnzC15WCLrp8RE+nup7vIgUBN9ddXkntdajhPgdygBrOXF5+qJrcDmQEm4b v2WGFCJah/2rCBWfm0GK =J106 -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/50186d66.8040...@debian.org
Bug#680259: unblock: gmic/1.5.1.6+dfsg-4
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi, today the gmic author pointed me to a mistake in the manpage of zart, which mentioned the wrong author for the program. Also I found some missing copyright information in debian/copyright, so both issues should be fixed before the release. Thanks, Bernd unblock gmic/1.5.1.6+dfsg-4 -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-3-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash diff --git a/debian/changelog b/debian/changelog index f52fa63..20d3eee 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,9 @@ +gmic (1.5.1.6+dfsg-4) unstable; urgency=low + + * [4ed5416f] Fix author/copyright information in debian/copyright and zart.1 + + -- Bernd Zeimetz b...@debian.org Wed, 04 Jul 2012 18:43:34 +0200 + gmic (1.5.1.6+dfsg-3) unstable; urgency=low * [152547f5] Add missing Breaks/Replaces. diff --git a/debian/copyright b/debian/copyright index ddc05bd..4641bfb 100644 --- a/debian/copyright +++ b/debian/copyright @@ -1,13 +1,10 @@ -Format-Specification: http://svn.debian.org/wsvn/dep/web/deps/dep5.mdwn?rev=59 Name: gmic -Maintainer: David Tschumperlé david.tschumpe...@greyc.ensicaen.fr +Maintainer: Bernd Zeimetz b...@debian.org Source: http://gmic.sourceforge.net/ Files: * -Copyright: 2008, 2009, David Tschumperlé david.tschumpe...@greyc.ensicaen.fr -Source: http://gmic.sourceforge.net/ -Source: http://gmic.sourceforge.net/ -License: other +Copyright: 2008-2012 David Tschumperlé david.tschumpe...@greyc.ensicaen.fr +License: CeCILL FREE SOFTWARE LICENSE AGREEMENT CeCILL FREE SOFTWARE LICENSE AGREEMENT . Notice @@ -481,13 +478,78 @@ License: other . Version 2.0 dated 2006-07-12. -Files: debian/copyright -Copyright: 2009 Jakub Wilk jw...@debian.org, 2010 Bernd Zeimetz b...@debian.org + +Files: zart/* +Copyright: 2012 Sébastien Fourey sebastien.fou...@greyc.ensicaen.fr / GREYC Ensicaen +License: CeCILL FREE SOFTWARE LICENSE AGREEMENT + +Files: zart/haarcascade_eye.xml, zart/haarcascade_frontalface_*.xml +Copyright: Copyright (C) 2000, Intel Corporation, all rights reserved. +License: Intel License Agreement For Open Source Computer Vision Library + Redistribution and use in source and binary forms, with or without modification, + are permitted provided that the following conditions are met: + + * Redistribution's of source code must retain the above copyright notice, + this list of conditions and the following disclaimer. + + * Redistribution's in binary form must reproduce the above copyright notice, + this list of conditions and the following disclaimer in the documentation + and/or other materials provided with the distribution. + + * The name of Intel Corporation may not be used to endorse or promote products + derived from this software without specific prior written permission. + . + This software is provided by the copyright holders and contributors as is and + any express or implied warranties, including, but not limited to, the implied + warranties of merchantability and fitness for a particular purpose are disclaimed. + In no event shall the Intel Corporation or contributors be liable for any direct, + indirect, incidental, special, exemplary, or consequential damages + (including, but not limited to, procurement of substitute goods or services; + loss of use, data, or profits; or business interruption) however caused + and on any theory of liability, whether in contract, strict liability, + or tort (including negligence or otherwise) arising in any way out of + the use of this software, even if advised of the possibility of such damage. + + + +Files: zart/haarcascade_mcs_*.xml +Copyright: Copyright (c) 2006, Modesto Castrillon-Santana + (IUSIANI, University of Las Palmas de Gran Canaria, Spain) +License: + Redistribution and use in source and binary forms, with or without + modification, are permitted provided that the following conditions are + met: + . + * Redistributions of source code must retain the above copyright +notice, this list of conditions and the following disclaimer. + * Redistributions in binary form must reproduce the above + copyright notice, this list of conditions and the following + disclaimer in the documentation and/or other materials provided + with the distribution. + * The name of Contributor may not used to endorse or promote products + derived from this software without specific prior written permission. + . + THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS + AS IS AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT + LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR + A PARTICULAR
Bug#679965: unblock: nagios-plugins-contrib/4.20120702
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: freeze-exception Hi Release-Team, please unblock package nagios-plugins-contrib. The recent upload fixes a rather annoying bug where backuppc was installed together with nagios-plugins due to being recommended by nagios-plugins-contrib. Diff is attached. Thanks, Bernd unblock nagios-plugins-contrib/4.20120702 -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/check_backuppc/control b/check_backuppc/control index ab9660a..fb3af99 100644 --- a/check_backuppc/control +++ b/check_backuppc/control @@ -1,5 +1,6 @@ Uploaders: Jan Wagner w...@cyconet.org -Recommends: backuppc, libnagios-plugin-perl +Recommends: libnagios-plugin-perl +Suggests: backuppc Version: 1.1.0 Homepage: http://n-backuppc.sourceforge.net/ Watch: http://sourceforge.net/projects/n-backuppc/files/ check_backuppc-([0-9.]+)\.tar\.gz diff --git a/debian/changelog b/debian/changelog index 32777ac..c63d134 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,11 @@ +nagios-plugins-contrib (4.20120702) unstable; urgency=low + + * [bf291c63] check_backuppc: move backuppc to Suggests. +Thanks to Werner Detter (Closes: #679871) + * [0997dfd3] Auto update of debian/control + + -- Bernd Zeimetz b...@debian.org Mon, 02 Jul 2012 19:28:52 +0200 + nagios-plugins-contrib (3.20120614) unstable; urgency=low * [30fd20be] check_packages should return CRITICAL for outstanding security updates. diff --git a/debian/control b/debian/control index 836cf8c..5cd4d86 100644 --- a/debian/control +++ b/debian/control @@ -11,8 +11,8 @@ Vcs-Browser: http://git.debian.org/?p=pkg-nagios/pkg-nagios-plugins-contrib;a=su Package: nagios-plugins-contrib Architecture: any Depends: ${misc:Depends} -Recommends: ${shlibs:Depends}, ${python:Depends}, backuppc, libnagios-plugin-perl, libnagios-plugin-perl (= 0.31), libio-socket-ssl-perl, libmail-imapclient-perl, libnet-smtp-tls-perl, libnet-ssleay-perl, liblocale-gettext-perl, liblwp-useragent-determined-perl, snmp, freeipmi-tools, libipc-run-perl, lsof, libyaml-syck-perl, libreadonly-perl, libnet-dns-perl, libnet-snmp-perl, openssl, libdate-manip-perl, ruby | ruby-interpreter -Suggests: perl-doc, cciss-vol-status, mpt-status, expect +Recommends: ${shlibs:Depends}, ${python:Depends}, libnagios-plugin-perl, libnagios-plugin-perl (= 0.31), libio-socket-ssl-perl, libmail-imapclient-perl, libnet-smtp-tls-perl, libnet-ssleay-perl, liblocale-gettext-perl, liblwp-useragent-determined-perl, snmp, freeipmi-tools, libipc-run-perl, lsof, libyaml-syck-perl, libreadonly-perl, libnet-dns-perl, libnet-snmp-perl, openssl, libdate-manip-perl, ruby | ruby-interpreter +Suggests: backuppc, perl-doc, cciss-vol-status, mpt-status, expect Enhances: nagios-plugins, nagios-plugins-basic, nagios-plugins-standard Description: Plugins for nagios compatible monitoring systems This package provides various plugins for Nagios compatible monitoring
Re: sparc qualification for Wheezy
Hi, On Wed May 16, 2012 at 13:19:48 +0100, Adam D. Barratt wrote: Hi, With the sound of the ever approaching freeze ringing loudly in our ears, we're (somewhat belatedly) looking at finalising the list of release architectures for the Wheezy release. Comments on / additions and corrections to the content of http://release.debian.org/wheezy/arch_qualify.html would be appreciated, as would any other information you think is relevant to helping us determine sparc's status for the release. with my DSA hat on: We no longer have an UltraSparc II porterbox, and we are considering decommissioning our single remaining UltraSparc II buildd machine. Maybe it would be a good idea to officially drop US II support from wheezy since we won't have hardware to test issues on. Might make sense, but on the other hand the USII machines were usually those where issues did *not* show up. Especially USIII liked to be a problem child as the specs were never released by sun. It got better with USIV again... So some state like 'not officially supported, but should just work' is probably the best for USII. -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4fc6832c.2000...@bzed.de
Re: Accepted gcc-defaults 1.118 (source all amd64)
Hi, GCC 4.7 was blamed for this, but now I'm looking back and wondering if that was fair, and if it was such a bad thing all of this happened. The solution in gpsd VCS seems to have been applying a rather large changeset, fixing things from Coverity static analysis, potential buffer overruns and simple code bugs: http://git.recluse.de/?p=debian/pkg-gpsd.git;a=commitdiff;h=694d9866388d3c99ea5bdf2d570865f0bfa79d44 no, that was not the solution. A lot of those fixes were more or less cosmetic or fixes for minor bugs. It seems the change of compiler tickled one of these bugs, made it noticable (causing a segfault, instead of some other behaviour, which was maybe correct or perhaps not), and then it got fixed. The compiler indeed made one uninitialized integer show up, leading to an array access at rather random positions. Its only a few lines diff. http://git.recluse.de/?p=debian/pkg-gpsd.git;a=blob;f=debian/patches/d5fc020_Explicitly-initialize-AIS-queue-pointer;h=07b437f03dfff25bd228d830471633f09c42795c;hb=694d9866388d3c99ea5bdf2d570865f0bfa79d44;js=1 So I think at least some good may have come out of the change of compiler, even if it is decided to roll back gcc-defaults. Most of the work to at least get packages ready for GCC-4.7 seems done now, and maybe the same fixes will help if there's some future switch to LLVM/Clang. Yeah, I'm not saying that finding this issue was bad - but I think it could have been done after the release of wheezy. Especially in this case it made a lot of work to actually find the issue - and the normal user would probably never run into it. I would have preferred to spend my time on more important fixes for Wheezy. Cheers, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4fc3703a.7090...@debian.org
Re: Accepted gcc-defaults 1.118 (source all amd64)
On 05/14/2012 10:27 AM, Adam D. Barratt wrote: On 14.05.2012 09:10, Matthias Klose wrote: On 13.05.2012 21:58, Adam D. Barratt wrote: On 13.05.2012 18:42, Matthias Klose wrote: On 13.05.2012 21:22, Julien Cristau wrote: On Sun, May 13, 2012 at 18:58:42 +0200, Matthias Klose wrote: which ones? are there any reports which are not tagged? I went through the list of Lucas' new batch and tagged the appropriate ones. There were again some more in the last couple days. They should be tagged AFAIK. I am only aware of these usertags: debian...@lists.debian.org / qa-ftbfs-20120508 do you known about a new rebuild? From a trivial look the set from #672397 onwards on the usertagged bug list were all filed in the past three days. looking at 98 and 99 this doesn't seem to be a set. They're a set in that they appear after each other on the usertagged bug list. I didn't say they had sequential bug numbers, but possibly could have chosen a better description. After rebuilding gpsd today I had to realize that the stack protector makes one of the tools segfault since it was built with gcc 4.7. If gpsd wouldn't ship with a largish test suite this fault would probably never have been detected before the release - so this makes me wonder how many non-obvious bugs like this the switch to 4.7 introduced - and how much the release of Whezy will be delayed because of it. -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4fb95e62.8040...@debian.org
Re: Accepted gcc-defaults 1.118 (source all amd64)
On 05/20/2012 11:13 PM, Bernd Zeimetz wrote: On 05/14/2012 10:27 AM, Adam D. Barratt wrote: On 14.05.2012 09:10, Matthias Klose wrote: On 13.05.2012 21:58, Adam D. Barratt wrote: On 13.05.2012 18:42, Matthias Klose wrote: On 13.05.2012 21:22, Julien Cristau wrote: On Sun, May 13, 2012 at 18:58:42 +0200, Matthias Klose wrote: which ones? are there any reports which are not tagged? I went through the list of Lucas' new batch and tagged the appropriate ones. There were again some more in the last couple days. They should be tagged AFAIK. I am only aware of these usertags: debian...@lists.debian.org / qa-ftbfs-20120508 do you known about a new rebuild? From a trivial look the set from #672397 onwards on the usertagged bug list were all filed in the past three days. looking at 98 and 99 this doesn't seem to be a set. They're a set in that they appear after each other on the usertagged bug list. I didn't say they had sequential bug numbers, but possibly could have chosen a better description. After rebuilding gpsd today I had to realize that the stack protector makes one of the tools segfault since it was built with gcc 4.7. If gpsd wouldn't ship Actually I'm not exactly sure if it is the stack protectors' fault, but it is definitely a 4.7 related issue. with a largish test suite this fault would probably never have been detected before the release - so this makes me wonder how many non-obvious bugs like this the switch to 4.7 introduced - and how much the release of Whezy will be delayed because of it. -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4fb95f10.6060...@debian.org
Re: priorities for fixing gcc-4.7 build failures
On 05/09/2012 10:40 PM, Adam D. Barratt wrote: On Wed, 2012-05-09 at 22:02 +0200, Matthias Klose wrote: transition exiv2 667229 koffice 667275 merkaartor transition gdal 671991 grass 667275 merkaartor The exiv2 transition is much farther along than gdal and forcing them to get tied together now would be A Bad Thing[tm]. So I'd suggest that merkaator be skipped for now. I'm sure the maintainer would appreciate a patch though. I have a patch already, just let me know when I should upload it. Cheers and thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4faad908.30...@debian.org
Re: priorities for fixing gcc-4.7 build failures
On 05/09/2012 10:52 PM, Bernd Zeimetz wrote: On 05/09/2012 10:40 PM, Adam D. Barratt wrote: On Wed, 2012-05-09 at 22:02 +0200, Matthias Klose wrote: transition exiv2 667229 koffice 667275 merkaartor transition gdal 671991 grass 667275 merkaartor The exiv2 transition is much farther along than gdal and forcing them to get tied together now would be A Bad Thing[tm]. So I'd suggest that merkaator be skipped for now. I'm sure the maintainer would appreciate a patch though. I have a patch already, just let me know when I should upload it. Sorry, should do a test-build first - there are more issues, not only the one mentioned in the bug report :( http://git.recluse.de/?p=debian/pkg-merkaartor.git;a=blob;f=debian/patches/gcc-4.7-ftbfs-fix;h=c4504cba4b5022f7755285aebb8b1377997f51cd;hb=HEAD;js=1 is the patch for the first one... -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4faadf26.6020...@debian.org
Bug#634797: opencv 2.3 transition
On 01/10/2012 08:40 PM, Julien Cristau wrote: On Tue, Dec 20, 2011 at 17:42:04 +0100, Bernd Zeimetz wrote: Hi, I just upload. Sorry, reply was late. I'm just wondering if you've tried to build the build-reverse-dependencies against the new library and/or if you've notified the maintainers of these packages (if so I've missed the mail and I can't find a mail on appropriate lists...). Most packages I know want to link -lcv, which is gone. Installing (the old!?) libcv-dev package depends on a lot of new opencv_* library-packages, byt the only pkg-config file I was able to find is in libopencv-core-dev and says Libs: -L${libdir} -lopencv_core -lopencv_imgproc -lopencv_highgui -lopencv_ml -lopencv_video -lopencv_features2d -lopencv_calib3d -lopencv_objdetect -lopencv_contrib -lopencv_legacy -lopencv_flann which sounds like all libraries are necessary anyway and could have been packaged together Please provide a proper migration guide (I would have expected some pointers in libcv-dev at least) and next time inform people earlier about transitions. So apparently this is still not resolved (or not completely?). What's going on here? Solved for gmic on Sunday - it doesn't use much from OpenCV luckily. Still wondering why there is no sane migration way, though... -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4f0cac66.9020...@debian.org
Bug#634797: opencv 2.3 transition
Hi, I just upload. Sorry, reply was late. I'm just wondering if you've tried to build the build-reverse-dependencies against the new library and/or if you've notified the maintainers of these packages (if so I've missed the mail and I can't find a mail on appropriate lists...). Most packages I know want to link -lcv, which is gone. Installing (the old!?) libcv-dev package depends on a lot of new opencv_* library-packages, byt the only pkg-config file I was able to find is in libopencv-core-dev and says Libs: -L${libdir} -lopencv_core -lopencv_imgproc -lopencv_highgui -lopencv_ml -lopencv_video -lopencv_features2d -lopencv_calib3d -lopencv_objdetect -lopencv_contrib -lopencv_legacy -lopencv_flann which sounds like all libraries are necessary anyway and could have been packaged together Please provide a proper migration guide (I would have expected some pointers in libcv-dev at least) and next time inform people earlier about transitions. Cheers, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprints: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4ef0badc.9000...@debian.org
Bug#648628: transition: gpsd
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi Release Team, gpsd's service library libgps got a bunch of API and ABI changes, so it needs a transition from libgps19 to libgps20. Currently there are only 4 packages left in unstable which do not build against the new API: geoclue #648496 obdgpslogger #648495 kdeedu #648502 kdebase-workspace #648504 I'm able to patch geoclue and obdgpslogger quickly if necessary. For kde* the qt/kde people and I agreed that they will - depending on the time of the gpsd transition - either upload fixed packages to unstable after the new gpsd version is available (so we don't need to binNMU them again) or if they are ready to upload kde 4.7/kdeedu 4.7 at the time the gpsd transition happens, both transitions could run in parallel. So please let me know when you'd like me to upload gpsd to unstable. Thanks and cheers, Bernd -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.0.0-1-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/2013160457.15143.98786.report...@think.bzed.org
Re: Bugfix for #646434 in Squeeze?
On 11/04/2011 08:08 PM, Adam D. Barratt wrote: Hi, On Fri, 2011-11-04 at 18:57 +0100, Bernd Zeimetz wrote: due to a major change in the gpsd protocol it won't be possible to connect with a recent gpsd (not uploaded to unstable yet, but soon) to gpsd daemons using the old protocol. The gpsd version in Squeeze will be the last usable version which understands the old protocol. Unfortunately there is a bug (#646434) in the Python bindings which makes them useless to connect to a server which speaks the old version of the protocol. As How soon is soon? The reason I ask is that one of the first tests we'd tend to apply to requests is does the issue apply to unstable and, if so, has the fix been applied there and as things stand the answers would appear to be yes, and no. Well, actually I want to upload the latest version of gpsd to unstable which doesn't even contain that part of the code anymore. So there is nothing to apply there anymore. But if it makes you happier, I could upload yet another 2.95 revision including that fix. -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4eb4eb0f.7080...@bzed.de
Bugfix for #646434 in Squeeze?
Hi Release Team, due to a major change in the gpsd protocol it won't be possible to connect with a recent gpsd (not uploaded to unstable yet, but soon) to gpsd daemons using the old protocol. The gpsd version in Squeeze will be the last usable version which understands the old protocol. Unfortunately there is a bug (#646434) in the Python bindings which makes them useless to connect to a server which speaks the old version of the protocol. As the old protocol is still used by various applications and embedded devices, so I would like to fix that bug in a point release to provide a last version to our users which supports the old protocol properly. Would that be accepted for a Squeeze pointrelease? The tiny diff is attached below. Cheers and thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/gps/gps.py b/gps/gps.py index 9b2c62f..1bd8d7d 100755 --- a/gps/gps.py +++ b/gps/gps.py @@ -16,6 +16,7 @@ # import time from client import * +from misc import isotime NaN = float('nan') def isnan(x): return str(x) == 'nan' -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4eb42799.3000...@bzed.de
Re: Bug#606327: vmmemctl missing in squeeze
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 12/09/2010 01:05 PM, Daniel Baumann wrote: On 12/09/2010 12:54 PM, Mehdi Dogguy wrote: Yes. Go ahead. If you want to apply some backported fixes, please let us know first. for clarity sake, it's not about 'backporting' fixes, it's about completely replacing the existing open-vm-tools upstream version with another one. Why do you want to replace a recent version of open-vm-tools (which usually comes with a LOT of bugfixes by a pretty old version just to introduce the removed module again? It seems you're not willing to maintain this package properly, otherwise you'd look at your git repository (I'm sure it contains upstream's git, too) and revert the commit(s) which removed the vmmemctl module. Then - if you would care - would update the module to the latest version on kernel.org. And then you would test your changes properly on a VMware installation. Yes, I'm talking about proper testing, for example in some VMs on a ESX machine. Oh, you don't have ESX? I heard you can download it for free, at least for testing purposes. No hard tasks, so I fail to understand why we always run into RC bugs whenever we look at a new version of this package. I'd suggest you give the maintenance of open-vm-tools to somebody who actually cares about it. Or has the proper time to do so. - -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQIcBAEBCAAGBQJNB+W9AAoJEOs2Fxpv+UNfbvkQAL8ttFctD7DfcG4O2RzP0uyV 8sl8Nl+8fxM2lmuKPVvkH3BDjSDF3Da930Ezr29GAAnBPi3X+wDGNee1CuIPaa2+ QqKwoeEi4279E1TJ54oY8VLzrcNX2GXAvzrq9iJpKJnkkZzHHOz0vmi5M0CrdMtW a1qif8EhTKtrI85CGPrlknl9QnH4wOMPQ+CjjDkTwsifY3atytbw4dBhMDtQ7KR5 JmU2kb0C3ASPm8iA5lgc7GjgTagguE0EtV94ckjhY/m1oa2HQNqmqZIBJHmBIs6b 4azR9N0Sx2/kTq96Q9xt5+qqWI72in5Tz2bKoqYPXo0k6sp2aSQSOeWW+1ReaO45 J6/YQIDVLsZWBLSot6W4Epg237gsjsRuxXWTehIoMqBYAN4wKA6eVzxF7vauu7Zn HPUvyUWAyCdMgG4wR6uniO+iW7faQ5wihzSGXfm00tZHFYKSlGV/uAw6o9+8B1Dg xI7QaIGGtI6o2hwoyVBckq9U+/3kqddqoOsxrmL3b5zSEqfeWZv0JN83o8szO9ub yPKSEq13ycRr0RElgxfNDK2slDDi6gt/pv7kERQEy5FmGV1JWKM6A3xSMP3hJSBG zQMO6ZP693kwGKyi2hGnibJOdfQalrrNFT1FHVLQ45UFIGWvTU89JFDVkdKcm6cF xmnNVhSFK98GnhHMQhN+ =7NVl -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4d07e5c2.8030...@debian.org
Re: gpsd bugfixes
On 11/14/2010 05:10 PM, Bernd Zeimetz wrote: What I'd like you to decide on now is if the next upload should fix all the easily fixable issues or only the serious AIS related one. Attached are patches 0009-0014, with 0014 being the fix for the serious issue. So please let me know if you'd prefer an upload with 0009-0014 or a fix with 0014 only. As there was no reply yet and I neither want to bother you with the long review nor want to wait any longer, I'll upload a fixed version with the patch for the segfault to unstable. -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4ce2db1f.1080...@bzed.de
gpsd bugfixes
Hi Release Team, today I received #603439 on gpsd, reporting a segfault while handling AIS data in gpsd. It makes gpsd more or less useless for ship data tracking as it will crash at random times. Fixing this bug is easy as the bug reporter (who is well known for submitting good patches to gpsd) delivered a patch with the bug report. Also we (as in gpsd upstream) collected several other bugfixes during the last weeks. The bugs are not as bad as the one mentioned above, but it would still make sense to fix them in Squeeze imho. As gpsd runs a long regression test suite at build time it would be easy for me to see if they introduce issues. What I'd like you to decide on now is if the next upload should fix all the easily fixable issues or only the serious AIS related one. Attached are patches 0009-0014, with 0014 being the fix for the serious issue. So please let me know if you'd prefer an upload with 0009-0014 or a fix with 0014 only. Thanks and cheers, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F From: Jon Schlueter jon.schlue...@gmail.com Date: Wed, 6 Oct 2010 16:32:09 -0400 Subject: [PATCH] gpsutil.c: fill_dop bug if sats 4 bug present where it would try to invert matrix with out enough data... added guard to prevent trying to calculate dop's if we don't have 4 sats with current code. --- gpsutils.c | 12 1 files changed, 12 insertions(+), 0 deletions(-) diff --git a/gpsutils.c b/gpsutils.c index 6b94de0..1bf200e 100644 --- a/gpsutils.c +++ b/gpsutils.c @@ -466,6 +466,8 @@ gps_mask_t fill_dop(const struct gps_data_t * gpsdata, struct dop_t * dop) double xdop, ydop, hdop, vdop, pdop, tdop, gdop; int i, j, k, n; +memset(satpos, 0, sizeof(satpos)); + #ifdef __UNUSED__ gpsd_report(LOG_INF, Satellite picture:\n); for (k = 0; k MAXCHANNELS; k++) { @@ -488,6 +490,16 @@ gps_mask_t fill_dop(const struct gps_data_t * gpsdata, struct dop_t * dop) n++; } +/* If we don't have 4 satellites then we don't have enough information to calculate DOPS */ +if (n 4) { + gpsd_report(LOG_DATA + 2, Not enough Satellites available %d 4:\n, + n); + return 0; /* Is this correct return code here? or should it be ERROR_IS */ +} + +memset(prod, 0, sizeof(prod)); +memset(inv, 0, sizeof(inv)); + #ifdef __UNUSED__ gpsd_report(LOG_INF, Line-of-sight matrix:\n); for (k = 0; k n; k++) { -- From: Gary E. Miller g...@rellim.com Date: Tue, 26 Oct 2010 15:42:57 -0700 Subject: [PATCH] GPZDA reported broken by aquarat, and others. Been broken since before git. nmea_parse() was expecting 7 fields when their are only 6. Since we only use the first 4 fields that is the new minimum. This seems to break one regression test, but appears to be a valid fix. --- driver_nmea.c |2 +- 1 files changed, 1 insertions(+), 1 deletions(-) diff --git a/driver_nmea.c b/driver_nmea.c index fbefc66..cc001a8 100644 --- a/driver_nmea.c +++ b/driver_nmea.c @@ -931,7 +931,7 @@ gps_mask_t nmea_parse(char *sentence, struct gps_device_t * session) GSV, 0, processGPGSV}, { VTG, 0, NULL}, /* ignore Velocity Track made Good */ { - ZDA, 7, processGPZDA}, { + ZDA, 4, processGPZDA}, { GBS, 7, processGPGBS}, #ifdef TNT_ENABLE { -- From: Timo Juhani Lindfors timo.lindf...@iki.fi Date: Sun, 5 Sep 2010 13:42:26 -0400 Subject: [PATCH] Bug gpsd:17494 fix: cgps don't exit if interrupted Do not exit if select is interrupted by a signal. Since we have signal handlers for INT and HUP they still work but WINCH does not. Closes gpsd:17494. --- cgps.c |3 +++ 1 files changed, 3 insertions(+), 0 deletions(-) diff --git a/cgps.c b/cgps.c index 36abc3c..e357836 100644 --- a/cgps.c +++ b/cgps.c @@ -895,6 +895,9 @@ int main(int argc, char *argv[]) data = select(gpsdata.gps_fd + 1, rfds, NULL, NULL, timeout); if (data == -1) { +if (errno == EINTR) { +continue; +} fprintf(stderr, cgps: socket error 3\n); exit(2); } else if (data) { -- From: Timo Juhani Lindfors timo.lindf...@iki.fi Date: Sat, 6 Nov 2010 11:55:31 -0400 Subject: [PATCH] Bug #17637: /dev/ttySAC1 is always opened in read-only mode More info: 1) /dev/ttySAC1 is a serial port used on samsung s3c2440 (e.g. openmoko freerunner): $ stat /dev/ttySAC1 File: `/dev/ttySAC1' Size: 0 Blocks: 0 IO Block: 4096 character special file Device: ch/12d Inode: 161 Links: 1 Device type: cc,41 Access: (0660/crw-rw) Uid: ( 0/ root) Gid: ( 20/ dialout) Access: 2010-10-19 01:23:13.893489000 +0300 Modify: 2010-10-18 20:21:22.089934000 +0300 Change: 2010-10-18 20:21:22.089934000 +0300 2) I think the problem is in gpsd_classify(). It assumes that all serial ports have major number of 4. It even links to ftp://ftp.kernel.org/pub/linux/docs/device-list/devices-2.6+.txt as a reference. However
Re: Please unblock virtualbox-ose
On 10/20/2010 09:26 PM, Julien Cristau wrote: On Wed, Oct 20, 2010 at 20:31:54 +0200, Bernd Zeimetz wrote: Guess you did not read the virtualbox changelog? http://www.virtualbox.org/wiki/Changelog Nobody is saying the new version doesn't fix bugs, we're saying we can't review it. Give it more time for testing in unstable then. Virtualbox is important enough to have the latest version of it in the next release. Remember that the SC says something about doing the best for our users, not being able to review every single patch. It is a bugfix release from upstream and not something which adds a lot of new features and the changes are well documented. You could at least have asked if there is away to get a reviable list of patches. Really a shame that Debian will ship with a large number of bugs in an important piece of software again. -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4cc5322a.5050...@bzed.de
Re: Please unblock virtualbox-ose
On 10/20/2010 01:40 PM, Michael Meskes wrote: From a DD perspective I can understand your reasoning. However, from a user's perspective I cannot, which might be one of the reasons why I wouldn't want to be a release manager. And as Debian tries to attract system administrators and not the common desktop user I think it makes more than sense to ship a virtualbox version with less bugs than the one currently in squeeze. Having issues in a software the common desktop user uses sometimes is much less evil than breaking the admin's favorite virtualization technology. I'd consider xen, kvm, virtualbox and libvirt as important as the kernel itself these days. -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4cbf2fea.3020...@bzed.de
Re: Please unblock virtualbox-ose
On 10/20/2010 08:17 PM, Julien Cristau wrote: And yet we're not updating the kernel to 2.6.36. If we need bugfixes in squeeze, by all mean let's do that. Blindly updating to the latest upstream version, not so much. Guess you did not read the virtualbox changelog? http://www.virtualbox.org/wiki/Changelog -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4cbf359a.1040...@bzed.de
Bug#595780: unblock: gpsd/2.95-6
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: freeze-exception Please unblock package gpsd The new package contains a patch which fixes some identation errors in the Python modules and tools which could result in wrong/unwanted results. Unfortunately I did not find the time to write this mail before the 'harder' freeze was announced, but I still hope you'll allow to let it go into Squeeze. Thanks, Bernd gpsd (2.95-6) unstable; urgency=low * [928249f4] Disable testregress on hurd instead of disabling it everywhere else. * [95558a3b] Adding a patch to fix some identation errors in Python scripts/modules. -- Bernd Zeimetz b...@debian.org Sun, 29 Aug 2010 21:59:25 +0200 unblock gpsd/2.95-6 -- System Information: Debian Release: squeeze/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.35.2-think (SMP w/2 CPU cores; PREEMPT) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20100906161558.4137.53268.report...@think.mg.bzed.de
Bug#594700: unblock: zbar/0.10+doc-4
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: freeze-exception Please unblock package zbar. Main reason for the upload was to remove two conflicts which were introduced by the former maintainer and not reviewed before - they are completely unnecessary now. Full diff is attached. Cheers and thanks, Bernd unblock zbar/0.10+doc-4 -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprints: 06C8 C9A2 EAAD E37E 5B2C BE93 067A AD04 C93B FF79 ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F diff --git a/debian/changelog b/debian/changelog index a3d869c..be9ad64 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,14 @@ +zbar (0.10+doc-4) unstable; urgency=low + + * [abdd6f9f] Use better dependencies for zbar-dbg. + * [5c639854] Remove conflicts of libzbar-dev. libzbar replaced zebra +in directory names by zbar, so clashes with quagga and libpacklib1- +dev are avoided. So there is no need to conflict against the +packages anymore. + * [75f615f2] Use Breaks instead of Conflicts as suggested by lintian. + + -- Bernd Zeimetz b...@debian.org Sat, 28 Aug 2010 15:01:46 +0200 + zbar (0.10+doc-3) unstable; urgency=low * [6b190c39] Enable VfL only on Linux instead of excluding kfreebsd diff --git a/debian/control b/debian/control index 8ed775b..d994686 100644 --- a/debian/control +++ b/debian/control @@ -26,16 +26,17 @@ Priority: extra Section: debug Architecture: any Depends: ${shlibs:Depends}, ${misc:Depends}, ${python:Depends}, - zbar-tools (= ${binary:Version}), - libzbar0 (= ${binary:Version}), - libzbar-dev (= ${binary:Version}), - python-zbarpygtk (= ${binary:Version}), - python-zbar (= ${binary:Version}), python-gtk2-dbg, - libzbargtk0 (= ${binary:Version}), - libzbargtk-dev (= ${binary:Version}), - libzbarqt0 (= ${binary:Version}), - libzbarqt-dev (= ${binary:Version}), + zbar-tools (= ${binary:Version}) | + libzbar0 (= ${binary:Version}) | + libzbar-dev (= ${binary:Version}) | + python-zbarpygtk (= ${binary:Version}) | + python-zbar (= ${binary:Version}) | + libzbargtk0 (= ${binary:Version}) | + libzbargtk-dev (= ${binary:Version}) | + libzbarqt0 (= ${binary:Version}) | + libzbarqt-dev (= ${binary:Version}) | libbarcode-zbar-perl (= ${binary:Version}) +Recommends: python-gtk2-dbg Description: bar code scanner and decoder (debug) ZBar is a library for scanning and decoding bar codes from various sources such as video streams, image files or raw intensity sensors. It supports @@ -57,7 +58,6 @@ Package: libzbar-dev Section: libdevel Architecture: any Depends: libzbar0 (= ${binary:Version}), ${misc:Depends}, libmagick++9-dev, libx11-dev -Conflicts: libpacklib1-dev, quagga Description: bar code scanner and decoder (development) ZBar is a library for scanning and decoding bar codes from various sources such as video streams, image files or raw intensity sensors. It supports @@ -69,7 +69,7 @@ Package: python-zbar Section: python Architecture: any Replaces: python-zbarpygtk ( 0.10+doc) -Conflicts: python-zbarpygtk ( 0.10+doc) +Breaks: python-zbarpygtk ( 0.10+doc) Depends: ${shlibs:Depends}, ${misc:Depends}, ${python:Depends}, libzbar0 (= ${binary:Version}) Description: bar code scanner and decoder (Python bindings)
Re: library tranistion proposal exiv2(0.20): libexiv2-6 - libexiv2-9
On 05/31/2010 11:53 PM, Mark Purcell wrote: debian-release, The following transition is proposed: exiv2(0.20): libexiv2-6 - libexiv2-9 Important rdepends: + rawstudio FTBFS - not sure if that is an issue with libexiv, though. Won't have the time to investigate this week. g++ -Wall -fno-strict-aliasing -O4 -DWITH_GCONF -DDCRAW_NOMAIN -DDCRAW_NOLCMS -DWITH_MMAP_HACK -g -O2 -Wl,-z,defs -o rawstudio rawstudio.o rs-filetypes.o rs-settings.o rs-utils.o rs-job.o rs-actions.o rs-math.o rs-preload.o gtk-helper.o gtk-interface.o gtk-save-dialog.o gtk-progress.o conf_interface.o adobe-coeff.o rs-cms.o rs-cache.o rs-batch.o toolbox.o rawfile.o mmap-hack.o tiff-meta.o ciff-meta.o mrw-meta.o x3f-meta.o raf-meta.o rs-image.o rs-photo.o dcraw_api.o dcraw.o rs-jpeg.o rs-tiff.o arch-generic.o arch-x86.o filename.o rs-spline.o rs-store.o rs-color-transform.o rs-preview-widget.o rs-histogram.o eog-pixbuf-cell-renderer.o rs-curve.o rs-pixbuf.o rs-external-editor.o rs-dir-selector.o rs-metadata.o rs-exif.o -pthread -lgtk-x11-2.0 -lgdk-x11-2.0 -latk-1.0 -lpangoft2-1.0 -lgdk_pixbuf-2.0 -lm -lpangocairo-1.0 -lcairo -lgio-2.0 -lpango-1.0 -lfreetype -lfontconfig -lgobject-2.0 -lgmodule-2.0 -lgthread-2.0 -lxml2 -lgconf-2 -lglib-2.0 -llcms -ldbus-1 -lpthread -lrt -lexiv2 -ljpeg -ltiff /usr/bin/ld: rs-actions.o: in function rs_action_delete_flagged:rs-actions.c:312: error: undefined reference to 'XFlush' /usr/bin/ld: gtk-save-dialog.o: in function gui_save_file_dialog:gtk-save-dialog.c:264: error: undefined reference to 'XFlush' /usr/bin/ld: rs-preview-widget.o: in function rescale:rs-preview-widget.c:1118: error: undefined reference to 'XFlush' /usr/bin/ld: rs-preview-widget.o: in function rs_preview_widget_set_photo:rs-preview-widget.c:437: error: undefined reference to 'XFlush' + python-pyexiv2 + merkaartor Both build fine. No issues on the first sight. Cheers, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprints: 06C8 C9A2 EAAD E37E 5B2C BE93 067A AD04 C93B FF79 ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4c044020.7040...@bzed.de
Re: libgps18 - libgps19 transition
Luk Claes wrote: Bernd Zeimetz wrote: Hi Release-Team, with the next upload of gpsd to unstable we'll have a transition from libgps18 to libgps19. As KDE is involved, I'm CCing the QT/KDE list also. Whats the best time for an upload? As long as it does not interfere with the gstreamer0.10 transition (which I doubt it does) it should be fine. It should not mess with gstreamer related packages. Uploaded to unstable a few seconds ago, please schedule binNMUs with a dep-wait on libgps-dev = 2.90-2 Thanks, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprints: 06C8 C9A2 EAAD E37E 5B2C BE93 067A AD04 C93B FF79 ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
libgps18 - libgps19 transition
Hi Release-Team, with the next upload of gpsd to unstable we'll have a transition from libgps18 to libgps19. As KDE is involved, I'm CCing the QT/KDE list also. Whats the best time for an upload? Cheers, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprints: 06C8 C9A2 EAAD E37E 5B2C BE93 067A AD04 C93B FF79 ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Re: Upcoming Lenny point release
Adam D. Barratt wrote: Hi, The next Lenny point release (5.0.3) is scheduled for Saturday, September 5th. With the exception of already planned kernel and installer updates, stable NEW will be frozen during the weekend of August 29th - 30th. Please review mod-wsgi before that (see Message-ID: 20090808114522.ga4...@piotro.eu for details). The suggested updated contains a *lot* of bugfixes, including a few which are security relevant (not bad enough to warrant a CVE and a security upload, but they should be fixed). Thanks, Bernd -- Bernd Zeimetz Debian GNU/Linux Developer GPG Fingerprints: 06C8 C9A2 EAAD E37E 5B2C BE93 067A AD04 C93B FF79 ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Re: library transition proposal exiv2/ libexiv2-5
Mark Purcell wrote: On Wednesday 29 April 2009 21:33:22 Adeodato Simó wrote: Thanks a lot for your patience and cooperation, and let us know when you have uploaded to unstable. Dato, Thanks for the green light. Have now uploaded libexiv2-5 to unstable and (almost) installed on all archs. BinNMU's required for rdepends against the obsolete libexiv2-4: merkaartor was uploaded yesterday late in the evening, so a binNMU is probably not necessary, at least not on all archs. Unfortunately I didn't see this mail before uploading it, otherwise I would have waited a bit to make sure it builds against the new exiv2 everywhere. Cheers, Bernd -- Bernd Zeimetz Debian GNU/Linux Developer GPG Fingerprint: 06C8 C9A2 EAAD E37E 5B2C BE93 067A AD04 C93B FF79 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org