Bug#989507: unblock: collectd/5.12.0-6

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package collectd

[ Reason ]
Fixing
#968950
collectd-dev: missing meta_data.h header file included by plugin.h


[ Impact ]
Building c plugins for collectd is not possible anymore.


[ Tests ]
There are header files being shipped again. No tests for that.


[ Risks ]
Plugins still fail to build. I have nothing to test that
unfortunately. Otherwise - no changes, so no risks.

[ Checklist ]
  [X] all changes are documented in the d/changelog
  [X] I reviewed all changes and I approve them
  [X] attach debdiff against the package in testing


unblock collectd/5.12.0-6


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index 74daf54..c6a6057 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,12 @@
+collectd (5.12.0-6) unstable; urgency=medium
+
+  * [b4e7861] collectd-dev: Add missing header files again.
+Thanks to Benjamin Drung (Closes: #968950)
+  * [3261aa1] Also create necessary directories
+  * [6c0c6be] Fix target location in dh_install
+
+ -- Bernd Zeimetz   Tue, 01 Jun 2021 17:56:33 +0200
+
 collectd (5.12.0-5) unstable; urgency=medium
 
   * [11ee08b] Disable tokyotyrant.
diff --git a/debian/collectd-dev.install b/debian/collectd-dev.install
index a3dd678..ffd3f5f 100644
--- a/debian/collectd-dev.install
+++ b/debian/collectd-dev.install
@@ -1,4 +1,3 @@
 src/liboconfig/oconfig.h usr/include/collectd/liboconfig
-src/*.h usr/include/collectd/core
-src/daemon/*.h usr/include/collectd/core/daemon
+usr/include/collectd/core
 
diff --git a/debian/rules b/debian/rules
index 5cf4804..ad8880f 100755
--- a/debian/rules
+++ b/debian/rules
@@ -275,17 +275,24 @@ install-indep:
dh_testroot
dh_prep
dh_installdirs -i
-   dh_install -i

+   set -e ;\
+   find src  -path src/libcollectdclient -prune -o -path 
src/liboconfig -prune -o -name '*.h'  -print | while read i; do \
+   d=$$(echo "$${i}" | sed 
's,^src,debian/tmp/usr/include/collectd/core,') ;\
+   mkdir -p $$(echo "$${i}" | sed -e 
's,^src,debian/tmp/usr/include/collectd/core,' -e 's,/[^/]*$$,,') ;\
+   cp "$${i}" "$${d}" ;\
+   done
+
+   dh_install -i
+
# update include path for collectd header files
(   set -e; \
cd $(CURDIR)/debian/collectd-dev/usr/include/collectd/; \
-   for lib in $$(find . -type f -name '*.h'); do \
+   headers=$$(find . -type f -name '*.h'); \
+   for lib in $$headers; do \
libname=$$(basename $$lib); \
fullpath=$$(echo $$lib | sed -r -e 
's,^\./,collectd/,'); \
-   for dir in $$(find . -mindepth 1 -type d); do \
-   sed -r -i -e 
"s,(include\s+)\".*\<$$libname\",\1\"$$fullpath\"," $$dir/*.h; \
-   done; \
+   sed -r -i -e 
"s,(include\s+)\".*\<$$libname\",\1\"$$fullpath\"," $$headers; \
done )
 
 install-arch: build
@@ -299,9 +306,9 @@ install-arch: build
rm -f debian/tmp/usr/lib/collectd/*.la
rm -f debian/tmp/usr/lib/libcollectdclient.la
rm -f debian/tmp/etc/collectd.conf
-   
+
dh_install -a --sourcedir=$(CURDIR)/debian/tmp --fail-missing
-   
+
perl ./debian/bin/gen_plugin_deps.pl

mkdir -p debian/collectd-core/usr/share/lintian/overrides/
[The following lists of changes regard files as different if they have
different names, permissions or owners.]

Files in second set of .debs but not in first
-
-rw-r--r--  root/root   /usr/include/collectd/core/utils/avltree/avltree.h
-rw-r--r--  root/root   /usr/include/collectd/core/utils/cmds/cmds.h
-rw-r--r--  root/root   /usr/include/collectd/core/utils/cmds/flush.h
-rw-r--r--  root/root   /usr/include/collectd/core/utils/cmds/getthreshold.h
-rw-r--r--  root/root   /usr/include/collectd/core/utils/cmds/getval.h
-rw-r--r--  root/root   /usr/include/collectd/core/utils/cmds/listval.h
-rw-r--r--  root/root   /usr/include/collectd/core/utils/cmds/parse_option.h
-rw-r--r--  root/root   /usr/include/collectd/core/utils/cmds/putnotif.h
-rw-r--r--  root/root   /usr/include/collectd/core/utils/cmds/putval.h
-rw-r--r--  root/root   /usr/include/collectd/core/utils/common/common.h
-rw-r--r--  root/root   
/usr/include/collectd/core/utils/config_cores/config_cores.h
-rw-r--r--  root/root   /usr/include/collectd/core/utils/crc32/crc32.h
-rw-r--r--  root/root   /usr/include/collectd/core/utils/cur

Bug#987542: unblock: gpsd/3.22-3

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package gpsd

Adding missing Breaks/Replaces and fixing a bit of mess in the symbols
files.


gpsd (3.22-3) unstable; urgency=medium

  * [c6838e37] Remove duplicate lines from symbol files.
Thanks to Matthias Klose (Closes: #985930)
  * [5c240253] Mark String::QString(QString const&)@Base as optional.
Required for backporting.
  * [2dfbaa07] Updating debian/control from debian/control.in
  * [c582b2aa] gpsd-tools: add missing Breaks+Replaces
gpsd-tools needs Breaks/Replaces for gpsd-clients (<< 3.20-10)
Thanks to Andreas Beckmann (Closes: #987208)

 -- Bernd Zeimetz   Sun, 25 Apr 2021 12:17:57 +0200


Full diff is attached.

Thanks,

Bernd



unblock gpsd/3.22-3


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index dfef5f900..f0b5369f7 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,16 @@
+gpsd (3.22-3) unstable; urgency=medium
+
+  * [c6838e37] Remove duplicate lines from symbol files.
+Thanks to Matthias Klose (Closes: #985930)
+  * [5c240253] Mark String::QString(QString const&)@Base as optional.
+Required for backporting.
+  * [2dfbaa07] Updating debian/control from debian/control.in
+  * [c582b2aa] gpsd-tools: add missing Breaks+Replaces
+gpsd-tools needs Breaks/Replaces for gpsd-clients (<< 3.20-10)
+Thanks to Andreas Beckmann (Closes: #987208)
+
+ -- Bernd Zeimetz   Sun, 25 Apr 2021 12:17:57 +0200
+
 gpsd (3.22-2) unstable; urgency=medium
 
   [ Bernd Zeimetz ]
diff --git a/debian/control b/debian/control
index 30665b4e2..a38b8c82f 100644
--- a/debian/control
+++ b/debian/control
@@ -63,8 +63,8 @@ Architecture: any
 Depends: ${shlibs:Depends}, ${misc:Depends},
  libgps28 (= ${binary:Version}),
 Suggests: gpsd
-Breaks: python-gps, gpsd (<< 3.20-9)
-Replaces: python-gps
+Breaks: python-gps, gpsd (<< 3.20-9), gpsd-clients (<< 3.20-10)
+Replaces: python-gps, gpsd-clients (<< 3.20-10)
 Description: Global Positioning System - tools
  The gpsd service daemon can monitor one or more GPS devices connected to
  a host computer, making all data on the location and movements of the
diff --git a/debian/control.in b/debian/control.in
index cb2df897d..7ff2aa444 100644
--- a/debian/control.in
+++ b/debian/control.in
@@ -63,8 +63,8 @@ Architecture: any
 Depends: ${shlibs:Depends}, ${misc:Depends},
  libgpsLIBGPSSONAME (= ${binary:Version}),
 Suggests: gpsd
-Breaks: python-gps, gpsd (<< 3.20-9)
-Replaces: python-gps
+Breaks: python-gps, gpsd (<< 3.20-9), gpsd-clients (<< 3.20-10)
+Replaces: python-gps, gpsd-clients (<< 3.20-10)
 Description: Global Positioning System - tools
  The gpsd service daemon can monitor one or more GPS devices connected to
  a host computer, making all data on the location and movements of the
diff --git a/debian/libgpsLIBGPSSONAME.symbols 
b/debian/libgpsLIBGPSSONAME.symbols
index 03ae8f936..3f66558b5 100644
--- a/debian/libgpsLIBGPSSONAME.symbols
+++ b/debian/libgpsLIBGPSSONAME.symbols
@@ -9,8 +9,6 @@ libgps.so.LIBGPSSONAME libgpsLIBGPSSONAME #MINVER#
  (c++)"gpsmm::stream(int)@Base" 3.3
  (c++)"gpsmm::waiting(int)@Base" 3.3
  (c++)"gpsmm::~gpsmm()@Base" 3.3
- (c++)"gpsmm::~gpsmm()@Base" 3.3
- (c++)"gpsmm::~gpsmm()@Base" 3.3
  (c++)"typeinfo for gpsmm@Base" 3.3
  (c++)"typeinfo name for gpsmm@Base" 3.3
  (c++)"vtable for gpsmm@Base" 3.3
diff --git a/debian/libqgpsmmLIBGPSSONAME.symbols 
b/debian/libqgpsmmLIBGPSSONAME.symbols
index 84edae24e..d3d51ab01 100644
--- a/debian/libqgpsmmLIBGPSSONAME.symbols
+++ b/debian/libqgpsmmLIBGPSSONAME.symbols
@@ -36,18 +36,12 @@ libQgpsmm.so.LIBGPSSONAME libqgpsmmLIBGPSSONAME #MINVER#
  (c++)"gpsmm::waiting(int)@Base" 3.3
  (c++)"gpsmm::clear_fix()@Base" 3.3
  (c++)"gpsmm::~gpsmm()@Base" 3.3
- (c++)"gpsmm::~gpsmm()@Base" 3.3
- (c++)"gpsmm::~gpsmm()@Base" 3.3
-#MISSING: 3.18# (c++|optional)"QDebug::~QDebug()@Base" 3.3
 #MISSING: 3.18# (c++|optional)"QDebug::~QDebug()@Base" 3.3
  (c++|optional)"QString::~QString()@Base" 3.3
- (c++|optional)"QString::~QString()@Base" 3.3
- (c++|optional)"QList::~QList()@Base" 3.5
  (c++|optional)"QList::~QList()@Base" 3.5
  (c++)"typeinfo for gpsmm@Base" 3.3
  (c++)"typeinfo name for gpsmm@Base" 3.3
  (c++)"vtable for gpsmm@Base" 3.3
-#MISSING: 3.18# (c++|optional)"QByteArray::~QByteArray()@Base" 3.3
 #MISSING: 3.18# (c++|optional)"QByteArray::~QByteArray()@Base" 3.3
  (c++)"shiftleft(unsigned char*, int, unsigned short)@Base" 

Bug#982949: Please allow libvirt-python 7.0.0 into bullseye

[Bernd Zeimetz]

Hi Paul,

On Wed, 2021-02-17 at 18:37 +0100, Paul Gevers wrote:
> libvirt-python is a key package.

and it should match libvirt. Having libvirt-python 6.x and libvirt 7.0
is (imho, ymmv...) much worse than an completely (from us) untested
libvirt-python.


Thanks,

Bernd


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Re: Virtual Debian BSP Salzburg

[Bernd Zeimetz]

On Tue, 2021-02-09 at 19:31 +0100, Luna Jernberg wrote:
> Hello!
> 
> Is it okay to only attend some of the BSP Event?, Noticed now in my
> calendar that i was double booked on that weekend 

Of course. Every single minute spent on fixing bugs is welcome :)


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#979341: transition: gpsd

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition

Hi release team,


just in time gpsd upstream pushed the first release candidate of 3.22,
which is due to be released within the next few days.

As usual its comes with a soname bump and a small api change, so I've
uploaded -rc1 to experimental, ready to upload to unstable.

Only one build-rdep fails to build against it (foxtrotgps, fix in
progress, #979252), as you can see here.

https://salsa.debian.org/debian-gps-team/pkg-gpsd/-/pipelines/215214

Please ack the start of the transition.


Thanks,

Bernd



Ben file:

title = "gpsd";
is_affected = .depends ~ /^lib.*gps.*26$/ | .depends ~ /^lib.*gps.*28$/;
is_good = .depends ~ /^lib.*gps.*28$/;
is_bad = .depends ~ /^lib.*gps.*26$/;



-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#948375: buster-pu: package ceph/12.2.12+dfsg-1

[Bernd Zeimetz]

Hi Julien,

> That's kind of unreadable.  We like to have the proposed diff directly
> in the p-u bug, along with a description of the changes, what they fix,
> what the risks are.

how does a 48k lines diff as text help you? Its a mix of fixes for about
70 bugs (and 12.2.13 was released already, so >>100 bugs). Of course,
you can read the diff, but you wouldn't be able to review it properly.

> Pointers to more information elsewhere are not bad,
> but they don't replace information that should be in the bug.  In this
> case the upstream changelog doesn't really provide much context on which
> if any of the fixed issues are serious enough for us to want the update
> in stable.


https://docs.ceph.com/docs/master/releases/luminous/#v12-2-11-luminous
has all the info. Including links to th ebugs and the discussion.
Including various CVEs.

It is a stable point release, like it is done for firefox and others. it
is very well tested by upstream and I will definitely not start to pick
single commit - I don't have the infrastructure to run the regression
tests and that is done by upstream in a proper way. And I hope you also
don't want to risk to ship something that slowly degrades stored data.


>> - I've basically imported the changes the Ubuntu people have done in
>>   Ubuntu together with 12.2.12. So I assume this should work well, I did
>>   not yet test it properly as I want to wait for a reply from you. I'll
>>   prepare a backport of 14.2.x as soon as it migrates to testing anyway.
>>
> A reply from us tends to not be forthcoming before the proposed changes
> have been tested, so there's a bit of a chicken and egg issue.

But I'm not wasting an enourmous amount of time if there is a chance
that you say no anyway.


>> - The issue with ceph is that upstream doesn't do QA for 32bit and our
>>   selection of unusual architectures. I don't know if it builds on all
>>   buildds without trying...
>>
> There should be porterboxes available for all our release architectures.

I'll remove 32bit for bullseye, its way too broken to fix it properly
anyway, and not supported by upstream anymore.


It is really sad that Debian was not able to ship ceph in a proper state
until now, the former maintainers had similar discussions with the
release team and its even completely broken on arm64 in stable.


Really sad about this,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#948375: buster-pu: package ceph/12.2.12+dfsg-1

[Bernd Zeimetz]

Hi release team!

any news on this?
There are various bugs in ceph in buster and there was 12.2.13 released
in the meantime...


Bernd


On 1/7/20 11:37 PM, Bernd Zeimetz wrote:
> Package: release.debian.org
> Severity: normal
> Tags: buster
> User: release.debian@packages.debian.org
> Usertags: pu
> 
> 
> Hi release-team!
> 
> I have a bit complicated idea for a buster-pu: ceph.
> Buster shipped with 12.2.11 and last April upstream released 12.2.12 as
> bugfix release. As usual with ceph, the diff is *huge*, but it is a
> bugfix-only release. So here are a few facts:
> 
> - upstream changes: https://ceph.io/releases/v12-2-12-luminous-released/
>   
> - proposed diff:
>   
> https://salsa.debian.org/ceph-team/ceph/compare/luminous%2Funstable...debian%2Fbuster
> 
> - I've basically imported the changes the Ubuntu people have done in
>   Ubuntu together with 12.2.12. So I assume this should work well, I did
>   not yet test it properly as I want to wait for a reply from you. I'll
>   prepare a backport of 14.2.x as soon as it migrates to testing anyway.
> 
> - The issue with ceph is that upstream doesn't do QA for 32bit and our
>   selection of unusual architectures. I don't know if it builds on all
>   buildds without trying...
> 
> - 12.2.X is already EOL at ceph upstream I just took over the
>   maintenance of ceph, so... everything is late. Things should be better
>   for bullseye.
> 
> - The packaging is not yet as close to the upstream packaging as I'd
>   like to have it. Upstream's packaging is very well tested and
>   supported, we should stick to that as far as possible.
>  
> For bullseye we'll have the same question: Big updates from upstream as
> their pointrelease. Target will probably be 15.2.X (Octopus), which is
> not yet released, but I hope it will be before bullseye will go into
> freeze.
> 
> 
> So... whats your opinion on that?
> 
> 
> Thanks,
> 
> Bernd
> 

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Re: Bug#948722: qemu-block-extra, (build-)dependencies unsatisfiable on mipsel.

[Bernd Zeimetz]

Hi,

I might have a workaround, if ceph-dencoder is the only piece that fails.

Unfortunately I doubt it is, but I'll give it a try in experimental soon.

Bernd

Am 16. Jänner 2020 00:55:11 MEZ schrieb peter green :
>On 14/01/2020 10:24, Michael Tokarev wrote:
>> Control: severity -1 normal
>> Control: tag -1 + moreinfo
>>
>> 12.01.2020 18:37, peter green wrote:
>>> Package: qemu-block-extra
>>> Version: 1:4.2-1
>>> Severity: serious
>>>
>>> The binary packages built from the ceph source package were recently
>removed from mipsel, because the new version of ceph runs out of
>address space
>>> during the build. Your package build-depends on libradios-dev and
>librbd-dev and depends on librados2 and librbd1 which are built from
>the ceph source
>>> package. So qemu-block-extra is now uninstallable and the qemu
>source package is unbuildable on mipsel.
>> Hm. For the start, I see that new ceph packages are being built on
>mips/mips64
>> right now as I write this. So things aren't that simple, at least.
>
>Ceph 14.2.4 was uploaded to unstable in late december, but failed to
>build on many architectures. The maintainer found workarounds for most
>of them, but could not find any soloution to the address space
>exhaustion issue on mipsel (when a build says "out of memory" it nearly
>always really means out of address space).
>
>With version 14.2.4-8 the maintainer decided it was time to give up on
>mipsel, he removed mipsel from the architecture lists and filed a
>removal request with the ftp masters.
>https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947887
>
>It seems that with version 1.4.2.5-1 mipsel was quietly re-added to the
>achitecture list, I do not know if this was a mistake or if the
>maintainer was deliberately testing if the problem had gone away.
>Either way ceph has continued to fail to build on mipsel.
>
>> Next, even if we're now uninstallable on some architecture, it is
>definitely not
>> our fault,
>
>It's not about "fault".
>
>> so I don't see why this bugreport is of serious severity.
>rc policy "Packages must be buildable within the same release."
>
>I'm not going to play severity ping-pong with you, but I am ccing the
>ceph maintainers and the release team in-case they want to give a
>position on this.
>>   Also, it has
>> nothing to do with this particular version of qemu, either.
>True enough, afaict normal practice is to file bugs against the current
>version in testing/unstable unless there is reason not to.
>>And more, it has
>> nothing to do with qemu-block-extra package, too, even if that's the
>only pkg
>> which actually uses the library in question, -- we _build_-depend on
>librados-dev
>> too, so it is qemu source which FTBFS on mips.
>If you would preffer to reassign to the source package that is fine by
>me, doesn't make much practical difference.
>>
>> So far I don't quite understand what's going on with ceph on mips,
>hence adding
>> a "moreinfo" tag. We shouldn't drop optional features on different
>architectures
>> easily,
>
>If I thought this was just some transient issue I wouldn't have
>bothered filing this bug, but I doubt it is.
>
>>   or else it would quickly become a mess, not understanding which
>features
>> of which packages are enabled on which architecture (I speak here
>about general
>> debian, not about this particular (pair of) package).
>At some point I think Debian needs to have a hard think about how
>32-bit architectures are supported, possiblly introducing official
>support for cross-building heavier packages, but so-far there doesn't
>seem to have been a strong will to do so.

-- 
Diese Nachricht wurde von meinem Android-Gerät mit K-9 Mail gesendet.

Re: Bug#948722: qemu-block-extra, (build-)dependencies unsatisfiable on mipsel.

[Bernd Zeimetz]

On 2020-01-16 00:55, peter green wrote:

It seems that with version 1.4.2.5-1 mipsel was quietly re-added to
the achitecture list, I do not know if this was a mistake or if the
maintainer was deliberately testing if the problem had gone away.
Either way ceph has continued to fail to build on mipsel.


That was actually only planned to happen for experimental, but
was accidentally merged to unstable.



I'm not going to play severity ping-pong with you, but I am ccing the
ceph maintainers and the release team in-case they want to give a
position on this.


My position is easy: if you either fix clang #947886 or g++ #947886,
then this issue will go away. There is nothing I can do about it,
I've tested all useful combinations of memory-saving flags on ceph.

As long as this does not happen, qemu needs to drop support for
ceph on mipsel.

What I can try is to build with clang-9 and see if that helps,
but so far please remove ceph support from qemu on mipsel and
be done.

The other option would be to remove qemu from mipsel as I'd assume
that the architectures is too slow to be useful for qemu anyway.


--
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#948468: (unplanned) transition: gpsd

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition

Hi release team,

unfortunately gpsd upstream missed to change the soname version (seems
its actually mentioned in the commit message, but the change is missing)
and I also missed that one struct changed in a subtle way.
Additionally I've learned that some build-rdeps use parts of libgps
that are not part of the official API. These parts changed, so
there will be some FTBFS. I'll take care of them where necessary,
although I know that some people are already working on fixes (pabs for
example).

gpsd 3.20-2 is in NEW right now and will go to experimental, if you
don't object I'd upload it to unstable to make the mess smaller than it
is now.

I'll also implement a CI check for soname bumps in the gpsd upstream CI
;)


Ben file:

title = "gpsd";
is_affected = .depends ~ /^lib.*gps.*25$/ | .depends ~ /^lib.*gps.*26$/;
is_good = .depends ~ /^lib.*gps.*26$/;
is_bad = .depends ~ /^lib.*gps.*25$/;


Sorry & thanks,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#948375: buster-pu: package ceph/12.2.12+dfsg-1

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
Tags: buster
User: release.debian@packages.debian.org
Usertags: pu


Hi release-team!

I have a bit complicated idea for a buster-pu: ceph.
Buster shipped with 12.2.11 and last April upstream released 12.2.12 as
bugfix release. As usual with ceph, the diff is *huge*, but it is a
bugfix-only release. So here are a few facts:

- upstream changes: https://ceph.io/releases/v12-2-12-luminous-released/
  
- proposed diff:
  
https://salsa.debian.org/ceph-team/ceph/compare/luminous%2Funstable...debian%2Fbuster

- I've basically imported the changes the Ubuntu people have done in
  Ubuntu together with 12.2.12. So I assume this should work well, I did
  not yet test it properly as I want to wait for a reply from you. I'll
  prepare a backport of 14.2.x as soon as it migrates to testing anyway.

- The issue with ceph is that upstream doesn't do QA for 32bit and our
  selection of unusual architectures. I don't know if it builds on all
  buildds without trying...

- 12.2.X is already EOL at ceph upstream I just took over the
  maintenance of ceph, so... everything is late. Things should be better
  for bullseye.

- The packaging is not yet as close to the upstream packaging as I'd
  like to have it. Upstream's packaging is very well tested and
  supported, we should stick to that as far as possible.
 
For bullseye we'll have the same question: Big updates from upstream as
their pointrelease. Target will probably be 15.2.X (Octopus), which is
not yet released, but I hope it will be before bullseye will go into
freeze.


So... whats your opinion on that?


Thanks,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#942044: buster-pu: package open-vm-tools/2:10.3.10-1+deb10u2

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
Tags: buster
User: release.debian@packages.debian.org
Usertags: pu

Hi release-team,

I'd like to update open-vm-tools with the next pointrelease as upstream
found some memory leaks which need to be fixed. This includes a very
minor security issue where root would have access to soon expiring saml
tokens - but root has access to them anyway (for example by running a
hacked version of open-vm-tools).

This is #941955

Upstream changes are here:
https://github.com/vmware/open-vm-tools/commits/stable-10.3.10-vix-memory-leaks

debdiff is attached to this mail.

Please let me know when I can upload the buster-pu.

Thanks,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index 316bfa27..8432b78a 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,17 @@
+open-vm-tools (2:10.3.10-1+deb10u2) buster; urgency=medium
+
+  * [d512626] Fix memory leaks and error handling.
+From the upstream stable-10.3.10-vix-memory-leaks branch:
+commit 26b9edbeb79d1c67b9ae73a0c97c48999c1fb503
+Fix leaks in ListAliases and ListMappedAliases
+commit 7b874f37f970aab2adddb063a8363594f47abf70
+End VGAuth impersonation in the case of error.
+commit 015db4c06a8be65eb96cf62421e8b5366993452f
+Fix memory leaks in 'vix' tools plugin.
+Thanks to Oliver Kurth (Closes: #941955)
+
+ -- Bernd Zeimetz   Wed, 09 Oct 2019 14:18:48 +0200
+
 open-vm-tools (2:10.3.10-1+deb10u1) buster; urgency=medium
 
   * [efb4df1] Fix guest OS reporting for Debian/Buster.
diff --git a/debian/patches/015db4c0_Fix-memory-leaks-in-vix-tools-plugin 
b/debian/patches/015db4c0_Fix-memory-leaks-in-vix-tools-plugin
new file mode 100644
index ..e0d161c1
--- /dev/null
+++ b/debian/patches/015db4c0_Fix-memory-leaks-in-vix-tools-plugin
@@ -0,0 +1,80 @@
+From 015db4c06a8be65eb96cf62421e8b5366993452f Mon Sep 17 00:00:00 2001
+From: Oliver Kurth 
+Date: Wed, 29 Aug 2018 13:29:45 -0700
+Subject: [PATCH] Fix memory leaks in 'vix' tools plugin.
+
+* vix plugin retrieves the power script file paths from the
+config file but doesn't free them and this causes a memory leak.
+Fixed the code to free the filepaths.
+
+* In GuestAuthPasswordAuthenticateImpersonate function, the VGAuth
+handle is not freed when the impersonation fails. Fixed the
+code to call VGAuth_UserHandleFree in the error path.
+
+Note: I executed one guest operation with wrong credentials.
+Every failure leaks 75 bytes of memory. (in Centos 64-bit VM)
+
+* Fixed another minor issue in the code. At couple of places in
+the code, replaced 'err' with 'vgErr' for storing the return value
+of VGAuth_UserHandleAccessToken.
+---
+ open-vm-tools/services/plugins/vix/vixTools.c | 20 +--
+ 1 file changed, 14 insertions(+), 6 deletions(-)
+
+--- a/open-vm-tools/services/plugins/vix/vixTools.c
 b/open-vm-tools/services/plugins/vix/vixTools.c
+@@ -2522,10 +2522,10 @@ VixTools_GetToolsPropertiesImpl(GKeyFile
+char *guestName;
+int osFamily;
+char *packageList = NULL;
+-   const char *powerOffScript = NULL;
+-   const char *powerOnScript = NULL;
+-   const char *resumeScript = NULL;
+-   const char *suspendScript = NULL;
++   char *powerOffScript = NULL;
++   char *powerOnScript = NULL;
++   char *resumeScript = NULL;
++   char *suspendScript = NULL;
+char *osName = NULL;
+char *osNameFull = NULL;
+Bool foundHostName;
+@@ -2726,6 +2726,10 @@ abort:
+free(tempDir);
+free(osName);
+free(osNameFull);
++   free(suspendScript);
++   free(resumeScript);
++   free(powerOnScript);
++   free(powerOffScript);
+ #else
+/*
+ * FreeBSD. We do not require all the properties above.
+@@ -11583,7 +11587,7 @@ GuestAuthPasswordAuthenticateImpersonate
+ 
+ #ifdef _WIN32
+// this is making a copy of the token, be sure to close it
+-   err = VGAuth_UserHandleAccessToken(ctx, newHandle, userToken);
++   vgErr = VGAuth_UserHandleAccessToken(ctx, newHandle, userToken);
+if (VGAUTH_FAILED(vgErr)) {
+   err = VixToolsTranslateVGAuthError(vgErr);
+   goto done;
+@@ -11599,6 +11603,10 @@ done:
+free(username);
+Util_ZeroFreeString(password);
+ 
++   if (VIX_OK != err) {
++  VGAuth_UserHandleFree(newHandle);
++  newHandle = NULL;
++   }
+return err;
+ #else
+return VIX_E_NOT_SUPPORTED;
+@@ -11729,7 +11737,7 @@ impersonate:
+ 
+ #ifdef _WIN32
+// this is making a copy of the token, be sure to close it
+-   err = VGAuth_UserHandleAccessToken(ctx, newHandle, userToken);
++   vgErr = VGAuth_UserHandleAccessToken(ctx, newHandle, userToken);
+if (VGAUTH_FAILED(vgErr)) {
+   err = VixToolsTranslateVGAuthError(vgErr);
+   goto done;
diff --git 
a/debian/patches/26b9edbe_Fix-leaks-in-ListAliases-and-ListMappedAliases

Bug#941289: transition: gpsd

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition

Hi,

I'd (finally) like to start the gpsd transition to libgps25 and friends.

There reverse dependencies build well against the new version
(thanks to Christian Ehrhardt for testing), with the only
exception being collectd, which is RC buggy and not in testing
right now anyway. The rc issues (and others) seem to be fixed in an
upcoming upstream release - and I don't want to wait for that..

There were some other broken rdeps, but they are removed from the
archive for good...

Please let me know when I should upload to unstable.

Thanks,

Bernd


Ben file:

title = "gpsd";
is_affected = .depends ~ /^lib.*gps.*23$/ | .depends ~ /^lib.*gps.*25$/;
is_good = .depends ~ /^lib.*gps.*25$/;
is_bad = .depends ~ /^lib.*gps.*23$/;

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#934183: buster-pu: package open-vm-tools/2:10.3.10-1+deb10u1

[Bernd Zeimetz]

On 8/18/19 4:35 PM, Adam D. Barratt wrote:
> On Wed, 2019-08-07 at 21:44 +0200, Bernd Zeimetz wrote:
>> I'd like to upload a fix for open-vm-tools to proposed-updates which
>> actually allows to recognize buster.
>>
>> `lsb_release -sd` currently prints
>>    Debian GNU/Linux 10 (buster)
>> but the current implementation in open-vm-tools expects 10. in the
>> output.
> 
> Please go ahead; thanks.

Uploaded.

Thanks,

Bend


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#934183: stretch-pu: package open-vm-tools/2:10.3.10-1+deb10u1

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
Tags: buster
User: release.debian@packages.debian.org
Usertags: pu


Hi release-team,

I'd like to upload a fix for open-vm-tools to proposed-updates which
actually allows to recognize buster.

`lsb_release -sd` currently prints
   Debian GNU/Linux 10 (buster)
but the current implementation in open-vm-tools expects 10. in the
output.

I'd assume that this issue will be fixed with the pointrelease anyway,
as the lsb_release output should change to 10.1, but I think it makes
sense to fix it, just in case people do partial upgrades.

Diff is attached.


Thanks,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index fdd98af2..316bfa27 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,17 @@
+open-vm-tools (2:10.3.10-1+deb10u1) buster; urgency=medium
+
+  * [efb4df1] Fix guest OS reporting for Debian/Buster.
+Without this fix, open-vm-tools report other4xLinux64Guest instead of
+Debian/Buster.
+Reason is the output of lsb_release, which outputs:
+$ lsb_release -sd
+Debian GNU/Linux 10 (buster)
+But the code in open-vm-tools expects '10.'.
+Thanks to Oliver Kurth (Closes: #934005)
+  * [2308b74] Updating gbp.conf for buster.
+
+ -- Bernd Zeimetz   Wed, 07 Aug 2019 21:09:29 +0200
+
 open-vm-tools (2:10.3.10-1) unstable; urgency=high
 
   * [122e511] Update upstream source from tag 'upstream/10.3.10'
diff --git a/debian/gbp.conf b/debian/gbp.conf
index bf4163e8..9a54689e 100644
--- a/debian/gbp.conf
+++ b/debian/gbp.conf
@@ -1,3 +1,6 @@
+[DEFAULT]
+debian-branch = buster
+
 [buildpackage]
 sign-tags = True
 posttag = git push && git push --tags
diff --git a/debian/patches/fix-buster-OS-reporting 
b/debian/patches/fix-buster-OS-reporting
new file mode 100644
index ..eb9b2159
--- /dev/null
+++ b/debian/patches/fix-buster-OS-reporting
@@ -0,0 +1,11 @@
+--- a/open-vm-tools/lib/misc/hostinfoPosix.c
 b/open-vm-tools/lib/misc/hostinfoPosix.c
+@@ -814,7 +814,7 @@ HostinfoGetOSShortName(char *distro,
+  Str_Strcpy(distroShort, STR_OS_DEBIAN_8, distroShortSize);
+   } else if (strstr(distroLower, "9.")) {
+  Str_Strcpy(distroShort, STR_OS_DEBIAN_9, distroShortSize);
+-  } else if (strstr(distroLower, "10.")) {
++  } else if (strstr(distroLower, "10")) {
+  Str_Strcpy(distroShort, STR_OS_DEBIAN_10, distroShortSize);
+   }
+} else if (StrUtil_StartsWith(distroLower, "enterprise linux") ||
diff --git a/debian/patches/series b/debian/patches/series
index 8140b204..39debc1e 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -1,3 +1,4 @@
 debian/pam-use-common-auth-account
 debian/max_nic_count
 debian/scsi-udev-rule
+fix-buster-OS-reporting

Bug#926481: stretch-pu: package open-vm-tools/2:10.1.5-5055683-4+deb9u2

[Bernd Zeimetz]

Hi Salvatore,

On 4/26/19 10:06 PM, Salvatore Bonaccorso wrote:
> Hi Bernd,
> 
> On Sat, Apr 13, 2019 at 09:56:16PM +0100, Adam D. Barratt wrote:
>> Control: tags -1 + confirmed
>>
>> On Fri, 2019-04-05 at 23:15 +0200, Bernd Zeimetz wrote:
>>> as discuassed with the security team, I'd like to fix #925959
>>> with the next stable pointrelease. The proposed debdiff is attached.
>>>
>>
>> Please go ahead.
> 
> Did you saw the the ack from Adam? It is now unfortunately too late
> for this upcoming point release, but would then be possible for the
> next one.

yes, unfortunately I was pretty busy, so it took some time :(

Uploaded a few seconds ago.

Bernd


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#929517: unblock: gpsd/3.17-7

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Hi release-team,

please unblock package gpsd

Lisandro Damián Nicanor Pérez Meyer reported, that it is unnecessary
hard for an admin to enable gpsd to start at boot time (instead
of relying on udev to handle it).

I think this should be fixed for buster.

Patch is attached.

Thanks,

bernd


unblock gpsd/3.17-7

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index 16bb69795..4d554b0d0 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,13 @@
+gpsd (3.17-7) unstable; urgency=medium
+
+  [ Lisandro Damián Nicanor Pérez Meyer ]
+  * [ffb32ff8] Allow gpsd.service to be enabled by the admin at boot time.
+Be sure to keep it disabled. The admin needs to explicitely start
+it if needed.
+Closes: #928681
+
+ -- Bernd Zeimetz   Sat, 25 May 2019 11:55:30 +0200
+
 gpsd (3.17-6) unstable; urgency=medium
 
   * [0a8e4e18] Pull json fixes from upstream to fix a stack-based
diff --git a/debian/patches/full-systemd-support 
b/debian/patches/full-systemd-support
index 4624e110a..0fd20724c 100644
--- a/debian/patches/full-systemd-support
+++ b/debian/patches/full-systemd-support
@@ -1,6 +1,6 @@
 --- a/systemd/gpsd.service
 +++ b/systemd/gpsd.service
-@@ -7,9 +7,7 @@ After=chronyd.service
+@@ -7,8 +7,7 @@ After=chronyd.service
  [Service]
  Type=forking
  EnvironmentFile=-/etc/default/gpsd
@@ -9,5 +9,4 @@
 +ExecStart=/usr/sbin/gpsd $GPSD_OPTIONS $DEVICES
  
  [Install]
--WantedBy=multi-user.target
- Also=gpsd.socket
+ WantedBy=multi-user.target
diff --git a/debian/rules b/debian/rules
index e458b9ca1..7e7e5a6fe 100755
--- a/debian/rules
+++ b/debian/rules
@@ -190,7 +190,8 @@ binary: install-stamp
dh_installdocs 
dh_installman 
dh_installmenu 
-   dh_systemd_enable -pgpsd
+   dh_installsystemd -pgpsd --restart-after-upgrade gpsdctl@.service 
gpsd.socket
+   dh_installsystemd -pgpsd --no-enable --no-start gpsd.service
dh_installinit
dh_systemd_start -pgpsd --restart-after-upgrade
dh_installexamples 

Bug#926610: unblock: ceph/12.2.11+dfsg1-2.1

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Hi release team,

please unblock package ceph.

I've NMUed it to add a missing systemd @.service file,
which basically renedered the package unusuable
(unless you'd be doing crazy stuff which is far away from
the documented process of setting up a ceph cluster).

Find the short diff below.

unblock ceph/12.2.11+dfsg1-2.1


Thanks,

Bernd



bzed@think ~debian/BSP/ceph (git)-[luminous/unstable] % git diff-tree -p 
debian/12.2.11+dfsg1-2..debian/12.2.11+dfsg1-2.1
diff --git a/debian/changelog b/debian/changelog
index 92d40bfbe4..44d4e3a672 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,11 @@
+ceph (12.2.11+dfsg1-2.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * [3194010] Install ceph-volume@.service into ceph-osd.
+(Closes: #924061)
+
+ -- Bernd Zeimetz   Fri, 05 Apr 2019 15:12:52 +0200
+
 ceph (12.2.11+dfsg1-2) unstable; urgency=medium

   * [27a321] Fix builds on 32bit architectures
diff --git a/debian/rules b/debian/rules
index d167e96e96..ae1c2270e1 100755
--- a/debian/rules
+++ b/debian/rules
@@ -123,8 +123,10 @@ override_dh_installinit:
install -d -m0755 debian/ceph-osd/lib/systemd/system
install -m0644 systemd/ceph-osd@.service 
debian/ceph-osd/lib/systemd/system
install -m0644 systemd/ceph-disk@.service 
debian/ceph-osd/lib/systemd/system
+   install -m0644 systemd/ceph-volume@.service 
debian/ceph-osd/lib/systemd/system
sed -i s./etc/sysconfig/./etc/default/.g 
debian/ceph-osd/lib/systemd/system/ceph-osd@.service
sed -i s./etc/sysconfig/./etc/default/.g 
debian/ceph-osd/lib/systemd/system/ceph-disk@.service
+   sed -i s./etc/sysconfig/./etc/default/.g 
debian/ceph-osd/lib/systemd/system/ceph-volume@.service
install -m0644 systemd/ceph-osd.target 
debian/ceph-osd/lib/systemd/system
# systemd:ceph-mds
install -d -m0755 debian/ceph-mds/lib/systemd/system
bzed@think ~debian/BSP/ceph (git)-[luminous/unstable] %



-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#926548: unblock: nfs-utils/1:1.3.4-2.5

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Hi release-team,

please unblock package nfs-utils.

I've NMUed the package to fix #895381:

  [ Micha Lenk ]
  * [abaa2ab] handle_gssd_upcall: Fix failure to find uid in upcall string 
'mech=krb5'
by adding the suggested upstream commits as
debian/patches/0010-gssd-replace-non-thread-safe-strtok-with-strsep.patch 
and

debian/patches/0011-gssd-Duplicate-the-upcall-string-for-error-messages.patch.
rpc.gssd: WARNING: handle_gssd_upcall: failed to find uid in upcall string 
'mech=krb5'
(Closes: #895381)

Diff is attached.


unblock nfs-utils/1:1.3.4-2.5

Thanks,

Bernd


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index bd57693..f341ef5 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,17 @@
+nfs-utils (1:1.3.4-2.5) unstable; urgency=medium
+
+  * Non-maintainer upload.
+
+  [ Micha Lenk ]
+  * [abaa2ab] handle_gssd_upcall: Fix failure to find uid in upcall string 
'mech=krb5'
+by adding the suggested upstream commits as
+debian/patches/0010-gssd-replace-non-thread-safe-strtok-with-strsep.patch 
and
+
debian/patches/0011-gssd-Duplicate-the-upcall-string-for-error-messages.patch.
+rpc.gssd: WARNING: handle_gssd_upcall: failed to find uid in upcall string 
'mech=krb5'
+(Closes: #895381)
+
+ -- Bernd Zeimetz   Sat, 06 Apr 2019 18:30:39 +0200
+
 nfs-utils (1:1.3.4-2.4) unstable; urgency=medium
 
   [ Laurent Bigonville ]
diff --git 
a/debian/patches/0010-gssd-replace-non-thread-safe-strtok-with-strsep.patch 
b/debian/patches/0010-gssd-replace-non-thread-safe-strtok-with-strsep.patch
new file mode 100644
index 000..ee0c376
--- /dev/null
+++ b/debian/patches/0010-gssd-replace-non-thread-safe-strtok-with-strsep.patch
@@ -0,0 +1,41 @@
+From: Frank Sorenson 
+Date: Wed, 15 Feb 2017 10:36:47 -0500
+Subject: gssd: replace non-thread-safe strtok with strsep
+
+gssd uses the non-thread-safe strtok() function, which
+can lead to incorrect program behavior.
+
+Replace strtok() with the thread-safe strsep().
+
+Signed-off-by: Frank Sorenson 
+Signed-off-by: Steve Dickson 
+
+Origin: upstream, 
http://git.linux-nfs.org/?p=steved/nfs-utils.git;a=commitdiff;h=5ae8be8
+Bug: https://bugzilla.redhat.com/show_bug.cgi?id=1419280
+Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=895381
+Last-Update: 2019-04-05
+
+---
+ utils/gssd/gssd_proc.c | 3 ++-
+ 1 file changed, 2 insertions(+), 1 deletion(-)
+
+diff --git a/utils/gssd/gssd_proc.c b/utils/gssd/gssd_proc.c
+index d74d3724..30c6aceb 100644
+--- a/utils/gssd/gssd_proc.c
 b/utils/gssd/gssd_proc.c
+@@ -729,10 +729,11 @@ handle_gssd_upcall(struct clnt_upcall_info *info)
+   char*target = NULL;
+   char*service = NULL;
+   char*enctypes = NULL;
++  char*pbuf = info->lbuf;
+ 
+   printerr(2, "\n%s: '%s' (%s)\n", __func__, info->lbuf, clp->relpath);
+ 
+-  for (p = strtok(info->lbuf, " "); p; p = strtok(NULL, " ")) {
++  while ((p = strsep(, " "))) {
+   if (!strncmp(p, "mech=", strlen("mech=")))
+   mech = p + strlen("mech=");
+   else if (!strncmp(p, "uid=", strlen("uid=")))
+-- 
+2.20.1
+
diff --git 
a/debian/patches/0011-gssd-Duplicate-the-upcall-string-for-error-messages.patch 
b/debian/patches/0011-gssd-Duplicate-the-upcall-string-for-error-messages.patch
new file mode 100644
index 000..fa42430
--- /dev/null
+++ 
b/debian/patches/0011-gssd-Duplicate-the-upcall-string-for-error-messages.patch
@@ -0,0 +1,92 @@
+From: Frank Sorenson 
+Date: Wed, 15 Feb 2017 10:38:53 -0500
+Subject: gssd:  Duplicate the upcall string for error messages
+
+strsep() modifies the input string, so error messages
+may output only part of the upcall string.
+
+Make a copy of the upcall string, and use that in any
+error messages.
+
+Signed-off-by: Frank Sorenson 
+Signed-off-by: Steve Dickson 
+
+Origin: upstream, 
http://git.linux-nfs.org/?p=steved/nfs-utils.git;a=commitdiff;h=0a4f5e4
+Bug: https://bugzilla.redhat.com/show_bug.cgi?id=1419280
+Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=895381
+Last-Update: 2019-04-05
+
+---
+ utils/gssd/gssd_proc.c | 17 +
+ 1 file changed, 13 insertions(+), 4 deletions(-)
+
+diff --git a/utils/gssd/gssd_proc.c b/utils/gssd/gssd_proc.c
+index 30c6aceb..4fc81c30 100644
+--- a/utils/gssd/gssd_proc.c
 b/utils/gssd/gssd_proc.c
+@@ -729,10 +729,17 @@ handle_gssd_upcall(struct clnt_upcall_info *info)
+   char*target = NULL;
+   char*service

Bug#926484: unblock: gpsd/3.17-6

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Hi release-team,

please unblock package gpsd.

The applied diff was discussed with the release team and we've
decided its the best way to fix the json related fixes.
Diff between 3.17-5 und 3.17-6 is attached to this mail.


  * [0a8e4e18] Pull json fixes from upstream to fix a stack-based
buffer overflow, which may allow remote attackers to execute
arbitrary code on embedded platforms via traffic on Port
2947/TCP or crafted JSON inputs.
CVE-2018-17937 / Closes: #925327
The update also fixes several other json parser bugs.
- ECMA-404 says JSON \u must have 4 hex digits
- Allow for \u escapes with fewer than 4 digits.
- Fail on bad escape string.


unblock gpsd/3.17-6


Thanks,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index ebd29108b..16bb69795 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,19 @@
+gpsd (3.17-6) unstable; urgency=medium
+
+  * [0a8e4e18] Pull json fixes from upstream to fix a stack-based
+buffer overflow, which may allow remote attackers to execute
+arbitrary code on embedded platforms via traffic on Port
+2947/TCP or crafted JSON inputs.
+CVE-2018-17937 / Closes: #925327
+The update also fixes several other json parser bugs.
+- ECMA-404 says JSON \u must have 4 hex digits
+- Allow for \u escapes with fewer than 4 digits.
+- Fail on bad escape string.
+  * [71020f4f] Update git-buildpackage config to build from the
+buster branch.
+
+ -- Bernd Zeimetz   Fri, 05 Apr 2019 23:31:30 +0200
+
 gpsd (3.17-5) unstable; urgency=medium
 
   * [fd1e83f9] Add pkg-config as Build-Dependency.
diff --git a/debian/gbp.conf b/debian/gbp.conf
index 1529a93db..151b02d6b 100644
--- a/debian/gbp.conf
+++ b/debian/gbp.conf
@@ -4,7 +4,7 @@
 # the default branch for upstream sources:
 #upstream-branch = upstream
 # the default branch for the debian patch:
-#debian-branch = master
+debian-branch = buster
 # the default tag formats used:
 #upstream-tag = upstream/%(version)s
 #debian-tag = debian/%(version)s
diff --git a/debian/patches/json-cve-fix b/debian/patches/json-cve-fix
new file mode 100644
index 0..e81237bee
--- /dev/null
+++ b/debian/patches/json-cve-fix
@@ -0,0 +1,170 @@
+--- a/json.c
 b/json.c
+@@ -30,7 +30,7 @@ will match the right spec against the ac
+ recognize the JSON "null" value.  Secondly, arrays may not have
+ character values as elements (this limitation could be easily removed
+ if required). Third, all elements of an array must be of the same
+-type.
++type.  Fourth, it can not handle NaN's in doubles (Issue 53150).
+ 
+There are separate entry points for beginning a parse of either
+ JSON object or a JSON array. JSON "float" quantities are actually
+@@ -59,7 +59,7 @@ reusable module; search for "microjson".
+ 
+ PERMISSIONS
+This file is Copyright (c) 2010 by the GPSD project
+-   BSD terms apply: see the file COPYING in the distribution root for details.
++   SPDX-License-Identifier: BSD-2-clause
+ 
+ ***/
+ #include 
+@@ -188,7 +188,7 @@ static int json_internal_read_object(con
+ char *lptr;
+ 
+ if (end != NULL)
+-  *end = NULL;/* give it a well-defined value on parse 
failure */
++  *end = NULL;/* give it a well-defined value on parse failure */
+ 
+ /* stuff fields with defaults in case they're omitted in the JSON input */
+ for (cursor = attrs; cursor->attribute != NULL; cursor++)
+@@ -294,7 +294,8 @@ static int json_internal_read_object(con
+   }
+   if (cursor->attribute == NULL) {
+   json_debug_trace((1,
+-"Unknown attribute name '%s' (attributes 
begin with '%s').\n",
++"Unknown attribute name '%s'"
++  " (attributes begin with '%s').\n",
+ attrbuf, attrs->attribute));
+   /* don't update end here, leave at attribute start */
+   return JSON_ERR_BADATTR;
+@@ -374,6 +375,12 @@ static int json_internal_read_object(con
+   if (pval == NULL)
+   /* don't update end here, leave at value start */
+   return JSON_ERR_NULLPTR;
++  else if (pval > valbuf + JSON_VAL_MAX - 1
++ || pval > valbuf + maxlen) {
++  json_debug_trace((1, "String value too long.\n"));
++  /* don't update end here, leave at value start */
++  return JSON_ERR_STRLONG;/*  */

Bug#926481: stretch-pu: package open-vm-tools/2:10.1.5-5055683-4+deb9u2

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu

Hi release team,

as discuassed with the security team, I'd like to fix #925959
with the next stable pointrelease. The proposed debdiff is attached.


Please let me know if its okay to upload.

Thanks,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index 0be9f865..9b8f4cbb 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,20 @@
+open-vm-tools (2:10.1.5-5055683-4+deb9u2) stable; urgency=medium
+
+  * [34db05f] /tmp/VMwareDnD permissions security fix.
+Fix possible security issue with the permissions of the intermediate
+staging directory and path
+/tmp/VMwareDnD is a staging directory used for DnD and CnP.  It should be
+a regular directory, but malicious code or user may create the 
/tmp/VMwareDnD
+as a symbolic link which points elsewhere on the system.  This may provide
+user access to user B's files.
+Do not set the permission of the root directory if the root directory
+already exists and has the wrong permission.  The permission of the 
directory
+must be 1777 if it is created by the VMToolsi.  If not, then the directory
+has been created or modified by malicious code or user, so just cancel the
+host to guest DnD or CnP operation. (Closes: #925959)
+
+ -- Bernd Zeimetz   Fri, 05 Apr 2019 23:10:04 +0200
+
 open-vm-tools (2:10.1.5-5055683-4+deb9u1) stretch; urgency=medium
 
   * [dec8df6] Upstream fix for CVE-2015-5191 (Closes: #869633)
diff --git 
a/debian/patches/e88f91b00a715b79255de6576506d80ecfdb064c_vmware_dnd_fix.patch 
b/debian/patches/e88f91b00a715b79255de6576506d80ecfdb064c_vmware_dnd_fix.patch
new file mode 100644
index ..43daed8a
--- /dev/null
+++ 
b/debian/patches/e88f91b00a715b79255de6576506d80ecfdb064c_vmware_dnd_fix.patch
@@ -0,0 +1,54 @@
+commit e88f91b00a715b79255de6576506d80ecfdb064c
+Author: Oliver Kurth 
+Date:   Tue Jan 29 14:03:19 2019 -0800
+
+Fix possible security issue with the permissions of the intermediate
+staging directory and path
+
+/tmp/VMwareDnD is a staging directory used for DnD and CnP.  It should be
+a regular directory, but malicious code or user may create the 
/tmp/VMwareDnD
+as a symbolic link which points elsewhere on the system.  This may provide
+user access to user B's files.
+
+Do not set the permission of the root directory if the root directory
+already exists and has the wrong permission.  The permission of the 
directory
+must be 1777 if it is created by the VMToolsi.  If not, then the directory
+has been created or modified by malicious code or user, so just cancel the
+host to guest DnD or CnP operation.
+
+--- a/open-vm-tools/services/plugins/dndcp/dnd/dndCommon.c
 b/open-vm-tools/services/plugins/dndcp/dnd/dndCommon.c
+@@ -276,12 +276,11 @@ DnDCreateRootStagingDirectory(void)
+}
+ 
+if (File_Exists(root)) {
+-  if (!DnDRootDirUsable(root) &&
+-  !DnDSetPermissionsOnRootDir(root)) {
++  if (!DnDRootDirUsable(root)) {
+  /*
+-  * The directory already exists and its permissions are wrong and
+-  * cannot be set, so there's not much we can do.
++  * The directory already exists and its permissions are wrong.
+   */
++ Log("%s: The root dir is not usable.\n", __FUNCTION__);
+  return NULL;
+   }
+} else {
+--- a/open-vm-tools/services/plugins/dndcp/dnd/dndXdg.c
 b/open-vm-tools/services/plugins/dndcp/dnd/dndXdg.c
+@@ -318,12 +318,11 @@ CreateApparentRootDirectory(void)
+}
+ 
+if (File_Exists(root)) {
+-  if (   !DnDRootDirUsable(root)
+-  && !DnDSetPermissionsOnRootDir(root)) {
++  if (!DnDRootDirUsable(root)) {
+  /*
+-  * The directory already exists and its permissions are wrong and
+-  * cannot be set, so there's not much we can do.
++  * The directory already exists and its permissions are wrong.
+   */
++ Log_Trivia("dnd: The root dir is not usable.\n");
+  return NULL;
+   }
+} else {
diff --git a/debian/patches/series b/debian/patches/series
index 2c8fbff7..58f5849b 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -5,3 +5,4 @@ from_arch/0001-Fix-vmxnet-module-on-kernels-3.16.patch
 debian/enable_vmhgfs-fuse_by_default
 debian/vmxnet_fix_kernel_4.7.patch
 debian/cve-2015-5191.patch
+e88f91b00a715b79255de6576506d80ecfdb064c_vmware_dnd_fix.patch

Bug#924550: unblock: open-vm-tools/2:10.3.5-8

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package open-vm-tools

Together with the people from VMware and Canonical two bugs that were
mainly race conditions on boot time.

 - ensure the vmwgfx is being loaded before vmtoolsd is run
 - ensure vgauth is started before vmtoolsd

a third patch is an Ubuntu-only change and does not affect Debian at
all.

Patch series is attached.

Thanks a lot,

Bernd



unblock open-vm-tools/2:10.3.5-8

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
>From 71b468f7f855139adfc8cd48cc0f63167d01b9bb Mon Sep 17 00:00:00 2001
From: Christian Ehrhardt 
Date: Mon, 4 Mar 2019 09:30:57 +0100
Subject: [PATCH 1/5] make vgauth service execution more reliable

Since d3d47039 "Start vgauth before vmtoolsd" there is a potential race
of starting vgauth so early that it might have issues. This was
discussed back in the day in [1] to [2], but confirmed to be ok by
VMWare.

We were all somewhat convinced by this, but a bad feeling remained not
only with me but also with Bernd [4].
A recent SRU review denial made me rethink all of it and I think we can
make it safer without thwarting the purpose of the original change.

Note: Disambiguation of service names used below:
vgauth - open-vm-tools.vgauth.service
vmtoolsd   - open-vm-tools.service
fs - systemd-remount-fs.service
tmp- systemd-tmpfiles-setup.service
cloud-init - cloud-init-local.service

Currently we have these dependency requirements:
- vgauth should be before vmtoolsd
- cloud init should be before vmtoolsd
- cloud init has to be really early in general
  - therefore this is using DefaultDependencies=No

That lead to this graph:
 fs / tmp -> vmtoolsd -> cloud-init
And d3d47039 added it to be like:
 fs / tmp -> vmtoolsd -> cloud-init
   ^
 vgauth  --|

But there is no need to have vgauth without any pre-dependencies at all.
It is only needed to be "before" vmtoolsd, therefore we can make it:
 fs / tmp -> vgauth -> vmtoolsd -> cloud-init

That will make execution of vgauth much less error-prone (even though I
have no hard issue to report) while at the same time holding up all
known required ordering constraints.

[1]: 
https://bugs.launchpad.net/ubuntu/+source/open-vm-tools/+bug/1804287/comments/3
[2]: 
https://bugs.launchpad.net/ubuntu/+source/open-vm-tools/+bug/1804287/comments/12
[3]: 
https://bugs.launchpad.net/ubuntu/+source/open-vm-tools/+bug/1804287/comments/25
[4]: https://github.com/bzed/pkg-open-vm-tools/pull/15#issuecomment-447237910

Signed-off-by: Christian Ehrhardt 
---
 debian/open-vm-tools.vgauth.service | 1 +
 1 file changed, 1 insertion(+)

diff --git a/debian/open-vm-tools.vgauth.service 
b/debian/open-vm-tools.vgauth.service
index af538a6a..86f03f22 100644
--- a/debian/open-vm-tools.vgauth.service
+++ b/debian/open-vm-tools.vgauth.service
@@ -3,6 +3,7 @@ Description=Authentication service for virtual machines hosted 
on VMware
 Documentation=http://github.com/vmware/open-vm-tools
 ConditionVirtualization=vmware
 DefaultDependencies=no
+After=systemd-remount-fs.service systemd-tmpfiles-setup.service
 PartOf=open-vm-tools.service
 
 [Service]
-- 
2.20.1

>From e1198113a6cf0d5c952b57c748b266bdd6b6c1f0 Mon Sep 17 00:00:00 2001
From: Bernd Zeimetz 
Date: Mon, 4 Mar 2019 20:03:56 +0100
Subject: [PATCH 2/5] Updating changelog

---
 debian/changelog | 43 +++
 1 file changed, 43 insertions(+)

diff --git a/debian/changelog b/debian/changelog
index c611227f..d7ffa8bb 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,46 @@
+open-vm-tools (2:10.3.5-7) unstable; urgency=medium
+
+  [ Christian Ehrhardt ]
+  * [71b468f] make vgauth service execution more reliable.
+Since d3d47039 "Start vgauth before vmtoolsd" there is a potential race
+of starting vgauth so early that it might have issues. This was
+discussed back in the day in [1] to [2], but confirmed to be ok by
+VMWare.
+We were all somewhat convinced by this, but a bad feeling remained not
+only with me but also with Bernd [4].
+A recent SRU review denial made me rethink all of it and I think we can
+make it safer without thwarting the purpose of the original change.
+Note: Disambiguation of service names used below:
+vgauth - open-vm-tools.vgauth.service
+vmtoolsd   - open-vm-tools.service
+fs - systemd-remount-fs.service
+tmp- systemd-tmpfiles-setup.service
+cloud-init - cloud-init-local.service
+Currently we have these dependency requirements:
+- vgauth should be before vmtoolsd
+- cloud init should be before vmtoolsd
+- cloud init has to be really early in general
+  - therefore this is 

Bug#894159: transition: icu

[Bernd Zeimetz]

Hi,

> pyicu FTBFS, seems unmaintained. Last upload was in 2016 and since then
> there were seven upstream releases. Version 1.9.8+ builds fine with the new
> ICU version. Maintainer also Cc-d, may I overtake it?

unmaintained is the wrong word, I try to have it uptodate before the
next release - and I'm almost sure that I've uploaded the current
version before the last freeze. I'd be happy if you could maintain it -
I'm missing the time for it.


Thanks,

Bernd


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#879440: transition: gpsd

[Bernd Zeimetz]

Hi,


On 10/26/2017 10:52 AM, Emilio Pozuelo Monfort wrote:
> How do you know that there won't be build failures? Did you review the 
> upstream
> changes, particularly the ABI breaks, and verified that none of the rdeps use
> any of the removed symbols, removed struct fields...?

yes, I'm doing that since libgps12 or so and never had a transition that
was not smooth.
gpsd upstream (including myself, who is doing a lot of testing before a
release actually happens) is sane and as long as people use documented
stuff from libgps.h they are safe as long as there is not api breakage
announced.

> Can you do a quick rdep
> rebuild? There are tools to help with that, e.g. ratt.

done that just for you, but excluding the KDE stuff which builds for way
too long - yes, all thing just build fine.


Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#879552: transition: freeipmi

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition

hi release team,

freeipmi needs a transistion - I've uploaded the new version to
experimental, will have to go trough NEW first, though.

I don't expect any breakages for binNMUs.

Please let me know when I can upload it to unstable.


Cheers,

Bernd


Ben file:

title = "freeipmi";
is_affected = .depends ~ /libfreeipmi16|libipmimonitoring5a/ | .depends ~ 
/libfreeipmi17|libipmimonitoring6/;
is_good = .depends ~ /libfreeipmi17|libipmimonitoring6/;
is_bad = .depends ~ /libfreeipmi16|libipmimonitoring5a/;

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#879440: transition: gpsd

[Bernd Zeimetz]

Hi,


uploaded to exp.

cheers,

Bernd

On 10/21/2017 06:30 PM, Emilio Pozuelo Monfort wrote:
> Control: tags -1 moreinfo
> 
> On 21/10/17 17:55, Bernd Zeimetz wrote:
>> Package: release.debian.org
>> Severity: normal
>> User: release.debian@packages.debian.org
>> Usertags: transition
>>
>> hi release team,
>>
>> the libgps libray has some symbol changes and needs a soname bump.
>> buuild failures are not expected.
>>
>> please let me know when i can upload the new version.
> 
> Please upload to experimental now, and let us know when it is accepted. That 
> way
> there will be an auto tracker created on release.debian.org/transitions/ that 
> we
> can look at to see potential collisions with other transitions, and then when 
> we
> ack the transition there is no extra delay due to NEW.
> 
> Thanks,
> Emilio
> 

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#879440: transition: gpsd

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition

hi release team,

the libgps libray has some symbol changes and needs a soname bump.
buuild failures are not expected.

please let me know when i can upload the new version.

thanks,

Bernd



Ben file:

title = "gpsd";
is_affected = .depends ~ /libq?gps(mm)?22/ | .depends ~ /libq?gps(mm)?23/;
is_good = .depends ~ /libq?gps(mm)?23/;
is_bad = .depends ~ /libq?gps(mm)?22/;

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#869661: stretch-pu: package open-vm-tools/2:10.1.5-5055683-4+deb9u1

[Bernd Zeimetz]

Hi,

On 08/08/2017 05:49 PM, Adam D. Barratt wrote:
> +open-vm-tools (2:10.1.5-5055683-4+deb9u1) stable; urgency=medium
> 
> We generally prefer the changelog distribution to be "stretch".

changed...

> Please go ahead.


.. and uploaded.


Thanks,

Bernd


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#869661: stretch-pu: package open-vm-tools/2:10.1.5-5055683-4+deb9u1

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu

Hi release team,

as discussed in #869633 I'd like to fix CVE-2015-5191 in
open-vm-tools with the next stretch pointrelease.

A debdiff is attached, I'll upload it to stable(-pu) as
soon as I have an ack from you.

Thanks,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index 97fd671f..4bac2108 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+open-vm-tools (2:10.1.5-5055683-4+deb9u1) stable; urgency=medium
+
+  * [dec8df6] Upstream fix for CVE-2015-5191 (Closes: #869633)
+  * [ff10dcb] Update gbp.conf for stretch.
+
+ -- Bernd Zeimetz <b...@debian.org>  Tue, 25 Jul 2017 11:40:02 +0200
+
 open-vm-tools (2:10.1.5-5055683-4) unstable; urgency=medium
 
   * [27689b3] Load the fuse module before mounting /run/vmblock-fuse.
diff --git a/debian/gbp.conf b/debian/gbp.conf
index bf4163e8..64996533 100644
--- a/debian/gbp.conf
+++ b/debian/gbp.conf
@@ -1,3 +1,5 @@
+[DEFAULT]
+debian-branch = stretch
 [buildpackage]
 sign-tags = True
 posttag = git push && git push --tags
diff --git a/debian/patches/debian/cve-2015-5191.patch 
b/debian/patches/debian/cve-2015-5191.patch
new file mode 100644
index ..3312be08
--- /dev/null
+++ b/debian/patches/debian/cve-2015-5191.patch
@@ -0,0 +1,413 @@
+commit 22e58289f71232310d30cf162b83b5151a937bac
+Author: Oliver Kurth <oku...@vmware.com>
+Date:   Thu Jul 6 17:00:55 2017 -0700
+
+randomly generate tmp directory name
+
+diff --git a/open-vm-tools/libDeployPkg/linuxDeployment.c 
b/open-vm-tools/libDeployPkg/linuxDeployment.c
+index 1c8f7855..8e536a97 100644
+--- a/open-vm-tools/libDeployPkg/linuxDeployment.c
 b/open-vm-tools/libDeployPkg/linuxDeployment.c
+@@ -43,6 +43,8 @@
+ #include "mspackWrapper.h"
+ #include "rpcout.h"
+ #include "toolsDeployPkg.h"
++#include 
++#include 
+ 
+ /*
+  * These are covered by #ifndef to give the ability to change these
+@@ -52,12 +54,17 @@
+ 
+ #define CLEANUPCMD  "/bin/rm -r -f "
+ 
+-#ifndef EXTRACTPATH
+-#define EXTRACTPATH "/tmp/.vmware/linux/deploy"
++#ifndef TMP_PATH_VAR
++#define TMP_PATH_VAR "/tmp/.vmware/linux/deploy"
+ #endif
+ 
+-#ifndef CLEANUPPATH
+-#define CLEANUPPATH "/tmp/.vmware"
++#ifndef IMC_TMP_PATH_VAR
++#define IMC_TMP_PATH_VAR "@@IMC_TMP_PATH_VAR@@"
++#endif
++
++// '/tmp' below will be addressed by PR 1601405.
++#ifndef TMP_DIR_PATH_PATTERN
++#define TMP_DIR_PATH_PATTERN "/tmp/.vmware-imgcust-dXX"
+ #endif
+ 
+ #ifndef BASEFILENAME
+@@ -115,13 +122,14 @@ struct List {
+ // Private functions
+ static Bool GetPackageInfo(const char* pkgName, char** cmd, uint8* type, 
uint8* flags);
+ static Bool ExtractZipPackage(const char* pkg, const char* dest);
+-static Bool CreateDir(const char *path);
+ static void Init(void);
+ static struct List* AddToList(struct List* head, const char* token);
+ static int ListSize(struct List* head);
+ static int Touch(const char*  state);
+ static int UnTouch(const char* state);
+ static int TransitionState(const char* stateFrom, const char* stateTo);
++static bool CopyFileToDirectory(const char* srcPath, const char* destPath,
++const char* fileName);
+ static int Deploy(const char* pkgName);
+ static char** GetFormattedCommandLine(const char* command);
+ static int ForkExecAndWaitCommand(const char* command);
+@@ -151,8 +159,17 @@ static LogFunction sLog = NoLogging;
+ NORETURN void
+ Panic(const char *fmtstr, ...)
+ {
+-   /* Ignored */
+-   sLog(log_warning, "Panic callback invoked. \n");
++   va_list args;
++
++   char *tmp = Util_SafeMalloc(MAXSTRING);
++
++   va_start(args, fmtstr);
++   vsprintf(tmp, fmtstr, args);
++
++   sLog(log_error, "Panic callback invoked: %s\n", tmp);
++
++   free(tmp);
++
+exit(1);
+ }
+ 
+@@ -169,12 +186,19 @@ Panic(const char *fmtstr, ...)
+  *
+  **/
+ void
+-Debug(const char *fmtstr,
+-  va_list args)
++Debug(const char *fmtstr, ...)
+ {
+-   /* Ignored */
+ #ifdef VMX86_DEBUG
+-   sLog(log_warning, "Debug callback invoked. \n");
++   va_list args;
++
++   char *tmp = Util_SafeMalloc(MAXSTRING);
++
++   va_start(args, fmtstr);
++   vsprintf(tmp, fmtstr, args);
++
++   sLog(log_debug, "Debug callback invoked: %s\n", tmp);
++
++   free(tmp);
+ #endif
+ }
+ 
+@@ -874,11 +898,13 @@ static int
+ CloudInitSetup(const char *tmpDirPath)
+ {
+int deployStatus = DEPLOY_ERROR;
+-   const char *cloudInitTmpDirPath = "/var/run/vmware-imc";
++   static const char *cloudInitTmpDirPath = "/var/run/vmware-imc";
+int forkExecResult;
+char command[1024];
+Bool cloudInitTmp

Bug#860048: unblock: open-vm-tools/2:10.1.5-5055683-3

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Hi release team,

VMware asked me to change the boot order of vmtoolsd to start before
cloud init. This was necessary as the cloud-init is started early
in the boot process now - and without running vmtoolsd before
cloud-init a VM customization is not possible.

For details see
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859677
https://bugs.launchpad.net/cloud-init/+bug/1667831

Debdiff is attached.


unblock open-vm-tools/2:10.1.5-5055683-3


Thanks,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index 658a4222..5bcddde2 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,12 @@
+open-vm-tools (2:10.1.5-5055683-3) unstable; urgency=medium
+
+  * [0aa95b6] Start open-vm-tools before cloud-init-local.service.
+Required for a working guest customization as reported by VMware.
+Also add cloud-init to 'Suggests'.
+Thanks to Sankar Tanguturi (Closes: #859677)
+
+ -- Bernd Zeimetz <b...@debian.org>  Sun, 09 Apr 2017 21:54:21 +0200
+
 open-vm-tools (2:10.1.5-5055683-2) unstable; urgency=medium
 
   * [651cdfe] Depend on iproute2.
diff --git a/debian/control b/debian/control
index 5935c52f..432b11f7 100644
--- a/debian/control
+++ b/debian/control
@@ -19,7 +19,7 @@ Package: open-vm-tools
 Architecture: amd64 i386
 Depends: ${misc:Depends}, ${shlibs:Depends}, pciutils, iproute2
 Recommends: ethtool, zerofree, fuse, lsb-release
-Suggests: open-vm-tools-desktop
+Suggests: open-vm-tools-desktop, cloud-init
 Breaks: open-vm-tools-desktop (<< 2:10.0.7-3227872-2~)
 Replaces: open-vm-tools-desktop (<< 2:10.0.7-3227872-2~)
 Description: Open VMware Tools for virtual machines hosted on VMware (CLI)
diff --git a/debian/open-vm-tools.service b/debian/open-vm-tools.service
index 426d4fbd..a988f08e 100644
--- a/debian/open-vm-tools.service
+++ b/debian/open-vm-tools.service
@@ -2,6 +2,8 @@
 Description=Service for virtual machines hosted on VMware
 Documentation=http://open-vm-tools.sourceforge.net/about.php
 ConditionVirtualization=vmware
+DefaultDependencies=no
+Before=cloud-init-local.service
 
 [Service]
 ExecStart=/usr/bin/vmtoolsd

Bug#855857: unblock: nagios-plugins-contrib/21.20170222

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package nagios-plugins-contrib

We had to fix several plugins:
- check_raid: failed to work with EPN, #851351
- check_raid: detection of broken hotspares fails for mdadm raids.
  #855054
- check_ssl_cert: broken due to changes introduced with openssl 1.1.
  #855253
  I've added an autopkgtest to ensure that such issues are detected
  earlier.
- check_cert_expire_dirs failed to find check_cert_expire, so it did not
  work at all. #855155

A diff between 20.20170118 and 21.20170222 is attached.

Thanks,

Bernd


unblock nagios-plugins-contrib/21.20170222

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/check_ssl_cert/tests b/check_ssl_cert/tests
new file mode 100644
index 000..5417af1
--- /dev/null
+++ b/check_ssl_cert/tests
@@ -0,0 +1,2 @@
+Depends: openssl, curl, file
+Test-Command: /usr/lib/nagios/plugins/check_ssl_cert -H www.debian.org
diff --git a/debian/changelog b/debian/changelog
index 5e48333..c6fb690 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,26 @@
+nagios-plugins-contrib (21.20170222) unstable; urgency=medium
+
+  [ Bernd Zeimetz ]
+  * [5091e4a] Disable EPN for check_raid.
+Thanks to Daniel Pocock (Closes: #851351)
+  * [5bdff51] check_raid: fix failed mdadm hotspare detection.
+Thanks to Sascha Steinbiss (Closes: #855054)
+  * [5232be1] percona-nagios-plugins: fix bashism.
+Thanks to Raphael Geissert (Closes: #772278)
+
+  [ Stefan Schörghofer ]
+  * [6495faa] Fixes check_ssl_cert problems with Openssl > 1.1.x
+(Closes: #855253)
+
+  [ Bernd Zeimetz ]
+  * [bf4fb49] Add autopkgtest for check_ssl_cert.
+  * [9aacdb6] Auto update of debian/tests/control
+  * [0d7ac29] Fix check_cert_expire_dirs to make it work at all.
+check_cert_expire_dirs was not able to find
+check_cert_expire. Fixing that. (Closes: #855155)
+
+ -- Bernd Zeimetz <b...@debian.org>  Wed, 22 Feb 2017 14:32:22 +0100
+
 nagios-plugins-contrib (20.20170118) unstable; urgency=medium
 
   [ Evgeni Golov ]
diff --git a/debian/patches/check_raid/fix_mdadm_hotspare_failure_detection 
b/debian/patches/check_raid/fix_mdadm_hotspare_failure_detection
new file mode 100644
index 000..c81437a
--- /dev/null
+++ b/debian/patches/check_raid/fix_mdadm_hotspare_failure_detection
@@ -0,0 +1,11 @@
+--- a/check_raid/check_raid
 b/check_raid/check_raid
+@@ -3661,7 +3661,7 @@ $fatpacked{"App/Monitoring/Plugin/CheckR
+   } elsif (@fd > 0) {
+   # FIXME: this is same as above?
+   $this->warning;
+-  $s .= "hot-spare failure:". join(",", 
@{$md{failed_disks}}) .":$md{status}";
++  $s .= "hot-spare failure:". join(",", @fd) 
.":$md{status}";
+   
+   } else {
+   $s .= "$md{status}";
diff --git a/debian/patches/check_raid/no_epn b/debian/patches/check_raid/no_epn
new file mode 100644
index 000..9ce8a44
--- /dev/null
+++ b/debian/patches/check_raid/no_epn
@@ -0,0 +1,8 @@
+--- a/check_raid/check_raid
 b/check_raid/check_raid
+@@ -1,4 +1,5 @@
+ #!/usr/bin/perl
++# nagios: -epn
+ 
+ # This chunk of stuff was generated by App::FatPacker. To find the original
+ # file's code, look for the end of this BEGIN block or the string 'FATPACK'
diff --git a/debian/patches/check_ssl_cert/bug-855253-fix 
b/debian/patches/check_ssl_cert/bug-855253-fix
new file mode 100644
index 000..c0408f9
--- /dev/null
+++ b/debian/patches/check_ssl_cert/bug-855253-fix
@@ -0,0 +1,196 @@
+--- a/check_ssl_cert/check_ssl_cert-1.37/check_ssl_cert
 b/check_ssl_cert/check_ssl_cert-1.37/check_ssl_cert
+@@ -969,8 +969,12 @@
+ 
+ if [ -n "${OCSP}" ] ; then
+ 
+-ISSUER_CERT="$( mktemp -t "${0##*/}XX" 2> /dev/null )"
+-if [ -z "${ISSUER_CERT}" ] || [ ! -w "${ISSUER_CERT}" ] ; then
++ISSUER_CERT_TMP="$( mktemp -t "${0##*/}XX" 2> /dev/null )"
++if [ -z "${ISSUER_CERT_TMP}" ] || [ ! -w "${ISSUER_CERT_TMP}" ] ; then
++unknown 'temporary file creation failure.'
++fi
++ISSUER_CERT_TMP2="$( mktemp -t "${0##*/}XX" 2> /dev/null )"
++if [ -z "${ISSUER_CERT_TMP2}" ] || [ ! -w "${ISSUER_CERT_TMP2}" ] ; 
then
+ unknown 'temporary file creation failure.'
+ fi
+ 
+@@ -992,7 +996,7 @@
+ 
+ # Cleanup before program termination
+ # Using named signals to be POSIX compliant
+-trap 'rm -f $CERT $ERROR $ISSUER_CERT' EXIT HUP INT QUIT TERM
++trap 'rm -f $CERT $ERROR $ISSUER_CERT_TMP $ISS

Bug#855855: unblock: open-vm-tools/2:10.1.0-4449150-4

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package open-vm-tools

It fixes the following bugs:

#855337: upstream asked me to activate the vgauth service. Its necessary
for guest operations initiated from the vSphere datacenter.

#851240: removing a duplicate udev rule as upstream ships its own file
now.

Also I left a pull request to update the Homepage field in
debian/control in the upload.

Diff between -3 and -4 is attached.


Thanks,

Bernd


unblock open-vm-tools/2:10.1.0-4449150-4


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index a870e962..6ca08caa 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,23 @@
+open-vm-tools (2:10.1.0-4449150-4) unstable; urgency=medium
+
+  [ Chris Glass ]
+  * [d55b33f] Point the control file's homepage to the new one.
+The upstream open-vm-tools switched from sourceforge to github. This
+simply updates the link to reflect that.
+Signed-off-by: Chris Glass <chris.gl...@canonical.com>
+
+  [ Bernd Zeimetz ]
+  * [f44a9a8] Drop duplicate udev rules.
+Timeouts are set in 99-vmware-scsi-udev.rules now,
+shipped by upstream.
+Thanks to Bernhard Schmidt (Closes: #851240)
+  * [21df3fa] Install vgauth.service.
+vgauth is a service that allows authentication in the guest using SAML
+tokens. Necessary for guest operations initiated from the vSphere
+datacenter. (Closes: #855337)
+
+ -- Bernd Zeimetz <b...@debian.org>  Tue, 21 Feb 2017 22:45:06 +0100
+
 open-vm-tools (2:10.1.0-4449150-3) unstable; urgency=medium
 
   * [17b04da] Override dh_md5sums for arch-dependent packages only.
diff --git a/debian/control b/debian/control
index 994d73c2..cab79610 100644
--- a/debian/control
+++ b/debian/control
@@ -9,7 +9,7 @@ Build-Depends:
  libxinerama-dev, libxss-dev, libxtst-dev, dh-autoreconf, dh-systemd,
  libmspack-dev, libssl1.0-dev, libxerces-c-dev, libxml-security-c-dev
 Standards-Version: 3.9.6
-Homepage: http://open-vm-tools.sourceforge.net/
+Homepage: https://github.com/vmware/open-vm-tools
 Vcs-Git: https://github.com/bzed/pkg-open-vm-tools.git
 Vcs-Browser: https://github.com/bzed/pkg-open-vm-tools
 
diff --git a/debian/open-vm-tools.udev b/debian/open-vm-tools.udev
index 343100bd..b015a82f 100644
--- a/debian/open-vm-tools.udev
+++ b/debian/open-vm-tools.udev
@@ -1,12 +1,3 @@
-# VMware SCSI devices Timeout adjustment
-#
-# Modify the timeout value for VMware SCSI devices so that
-# in the event of a failover, we don't time out.
-# See Bug 271286 for more information.
-
-ACTION=="add|change", SUBSYSTEMS=="scsi", ATTRS{vendor}=="VMware  " , 
ATTRS{model}=="Virtual disk",   RUN+="/bin/sh -c 'echo 180 
>/sys$DEVPATH/device/timeout'"
-
-
 # VMWare Virtual Sockets permissions
 #
 # after loading the vsock module, a block device /dev/vsock will be created 
with permission 0600
diff --git a/debian/open-vm-tools.vgauth.service 
b/debian/open-vm-tools.vgauth.service
new file mode 100644
index ..94f7c89e
--- /dev/null
+++ b/debian/open-vm-tools.vgauth.service
@@ -0,0 +1,12 @@
+[Unit]
+Description=Authentication service for virtual machines hosted on VMware
+Documentation=http://github.com/vmware/open-vm-tools
+ConditionVirtualization=vmware
+PartOf=open-vm-tools.service
+
+[Service]
+ExecStart=/usr/bin/VGAuthService
+TimeoutStopSec=5
+
+[Install]
+RequiredBy=open-vm-tools.service
diff --git a/debian/rules b/debian/rules
index 2e4194e7..f63ec5c1 100755
--- a/debian/rules
+++ b/debian/rules
@@ -115,8 +115,13 @@ override_dh_fixperms:
 
dh_fixperms -Xvmware-user-suid-wrapper
 
+override_dh_systemd_enable:
+   dh_systemd_enable -popen-vm-tools
+   dh_systemd_enable -popen-vm-tools --name vgauth
+
 override_dh_systemd_start:
-   dh_systemd_start
+   dh_systemd_start -popen-vm-tools
+   dh_systemd_start -popen-vm-tools --name vgauth
sed -i 's,run-vmblock-fuse,run-vmblockx2dfuse,g' debian/*.debhelper
 
 override_dh_installchangelogs:

Re: Transition to SQLAlchemy 1.1.x

[Bernd Zeimetz]

Dear Thomas,

On 11/26/2016 10:49 PM, Thomas Goirand wrote:

> Not amused,

you might know that your relation to the Python Modules team is not the
best, and I assume you still are not allowed to commit there at all. You
might feel honored, you are the only DD who managed to come into such a
situation.

So instead of starting a largish discussion and wasting peoples' time
you could just have said: 'ouch, that was a bad timing, can you help me
to get these packages fixed?' and I'm sure your openstack would be happy
again already.

sqlalchemy 1.0 is in maintenance mode only and will receive only
critical updates, so we clearly want to have 1.1 in stretch.

You might want to learn that openstack is not Debian. There are way more
packages and things to consider than openstack alone.

Best regards,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Re: OpenSSL 1.1.0

[Bernd Zeimetz]

Hi,

> 
> OpenSSL 1.0 + 1.1
> ==
> 
> * Every package will be buildable but we can expect surprises on
> runtime due to dlopen'ed libraries, indirect use, etc
> * Release delay seems certain but difficult to determine
> * Even with a release delay, we cannot be 100% sure all the rutnime
> surprises will be gone
> * We need to support 2 versions of OpenSSL and be prepared for
> third-party applications (not included with Debian) to fail due to
> runtime surprises
> * Different support cycles upstream (one LTSL, one not)
> * We will be providing both versions of OpenSSL for the end-user to
> choose (when he has the knowledge)

I think releasing with 1.0+1.1 makes sense, but without forcing 1.1 to
be the default. Single packages which support 1.1 very well should be
able to use it, but maintainers should not be forced to even try to
migrate to a new version.

This would even make it possible to backport packages to support the new
OpenSSL version. Maybe even apache2. In the meantime people could use
haproxy in front of it, or whatever else they like.

Having ChaCha20 is nice, but delaying a release for it is not an option
(hint: people won't be able to use ChaCha20 while they are waiting for a
release... :))


best regards,

Bernd


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Re: OpenSSL 1.1.0

[Bernd Zeimetz]

Hi,

so whats your suggestions to solve issues like I have with
open-vm-tools: Most build-dependencies switch to 1.1.0 - but one
(libxml-security-c-dev) sticks with 1.0, as far as I've seen in the bts
because shibboleth won't be able to use 1.1.0.

Not shipping open-vm-tools is not an option, as it will break support
for Debian on basically all installations under a vmware hypervisor.
Which are a lot.

Whats your suggestion?


Best regards,

Bernd

P.S. imho the time for the openssl transition was the worst one possible
at all, it *will* result in security bugs and/or a delayed release.


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F



signature.asc
Description: OpenPGP digital signature

Bug#803605: transition: gpsd

[Bernd Zeimetz]

On 11/01/2015 01:14 PM, Sebastiaan Couwenberg wrote:
> On Sat, 31 Oct 2015 19:42:18 +0100 Bernd Zeimetz wrote:
>> gpsd needs a transition again. I do not expect build failures
>> or functional problems in the packages using libgps or
>> libqgpsmm.
> 
> direwolf & merkaartor fail to build due to missing compatibility with
> libgps22.

thanks for the hint, guess I missed the sat struct change :(


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#803605: transition: gpsd

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition

hi release team,

gpsd needs a transition again. I do not expect build failures
or functional problems in the packages using libgps or
libqgpsmm.

Please let me know when I should upload it to unstable.

Thanks,

Bernd


Ben file:

title = "gpsd";
is_affected = .depends ~ /libgps21|libqgpsmm21/ | .depends ~ 
/libgps22|libqgpsmm22/;
is_good = .depends ~ /libgps22|libqgpsmm22/;
is_bad = .depends ~ /libgps21|libqgpsmm21/;


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#803605: transition: gpsd

[Bernd Zeimetz]

> You can go ahead.

uploaded, thanks.


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Bug#780798: wheezy-pu: package open-vm-tools/2:8.8.0+2012.05.21-724730-1+nmu2+deb7u1

[Bernd Zeimetz]

On 06.05.2015 23:00, Adam D. Barratt wrote:

Well it's not really any extra work for you. ;-)


;-)


I'll try and sort this out over the next couple of days, but in the
meantime how does this sound? (Comments from others welcome too.)


The open-vm-tools package contains tools for working with VMWare
systems, including the ability to build some related kernel modules
on-demand (DKMS).

The version of open-vm-tools in Wheezy is no longer compatible with the
kernel currently shipped in Wheezy. This update resolves the
incompatibility by allowing open-vm-tools to build against both older


I'd write something like '...by allowing the kernel modules in the
open-vm-tools-dkms package to build against both older ...'


and newer Wheezy kernels.



People who are not using the -dkms package don't need to update,
it might make sense to let them know.

Thanks a lot,

bernd



--
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/75d47d4760435420da09059e5716d...@mail.recluse.de

Bug#780798: wheezy-pu: package open-vm-tools/2:8.8.0+2012.05.21-724730-1+nmu2+deb7u1

[Bernd Zeimetz]

On 05/05/2015 02:19 PM, Adam D. Barratt wrote:
 On 2015-05-04 21:20, Bernd Zeimetz wrote:
 as several people are rather unhappy abotu open-vm-tools-dkms being broken in
 wheezy - and they don't seem to be able to pick it form proposed-updates - 
 would
 it be okwy to update it via wheezy-updates before the next point
 release happens?
 
 Is there some technical issue with them pulling the package from o-p-u, or do
 they just not want to?

actually just more a question of people not willing or not knowing how to get
packages from o-p-u (and/or failing to read the bugreport which includes a
link to the instructions...).
Depending on the way people are using the vmware modules, they can't update
their kernel without breaking things.
On the other hand, upgrading to jessie should work just fine, too.

I'm not keen on the extra work to get it updates via w-u, but depending on when
the next point release might happen it might make sense to do it to make our
users happy.


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/554a6c53.9090...@debian.org

Bug#780798: wheezy-pu: package open-vm-tools/2:8.8.0+2012.05.21-724730-1+nmu2+deb7u1

[Bernd Zeimetz]

Hi Adam,

as several people are rather unhappy abotu open-vm-tools-dkms being broken in
wheezy - and they don't seem to be able to pick it form proposed-updates - would
it be okwy to update it via wheezy-updates before the next point release 
happens?


thanks  cheers,

Bernd

On 03/22/2015 09:27 PM, Adam D. Barratt wrote:
 Control: tags -1 + pending
 
 On Thu, 2015-03-19 at 17:09 +0100, Bernd Zeimetz wrote:
 I've uploaded open-vm-tools 2:8.8.0+2012.05.21-724730-1+nmu2+deb7u1
 which fixes #779081. The bug was introduced with the new kernel revision
 in the last point release - d_alias was moved into the d_u struct.
 I've added a patch which checks for the loction of d_alias and uses the
 appropriate one.
 
 Flagged for acceptance.
 
 Regards,
 
 Adam
 


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/5547d4a3.5030...@debian.org

Bug#780798: wheezy-pu: package open-vm-tools/2:8.8.0+2012.05.21-724730-1+nmu2+deb7u1

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
Tags: wheezy
User: release.debian@packages.debian.org
Usertags: pu

Hi release team,

I've uploaded open-vm-tools 2:8.8.0+2012.05.21-724730-1+nmu2+deb7u1
which fixes #779081. The bug was introduced with the new kernel revision
in the last point release - d_alias was moved into the d_u struct.
I've added a patch which checks for the loction of d_alias and uses the
appropriate one.

Please pick this fix for the next point release as for those who
(still) need the dkms modules (vmwar eplayer users or old esx
installations) won't be able to upgrade to the recent kernel otherwise.

Thanks,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index 71e14e1..332f472 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,12 @@
+open-vm-tools (2:8.8.0+2012.05.21-724730-1+nmu2+deb7u1) stable; urgency=medium
+
+  * [6f4a32b1] Add patch to handle the move of d_alias to d_u.d_alias.
+Thanks to Stefan Schueller (Closes: #779081)
+  * [b32d3413] Add git-buildpackage config for wheezy.
+  * [3f1b34b0] Updating Maintainer.
+
+ -- Bernd Zeimetz b...@debian.org  Thu, 19 Mar 2015 16:44:25 +0100
+
 open-vm-tools (2:8.8.0+2012.05.21-724730-1+nmu2) testing-proposed-updates; urgency=low
 
   * Non-maintainer upload.
diff --git a/debian/control b/debian/control
index 1e402eb..83e7d74 100644
--- a/debian/control
+++ b/debian/control
@@ -1,7 +1,7 @@
 Source: open-vm-tools
 Section: admin
 Priority: extra
-Maintainer: Daniel Baumann daniel.baum...@progress-technologies.net
+Maintainer: Bernd Zeimetz b...@debian.org
 Build-Depends:
  debhelper (= 9), autotools-dev, dkms, doxygen, libcunit1-dev,
  libdumbnet-dev, libfuse-dev, libgtk2.0-dev, libgtkmm-2.4-dev,
diff --git a/debian/gbp.conf b/debian/gbp.conf
new file mode 100644
index 000..34d5f7b
--- /dev/null
+++ b/debian/gbp.conf
@@ -0,0 +1,5 @@
+# Configuration file for git-buildpackage and friends
+
+[DEFAULT]
+debian-branch = wheezy
+pristine-tar = True
diff --git a/debian/patches/04-vmhgfs-d_alias-kernel-3.18.1-tools-9.9.0.patch b/debian/patches/04-vmhgfs-d_alias-kernel-3.18.1-tools-9.9.0.patch
new file mode 100644
index 000..9919e6c
--- /dev/null
+++ b/debian/patches/04-vmhgfs-d_alias-kernel-3.18.1-tools-9.9.0.patch
@@ -0,0 +1,51 @@
+--- a/modules/linux/vmhgfs/inode.c
 b/modules/linux/vmhgfs/inode.c
+@@ -1818,7 +1818,13 @@ HgfsPermission(struct inode *inode,
+ 
+   /* Find a dentry with valid d_count. Refer bug 587789. */
+   list_for_each(pos, inode-i_dentry) {
+- dentry = list_entry(pos, struct dentry, d_alias);
++  dentry = list_entry(pos, struct dentry,
++#if defined(VMW_D_ALIAS_3181) || LINUX_VERSION_CODE = KERNEL_VERSION(3, 18, 1)
++  d_u.d_alias
++#else
++  d_alias
++#endif
++  );
+ #if LINUX_VERSION_CODE  KERNEL_VERSION(2, 6, 38)
+  dcount = atomic_read(dentry-d_count);
+ #else
+--- a/modules/linux/vmhgfs/Makefile.kernel
 b/modules/linux/vmhgfs/Makefile.kernel
+@@ -33,6 +33,7 @@ EXTRA_CFLAGS += $(call vm_check_build, $
+ EXTRA_CFLAGS += $(call vm_check_build, $(AUTOCONF_DIR)/getsb1.c,, -DVMW_GETSB_2618)
+ EXTRA_CFLAGS += $(call vm_check_build, $(AUTOCONF_DIR)/statfs1.c,, -DVMW_STATFS_2618)
+ EXTRA_CFLAGS += $(call vm_check_build, $(AUTOCONF_DIR)/inode1.c,, -DVMW_INODE_2618)
++EXTRA_CFLAGS += $(call vm_check_build, $(AUTOCONF_DIR)/d_alias.c,, -DVMW_D_ALIAS_3181)
+ 
+ MODPOST_VMCI_SYMVERS := $(wildcard $(MODULEBUILDDIR)/VMwareVMCIModule.symvers)
+ 
+--- /dev/null
 b/modules/linux/shared/autoconf/d_alias.c
+@@ -0,0 +1,21 @@
++/*
++ * Copyright (C) 2015 Ross Smith II. MIT Licensed.
++ *
++ */
++
++#include compat_version.h
++#include compat_autoconf.h
++
++#include linux/dcache.h
++
++/*
++ * After 3.18.1, the dentry d_alias field was moved to struct d_u.
++ *
++ * This test will fail on a kernel with such a patch.
++ */
++void test(void)
++{
++   struct dentry dentry;
++
++   dentry.d_alias.next = NULL;
++}
diff --git a/debian/patches/series b/debian/patches/series
index 0aaf8da..48f12f0 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -1,3 +1,4 @@
 01-kvers.patch
 02-procps.patch
 03-dkms.patch
+04-vmhgfs-d_alias-kernel-3.18.1-tools-9.9.0.patch

Bug#780496: unblock: xserver-xorg-video-vmware/13.0.2-3.1

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock


hi release team,

please unblock package xserver-xorg-video-vmware.

on request of jcristau I've NMUed xserver-xorg-video-vmware to fix
#765490. The bug stopped people from being able to logout properly
as x was stuck in an infinite loop.
Also it is supposed to fix various resizing issues.

While looking trough the upstream commits I also found a fix for
an array out of bounds issue, which was spotted by coverity.
I took the chance to fix this problem, too.

All patches were taken from upstream
http://cgit.freedesktop.org/xorg/driver/xf86-video-vmware/log/

commit ids are listed in the NMU diff, which is attached to this
mail.


Thanks,

Bernd



unblock xserver-xorg-video-vmware/13.0.2-3.1


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff -u xserver-xorg-video-vmware-13.0.2/debian/changelog xserver-xorg-video-vmware-13.0.2/debian/changelog
--- xserver-xorg-video-vmware-13.0.2/debian/changelog
+++ xserver-xorg-video-vmware-13.0.2/debian/changelog
@@ -1,3 +1,14 @@
+xserver-xorg-video-vmware (1:13.0.2-3.1) unstable; urgency=medium
+
+  * Non-maintainer upload as requested by jcristau.
+  * Fixing resizing issues  xorg being stuck in a loop at logoff.
+(Closes: #765490)
+Patch 32562129750077a23f26f2e69adc8403eb24bf3f from upstream.
+  * Fixing an array out of bounds indexing, upstream
+b1697434348799b0808a6c9e9a899394075b980c.
+
+ -- Bernd Zeimetz b...@debian.org  Sat, 14 Mar 2015 22:57:20 +0100
+
 xserver-xorg-video-vmware (1:13.0.2-3) unstable; urgency=medium
 
   * rules: avoid mixing implicit and normal rules; make 4 doesn't like that
diff -u xserver-xorg-video-vmware-13.0.2/debian/patches/series xserver-xorg-video-vmware-13.0.2/debian/patches/series
--- xserver-xorg-video-vmware-13.0.2/debian/patches/series
+++ xserver-xorg-video-vmware-13.0.2/debian/patches/series
@@ -1 +1,2 @@
-# placeholder
+32562129750077a23f26f2e69adc8403eb24bf3f.patch
+b1697434348799b0808a6c9e9a899394075b980c.patch
only in patch2:
unchanged:
--- xserver-xorg-video-vmware-13.0.2.orig/debian/patches/32562129750077a23f26f2e69adc8403eb24bf3f.patch
+++ xserver-xorg-video-vmware-13.0.2/debian/patches/32562129750077a23f26f2e69adc8403eb24bf3f.patch
@@ -0,0 +1,29 @@
+From 32562129750077a23f26f2e69adc8403eb24bf3f Mon Sep 17 00:00:00 2001
+From: Thomas Hellstrom thellst...@vmware.com
+Date: Wed, 3 Sep 2014 07:08:41 -0700
+Subject: vmware/vmwgfx: Don't add pixmaps to the pixmap list if they're
+ already on it
+
+This could cause loops through the list to spin indefinitely.
+This would most likely occur at VT switches.
+
+Signed-off-by: Thomas Hellstrom thellst...@vmware.com
+Reviewed-by: Jakob Bornecrantz ja...@vmware.com
+
+diff --git a/vmwgfx/vmwgfx_saa.c b/vmwgfx/vmwgfx_saa.c
+index b9204c6..bca3d93 100644
+--- a/vmwgfx/vmwgfx_saa.c
 b/vmwgfx/vmwgfx_saa.c
+@@ -694,7 +694,8 @@ vmwgfx_modify_pixmap_header (PixmapPtr pixmap, int w, int h, int depth,
+ 
+ vmwgfx_pix_resize(pixmap, old_pitch, old_height, old_width);
+ vmwgfx_pixmap_free_storage(vpix);
+-WSBMLISTADDTAIL(vpix-pixmap_list, vsaa-pixmaps);
++if (WSBMLISTEMPTY(vpix-pixmap_list))
++	WSBMLISTADDTAIL(vpix-pixmap_list, vsaa-pixmaps);
+ 
+ return TRUE;
+ 
+-- 
+cgit v0.10.2
+
only in patch2:
unchanged:
--- xserver-xorg-video-vmware-13.0.2.orig/debian/patches/b1697434348799b0808a6c9e9a899394075b980c.patch
+++ xserver-xorg-video-vmware-13.0.2/debian/patches/b1697434348799b0808a6c9e9a899394075b980c.patch
@@ -0,0 +1,27 @@
+From b1697434348799b0808a6c9e9a899394075b980c Mon Sep 17 00:00:00 2001
+From: Jakob Bornecrantz ja...@vmware.com
+Date: Thu, 14 Aug 2014 16:42:05 +0200
+Subject: vmware/legacy: Fix out of bound array indexing
+
+Spotted by coverity.
+
+Reported-by: Adam Jackson a...@redhat.com
+Reviewed-by: Adam Jackson a...@redhat.com
+Signed-off-by: Jakob Bornecrantz ja...@vmware.com
+
+diff --git a/src/vmwarevideo.c b/src/vmwarevideo.c
+index 261e579..816f1ca 100644
+--- a/src/vmwarevideo.c
 b/src/vmwarevideo.c
+@@ -837,7 +837,7 @@ vmwareVideoPlay(ScrnInfoPtr pScrn, VMWAREVideoPtr pVid,
+ cmdSetRegs.body.streamId = pVid-streamId;
+ 
+ items = cmdSetRegs.body.items;
+-for (i = SVGA_VIDEO_ENABLED; i  SVGA_VIDEO_NUM_REGS; i++) {
++for (i = SVGA_VIDEO_ENABLED; i  SVGA_VIDEO_DATA_GMRID; i++) {
+ items[i].regId = i;
+ }
+ 
+-- 
+cgit v0.10.2
+

Re: Serious issue with release candidate under VMWare (#765490)

[Bernd Zeimetz]

Hi Norbert,


 I noted my concerns on the bug-report, I thought that counts as talking to 
 the
 package maintainers.

Using This helps as Subject for mails to the BTS was not really helpful for
sure, I could image that most people assumed it was spam.

Here are some suggestions:
- write a proper mail to the maintainer mailing list 
(debia...@lists.debian.org).
- I don't know how much the usability of Debian is affected when the vmware xorg
driver is being used. The BTS allows to change the severity. You might want to
include a reason if you do so in your mail, also please note that people might
still decide to ignore this issue for the upcoming release. See
https://www.debian.org/Bugs/Developer#severities for details.
- Use virtualbox or some other virtualization system.

 As far as I understand debian policy, such fixed wont ever make it into Jessie
 later (outside of -backports).

You understand it wrong (assuming that the fix is really this single line
change...).


Cheers,

Bernd

  
 Kind Regards,
 Norbert Lange
 
 -- Ursprüngliche Nachricht --
 Von: Adam D. Barratt a...@adam-barratt.org.uk
 An: la...@chello.at
 Cc: debian-release@lists.debian.org
 Datum: 5. März 2015 um 13:36
 Betreff: Re: Serious issue with release candidate under VMWare

 Hi,

 On 2015-03-05 11:30, la...@chello.at wrote:
  There is still an serious issue if you run Jessie under VMWare
  Workstation/Player. Most of the time
  the X-Server will hang on shutdown, causing the Machine to hang (not
  even
  possible to switch to a VT) and results in unclean kills.
 
  The Bug is already in the tracker, together with a patch from upstream.
  xserver-xorg-video-vmware Bug (
  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=765490 )
 
  Please add this fix, otherwise Jessie will likely need some backport
  fixes for
  VMWare during its entire lifetime.

 Have you talked to the package maintainers? Leaving aside any question
 of whether the bug would qualify at this stage of the freeze, there's
 definitely no way the package can be updated in jessie when the fix
 isn't even in unstable.

 Regards,

 Adam


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/55035185.6080...@bzed.de

Bug#778297: unblock: open-vm-tools/2:9.4.6-1770165-8

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package open-vm-tools

open-vm-tools-dkms fails to build against the recent jessie kernel
headers, 2:9.4.6-1770165-8 fixes this by using d_u.d_alias instead of
d_alias, depending on the kernel version.

Patch is attached.

unblock open-vm-tools/2:9.4.6-1770165-8


Thanks,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index f6b5705..6213450 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,11 @@
+open-vm-tools (2:9.4.6-1770165-8) unstable; urgency=medium
+
+  * [406817b6] Add patch to move from d_alias to d_u.d_alias.
+Make open-vm-tools build with the recent jessie kernel again.
+Thanks to Timo Metsala (Closes: #778293)
+
+ -- Bernd Zeimetz b...@debian.org  Fri, 13 Feb 2015 11:26:59 +0100
+
 open-vm-tools (2:9.4.6-1770165-7) unstable; urgency=medium
 
   * [8df5b4ac] Adding patch to fix CVE-2014-4199.
diff --git a/debian/patches/debian/d_alias_fix b/debian/patches/debian/d_alias_fix
new file mode 100644
index 000..7368349
--- /dev/null
+++ b/debian/patches/debian/d_alias_fix
@@ -0,0 +1,26 @@
+--- a/modules/linux/vmhgfs/inode.c
 b/modules/linux/vmhgfs/inode.c
+@@ -1838,7 +1838,11 @@ HgfsPermission(struct inode *inode,
+p,
+ #endif
+inode-i_dentry,
++#if LINUX_VERSION_CODE  KERNEL_VERSION(3, 16, 7)
+d_alias) {
++#else
++   d_u.d_alias) {
++#endif
+  int dcount = compat_d_count(dentry);
+  if (dcount) {
+ LOG(4, (Found %s %d \n, dentry-d_name.name, dcount));
+@@ -1891,7 +1895,11 @@ HgfsPermission(struct inode *inode,
+   /* Find a dentry with valid d_count. Refer bug 587879. */
+   list_for_each(pos, inode-i_dentry) {
+  int dcount;
++#if LINUX_VERSION_CODE  KERNEL_VERSION(3, 16, 7)
+  struct dentry *dentry = list_entry(pos, struct dentry, d_alias);
++#else
++ struct dentry *dentry = list_entry(pos, struct dentry, d_u.d_alias);
++#endif
+  dcount = compat_d_count(dentry);
+  if (dcount) {
+ LOG(4, (Found %s %d \n, (dentry)-d_name.name, dcount));
diff --git a/debian/patches/series b/debian/patches/series
index bb3ff13..044ee69 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -1,3 +1,4 @@
+debian/d_alias_fix
 upstream/3a9f229_Harden-HostinfoOSData-against-PATH-attacks
 upstream/54780b8_Debian-guys-want-to-play-with-FreeBSD-kernels-and-Linux-userland
 

Bug#776675: unblock: libdumbnet/1.12-6

[Bernd Zeimetz]

reopen 776675
retitle 776675 unblock libdumbnet/1.12-6
thanks


Hi,

unfortunately...

 Just did a QA upload fixing #775896 - I've reverted the descision to
 make /usr/share/doc/libdumnet-dev a symlink. Diff attached.

 


i did not expect people to test upgrades from testing to unstable and I failed
to migrate the broken symlink back to a directory properly.
So unfortunately we need a new unblock:

unblock libdumbnet/1.12-6

New diff from -5 to -6 is attached.

thanks,

Bernd



-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff -u libdumbnet-1.12/debian/changelog libdumbnet-1.12/debian/changelog
--- libdumbnet-1.12/debian/changelog
+++ libdumbnet-1.12/debian/changelog
@@ -1,3 +1,11 @@
+libdumbnet (1.12-6) unstable; urgency=medium
+
+  * QA upload.
+  * Make people who test upgrades from testing to unstable
+happy (Closes: #775896).
+
+ -- Bernd Zeimetz b...@debian.org  Thu, 05 Feb 2015 19:06:08 +0100
+
 libdumbnet (1.12-5) unstable; urgency=medium
 
   * QA upload.
diff -u libdumbnet-1.12/debian/control libdumbnet-1.12/debian/control
--- libdumbnet-1.12/debian/control
+++ libdumbnet-1.12/debian/control
@@ -26,6 +26,7 @@
 Package: libdumbnet-dev
 Section: libdevel
 Depends: ${shlibs:Depends}, libdumbnet1 (= ${binary:Version})
+Pre-Depends: dpkg (= 1.17.14)
 Architecture: any
 Description: A dumb, portable networking library -- development files
  libdumbnet provides a simplified, portable interface to several low-level
reverted:
--- libdumbnet-1.12/debian/preinst
+++ libdumbnet-1.12.orig/debian/preinst
@@ -1,21 +0,0 @@
-#!/bin/sh
-set -e
-
-case $1 in
-install|upgrade)
-# dpkg does not replace directories by symlinks or vice versa.
-if [ -L /usr/share/doc/libdumbnet-dev ]; then
-rm -f /usr/share/doc/libdumbnet-dev
-fi
-;;
-abort-upgrade)
-;;
-*)
-echo preinst called with unknown argument \`$1' 2
-exit 1
-;;
-esac
-
-#DEBHELPER#
-
-exit 0
only in patch2:
unchanged:
--- libdumbnet-1.12.orig/debian/libdumbnet-dev.postinst
+++ libdumbnet-1.12/debian/libdumbnet-dev.postinst
@@ -0,0 +1,8 @@
+#!/bin/sh
+set -e
+
+dpkg-maintscript-helper symlink_to_dir /usr/share/doc/libdumbnet-dev 
/usr/share/doc/libdumbnet1 '1.12-6~' libdumbnet-dev  -- $@
+
+#DEBHELPER#
+
+exit 0
only in patch2:
unchanged:
--- libdumbnet-1.12.orig/debian/libdumbnet-dev.postrm
+++ libdumbnet-1.12/debian/libdumbnet-dev.postrm
@@ -0,0 +1,8 @@
+#!/bin/sh
+set -e
+
+dpkg-maintscript-helper symlink_to_dir /usr/share/doc/libdumbnet-dev 
/usr/share/doc/libdumbnet1 '1.12-6~' libdumbnet-dev -- $@
+
+#DEBHELPER#
+
+exit 0
only in patch2:
unchanged:
--- libdumbnet-1.12.orig/debian/libdumbnet-dev.preinst
+++ libdumbnet-1.12/debian/libdumbnet-dev.preinst
@@ -0,0 +1,8 @@
+#!/bin/sh
+set -e
+
+dpkg-maintscript-helper symlink_to_dir /usr/share/doc/libdumbnet-dev 
/usr/share/doc/libdumbnet1 '1.12-6~' libdumbnet-dev  -- $@
+
+#DEBHELPER#
+
+exit 0

Bug#776675: unblock: libdumbnet/1.12-5

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package libdumbnet

Just did a QA upload fixing #775896 - I've reverted the descision to
make /usr/share/doc/libdumnet-dev a symlink. Diff attached.

unblock libdumbnet/1.12-5


thanks,

bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff -u libdumbnet-1.12/debian/rules libdumbnet-1.12/debian/rules
--- libdumbnet-1.12/debian/rules
+++ libdumbnet-1.12/debian/rules
@@ -58,7 +58,7 @@
 	dh_testroot
 	$(MAKE) DESTDIR=$$(pwd)/debian/libdumbnet1 install
 	mkdir -p debian/libdumbnet-dev/usr/lib \
-	 debian/libdumbnet-dev/usr/share/doc \
+	 debian/libdumbnet-dev/usr/share/doc/libdumbnet-dev \
 	 debian/libdumbnet-dev/usr/share/man/man1
 	mkdir -p debian/python-dumbnet/usr/lib
 	mv debian/libdumbnet1/usr/include \
@@ -74,10 +74,11 @@
 	debian/python-dumbnet/usr/lib
 	cp debian/dumbnet-config.1 debian/libdumbnet-dev/usr/share/man/man1/
 	ln -s dumbnet-config.1 debian/libdumbnet-dev/usr/share/man/man1/dnet-config.1
-	ln -s libdumbnet1 debian/libdumbnet-dev/usr/share/doc/libdumbnet-dev
+	ln -s ../libdumbnet1 debian/libdumbnet-dev/usr/share/doc/libdumbnet-dev/docs
 	ln -s dumbnet-config debian/libdumbnet-dev/usr/bin/dnet-config
 	dh_installchangelogs
-	dh_installdocs TODO README
+	dh_installdocs -plibdumbnet1 TODO README
+	dh_installdocs -Nlibdumbnet1
 	dh_python2 -ppython-dumbnet
 	for E in debian/python-dumbnet/usr/lib/python*; do \
 	  rm -f $$E/site-packages/*egg-info; \
diff -u libdumbnet-1.12/debian/changelog libdumbnet-1.12/debian/changelog
--- libdumbnet-1.12/debian/changelog
+++ libdumbnet-1.12/debian/changelog
@@ -1,3 +1,11 @@
+libdumbnet (1.12-5) unstable; urgency=medium
+
+  * QA upload.
+  * Fix missing doc folder during upgrades
+(Closes: #775896)
+
+ -- Bernd Zeimetz b...@debian.org  Fri, 30 Jan 2015 22:53:35 +0100
+
 libdumbnet (1.12-4) unstable; urgency=low
 
   * QA upload.
only in patch2:
unchanged:
--- libdumbnet-1.12.orig/debian/preinst
+++ libdumbnet-1.12/debian/preinst
@@ -0,0 +1,21 @@
+#!/bin/sh
+set -e
+
+case $1 in
+install|upgrade)
+# dpkg does not replace directories by symlinks or vice versa.
+if [ -L /usr/share/doc/libdumbnet-dev ]; then
+rm -f /usr/share/doc/libdumbnet-dev
+fi
+;;
+abort-upgrade)
+;;
+*)
+echo preinst called with unknown argument \`$1' 2
+exit 1
+;;
+esac
+
+#DEBHELPER#
+
+exit 0

Bug#776199: unblock: gpsd/3.11-3

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package gpsd

Andreas Beckmann asked me to update the fix for #774872 to support
updates from Lenny to jessie without prompting due to modified
conffiles.

I've happily applied his patch. Diff is attached.

unblock gpsd/3.11-3


thanks,

bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index 88fd6f2..b2eee72 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+gpsd (3.11-3) unstable; urgency=medium
+
+  [ Andreas Beckmann ]
+  * [dd6bbdf1] avoid prompting due to modified lenny conffiles
+
+ -- Bernd Zeimetz b...@debian.org  Sun, 25 Jan 2015 12:15:44 +0100
+
 gpsd (3.11-2) unstable; urgency=medium
 
   * [a759614c] Avoid prompting due to modified squeeze conffiles.
diff --git a/debian/gpsd.preinst b/debian/gpsd.preinst
index aba1c8d..463f57d 100644
--- a/debian/gpsd.preinst
+++ b/debian/gpsd.preinst
@@ -13,9 +13,10 @@ case $1 in
 if [ -f /etc/default/gpsd ]; then
 cp /etc/default/gpsd /etc/default/gpsd.dpkg-pre_3.10
 gpsd_hashsum=$(md5sum /etc/default/gpsd | awk '{print $1}')
-# handle upgrades from squeeze - wheeze - jessie
+# handle upgrades from lenny - squeeze - wheeze - jessie
 case ${gpsd_hashsum} in
-5944bab322c2a6df28cf0e64f7f7ec86|4d3f8665963201dc74721ef06bf27989)
+# wheezy # squeeze# lenny  # lenny - squeeze - wheezy
+5944bab322c2a6df28cf0e64f7f7ec86|4d3f8665963201dc74721ef06bf27989|d19811464c448c0852ad541be3f7fdc3|370942c4da267af152f6c3178137e60f)
 rm -f /etc/default/gpsd
 ;;
 esac

Bug#776132: unblock: rhn-client-tools/1.8.26-4

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package rhn-client-tools

Due to a change in the xmlrpc library rhnlib threw a backtrace
while transferring the installed packages list to the spacewalk
server, rendering the whole spacewalk integration more or less
useless as soon as you started using multiarch.
As multiarch is a very common thing these days this in a RC
issue in my opinion.

Reason for the problem was the installTime function in
rhn-client-tools which returned None as timestamp for multiarch
packages (which xmlrpclib didn't want to send over the wire
anymore).

1.8.26-4 fixes this problem. diff is attached.


unblock rhn-client-tools/1.8.26-4


Thanks,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index fba8c8e..c8ee7b0 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,13 @@
+rhn-client-tools (1.8.26-4) unstable; urgency=medium
+
+  * [e3525938] Fix installTime function for multiarch.
+This should avoid to send None as timestamp via
+xmlrpc, which resulted in a traceback due to changes in
+xmlrpc, breaking spacewalk support.
+Thanks to Klaas Demter and Philipp Born (Closes: #728365)
+
+ -- Bernd Zeimetz b...@debian.org  Sat, 24 Jan 2015 09:39:24 +0100
+
 rhn-client-tools (1.8.26-3) unstable; urgency=medium
 
   * [11430f4f] Merge branch 'master' of
diff --git a/debian/patches/installTime_multiarch_fix b/debian/patches/installTime_multiarch_fix
new file mode 100644
index 000..3ca70dc
--- /dev/null
+++ b/debian/patches/installTime_multiarch_fix
@@ -0,0 +1,32 @@
+--- a/src/up2date_client/debUtils.py
 b/src/up2date_client/debUtils.py
+@@ -34,12 +34,14 @@ def parseVRE(version):
+ release = tmp[-1]
+ return version, release, epoch
+ 
+-def installTime(pkg_name):
+-path = '/var/lib/dpkg/info/%s.list' % pkg_name
+-if os.path.isfile(path):
+-   return os.path.getmtime(path)
+-else:
+-   return None
++def installTime(pkg_name, arch=None):
++paths = ['/var/lib/dpkg/info/%s.list' % (pkg_name,)]
++if arch:
++paths.append('/var/lib/dpkg/info/%s:%s.list' % (pkg_name, arch))
++for path in paths:
++if os.path.isfile(path):
++   return os.path.getmtime(path)
++return None
+ 
+ #FIXME: Using Apt cache might not be an ultimate solution.
+ # It could be better to parse /var/lib/dpkg/status manually.
+@@ -70,7 +72,7 @@ def getInstalledPackageList(msgCallback
+ 'version': version,
+ 'release': release,
+ 'arch': pkg.installed.architecture + '-deb',
+-'installtime': installTime(pkg.name)
++'installtime': installTime(pkg.name, pkg.installed.architecture)
+ }
+ pkg_list.append(package)
+ 
diff --git a/debian/patches/series b/debian/patches/series
index e69de29..7a8b14e 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -0,0 +1 @@
+installTime_multiarch_fix

Bug#775407: unblock: pmacct/1.5.0-4

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package pmacct

1.5.0-4 ships a fix for a regression which was introduced
in the 1.5 series of pmacct: ipv6 accounting
using network files - which is a very common case - was
broken and fixed by upstream with the used patch.

pmacct (1.5.0-4) unstable; urgency=medium

  * [d7df1811] Fix identification of dummy entry.
Upstream commit dff5ca21847d799759de27e8fd080e1f7a04cc30 (Closes: #775330)

 -- Bernd Zeimetz b...@debian.org  Wed, 14 Jan 2015 10:42:30 +0100


patch is attached.



unblock pmacct/1.5.0-4


thanks,

bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index 1ba0d1c..1765453 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+pmacct (1.5.0-4) unstable; urgency=medium
+
+  * [d7df1811] Fix identification of dummy entry.
+Upstream commit dff5ca21847d799759de27e8fd080e1f7a04cc30 (Closes: #775330)
+
+ -- Bernd Zeimetz b...@debian.org  Wed, 14 Jan 2015 10:42:30 +0100
+
 pmacct (1.5.0-3) unstable; urgency=medium
 
   * [e9cf7671] Add Homepage and Vcs information.
diff --git a/debian/patches/ip_dummy_masknum_fix b/debian/patches/ip_dummy_masknum_fix
new file mode 100644
index 000..6da2696
--- /dev/null
+++ b/debian/patches/ip_dummy_masknum_fix
@@ -0,0 +1,37 @@
+Taken from upstream
+
+commit dff5ca21847d799759de27e8fd080e1f7a04cc30
+Author: paolo paolo
+Date:   Tue Jan 13 13:43:24 2015 +
+
+* fix, net_aggr.c: identification of dummy entry now based on masknum only.
+  Thanks to Bernd Zeimetz for his support resolving the issue.
+
+--- a/src/net_aggr.c
 b/src/net_aggr.c
+@@ -1,6 +1,6 @@
+ /*
+ pmacct (Promiscuous mode IP Accounting package)
+-pmacct is Copyright (C) 2003-2014 by Paolo Lucente
++pmacct is Copyright (C) 2003-2015 by Paolo Lucente
+ */
+ 
+ /*
+@@ -464,7 +464,7 @@ struct networks_table_entry *binsearch(s
+ 
+   ret = networks_cache_search(nc, addr); 
+   if (ret) {
+-if (!ret-mask  ret-masknum) return NULL; /* dummy entry identification */
++if (ret-masknum == 255) return NULL; /* dummy entry identification */
+ else return ret;
+   }
+ 
+@@ -1792,7 +1792,7 @@ struct networks6_table_entry *binsearch6
+   
+   ret = networks_cache_search6(nc, addr);
+   if (ret) {
+-if (!ret-mask  ret-masknum) return NULL; /* dummy entry identification */
++if (ret-masknum == 255) return NULL; /* dummy entry identification */
+ else return ret;
+   }
+ 
diff --git a/debian/patches/series b/debian/patches/series
index 68dcd47..b4f6aee 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -1,2 +1,3 @@
 fix-syslog-format-security
 af_link.patch
+ip_dummy_masknum_fix

Bug#774905: unblock: gpsd/3.11-2

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package gpsd as it fixes rc bug #774872.


gpsd (3.11-2) unstable; urgency=medium

  * [a759614c] Avoid prompting due to modified squeeze conffiles.
Thanks to Andreas Beckmann (Closes: #774872)

 -- Bernd Zeimetz b...@debian.org  Thu, 08 Jan 2015 21:35:30 +0100



unblock gpsd/3.11-2


Thanks a lot,

Bernd


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index aff8c09..88fd6f2 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+gpsd (3.11-2) unstable; urgency=medium
+
+  * [a759614c] Avoid prompting due to modified squeeze conffiles.
+Thanks to Andreas Beckmann (Closes: #774872)
+
+ -- Bernd Zeimetz b...@debian.org  Thu, 08 Jan 2015 21:35:30 +0100
+
 gpsd (3.11-1) unstable; urgency=medium
 
   * [325d1900] Merge tag 'upstream/3.11'
diff --git a/debian/gpsd.preinst b/debian/gpsd.preinst
index d57be64..aba1c8d 100644
--- a/debian/gpsd.preinst
+++ b/debian/gpsd.preinst
@@ -1,4 +1,4 @@
-#! /bin/sh
+#!/bin/bash
 # preinst script for gpsd
 #
 # see: dh_installdeb(1)
@@ -12,9 +12,13 @@ case $1 in
 # move config file
 if [ -f /etc/default/gpsd ]; then
 cp /etc/default/gpsd /etc/default/gpsd.dpkg-pre_3.10
-if [ $(md5sum /etc/default/gpsd | awk '{print $1}') = 5944bab322c2a6df28cf0e64f7f7ec86 ]; then
-rm -f /etc/default/gpsd
-fi
+gpsd_hashsum=$(md5sum /etc/default/gpsd | awk '{print $1}')
+# handle upgrades from squeeze - wheeze - jessie
+case ${gpsd_hashsum} in
+5944bab322c2a6df28cf0e64f7f7ec86|4d3f8665963201dc74721ef06bf27989)
+rm -f /etc/default/gpsd
+;;
+esac
 fi
 fi
 ;;

Bug#771445: unblock: open-vm-tools/2:9.4.6-1770165-7

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package open-vm-tools

2:9.4.6-1770165-7 fixes CVE-2014-4199 / #770809

thanks,

bernd


unblock open-vm-tools/2:9.4.6-1770165-7


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index 89d3cb3..f6b5705 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+open-vm-tools (2:9.4.6-1770165-7) unstable; urgency=medium
+
+  * [8df5b4ac] Adding patch to fix CVE-2014-4199.
+Thanks to Moritz Muehlenhoff (Closes: #770809)
+
+ -- Bernd Zeimetz b...@debian.org  Sat, 29 Nov 2014 15:57:20 +0100
+
 open-vm-tools (2:9.4.6-1770165-6) unstable; urgency=medium
 
   * [6b514014] Fix installation of systemd services.
diff --git a/debian/patches/debian/fix-CVE-2014-4199 b/debian/patches/debian/fix-CVE-2014-4199
new file mode 100644
index 000..3764b62
--- /dev/null
+++ b/debian/patches/debian/fix-CVE-2014-4199
@@ -0,0 +1,123 @@
+--- a/scripts/common/vm-support
 b/scripts/common/vm-support
+@@ -27,9 +27,7 @@ usage()
+ }
+ 
+ 
+-TARFILE=vm-`date +%Y-%m-%d`.$$.tar
+ VER=0.89
+-OUTPUT_DIR=vm-support.$$
+ 
+ # banner(): prints any number of strings padded with
+ # newlines before and after.
+@@ -83,7 +81,7 @@ checkOutputDir()
+   if [ $? != 0 ]; then
+  banner Could not create ./${OUTPUT_DIR}$dir...  \
+ Have you run out of disk space? Continuing
+- return -1
++ return 1
+   fi
+fi
+return 0
+@@ -195,22 +193,20 @@ fi
+ # possible information leakage.
+ umask 0077
+ 
+-# Clear up temporary files if the process is killed midway.
+-trap rm -rf ${OUTPUT_DIR}; exit 1 HUP INT QUIT TERM ABRT
+-
+-
+-#	make a subdir to put all your files in.  die if it does not create
+-mkdir $OUTPUT_DIR
+ 
++TARFILE=$(mktemp vm-$(date +%Y-%m-%d.XX).tar)
++OUTPUT_DIR=`mktemp -d`
+ if [ $? != 0 ]; then
+ 	error Could not create ./${OUTPUT_DIR}. Please cd to a directory to which 
+-	  you can write.
++you can write.
+ fi
++# Clear up temporary files if the process is killed midway.
++trap chmod -R u+w ${OUTPUT_DIR}; rm -rf ${OUTPUT_DIR} ${TARFILE}; exit 1 HUP INT QUIT TERM ABRT
+ 
+ banner Collecting support information...
+ 
+ # Common stuff that we gather for all OSes.
+-runcmd echo vm-support version: $VER /tmp/vm-support-version.$$.txt
++runcmd echo vm-support version: $VER /tmp/vm-support-version.txt
+ 
+ addfiles /etc/vmware-tools
+ addfiles /var/log/boot*
+@@ -219,14 +215,14 @@ addfiles /var/log/messages*
+ addfiles /var/log/syslog*
+ addfiles /var/run/vmware-*
+ 
+-runcmd df /tmp/df.$$.txt
+-runcmd ifconfig -a /tmp/ifconfig.$$.txt
+-runcmd mount /tmp/mount.$$.txt
+-runcmd dmesg /tmp/dmesg.$$.txt
+-runcmd ulimit -a /tmp/ulimit-a.$$.txt
+-runcmd uptime /tmp/uptime.$$.txt
+-runcmd date /tmp/date.$$.txt
+-runcmd umask /tmp/umask.$$.txt
++runcmd df /tmp/df.txt
++runcmd ifconfig -a /tmp/ifconfig.txt
++runcmd mount /tmp/mount.txt
++runcmd dmesg /tmp/dmesg.txt
++runcmd ulimit -a /tmp/ulimit-a.txt
++runcmd uptime /tmp/uptime.txt
++runcmd date /tmp/date.txt
++runcmd umask /tmp/umask.txt
+ 
+ 
+ # stageLinux(): gather information for troubleshooting Linux guests.
+@@ -272,29 +268,29 @@ stageLinux()
+addfile /proc/irq
+ 
+# Commands to run ($1) and redirect to logs ($2) for inclusion.
+-   runcmd ps auwwx /tmp/ps-auwwx.$$.txt
+-   runcmd lspci -H1 -M /tmp/lspci1.$$.txt
+-   runcmd lspci -H1 -M -vn /tmp/lspci2.$$.txt
+-   runcmd /sbin/lsmod /tmp/modules.$$.txt
+-   runcmd uname -a /tmp/uname.$$.txt
+-   runcmd cat /etc/issue /tmp/issue.$$.txt
+-   runcmd rpm -qa /tmp/rpm-qa.$$.txt
+-   runcmd netstat -lan /tmp/netstat-lan.$$.txt
+-   runcmd route /tmp/route.$$.txt
+-   runcmd free /tmp/free.$$.txt
++   runcmd ps auwwx /tmp/ps-auwwx.txt
++   runcmd lspci -H1 -M /tmp/lspci1.txt
++   runcmd lspci -H1 -M -vn /tmp/lspci2.txt
++   runcmd /sbin/lsmod /tmp/modules.txt
++   runcmd uname -a /tmp/uname.txt
++   runcmd cat /etc/issue /tmp/issue.txt
++   runcmd rpm -qa /tmp/rpm-qa.txt
++   runcmd netstat -lan /tmp/netstat-lan.txt
++   runcmd route /tmp/route.txt
++   runcmd free /tmp/free.txt
+ }
+ 
+ 
+ # stageFreeBSD(): gather information for troubleshooting FreeBSD guests.
+ stageFreeBSD()
+ {
+-   runcmd ps auwwx /tmp/ps-auwwx.$$.txt
++   runcmd ps auwwx /tmp/ps-auwwx.txt
+ }
+ 
+ # stageSolaris(): gather information for troubleshooting Solaris guests.
+ stageSolaris()
+ {
+-   runcmd ps eaf /tmp/ps-eaf.$$.txt
++   runcmd ps eaf /tmp/ps-eaf.txt
+ }
+ 
+ case `uname` in
+@@ -336,6 +332,7 @@ if [ $? != 0 ]; then
+ fi
+ 
+ #	Clean up temporary files
++chmod -R u+w $OUTPUT_DIR # needed if run as non-root user.
+ rm -rf $OUTPUT_DIR
+ 
+ if [ $? != 0 ]; then
diff --git a/debian/patches/series b/debian/patches/series
index 378a50e..bb3ff13

Bug#770716: unblock: apt-spacewalk/1.0.6-4.1

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package apt-spacewalk

1.0.6-4.1 fixes #769508 which made apt-spacewalk uninstallable.

Patch is attached.

Thanks,

Bernd


unblock apt-spacewalk/1.0.6-4.1

-- System Information:
Debian Release: jessie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -u apt-spacewalk-1.0.6/debian/changelog apt-spacewalk-1.0.6/debian/changelog
--- apt-spacewalk-1.0.6/debian/changelog
+++ apt-spacewalk-1.0.6/debian/changelog
@@ -1,3 +1,11 @@
+apt-spacewalk (1.0.6-4.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Check for post_invoke.py to exist before attempting to invoke it
+(Closes: 769508)
+
+ -- Andreas Bombe a...@debian.org  Sat, 22 Nov 2014 18:42:41 +0100
+
 apt-spacewalk (1.0.6-4) unstable; urgency=medium
 
   * [99f9479e] Integrate NMU that went missing.
only in patch2:
unchanged:
--- apt-spacewalk-1.0.6.orig/50spacewalk
+++ apt-spacewalk-1.0.6/50spacewalk
@@ -11,5 +11,5 @@
   }
 };
 DPkg::Post-Invoke {
-/usr/lib/apt-spacewalk/post_invoke.py;
+[ ! -e /usr/lib/apt-spacewalk/post_invoke.py ] || /usr/lib/apt-spacewalk/post_invoke.py;
 };

Bug#770716: unblock: apt-spacewalk/1.0.6-4.1

[Bernd Zeimetz]

Control: tags -1 -moreinfo

On 11/23/2014 04:41 PM, Adam D. Barratt wrote:
 
 
 On Sun, 2014-11-23 at 16:13 +0100, Bernd Zeimetz wrote:
 Please unblock package apt-spacewalk

 1.0.6-4.1 fixes #769508 which made apt-spacewalk uninstallable.

 Patch is attached.
 
 While the patch looks fine, the package appears to be in DELAYED/5 and
 we can't unblock packages that aren't in unstable.

Oh, seems the NMUer failed to move it... Done so some minutes ago, package
accepted in unstable.

 Please remove the moreinfo tag once the package has reached the archive.

done

Thanks,

Bernd


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/547254ca.3030...@debian.org

Bug#768596: unblock: lua-json/1.3.2-1

[Bernd Zeimetz]

On 08.11.2014 16:50, Bernd Zeimetz wrote:


I've merge the next bugfix release of the 1.3 series to make lua-json
work at all again. 1.3.2 fixes/changes:

 - compatibility with lpeg 0.12


See  #719519 (grave...) for details.

--
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/20d26aa7d9fdce2fef6d2dfe11e61...@mail.recluse.de

Bug#768596: unblock: lua-json/1.3.2-1

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package lua-json

I've merge the next bugfix release of the 1.3 series to make lua-json
work at all again. 1.3.2 fixes/changes:

 - compatibility with lpeg 0.12
 - sets _ENV to nil using local _ENV = nil to avoid global writing
   this avoids problems in strict environments
 - enhance documentation and lpeg testing information.

thanks,

bernd

unblock lua-json/1.3.2-1

-- System Information:
Debian Release: jessie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
diff --git a/README b/README
index 7a79d97..8022ef5 100644
--- a/README
+++ b/README
@@ -12,16 +12,18 @@ Bug reports:
 
 Requirements
 	Lua 5.1, 5.2, or LuaJIT 2.0
-	LPeg (Tested with 0.7, 0.8, 0.9, 0.10 ... 0.6 mostly works)
+	LPeg (Tested with 0.7, 0.8, 0.9, 0.10, 0.12rc2 ... 0.6 mostly works)
 	For regressionTest:
 		lfs (Tested with 1.4.1)
 	For lunit-tests:
 		lunit = 0.4
 
+NOTE: LPeg 0.11 may not work - it crashed during my tests
+
 Lua versions tested recently:
-Lua 5.1.4 + strict
-Lua 5.2.0
-LuaJIT-2.0.0-beta10 + strict
+Lua 5.1.4 + strict + pl.strict
+Lua 5.2.0 + pl.strict
+LuaJIT-2.0.0-beta10 + strict + pl.strict
 
 License
 	All-but tests: MIT-style, See LICENSE for details
@@ -58,6 +60,9 @@ Module/Function overview:
 	--null
 			Reference value to represent 'null' in a well-defined way to
 			allow for null values to be inserted into an array/table
+	--merge (t : table, ... : tables)
+			Shallow-merges a sequence of tables onto table t by iterating over each using
+			pairs and assigning.
 
 Attribution:
 	parsing test suite from JSON_checker project of http://www.json.org/
diff --git a/ReleaseNotes.txt b/ReleaseNotes.txt
index 7c33066..61ca4e3 12
--- a/ReleaseNotes.txt
+++ b/ReleaseNotes.txt
@@ -1 +1 @@
-docs/ReleaseNotes-1.3.1.txt
\ No newline at end of file
+docs/ReleaseNotes-1.3.2.txt
\ No newline at end of file
diff --git a/debian/changelog b/debian/changelog
index a8f..d1f7fb2 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,15 @@
+lua-json (1.3.2-1) unstable; urgency=medium
+
+  * [25eb09ad] Merge branch 'upstream'
+Closes: #719519
+Merging upstream version 1.3.2 which is a bugfix release
+to make luajson work with lpeg again. It also sets _ENV to nil using local
+_ENV = nil to avoid global writing.
+Documentation and tests were updated accordingly and enhanced.
+  * [b2bdecd4] Remove transitional package.
+
+ -- Bernd Zeimetz b...@debian.org  Sat, 08 Nov 2014 16:31:39 +0100
+
 lua-json (1.3.1-1) unstable; urgency=medium
 
   * [3d18e710] Merge tag 'upstream/1.3.1'
diff --git a/debian/control b/debian/control
index a6462b3..4c32abe 100644
--- a/debian/control
+++ b/debian/control
@@ -17,12 +17,3 @@ Provides: liblua5.1-json, ${lua:Provides}
 XB-Lua-Versions: ${lua:Versions}
 Description: JSON decoder/encoder for Lua
  LuaJSON is a customizable JSON decoder/encoder using LPEG for parsing.
-
-Package: liblua5.1-json
-Section: oldlibs
-Priority: extra
-Architecture: all
-Depends: ${misc:Depends}, lua-json
-Description: Transitional package for lua-json
- This is a transitional package to ease upgrades to the lua-json
- package. It can safely be removed.
diff --git a/docs/ReleaseNotes-1.3.2.txt b/docs/ReleaseNotes-1.3.2.txt
new file mode 100644
index 000..3dc2dd8
--- /dev/null
+++ b/docs/ReleaseNotes-1.3.2.txt
@@ -0,0 +1,27 @@
+luajson v1.3.2 Release Notes
+
+
+User Visible Changes
+
+One of the main changes in this release is compatibility with LPeg 0.12 and
+more sane _ENV manipulation to avoid problems in strict environments.
+The documentation has also been updated to reflect the behavior of the
+often-used 'merge' utility to avoid surprises in behavior.
+
+Plans for next release
+--
+A future release will have a stronger focus on decoder performance. It may
+mean a reduction in flexibility by removing options and breaking compatibility.
+
+Updates since 1.3.1
+===
+
+Thomas Harning Jr (6):
+	all:
+		sets _ENV to nil using local _ENV = nil to avoid global writing
+	decoder:
+		fixes compatibility with lpeg 0.12 by closing off 0-length captures in loops
+	docs:
+		documents testing with the Penlight 'strict' module
+		adds merge behavior documentation
+		updates LPeg testing information
diff --git a/lua/json.lua b/lua/json.lua
index bfbbaff..b3e5400 100644
--- a/lua/json.lua
+++ b/lua/json.lua
@@ -8,7 +8,7 @@ local util = require(json.util)
 
 local _G = _G
 
-_ENV = nil
+local _ENV = nil
 
 local json = {
 	_VERSION = 1.3,
diff --git a/lua/json/decode.lua b/lua/json/decode.lua
index 739c2e8..b2c357c

Bug#768198: unblock: pmacct/1.5.0-3

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package pmacct

This upload ensures smooth upgrades from sysv to systemd and
fixes some bugs in the systemd config.


unblock pmacct/1.5.0-3


thanks,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index a4c8fb4..1ba0d1c 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,15 @@
+pmacct (1.5.0-3) unstable; urgency=medium
+
+  * [e9cf7671] Add Homepage and Vcs information.
+  * [3783d4a2] Fix dpkg dependency for easy backporting.
+  * [7090c1cc] Fix systemd service files.
+- Read the appropriate config file
+- Use Type=forking to make upgrades easier.
+Thanks to Malcolm Scott (Closes: #767977)
+  * [9cc618e2] Add ${misc:Depends} to Depends.
+
+ -- Bernd Zeimetz b...@debian.org  Wed, 05 Nov 2014 18:27:55 +0100
+
 pmacct (1.5.0-2) unstable; urgency=medium
 
   * [5ede5bde] Build with ulog support on linux only.
diff --git a/debian/control b/debian/control
index 7443a63..69b8555 100644
--- a/debian/control
+++ b/debian/control
@@ -15,11 +15,14 @@ Build-Depends: debhelper (= 9),
  autotools-dev,
  dh-systemd
 Standards-Version: 3.9.6
+Homepage: http://www.pmacct.net/
+Vcs-Git: https://github.com/bzed/pkg-pmacct.git
+Vcs-Browser: https://github.com/bzed/pkg-pmacct
 
 Package: pmacct
 Architecture: any
-Depends: ${shlibs:Depends}, net-tools [linux-any] | freebsd-net-tools [kfreebsd-any], psmisc, lsb-base (= 3.2-14)
-Pre-Depends: dpkg (= 1.17.5)
+Depends: ${shlibs:Depends}, net-tools [linux-any] | freebsd-net-tools [kfreebsd-any], psmisc, lsb-base (= 3.2-14), ${misc:Depends}
+Pre-Depends: dpkg (= 1.15.8)
 Description: promiscuous mode traffic accountant
  pmacct is a tool designed to gather traffic information (bytes and number
  of packets) by listening on a promiscuous interface or for Netflow data,
diff --git a/debian/pmacct.nfacctd.service b/debian/pmacct.nfacctd.service
index 4494bec..86cf431 100644
--- a/debian/pmacct.nfacctd.service
+++ b/debian/pmacct.nfacctd.service
@@ -3,8 +3,9 @@ Description=netflow accounting daemon
 After=network.target
 
 [Service]
+Type=forking
 EnvironmentFile=-/etc/default/nfacctd
-ExecStart=/usr/sbin/nfacctd -f ${PMACCTD_CONF} $DAEMON_OPTS
+ExecStart=/usr/sbin/nfacctd -f ${NFACCTD_CONF} $DAEMON_OPTS
 
 [Install]
 WantedBy=multi-user.target
diff --git a/debian/pmacct.pmacctd.service b/debian/pmacct.pmacctd.service
index f4dc7d8..70c1ec3 100644
--- a/debian/pmacct.pmacctd.service
+++ b/debian/pmacct.pmacctd.service
@@ -3,6 +3,7 @@ Description=promiscuous mode accounting daemon
 After=network.target
 
 [Service]
+Type=forking
 EnvironmentFile=-/etc/default/pmacctd
 ExecStart=/usr/sbin/pmacctd -f ${PMACCTD_CONF} $DAEMON_OPTS
 
diff --git a/debian/pmacct.sfacctd.service b/debian/pmacct.sfacctd.service
index 965bc56..29d76ff 100644
--- a/debian/pmacct.sfacctd.service
+++ b/debian/pmacct.sfacctd.service
@@ -3,8 +3,9 @@ Description=sflow accounting daemon
 After=network.target
 
 [Service]
+Type=forking
 EnvironmentFile=-/etc/default/sfacctd
-ExecStart=/usr/sbin/sfacctd -f ${PMACCTD_CONF} $DAEMON_OPTS
+ExecStart=/usr/sbin/sfacctd -f ${SFACCTD_CONF} $DAEMON_OPTS
 
 [Install]
 WantedBy=multi-user.target
diff --git a/debian/pmacct.uacctd.service b/debian/pmacct.uacctd.service
index f990b92..3862a02 100644
--- a/debian/pmacct.uacctd.service
+++ b/debian/pmacct.uacctd.service
@@ -3,8 +3,9 @@ Description=ulog accounting daemon
 After=network.target
 
 [Service]
+Type=forking
 EnvironmentFile=-/etc/default/uacctd
-ExecStart=/usr/sbin/uacctd -f ${PMACCTD_CONF} $DAEMON_OPTS
+ExecStart=/usr/sbin/uacctd -f ${UACCTD_CONF} $DAEMON_OPTS
 
 [Install]
 WantedBy=multi-user.target

Bug#766417: unblock: nagios-plugins-contrib/13.20141017

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please lower the transition time of nagios-plugins-contrib
to 5 days - we found some show-stopping bugs in important plugins
as check_raid, fixed in the last upload.

thanks,

bernd


unblock nagios-plugins-contrib/13.20141017

-- System Information:
Debian Release: jessie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.16-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/2014102450.18773.31906.report...@think.bzed.org

Bug#765576: unblock: open-vm-tools/2:9.4.6-1770165-6

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock


hi,

please reduce the waiting time for open-vm-tools to 5 days.
-6 fixes various bugs discussed in #764295, including broken package
upgrades. -5 migrated shortly before I managed to have -6 uploaded...

Thanks,

Bernd


unblock open-vm-tools/2:9.4.6-1770165-6

-- System Information:
Debian Release: jessie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.16-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/20141016110224.3404.63321.report...@think.bzed.org

Bug#732218: transition: gpsd

[Bernd Zeimetz]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Hi,

 Feel free to upload to sid.  Let us know when binNMUs can be scheduled.

uploaded right now.

Thanks!


- -- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
-BEGIN PGP SIGNATURE-
Version: GnuPG v1
Comment: Using GnuPG with Icedove - http://www.enigmail.net/
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=HFXg
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/532b69bf.4060...@debian.org

Bug#732218: transition: gpsd

[Bernd Zeimetz]

Hi again,

this is a friendly reminder not to forgot about this bug. at least a reply with
a possible time frame would be nice.

Thanks,

Bernd

On 12/15/2013 07:41 PM, Bernd Zeimetz wrote:
 Package: release.debian.org
 Severity: normal
 User: release.debian@packages.debian.org
 Usertags: transition
 
 Hi release team,
 
 gpsd 3.10 (currently in experimental) comes with a soname bump in
 libgps/libqgpsmm. As the list of reverse dependencies is rather long
 (like kdeish stuff), please let me know when its save to upload it
 to unstable.
 
 There were no changes which should stop the build-rdepds from building
 fine, so I don't expect issues.
 
 Thanks,
 
 Bernd
 
 
 
 Ben file:
 
 title = gpsd;
 is_affected = .depends ~ lib(gps|qgpsmm)20 | .depends ~ lib(gps|qgpsmm)21;
 is_good = .depends ~ lib(gps|qgpsmm)21;
 is_bad = .depends ~ lib(gps|qgpsmm)20;
 
 
 


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/52ca8f46.1010...@bzed.de

Bug#732218: transition: gpsd

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition

Hi release team,

gpsd 3.10 (currently in experimental) comes with a soname bump in
libgps/libqgpsmm. As the list of reverse dependencies is rather long
(like kdeish stuff), please let me know when its save to upload it
to unstable.

There were no changes which should stop the build-rdepds from building
fine, so I don't expect issues.

Thanks,

Bernd



Ben file:

title = gpsd;
is_affected = .depends ~ lib(gps|qgpsmm)20 | .depends ~ lib(gps|qgpsmm)21;
is_good = .depends ~ lib(gps|qgpsmm)21;
is_bad = .depends ~ lib(gps|qgpsmm)20;



-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/20131215184156.22791.59127.report...@think.bzed.org

Re: DSA concerns for jessie architectures

[Bernd Zeimetz]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

On 06/22/2013 07:26 PM, Martin Zobel-Helas wrote:
 * sparc: no working nflog (mild concern); no stable kernels in stable 
 (compiling clisp for instance crashes the kernel reliably on smetana). We
 need to run sparc with oldstable kernels to provide stable machines.
 That's not an option for long.


I think all machines except stadler and sompek are US IIIi machines. The
problem with US IIIi is, that sun never published the cpu specs - they would
have done it if somebody would have paid for the lawyers to look trough them
before publishing. US IIi support was implemented by a student working at SUN
under NDA and US IV and later was published. So I think if dropping (official)
support for US IIIi CPUs would keep the port alive, we should do that. Running
Debian on the more recent machines makes more sense anyway imho. The older
ones are nice, but they consume a lt of power.

- -- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Icedove - http://www.enigmail.net/
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=H+fH
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/51ec3137.1020...@bzed.de

Bug#706727: unblock: gpsd/3.6-5

[Bernd Zeimetz]

Hi,

 It was /far/ too late to get in before the release at that point, so...

thought so, but as I didn't find the time to read all the lists I thought I
could give it a try :) Pretty busy these days...

 
 +gpsd (3.6-5) unstable; urgency=medium
 +
 +  * [818fb0a6] Fixing two security bugs in gpsd
 +- one triggered by malformed NMEA packets, making gpsd crash
 +- the other one is a possible DOS in the AIS parser,
 +  CVE-2013-2038
 +Thanks to Salvatore Bonaccorso (Closes: #706665)
 
 Please use 3.6-4+deb7u1 as the version and wheezy as the upload
 target.

uploaded.

Thanks,

Bernd


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/5192a80c.5070...@debian.org

Bug#706727: unblock: gpsd/3.6-5

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Hi!

Please unblock package gpsd as it fixes CVE-2013-2038

The bug is not *that* bad, so if you don't have the time to get it in
before wheezy is released, I'll prepare an update for the first point
release, no problem at all. 

Thanks,

Bernd

unblock gpsd/3.6-5



diff --git a/debian/changelog b/debian/changelog
index 4fb3c27..54e87f3 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,13 @@
+gpsd (3.6-5) unstable; urgency=medium
+
+  * [818fb0a6] Fixing two security bugs in gpsd
+- one triggered by malformed NMEA packets, making gpsd crash
+- the other one is a possible DOS in the AIS parser,
+  CVE-2013-2038
+Thanks to Salvatore Bonaccorso (Closes: #706665)
+
+ -- Bernd Zeimetz b...@debian.org  Fri, 03 May 2013 20:57:35 +0200
+
 gpsd (3.6-4) unstable; urgency=low
 
   * [8607cd96] Add some bugfixes from upstream.
diff --git a/debian/patches/08edc49_Address-Savannah-bug-38511 
b/debian/patches/08edc49_Address-Savannah-bug-38511
new file mode 100644
index 000..23803a6
--- /dev/null
+++ b/debian/patches/08edc49_Address-Savannah-bug-38511
@@ -0,0 +1,23 @@
+From 08edc49d8f63c75bfdfb480b083b0d960310f94f Mon Sep 17 00:00:00 2001
+From: Eric S. Raymond e...@thyrsus.com
+Date: Wed, 10 Apr 2013 22:22:34 -0400
+Subject: [PATCH] Address Savannah bug #38511:
+
+ais_context-bitlen = sizeof(ais_context-bits)/8 is not checked
+---
+ drivers.c |4 
+ 1 file changed, 4 insertions(+)
+
+--- a/drivers.c
 b/drivers.c
+@@ -1332,6 +1332,10 @@ static bool aivdm_decode(const char *buf
+   (1  (7 - ais_context-bitlen % 8));
+   }
+   ais_context-bitlen++;
++  if (ais_context-bitlen  sizeof(ais_context-bits)) {
++  gpsd_report(LOG_INF, overlong AIVDM payload truncated.\n);
++  return false;
++  }
+   }
+   /*@ +shiftnegative @*/
+ }
diff --git a/debian/patches/dd9c3c2_Fix-a-malformed-packet-crash 
b/debian/patches/dd9c3c2_Fix-a-malformed-packet-crash
new file mode 100644
index 000..e60fcea
--- /dev/null
+++ b/debian/patches/dd9c3c2_Fix-a-malformed-packet-crash
@@ -0,0 +1,33 @@
+From dd9c3c2830cb8f8fd8491ce68c82698dc5538f50 Mon Sep 17 00:00:00 2001
+From: Eric S. Raymond e...@thyrsus.com
+Date: Wed, 24 Apr 2013 07:44:35 -0400
+Subject: [PATCH] Fix a malformed-packet crash.
+
+Under weird circumstances, this line of device input
+
+$GPGGA,030130$GPGLL,2638.1728,N,08011.3893,W,030131.000,A,A*41
+
+could core-dump the packet parser.  The context had to be exactly
+right for it to happen.  The bug was an incorrect attempt at optimizing
+recovery from this rare case.
+---
+ NEWS  |3 ++-
+ packet.c  |5 ++---
+ test/daemon/triton400.log |   11 ++-
+ www/faq.html.in   |4 ++--
+ 4 files changed, 12 insertions(+), 11 deletions(-)
+
+--- a/packet.c
 b/packet.c
+@@ -471,9 +471,8 @@ static void nextstate(struct gps_packet_
+   /* not strictly correct, but helps for interpreting logfiles */
+   lexer-state = NMEA_RECOGNIZED;
+   else if (c == '$'){
+-  /* faster recovery from missing sentence trailers */
+-  lexer-state = NMEA_DOLLAR;
+-  lexer-inbufptr += (n-1);
++  lexer-state = GROUND_STATE;
++  character_pushback(lexer);
+   } else if (!isprint(c))
+   lexer-state = GROUND_STATE;
+   break;
diff --git a/debian/patches/series b/debian/patches/series
index 9c47577..c9b2081 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -6,3 +6,5 @@ 
a3f6c60_Do-not-assume-little_endian-just-because-__BIG_ENDIAN__-is-not-defined
 5158d66_Fix-the-leap-seconds-notify
 c5623da_Another-fix-the-leap-seconds-notify
 7f25576_Rebuild-some-binary-driver-tests.-Explain-why-this-is-needed
+08edc49_Address-Savannah-bug-38511
+dd9c3c2_Fix-a-malformed-packet-crash


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/20130503195559.32687.55044.report...@think.bzed.org

Bug#703360: unblock: zbar/0.10+doc-8

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Hi release team,

please unblock the package zbar as the last upload makes the Python
extension actually work on arm* (and maybe other architectures).
See #702499 for details.
I'm also fixing #634774 with the upload as I had it commited already,
replacing [!kfreebsd-* !hurd-*] by [linux-any]. Hope thats okay,
although absolutely not release critical.

Full diff between -7 and -8 is attached.


Thanks,

Bernd


unblock zbar/0.10+doc-8


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index e27a8ee..2ddb8ab 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,15 @@
+zbar (0.10+doc-8) unstable; urgency=low
+
+  * [5c38da40] Use [linux-any] instead of [!kfreebsd-*].
+Thanks to Robert Millan (Closes: #634774)
+  * [1f15f52e] Add sentinel to PyGetSetDef imagescanner_getset[].
+Ensure that the loop is terminated which reads the
+imagescanner_getset[] array on import - otherwise we'll run into
+a segfault, at least on arm.
+Thanks to Anton Gladky and Peter Green (Closes: #702499)
+
+ -- Bernd Zeimetz b...@debian.org  Sun, 17 Mar 2013 22:46:47 +0100
+
 zbar (0.10+doc-7) unstable; urgency=low
 
   * [48425c37] Ack'ing NMU.
diff --git a/debian/control b/debian/control
index 452084f..e25d6ef 100644
--- a/debian/control
+++ b/debian/control
@@ -2,7 +2,7 @@ Source: zbar
 Section: libs
 Priority: optional
 Maintainer: Bernd Zeimetz b...@debian.org
-Build-Depends: debhelper (= 7), autotools-dev (= 20100122.1~), libgtk2.0-dev, libmagick++-dev, libqt4-dev, libx11-dev, pkg-config, python-all-dev (= 2.6.6-3~), python-all-dbg (= 2.6.6-3~), python-gtk2-dev, perl, dpkg-dev (= 1.15.6), dh-autoreconf, quilt (= 0.46-7~), libv4l-dev [!kfreebsd-i386 !kfreebsd-amd64 !hurd-i386]
+Build-Depends: debhelper (= 7), autotools-dev (= 20100122.1~), libgtk2.0-dev, libmagick++-dev, libqt4-dev, libx11-dev, pkg-config, python-all-dev (= 2.6.6-3~), python-all-dbg (= 2.6.6-3~), python-gtk2-dev, perl, dpkg-dev (= 1.15.6), dh-autoreconf, quilt (= 0.46-7~), libv4l-dev [linux-any]
 Standards-Version: 3.8.4
 Homepage: http://zbar.sourceforge.net/
 XS-Python-Version: = 2.4
diff --git a/debian/patches/python-zbar-import-fix-am.patch b/debian/patches/python-zbar-import-fix-am.patch
new file mode 100644
index 000..5d632a6
--- /dev/null
+++ b/debian/patches/python-zbar-import-fix-am.patch
@@ -0,0 +1,12 @@
+--- a/python/imagescanner.c
 b/python/imagescanner.c
+@@ -67,7 +67,8 @@ imagescanner_get_results (zbarImageScann
+ }
+ 
+ static PyGetSetDef imagescanner_getset[] = {
+-{ results, (getter)imagescanner_get_results, },
++{ results, (getter)imagescanner_get_results, NULL, NULL, NULL},
++{NULL}  /* Sentinel */
+ };
+ 
+ static PyObject*
diff --git a/debian/patches/series b/debian/patches/series
index 7f82554..027a79b 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -1 +1,2 @@
 0001-Description-Linux-2.6.38-and-later-do-not-support-th.patch
+python-zbar-import-fix-am.patch

Bug#686197: closed by Adam D. Barratt a...@adam-barratt.org.uk (Re: Bug#686197: unblock: rhnsd/4.9.15-1)

[Bernd Zeimetz]

reopen 686197
retitle 686197 unblock: rhn-client-tools/1.8.9-3
thanks

Hi,

unfortunately I missed yet another dependency, which was not available on
!linux. Apart from a new changelog entry, the diff is tiny:

- python-dmidecode, lsb-release, gnupg, python-gudev, debconf, python-openssl
+ python-dmidecode, lsb-release, gnupg, python-gudev [linux-any], hal
[!linux-any], debconf, python-openssl

Support for hal is already in the rhn-client-tools, just the dependency was
missing. So please

unblock: rhn-client-tools/1.8.9-3


thanks,


Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/506d6794.2030...@debian.org

Bug#686197: unblock: rhnsd/4.9.15-1

[Bernd Zeimetz]

Hi Adam,

 [...]

 (Leaving aside arguments as to whether we should be introducing new
 packages now, ) an unblock wouldn't help.  There may not have been any
 bugs filed against the package but it /is/ buggy, which is why it failed
 to migrate during the month that it had an automatic exception:

thanks for the explanation - indeed I missed that piece while looking for
reasons why the migration did not happen and there was no bug, so nobody noticed
it. As python-ethtool will never work on !linux architectures, we've removed the
strict dependency on it in rhn-client-tools. The diff is rather simple, so I
would appreciate if you could unblock rhn-client-tools/1.8.9-2 instead. The diff
between -1 and -2 is attached.


Thanks,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/debian/README.source b/debian/README.source
new file mode 100644
index 000..c37f176
--- /dev/null
+++ b/debian/README.source
@@ -0,0 +1,2 @@
+This Debian package uses quilt(1) for patch management.
+Please see /usr/share/doc/quilt/README.source for more information.
diff --git a/debian/changelog b/debian/changelog
index a8579c3..2d4ca4e 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+rhn-client-tools (1.8.9-2) unstable; urgency=low
+
+  * [c611b6e2] Remove the dependency on !linux arches on python-ethtool.
+  * [bf0389ab] Add README.source.
+
+ -- Bernd Zeimetz b...@debian.org  Thu, 13 Sep 2012 00:55:56 +0200
+
 rhn-client-tools (1.8.9-1) unstable; urgency=low
 
   * Initial Debian release
diff --git a/debian/control b/debian/control
index da91206..5aa2e04 100644
--- a/debian/control
+++ b/debian/control
@@ -3,16 +3,16 @@ Section: python
 Priority: extra
 Maintainer: Miroslav Suchý miros...@suchy.cz
 Uploaders: Bernd Zeimetz b...@debian.org
-Build-Depends: python (= 2.6.6-3~), debhelper (= 7.0.50~), intltool
+Build-Depends: python (= 2.6.6-3~), debhelper (= 7.0.50~), intltool, quilt 
(= 0.48-3~)
 Standards-Version: 3.9.3
 Homepage: https://fedorahosted.org/spacewalk
 Vcs-Browser: 
http://anonscm.debian.org/gitweb/?p=collab-maint/spacewalk/rhn-client-tools.git
 Vcs-Git: git://anonscm.debian.org/collab-maint/spacewalk/rhn-clint-tools.git
 
 Package: rhn-client-tools
-Architecture: all
+Architecture: any
 Depends: ${python:Depends}, ${misc:Depends}, python-rhn (= 2.5.40),
- python-ethtool, python-dbus, python-apt (= 0.7.100), python-newt,
+ python-ethtool [linux-any], python-dbus, python-apt (= 0.7.100), python-newt,
  python-dmidecode, lsb-release, gnupg, python-gudev, debconf, python-openssl
 Recommends: apt-spacewalk
 Suggests: python-gnome2, python-gtk2, python-glade2
diff --git a/debian/patches/0001-workaround-missing-python-ethtool.patch 
b/debian/patches/0001-workaround-missing-python-ethtool.patch
new file mode 100644
index 000..353308c
--- /dev/null
+++ b/debian/patches/0001-workaround-missing-python-ethtool.patch
@@ -0,0 +1,42 @@
+From 8baef61c8b6b9564e7e936f52575d5eb75b5ee38 Mon Sep 17 00:00:00 2001
+From: =?UTF-8?q?Miroslav=20Such=C3=BD?= msu...@redhat.com
+Date: Thu, 30 Aug 2012 10:53:01 +0200
+Subject: [PATCH] workaround missing python-ethtool
+
+On Debian/kfreebsd is not available python-ethtoool. It is because it requires 
libnl,
+which is Linux specific.
+So if python-ethtools is not present, do not fail and just print warning,
+that hardware information about network interfaces are not present.
+And read_network_interfaces() will return empty dictionary.
+---
+ .../rhel/rhn-client-tools/src/up2date_client/hardware.py   |   12 +++-
+ 1 file changed, 11 insertions(+), 1 deletion(-)
+
+--- a/src/up2date_client/hardware.py
 b/src/up2date_client/hardware.py
+@@ -22,7 +22,13 @@ import os
+ import sys
+ import config
+ 
+-import ethtool
++try:
++import ethtool
++ethtool_present = True
++except ImportError:
++sys.stderr.write(Warning: information about network interfaces could not 
be retrieved on this platform.\n)
++ethtool_present = False
++
+ import gettext
+ t = gettext.translation('rhn-client-tools', fallback=True)
+ _ = t.ugettext
+@@ -524,6 +530,10 @@ def read_network_interfaces():
+ intDict = {}
+ intDict['class'] = NETINTERFACES
+ 
++if not ethtool_present:
++# ethtool is not available on non-linux platforms (as kfreebsd), skip 
it
++return intDict
++
+ interfaces = list(set(ethtool.get_devices() + 
ethtool.get_active_devices()))
+ for interface in interfaces:
+ try:
diff --git a/debian/patches/series b/debian/patches/series
new file mode 100644
index 000..d5110c0
--- /dev/null
+++ b/debian/patches/series
@@ -0,0 +1 @@
+0001-workaround-missing-python-ethtool.patch
diff --git a/debian/rules b/debian/rules
index 33dad7d..1f3b0f4 100755
--- a/debian/rules
+++ b/debian/rules
@@ -22,6 +22,9 @@ override_dh_auto_install:
rm -rf

Bug#683299: please unblock: open-vm-tools/2:8.8.0+2012.05.21-724730-4

[Bernd Zeimetz]

On 09/10/2012 02:39 PM, Mehdi Dogguy wrote:
 On 18/08/12 17:51, Julien Cristau wrote:
 On Tue, Aug 14, 2012 at 16:24:52 +0200, Thijs Kinkhorst wrote:

 Hi,

 As it seems, Daniel has uploaded a version of open-vm-tools that reverts
 the contentious changes. This version has been in unstable for 11
 days now
 and no bugs have been reported since.

 Can you please review and unblock?

 Bernd is working on a package fixing the init script bugs too.  I was
 waiting on that (and then was offline for a few days).

 
 CC'ing Bernd to get a status update. Any news? :)

I was just waiting for an okay form Julien to upload, with no much luck
so far unfortunately. I can upload it to t-p-u whenever you like.

Cheers,

Bernd


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/504de236.1090...@debian.org

Bug#686197: unblock: rhnsd/4.9.15-1

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

hi,

rhnsd was uploaded before the freeze, did not have any RC bugs and
looking at http://packages.qa.debian.org/r/rhnsd.html and similar sites
I can't see a reason why it was not unblocked automatically to migrate
to testing as the other packages which were uploaded around that time.

As this is the only missing piece to add spacewalk client support to
wheezy, it would be great if you could unblock it.

thanks,

bernd


unblock rhnsd/4.9.15-1

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/20120829184810.7017.79558.report...@think.bzed.org

Bug#683965: unblock: gimp-resynthesizer/0.16-3

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Hi release team,

please unblock package gimp-resynthesizer - unfortunately dh_installdoc
went missing when I cleaned up debian/rules to make a transitional
package, so there is no copyright file in the empty binary package. Also
i took the chance to move it to extra/oldlibs. Diff is below.

Thanks,


Bernd


unblock gimp-resynthesizer/0.16-3


diff -u gimp-resynthesizer-0.16/debian/changelog 
gimp-resynthesizer-0.16/debian/changelog
--- gimp-resynthesizer-0.16/debian/changelog
+++ gimp-resynthesizer-0.16/debian/changelog
@@ -1,3 +1,12 @@
+gimp-resynthesizer (0.16-3) unstable; urgency=low
+
+  * Add dh_installdocs which went missing, so the empty transitional
+package will ship with a copyright file. (Closes: #683939)
+  * Move to priority extra / section oldlibs to make deborphan
+and friends happy.
+
+ -- Bernd Zeimetz b...@debian.org  Sun, 05 Aug 2012 21:19:59 +0200
+
 gimp-resynthesizer (0.16-2) unstable; urgency=low
 
   * Transitional package (Closes: #614211)
diff -u gimp-resynthesizer-0.16/debian/rules 
gimp-resynthesizer-0.16/debian/rules
--- gimp-resynthesizer-0.16/debian/rules
+++ gimp-resynthesizer-0.16/debian/rules
@@ -24,6 +24,7 @@
dh_testdir
dh_testroot
dh_installchangelogs 
+   dh_installdocs
dh_compress
dh_fixperms
dh_installdeb
diff -u gimp-resynthesizer-0.16/debian/control 
gimp-resynthesizer-0.16/debian/control
--- gimp-resynthesizer-0.16/debian/control
+++ gimp-resynthesizer-0.16/debian/control
@@ -1,6 +1,6 @@
 Source: gimp-resynthesizer
-Section: graphics
-Priority: optional
+Section: oldlibs
+Priority: extra
 Maintainer: Bernd Zeimetz b...@debian.org
 Build-Depends: debhelper (= 5.0.0)
 Standards-Version: 3.7.3.0


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/20120805195805.28754.14412.report...@think.bzed.org

Bug#683299: unblock: open-vm-tools/2:8.8.0+2012.05.21-724730-3

[Bernd Zeimetz]

[ CCing da-manager@ to make sure they know that you still fail in
maintaining your packages properly ]

Hi,

so yet again you managed to make a mess of open-vm-tools short time
before a release. open-vm-tools is essential for a lot of people,
running thousands of machines running Debian in a vmware environment -
and not in a simple desktop virtualization. So I think you should
finally pass the package into the hands of somebody who is willing to
maintain it properly and test changes early enough to ensure they make
their way into the next release. Actually I'm wondering if you even have
a proper environment to test the package properly.

On 07/31/2012 03:30 AM, Daniel Baumann wrote:
 On 07/31/2012 01:50 AM, Daniel Baumann wrote:
 there's nothing i can do about it except asking you to unblock said version, 
 which i did.
 
 almost.. in addition to what the other people on the thread[0] already
 said.. here are the individual git commits as patches attached,
 constituting the complete diff between wheezy and sid.
 
 the actual diff for anything that wasn't unblocked/freeze-exempted
 before already, is patch 8 only (and patch 9 for the changelog entry).
 
 [0] http://lists.debian.org/debian-release/2012/07/msg01706.html

To add some of my comments to your changelog:

+  * Switching to xz compression.

Why? Is this really release critical?

+  * Loading modules through kmod instead of initscript.

The initscript way was always ugly, but it is known to work. Why change
it short before the release? I doubt its well tested enough.

+  * Adding sleep during restart in initscript.

Why one second? Is it enough? Is there a proper way instead of sleeping?

+  * Removing old dpkg trigger for update-initramfs.

See above. How can you be sure it was well enough tested?

+  * Updating GPL boilerplate in copyright file.

Well, seems the copyright file was buggy, so yes, I guess this change
makes sense.


+  * Calling dh_dkms with version argument (Closes: #677503).
+  [ Thijs Kinkhorst ]
+  * Updating dkms.conf to make modules build again, thanks to H.A.J.
+Koster (Closes: #679886).

These two look like the only real fixes which need to be done at this
point of time before the release. Probably you should upload a package
with these three changes, send excuses for your behaviour to the release
team and ask them in a nice way to accept the changes. Of course you
should document why they are necessary and send the patches. Like
everybody else does.

If you are not willing to do so, please orphan the package so somebody
who has the time to maintain it and who is able to fix bugs during the
freeze in a manner which would be appropriate for a Debian developer
(and which is far far far away from what you are showing here).

Best regards,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/5017a04d.3040...@debian.org

Bug#683299: unblock: open-vm-tools/2:8.8.0+2012.05.21-724730-3

[Bernd Zeimetz]

On 07/31/2012 02:34 PM, Daniel Baumann wrote:
 On 07/31/2012 11:07 AM, Bernd Zeimetz wrote:
 so yet again you managed to make a mess of open-vm-tools short time
 before a release.
 
 i didn't. please read the whole thread carefully, thank you.

Yes you did, as several people tried to explain to you already. But I'm
not going to bother myself with that anymore, assuming that you will
manage to do an upload according to the rules of the release team asap.

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/5017d4db.9070...@debian.org

Bug#683299: unblock: open-vm-tools/2:8.8.0+2012.05.21-724730-3

[Bernd Zeimetz]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

On 07/31/2012 03:45 PM, Daniel Baumann wrote:
 On 07/31/2012 03:40 PM, Julien Cristau wrote:
 Based on what?
 
 tests on my computer.

As it was already explained to you before the release of Squeeze, this is far
far far away from proper testing for a package like open-vm-tools. It should
be tested on current (and maybe even older) ESX instalations. Ballooning,
live-migrations, snapshots with quiesce option and all the other nice features
need to work before it should be released as stable.


 If the system is under load, what guarantees that it won't take more
 time?
 
 as often there are no guarantees, but i tested it under quite some cpu and
 IO load, and it worked for me.
 
 regarding testing migration.. even if it wouldn't help in 100% of all 
 cases, it's better to have it safer in most cases, the current testing 
 package does not have a sleep at all.

Why not add a proper way to handle it instead of a broken workaround?


 Nope.  The proper way is for stop to not return until it's actually
 stopped.
 
 it does that. but again, it's safer in some cases to have the sleep, just
 to be on the safe side.

So you've patched your kill(1) to block until the process is gone? Luckily
this patch did not make it into Debian.

- -- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=J106
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/50186d66.8040...@debian.org

Bug#680259: unblock: gmic/1.5.1.6+dfsg-4

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Hi,

today the gmic author pointed me to a mistake in the manpage of zart,
which mentioned the wrong author for the program. Also I found some
missing copyright information in debian/copyright, so both issues should
be fixed before the release.

Thanks,

Bernd

unblock gmic/1.5.1.6+dfsg-4

-- System Information:
Debian Release: wheezy/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-3-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
diff --git a/debian/changelog b/debian/changelog
index f52fa63..20d3eee 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+gmic (1.5.1.6+dfsg-4) unstable; urgency=low
+
+  * [4ed5416f] Fix author/copyright information in debian/copyright and zart.1
+
+ -- Bernd Zeimetz b...@debian.org  Wed, 04 Jul 2012 18:43:34 +0200
+
 gmic (1.5.1.6+dfsg-3) unstable; urgency=low
 
   * [152547f5] Add missing Breaks/Replaces.
diff --git a/debian/copyright b/debian/copyright
index ddc05bd..4641bfb 100644
--- a/debian/copyright
+++ b/debian/copyright
@@ -1,13 +1,10 @@
-Format-Specification: http://svn.debian.org/wsvn/dep/web/deps/dep5.mdwn?rev=59
 Name: gmic
-Maintainer: David Tschumperlé david.tschumpe...@greyc.ensicaen.fr
+Maintainer: Bernd Zeimetz b...@debian.org
 Source: http://gmic.sourceforge.net/
 
 Files: *
-Copyright: 2008, 2009, David Tschumperlé david.tschumpe...@greyc.ensicaen.fr
-Source: http://gmic.sourceforge.net/
-Source: http://gmic.sourceforge.net/
-License: other
+Copyright: 2008-2012 David Tschumperlé david.tschumpe...@greyc.ensicaen.fr
+License:  CeCILL FREE SOFTWARE LICENSE AGREEMENT
  CeCILL FREE SOFTWARE LICENSE AGREEMENT
  .
  Notice
@@ -481,13 +478,78 @@ License: other
  .
  Version 2.0 dated 2006-07-12.
 
-Files: debian/copyright
-Copyright: 2009 Jakub Wilk jw...@debian.org, 2010 Bernd Zeimetz b...@debian.org
+
+Files: zart/*
+Copyright: 2012 Sébastien Fourey sebastien.fou...@greyc.ensicaen.fr / GREYC Ensicaen
+License:  CeCILL FREE SOFTWARE LICENSE AGREEMENT
+
+Files: zart/haarcascade_eye.xml, zart/haarcascade_frontalface_*.xml
+Copyright: Copyright (C) 2000, Intel Corporation, all rights reserved.
+License: Intel License Agreement For Open Source Computer Vision Library
+ Redistribution and use in source and binary forms, with or without modification,
+ are permitted provided that the following conditions are met:
+
+   * Redistribution's of source code must retain the above copyright notice,
+ this list of conditions and the following disclaimer.
+
+   * Redistribution's in binary form must reproduce the above copyright notice,
+ this list of conditions and the following disclaimer in the documentation
+ and/or other materials provided with the distribution.
+
+   * The name of Intel Corporation may not be used to endorse or promote products
+ derived from this software without specific prior written permission.
+ .
+ This software is provided by the copyright holders and contributors as is and
+ any express or implied warranties, including, but not limited to, the implied
+ warranties of merchantability and fitness for a particular purpose are disclaimed.
+ In no event shall the Intel Corporation or contributors be liable for any direct,
+ indirect, incidental, special, exemplary, or consequential damages
+ (including, but not limited to, procurement of substitute goods or services;
+ loss of use, data, or profits; or business interruption) however caused
+ and on any theory of liability, whether in contract, strict liability,
+ or tort (including negligence or otherwise) arising in any way out of
+ the use of this software, even if advised of the possibility of such damage.
+
+
+
+Files: zart/haarcascade_mcs_*.xml
+Copyright: Copyright (c) 2006, Modesto Castrillon-Santana
+ (IUSIANI, University of Las Palmas de Gran Canaria, Spain)
+License:
+  Redistribution and use in source and binary forms, with or without
+  modification, are permitted provided that the following conditions are
+  met:
+  .
+ * Redistributions of source code must retain the above copyright
+notice, this list of conditions and the following disclaimer.
+ * Redistributions in binary form must reproduce the above
+   copyright notice, this list of conditions and the following
+   disclaimer in the documentation and/or other materials provided
+   with the distribution.  
+ * The name of Contributor may not used to endorse or promote products 
+   derived from this software without specific prior written permission.
+  .
+  THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+  AS IS AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+  LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+  A PARTICULAR

Bug#679965: unblock: nagios-plugins-contrib/4.20120702

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: freeze-exception

Hi Release-Team,

please unblock package nagios-plugins-contrib. The recent upload fixes a
rather annoying bug where backuppc was installed together with
nagios-plugins due to being recommended by nagios-plugins-contrib. Diff
is attached.

Thanks,

Bernd


unblock nagios-plugins-contrib/4.20120702


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
diff --git a/check_backuppc/control b/check_backuppc/control
index ab9660a..fb3af99 100644
--- a/check_backuppc/control
+++ b/check_backuppc/control
@@ -1,5 +1,6 @@
 Uploaders: Jan Wagner w...@cyconet.org
-Recommends: backuppc, libnagios-plugin-perl
+Recommends: libnagios-plugin-perl
+Suggests: backuppc
 Version: 1.1.0
 Homepage: http://n-backuppc.sourceforge.net/
 Watch: http://sourceforge.net/projects/n-backuppc/files/ check_backuppc-([0-9.]+)\.tar\.gz
diff --git a/debian/changelog b/debian/changelog
index 32777ac..c63d134 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,11 @@
+nagios-plugins-contrib (4.20120702) unstable; urgency=low
+
+  * [bf291c63] check_backuppc: move backuppc to Suggests.
+Thanks to Werner Detter (Closes: #679871)
+  * [0997dfd3] Auto update of debian/control
+
+ -- Bernd Zeimetz b...@debian.org  Mon, 02 Jul 2012 19:28:52 +0200
+
 nagios-plugins-contrib (3.20120614) unstable; urgency=low
 
   * [30fd20be] check_packages should return CRITICAL for outstanding security updates.
diff --git a/debian/control b/debian/control
index 836cf8c..5cd4d86 100644
--- a/debian/control
+++ b/debian/control
@@ -11,8 +11,8 @@ Vcs-Browser: http://git.debian.org/?p=pkg-nagios/pkg-nagios-plugins-contrib;a=su
 Package: nagios-plugins-contrib
 Architecture: any
 Depends: ${misc:Depends}
-Recommends: ${shlibs:Depends}, ${python:Depends}, backuppc, libnagios-plugin-perl, libnagios-plugin-perl (= 0.31), libio-socket-ssl-perl, libmail-imapclient-perl, libnet-smtp-tls-perl, libnet-ssleay-perl, liblocale-gettext-perl, liblwp-useragent-determined-perl, snmp, freeipmi-tools, libipc-run-perl, lsof, libyaml-syck-perl, libreadonly-perl, libnet-dns-perl, libnet-snmp-perl, openssl, libdate-manip-perl, ruby | ruby-interpreter
-Suggests: perl-doc, cciss-vol-status, mpt-status, expect
+Recommends: ${shlibs:Depends}, ${python:Depends}, libnagios-plugin-perl, libnagios-plugin-perl (= 0.31), libio-socket-ssl-perl, libmail-imapclient-perl, libnet-smtp-tls-perl, libnet-ssleay-perl, liblocale-gettext-perl, liblwp-useragent-determined-perl, snmp, freeipmi-tools, libipc-run-perl, lsof, libyaml-syck-perl, libreadonly-perl, libnet-dns-perl, libnet-snmp-perl, openssl, libdate-manip-perl, ruby | ruby-interpreter
+Suggests: backuppc, perl-doc, cciss-vol-status, mpt-status, expect
 Enhances: nagios-plugins, nagios-plugins-basic, nagios-plugins-standard
 Description: Plugins for nagios compatible monitoring systems
  This package provides various plugins for Nagios compatible monitoring

Re: sparc qualification for Wheezy

[Bernd Zeimetz]

Hi,


 On Wed May 16, 2012 at 13:19:48 +0100, Adam D. Barratt wrote:
 Hi,

 With the sound of the ever approaching freeze ringing loudly in our ears,
 we're (somewhat belatedly) looking at finalising the list of release
 architectures for the Wheezy release.

 Comments on / additions and corrections to the content of
 http://release.debian.org/wheezy/arch_qualify.html would be appreciated,
 as would any other information you think is relevant to helping us
 determine sparc's status for the release.
 
 with my DSA hat on:
 
 We no longer have an UltraSparc II porterbox, and we are considering
 decommissioning our single remaining UltraSparc II buildd machine.
 
 Maybe it would be a good idea to officially drop US II support from
 wheezy since we won't have hardware to test issues on.

Might make sense, but on the other hand the USII machines were usually those
where issues did *not* show up. Especially USIII liked to be a problem child as
the specs were never released by sun. It got better with USIV again... So some
state like 'not officially supported, but should just work' is probably the best
for USII.


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4fc6832c.2000...@bzed.de

Re: Accepted gcc-defaults 1.118 (source all amd64)

[Bernd Zeimetz]

Hi,

 GCC 4.7 was blamed for this, but now I'm looking back and wondering if
 that was fair, and if it was such a bad thing all of this happened.
 
 The solution in gpsd VCS seems to have been applying a rather large
 changeset, fixing things from Coverity static analysis, potential buffer
 overruns and simple code bugs:
 
 http://git.recluse.de/?p=debian/pkg-gpsd.git;a=commitdiff;h=694d9866388d3c99ea5bdf2d570865f0bfa79d44

no, that was not the solution. A lot of those fixes were more or less cosmetic
or fixes for minor bugs.

 It seems the change of compiler tickled one of these bugs, made it
 noticable (causing a segfault, instead of some other behaviour, which
 was maybe correct or perhaps not), and then it got fixed.

The compiler indeed made one uninitialized integer show up, leading to an array
access at rather random positions. Its only a few lines diff.
http://git.recluse.de/?p=debian/pkg-gpsd.git;a=blob;f=debian/patches/d5fc020_Explicitly-initialize-AIS-queue-pointer;h=07b437f03dfff25bd228d830471633f09c42795c;hb=694d9866388d3c99ea5bdf2d570865f0bfa79d44;js=1


 So I think at least some good may have come out of the change of
 compiler, even if it is decided to roll back gcc-defaults.  Most of the
 work to at least get packages ready for GCC-4.7 seems done now, and
 maybe the same fixes will help if there's some future switch to LLVM/Clang.

Yeah, I'm not saying that finding this issue was bad - but I think it could have
been done after the release of wheezy. Especially in this case it made a lot of
work to actually find the issue - and the normal user would probably never run
into it. I would have preferred to spend my time on more important fixes for 
Wheezy.

Cheers,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4fc3703a.7090...@debian.org

Re: Accepted gcc-defaults 1.118 (source all amd64)

[Bernd Zeimetz]

On 05/14/2012 10:27 AM, Adam D. Barratt wrote:
 On 14.05.2012 09:10, Matthias Klose wrote:
 On 13.05.2012 21:58, Adam D. Barratt wrote:
 On 13.05.2012 18:42, Matthias Klose wrote:
 On 13.05.2012 21:22, Julien Cristau wrote:
 On Sun, May 13, 2012 at 18:58:42 +0200, Matthias Klose wrote:
 which ones? are there any reports which are not tagged? I went through
 the list of Lucas' new batch and tagged the appropriate ones.

 There were again some more in the last couple days.  They should be tagged
 AFAIK.

 I am only aware of these usertags:
 debian...@lists.debian.org / qa-ftbfs-20120508
 do you known about a new rebuild?

 From a trivial look the set from #672397 onwards on the usertagged bug list 
 were
 all filed in the past three days.

 looking at 98 and 99 this doesn't seem to be a set.
 
 They're a set in that they appear after each other on the usertagged bug
 list.  I didn't say they had sequential bug numbers, but possibly could have
 chosen a better description.


After rebuilding gpsd today I had to realize that the stack protector makes one
of the tools segfault since it was built with gcc 4.7. If gpsd wouldn't ship
with a largish test suite this fault would probably never have been detected
before the release - so this makes me wonder how many non-obvious bugs like this
the switch to 4.7 introduced - and how much the release of Whezy will be delayed
because of it.


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4fb95e62.8040...@debian.org

Re: Accepted gcc-defaults 1.118 (source all amd64)

[Bernd Zeimetz]

On 05/20/2012 11:13 PM, Bernd Zeimetz wrote:
 On 05/14/2012 10:27 AM, Adam D. Barratt wrote:
 On 14.05.2012 09:10, Matthias Klose wrote:
 On 13.05.2012 21:58, Adam D. Barratt wrote:
 On 13.05.2012 18:42, Matthias Klose wrote:
 On 13.05.2012 21:22, Julien Cristau wrote:
 On Sun, May 13, 2012 at 18:58:42 +0200, Matthias Klose wrote:
 which ones? are there any reports which are not tagged? I went through
 the list of Lucas' new batch and tagged the appropriate ones.

 There were again some more in the last couple days.  They should be 
 tagged
 AFAIK.

 I am only aware of these usertags:
 debian...@lists.debian.org / qa-ftbfs-20120508
 do you known about a new rebuild?

 From a trivial look the set from #672397 onwards on the usertagged bug 
 list were
 all filed in the past three days.

 looking at 98 and 99 this doesn't seem to be a set.

 They're a set in that they appear after each other on the usertagged bug
 list.  I didn't say they had sequential bug numbers, but possibly could have
 chosen a better description.
 
 
 After rebuilding gpsd today I had to realize that the stack protector makes 
 one
 of the tools segfault since it was built with gcc 4.7. If gpsd wouldn't ship

Actually I'm not exactly sure if it is the stack protectors' fault, but it is
definitely a 4.7 related issue.

 with a largish test suite this fault would probably never have been detected
 before the release - so this makes me wonder how many non-obvious bugs like 
 this
 the switch to 4.7 introduced - and how much the release of Whezy will be 
 delayed
 because of it.
 
 


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4fb95f10.6060...@debian.org

Re: priorities for fixing gcc-4.7 build failures

[Bernd Zeimetz]

On 05/09/2012 10:40 PM, Adam D. Barratt wrote:
 On Wed, 2012-05-09 at 22:02 +0200, Matthias Klose wrote:
 transition exiv2
 667229 koffice
 667275 merkaartor

 transition gdal
 671991 grass
 667275 merkaartor
 
 The exiv2 transition is much farther along than gdal and forcing them to
 get tied together now would be A Bad Thing[tm].  So I'd suggest that
 merkaator be skipped for now.  I'm sure the maintainer would appreciate
 a patch though.

I have a patch already, just let me know when I should upload it.

Cheers and thanks,

Bernd


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4faad908.30...@debian.org

Re: priorities for fixing gcc-4.7 build failures

[Bernd Zeimetz]

On 05/09/2012 10:52 PM, Bernd Zeimetz wrote:
 On 05/09/2012 10:40 PM, Adam D. Barratt wrote:
 On Wed, 2012-05-09 at 22:02 +0200, Matthias Klose wrote:
 transition exiv2
 667229 koffice
 667275 merkaartor

 transition gdal
 671991 grass
 667275 merkaartor

 The exiv2 transition is much farther along than gdal and forcing them to
 get tied together now would be A Bad Thing[tm].  So I'd suggest that
 merkaator be skipped for now.  I'm sure the maintainer would appreciate
 a patch though.
 
 I have a patch already, just let me know when I should upload it.

Sorry, should do a test-build first - there are more issues, not only the one
mentioned in the bug report :(

http://git.recluse.de/?p=debian/pkg-merkaartor.git;a=blob;f=debian/patches/gcc-4.7-ftbfs-fix;h=c4504cba4b5022f7755285aebb8b1377997f51cd;hb=HEAD;js=1

is the patch for the first one...

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4faadf26.6020...@debian.org

Bug#634797: opencv 2.3 transition

[Bernd Zeimetz]

On 01/10/2012 08:40 PM, Julien Cristau wrote:
 On Tue, Dec 20, 2011 at 17:42:04 +0100, Bernd Zeimetz wrote:
 
 Hi,

 I just upload.
 Sorry, reply was late.

 I'm just wondering if you've tried to build the
 build-reverse-dependencies against the new library and/or if you've
 notified the maintainers of these packages (if so I've missed the mail
 and I can't find a mail on appropriate lists...). Most packages I know
 want to link -lcv, which is gone. Installing (the old!?) libcv-dev
 package depends on a lot of new opencv_* library-packages, byt the only
 pkg-config file I was able to find is in libopencv-core-dev and says

 Libs: -L${libdir} -lopencv_core -lopencv_imgproc -lopencv_highgui
 -lopencv_ml -lopencv_video -lopencv_features2d -lopencv_calib3d
 -lopencv_objdetect -lopencv_contrib -lopencv_legacy -lopencv_flann

 which sounds like all libraries are necessary anyway and could have been
 packaged together

 Please provide a proper migration guide (I would have expected some
 pointers in libcv-dev at least) and next time inform people earlier
 about transitions.

 So apparently this is still not resolved (or not completely?).  What's
 going on here?

Solved for gmic on Sunday - it doesn't use much from OpenCV luckily. Still
wondering why there is no sane migration way, though...

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F



-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4f0cac66.9020...@debian.org

Bug#634797: opencv 2.3 transition

[Bernd Zeimetz]

Hi,

 I just upload.
 Sorry, reply was late.

I'm just wondering if you've tried to build the
build-reverse-dependencies against the new library and/or if you've
notified the maintainers of these packages (if so I've missed the mail
and I can't find a mail on appropriate lists...). Most packages I know
want to link -lcv, which is gone. Installing (the old!?) libcv-dev
package depends on a lot of new opencv_* library-packages, byt the only
pkg-config file I was able to find is in libopencv-core-dev and says

Libs: -L${libdir} -lopencv_core -lopencv_imgproc -lopencv_highgui
-lopencv_ml -lopencv_video -lopencv_features2d -lopencv_calib3d
-lopencv_objdetect -lopencv_contrib -lopencv_legacy -lopencv_flann

which sounds like all libraries are necessary anyway and could have been
packaged together

Please provide a proper migration guide (I would have expected some
pointers in libcv-dev at least) and next time inform people earlier
about transitions.

Cheers,

Bernd


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprints: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F



-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4ef0badc.9000...@debian.org

Bug#648628: transition: gpsd

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition

Hi Release Team,

gpsd's service library libgps got a bunch of API and ABI changes, so it
needs a transition from libgps19 to libgps20.

Currently there are only 4 packages left in unstable which do not build
against the new API:

geoclue #648496
obdgpslogger #648495
kdeedu #648502
kdebase-workspace #648504

I'm able to patch geoclue and obdgpslogger quickly if necessary.
For kde* the qt/kde people and I agreed that they will - depending on
the time of the gpsd transition - either upload fixed packages to
unstable after the new gpsd version is available (so we don't need to
binNMU them again) or if they are ready to upload kde 4.7/kdeedu 4.7 at
the time the gpsd transition happens, both transitions could run in
parallel.

So please let me know when you'd like me to upload gpsd to unstable.

Thanks and cheers,

Bernd

-- System Information:
Debian Release: wheezy/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 3.0.0-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash



-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/2013160457.15143.98786.report...@think.bzed.org

Re: Bugfix for #646434 in Squeeze?

[Bernd Zeimetz]

On 11/04/2011 08:08 PM, Adam D. Barratt wrote:
 Hi,
 
 On Fri, 2011-11-04 at 18:57 +0100, Bernd Zeimetz wrote:
 due to a major change in the gpsd protocol it won't be possible to connect 
 with
 a recent gpsd (not uploaded to unstable yet, but soon) to gpsd daemons using 
 the
 old protocol. The gpsd version in Squeeze will be the last usable version 
 which
 understands the old protocol.

 Unfortunately there is a bug (#646434) in the Python bindings which makes 
 them
 useless to connect to a server which speaks the old version of the protocol. 
 As
 
 How soon is soon?  The reason I ask is that one of the first tests
 we'd tend to apply to requests is does the issue apply to unstable and,
 if so, has the fix been applied there and as things stand the answers
 would appear to be yes, and no.

Well, actually I want to upload the latest version of gpsd to unstable which
doesn't even contain that part of the code anymore. So there is nothing to apply
there anymore. But if it makes you happier, I could upload yet another 2.95
revision including that fix.


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4eb4eb0f.7080...@bzed.de

Bugfix for #646434 in Squeeze?

[Bernd Zeimetz]

Hi Release Team,

due to a major change in the gpsd protocol it won't be possible to connect with
a recent gpsd (not uploaded to unstable yet, but soon) to gpsd daemons using the
old protocol. The gpsd version in Squeeze will be the last usable version which
understands the old protocol.

Unfortunately there is a bug (#646434) in the Python bindings which makes them
useless to connect to a server which speaks the old version of the protocol. As
the old protocol is still used by various applications and embedded devices, so
I would like to fix that bug in a point release to provide a last version to our
users which supports the old protocol properly.

Would that be accepted for a Squeeze pointrelease? The tiny diff is attached 
below.

Cheers and thanks,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


diff --git a/gps/gps.py b/gps/gps.py
index 9b2c62f..1bd8d7d 100755
--- a/gps/gps.py
+++ b/gps/gps.py
@@ -16,6 +16,7 @@
 #
 import time
 from client import *
+from misc import isotime

 NaN = float('nan')
 def isnan(x): return str(x) == 'nan'


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4eb42799.3000...@bzed.de

Re: Bug#606327: vmmemctl missing in squeeze

[Bernd Zeimetz]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

On 12/09/2010 01:05 PM, Daniel Baumann wrote:
 On 12/09/2010 12:54 PM, Mehdi Dogguy wrote:
 Yes. Go ahead. If you want to apply some backported fixes, please let us
 know
 first.
 
 for clarity sake, it's not about 'backporting' fixes, it's about
 completely replacing the existing open-vm-tools upstream version with
 another one.

Why do you want to replace a recent version of open-vm-tools (which usually
comes with a LOT of bugfixes by a pretty old version just to introduce the
removed module again? It seems you're not willing to maintain this package
properly, otherwise you'd look at your git repository (I'm sure it contains
upstream's git, too) and revert the commit(s) which removed the vmmemctl module.
Then - if you would care - would update the module to the latest version on
kernel.org. And then you would test your changes properly on a VMware
installation. Yes, I'm talking about proper testing, for example in some VMs on
a ESX machine. Oh, you don't have ESX? I heard you can download it for free, at
least for testing purposes. No hard tasks, so I fail to understand why we always
run into RC bugs whenever we look at a new version of this package. I'd suggest
you give the maintenance of open-vm-tools to somebody who actually cares about
it. Or has the proper time to do so.


- -- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQIcBAEBCAAGBQJNB+W9AAoJEOs2Fxpv+UNfbvkQAL8ttFctD7DfcG4O2RzP0uyV
8sl8Nl+8fxM2lmuKPVvkH3BDjSDF3Da930Ezr29GAAnBPi3X+wDGNee1CuIPaa2+
QqKwoeEi4279E1TJ54oY8VLzrcNX2GXAvzrq9iJpKJnkkZzHHOz0vmi5M0CrdMtW
a1qif8EhTKtrI85CGPrlknl9QnH4wOMPQ+CjjDkTwsifY3atytbw4dBhMDtQ7KR5
JmU2kb0C3ASPm8iA5lgc7GjgTagguE0EtV94ckjhY/m1oa2HQNqmqZIBJHmBIs6b
4azR9N0Sx2/kTq96Q9xt5+qqWI72in5Tz2bKoqYPXo0k6sp2aSQSOeWW+1ReaO45
J6/YQIDVLsZWBLSot6W4Epg237gsjsRuxXWTehIoMqBYAN4wKA6eVzxF7vauu7Zn
HPUvyUWAyCdMgG4wR6uniO+iW7faQ5wihzSGXfm00tZHFYKSlGV/uAw6o9+8B1Dg
xI7QaIGGtI6o2hwoyVBckq9U+/3kqddqoOsxrmL3b5zSEqfeWZv0JN83o8szO9ub
yPKSEq13ycRr0RElgxfNDK2slDDi6gt/pv7kERQEy5FmGV1JWKM6A3xSMP3hJSBG
zQMO6ZP693kwGKyi2hGnibJOdfQalrrNFT1FHVLQ45UFIGWvTU89JFDVkdKcm6cF
xmnNVhSFK98GnhHMQhN+
=7NVl
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4d07e5c2.8030...@debian.org

Re: gpsd bugfixes

[Bernd Zeimetz]

On 11/14/2010 05:10 PM, Bernd Zeimetz wrote:
 What I'd like you to decide on now is if the next upload should fix all the
 easily fixable issues or only the serious AIS related one.
 Attached are patches 0009-0014, with 0014 being the fix for the serious issue.
 So please let me know if you'd prefer an upload with 0009-0014 or a fix with
 0014 only.

As there was no reply yet and I neither want to bother you with the long review
nor want to wait any longer, I'll upload a fixed version with the patch for the
segfault to unstable.


-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4ce2db1f.1080...@bzed.de

gpsd bugfixes

[Bernd Zeimetz]

Hi Release Team,

today I received #603439 on gpsd, reporting a segfault while handling AIS data
in gpsd. It makes gpsd more or less useless for ship data tracking as it will
crash at random times. Fixing this bug is easy as the bug reporter (who is well
known for submitting good patches to gpsd) delivered a patch with the bug 
report.

Also we (as in gpsd upstream) collected several other bugfixes during the last
weeks. The bugs are not as bad as the one mentioned above, but it would still
make sense to fix them in Squeeze imho. As gpsd runs a long regression test
suite at build time it would be easy for me to see if they introduce issues.

What I'd like you to decide on now is if the next upload should fix all the
easily fixable issues or only the serious AIS related one.
Attached are patches 0009-0014, with 0014 being the fix for the serious issue.
So please let me know if you'd prefer an upload with 0009-0014 or a fix with
0014 only.

Thanks and cheers,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
From: Jon Schlueter jon.schlue...@gmail.com
Date: Wed, 6 Oct 2010 16:32:09 -0400
Subject: [PATCH] gpsutil.c: fill_dop bug if sats  4

bug present where it would try to invert matrix with out enough data...
added guard to prevent trying to calculate dop's if we don't have 4 sats
with current code.
---
 gpsutils.c |   12 
 1 files changed, 12 insertions(+), 0 deletions(-)

diff --git a/gpsutils.c b/gpsutils.c
index 6b94de0..1bf200e 100644
--- a/gpsutils.c
+++ b/gpsutils.c
@@ -466,6 +466,8 @@ gps_mask_t fill_dop(const struct gps_data_t * gpsdata, struct dop_t * dop)
 double xdop, ydop, hdop, vdop, pdop, tdop, gdop;
 int i, j, k, n;
 
+memset(satpos, 0, sizeof(satpos));
+
 #ifdef __UNUSED__
 gpsd_report(LOG_INF, Satellite picture:\n);
 for (k = 0; k  MAXCHANNELS; k++) {
@@ -488,6 +490,16 @@ gps_mask_t fill_dop(const struct gps_data_t * gpsdata, struct dop_t * dop)
 	n++;
 }
 
+/* If we don't have 4 satellites then we don't have enough information to calculate DOPS */
+if (n  4) {
+	gpsd_report(LOG_DATA + 2, Not enough Satellites available %d  4:\n,
+		n);
+	return 0;		/* Is this correct return code here? or should it be ERROR_IS */
+}
+
+memset(prod, 0, sizeof(prod));
+memset(inv, 0, sizeof(inv));
+
 #ifdef __UNUSED__
 gpsd_report(LOG_INF, Line-of-sight matrix:\n);
 for (k = 0; k  n; k++) {
-- 
From: Gary E. Miller g...@rellim.com
Date: Tue, 26 Oct 2010 15:42:57 -0700
Subject: [PATCH] GPZDA reported broken by aquarat, and others.  Been broken since before
 git.  nmea_parse() was expecting 7 fields when their are only 6.  Since
 we only use the first 4 fields that is the new minimum.

This seems to break one regression test, but appears to be a valid fix.
---
 driver_nmea.c |2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/driver_nmea.c b/driver_nmea.c
index fbefc66..cc001a8 100644
--- a/driver_nmea.c
+++ b/driver_nmea.c
@@ -931,7 +931,7 @@ gps_mask_t nmea_parse(char *sentence, struct gps_device_t * session)
 	GSV, 0, processGPGSV}, {
 	VTG, 0, NULL},	/* ignore Velocity Track made Good */
 	{
-	ZDA, 7, processGPZDA}, {
+	ZDA, 4, processGPZDA}, {
 	GBS, 7, processGPGBS},
 #ifdef TNT_ENABLE
 	{
-- 
From: Timo Juhani Lindfors timo.lindf...@iki.fi
Date: Sun, 5 Sep 2010 13:42:26 -0400
Subject: [PATCH] Bug gpsd:17494 fix: cgps don't exit if interrupted

Do not exit if select is interrupted by a signal. Since we have signal handlers for INT and HUP they still work but WINCH does not. Closes gpsd:17494.
---
 cgps.c |3 +++
 1 files changed, 3 insertions(+), 0 deletions(-)

diff --git a/cgps.c b/cgps.c
index 36abc3c..e357836 100644
--- a/cgps.c
+++ b/cgps.c
@@ -895,6 +895,9 @@ int main(int argc, char *argv[])
 	data = select(gpsdata.gps_fd + 1, rfds, NULL, NULL, timeout);
 
 	if (data == -1) {
+if (errno == EINTR) {
+continue;
+}
 	fprintf(stderr, cgps: socket error 3\n);
 	exit(2);
 	} else if (data) {
-- 
From: Timo Juhani Lindfors timo.lindf...@iki.fi
Date: Sat, 6 Nov 2010 11:55:31 -0400
Subject: [PATCH] Bug #17637: /dev/ttySAC1 is always opened in read-only mode

More info:
1) /dev/ttySAC1 is a serial port used on samsung s3c2440 (e.g. openmoko
	freerunner):

$ stat /dev/ttySAC1
File: `/dev/ttySAC1'
Size: 0 Blocks: 0 IO Block: 4096 character special file
Device: ch/12d Inode: 161 Links: 1 Device type: cc,41
Access: (0660/crw-rw) Uid: ( 0/ root) Gid: ( 20/ dialout)
Access: 2010-10-19 01:23:13.893489000 +0300
Modify: 2010-10-18 20:21:22.089934000 +0300
Change: 2010-10-18 20:21:22.089934000 +0300

2) I think the problem is in gpsd_classify(). It assumes that
	all serial ports have major number of 4. It even links to
	ftp://ftp.kernel.org/pub/linux/docs/device-list/devices-2.6+.txt
	as a reference. However

Re: Please unblock virtualbox-ose

[Bernd Zeimetz]

On 10/20/2010 09:26 PM, Julien Cristau wrote:
 On Wed, Oct 20, 2010 at 20:31:54 +0200, Bernd Zeimetz wrote:
 
 Guess you did not read the virtualbox changelog?
 http://www.virtualbox.org/wiki/Changelog

 Nobody is saying the new version doesn't fix bugs, we're saying we can't
 review it.

Give it more time for testing in unstable then.
Virtualbox is important enough to have the latest version of it in the next
release. Remember that the SC says something about doing the best for our users,
not being able to review every single patch. It is a bugfix release from
upstream and not something which adds a lot of new features and the changes are
well documented. You could at least have asked if there is away to get a
reviable list of patches. Really a shame that Debian will ship with a large
number of bugs in an important piece of software again.

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4cc5322a.5050...@bzed.de

Re: Please unblock virtualbox-ose

[Bernd Zeimetz]

On 10/20/2010 01:40 PM, Michael Meskes wrote:
From a DD perspective I can understand your reasoning. However, from a user's
 perspective I cannot, which might be one of the reasons why I wouldn't want to
 be a release manager. 

And as Debian tries to attract system administrators and not the common desktop
user I think it makes more than sense to ship a virtualbox version with less
bugs than the one currently in squeeze. Having issues in a software the common
desktop user uses sometimes is much less evil than breaking the admin's favorite
virtualization technology. I'd consider xen, kvm, virtualbox and libvirt as
important as the kernel itself these days.

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4cbf2fea.3020...@bzed.de

Re: Please unblock virtualbox-ose

[Bernd Zeimetz]

On 10/20/2010 08:17 PM, Julien Cristau wrote:
 And yet we're not updating the kernel to 2.6.36.  If we need bugfixes in
 squeeze, by all mean let's do that.  Blindly updating to the latest
 upstream version, not so much.

Guess you did not read the virtualbox changelog?
http://www.virtualbox.org/wiki/Changelog

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4cbf359a.1040...@bzed.de

Bug#595780: unblock: gpsd/2.95-6

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: freeze-exception

Please unblock package gpsd

The new package contains a patch which fixes some identation errors
in the Python modules and tools which could result in wrong/unwanted
results.
Unfortunately I did not find the time to write this mail before the
'harder' freeze was announced, but I still hope you'll allow to let
it go into Squeeze.

Thanks,

Bernd


gpsd (2.95-6) unstable; urgency=low

  * [928249f4] Disable testregress on hurd instead of disabling it
everywhere else.
  * [95558a3b] Adding a patch to fix some identation errors in Python
scripts/modules.

 -- Bernd Zeimetz b...@debian.org  Sun, 29 Aug 2010 21:59:25 +0200



unblock gpsd/2.95-6




-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.35.2-think (SMP w/2 CPU cores; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash



-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/20100906161558.4137.53268.report...@think.mg.bzed.de

Bug#594700: unblock: zbar/0.10+doc-4

[Bernd Zeimetz]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: freeze-exception

Please unblock package zbar. Main reason for the upload was to remove
two conflicts which were introduced by the former maintainer and not
reviewed before - they are completely unnecessary now. Full diff is
attached.

Cheers and thanks,

Bernd


unblock zbar/0.10+doc-4



--
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprints: 06C8 C9A2 EAAD E37E 5B2C BE93 067A AD04 C93B FF79
   ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
diff --git a/debian/changelog b/debian/changelog
index a3d869c..be9ad64 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,14 @@
+zbar (0.10+doc-4) unstable; urgency=low
+
+  * [abdd6f9f] Use better dependencies for zbar-dbg.
+  * [5c639854] Remove conflicts of libzbar-dev. libzbar replaced zebra
+in directory names by zbar, so clashes with quagga and libpacklib1-
+dev are avoided. So there is no need to conflict against the
+packages anymore.
+  * [75f615f2] Use Breaks instead of Conflicts as suggested by lintian.
+
+ -- Bernd Zeimetz b...@debian.org  Sat, 28 Aug 2010 15:01:46 +0200
+
 zbar (0.10+doc-3) unstable; urgency=low
 
   * [6b190c39] Enable VfL only on Linux instead of excluding kfreebsd
diff --git a/debian/control b/debian/control
index 8ed775b..d994686 100644
--- a/debian/control
+++ b/debian/control
@@ -26,16 +26,17 @@ Priority: extra
 Section: debug
 Architecture: any
 Depends: ${shlibs:Depends}, ${misc:Depends}, ${python:Depends},
- zbar-tools (= ${binary:Version}),
- libzbar0 (= ${binary:Version}),
- libzbar-dev (= ${binary:Version}),
- python-zbarpygtk (= ${binary:Version}),
- python-zbar (= ${binary:Version}), python-gtk2-dbg,
- libzbargtk0 (= ${binary:Version}),
- libzbargtk-dev (= ${binary:Version}),
- libzbarqt0 (= ${binary:Version}),
- libzbarqt-dev (= ${binary:Version}),
+ zbar-tools (= ${binary:Version}) |
+ libzbar0 (= ${binary:Version}) |
+ libzbar-dev (= ${binary:Version}) |
+ python-zbarpygtk (= ${binary:Version}) |
+ python-zbar (= ${binary:Version}) |
+ libzbargtk0 (= ${binary:Version}) |
+ libzbargtk-dev (= ${binary:Version}) |
+ libzbarqt0 (= ${binary:Version}) |
+ libzbarqt-dev (= ${binary:Version}) |
  libbarcode-zbar-perl (= ${binary:Version})
+Recommends: python-gtk2-dbg
 Description: bar code scanner and decoder (debug)
  ZBar is a library for scanning and decoding bar codes from various sources
  such as video streams, image files or raw intensity sensors. It supports
@@ -57,7 +58,6 @@ Package: libzbar-dev
 Section: libdevel
 Architecture: any
 Depends: libzbar0 (= ${binary:Version}), ${misc:Depends}, libmagick++9-dev, libx11-dev
-Conflicts: libpacklib1-dev, quagga
 Description: bar code scanner and decoder (development)
  ZBar is a library for scanning and decoding bar codes from various sources
  such as video streams, image files or raw intensity sensors. It supports
@@ -69,7 +69,7 @@ Package: python-zbar
 Section: python
 Architecture: any
 Replaces: python-zbarpygtk ( 0.10+doc)
-Conflicts: python-zbarpygtk ( 0.10+doc)
+Breaks: python-zbarpygtk ( 0.10+doc)
 Depends: ${shlibs:Depends}, ${misc:Depends}, ${python:Depends},
  libzbar0 (= ${binary:Version})
 Description: bar code scanner and decoder (Python bindings)

Re: library tranistion proposal exiv2(0.20): libexiv2-6 - libexiv2-9

[Bernd Zeimetz]

On 05/31/2010 11:53 PM, Mark Purcell wrote:
 debian-release,
 
 The following transition is proposed:
 
 exiv2(0.20): libexiv2-6 - libexiv2-9
 
 Important rdepends:

 +  rawstudio

FTBFS - not sure if that is an issue with libexiv, though. Won't have the time
to investigate this week.

g++ -Wall -fno-strict-aliasing -O4 -DWITH_GCONF -DDCRAW_NOMAIN -DDCRAW_NOLCMS
-DWITH_MMAP_HACK -g -O2  -Wl,-z,defs -o rawstudio rawstudio.o rs-filetypes.o
rs-settings.o rs-utils.o rs-job.o rs-actions.o rs-math.o rs-preload.o
gtk-helper.o gtk-interface.o gtk-save-dialog.o gtk-progress.o conf_interface.o
adobe-coeff.o rs-cms.o rs-cache.o rs-batch.o toolbox.o rawfile.o mmap-hack.o
tiff-meta.o ciff-meta.o mrw-meta.o x3f-meta.o raf-meta.o rs-image.o rs-photo.o
dcraw_api.o dcraw.o rs-jpeg.o rs-tiff.o arch-generic.o arch-x86.o filename.o
rs-spline.o rs-store.o rs-color-transform.o rs-preview-widget.o rs-histogram.o
eog-pixbuf-cell-renderer.o rs-curve.o rs-pixbuf.o rs-external-editor.o
rs-dir-selector.o rs-metadata.o rs-exif.o -pthread -lgtk-x11-2.0 -lgdk-x11-2.0
-latk-1.0 -lpangoft2-1.0 -lgdk_pixbuf-2.0 -lm -lpangocairo-1.0 -lcairo -lgio-2.0
-lpango-1.0 -lfreetype -lfontconfig -lgobject-2.0 -lgmodule-2.0 -lgthread-2.0
-lxml2 -lgconf-2 -lglib-2.0 -llcms -ldbus-1 -lpthread -lrt -lexiv2   -ljpeg 
-ltiff
/usr/bin/ld: rs-actions.o: in function
rs_action_delete_flagged:rs-actions.c:312: error: undefined reference to 
'XFlush'
/usr/bin/ld: gtk-save-dialog.o: in function
gui_save_file_dialog:gtk-save-dialog.c:264: error: undefined reference to 
'XFlush'
/usr/bin/ld: rs-preview-widget.o: in function rescale:rs-preview-widget.c:1118:
error: undefined reference to 'XFlush'
/usr/bin/ld: rs-preview-widget.o: in function
rs_preview_widget_set_photo:rs-preview-widget.c:437: error: undefined reference
to 'XFlush'

 +  python-pyexiv2
 +  merkaartor

Both build fine. No issues on the first sight.


Cheers,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprints: 06C8 C9A2 EAAD E37E 5B2C BE93 067A AD04 C93B FF79
   ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4c044020.7040...@bzed.de

Re: libgps18 - libgps19 transition

[Bernd Zeimetz]

Luk Claes wrote:
 Bernd Zeimetz wrote:
 Hi Release-Team,

 with the next upload of gpsd to unstable we'll have a transition from 
 libgps18
 to libgps19. As KDE is involved, I'm CCing the QT/KDE list also. Whats the 
 best
 time for an upload?
 
 As long as it does not interfere with the gstreamer0.10 transition
 (which I doubt it does) it should be fine.

It should not mess with gstreamer related packages. Uploaded to unstable a few
seconds ago, please schedule binNMUs with a dep-wait on libgps-dev = 2.90-2

Thanks,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprints: 06C8 C9A2 EAAD E37E 5B2C BE93 067A AD04 C93B FF79
   ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

libgps18 - libgps19 transition

[Bernd Zeimetz]

Hi Release-Team,

with the next upload of gpsd to unstable we'll have a transition from libgps18
to libgps19. As KDE is involved, I'm CCing the QT/KDE list also. Whats the best
time for an upload?

Cheers,

Bernd

-- 
 Bernd ZeimetzDebian GNU/Linux Developer
 http://bzed.dehttp://www.debian.org
 GPG Fingerprints: 06C8 C9A2 EAAD E37E 5B2C BE93 067A AD04 C93B FF79
   ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Re: Upcoming Lenny point release

[Bernd Zeimetz]

Adam D. Barratt wrote:
 Hi,
 
 The next Lenny point release (5.0.3) is scheduled for Saturday,
 September 5th.
 
 With the exception of already planned kernel and installer updates,
 stable NEW will be frozen during the weekend of August 29th - 30th.

Please review mod-wsgi before that (see Message-ID:
20090808114522.ga4...@piotro.eu for details). The suggested updated contains a
*lot* of bugfixes, including a few which are security relevant (not bad enough
to warrant a CVE and a security upload, but they should be fixed).

Thanks,

Bernd

-- 
 Bernd Zeimetz Debian GNU/Linux Developer
 GPG Fingerprints: 06C8 C9A2 EAAD E37E 5B2C BE93 067A AD04 C93B FF79
   ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Re: library transition proposal exiv2/ libexiv2-5

[Bernd Zeimetz]

Mark Purcell wrote:
 On Wednesday 29 April 2009 21:33:22 Adeodato Simó wrote:
 Thanks a lot for your patience and cooperation, and let us know when you
 have uploaded to unstable.
 
 Dato,
 
 Thanks for the green light.
 
 Have now uploaded libexiv2-5 to unstable and (almost) installed on all archs.
 
 BinNMU's required for rdepends against the obsolete libexiv2-4:

merkaartor was uploaded yesterday late in the evening, so a binNMU is probably
not necessary, at least not on all archs. Unfortunately I didn't see this mail
before uploading it, otherwise I would have waited a bit to make sure it builds
against the new exiv2 everywhere.

Cheers,

Bernd

-- 
 Bernd Zeimetz   Debian GNU/Linux Developer
 GPG Fingerprint: 06C8 C9A2 EAAD E37E 5B2C BE93 067A AD04 C93B FF79


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org