Bug#881023: librcsb-core-wrapper: FTBFS with xerces-c3.2

[William Blough]

Source: librcsb-core-wrapper
Version: 1.005-4
Severity: normal
Tags: patch


xerces-c will be transitioning from 3.1 to 3.2 soon.  However, 
librcsb-core-wrapper fails to build when built against libxerces-c3.2
due to it requireing a newer c++ standard version.

Patch attached.
diff -Nuar librcsb-core-wrapper-1.005/debian/patches/series librcsb-core-wrapper-1.005_modified/debian/patches/series
--- librcsb-core-wrapper-1.005/debian/patches/series	2015-07-10 12:35:34.0 -0400
+++ librcsb-core-wrapper-1.005_modified/debian/patches/series	2017-11-07 02:17:25.797200361 -0500
@@ -13,3 +13,4 @@
 make_test_target
 regcomp_cert_fix.patch
 gcc5.patch
+xerces32
diff -Nuar librcsb-core-wrapper-1.005/debian/patches/xerces32 librcsb-core-wrapper-1.005_modified/debian/patches/xerces32
--- librcsb-core-wrapper-1.005/debian/patches/xerces32	1969-12-31 19:00:00.0 -0500
+++ librcsb-core-wrapper-1.005_modified/debian/patches/xerces32	2017-11-07 02:28:32.820780682 -0500
@@ -0,0 +1,11 @@
+--- a/etc/make.platform.gnu4
 b/etc/make.platform.gnu4
+@@ -118,7 +118,7 @@ CFLAGS += $(OPT) $(ABI) $(PIC) $(ANSI_C_
+ CCC=g++
+ 
+ # C++ compiler ANSI/NON-ANSI flags
+-ANSI_C_PLUS_FLAG=-ansi
++ANSI_C_PLUS_FLAG=-std=c++11
+ NON_ANSI_C_PLUS_FLAG=-traditional-cpp
+ C_PLUS_WARNINGS=$(WARNINGS) $(NO_DEPRECATED)
+ 

Bug#812721: gbp could filter out Files-Excluded: entries when committing to the pristine-tar branch

[Guido Günther]

Hi,
On Mon, Nov 06, 2017 at 12:15:51PM +0100, Guido Günther wrote:
> Hi,
> On Mon, Nov 06, 2017 at 07:13:07PM +0800, Shengjing Zhu wrote:
> > On Mon, 6 Nov 2017 08:59:41 +0100 Guido =?iso-8859-1?Q?G=FCnther?=
> >  wrote:
> > > Hi,
> > > My first reaction was to teach gbp import-orig to have a
> > >
> > > gbp import-orig "git-ref"
> > >
> > > mode that would do the right thing but I now think having
> > >
> > > gbp update "git-ref"
> > >
> > > that
> > >
> > > - does the excluding and tagging if necessary
> > > - merges to the debian branch
> > >
> > > is better. We need to make sure that gbp import-orig's filtering (using
> > > the --filter command line or filter= gbp.conf option) stays in sync with
> > > what we do so we don't have on tool using --filter= and the other one
> > > parsing debian/changelog.
> > >
> > > If somebody comes up with a better name than "update" that's all fine.
> > > Cheers,
> > 
> > I would suggest `gbp import-git`, which is consistent with `import-*`
> 
> Yes, much better.

Maybe "git import-ref" is even better but that's just bikeshedding.
 -- Guido

Bug#881022: Fwd: Enigmail is very slow to check signatures

[Andreas Glaeser]

Package: enigmail
Version: 2:1.9.8.1-1~deb9u1
Severity: minor

Dear Maintainer,

the main problem seems to be her, that generally crypto-code is not 
parallelised. For
example as in my case on a low-end 25W-PC or on notebooks an other embedded 
devices,
there is one compute-core used only for checking DSA-signatures in Thunderbird
with Enigmail, although 3 or 4 are available. So some things are much slower in 
practice
than they could be. 
It is understandable, that there are security concerns, about parallelizing 
crypto-code
and it should not be auto-parallelized, because users could well go devoid of 
their
data-integrity and one might well give away code-reliability for speed. That is 
of course
not recommendable.


>  Forwarded Message 
> Subject: Fwd: Enigmail is very slow to check signatures
> Date: Sat, 14 Oct 2017 09:58:00 +0200
> From: Andreas Glaeser 
> To: enigmail-us...@enigmail.net
> 
> > andrew@a68n:~$ ate show enigmail
> > Package: enigmail
> > Version: 2:1.9.8.1-1~deb9u1
> > State: installed
> > Automatically installed: no
> > Priority: optional
> > Section: mail
> > Maintainer: Debian Mozilla Extension Maintainers
> >  Architecture: all
> > Uncompressed Size: 5,917 k
> > Depends: gnupg (>= 2) | gnupg2, gnupg-agent, thunderbird (>= 1:52.0) | 
> > icedove (>=
> >  1:52.0)
> > Recommends: pinentry-x11
> > Breaks: icedove (< 1:52.0), thunderbird (< 1:52.0)
> > Enhances: icedove, thunderbird
> > Provides: icedove-enigmail, thunderbird-enigmail, xul-ext-enigmail
> > Description: GPG support for Thunderbird and Debian Icedove
> >  OpenPGP extension for Thunderbird. Enigmail allows users to access the 
> > features
> >  provided by the popular GnuPG software from within Thunderbird. 
> >  
> >  Enigmail is capable of signing, authenticating, encrypting and decrypting 
> > email.
> >  Additionally, it supports both the inline PGP format, as well as the 
> > PGP/MIME
> >  format as described in RFC 3156.
> > Homepage: https://www.enigmail.net/
> > Tags: interface::graphical, interface::x11, mail::user-agent, role::plugin,
> >   security::authentication, security::cryptography, security::integrity,
> >   security::privacy, suite::mozilla, uitoolkit::TODO, use::checking,
> >   works-with::mail
> 
> > andrew@a68n:~$ ate show thunderbird
> > Package: thunderbird 
> > Version: 1:52.3.0-4~deb9u1
> > State: installed
> > Automatically installed: yes
> > Priority: optional
> > Section: mail
> > Maintainer: Christoph Goehre 
> > Architecture: amd64
> > Uncompressed Size: 109 M
> > Depends: debianutils (>= 1.16), fontconfig, psmisc, x11-utils, libatk1.0-0 
> > (>=
> >  1.12.4), libc6 (>= 2.17), libcairo-gobject2 (>= 1.10.0), libcairo2 
> > (>=
> >  1.10.2-2~), libdbus-1-3 (>= 1.9.14), libdbus-glib-1-2 (>= 0.78),
> >  libevent-2.0-5 (>= 2.0.10-stable), libffi6 (>= 3.0.4), 
> > libfontconfig1 (>=
> >  2.11), libfreetype6 (>= 2.2.1), libgcc1 (>= 1:4.0), 
> > libgdk-pixbuf2.0-0 (>=
> >  2.22.0), libglib2.0-0 (>= 2.31.8), libgtk-3-0 (>= 3.4), 
> > libhunspell-1.4-0,
> >  libpango-1.0-0 (>= 1.14.0), libpangocairo-1.0-0 (>= 1.14.0),
> >  libpangoft2-1.0-0 (>= 1.14.0), libpixman-1-0 (>= 0.19.6),
> >  libstartup-notification0 (>= 0.8), libstdc++6 (>= 5.2), libvpx4 
> > (>= 1.6.0),
> >  libx11-6, libx11-xcb1, libxcb-shm0, libxcb1, libxcomposite1 (>= 
> > 1:0.3-1),
> >  libxdamage1 (>= 1:1.1), libxext6, libxfixes3, libxrender1, libxt6, 
> > zlib1g
> >  (>= 1:1.2.3.4)
> > Recommends: lightning (= 1:52.3.0-4~deb9u1), myspell-en-us | 
> > hunspell-dictionary |
> > myspell-dictionary
> > Suggests: apparmor, fonts-lyx, libgssapi-krb5-2
> > Breaks: enigmail (< 2:1.9.8.1-1~), hunspell-ar (< 0.0.0+20080110-1.1), 
> > hunspell-da
> > (< 1:3.1.0-3), hunspell-de-at (< 20071211-2), hunspell-de-ch (< 
> > 20071211-2),
> > hunspell-de-de (< 20071211-2), hunspell-de-med (< 20090825-1),
> > hunspell-en-ca (< 1:3.1.0-3), hunspell-en-us (< 20070829-3), 
> > hunspell-fr (<
> > 1:3.1.0-3), hunspell-gl-es (< 2.2a-6), hunspell-hu (< 1:3.1.0-3),
> > hunspell-ko (< 0.3.3-1), hunspell-ne (< 1:3.1.0-3), hunspell-se (<
> > 1.0~beta6.20081222-1.1), hunspell-sh (< 1:3.1.0-3), hunspell-sr (<
> > 1:3.1.0-3), hunspell-uz (< 0.6-3.1), hunspell-vi (< 1:3.1.0-3), 
> > icedove (<
> > 1:45.6.0-2.1~), lightning (< 1:52.3.0-4~deb9u1), myspell-af (< 
> > 1:3.1.0-3),
> > myspell-ca (< 0.6-8), myspell-cs-cz (< 20040229-4.1), myspell-da (<
> > 1.6.18-1.1), myspell-de-at (< 20071211-2), myspell-de-ch (< 
> > 20071211-2),
> > myspell-de-de (< 20071211-2), myspell-de-de-oldspell (< 1:2-25.1),
> > myspell-el-gr (< 0.3-1.1), myspell-en-au (< 2.1-5), myspell-en-gb (<
> > 1:3.1.0-3), 

Bug#881021: deja-dup: duplicity MemoryError creating backup

[Francisco José Rodríguez Bogado]

Package: deja-dup
Version: 36.2-1
Severity: important

Dear Maintainer,

deja-dup fails with a MemoryError in `duplicity/manifest.py` when creating or
resuming a backup.

Cleaning `.cache/deja-dup` seems to be a workaround. But in the next backup, it
will fail again.

Will provide more information if needed. Maybe related to a large manifest file
(102M)?



-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.13.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=es_ES.UTF-8, LC_CTYPE=es_ES.UTF-8 (charmap=UTF-8), 
LANGUAGE=es_ES.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages deja-dup depends on:
ii  dconf-gsettings-backend [gsettings-backend]  0.26.1-1
ii  duplicity0.7.14-2
ii  libatk1.0-0  2.26.1-1
ii  libc62.24-17
ii  libglib2.0-0 2.54.2-1
ii  libgoa-1.0-0b3.26.1-1
ii  libgoa-backend-1.0-1 3.26.1-1
ii  libgtk-3-0   3.22.25-1
ii  libnautilus-extension1a  3.26.0-1
ii  libpackagekit-glib2-18   1.1.7-1
ii  libpango-1.0-0   1.40.13-1
ii  libpeas-1.0-01.22.0-1+b1
ii  libsecret-1-00.18.5-4

Versions of packages deja-dup recommends:
ii  gvfs-backends  1.34.1-1
ii  packagekit 1.1.7-1
ii  policykit-10.105-18

Versions of packages deja-dup suggests:
ii  python-boto 2.44.0-1
ii  python-cloudfiles   1.7.11-3
pn  python-swiftclient  

-- no debconf information

Bug#881020: Fwd: Enigmail is very slow to check signatures

[Andreas Glaeser]

Package: enigmail
Version: 2:1.9.8.1-1~deb9u1
Severity: minor

Dear Maintainer,

>  Forwarded Message 
> Subject: Fwd: Enigmail is very slow to check signatures
> Date: Sat, 14 Oct 2017 09:58:00 +0200
> From: Andreas Glaeser 
> To: enigmail-us...@enigmail.net
> 
> > andrew@a68n:~$ ate show enigmail
> > Package: enigmail
> > Version: 2:1.9.8.1-1~deb9u1
> > State: installed
> > Automatically installed: no
> > Priority: optional
> > Section: mail
> > Maintainer: Debian Mozilla Extension Maintainers
> >  Architecture: all
> > Uncompressed Size: 5,917 k
> > Depends: gnupg (>= 2) | gnupg2, gnupg-agent, thunderbird (>= 1:52.0) | 
> > icedove (>=
> >  1:52.0)
> > Recommends: pinentry-x11
> > Breaks: icedove (< 1:52.0), thunderbird (< 1:52.0)
> > Enhances: icedove, thunderbird
> > Provides: icedove-enigmail, thunderbird-enigmail, xul-ext-enigmail
> > Description: GPG support for Thunderbird and Debian Icedove
> >  OpenPGP extension for Thunderbird. Enigmail allows users to access the 
> > features
> >  provided by the popular GnuPG software from within Thunderbird. 
> >  
> >  Enigmail is capable of signing, authenticating, encrypting and decrypting 
> > email.
> >  Additionally, it supports both the inline PGP format, as well as the 
> > PGP/MIME
> >  format as described in RFC 3156.
> > Homepage: https://www.enigmail.net/
> > Tags: interface::graphical, interface::x11, mail::user-agent, role::plugin,
> >   security::authentication, security::cryptography, security::integrity,
> >   security::privacy, suite::mozilla, uitoolkit::TODO, use::checking,
> >   works-with::mail
> 
> > andrew@a68n:~$ ate show thunderbird
> > Package: thunderbird 
> > Version: 1:52.3.0-4~deb9u1
> > State: installed
> > Automatically installed: yes
> > Priority: optional
> > Section: mail
> > Maintainer: Christoph Goehre 
> > Architecture: amd64
> > Uncompressed Size: 109 M
> > Depends: debianutils (>= 1.16), fontconfig, psmisc, x11-utils, libatk1.0-0 
> > (>=
> >  1.12.4), libc6 (>= 2.17), libcairo-gobject2 (>= 1.10.0), libcairo2 
> > (>=
> >  1.10.2-2~), libdbus-1-3 (>= 1.9.14), libdbus-glib-1-2 (>= 0.78),
> >  libevent-2.0-5 (>= 2.0.10-stable), libffi6 (>= 3.0.4), 
> > libfontconfig1 (>=
> >  2.11), libfreetype6 (>= 2.2.1), libgcc1 (>= 1:4.0), 
> > libgdk-pixbuf2.0-0 (>=
> >  2.22.0), libglib2.0-0 (>= 2.31.8), libgtk-3-0 (>= 3.4), 
> > libhunspell-1.4-0,
> >  libpango-1.0-0 (>= 1.14.0), libpangocairo-1.0-0 (>= 1.14.0),
> >  libpangoft2-1.0-0 (>= 1.14.0), libpixman-1-0 (>= 0.19.6),
> >  libstartup-notification0 (>= 0.8), libstdc++6 (>= 5.2), libvpx4 
> > (>= 1.6.0),
> >  libx11-6, libx11-xcb1, libxcb-shm0, libxcb1, libxcomposite1 (>= 
> > 1:0.3-1),
> >  libxdamage1 (>= 1:1.1), libxext6, libxfixes3, libxrender1, libxt6, 
> > zlib1g
> >  (>= 1:1.2.3.4)
> > Recommends: lightning (= 1:52.3.0-4~deb9u1), myspell-en-us | 
> > hunspell-dictionary |
> > myspell-dictionary
> > Suggests: apparmor, fonts-lyx, libgssapi-krb5-2
> > Breaks: enigmail (< 2:1.9.8.1-1~), hunspell-ar (< 0.0.0+20080110-1.1), 
> > hunspell-da
> > (< 1:3.1.0-3), hunspell-de-at (< 20071211-2), hunspell-de-ch (< 
> > 20071211-2),
> > hunspell-de-de (< 20071211-2), hunspell-de-med (< 20090825-1),
> > hunspell-en-ca (< 1:3.1.0-3), hunspell-en-us (< 20070829-3), 
> > hunspell-fr (<
> > 1:3.1.0-3), hunspell-gl-es (< 2.2a-6), hunspell-hu (< 1:3.1.0-3),
> > hunspell-ko (< 0.3.3-1), hunspell-ne (< 1:3.1.0-3), hunspell-se (<
> > 1.0~beta6.20081222-1.1), hunspell-sh (< 1:3.1.0-3), hunspell-sr (<
> > 1:3.1.0-3), hunspell-uz (< 0.6-3.1), hunspell-vi (< 1:3.1.0-3), 
> > icedove (<
> > 1:45.6.0-2.1~), lightning (< 1:52.3.0-4~deb9u1), myspell-af (< 
> > 1:3.1.0-3),
> > myspell-ca (< 0.6-8), myspell-cs-cz (< 20040229-4.1), myspell-da (<
> > 1.6.18-1.1), myspell-de-at (< 20071211-2), myspell-de-ch (< 
> > 20071211-2),
> > myspell-de-de (< 20071211-2), myspell-de-de-oldspell (< 1:2-25.1),
> > myspell-el-gr (< 0.3-1.1), myspell-en-au (< 2.1-5), myspell-en-gb (<
> > 1:3.1.0-3), myspell-en-us (< 1:3.1.0-3), myspell-en-za (< 
> > 1:3.1.0-3),
> > myspell-eo (< 2.1.2000.02.25-41), myspell-es (< 1.10-7), myspell-et 
> > (<
> > 1:20030606-12.1), myspell-fa (< 0.20070816-2), myspell-fi (< 
> > 0.7-17.2),
> > myspell-fo (< 0.2.36-3), myspell-fr (< 1.4-25), myspell-fr-gut (<
> > 1:1.0-26.1), myspell-ga (< 2.0-19), myspell-gd (< 0.50-7), 
> > myspell-gv (<
> > 0.50-8), myspell-hr (< 20060617-2), myspell-hu (< 0.99.4-1.2), 
> > myspell-hy (<
> > 0.10.1-1.1), myspell-it (< 1:3.1.0-3), myspell-ku (< 0.20.0-1.1), 
> > myspell-lv
> > (< 0.7.3-3.1), myspell-nb (< 2.0.10-3.1), 

Bug#881019: ffmpeg2theora: null pointer dereference while running ffmpeg2theora with "poc" option

[Joonun Jang]

Package: ffmpeg2theora
Version: 0.30-1+b2
Severity: normal
Tags: security

null pointer dereference while running ffmpeg2theora with "poc" option

Running 'ffmpeg2theora poc' with the attached file raises null pointer 
dereference
which may allow a remote attack to cause a denial-of-service attack
I expected the program to terminate without segfault, but the program crashes 
as follow

---

june@yuweol:~/poc/ffmpeg2theora/crash1$ ffmpeg2theora poc
[lrc @ 0x558a4a3b6840] Format lrc detected only with low score of 5, 
misdetection possible!
Input #0, lrc, from 'poc':
  Duration: N/A, bitrate: N/A
Stream #0:0: Subtitle: text
Segmentation fault

---

Program received signal SIGSEGV, Segmentation fault.
0x55565b8f in ?? ()
(gdb) bt
#0  0x55565b8f in ?? ()
#1  0xc8da in main ()
(gdb) x/i $rip
=> 0x55565b8f:  mov0x8(%rax),%rdi
(gdb) i r rax
rax0x0  0

---

This bug was found with a fuzzer developed by 'SoftSec' group at KAIST.

-- System Information:
Debian Release: buster/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'testing-debug'), (500, 
'stable-updates'), (500, 'testing'), (500, 'stable'), (1, 'experimental-debug')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-3-amd64 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages ffmpeg2theora depends on:
ii  libavcodec577:3.3.4-2+b2
ii  libavdevice57   7:3.3.4-2+b2
ii  libavfilter67:3.3.4-2+b2
ii  libavformat57   7:3.3.4-2+b2
ii  libavutil55 7:3.3.4-2+b2
ii  libc6   2.24-17
ii  libkate10.4.1-7+b1
ii  libogg0 1.3.2-1+b1
ii  liboggkate1 0.4.1-7+b1
ii  libpostproc54   7:3.3.4-2+b2
ii  libswresample2  7:3.3.4-2+b2
ii  libswscale4 7:3.3.4-2+b2
ii  libtheora0  1.1.1+dfsg.1-14+b1
ii  libvorbis0a 1.3.5-4
ii  libvorbisenc2   1.3.5-4

ffmpeg2theora recommends no packages.

ffmpeg2theora suggests no packages.

-- no debconf information


poc
Description: Binary data

Bug#878722: bts reassign 878722 partman-auto

[Cyril Brulebois]

Hi Michael,

Michael Kesper  (2017-11-06):
> I think this bug is specific to partman-auto.
> Partman should allow rescanning devices and recognize NVMe devices when
> preconfigured with /dev/sda.
> Alternatively, there should be an installation target "largest disk" or
> something similar.

I'm not sure hardcoding /dev/sda as the target device is right when all you
have is NVMe… Don't feed wrong info through preseed in the first place?

Also, “largest disk” doesn't seem too good an idea, as evidenced here:
  https://lists.debian.org/debian-boot/2017/11/msg00028.html


KiBi.


signature.asc
Description: PGP signature

Bug#881018: cegui-mk2: FTBFS with xerces-c3.2

[William Blough]

Source: cegui-mk2
Version: 0.8.7-1.3
Severity: normal
Tags: patch


xerces-c will be transitioning from 3.1 to 3.2 soon.  However, cegui-mk2
fails to build when built against libcerces-c3.2.

Patch attached.
diff -Nuar cegui-mk2-0.8.7/debian/control cegui-mk2-0.8.7_modified/debian/control
--- cegui-mk2-0.8.7/debian/control	2016-08-21 11:48:42.0 -0400
+++ cegui-mk2-0.8.7_modified/debian/control	2017-11-07 00:20:08.832430196 -0500
@@ -59,7 +59,7 @@
 Architecture: any
 Suggests: libcegui-mk2-0.8.7-doc
 Depends: ${shlibs:Depends}, ${misc:Depends}, libcegui-mk2-0.8.7 (= ${binary:Version}),
- libdevil-dev, libxerces-c3.1, libpng-dev,
+ libdevil-dev, libxerces-c3.2, libpng-dev,
  libtiff5-dev | libtiff-dev, libjpeg-dev, libmng-dev,
  zlib1g-dev | libz-dev, libfreetype6-dev, lua-expat-dev, liblcms2-dev,
  libpcre3-dev, libfreeimage-dev, ${python:Depends}
diff -Nuar cegui-mk2-0.8.7/debian/patches/series cegui-mk2-0.8.7_modified/debian/patches/series
--- cegui-mk2-0.8.7/debian/patches/series	2016-08-21 11:48:42.0 -0400
+++ cegui-mk2-0.8.7_modified/debian/patches/series	2017-11-06 21:23:34.461148759 -0500
@@ -1,3 +1,4 @@
 doxygenout
 cmakelistchanges
 SimpleTimer_kfreebsd
+xerces32_changes
diff -Nuar cegui-mk2-0.8.7/debian/patches/xerces32_changes cegui-mk2-0.8.7_modified/debian/patches/xerces32_changes
--- cegui-mk2-0.8.7/debian/patches/xerces32_changes	1969-12-31 19:00:00.0 -0500
+++ cegui-mk2-0.8.7_modified/debian/patches/xerces32_changes	2017-11-06 22:31:10.738418876 -0500
@@ -0,0 +1,33 @@
+--- a/CMakeLists.txt
 b/CMakeLists.txt
+@@ -72,7 +72,7 @@ endif()
+ 
+ if ((CMAKE_CXX_COMPILER_ID STREQUAL "GNU") OR (CMAKE_CXX_COMPILER_ID STREQUAL "Clang"))
+ set (CMAKE_C_FLAGS "${CMAKE_C_FLAGS} -std=c99")
+-set (CMAKE_CXX_FLAGS "${CMAKE_CXX_FLAGS} -std=c++03")
++set (CMAKE_CXX_FLAGS "${CMAKE_CXX_FLAGS} -std=c++11")
+ elseif (NOT CMAKE_VERSION VERSION_LESS "3.1")
+ set (CMAKE_C_STANDARD_REQUIRED TRUE)
+ set (CMAKE_C_STANDARD "99")
+--- a/cegui/src/XMLParserModules/TinyXML/XMLParser.cpp
 b/cegui/src/XMLParserModules/TinyXML/XMLParser.cpp
+@@ -130,7 +130,7 @@ namespace CEGUI
+ processElement(childNode->ToElement());
+ break;
+ case TiXmlNode::CEGUI_TINYXML_TEXT:
+-if (childNode->ToText()->Value() != '\0')
++if (childNode->ToText()->Value() != nullptr)
+ d_handler->text((encoded_char*)childNode->ToText()->Value());
+ break;
+ 
+--- a/cegui/src/XMLParserModules/RapidXML/XMLParser.cpp
 b/cegui/src/XMLParserModules/RapidXML/XMLParser.cpp
+@@ -144,7 +144,7 @@ void RapidXMLDocument::processElement(co
+ break;
+ 
+ case rapidxml::node_data:
+-if (childNode->value() != '\0')
++if (childNode->value() != nullptr)
+ d_handler->text(
+ reinterpret_cast(childNode->value()));
+ 

Bug#876735: Bug#880775: mldonkey build depends on removed libgd2*-dev provides

[Ralf Treinen]

On Sun, Nov 05, 2017 at 11:45:11PM +0200, Adrian Bunk wrote:
> On Sun, Nov 05, 2017 at 10:05:19PM +0100, Ralf Treinen wrote:

> > Thanks, pushed to git, but not uploaded since we still have another FTBFS
> > (#876735).
> 
> #876735 seems fixed in 3.1.6-0ubuntu1, so upgrading to 3.1.6 is likely
> the solution for that.

Ah thanks, I didn't see this since mldonkey moved to github since the
last release.

-Ralf.

Bug#881017: haskell-werewolf: Please update aeson build-dependency

[Steve Langasek]

Package: haskell-werewolf
Version: 1.5.1.1-7
Severity: serious
Tags: patch
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu bionic ubuntu-patch

Hello,

There is a new version of aeson in unstable again, and haskell-werewolf
fails to build because of a << versioned build-dep.

The attached patch bumps the cap on the aeson build-dep, and the package
builds successfully with this change.

-- 
Steve Langasek   Give me a lever long enough and a Free OS
Debian Developer   to set it on, and I can move the world.
Ubuntu Developerhttp://www.debian.org/
slanga...@ubuntu.com vor...@debian.org
diff -Nru haskell-werewolf-1.5.1.1/debian/control 
haskell-werewolf-1.5.1.1/debian/control
--- haskell-werewolf-1.5.1.1/debian/control 2017-11-05 20:49:12.0 
-0800
+++ haskell-werewolf-1.5.1.1/debian/control 2017-11-06 22:50:27.0 
-0800
@@ -11,7 +11,7 @@
  ghc-prof,
  haskell-devscripts (>= 0.13),
  libghc-aeson-dev (>= 0.8),
- libghc-aeson-dev (<< 1.1),
+ libghc-aeson-dev (<< 1.2),
  libghc-aeson-prof,
  libghc-extra-dev (>= 1.4),
  libghc-extra-dev (<< 1.6),
diff -Nru haskell-werewolf-1.5.1.1/debian/patches/newer-aeson-and-lens 
haskell-werewolf-1.5.1.1/debian/patches/newer-aeson-and-lens
--- haskell-werewolf-1.5.1.1/debian/patches/newer-aeson-and-lens
2017-07-19 15:43:04.0 -0700
+++ haskell-werewolf-1.5.1.1/debian/patches/newer-aeson-and-lens
2017-11-06 21:57:48.0 -0800
@@ -1,11 +1,13 @@
 a/werewolf.cabal
-+++ b/werewolf.cabal
+Index: haskell-werewolf-1.5.1.1/werewolf.cabal
+===
+--- haskell-werewolf-1.5.1.1.orig/werewolf.cabal
 haskell-werewolf-1.5.1.1/werewolf.cabal
 @@ -349,13 +349,13 @@
  QuasiQuotes,
  Rank2Types
  build-depends:
 -aeson >= 0.8 && < 0.12,
-+aeson >= 0.8 && < 1.1,
++aeson >= 0.8 && < 1.2,
  base >= 4.8 && < 5,
  containers == 0.5.*,
  directory > 1.2,
@@ -21,7 +23,7 @@
  TemplateHaskell
  build-depends:
 -aeson >= 0.8 && < 0.12,
-+aeson >= 0.8 && < 1.1,
++aeson >= 0.8 && < 1.2,
  base >= 4.8 && < 5,
  containers == 0.5.*,
  extra >= 1.4 && < 1.6,
@@ -31,8 +33,10 @@
  mtl == 2.2.*,
  template-haskell >= 2.10 && < 2.12,
  text == 1.2.*,
 a/src/Game/Werewolf/Game.hs
-+++ b/src/Game/Werewolf/Game.hs
+Index: haskell-werewolf-1.5.1.1/src/Game/Werewolf/Game.hs
+===
+--- haskell-werewolf-1.5.1.1.orig/src/Game/Werewolf/Game.hs
 haskell-werewolf-1.5.1.1/src/Game/Werewolf/Game.hs
 @@ -131,7 +131,7 @@
  makePrisms ''Stage
  

Bug#649106: syncid 'fix' breaks state sync in init script completely

[Christian Balzer]

Hello,

sorry for the bug necromancy, but this clearly has not been fixed in 1.26
or another regression happened later.

The patch was obviously half (manually?) applied and the current
initscript in 1:1.28-3+b1 has the -"-syncid" statement TWICE in the start
invocations, the first incarnation before "--start-daemon" needs to be
removed.

I've been using LVS/ipvsadm for really long time and not once in over 4
releases has a Debian start script worked out of the box for people using
the daemons.

Would be nice to get this fixed once and for all.

Christian
-- 
Christian BalzerNetwork/Systems Engineer
ch...@gol.com   Rakuten Communications

Bug#881015: Massive memory leak in ksmserver

[Julien Aubin]

Package: plasma-workspace
Version: 4:5.8.6-2.1
Severity: important

Hi,

I've remarked that since latest update of Debian (9.2) ksmserver is
affected by
a massive memory leak. Over one week running it is eating 10 GB of RAM and
things are getting up and up. A restart of the KDE session temporarily fixes
the issue.

My system :
Debian 9.2 / AMD64
KDE
Intel Core i7 4970
32 GB RAM
NVidia GeForce GTX 1070 w/ blob 375.82

Could you please fix it ? Thanks a lot !



-- System Information:
Debian Release: 9.2
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-4-amd64 (SMP w/8 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8), LANGUAGE=
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages plasma-workspace depends on:
ii  dbus-x11 1.10.22-0+deb9u1
ii  frameworkintegration 5.28.0-1
ii  gdb  7.12-6
ii  iso-codes3.75-1
ii  kactivitymanagerd5.8.4-1
ii  kde-cli-tools4:5.8.4-2
ii  kded55.28.0-1
ii  kinit5.28.0-1
ii  kio  5.28.0-2
ii  kpackagetool55.28.1-1
ii  libc62.24-11+deb9u1
ii  libcln6  1.3.4-2+b1
ii  libdbusmenu-qt5-20.9.3+16.04.20160218-1
ii  libgcc1  1:6.3.0-18
ii  libgps22 3.16-4
ii  libice6  2:1.0.9-2
ii  libkf5activities55.28.0-1
ii  libkf5auth5  5.28.0-2
ii  libkf5baloo5 5.28.0-2
ii  libkf5bookmarks5 5.28.0-1
ii  libkf5calendarevents55.28.0-1
ii  libkf5completion55.28.0-1
ii  libkf5configcore55.28.0-2
ii  libkf5configgui5 5.28.0-2
ii  libkf5configwidgets5 5.28.0-2
ii  libkf5coreaddons55.28.0-2
ii  libkf5crash5 5.28.0-1
ii  libkf5dbusaddons55.28.0-1
ii  libkf5declarative5   5.28.0-1
ii  libkf5globalaccel-bin5.28.0-1
ii  libkf5globalaccel5   5.28.0-1
ii  libkf5guiaddons5 5.28.0-1
ii  libkf5holidays5  16.04.2-1
ii  libkf5i18n5  5.28.0-2
ii  libkf5iconthemes55.28.0-2
ii  libkf5idletime5  5.28.0-1
ii  libkf5itemviews5 5.28.0-1
ii  libkf5jobwidgets55.28.0-2
ii  libkf5js55.28.0-1
ii  libkf5jsembed5   5.28.0-1
ii  libkf5kdelibs4support5   5.28.0-1
ii  libkf5kiocore5   5.28.0-2
ii  libkf5kiofilewidgets55.28.0-2
ii  libkf5kiowidgets55.28.0-2
ii  libkf5networkmanagerqt6  5.28.0-2
ii  libkf5newstuff5  5.28.0-1
ii  libkf5notifications5 5.28.0-1
ii  libkf5notifyconfig5  5.28.0-1
ii  libkf5package5   5.28.1-1
ii  libkf5plasma55.28.0-2
ii  libkf5plasmaquick5   5.28.0-2
ii  libkf5quickaddons5   5.28.0-1
ii  libkf5runner55.28.0-1
ii  libkf5service-bin5.28.0-1
ii  libkf5service5   5.28.0-1
ii  libkf5solid5 5.28.0-3
ii  libkf5texteditor55.28.0-2
ii  libkf5textwidgets5   5.28.0-1
ii  libkf5wallet-bin 5.28.0-3
ii  libkf5wallet55.28.0-3
ii  libkf5waylandclient5 4:5.28.0-1
ii  libkf5widgetsaddons5 5.28.0-3
ii  libkf5windowsystem5  5.28.0-2
ii  libkf5xmlgui55.28.0-1
ii  libkf5xmlrpcclient5  5.28.0-1
ii  libkscreenlocker55.8.6-2
ii  libksgrd74:5.8.4-1
ii  libkworkspace5-5 4:5.8.6-2.1
ii  libphonon4qt5-4  4:4.9.0-4
ii  libplasma-geolocation-interface5 4:5.8.6-2.1
ii  libprocesscore7  4:5.8.4-1
ii  libprocessui74:5.8.4-1
ii  libqalculate5v5  0.9.7-9.2
ii  libqt5core5a 5.7.1+dfsg-3+b1
ii  libqt5dbus5   

Bug#880949: closed by Gianfranco Costamagna <locutusofb...@debian.org> (Re: Bug#880949: no progress information or stats)

[Eduard Bloch]

reopen 880949
severity 880949 wishlist
retitle 880949 No useful information printing in dry-run mode
tags + upstream

Hallo,
* Debian Bug Tracking System [Mon, Nov 06 2017, 02:45:09PM]:

> > If you want an indication of progress you should use -p or --progress. 
> > Alternatively, you could use --list to list files and directories as it 
> > processes them (which can be filtered with --filter).
> > 
> > It seems that the dry-run option doesn't generate process the files, so 
> > can't generate any statistics ( 
> > https://github.com/borgbackup/borg/issues/265 )
> > 
> > Regards,
> > 
> > Martin Stone
> > 
> > 
> 
> seems not a bug then?
> 
> closing, feel free to reopen in case

Seeming vs. believing...

The very minimum resolution that I would consider polite is documenting
this limitation properly so other people are not trapped anymore and
waste their time on that.

Regards,
Eduard.


signature.asc
Description: PGP signature

Bug#881014: vulkan-utils: upstream adapted Apache-2.0 but debian/copyright wrongly says it's MIT

[Kai Noda]

Package: vulkan-utils
Version: 1.0.61.1+dfsg1-1
Severity: serious
Justification: 1

Compare
https://anonscm.debian.org/cgit/pkg-xorg/lib/vulkan.git/tree/debian/copyright
with
https://anonscm.debian.org/cgit/pkg-xorg/lib/vulkan.git/tree/COPYRIGHT.txt
(and
https://anonscm.debian.org/cgit/pkg-xorg/lib/vulkan.git/tree/LICENSE.txt
)

-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.13.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=ja_JP.UTF-8, LC_CTYPE=ja_JP.UTF-8 (charmap=UTF-8),
LANGUAGE=ja_JP.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages vulkan-utils depends on:
ii  libc6   2.24-17
ii  libgcc1 1:7.2.0-12
ii  libstdc++6  7.2.0-12
ii  libvulkan1  1.0.61.1+dfsg1-1
ii  libxcb1 1.12-1

vulkan-utils recommends no packages.

vulkan-utils suggests no packages.

-- no debconf information

Bug#880917: cross-gcc-dev: gcc-8/0008-g-include-directories-functional-again.patch: broken patch

[Dima Kogan]

Wookey  writes:

>> Hi Dima and Wookey,
>>
>> gcc-8/0008-g-include-directories-functional-again.patch has two hunks.
>> The first of the modifies a hunk header of g++-multiarch-incdir.diff.
>> That modification turns g++-multiarch-incdir.diff into a broken patch.
>> The first hunk should be removed.
>
> OK. Done. Seems to build a cross-gcc-8 OK
>
> The patch is attached.
>
> Not sure where the offical git repo is, so I've not attempted to
> update that, just the actual package in the archive.

Thanks for taking care of it. I need a few days to integrate it into the
repo.

Bug#880917: cross-gcc-dev: gcc-8/0008-g-include-directories-functional-again.patch: broken patch

[Wookey]

On 2017-11-05 17:40 +0100, Helmut Grohne wrote:
> Package: cross-gcc-dev
> Version: 154
> Tags: patch
> User: helm...@debian.org
> Usertags: rebootstrap
> 
> Hi Dima and Wookey,
> 
> gcc-8/0008-g-include-directories-functional-again.patch has two hunks.
> The first of the modifies a hunk header of g++-multiarch-incdir.diff.
> That modification turns g++-multiarch-incdir.diff into a broken patch.
> The first hunk should be removed.

OK. Done. Seems to build a cross-gcc-8 OK

The patch is attached. 

Not sure where the offical git repo is, so I've not attempted to
update that, just the actual package in the archive.


Wookey
-- 
Principal hats:  Linaro, Debian, Wookware, ARM
http://wookware.org/
diff -Nru cross-gcc-154/debian/changelog cross-gcc-155/debian/changelog
--- cross-gcc-154/debian/changelog	2017-10-27 06:54:25.0 +0100
+++ cross-gcc-155/debian/changelog	2017-11-07 03:54:51.0 +
@@ -1,3 +1,9 @@
+cross-gcc (155) unstable; urgency=medium
+
+  * Fix corrupting gcc8 patch-patch (Closes: #880917)
+
+ -- Wookey   Tue, 07 Nov 2017 02:59:16 +
+
 cross-gcc (154) unstable; urgency=medium
 
   * rebuild for 8-20171023-1
diff -Nru cross-gcc-154/patches/gcc-8/0008-g-include-directories-functional-again.patch cross-gcc-155/patches/gcc-8/0008-g-include-directories-functional-again.patch
--- cross-gcc-154/patches/gcc-8/0008-g-include-directories-functional-again.patch	2017-10-27 06:54:25.0 +0100
+++ cross-gcc-155/patches/gcc-8/0008-g-include-directories-functional-again.patch	2017-11-07 03:51:40.0 +
@@ -19,15 +19,6 @@
 index dbd9b6e..583373a 100644
 --- a/debian/patches/g++-multiarch-incdir.diff
 +++ b/debian/patches/g++-multiarch-incdir.diff
-@@ -99,7 +99,7 @@ Index: b/src/gcc/incpath.c
-  		}
-  		  add_path (str, INC_SYSTEM, p->cxx_aware, false);
-  		}
--@@ -223,7 +235,16 @@ add_standard_paths (const char *sysroot,
-+@@ -223,7 +235,45 @@ add_standard_paths (const char *sysroot,
-  		  free (str);
-  		  continue;
-  		}
 @@ -117,3 +117,32 @@ Index: b/src/gcc/incpath.c
   	}
   


signature.asc
Description: PGP signature

Bug#880951: transition: armadillo

[Emilio Pozuelo Monfort]

Control: tags -1 confirmed

On 06/11/17 00:37, Kumar Appaiah wrote:
> Package: release.debian.org
> Severity: normal
> User: release.debian@packages.debian.org
> Usertags: transition
> 
> Dear Release Team,
> 
> Please help me effect a transision of armadillo to unstable. All
> reverse dependencies should build fine, based on my tests.

Please go ahead and upload armadillo to unstable.

Cheers,
Emilio

Bug#881012: dput: upload rate no longer slowed by trickle

[Michael Gilbert]

package: dput
version: 1.0.1
severity: normal

This command used to slow my upload rate to 10 KiB/s.

$ trickle -s -u 10 dput package.changes

After the upload of dput 1.0.1, the same command no longer causes any
slow down.  Downgrading dput to 0.12.1 from stretch restores the
previous behavior.

Best wishes,
Mike

Bug#881013: zfs-dkms should depend on matching version of spl-dkms to avoid breakage

[Jason Cohen]

Package: zfs-dkms
Version: 0.7.3-1
Severity: important

Dear Maintainer,

Thank you for the recent zfs/spl 0.7.3-1 upload.  It was greatly appreciated!
However, there appears to be a potential issue with the dependencies of the
zfs-dkms package.  zfs-dkms 0.6.5.11-1 depends on spl-dkms >= 0.6.5.11.  This
is fine when the versions in the repository match, but this is not necessarily
the case. The ZFS kernel modules will not build successfully if SPL and ZFS are
running different versions.

When SPL/ZFS 0.7.3-1 was uploaded to unstable, spl-dkms migrated immediately
but zfs-dkms was delayed as it had to be manually approved from the NEW queue.
Because zfs-dkms 0.6.5.11-1 doesn't depend on the specific matching version of
spl-dkms, but rather will accept a newer version, users on Testing are now
being offered to upgrade to spl-dkms 0.7.3-1, but if they do so, ZFS will break
as DKMS will not be able to build a new ZFS module with the mismatched SPL and
ZFS packages.  At least one user already reported such breakage on Reddit's
/r/debian channel[1].

This situation is likely to continue until Bug #880902 is resolved, as that bug
will prevent zfs-dkms 0.7.3-1 from migrating to testing.

Presumably, this would not have occurred if zfs-dkms 0.6.5.11-1 depended on
spl-dkms=0.6.5.11 rather than >=0.6.5.11.

   * What led up to the situation?

spl-dkms 0.7.3-1 migrated to testing while zfs-dkms 0.7.3-1 did not.  While SPL
and ZFS versions much match to successfully build the ZFS kernel module, zfs-
dkms only requires the same *or higher* version.


   * What exactly did you do (or not do) that was effective (or
 ineffective)?

This can be resolved by holding spl-dkms to 0.6.5.11-1 or manually installing
zfs-dkms 0.7.3-1 from unstable.  My concern is that users may not realize WHY
ZFS has broken.

   * What was the outcome of this action?

The outcome of the spl-dkms upgrade is that ZFS is rendered unuseable unless
one of the mitigations is used.

   * What outcome did you expect instead?

I expected spl-dkms to be held at its current state until the necessary version
of zfs-dkms was available.

[1]:
https://www.reddit.com/r/debian/comments/7b7wy7/does_spl_and_spldkms_have_to_be_the_same_version/



-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (900, 'testing'), (800, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages zfs-dkms depends on:
ii  debconf [debconf-2.0]  1.5.64
ii  dkms   2.3-3
ii  lsb-release9.20170808
ii  spl-dkms   0.7.3-1

Versions of packages zfs-dkms recommends:
ii  zfs-zed 0.7.3-1
ii  zfsutils-linux  0.7.3-1

zfs-dkms suggests no packages.

-- debconf information:
  zfs-dkms/stop-build-for-32bit-kernel: true
* zfs-dkms/note-incompatible-licenses:
  zfs-dkms/stop-build-for-unknown-kernel: true

Bug#881011: Add support for -q (quiet) and -o -

[Wakko Warner]

Package: p0f
Version: 3.09b
Severity: wishlist
Tags: patch

I like the output of the log file, but I don't like the normal output as it's
too long.  This patch was against 3.06b but should apply to 3.09b.

Option -q causes the output to be mostly quiet.  There is some output.
Option -o has been enhanced to allow - as the name to indicate stdout.

I wrote this for myself and documentation was not important so the changes
weren't documented anywhere, thus also not in the patch.

If there is interest, I can add the documentation.
--- p0f.c	2012-09-30 00:44:27.0 -0400
+++ /home/wakko/p0f-3.06b/p0f.c	2012-11-05 19:35:20.028244647 -0500
@@ -1,5 +1,6 @@
 /*
-   p0f - main entry point and all the pcap / unix socket innards
+   p0f - main
+entry point and all the pcap / unix socket innards
-
 
Copyright (C) 2012 by Michal Zalewski 
@@ -93,6 +94,8 @@
 u8 daemon_mode; /* Running in daemon mode?*/
 
 static u8 set_promisc;  /* Use promiscuous mode?  */
+
+static u8 set_quiet;/* Don't output anything.  Use -o to log */
  
 static pcap_t *pt;  /* PCAP capture thingy*/
 
@@ -217,7 +220,10 @@
 static void open_log(void) {
 
   struct stat st;
-  s32 log_fd;
+  s32 log_fd = -1;
+
+  if (log_file && log_file[0] == '-' && log_file[1] == 0)
+goto lf_open;
 
   log_fd = open((char*)log_file, O_WRONLY | O_APPEND | O_NOFOLLOW | O_LARGEFILE);
 
@@ -241,11 +247,21 @@
   if (flock(log_fd, LOCK_EX | LOCK_NB))
 FATAL("'%s' is being used by another process.", log_file);
 
-  lf = fdopen(log_fd, "a");
-
-  if (!lf) FATAL("fdopen() on '%s' failed.", log_file);
-
-  SAYF("[+] Log file '%s' opened for writing.\n", log_file);
+lf_open:
+  lf = (log_fd == -1) ?
+	fdopen(1, "w") :
+	fdopen(log_fd, "a");
+
+  if (!lf)
+  	FATAL("fdopen() on '%s' failed.",
+  	(int)log_fd == -1 ? 
+  	"stdout" :
+  	(char *)log_file);
+
+  if (log_fd == -1)
+SAYF("[+] Log file using stdout for writing.\n");
+  else
+SAYF("[+] Log file '%s' opened for writing.\n", log_file);
 
 }
 
@@ -311,7 +327,7 @@
 
   if (obs_fields) FATAL("Premature end of observation.");
 
-  if (!daemon_mode) {
+  if (!daemon_mode && !set_quiet) {
 
 SAYF(".-[ %s/%u -> ", addr_to_str(f->client->addr, f->client->ip_ver),
  f->cli_port);
@@ -353,7 +369,7 @@
 
   if (!obs_fields) FATAL("Unexpected observation field ('%s').", key);
 
-  if (!daemon_mode)
+  if (!daemon_mode && !set_quiet)
 SAYF("| %-8s = %s\n", key, value ? value : (u8*)"???");
 
   if (log_file) LOGF("|%s=%s", key, value ? value : (u8*)"???");
@@ -362,7 +378,7 @@
 
   if (!obs_fields) {
 
-if (!daemon_mode) SAYF("|\n`\n\n");
+if (!daemon_mode && !set_quiet) SAYF("|\n`\n\n");
 
 if (log_file) LOGF("\n");
 
@@ -1022,7 +1038,7 @@
   if (getuid() != geteuid())
 FATAL("Please don't make me setuid. See README for more.\n");
 
-  while ((r = getopt(argc, argv, "+LS:df:i:m:o:pr:s:t:u:")) != -1) switch (r) {
+  while ((r = getopt(argc, argv, "+LS:df:i:m:o:pr:qs:t:u:")) != -1) switch (r) {
 
 case 'L':
 
@@ -1104,6 +1120,10 @@
   set_promisc = 1;
   break;
 
+case 'q':
+  set_quiet = 1;
+  break;
+
 case 'r':
 
   if (read_file)
@@ -1168,6 +1188,13 @@
   if (!api_sock && api_max_conn != API_MAX_CONN)
 FATAL("Option -S makes sense only with -s.");
 
+  if (set_quiet) {
+if (daemon_mode)
+  FATAL("Daemon mode is already quiet");
+if (!log_file)
+  FATAL("Quiet requires a log file");
+  }
+
   if (daemon_mode) {
 
 if (read_file)

Bug#877168: transition: ldc

[Matthias Klumpp]

Hi!

2017-10-04 13:36 GMT+02:00 Matthias Klumpp :
> 2017-10-04 9:39 GMT+02:00 Emilio Pozuelo Monfort :
>> [...]
> Thank you!
> Both issues are reported upstream:
> ppc64el: https://github.com/ldc-developers/ldc/issues/2356
> sambamba assert: https://github.com/ldc-developers/ldc/issues/2357

Just a quick heads up: There is a new version of LDC soon in unstable
that will fix at least the Sambamba issue, and maybe (hopefully?) also
the ppc64el issue.
This will restart this transition though - unstable ABIs are a lot of fun...

Cheers,
Matthias

-- 
I welcome VSRE emails. See http://vsre.info/

Bug#881010: kopanocore: drop versioned php-dev build-dependency

[Nishanth Aravamudan]

Package: kopanocore
Version: 8.3.4-4
Severity: normal
Tags: patch
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu bionic ubuntu-patch

Dear Maintainer,

Much like the changes in recent kopanocore uploads for the binary
dependencies, the build-dependencies do not need to be versioned.

Thanks for considering the patch.

*** /tmp/tmpezTwhs/kopanocore_8.3.4-4ubuntu1.debdiff
diff -Nru kopanocore-8.3.4/debian/control kopanocore-8.3.4/debian/control
--- kopanocore-8.3.4/debian/control 2017-10-19 11:39:05.0 -0700
+++ kopanocore-8.3.4/debian/control 2017-11-06 16:07:00.0 -0800
@@ -34,7 +34,7 @@
  libvmime-dev (>= 0.9.2-4),
  libxml2-dev,
  m4,
- php7.0-dev,
+ php-dev,
  pkg-config (>= 0.18),
  python-dev,
  swig,


-- System Information:
Debian Release: stretch/sid
  APT prefers artful-updates
  APT policy: (500, 'artful-updates'), (500, 'artful-security'), (500, 'artful')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.13.0-16-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

-- 
Nishanth Aravamudan
Ubuntu Server
Canonical Ltd

Bug#832716: [Pkg-xmpp-devel] Bug#832716: strophejs: Please package new version, update Homepage

[Marcelo Jorge Vieira]

Hi W. Martin Borgert ,

On Mon, 2017-11-06 at 18:49 +0100, W. Martin Borgert wrote:
> Please consider updating the package.
> Upstream is now at version 1.2.14 of 2017-06-17,
> i.e. the Debian package is 3.5 years old.
> The new version has ~35 upstream bugs fixed and many features added.
> See https://github.com/strophe/strophejs/releases

Sorry for the late reply...

I'll pack the newer StropheJS package soon, thanks.


Cheers,

-- 
Marcelo Jorge Vieira
xmpp:me...@jabber-br.org
http://metaldot.alucinados.com

signature.asc
Description: This is a digitally signed message part

Bug#880551: xterm: corrections to man page

[Thomas Dickey]

On Mon, Nov 06, 2017 at 10:41:25AM -0500, G. Branden Robinson wrote:
> At 2017-11-05T15:11:13-0500, Thomas Dickey wrote:
> > On Thu, Nov 02, 2017 at 02:20:54AM -0400, G. Branden Robinson wrote:
> > > 10. Remove boldfacing from portions of code examples; these escapes
> > > changed the font family back to Times from Courier.  If this change
> > > is unacceptable, I can come up with one that will stay within the
> > > Courier family, but it will only work for groff.  I don't know of
> > > a portable way to do what I think is desired here.
> > 
> > This is a problem, since I'm using the boldface to guide
> > a script which generates the hyperlinks here:
> > 
> > https://invisible-island.net/xterm/manpage/xterm.html
> > 
> > The \fP's should have done what was needed to restore the font-family...
> 
> Ah.  I'll revert that part for my next patch submission, than.

thanks :-)
 
fwiw, I wrote a script yesterday which compares the copies of the
macros with a reference version (thinking of ncurses).

> I think the problem comes down to restoring font style versus restoring
> for family _and_ style.
> 
> A distinction without a difference on the Graphic Systems CAT with only
> 4 positions and that was it...
> 
> -- 
> Regards,
> Branden



-- 
Thomas E. Dickey 
https://invisible-island.net
ftp://ftp.invisible-island.net


signature.asc
Description: Digital signature

Bug#876501: Possible patch

[Eric Van Buggenhaut]

Is the bug related to

https://cgit.freedesktop.org/xorg/xserver/commit/?id=21eda7464d0e13ac6558edaf6531c3d3251e05df

A possible patch would then be:

diff --git a/hw/dmx/dmxsync.c b/hw/dmx/dmxsync.c
index 1bc2423..b55c9dd 100644
--- a/hw/dmx/dmxsync.c
+++ b/hw/dmx/dmxsync.c
@@ -182,7 +182,7 @@ dmxSync(DMXScreenInfo * dmxScreen, Bool now)
/* Do sync or set time for later */
if (now || !dmxScreen) {
- if (!TimerForce(dmxSyncTimer))
+ if (dmxSyncTimer == NULL || !TimerForce(dmxSyncTimer))
dmxSyncCallback(NULL, 0, NULL);
/* At this point, dmxSyncPending == 0 because
* dmxSyncCallback must have been called. */

-- 
Eric

Bug#568359: (no subject)

[Javier Fernandez-Sanguino]

Control: tag -1 + pending


I have applied a modified version of the patches provided to this bug
report to the git repository.

Javier

Bug#816186: startpar: fix cross-build

[Manuel A. Fernandez Montecelo]

Control: tags -1 + pending
Control: tags 794138 + pending
Control: tags 869350 + pending

Hi,

2016-02-28 16:28 Helmut Grohne:

Control: tags -1 + patch

Hi Samuel,

On Sun, Feb 28, 2016 at 03:04:23PM +0100, Samuel Thibault wrote:

startpar can be fixed to cross-build fine, please see attached patch
which defines CC as appropriate.


Your patch has two little problems.
* It relies on building under dpkg-buildpackage. Policy still allows
  building by invoking ./debian/rules directly and then
  DEB_HOST_GNU_TYPE may be unset.
* Your patch unconditionally overwrites CC and thus breaks e.g.
  CC=clang dpkg-buildpackage. Note that since CC has a built-in
  default, CC ?= ... cannot be used.

I am attaching an updated version that addresses both issues.


Thanks both, I am NMUing the package with these changes.


Cheers.
--
Manuel A. Fernandez Montecelo 

Bug#881009: src:clips: typo in maintainer address (.og instead of .org)

[Ansgar Burchardt]

Source: clips
Source-Version: 6.30-3
Tags: sid
Severity: serious

> Source: clips
> Binary: clips libclips libclips-dev clips-common clips-doc
[...]
> Version: 6.30-4
[...]
> Maintainer: Javier Fernández-Sanguino Peña 
> Changed-By: Javier Fernández-Sanguino Peña 

The maintainer has a typo (missing the "r" in ".org") and causes
bounces.

Ansgar

Bug#783767: Pending fixes for bugs in the librdf-acl-perl package

[pkg-perl-maintainers]

tag 783767 + pending
thanks

Some bugs in the librdf-acl-perl package are closed in revision
c733bbd1ef0eefbc3f9ea72cf254f3405c6333cc in branch 'master' by
Florian Schlichting

The full diff can be seen at
https://anonscm.debian.org/cgit/pkg-perl/packages/librdf-acl-perl.git/commit/?id=c733bbd

Commit message:

Drop build-dependency on unused libmodule-signature-perl (closes: #783767)

Bug#881008: lua-rex-pcre: Please include support for Lua 5.3

[Jan Larres]

Package: lua-rex-pcre
Version: 2.7.2-4
Severity: wishlist


Now that the Awesome window manager (from the 'awesome' package) has been
built against Lua 5.3, this package is no longer usable from an Awesome
configuration. If this package is being used in someone's Awesome
configuration, (re)starting the window manager after the upgrade will fail due
to the missing module. So it would be great if this package could be built to
include support for Lua 5.3. Thanks!

-Jan


-- System Information:
Debian Release: buster/sid
 APT prefers unstable
 APT policy: (500, 'unstable'), (102, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_NZ.UTF-8, LC_CTYPE=en_NZ.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_NZ:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages lua-rex-pcre depends on:
ii  libc6 2.24-17
ii  libpcre3  2:8.39-5

lua-rex-pcre recommends no packages.

lua-rex-pcre suggests no packages.

-- no debconf information

--
-[ OpenPGP key ID: 00A0FD5F ]-

Bug#881007: ikiwiki: please, include some support for mathematics via mathjax

[Rogério Brito]

Package: ikiwiki
Version: 3.20171001
Severity: wishlist

Hi.

It would be super nice to have ikiwiki support people that want to write
mathematics, perhaps with a plugin, if not part of the core.

There is a plugin that I used once [0] to support MathJax, but messing with
the installation [1] and having it maintained by people that know the
ikiwiki internals would be important. The tree in [1] was already in in
git-buildpackage format. I don't know how bad it is nowadays, as my perl-fu
is supbar.


Otherwise, those that need to typeset mathematics are semi-lost with other
less-than-desireable alternatives.


Thanks,

Rogério Brito.


[0]: https://github.com/bk/ikiwiki-plugin-mathjax
[1]: https://github.com/rbrito/pkg-ikiwiki-plugin-mathjax


-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing'), (200, 'unstable'), (150, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.13.10-041310-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.utf-8, LC_CTYPE=pt_BR.utf-8 (charmap=UTF-8), 
LANGUAGE=en_US.utf-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages ikiwiki depends on:
ii  libhtml-parser-perl 3.72-3+b2
ii  libhtml-scrubber-perl   0.15-1
ii  libhtml-template-perl   2.97-1
ii  libjson-perl2.94-1
ii  libtext-markdown-discount-perl  0.11-1+b5
ii  liburi-perl 1.72-2
ii  libyaml-libyaml-perl0.63-2+b2
ii  perl5.26.1-2

Versions of packages ikiwiki recommends:
ii  gcc [c-compiler] 4:7.2.0-1d1
ii  gcc-7 [c-compiler]   7.2.0-12
ii  git [git-core]   1:2.14.2-1
pn  libauthen-passphrase-perl
ii  libc6-dev [libc-dev] 2.24-17
ii  libcgi-formbuilder-perl  3.10-1
ii  libcgi-pm-perl   4.36-1
pn  libcgi-session-perl  
ii  libcrypt-ssleay-perl 0.73.04-2+b2
pn  libgravatar-url-perl 
pn  liblwpx-paranoidagent-perl   
ii  libmail-sendmail-perl0.80-1
pn  libnet-openid-consumer-perl  
ii  librpc-xml-perl  0.80-1
ii  libterm-readline-gnu-perl1.35-1+b2
ii  libtimedate-perl 2.3000-2
ii  libxml-simple-perl   2.24-1
ii  mercurial4.3.1-3
ii  subversion   1.9.7-2

Versions of packages ikiwiki suggests:
ii  dvipng 1.14-2+b3
ii  file   1:5.32-1
ii  gettext0.19.8.1-4
ii  ghostscript9.22~dfsg-1
ii  graphviz   2.38.0-18
ii  libfile-mimeinfo-perl  0.27-1
ii  libhighlight-perl  3.39-1
ii  libhtml-tree-perl  5.03-2
ii  libimage-magick-perl [perlmagick]  8:6.9.7.4+dfsg-16
ii  liblocale-gettext-perl 1.07-3+b3
ii  libmagickcore-6.q16-3-extra [libmagickcore-extra]  8:6.9.7.4+dfsg-16
ii  libmailtools-perl  2.18-1
pn  libnet-amazon-s3-perl  
pn  libnet-inet6glue-perl  
pn  libsearch-xapian-perl  
pn  libsort-naturally-perl 
pn  libsparkline-php   
pn  libtext-csv-perl   
ii  libtext-multimarkdown-perl 1.35-1
pn  libtext-textile-perl   
pn  libtext-typography-perl
pn  libtext-wikicreole-perl
pn  libtext-wikiformat-perl
pn  libxml-feed-perl   
pn  libxml-writer-perl 
pn  po4a   
pn  polygen
ii  python 2.7.14-1
ii  python-docutils0.14+dfsg-1
ii  texlive2017.20171031-1
ii  tidy   1:5.2.0-2
pn  viewvc | gitweb | viewcvs  
pn  xapian-omega   

-- no debconf information


-- 
Rogério Brito : rbrito@{ime.usp.br,gmail.com} : GPG key 4096R/BCFC
http://cynic.cc/blog/ : github.com/rbrito : profiles.google.com/rbrito
DebianQA: http://qa.debian.org/developer.php?login=rbrito%40ime.usp.br

Bug#881006: dman: Improve dman script by providing caching features

[Javier Fernandez-Sanguino]

Package: debian-goodies
Version: 0.76
Severity: wishlist

In bug report 877137 Astian  has been generous
enough to rewrite dman to add some nice features, including some
caching capabilities.

For consideration, attached is his modified script as well as the
notes on the changes introduced by it ((also available at
https://paste.debian.net/988250/ and https://paste.debian.net/988249)

Best regards

Javier
- fix "not found" error reporting, broken in
  27ac5129ce187c6f571cac25ef70553bb9c9d475
- tabs for indentation (as in the original code) where spaces creeped in
- when calling commands use -- to separate options
- make all global variables uppercase
- remove unnecessary (default) argument to mktemp --tmpdir
- replace the remaining usages of `` for command substitutions with $()
  syntax. backticks parse the string specially, which is less intuitive; for
  example, dman had the following code:

MAN_ARGS=`echo "$@" | sed "s/\$PAGE$//"`

  here the sequence "\$" is parsed by the outer shell when scanning the string
  inside the backticks.  this is why this code removes the expansion of
  variable PAGE, and not literally '$PAGE', from the end of "$@".  in other
  words, it does the same as any of the following:

MAN_ARGS=`echo "$@" | sed "s/$PAGE$//"`

MAN_ARGS=$(echo "$@" | sed "s/$PAGE$//")

MAN_ARGS=$(echo "$@" | sed "s/$PAGE\$//")

MAN_ARGS=$(echo "$@" | sed 's/'$PAGE'$//')

  but not:

MAN_ARGS=$(echo "$@" | sed "s/\$PAGE$//")

  both dash and bash behave this way, and though dash doesn't seem to mention
  this in its man page, bash does:

When the old-style backquote form of substitution is used, backslash
retains its literal meaning except when followed by $, `, or \.  The
first backquote not preceded by a backslash terminates the command
substitution.  When using the $(command) form, all characters between the
parentheses make up the command; none are treated specially.

- use getopt (from util-linux) to parse command line options; support options
  in any order
- check that at least one man page name was given as argument and fail 
otherwise;
  previously the script would have used the last one and treat the previous
  ones as options for man
- remove undocumented method for passing options to man (there's already
  MANOPT for this)
- use literal quotes whenever a string is not meant to be expanded (even if it
  currently does not contain expandable stuff)
- quote the argument to "rm -rf", for consistency and abundance of caution
- when referring to the script itself, use the basename not its full path
- fix what looks like a typo: error was going to stdout instead of stderr
- remove the sequence "|| true; exit 0" in the following

man $MAN_ARGS -l "$man" || true
exit 0

  this is at least redundant; furthermore, I don't understand the purpose
- support for caching downloaded pages
- dependencies removed: awk, wget
  dependencies added: getopt (util-linux), curl


dman_with_cache
Description: Binary data

Bug#881002: O: landslide

[Damien Raude-Morvan]

Package: wnpp
Severity: normal

Hi

I have to admit that I do not care enough about this tool to give it the
work it needs. Therefore, I'm orphaning this package.

Please stand up if you care about this package, otherwise I'll fill a
removal request in the coming weeks.

Bug#881003: libunwind: Updating the libunwind Uploaders list

[Al Stone]

Source: libunwind
Severity: minor

Since I have not actively used or maintained this package in
quite a long time, there is no need for me to be included as
an Uploader; so, please remove "Al Stone "
from the Uploaders list.

Thanks.


-- System Information:
Debian Release: buster/sid
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'unstable'), (500, 'testing'), 
(500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8), 
LANGUAGE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#881005: O: ruby-amazon-ec2 -- Ruby library for accessing Amazon EC2

[Damien Raude-Morvan]

Package: wnpp
Severity: normal


Hi

I have to admit that I do not care enough about this tool to give it the
work it needs. Therefore, I'm orphaning this package.

Please stand up if you care about this package, otherwise I'll fill a
removal request in the coming weeks.

Bug#880982: ifup does not trigger scripts any more after booting

[Guus Sliepen]

Am 06.11.2017 um 17:53 schrieb Narcis Garcia:

> Interface is declared at /etc/network/interfaces :
> auto enp2s0
> allow-hotplug enp2s0
> iface enp2s0 inet dhcp
> 
> An executable script:
> /etc/network/if-up.d/test1
> only runs on boot (per each NIC). If network cable is plugged to enp2s0
> some minutes later, script is not run.
> Same behavior when booting with network, and unplugging + plugging later.

Hotplug in the context of udev is the hotplugging of a hardware PCI or USB 
device,
not of a network cable. If you want to have a network interface brought
up or down whenever a cable is (un)plugged, try installing the netplug
package, edit /etc/netplug/netplugd.conf and add enp2s0 to it, and
remove both "auto enp2s0" and "allow-hotplug enp2s0" from
/etc/network/interfaces.

Note that cable (un)plug events might not be properly supported by all
network cards.

-- 
Met vriendelijke groet / with kind regards,
  Guus Sliepen 


signature.asc
Description: PGP signature

Bug#877137: dman: broken error reporting

[Javier Fernandez-Sanguino]

Control: tag -1 + pending

On 29 September 2017 at 05:00, astian  wrote:
> I think that commit 27ac5129ce187c6f571cac25ef70553bb9c9d475 broke the
> error message dman used to produce when it failed to fetch some page.
> It says "not found: " but it no longer says what it didn't find.

Indeed, there is an error in the script. I have fixed it in GIT.

> I actually run into this several weeks ago and was ready to send a patch
> back then, but then I ended up rewriting most when I decided to
> implement caching.

The script you provided looks quite nice. I am going to submit it as a
separate bug report.

> I can't remember where I read that the maintainer doesn't like
> maintaining scripts longer than a couple hundred lines, and this one
> grew to about 390 so in the end I didn't send it and forgot about the
> bug report.  Today I remembered and here it is.

It might have been in #861611, where Antoine Beaupré said it. I am not
against scripts >100 lines and your replacement has some nice
improvements that could be worth including. I'll wait until the other
co-maintainers review it before committing it, though.

Regards

Javier

Bug#881004: O: faifa -- manage HomePlug 1.0/AV devices via ethernet frames

[Damien Raude-Morvan]

Package: wnpp
Severity: normal

Hi

I have to admit that I do not care enough about this tool to give it the
work it needs. Therefore, I'm orphaning this package.

Please stand up if you care about this package, otherwise I'll fill a
removal request in the coming weeks.

Bug#881001: RM: libcoyotl -- ROM; dead upstream, low popcnt

[Al Stone]

Package: ftp.debian.org
Severity: normal

There is no need to retain this package in the archives.  There
are very, very few users, and there is no upstream development
ongoing or planned.

Bug#880980: redis-sentinel: Redis Sentinel PID path change fail on apt-get upgrade

[Chris Lamb]

tags 880980 + pending
thanks

Thanks so much for this report. Fixed in Git, pending upload:

  
https://github.com/lamby/pkg-redis/commit/e6acea816a335a78d6cd9b9578205da0890280d3


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-

Bug#870764: pump FTCBFS: uses the build architecture compiler

[Manuel A. Fernandez Montecelo]

Hi,

2017-08-04 22:41 Helmut Grohne:

Source: pump
Version: 0.8.24-7
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap

pump fails to cross build from source, because it uses the build
architecture toolchain. Wrapping the $(MAKE) invocation through
dh_auto_build fixes the cross build, because dh_auto_build knows how to
pass the cross toolchain to make. Please consider applying the attached
patch.


Any plans to apply this patch?  I was thinking about NMUing, because the
package doesn't seem actively maintained, and the patch looks simple and
a net improvement.


Cheers.
--
Manuel A. Fernandez Montecelo 

Bug#881000: “uuid” command fail to use the real MAC address

[Mario Castelán Castro]

Package: uuid
Version: 1.6.2-1.5+b4

Calling “uuid -v 1” in Debian Stretch generates UUIDs with random MAC
address instead of the MAC address assigned to the network interface,
see this interaction log:

mario@svetlana [0] [/home/mario]
$ uuid -v 1
5d1ec982-c33b-11e7-b674-9bdcde051745
mario@svetlana [0] [/home/mario]
$ uuid -d 5d1ec982-c33b-11e7-b674-9bdcde051745
encode: STR: 5d1ec982-c33b-11e7-b674-9bdcde051745
SIV: 123778059638165669942124017972807014213
decode: variant: DCE 1.1, ISO/IEC 11578:1996
version: 1 (time and node based)
content: time:  2017-11-06 21:42:19.087501.0 UTC
 clock: 13940 (usually random)
 node:  9b:dc:de:05:17:45 (local multicast)

This was run on a physical (non-virtual) machine with one 802.3 and one
802.11 interface.

-- 
Do not eat animals; respect them as you respect people.
https://duckduckgo.com/?q=how+to+(become+OR+eat)+vegan



signature.asc
Description: OpenPGP digital signature

Bug#880905: exim4-config: Sender verification could be exploited for brute-force scan

[Paul Graham]

Hi

Same as I told Exim devs: we finally opted for enabling Exim support in 
fail2ban. This gives better result for all brute-force attempts as they're soon 
cut off and don't waste bandwidth.

Thanks for your feedback :)


At 05/11/17 18:59, Marc Haber wrote:

On Sun, Nov 05, 2017 at 04:09:37PM +0100, Andreas Metzler wrote:

I do not see the attacker gain, the same information can be extracted by
trying out RCPT TO *@omega-software.com with FROM attac...@gmail.com.

Additionally, we are desperately trying to stay close to the upstream
configuration. If this is really an issue, then all non-Debian exim
installations are vulnerable as well.

What I am trying to say is, this issue should be reported and
discussed with upstream _before_ we make this change. Paul, can you do
that to make your point there?

Greetings
Marc



--
Paul Graham
Development Dept.
http://Omega-Software.com/

Omega Software

Bug#872868: debian-policy: section numbers missing

[Matthew Woodcraft]

For what it's worth, I've submitted a Sphinx patch which implements section
numbering in plain text:

https://github.com/sphinx-doc/sphinx/pull/4218

I haven't interacted with Sphinx upstream before so I don't know whether
they're likely to respond quickly.

-M-

Bug#876253: libmpeg3 FTCBFS: uses the build architecture compiler

[Manuel A. Fernandez Montecelo]

Control: tags -1 + pending
Control: tags 845290 + pending


Hi,

2017-09-20 09:59 Helmut Grohne:

Source: libmpeg3
Version: 1.8.dfsg-2
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap

libmpeg3 fails to cross build from source, because it uses the build
architecture compiler. After letting dh_auto_build pass cross compilers
to make, the build proceeds a lot further but fails on errors from
debian-build-rules.patch. It confuses the build architecture (dpkg
--print-architecture or DEB_BUILD_ARCH) with the host architecture
(DEB_HOST_ARCH) and hard codes the build architecture compiler (gcc).
After fixing all of that, libmpeg3 cross builds successfully. Please
consider applying the attached patch.


I uploaded a package as NMU with delay 10, with this fix as well as
removing David Martínez Moreno as main maintainer as requested in
#845290.

Since the package is in collab-maint, I pushed the changes there as
well, but I attach the diff here for convenience.

If it's not OK for you I can cancel the NMU, if it's OK please let me
know and I will reschedule it to happen sooner.


Cheers.
--
Manuel A. Fernandez Montecelo 
diff -Nru libmpeg3-1.8.dfsg/debian/changelog libmpeg3-1.8.dfsg/debian/changelog
--- libmpeg3-1.8.dfsg/debian/changelog  2014-06-06 07:54:22.0 +0200
+++ libmpeg3-1.8.dfsg/debian/changelog  2017-11-06 22:24:08.0 +0100
@@ -1,3 +1,16 @@
+libmpeg3 (1.8.dfsg-2.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Promote Petter Reinholdtsen as Maintainer, remove David Martínez
+Moreno (Closes: #845290)
+
+  [ Helmut Grohne ]
+  * Fix FTCBFS: (Closes: #876253)
++ Let dh_auto_build pass cross compilers to make.
++ Fix the debian-build-rules.patch.
+
+ -- Manuel A. Fernandez Montecelo   Mon, 06 Nov 2017 22:24:08 
+0100
+
 libmpeg3 (1.8.dfsg-2) unstable; urgency=low
 
   * Add patch header-comment-fix.patch to fix a typo in the
diff -Nru libmpeg3-1.8.dfsg/debian/control libmpeg3-1.8.dfsg/debian/control
--- libmpeg3-1.8.dfsg/debian/control2014-06-06 07:54:22.0 +0200
+++ libmpeg3-1.8.dfsg/debian/control2017-11-06 22:11:37.0 +0100
@@ -1,8 +1,7 @@
 Source: libmpeg3
 Section: libs
 Priority: optional
-Maintainer: David Martínez Moreno 
-Uploaders: Petter Reinholdtsen 
+Maintainer: Petter Reinholdtsen 
 Standards-Version: 3.9.5
 Build-Depends: debhelper (>= 9), liba52-dev
 Homepage: http://heroines.sourceforge.net/libmpeg3.php
diff -Nru libmpeg3-1.8.dfsg/debian/patches/debian-build-rules.patch 
libmpeg3-1.8.dfsg/debian/patches/debian-build-rules.patch
--- libmpeg3-1.8.dfsg/debian/patches/debian-build-rules.patch   2014-06-06 
07:54:22.0 +0200
+++ libmpeg3-1.8.dfsg/debian/patches/debian-build-rules.patch   2017-11-06 
22:18:45.0 +0100
@@ -37,7 +37,7 @@
  
  
  OBJDIR := $(shell uname --machine)
-+ARCH := $(shell dpkg --print-architecture)
++ARCH := $(shell dpkg-architecture -qDEB_HOST_ARCH)
  
  
 +ifeq ($(strip $(prefix)),)
@@ -163,7 +163,7 @@
ar rcs $(OUTPUT) `cat $(OBJDIR)/objs`
  
 +$(SHAREDOUTPUT): $(SOBJS)
-+  gcc -shared -fPIC $(LDFLAGS) -o $(SHAREDOUTPUT) \
++  $(CC) -shared -fPIC $(LDFLAGS) -o $(SHAREDOUTPUT) \
 +   $(SOBJS) \
 +   -Wl,-soname -Wl,$(SHLIB_SONAME) $(LIBS)
 +  ( cd $(OBJDIR); \
diff -Nru libmpeg3-1.8.dfsg/debian/rules libmpeg3-1.8.dfsg/debian/rules
--- libmpeg3-1.8.dfsg/debian/rules  2014-06-06 07:54:22.0 +0200
+++ libmpeg3-1.8.dfsg/debian/rules  2017-11-06 22:18:45.0 +0100
@@ -30,7 +30,7 @@
 build-stamp:
dh_testdir
 
-   $(MAKE)
+   dh_auto_build --buildsystem=makefile
 
touch build-stamp
 

Bug#871704: Labels of files in `/etc/init.d/` prevent systemd tools from working

[Robert Senger]

Package: selinux-policy-default
Version: 2:2.20161023.1-9
Followup-For: Bug #871704

I can confirm this bug.

It affects all units having:

- Non standard SELinux type in /etc/init.d/ startup script (meaning, other than
initrc_exec_t)
- No unit file in /lib/systemd/system or /etc/systemd/system (and thus are
controlled by autogenerated unit file)

ALL systemctl actions (start, stop, restart, status...) fail on these units in
enforcing mode (but not in permissive mode). Error messages are e.g.:

root@pherkad:/etc/systemd/system# systemctl stop exim4
Failed to stop exim4.service: Access denied
See system logs and 'systemctl status exim4.service' for details.
Failed to get load state of exim4.service: Access denied

root@pherkad:/etc/systemd/system# systemctl start exim4
Failed to start exim4.service: Access denied
See system logs and 'systemctl status exim4.service' for details.

The error is logged in audit.log (see above report), but audit2allow does not
produce rules from that.

This also affects tab completion of all systemctl actions, as tab completion
seems to trigger "systemctl status ". This was reported in #879037
for refpolicy.

Possible workarounds: Either set SELinux type of offending init script to
standard initrc_exec_t, or create a simple systemd unit file for the affected
service.

Offending services on my Debian 9.2 installations are exim4 and ntp, which are
both standard services and installed by default.

Cheers,

Robert



-- System Information:
Debian Release: 9.2
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), 
LANGUAGE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages selinux-policy-default depends on:
ii  libselinux1  2.6-3+b3
ii  libsemanage1 2.6-2
ii  libsepol12.6-2
pn  policycoreutils  
pn  selinux-utils

Versions of packages selinux-policy-default recommends:
pn  checkpolicy  
pn  setools  

Versions of packages selinux-policy-default suggests:
pn  logcheck
pn  syslog-summary  

Bug#880878: [git-buildpackage/master] import-dsc: Fuzzy parse changelog date

[Guido Günther]

tag 880878 pending
thanks

Date:   Mon Nov 6 21:01:21 2017 +0100
Author: Guido Günther 
Commit ID: d656cbd066fdc39aa74c1e4a8e13d31f25c15f2c
Commit URL: 
https://git.sigxcpu.org/cgit/git-buildpackage//commit/?id=d656cbd066fdc39aa74c1e4a8e13d31f25c15f2c
Patch URL: 
https://git.sigxcpu.org/cgit/git-buildpackage//patch/?id=d656cbd066fdc39aa74c1e4a8e13d31f25c15f2c

import-dsc: Fuzzy parse changelog date

Especially older changelog arent 100% conformant (e.g. using a localized
day of week like)

  
http://snapshot.debian.org/archive/debian-archive/20090802T004153Z/debian/dists/hamm/hamm/source/sound/sox_11gamma-cb3-5.dsc

This allows us to better import older histories.

Closes: #880878

  

Bug#880999: gnuplot: Segfault with false formatted command input

[Malte Marwedel]

Package: gnuplot
Version: 5.0.5+dfsg1-6+deb9u1
Severity: normal

Dear Maintainer,

   * What led up to the situation?

A list of false formatted input, entered with a pipe

   * What exactly did you do (or not do) that was effective (or
 ineffective)?

1. File BadCommand.txt context:
set output "temperatures.svg";\
set terminal svg size 1280,768 dynamic name "Temperatures ";\
set timefmt "%Y-%m-%d %H:%M:%S";\
set xtics format "%d.%m.%Y";
plot "./data.txt" using 1:3 with lines ls 1 title "[°C]" axis x1y1;\

2. File data.txt context:
2016-09-19 20:00:00 24.5

3. Enter Commands with a pipe
cat BadCommand.txt | gnuplot

Anything of the following does *not* the crash:
A: Removing the space in "Temperatures "
B: Adding a backslash \ behind set xtichs line
C: Removing the 
D: Calling gnuplot BadCommand.txt
E: 1. "pipe foo"; 2. gdb gnuplot; 3. run < foo; 4. cat BadCommand.txt > foo

   * What was the outcome of this action?
Error messages and then
gnuplot[11021]: segfault at 0 ip 7f84d6a1df2e sp 7fff75f4fa20 error 4
in libc-2.24.so[7f84d699b000+195000]
gnuplot[11026]: segfault at 0 ip 7fe9f9c3ef2e sp 7ffcddc30dd0 error 4
in libc-2.24.so[7fe9f9bbc000+195000]
gnuplot[11029]: segfault at 0 ip 7fd1395f3f2e sp 7ffd794ef370 error 4
in libc-2.24.so[7fd139571000+195000]
in dmesg.

   * What outcome did you expect instead?
Just error messages.




-- System Information:
Debian Release: 9.1
  APT prefers stable
  APT policy: (500, 'stable'), (500, 'oldstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.13.2 (SMP w/12 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), 
LANGUAGE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: sysvinit (via /sbin/init)

Versions of packages gnuplot depends on:
ii  gnuplot-qt [gnuplot-nox]  5.0.5+dfsg1-6+deb9u1

gnuplot recommends no packages.

Versions of packages gnuplot suggests:
pn  gnuplot-doc  

-- no debconf information

Bug#863873: autogen workaround

[Aaron Smith]

Try running ./bootstrap in the top-level source directory to resolve the
autogen failure.

Bug#880998: debian-goodies: checkrestart should error-out when failing to call lsof

[Axel Beckert]

Control: tag -1 + pending

Hi Nicolas,

Nicolas Braud-Santoni wrote:
> PS: I included the patches as signed commit in the
> collab-maint repository, in branch bug880998.

Thanks! That makes it way easier as "git am" choked on your bug report
mail with the two patches.

Regards, Axel
-- 
 ,''`.  |  Axel Beckert , https://people.debian.org/~abe/
: :' :  |  Debian Developer, ftp.ch.debian.org Admin
`. `'   |  4096R: 2517 B724 C5F6 CA99 5329  6E61 2FF9 CD59 6126 16B5
  `-|  1024D: F067 EA27 26B9 C3FC 1486  202E C09E 1D89 9593 0EDE

Bug#880998: debian-goodies: checkrestart should error-out when failing to call lsof

[Nicolas Braud-Santoni]

On Mon, Nov 06, 2017 at 09:47:08PM +0100, Nicolas Braud-Santoni wrote:
> checkrestart should instead error-out.
> Please find enclosed patches to that effect.


PS: I included the patches as signed commit in the
collab-maint repository, in branch bug880998.


signature.asc
Description: PGP signature

Bug#880998: debian-goodies: checkrestart should error-out when failing to call lsof

[Nicolas Braud-Santoni]

Package: debian-goodies
Version: 0.69.1
Severity: important
Tags: stretch buster patch

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Dear maintainers,

checkrestart fails without setting an error code when lsof is not found,
and reports 0 processes needing to be restarted:

$ sudo checkrestart
/bin/sh: 1: lsof: not found
Found 0 processes using old versions of upgraded files


checkrestart should instead error-out.
Please find enclosed patches to that effect.


Best,

  nicoo

-BEGIN PGP SIGNATURE-
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=u3oC
-END PGP SIGNATURE-
>From 6e97f7cf789fd8ab2672d9b4faff11de99e865bb Mon Sep 17 00:00:00 2001
From: Nicolas Braud-Santoni 
Date: Mon, 6 Nov 2017 21:44:18 +0100
Subject: [PATCH 1/2] checkrestart: Properly error-out when calling lsof fails

---
 checkrestart | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/checkrestart b/checkrestart
index 52dbc70..abf920d 100755
--- a/checkrestart
+++ b/checkrestart
@@ -320,9 +320,10 @@ def main():
 
 def lsoffilescheck(blacklist = None):
 # Use LSOF to extract the list of deleted files
+from subprocess import check_output
 processes = {}
 
-for line in os.popen('lsof +XL -F nf').readlines():
+for line in check_output(['lsof', '+XL', '-F', 'nf']).splitlines():
 field, data = line[0], line[1:-1]
 
 if field == 'p':
-- 
2.14.2

>From dc228ead6cddd9bd2ce6737388917ff236d48070 Mon Sep 17 00:00:00 2001
From: Nicolas Braud-Santoni 
Date: Mon, 6 Nov 2017 21:44:51 +0100
Subject: [PATCH 2/2] checkrestart: Properly error-out when calling pmap fails

---
 checkrestart | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/checkrestart b/checkrestart
index abf920d..4fc299a 100755
--- a/checkrestart
+++ b/checkrestart
@@ -364,6 +364,7 @@ def lsoffilescheck(blacklist = None):
 def procfilescheck(blacklist = None, excludepidlist = None):
 # Use the underlying /proc file system to determine processes that
 # are using deleted files
+from subprocess import check_output
 processes = {}
 # Get a list of running processes
 pids = [pid for pid in os.listdir('/proc') if pid.isdigit()]
@@ -386,7 +387,7 @@ def procfilescheck(blacklist = None, excludepidlist = None):
 continue
 
 # Get the list of memory mapped files using system pmap
-for output in os.popen('pmap ' + pid).readlines():
+for output in check_output(['pmap', pid]).splitlines():
 data = re.split('\s+', output.strip('\n'), 3)
 if len(data) == 4:
 f = data[3]
-- 
2.14.2

Bug#875890: Apparmor causes problems with Stretch upgrade

[Henrik Ahlgren]

Upgrading from Jessie to Stretch with apparmor enabled seems to fail:

Setting up mariadb-server-10.1 (10.1.26-0+deb9u1) ...
Installing new version of config
file /etc/apparmor.d/usr.sbin.mysqld ...
Installing new version of config file /etc/init.d/mysql ...
Installing new version of config
file /etc/logrotate.d/mysql-server ...
Installing new version of config
file /etc/mysql/debian-start ...
dpkg: error processing package mariadb-server-10.1
(--configure):
 subprocess installed post-installation script returned error
exit status 1
dpkg: dependency problems prevent configuration of
default-mysql-server:
 default-mysql-server depends on mariadb-server-10.1; however:
  Package mariadb-server-10.1 is not configured yet.

dpkg: error processing package default-mysql-server
(--configure):
 dependency problems - leaving unconfigured
dpkg: dependency problems prevent configuration of mysql-server:
 mysql-server depends on default-mysql-server; however:
  Package default-mysql-server is not configured yet.

dpkg: error processing package mysql-server (--configure):
 dependency problems - leaving unconfigured

It took me a while to notice from audit log that is is due to apparmor:

type=AVC msg=audit(1509991806.111:85264): apparmor="DENIED"
operation="open" profile="/usr/sbin/mysqld"
name="/etc/mysql/mariadb.conf.d/" pid=6557 comm="mysqld"
requested_mask="r" denied_mask="r" fsuid=0 ouid=0
type=SYSCALL msg=audit(1509991806.111:85264): arch=4003
syscall=5 success=no exit=-13 a0=bfd7f415 a1=98800 a2=bfd7fd71
a3=bfd7fd55 items=0 ppid=6554 pid=6557 auid=1000 uid=0 gid=0
euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts3 ses=10453
comm="mysqld" exe="/usr/sbin/mysqld" key=(null)

Trying to reload apparmor policies did not help, it appears that
apparmor_parser ignores policies that are empty?

Bug#880997: nageru: FTBFS on armel

[Steinar H. Gunderson]

On Mon, Nov 06, 2017 at 08:51:27PM +0100, Sebastian Ramacher wrote:
> | /usr/bin/ld: httpd.o: undefined reference to symbol 
> '__atomic_fetch_sub_8@@LIBATOMIC_1.0'
> | //usr/lib/arm-linux-gnueabi/libatomic.so.1: error adding symbols: DSO 
> missing from command line

FWIW, last time I asked about this, it was a toolchain bug on armel
(std::atomic doesn't work). Is there any other information I should know
about?

/* Steinar */
-- 
Homepage: https://www.sesse.net/

Bug#805955: pcp: FTBFS when built with dpkg-buildpackage -A (no binary artifacts)

[Ken McDonell]

We have incorporated changes based on Daniel's proposed patch into PCP.

As of commit e7406b4 in the github PCP tree on 28 Oct 2017, we're making 
arch independent packages for dpkg builds.


$ dpkg-query -W -f '${Package} ${Architecture}\n' pcp\* | grep all
pcp-doc all
pcp-import-ganglia2pcp all
pcp-import-iostat2pcp all
pcp-import-mrtg2pcp all
pcp-import-sar2pcp all
pcp-import-sheet2pcp all

So I think this bug can be closed.

Bug#880355: transition: libva

[Sebastian Ramacher]

On 2017-11-04 11:55:24, Sebastian Ramacher wrote:
> On 2017-10-31 14:06:06, Emilio Pozuelo Monfort wrote:
> > Control: tags -1 confirmed
> > 
> > On 30/10/17 15:21, Sebastian Ramacher wrote:
> > > Package: release.debian.org
> > > Severity: normal
> > > User: release.debian@packages.debian.org
> > > Usertags: transition
> > > Control: forwarded -1 
> > > https://release.debian.org/transitions/html/auto-libva.html
> > > Control: block -1 by 879064
> > > 
> > > libva 2.0 was released and it bumped its SONAME, so it needs a 
> > > transition. Note
> > > that somme reverse dependencies need sourceful uploads coordinated with 
> > > the
> > > start of the transition: libva-utils and intel-vaapi-driver.
> > > 
> > > mesa (#879064) needs to be fixed. A rebuild will correctly rebuild 
> > > against libva
> > > 2.0, but it has an hard-coded dependency on libva1 which could be avoided 
> > > by
> > > using dh_libva from libva-dev.
> > > 
> > > libyami currently fails to build (no bug, since I maintain that), but has 
> > > a fix
> > > available upstream. I'll upload a fixed version together with libva.
> > > 
> > > All other reverse dependencies build fine.
> > 
> > mesa is fixed now. Please go ahead.
> 
> Thanks. libva, libva-utils and intel-vaapi-driver uploaded. I'll handle 
> libyami
> on Monday.

I've also uploaded libyami and filed for the failed binNMUs of nageru and ring.
Please also binNMU mesa and vdpau-video so that their libva-driver-abi-X.Y
dependencies get updated to libva-driver-abi-1.0.

Since the start of the transition, qtav also entered the archive and uses
hardcoded library dependencies (#880884).

Cheers
-- 
Sebastian Ramacher


signature.asc
Description: PGP signature

Bug#854410: RFP: clevis -- A plugable framework for automated decryption.

[Christoph Biedl]

Status: Packaging is done. Drop me a line in private if you're 
interested in testing (core knowledge in Debian packaging required).

Pending issues:

* jose (build dependency) is currently in NEW, must be accepted
  first.
* Same for luksmeta
* tang (build dependency) waits for jose
* License issues

Christoph



signature.asc
Description: Digital signature

Bug#854409: RFP: tang -- A server for binding data to network presence

[Christoph Biedl]

Status: Packaging is done. Drop me a line in private if you're
interested in testing (core knowledge in Debian packaging required).

Pending issues:

* jose (build dependency) is currently in NEW, must be accepted
  first.
* http-parser needs a newer version (#795492)

Christoph


signature.asc
Description: Digital signature

Bug#880952: maven: Version display does not disable bold/color output in non-interactive context

[Sylvain Joubert]

Source: maven
Followup-For: Bug #880952

I've checked upstream (which I should have done first) and it seems version
3.5.2 has fixed the issue (at least the piped one).

So I guess this issue can be turned into an upgrade to 3.5.2 wishlist.

Thanks.



-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (990, 'unstable'), (980, 'stable-updates'), (980, 'testing'), 
(970, 'stable'), (90, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8), 
LANGUAGE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#880997: nageru: FTBFS on armel

[Sebastian Ramacher]

Source: nageru
Version: 1.6.2-1
Severity: serious
Justification: fails to build from source (but built successfully in the past)
Tags: sid buster
Control: block 880355 by -1

nageru FTBFS on armel when binNMUed for the libva transition:
| g++ -o nageru glwidget.o mainwindow.o vumeter.o lrameter.o 
compression_reduction_meter.o correlation_meter.o aboutdialog.o analyzer.o 
input_mapping_dialog.o midi_mapping_dialog.o nonlinear_fader.o glwidget.moc.o 
mainwindow.moc.o vumeter.moc.o lrameter.moc.o compression_reduction_meter.moc.o 
correlation_meter.moc.o aboutdialog.moc.o analyzer.moc.o 
input_mapping_dialog.moc.o midi_mapping_dialog.moc.o nonlinear_fader.moc.o 
ellipsis_label.moc.o clickable_label.moc.o context_menus.o vu_common.o 
piecewise_interpolator.o main.o midi_mapper.o midi_mapping.pb.o 
chroma_subsampler.o v210_converter.o mixer.o basic_stats.o metrics.o 
pbo_frame_allocator.o context.o ref_counted_frame.o theme.o httpd.o flags.o 
image_input.o alsa_output.o disk_space_estimator.o print_latency.o 
timecode_renderer.o tweaked_inputs.o audio_mixer.o alsa_input.o alsa_pool.o 
ebu_r128_proc.o stereocompressor.o resampling_queue.o correlation_measurer.o 
filter.o input_mapping.o state.pb.o quicksync_encoder.o x264_encoder.o 
x264_dynamic.o x264_speed_control.o video_encoder.o metacube2.o mux.o 
audio_encoder.o ffmpeg_raii.o ffmpeg_util.o decklink_capture.o decklink_util.o 
decklink_output.o decklink/DeckLinkAPIDispatch.o ffmpeg_capture.o -Wl,-z,relro 
-lQt5OpenGLExtensions -lQt5OpenGL -lQt5PrintSupport -lQt5Widgets -lQt5Gui 
-lQt5Core -lusb-1.0 -lmovit -llua5.2 -lmicrohttpd -lepoxy -lx264 -lprotobuf 
-pthread -lpthread -lpci -lbmusb -pthread -lva -lva-drm -lva-x11 -lX11 
-lavformat -lavcodec -lavutil -lswscale -lavresample -lzita-resampler -lasound 
-ldl -lqcustomplot
| /usr/bin/ld: httpd.o: undefined reference to symbol 
'__atomic_fetch_sub_8@@LIBATOMIC_1.0'
| //usr/lib/arm-linux-gnueabi/libatomic.so.1: error adding symbols: DSO missing 
from command line

See
https://buildd.debian.org/status/fetch.php?pkg=nageru=armel=1.6.2-1+b1=1509844496=0
for the full log.

Cheers
-- 
Sebastian Ramacher


signature.asc
Description: PGP signature

Bug#880996: ring: FTBFS on mips64el

[Sebastian Ramacher]

Source: ring
Version: 20170912.1.912f772~dfsg1-2
Severity: serious
Tags: sid buster
Control: block 880355 by -1

ring FTBFS on mips64el during the libva transition:
| ../doltlibtool  --tag=CXX   --mode=link g++-6 -I../src 
-DDBUS_API_SUBJECT_TO_CHANGE -I/usr/include/dbus-c++-1 -I/usr/include/dbus-1.0 
-I/usr/lib/mips64el-linux-gnuabi64/dbus-1.0/include -I../src/dring 
-DTOP_BUILDDIR=\"$(cd ".."; pwd)\" -g -O2 -fdebug-prefix-map=/<>=. 
-fstack-protector-strong -Wformat -Werror=format-security 
-DMSGPACK_DEFAULT_API_VERSION=1 -DPJ_AUTOCONF=1  
-I/<>/daemon/contrib/mips64el-linux-gnuabi64/include  -Wl,-z,relro 
-Wl,-z,now -Wl,-Bsymbolic -ldl 
-L/<>/daemon/contrib/mips64el-linux-gnuabi64/lib -lcryptopp -o 
dring dring-main.o dbus/libclient_dbus.la -ldbus-c++-1 -ldbus-1 
../src/libring.la -lnatpmp -lboost_random -lboost_system -lgsm -lrestbed 
| libtool: link: g++-6 -I../src -DDBUS_API_SUBJECT_TO_CHANGE 
-I/usr/include/dbus-c++-1 -I/usr/include/dbus-1.0 
-I/usr/lib/mips64el-linux-gnuabi64/dbus-1.0/include -I../src/dring 
"-DTOP_BUILDDIR=\"/<>/daemon\"" -g -O2 
"-fdebug-prefix-map=/<>=." -fstack-protector-strong -Wformat 
-Werror=format-security -DMSGPACK_DEFAULT_API_VERSION=1 -DPJ_AUTOCONF=1 
"-I/<>/daemon/contrib/mips64el-linux-gnuabi64/include" -Wl,-z 
-Wl,relro -Wl,-z -Wl,now -Wl,-Bsymbolic -o dring dring-main.o  
-L/<>/daemon/contrib/mips64el-linux-gnuabi64/lib 
dbus/.libs/libclient_dbus.a -ldbus-c++-1 -ldbus-1 ../src/.libs/libring.a 
-lpjsua2-mips64el-unknown-linux-gnuabi64 
-lpjsua-mips64el-unknown-linux-gnuabi64 
-lpjsip-ua-mips64el-unknown-linux-gnuabi64 
-lpjsip-simple-mips64el-unknown-linux-gnuabi64 
-lpjsip-mips64el-unknown-linux-gnuabi64 
-lpjmedia-codec-mips64el-unknown-linux-gnuabi64 
-lpjmedia-videodev-mips64el-unknown-linux-gnuabi64 
-lpjmedia-audiodev-mips64el-unknown-linux-gnuabi64 
-lpjmedia-mips64el-unknown-linux-gnuabi64 
-lpjnath-mips64el-unknown-linux-gnuabi64 
-lpjlib-util-mips64el-unknown-linux-gnuabi64 
-lsrtp-mips64el-unknown-linux-gnuabi64 -lpj-mips64el-unknown-linux-gnuabi64 
-lopus -luuid -lpthread -lasound -lpulse -lsamplerate -lsndfile -lyaml-cpp 
-ljsoncpp -lupnp -lthreadutil -lixml -lopendht -lnettle -lgnutls -largon2 -lrt 
-lz -lpcre -lspeexdsp -L/usr/lib -ldl -lcryptopp -lavcodec -lavformat 
-lavdevice -lswscale -lavutil -ludev -lX11 -lvdpau -lva-drm -lva-x11 -lva 
-lnatpmp -lboost_random -lboost_system -lgsm -lrestbed -pthread
| ../src/.libs/libring.a(libringacc_la-ringaccount.o): In function 
`ring::RingAccount::useIdentity(std::pair const&)':
| ./daemon/src/ringdht/ringaccount.cpp:845: undefined reference to 
`dht::Value::msgpack_unpack(msgpack::v1::object)'
| ./daemon/src/ringdht/ringaccount.cpp:845: undefined reference to 
`dht::Value::msgpack_unpack(msgpack::v1::object)'
| ../src/.libs/libring.a(libringacc_la-ringaccount.o): In function 
`msgpack::v1::type::detail::convert_integer_sign::convert(msgpack::v1::object const&)':
| /usr/include/msgpack/v1/adaptor/int.hpp:46: undefined reference to 
`dht::unpackBlob(msgpack::v1::object&)'
| ../src/.libs/libring.a(libringacc_la-ringaccount.o): In function 
`dht::IceCandidates::msgpack_unpack(msgpack::v1::object)':
| /usr/include/opendht/default_types.h:190: undefined reference to 
`dht::unpackBlob(msgpack::v1::object&)'
| ../src/.libs/libring.a(libringacc_la-ringaccount.o): In function 
`msgpack::v1::type::detail::convert_integer_sign::convert(msgpack::v1::object const&)':
| /usr/include/msgpack/v1/adaptor/int.hpp:46: undefined reference to 
`dht::unpackBlob(msgpack::v1::object&)'
| ../src/.libs/libring.a(libringacc_la-ringaccount.o): In function 
`dht::IceCandidates::msgpack_unpack(msgpack::v1::object)':
| /usr/include/opendht/default_types.h:190: undefined reference to 
`dht::unpackBlob(msgpack::v1::object&)'
| ../src/.libs/libring.a(libringacc_la-ringaccount.o): In function 
`msgpack::v1::type::detail::convert_integer_sign::convert(msgpack::v1::object const&)':
| /usr/include/msgpack/v1/adaptor/int.hpp:46: undefined reference to 
`dht::unpackBlob(msgpack::v1::object&)'
| 
../src/.libs/libring.a(libringacc_la-ringaccount.o):/usr/include/opendht/default_types.h:190:
 more undefined references to `dht::unpackBlob(msgpack::v1::object&)' follow
| ../src/.libs/libring.a(libringacc_la-ringaccount.o): In function 
`msgpack::v1::adaptor::convert::operator()(msgpack::v1::object const&, dht::crypto::RevocationList&) 
const':
| /usr/include/msgpack/v1/object.hpp:209: undefined reference to 
`dht::crypto::RevocationList::msgpack_unpack(msgpack::v1::object)'
| /usr/include/msgpack/v1/object.hpp:209: undefined reference to 
`dht::crypto::RevocationList::msgpack_unpack(msgpack::v1::object)'
| collect2: error: ld returned 1 exit status
| Makefile:628: recipe for target 'dring' failed

See
https://buildd.debian.org/status/fetch.php?pkg=ring=mips64el=20170912.1.912f772~dfsg1-2+b1=1509883418=0
for the full build log.

Cheers
-- 
Sebastian Ramacher


signature.asc

Bug#880995: qtmultimedia-opensource-src FTCBFS: does not pass cross tools to qmake

[Helmut Grohne]

Source: qtmultimedia-opensource-src
Version: 5.9.2-1
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap

qtmultimedia-opensource-src does not cross build from source, because it
does not pass cross tools to qmake. Deferring that task to
dh_auto_configure very slightly improves the situation as it does pass
cross tools to the initial qmake, but the first qmake fails to pass them
down to further qmake invocations and continues running checks natively.
Thus e.g. alsa is detected as missing. I don't have a clue how to fix
this, but please close this bug once the outer qmake receives cross
tools e.g. by using the attached patch.

Helmut
diff --minimal -Nru qtmultimedia-opensource-src-5.9.2/debian/changelog 
qtmultimedia-opensource-src-5.9.2/debian/changelog
--- qtmultimedia-opensource-src-5.9.2/debian/changelog  2017-10-26 
13:40:20.0 +0200
+++ qtmultimedia-opensource-src-5.9.2/debian/changelog  2017-11-05 
21:44:32.0 +0100
@@ -1,3 +1,10 @@
+qtmultimedia-opensource-src (5.9.2-1.1) UNRELEASED; urgency=medium
+
+  * Non-maintainer upload.
+  * Let dh_auto_configure pass cross tools to qmake. (Closes: #-1)
+
+ -- Helmut Grohne   Sun, 05 Nov 2017 21:44:32 +0100
+
 qtmultimedia-opensource-src (5.9.2-1) unstable; urgency=medium
 
   * New upstream release.
diff --minimal -Nru qtmultimedia-opensource-src-5.9.2/debian/rules 
qtmultimedia-opensource-src-5.9.2/debian/rules
--- qtmultimedia-opensource-src-5.9.2/debian/rules  2017-10-26 
13:40:20.0 +0200
+++ qtmultimedia-opensource-src-5.9.2/debian/rules  2017-11-05 
21:43:33.0 +0100
@@ -20,7 +20,7 @@
dh $@ --with pkgkde_symbolshelper
 
 override_dh_auto_configure:
-   qmake QT_BUILD_PARTS+=tests
+   dh_auto_configure -- QT_BUILD_PARTS+=tests
 
 override_dh_auto_build-indep:
dh_auto_build -Smakefile -- docs

Bug#880994: RFP: qiskit -- Quantum information software kit

[Luciano Bello]

Package: wnpp
Severity: wishlist

* Package name: qiskit
  Version : 0.3.9
  Upstream Author : QISKit Development Team 
* URL : http://qiskit.org
* License : Apache Software License
  Description : Quantum information software kit

The Quantum Information Software Kit (QISKit) is a SDK for working
with OpenQASM and the IBM Q experience (QX).

Use QISKit to create quantum computing programs, compile them, and
execute them on one of several backends (online real quantum
processors and simulators).

Bug#880469: closed by Patrick Matthäi<pmatth...@debian.org> (Bug#880469: fixed in kdenlive 17.08.2-1)

[Алексей Шилин]

>Понедельник,  6 ноября 2017, 18:30 +03:00 от Debian Bug Tracking System 
>:
>
>This is an automatic notification regarding your Bug report
>which was filed against the kdenlive package:
>
>#880469: Recommend breeze-icon-theme
>
>It has been closed by Patrick Matthäi < pmatth...@debian.org >.
>
>Their explanation is attached below along with your original report.
>If this explanation is unsatisfactory and you have not received a
>better one in a separate message then please contact Patrick Matthäi < 
>pmatth...@debian.org > by
>replying to this email.

Thanks.

However, if I read build logs [1] correctly, kdenlive still depends on 
oxygen-icon-theme. I can't find any
evidence that kdenlive application really needs it. Am I missing something, or 
you simply forgot to remove
this now-obsolete dependency?

 [1] 
https://buildd.debian.org/status/fetch.php?pkg=kdenlive=i386=17.08.2-1=1509984372=0


--
Алексей Шилин

Bug#880993: enable http2 protocol when http2 module is enabled

[Antoine Beaupre]

Source: apache2
Version: 2.4.25-3+deb9u3
Severity: wishlist

It's unclear to me why the http2 module in the Apache2 debian package
doesn't *actually* enable the http2 *protocol*.

Maybe I don't understand this right, but it seems to me that to enable
http2 in apache/Debian, you  need to do the following:

a2enmod http2

But then also add some configuration blurb like this somewhere:

Protocols h2 h2c http/1.1

The above configuration will enable HTTP/2 over TLS (h2) and HTTP/2
over TCP (h2c, cleartext) then keep the http/1.1 as a
backwards-compatibility option.

Why isn't this part of /etc/apache2/mods-available/http2.conf? It
seems to me if you want to enable HTTP2 on the server, you'd expect
this to just turn on as well. I can imagine that people may want to
enable only on *some* virtual hosts, but then that config can be
commented out or disabled and added to virtual host as needed. Or it
can be disabled in the relevant vhosts as well.

It could also be a good place to have, commented out, sample H2Push
configurations as well... e.g.

# # HTTP/2 push configuration
#
# H2Push  on
#
# # Default Priority Rule
#
# H2PushPriority * After 16
#
# # More complex ruleset:
#
# H2PushPriority  *   after
# H2PushPriority  text/cssbefore
# H2PushPriority  image/jpeg  after   32
# H2PushPriority  image/png   after   32
# H2PushPriority  application/javascript  interleaved
#
# # Configure some stylesheet and script to be pushed by the webserver
#
# 
# Header add Link "; rel=preload; as=style"
# Header add Link "; rel=preload; as=script"
# 

More sample configs are here:
https://httpd.apache.org/docs/2.4/mod/mod_http2.html#h2pushpriority

What do you think?

-- System Information:
Debian Release: 9.1
  APT prefers stable
  APT policy: (500, 'stable'), (1, 'experimental'), (1, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_CA.UTF-8, LC_CTYPE=fr_CA.UTF-8 (charmap=UTF-8), 
LANGUAGE=fr_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Bug#880992: debian-policy should not recommend running editor using absolute path

[Jonathan Nieder]

Package: debian-policy
Version: 4.1.0.0

Policy 11.4 sayeth:

11.4. Editors and pagers

Some programs have the ability to launch an editor or pager
program to edit or display a text document. Since there are
lots of different editors and pagers available in the Debian
distribution, the system administrator and each user should
have the possibility to choose their preferred editor and pager.

In addition, every program should choose a good default
editor/pager if none is selected by the user or system
administrator.

Thus, every program that launches an editor or pager must use
the EDITOR or PAGER environment variable to determine the
editor or pager the user wishes to use. If these variables are
not set, the programs /usr/bin/editor and /usr/bin/pager
should be used, respectively.

If read strictly, this says that I must use "/usr/bin/editor" instead
of invoking "editor" from the $PATH.  (I'm not sure I agree with that
interpretation, but it came up in https://bugs.debian.org/682347.)
Running "editor" from the $PATH instead of using that full path should
be perfectly acceptable and IMHO is a better behavior, since it allows
the user to put a custom editor in /usr/local/bin or $HOME/bin.

Could this say something like

not set, the commands "editor" and "pager" should be used,
respectively. These commands can be invoked explicitly (e.g.
as /usr/bin/editor), or through a $PATH search (e.g. as
editor).

?

Bug#880964: closed by Guido Günther <a...@sigxcpu.org> (Re: Bug#880964: git-buildpackage: non-ascii character in d/changelog: UnicodeDecodeError)

[Guido Günther]

Hi,
On Mon, Nov 06, 2017 at 03:36:20PM +, Nico Schlömer wrote:
> > I'm not uploading any wheels only the sources to pypi.
> 
> I know; sources are Python version agnostic, so there's no handle on how to
> restrict the version; hence the idea of publishing wheels instead of
> sources. There appears to be another option though, see [1].
> 
> [1] https://stackoverflow.com/a/42792413/353337

Nice. Thanks for digging this one out!
Cheers,
 -- Guido

> 
> 
> 
> On Mon, Nov 6, 2017 at 4:03 PM Guido Günther  wrote:
> 
> > Hi,
> > On Mon, Nov 06, 2017 at 02:53:11PM +, Nico Schlömer wrote:
> > > Thanks for following up on this.
> > >
> > > > But this is not Python2.
> > >
> > > This is the culprit. I installed gbp with pip on my system, with pip
> > > defaulting to python2, which leads to an array of errors, e.g., the
> > > encoding error from above. Perhaps one way of preventing pip2-installs
> > from
> > > pypi is to create wheels with
> > > ```
> > > python3 setup.py bdist_wheel
> > > ```
> > > (not `python setup.py bdist_wheel --universal`); see [1].
> >
> > I'm not uploading any wheels only the sources to pypi. I have no idea
> > how to make pip not use modules that are "Programming Language :: Python
> > :: 3" with Python2.
> >
> > Cheers,
> >  -- Guido
> >

Bug#880964: [git-buildpackage/master] DebianChangelog: Always open changelog as utf8

[Guido Günther]

tag 880964 pending
thanks

Date:   Mon Nov 6 19:22:03 2017 +0100
Author: Guido Günther 
Commit ID: ac7589de623f997a29db7d2a4ba07c982a162512
Commit URL: 
https://git.sigxcpu.org/cgit/git-buildpackage//commit/?id=ac7589de623f997a29db7d2a4ba07c982a162512
Patch URL: 
https://git.sigxcpu.org/cgit/git-buildpackage//patch/?id=ac7589de623f997a29db7d2a4ba07c982a162512

DebianChangelog: Always open changelog as utf8

As per Debian policy the changelog must be encoded as utf-8. This
unbreaks changelog parsing on non-utf-8 locales.

The vfs currently does not care about encodings so open as binary and
decode to 'utf-8'.

Thanks: Nico Schlömer for the report
Closes: #880964

  

Bug#880991: chapel-1.16/1.16.0-1 [ITP]

[Ben Albrecht]

Package: sponsorship-requests
Severity: wishlist

Dear mentors,

I am looking for a sponsor for the package "chapel-1.16". This is the compiler 
for Chapel, the productive parallel programming language.


 * Package name: chapel-1.16
   Version : 1.16.0-1
   Upstream Author : balbre...@cray.com
 * URL : https://chapel-lang.org
 * License : Apache 2.0
   Section : devel

  It builds those binary packages:

 chapel-1.16 - productive parallel computing
 chapel-common-1.16 - productive parallel computing (common files)
 chapel-compiler-1.16 - productive parallel computing (compiler)
 chapel-doc-1.16 - productive parallel computing (documentation)
 chapel-runtime-1.16 - productive parallel computing (runtime)

  To access further information about this package, please visit the following 
URL:

  https://mentors.debian.net/package/chapel-1.16


  Alternatively, here is the repository for this project's Debian package:

  https://github.com/chapel-lang/chapel-packaging/tree/master/debian

  
Alternatively, one can download the package with dget using this command:

dget -x 
https://mentors.debian.net/debian/pool/main/c/chapel-1.16/chapel-1.16_1.16.0-1.dsc

  More information about hello can be obtained from https://www.example.com.

  Changes since the last upload:

Updated package to 1.16


  The previous package ITP was removed for inactivity, as we were unable to 
find a new Debian sponsor after our sponsor moved on:

  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=833193

  Regards,
   Ben Albrecht

Bug#869865: usr.sbin.mysqld-akonadi: denied access to /etc/mysql/mariadb.cnf

[Vincas Dargis]

Control: tags -1 +patch
Control: user pkg-apparmor-t...@lists.alioth.debian.org
Control: usertags -1 +modify-profile

I see that /etc/mysql/mariadb.cnf deny is fixed in Vcs-Git, though there are 
two more additional denies:


type=AVC msg=audit(1509645650.114:137): apparmor="DENIED" operation="open" 
profile="/usr/sbin/mysqld-akonadi///usr/sbin/mysqld" name="/etc/mysql/mariadb.conf.d/" pid=1588 comm="mysqld" 
requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
type=SYSCALL msg=audit(1509645650.114:137): arch=c03e syscall=2 success=no exit=-13 a0=7ffee010da20 a1=90800 
a2=7ffee010e61d a3=7f31a1429380 items=0 ppid=1586 pid=1588 auid=1000 uid=1000 gid=1000 euid=1000 suid=1000 fsuid=1000 
egid=1000 sgid=1000 fsgid=1000 tty=(none) ses=5 comm="mysqld" exe="/usr/sbin/mysqld" key=(null)

type=PROCTITLE msg=audit(1509645650.114:137): 
proctitle=2F7573722F7362696E2F6D7973716C64002D2D76657273696F6E


type=AVC msg=audit(1509991621.749:236): apparmor="DENIED" operation="open" 
profile="/usr/sbin/mysqld-akonadi///usr/sbin/mysqld" name="/etc/mysql/mariadb.conf.d/test.cnf" pid=3310 comm="mysqld" 
requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
type=SYSCALL msg=audit(1509991621.749:236): arch=c03e syscall=2 success=no exit=-13 a0=7ffe2808b2e0 a1=8 a2=1b6 
a3=8 items=0 ppid=3307 pid=3310 auid=1000 uid=1000 gid=1000 euid=1000 suid=1000 fsuid=1000 egid=1000 sgid=1000 
fsgid=1000 tty=(none) ses=17 comm="mysqld" exe="/usr/sbin/mysqld" key=(null)

type=PROCTITLE msg=audit(1509991621.749:236): 
proctitle=2F7573722F7362696E2F6D7973716C64002D2D76657273696F6E

I have attached a patch to fix this ussue. Tested on Debian Sid with KDE.
diff --git a/debian/usr.sbin.mysqld-akonadi b/debian/usr.sbin.mysqld-akonadi
index d617bcc..7365330 100644
--- a/debian/usr.sbin.mysqld-akonadi
+++ b/debian/usr.sbin.mysqld-akonadi
@@ -21,6 +21,8 @@
 /etc/mysql/conf.d/* r,
 /etc/mysql/my.cnf r,
 /etc/mysql/mariadb.cnf r,
+/etc/mysql/mariadb.conf.d/ r,
+/etc/mysql/mariadb.conf.d/* r,
 
 /sys/devices/system/cpu/ r,
 

Bug#880590: RFS: webmin/1.860-1 [ITP]

[Andrey Rahmatullin]

Control: tags -1 + moreinfo

The package has lots of lintian-detected problems, some of them critical.
You need to fix them first.

-- 
WBR, wRAR


signature.asc
Description: PGP signature

Bug#880990: widelands: Segmentation fault on loading a game

[Elena ``of Valhalla'']

Package: widelands
Version: 1:19+repack-4
Severity: grave
Justification: renders package unusable

Dear Maintainer,

I have installed widelands on a buster amd64 system and found the sad
surprise that it is no longer working: opening any game (tutorial,
campaign or game) results in a segfault with the attached output.
I didn't try multiplayer games.

Originally I tried with an existing ~/.widelands directory, but I moved
it away and could still reproduce the behaviour.

Please let me know if there is any other information I can provide: I
have all of the free time saved by not playing widelands that I can use
to help investigate this issue :)

The following are the last few lines of ``strace widelands``:

[ENOENT on files in ~/.widelands as far as my eyes[esc]bdwabacklog can see]

stat("/usr/share/games/widelands/data/world/critters/fox/fox_walk_nw_20.png", 
0x7ffe463be940) = -1 ENOENT (No such file or directory)
stat("/home/valhalla/.widelands/sound/animals", 0x7ffe463be220) = -1 ENOENT 
(No such file or directory)
stat("/usr/share/games/widelands/data/sound/animals", 
{st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0
open("/home/valhalla/.widelands/sound/animals", 
O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC) = -1 ENOENT (No such file or 
directory)
open("/usr/share/games/widelands/data/sound/animals", 
O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC) = 18
fstat(18, {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0
getdents(18, /* 46 entries */, 32768)   = 1488
getdents(18, /* 0 entries */, 32768)= 0
close(18)   = 0
stat("/home/valhalla/.widelands/sound/animals/coyote_01.ogg", 
0x7ffe463be170) = -1 ENOENT (No such file or directory)
stat("/usr/share/games/widelands/data/sound/animals/coyote_01.ogg", 
{st_mode=S_IFREG|0644, st_size=29348, ...}) = 0
stat("/usr/share/games/widelands/data/sound/animals/coyote_01.ogg", 
{st_mode=S_IFREG|0644, st_size=29348, ...}) = 0
open("/usr/share/games/widelands/data/sound/animals/coyote_01.ogg", 
O_RDONLY) = 18
fstat(18, {st_mode=S_IFREG|0644, st_size=29348, ...}) = 0
fstat(18, {st_mode=S_IFREG|0644, st_size=29348, ...}) = 0
lseek(18, 28672, SEEK_SET)  = 28672
read(18, 
"\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1"..., 676) = 
676
lseek(18, 0, SEEK_SET)  = 0
read(18, 
"OggS\0\2\0\0\0\0\0\0\0\0\320S(t\0\0\0\0006~\352\315\1\36\1vor"..., 28672) = 
28672
read(18, 
"\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1\1"..., 4096) = 
676
close(18)   = 0
brk(0x55fb3b0f8000) = 0x55fb3b0f8000
mmap(NULL, 33329152, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 
0) = 0x7f5e59837000
--- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x7ffe463c5000} 
---
+++ killed by SIGSEGV +++
Segmentation fault


-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.13.0-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_IE.UTF-8, LC_CTYPE=en_IE.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_IE:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages widelands depends on:
ii  libboost-regex1.62.0  1.62.0+dfsg-4+b2
ii  libboost-test1.62.0   1.62.0+dfsg-4+b2
ii  libc6 2.24-17
ii  libgcc1   1:7.2.0-12
ii  libgl10.2.999+git20170802-5
ii  libgl1-mesa-glx   17.2.4-1
ii  libglew2.02.0.0-5
ii  libicu57  57.1-8
ii  libminizip1   1.1-8+b1
ii  libpng16-16   1.6.34-1
ii  libsdl2-2.0-0 2.0.6+dfsg1-4
ii  libsdl2-image-2.0-0   2.0.1+dfsg-4
ii  libsdl2-mixer-2.0-0   2.0.1+dfsg1-3
ii  libsdl2-net-2.0-0 2.0.1+dfsg1-3
ii  libsdl2-ttf-2.0-0 2.0.14+dfsg1-2
ii  libstdc++67.2.0-12
ii  widelands-data1:19+repack-4
ii  zlib1g1:1.2.8.dfsg-5

widelands recommends no packages.

widelands suggests no packages.

-- no debconf information
This is Widelands Version build-19 (Release)
Set home directory: /home/valhalla/.widelands
There's no configuration file, using default values.
Adding directory: /usr/share/games/widelands/data
selected language: (system language)
using locale en_IE.UTF-8
Graphics: Try to set Videomode 800x600
Graphics: OpenGL: Version "2.1 Mesa 17.2.4"
Graphics: SDL_GL_RED_SIZE is 8
Graphics: SDL_GL_GREEN_SIZE is 8
Graphics: SDL_GL_BLUE_SIZE is 8
Graphics: SDL_GL_ALPHA_SIZE is 0
Graphics: SDL_GL_BUFFER_SIZE is 24
Graphics: SDL_GL_DOUBLEBUFFER is 1
Graphics: SDL_GL_DEPTH_SIZE is 24
Graphics: SDL_GL_STENCIL_SIZE is 8
Graphics: SDL_GL_ACCUM_RED_SIZE is 0
Graphics: SDL_GL_ACCUM_GREEN_SIZE is 0
Graphics: SDL_GL_ACCUM_BLUE_SIZE is 0
Graphics: SDL_GL_ACCUM_ALPHA_SIZE is 0
Graphics: SDL_GL_STEREO is 0
Graphics: SDL_GL_MULTISAMPLEBUFFERS is 0
Graphics: SDL_GL_MULTISAMPLESAMPLES is 0
Graphics: 

Bug#880989: ITP: r-cran-prodlim -- GNU R product-limit estimation for Censored Event History Analysis

[Andreas Tille]

Package: wnpp
Severity: wishlist
Owner: Andreas Tille 

* Package name: r-cran-prodlim
  Version : 1.6.1-1
  Upstream Author : Thomas A. Gerds 
* URL : https://cran.r-project.org/package=prodlim
* License : GPL
  Programming Lang: GNU R
  Description : GNU R product-limit estimation for Censored Event History 
Analysis
 Fast and user friendly implementation of nonparametric estimators
 for censored event history (survival) analysis. Kaplan-Meier and
 Aalen-Johansen method.


Remark: This package belongs to a pyramid of dependencies to upgrade
r-cran-caret to its latest upstream version.  It will be maintained by
the Debian Science team at
https://anonscm.debian.org/git/debian-science/packages/r-cran-prodlim.git
Any takers for other new dependencies of r-cran-caret would be
really appreciated.  Also other Uploaders who volunteer to keep on
maintaining the packages are really welcome.

Bug#880988: ITP: node-boxen -- Create boxes in the terminal

[Suman]

Package: wnpp
Severity: wishlist
Owner: suman 
X-Debbugs-CC: debian-de...@lists.debian.org

* Package name: node-boxen
  Version : 1.2.2
  Upstream Author : Sindre Sorhus  (sindresorhus.com)
* URL : https://github.com/sindresorhus/boxen#readme
* License : Expat
  Programming Lang: JavaScript
  Description : Create boxes in the terminal

Boxen can be used to create boxes in terminal
.
Node.js is an event-based server-side JavaScript engine.

Praveen agreed to sponser this package.

Bug#880982: ifup does not trigger scripts any more after booting

[Michael Biebl]

Control: reassign -1 ifupdown

Am 06.11.2017 um 17:53 schrieb Narcis Garcia:
> Package: udev
> Version: 232-25+deb9u1
> Severity: serious
> 
> Tested with updated Debian 9 (amd64):
> 
> Interface is declared at /etc/network/interfaces :
> auto enp2s0
> allow-hotplug enp2s0
> iface enp2s0 inet dhcp
> 
> An executable script:
> /etc/network/if-up.d/test1
> only runs on boot (per each NIC). If network cable is plugged to enp2s0
> some minutes later, script is not run.
> Same behavior when booting with network, and unplugging + plugging later.

udev does not longer ship the ifupdown agent, so I'm reassigning this to
ifupdown.

Regards,
Michael
-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#877609: RFS: fspy [ITA] -- filesystem activity monitoring tool

[Andrey Rahmatullin]

On Tue, Oct 03, 2017 at 02:12:35PM +0200, Dalibor Menkovic wrote:
> I saw this bug https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866825 and
> I want to maintain this package but I'm not sure how procedure goes when
> someone new wants to maintain already existing package.
The procedure is described at https://www.debian.org/devel/wnpp/ and
https://www.debian.org/doc/manuals/developers-reference/ch05.en.html#adopting
After claiming the bug you may prepare a new upload of the package and
file an RFS for it using the usual procedure. Until then I'm closing this
bug report.

> I have repository on github with this tool
> https://github.com/dalibor91/fspy
This doesn't look useful, it doesn't even contain the packaging.

-- 
WBR, wRAR


signature.asc
Description: PGP signature

Bug#879759: sponsorship-requests: ponyprog/3.0.0

[Andrey Rahmatullin]

This is not a RFS as you don't seem to have a package yet. If that's true,
please look at https://mentors.debian.net/intro-maintainers and start
doing the packaging as outlined there. Otherwise please file a correct RFS
with a package link. I'm closing this.

-- 
WBR, wRAR


signature.asc
Description: PGP signature

Bug#880005: closed by Gianfranco Costamagna <locutusofb...@debian.org> (unreproducible)

[Gianfranco Costamagna]

hello, I have to maintain compatibility with old systems, having two init files 
is a mess to maintain...

patches are welcome anyway!

G.


Il Sabato 28 Ottobre 2017 16:24, Ralf Jung  ha scritto:



I think I found the problem:  The virtualbox systemd unit (well, the
init script, really) was disabled.  I am pretty sure that I did not
disable it, so I am not sure how this happened.

Maybe it would be better for virtualbox to use modules-load.d instead of
an init script when systemd is available?  In fact, virtualbox is
currently the *only* legacy init script on my system.

; Ralf

Bug#880962: mips*: "gcc --help=target --help=optimizers" busyloops forever

[James Cowgill]

Hi,

On 06/11/17 12:11, Adrian Bunk wrote:
> Package: gcc-7
> Version: 7.2.0-12
> Severity: serious
> Control: affects -1 src:amanda
> 
> https://buildd.debian.org/status/package.php?p=amanda=sid
> 
> ...
> checking for gcc flag -fstrict-aliasing... 
> E: Build killed with signal TERM after 360 minutes of inactivity
> 
> 
> Testcase:
> 
> (sid_mips-dchroot)bunk@minkus:~$ gcc --help=target --help=optimizers  

Bisected to this commit, but I don't know how far that helps us.
Probably some mips specific option blows up.

> 4972d77dcbe0c4186dabc67a0edb7f3f2df4e646 is the first bad commit
> commit 4972d77dcbe0c4186dabc67a0edb7f3f2df4e646
> Author: marxin 
> Date:   Fri Sep 15 08:18:34 2017 +
> 
> Subject: Backport r251400
> 
> 2017-09-15  Martin Liska  
> 
> Backport from mainline
> 2017-08-29  Martin Liska  
> 
> PR other/39851
> * gcc.c (driver_handle_option): Add new argument.
> * opts-common.c (handle_option): Pass
> target_option_override_hook.
> * opts-global.c (lang_handle_option): Add new option.
> (set_default_handlers):  Add new argument.
> (decode_options): Likewise.
> * opts.c (target_handle_option): Likewise.
> (common_handle_option): Call target_option_override_hook.
> * opts.h (struct cl_option_handler_func): Add hook for
> target option override.
> (struct cl_option_handlers): Likewise.
> (set_default_handlers): Add new argument.
> (decode_options): Likewise.
> (common_handle_option): Likewise.
> (target_handle_option): Likewise.
> * toplev.c (toplev::main): Pass targetm.target_option.override
> hook.
> 2017-09-15  Martin Liska  
> 
> Backport from mainline
> 2017-08-29  Martin Liska  
> 
> PR other/39851
> * c-common.c (parse_optimize_options): Add argument to function
> call.
> * c-pragma.c (handle_pragma_diagnostic): Likewise.
> 
> 
> git-svn-id: svn+ssh://gcc.gnu.org/svn/gcc/branches/gcc-7-branch@252787 
> 138bc75d-0d04-0410-961f-82ee72b054a4
> 
> :04 04 435ac2ed3f121183790fa89d3120400725e3c6a0 
> 424643290a7f6c41e0abe05fb6c596113ed6e611 Mgcc

James



signature.asc
Description: OpenPGP digital signature

Bug#880987: ITP: r-cran-drr -- GNU R dimensionality reduction via regression

[Andreas Tille]

Package: wnpp
Severity: wishlist
Owner: Andreas Tille 

* Package name: r-cran-drr
  Version : 0.0.2
  Upstream Author : Guido Kraemer 
* URL : https://cran.r-project.org/package=DRR
* License : GPL
  Programming Lang: GNU R
  Description : GNU R dimensionality reduction via regression
 This GNU R package provides an implementation of dimensionality reduction
 via regression using Kernel Ridge Regression.


Remark: This package belongs to a pyramid of dependencies to upgrade
r-cran-caret to its latest upstream version.  It will be maintained by
the Debian Science team at
https://anonscm.debian.org/git/debian-science/packages/r-cran-drr.git
Any takers for other new dependencies of r-cran-caret would be
really appreciated.  Also other Uploaders who volunteer to keep on
maintaining the packages are really welcome.

Bug#878310: linux-image-4.14.0-rc3-amd64: VirtualBox additions module fails to build

[Vincas Dargis]

It started working for me after I have used new Guest Additions iso [0][1].

Found it through ticket #17163 [2]


[0] 
https://www.virtualbox.org/download/testcase/VBoxGuestAdditions_5.2.1-118918.iso
[1] https://www.virtualbox.org/wiki/Downloads
[2] https://www.virtualbox.org/ticket/17163

Bug#880068: virtualbox: Doesn't build on kernel linux-4.14-rc6

[Vincas Dargis]

Please try with guest additions 5.2.1 image [0] from 
https://www.virtualbox.org/wiki/Downloads

There was various issues [1] and for me that updated image fixed. It works on 
rc7 guest.

[0] 
https://www.virtualbox.org/download/testcase/VBoxGuestAdditions_5.2.1-118918.iso
[1] https://www.virtualbox.org/ticket/17163

Bug#880986: distcc lost support for zeroconf. Breaks upgrade.

[Francois Gouget]

Package: distcc
Version: 3.1-6.3
Severity: normal

Dear Maintainer,

When I upgraded to 3.1-6.3, apt-get failed with the following error
message, thus interrupting the upgrade and blocking the upgrade of many
packages.

$ apt-get install distcc
[...]
Setting up distcc (3.1-6.3) ...
Updating symlinks in /usr/lib/distcc ...
Job for distcc.service failed because the control process exited with error 
code.
See "systemctl  status distcc.service" and "journalctl  -xe" for details.
invoke-rc.d: initscript distcc, action "start" failed.
* distcc.service - LSB: simple distributed compiler server
   Loaded: loaded (/etc/init.d/distcc; generated; vendor preset: enabled)
   Active: failed (Result: exit-code) since Mon 2017-11-06 18:47:31 CET; 4ms ago
 Docs: man:systemd-sysv-generator(8)
  Process: 10779 ExecStart=/etc/init.d/distcc start (code=exited, status=101)

Nov 06 18:47:31 amboise distcc[10779]: Starting Distributed Compiler Daemon: 
distccd/etc/init.d/distcc: start failed with error code 101 ... (warning).
Nov 06 18:47:31 amboise distcc[10779]:  failed!
Nov 06 18:47:31 amboise systemd[1]: distcc.service: Control process exited, 
code=exited status=101
Nov 06 18:47:31 amboise systemd[1]: distcc.service: Failed with result 
'exit-code'.
Nov 06 18:47:31 amboise systemd[1]: Failed to start LSB: simple distributed 
compiler server.
dpkg: error processing package distcc (--configure):
 installed distcc package post-installation script subprocess returned error 
exit status 1
Processing triggers for systemd (235-2) ...
Processing triggers for man-db (2.7.6.1-2) ...
Errors were encountered while processing:
 distcc
E: Sub-process /usr/bin/dpkg returned an error code (1)


The reason for this error is that my /etc/default/distcc file has the
following line:

ZEROCONF="true"

Removing that line fixed the issue.

As far as I can tell the distcc package was compiled without support
for zeroconf but no step was taken to warn the user (e.g. with a
debconf message), update the configuration file, and ensure a smooth
upgrade.

Given that this release was a non-maintainer upgrade maybe the loss of
zeroconf support was unintentional. If so fixing the issue is probably a
'simple matter' of adding a missing Build-Depends.


-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.13.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8), 
LANGUAGE=fr:en_US (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages distcc depends on:
ii  adduser3.116
ii  debconf [debconf-2.0]  1.5.64
ii  libc6  2.24-17
ii  libpopt0   1.16-10+b2
ii  lsb-base   9.20170808
ii  netbase5.4

distcc recommends no packages.

Versions of packages distcc suggests:
ii  ccache   3.3.4-1
ii  dbus 1.12.0-1
pn  distcc-pump  
ii  distccmon-gnome  3.1-6.3
pn  dmucs

-- debconf information:
  distcc/daemon-nice: 10
  distcc/daemon-listen: 192.168.12.250
  distcc/daemon: true
  distcc/daemon-jobs:
  distcc/daemon-zeroconf: true
  distcc/daemon-allow: 192.168.12.250/32 192.168.12.128/25 192.168.12.64/26

Bug#832716: strophejs: Please package new version, update Homepage

[W. Martin Borgert]

Please consider updating the package.
Upstream is now at version 1.2.14 of 2017-06-17,
i.e. the Debian package is 3.5 years old.
The new version has ~35 upstream bugs fixed and many features added.
See https://github.com/strophe/strophejs/releases

Bug#833508: xbacklight reports "No outputs have backlight property"

[128]

However, this solution is not universal. It is only valid on systems where the 
display driver is intel.

On Wed, 5 Jul 2017 00:47:43 -0700 John Eikenberry  wrote:> The 
arch wiki has an alternative fix. They just suggest this in your xorg.conf.
> 
> Section "Device"
> Identifier  "Card0"
> Driver  "intel"
> Option  "Backlight"  "intel_backlight"
> EndSection
> 
> It fixed it for me.
> 
> For more go here and search for xbacklight.
> https://wiki.archlinux.org/index.php/Backlight
> 
> 

Bug#880985: Change python-lzma from Recommends to Depends

[Valmiky Arquissandas]

Package: apt-offline
Version: 1.7.2

During the initial sync of the APT database in apt-offline (apt-offline 
install target/ --verbose), apt-offline kept failing with errors like 
"Failed to sync file 
/var/lib/apt/lists/partial/deb.debian.org_debian_dists_stretch_main_binary-amd64_Packages".


After debugging, I finally realized that the issue was on a missing 
python-lzma on the offline machine, failing silently.


Please consider the following:
- In this use case, apt-offline is being used to maintain a reasonably 
air-gapped machine, which means it was never connected to any network.
- This means that the initial APT database update also depended on 
apt-offline. There was no online database update whatsoever.

- The missing LZMA module was NOT apparent, not even with --verbose
- The following lines in 
/usr/lib/python2.7/dist-packages/apt_offline_core/AptOfflineLib.py are 
especially significant, as they are effectively a silent failure:


---
try:
import lzma
except ImportError:
modLZMA = False
---

- Considering that, at least in Debian 9, using the default 
deb.debian.org entry in sources.list, the database files are xzipped 
(therefore, depending on python-lzma), this is a problem, and the error 
message is misleading.


Given this scenario, I suggest the Debian package to have python-lzma in 
Depends instead of Recommends, and/or the upstream apt-offline to 
present more information if the module lzma is not available, even if 
only with --verbose, and especially when that is a cause of failure.


I know that the current versions are written in Python 3, but as long as 
Debian 9 is the current stable, this issue may burn someone else.


Thank you for your attention,
Valmiky Arquissandas

Bug#879714: ITP: libusbauth-configparser1 -- Library for USB Firewall including flex/bison parser

[Stefan Koch]

Am 26.10.2017 um 22:43 schrieb Ben Hutchings:

On Wed, 2017-10-25 at 00:44 +0200, Stefan Koch wrote:

Package: wnpp
Severity: wishlist
Owner: Stefan Koch 

* Package name: libusbauth-configparser1
   Version : 1.0
   Upstream Author : Stefan Koch 
* URL : https://github.com/kochstefan/usbauth-all/libusba
uth-configparser
* License : LGPL-2.1
   Programming Lang: C
   Description : Library for USB Firewall including flex/bison
parser

The library is used to read the usbauth config file into data
structures and is used by usbauth and YaST.

This work was initially created for SUSE in 2015. Part of it was the
USB interface authorization for the Linux kernel. It's contained in
Linux since kernel version 4.4.
Please add the packages libusbauth-configparser, usbauth, usbauth-
notifier to debian unstable.

You titled this as an ITP (Intent To Package) but this sentence makes
it sound like an RFP (Request For Package).  Which is it?

I have created RFP #880983. Thanks.

Ben.


See also: openSUSE package request
(https://build.opensuse.org/request/show/533512)

Bug#880984: dracut: Possibly ship dracut.pc?

[Christoph Biedl]

Package: dracut
Version: 045+132-1
Severity: wishlist

Dear Maintainer,

while packaging clevis (#854410) I learned it has a build dependency on
dracut, and upstream's configure checks for presence of your package
using PKG_CHECK_MODULES which probes for dracut.pc - that file gets
created when building dracut but you don't ship it. Hence the check
fails.

While I can and probably will patch out that check since Debian's build
dependency mechanism will assert a dracut installation anyway ...
if you can think of a good reason to ship dracut.pc instead, now was a
good time to do so.

In either way, please let me know about your decision so I can act
accordingly.

Cheers,

Christoph



signature.asc
Description: Digital signature

Bug#880983: RFP: libusbauth-configparser1, usbauth, usbauth-notifier -- USB Firewall including flex/bison parser

[Stefan Koch]

Package: wnpp
Severity: wishlist

This work was initially created for SUSE in 2015. Part of it was the USB 
interface authorization for the Linux kernel. It's contained in Linux since 
kernel version 4.4.
Please add the following packages libusbauth-configparser1, usbauth, 
usbauth-notifier to debian unstable.
The packages are already packaged for debian (see debian subfolder for each 
package).

GIT Repository: https://github.com/kochstefan/usbauth-all.git

This bug report replaces bug reports #879714, #879715, #879716


PACKAGE libusbauth-configparser1:
* Package name: libusbauth-configparser1
  Version : 1.0
  Upstream Author : Stefan Koch 
* URL : 
https://github.com/kochstefan/usbauth-all/tree/master/libusbauth-configparser
* License : LGPL-2.1
  Programming Lang: C
  Description : Library for USB Firewall including flex/bison parser

The library is used to read the usbauth config file into data structures and is 
used by usbauth and YaST.
See also: openSUSE package request 
(https://build.opensuse.org/request/show/533512)


PACKAGE usbauth:
* Package name: usbauth
  Version : 1.0
  Upstream Author : Stefan Koch 
* URL : 
https://github.com/kochstefan/usbauth-all/tree/master/usbauth
* License : GPL-2.0
  Programming Lang: C
  Description : USB firewall against BadUSB attacks

It is a firewall against BadUSB attacks. A config file descibes in which way 
USB interfaces would be accepted or denied.
To the kernel an interface authorization was developed with this firewall.
The firewall sets the authorization mask according to the rules.
See also: openSUSE package request 
(https://build.opensuse.org/request/show/533513)


PACKAGE usbauth-notifier:
* Package name: usbauth-notifier
  Version : 1.0
  Upstream Author : Stefan Koch 
* URL : 
https://github.com/kochstefan/usbauth-all/tree/master/usbauth-notifier
* License : GPL-2.0
  Programming Lang: C
  Description : Notifier for USB Firewall to use with desktop environments

A notifier for the usbauth firewall against BadUSB attacks. The user could 
manually allow or deny USB devices.
Every user that wants use the notifier must be added to the usbauth group.
See also: openSUSE package request 
(https://build.opensuse.org/request/show/533514)



NOTICE aboud usbguard and usbauth:
The usbguard project provides an USB firewall, too. It is already packaged 
within debian.
The usbguard development was supported by RedHat and usbauth was 
supported by SUSE. Historical, usbguard was published while the working 
on usbauth has already been started.
The main difference is that usbguard works with USB devices and usbauth works 
with USB interfaces.

usbauth could allow/deny usb interfaces using the new usb interface 
authorization mechanism that is part of linux 4.4 and above.
See also: 
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/log/?h=v4.4.94=grep=interface+auth

Examples:
* allow a storage functionality of a USB device and deny USB Ethernet of 
the same device
* allow audio/video functionality of an USB TV card and deny using the 
remote control functionality
* allow USB printing/scanning and deny USB storage usage of a 
multifunction printer (BTW: the interface mechanism supports denying 
user space triggered actions (using USB claiming) like scanning)

usbguard could allow/deny USB devices using the usb device authorization 
mechanism of the Linux kernel.
It allows to denying a whole device if one interface of it is considered 
as bad (usbauth supports this, too)
usbguard allows creating actions that is not supported by usbauth.

If you can understand German language you could read 
a detailed description: 
https://epub.uni-bayreuth.de/3048/1/koch2017sicherheitsaspekte.pdf

Bug#880073: lua-ldoc: lua 5.3 support

[Reiner Herrmann]

Hi Julian,

On Mon, Nov 06, 2017 at 09:41:24AM +0100, Julian Wollrath wrote:
> no problem. I updated the packaging in git, but I do not have upload
> rights. Could you upload the package (i.e. check it out, 'gitpkg HEAD'
> to create source and debian tarball and .dsc, ...).

thanks for working on this.
Could you please also update to the new upstream version 1.4.6 (#878667),
because upstream mentions in the changelog that there is "better Lua 5.3
support" in 1.4.4.

I also can't upload it, but I'll ask my usual sponsor to upload it then.

Kind regards,
  Reiner


signature.asc
Description: PGP signature

Bug#875601: RFP: znc-push -- Push notification service module for ZNC

[Mattia Rizzolo]

On Thu, Sep 14, 2017 at 04:32:22PM +0200, Mattia Rizzolo wrote:
> > That's something i could live with. Maybe znc upstream will start 
> > stabilizing
> > API/ABI after some time and we can have more relaxed dependencies.
> 
> See the following commits for what I'm talking about:
> https://anonscm.debian.org/git/collab-maint/znc-push.git/commit/?id=0de616a06fac00ddf38d4a6e34f500d47efd3162
> https://anonscm.debian.org/git/collab-maint/znc-push.git/commit/?id=474fb1f4ca8f62d8fbcd54fdb3b96488913dacc5
> 
> The last one is probably not OK for unstable, as locking it that way
> would prever binNMUs to be enough after new ZNC uploads.
> The first commit, I've done it that way, but could also be done with
> e.g.
> Depends: znc (>> ${zncver})
> Breaks: znc (<< ${zncver}+)
> if you think it would be somewhat better.

That's not even good enough: I was running with znc 1.6.5-1~bpo8+1 from
jessie-backports and the version tagged as
debian/1.0.0+git20170403.dcb1939-1 built in a jessie-bpo chroot.
Today I upgraded to stretch, so with znc 1.6.5-1; the breaks on the
znc-push package allowed coinstallation, but znc segfaulted at startup,
until I did a rebuild in a stretch chroot of the same thing (and bumped
the version because I want to call me sane, see the -2 tag).

> Feel free to take it over from where I left.

It would be great if whoever picks it up could take care of these
incompatibilities.

-- 
regards,
Mattia Rizzolo

GPG Key: 66AE 2B4A FCCF 3F52 DA18  4D18 4B04 3FCD B944 4540  .''`.
more about me:  https://mapreri.org : :'  :
Launchpad user: https://launchpad.net/~mapreri  `. `'`
Debian QA page: https://qa.debian.org/developer.php?login=mattia  `-


signature.asc
Description: PGP signature

Bug#795492: New upstream series (soname 2.5), please package it

[Christoph Biedl]

Control: tags 795492 patch

Christoph Biedl wrote...

> Any progress on this? The tang package needs a newer version of
> http_parser.h to build, and I'm not at all keen on shipping a code
> copy.

Attached the debdiff for debian/ for an upgrade to 2.7.1

Basically, the two older patches went upstream, and there's another
fallthrough that needs to be tagged. The rest is version number
adjustment.

Christoph

diff --git a/debian/changelog b/debian/changelog
index 5e50b3a..0e684d0 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+http-parser (2.7.1-0.1) unstable; urgency=medium
+
+  * Non-maintainer upload
+  * New upstream version
+
+ -- Christoph Biedl   Mon, 06 Nov 2017 
00:26:17 +0100
+
 http-parser (2.1-2.1) unstable; urgency=medium
 
   * Non-maintainer upload.
diff --git a/debian/clean b/debian/clean
index 6df0974..f8521d2 100644
--- a/debian/clean
+++ b/debian/clean
@@ -1 +1 @@
-libhttp_parser.so.2.1
+libhttp_parser.so.2.7.1
diff --git a/debian/control b/debian/control
index 4ed6323..db28172 100644
--- a/debian/control
+++ b/debian/control
@@ -11,7 +11,7 @@ Vcs-Browser: 
http://anonscm.debian.org/gitweb?p=collab-maint/http-parser.git;a=s
 Package: libhttp-parser-dev
 Section: libdevel
 Architecture: any
-Depends: libhttp-parser2.1 (= ${binary:Version}), ${misc:Depends}
+Depends: libhttp-parser2.7.1 (= ${binary:Version}), ${misc:Depends}
 Description: parser for HTTP messages: development libraries and header files
  It parses both requests and responses. The parser is designed to be used in
  performance HTTP applications. It does not make any syscalls nor allocations,
@@ -21,7 +21,7 @@ Description: parser for HTTP messages: development libraries 
and header files
  .
  This package contains development libraries and header files.
 
-Package: libhttp-parser2.1
+Package: libhttp-parser2.7.1
 Architecture: any
 Multi-Arch: same
 Pre-Depends: ${misc:Pre-Depends}
@@ -33,18 +33,18 @@ Description: parser for HTTP messages written in C
  architecture, it only requires about 40 bytes of data per message stream (in
  a web server that is per connection).
 
-Package: libhttp-parser2.1-dbg
+Package: libhttp-parser2.7.1-dbg
 Architecture: any
 Multi-Arch: same
 Section: debug
 Depends:
-libhttp-parser2.1 (= ${binary:Version}),
+libhttp-parser2.7.1 (= ${binary:Version}),
 ${misc:Depends}
-Description: debugging symbols for libhttp-parser2.1
+Description: debugging symbols for libhttp-parser2.7.1
  It parses both requests and responses. The parser is designed to be used in
  performance HTTP applications. It does not make any syscalls nor allocations,
  it does not buffer data, it can be interrupted at anytime. Depending on your
  architecture, it only requires about 40 bytes of data per message stream (in
  a web server that is per connection).
  .
- This package contains the debugging symbols for libhttp-parser2.1.
+ This package contains the debugging symbols for libhttp-parser2.7.1.
diff --git a/debian/libhttp-parser-dev.links b/debian/libhttp-parser-dev.links
index 674258a..b49b64d 100755
--- a/debian/libhttp-parser-dev.links
+++ b/debian/libhttp-parser-dev.links
@@ -1,4 +1,4 @@
 #!/usr/bin/dh-exec
 
-usr/lib/${DEB_HOST_MULTIARCH}/libhttp_parser.so.2.1 
usr/lib/${DEB_HOST_MULTIARCH}/libhttp_parser.so.2
+usr/lib/${DEB_HOST_MULTIARCH}/libhttp_parser.so.2.7.1 
usr/lib/${DEB_HOST_MULTIARCH}/libhttp_parser.so.2
 usr/lib/${DEB_HOST_MULTIARCH}/libhttp_parser.so.2 
usr/lib/${DEB_HOST_MULTIARCH}/libhttp_parser.so
diff --git a/debian/libhttp-parser2.1-dbg.lintian-overrides 
b/debian/libhttp-parser2.1-dbg.lintian-overrides
index f649e17..42bef58 100644
--- a/debian/libhttp-parser2.1-dbg.lintian-overrides
+++ b/debian/libhttp-parser2.1-dbg.lintian-overrides
@@ -1,2 +1,2 @@
 # Upstread does not provide a changelog
-libhttp-parser2.1-dbg: no-upstream-changelog
+libhttp-parser2.7.1-dbg: no-upstream-changelog
diff --git a/debian/libhttp-parser2.1.install b/debian/libhttp-parser2.1.install
index 45a4ae6..10b2460 100755
--- a/debian/libhttp-parser2.1.install
+++ b/debian/libhttp-parser2.1.install
@@ -1,3 +1,3 @@
 #!/usr/bin/dh-exec
 
-libhttp_parser.so.2.1 usr/lib/${DEB_HOST_MULTIARCH}/
+libhttp_parser.so.2.7.1 usr/lib/${DEB_HOST_MULTIARCH}/
diff --git a/debian/libhttp-parser2.1.lintian-overrides 
b/debian/libhttp-parser2.1.lintian-overrides
index 87e2614..7645fb1 100644
--- a/debian/libhttp-parser2.1.lintian-overrides
+++ b/debian/libhttp-parser2.1.lintian-overrides
@@ -1,2 +1,2 @@
 # Upstread does not provide a changelog
-libhttp-parser2.1: no-upstream-changelog
+libhttp-parser2.7.1: no-upstream-changelog
diff --git a/debian/patches/bug-853446-fix-ftbfs-gcc-7.patch 
b/debian/patches/bug-853446-fix-ftbfs-gcc-7.patch
index 7e128b2..a6b8a01 100644
--- a/debian/patches/bug-853446-fix-ftbfs-gcc-7.patch
+++ b/debian/patches/bug-853446-fix-ftbfs-gcc-7.patch
@@ -1,8 +1,15 @@
-Index: http-parser/http_parser.c

Bug#880982: ifup does not trigger scripts any more after booting

[Narcis Garcia]

Package: udev
Version: 232-25+deb9u1
Severity: serious

Tested with updated Debian 9 (amd64):

Interface is declared at /etc/network/interfaces :
auto enp2s0
allow-hotplug enp2s0
iface enp2s0 inet dhcp

An executable script:
/etc/network/if-up.d/test1
only runs on boot (per each NIC). If network cable is plugged to enp2s0
some minutes later, script is not run.
Same behavior when booting with network, and unplugging + plugging later.


-- 


__
I'm using this express-made address because personal addresses aren't
masked enough at this mail public archive. Public archive administrator
should fix this against automated addresses collectors.

Bug#880017: glusterfs: CVE-2017-15096: Null pointer dereference

[Salvatore Bonaccorso]

Control: reopen -1
Control: found -1 3.12.1-1
Control: found -1 3.12.2-1

Hi Patrick,

On Sat, Oct 28, 2017 at 02:40:08PM +0200, Salvatore Bonaccorso wrote:
> Source: glusterfs
> Version: 3.12.1-1
> Severity: important
> Tags: patch security upstream
> Forwarded: https://bugzilla.redhat.com/show_bug.cgi?id=1502928
> 
> Hi,
> 
> the following vulnerability was published for glusterfs.
> 
> CVE-2017-15096[0]:
> | A flaw was found in GlusterFS in versions prior to 3.10. A null
> | pointer dereference in send_brick_req function in
> | glusterfsd/src/gf_attach.c may be used to cause denial of service.
> 
> If you fix the vulnerability please also make sure to include the
> CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
> 
> For further information see:
> 
> [0] https://security-tracker.debian.org/tracker/CVE-2017-15096
> https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15096
> [1] https://bugzilla.redhat.com/show_bug.cgi?id=1502928
> [2] 
> http://git.gluster.org/cgit/glusterfs.git/commit/?id=1f48d17fee0cac95648ec34d13f038b27ef5c6ac

The patch is missing to be applied though in the 3.12.2-1 version
marking the bug as fixing. Thus reopening. The issue has only
been fixed after the v3.12.2 release in release-3.12.

Regards,
Salvatore

Bug#617242: mlmmj-make-ml does not ensure correct permissions for created files and directories

[Chris Knadle]

Reuben Thomas:
> On 6 November 2017 at 03:07, Chris Knadle  wrote:
> Do you believe there are specific permissions that always neeed to be
>> used regardless of specific MTA and setup?
>>
> 
> ​No. However, it would be good to have some opinionated defaults.

I don't know what this means, and I don't think it could sanely be
accomplished.

> Otherwise, this is just another hard-to-set-up package that requires lots
> of reading and fiddling, one is not sure (unless one becomes an expert)
> that it is set up properly, securely etc., and one gravitates towards
> proprietary products or cloud offerings that are simply easier and make
> this sort of thing Someone Else's Problem, which is a shame.

I agree with this. At the same, time it's my experience that everything
in email configuration likewise has this "open-ended" issue. Postfix
doesn't by default come with configuration for Amavis, ClamAV,
SpamAssassin, etc, yet any Internet-facing mail server would
realistically need these things and setting them up requires a lot of
fiddling and reading because there are multiple ways to configure them.
And all that would normally come before mlmmj setup. Email server
configuration are specifically allowed to be different, so default
configuration can come only for certain pieces when there are sane
defaults that can be shipped.

Sometimes the MTA and mlmmj are set up by an administrator, and
sometimes it's set up via a web panel. If any default configuration came
with mlmmj on Debian but not upstream, then web panels would need to be
updated to remove whatever default configuration was shipped only on
Debian. i.e. there are unforeseen consequences for this kind of change.

The best thing I can suggest is to sign up for the mlmmj "discussion"
mailing list and discuss this idea there.

   http://mlmmj.org/lists

If there are good default permissions that could be set, upstream would
be the place to make the change, and if there aren't then upstream would
know more about the reason why there aren't.

In the meantime I'm going to mark this bug "wontfix" because I don't see
any better way of handling it.

   -- Chris

-- 
Chris Knadle
chris.kna...@coredump.us

Bug#733315: Same problem here

[Hans Freitag]

Same here.

The systemd unit file for opensmtpd is not configured porperly, which
basicly means it always shows success even if the service is not running.

I did not track yet if opensmtpd wents down from time to time or if the
reload is not working, too.

Do you need any help in repairing the unit file?

regards

Hans



signature.asc
Description: OpenPGP digital signature

Bug#880977: correct manpage example

[Osamu Aoki]

Hi,

Excuse me.

On Mon, Nov 06, 2017 at 10:59:06AM -0500, Michael Stone wrote:
...
> I don't understand what you think is wrong.

I must have had strained eyes.

I don't understand what I was seeing

Osamu

Bug#880979: libreoffice-calc: Crash after starting NLPsolver

[Rene Engelhard]

severity 880979 grave
reassign 880979 src:linux
forcemerge 880979 865303 
affects 880979 libreoffice-wiki-publisher
affects 880979 libreoffice-nlpsolver
affects 880979 libreoffice-calc
thanks

Hi,

On Mon, Nov 06, 2017 at 04:36:29PM +0100, Sulyok Attila wrote:
> I experinenced an immediate crach when starting NLPsolver extension.  

The NLPsolver extension is in libreoffice-nlpsolver, not in -calc...

> I am regular user of this non-linear extension package.
> Recently, I updated my Libreoffice-set to 5.4.2 from stretch-backport.

... and your kernel, probably ... longer ago...

> I have worked on my sheets for a week, and now I started an NLPsolver step 
> that caused a prompt crash.

Yes, known. It's Java.

> I repeated it a few times with the same crashing end.
> I checked the installation and everything was good.
> I deleted and reinstalled the NLP extension, but it did not help.
> 
> A cleared the whole libreoffice installation and went back to the 5.2.7 
> version of the stable, beacause it worked well previously.
> I received the same crashing result.

Exactly. Because it's not LO at fault.

> Because the NLP package itself is not a new one, I assume there is some 
> glitch in the debian package and/or there is 
> some faulty error treating in the LibreOffice.

No, in Java and the kernel.

> Now I see two problems.
> 1. It is not a normal situation if the Calc of LibreOffice crashes when 
> something is not proper in its environment.

Correct.

> 2. What do I need to do to restore my LibreOffice ability to use the NLP 
> again ?

Fix the Linux kernel and/or Java. Or use amd64 instead of i386. This is
a know problem and doesn't happen on amd64.

See

#865303 [G|u|=☣] [src:linux] libreoffice: Libreoffice Java features crash with 
Linux 3.16.43-2+deb8u1

(and the bugs merged with it)

#876051 [i|+|☣] [openjdk-8-jre-headless] i386 applications using JNI may crash 
due to Hotspot workaround for Exec Shield
#876068 [i|+|☣] [openjdk-7-jre-headless] i386 applications using JNI may crash 
due to Hotspot workaround for Exec Shield

and

#876069 [i|+|☺☣] [openjdk-9-jre-headless] i386 applications using JNI may crash 
due to Hotspot workaround for Exec Shield 

(I just noticed that this fixed, not available in stable yet. Maybe I should
force that newe(er) OpenJDK 9 for i386 for buster/sid/stretch-backports if it's
available there.)

See also the press coverage months ago:

https://lwn.net/Articles/727206/
https://lwn.net/Articles/727703/

Regards,

Rene

Bug#880976: lbdb: should not depend on bbdb (only suggest it)

[Roland Rosenfeld]

Hi Jonas!

On Mo, 06 Nov 2017, Jonas Smedegaard wrote:

> Package: lbdb
> Version: 0.45.1
> Severity: important

> lbdb means "Little Brother's DataBase" and I take that to indicate that
> it is lightweight compared to bbdb.

It's only a name of a program, which doesn't has this implication.
While BBDB is a address book mechanism in Emacs, LBDB is a different
address book mechanism for mutt.

> Release 0.45.1 adds dependency on bbdb, defeating that lightness: It now
> pulls in emacs which means for me 112 MB of unneeded baggage.
> 
> Please lower to only suggesting bbdb similar to all the other helper
> tools supported optionally by lbdb.

The problem is, that there are two elisp files included in lbdb
package, which I try to handle with dh-elpa.  This fails for
lbdb_bbdb_query.el (used in m_bbdb module), if bbdb isn't installed.

Anyway, I fear that for you not bbdb is the main problem but dh-elpa,
which depends on emacs25-nox | emacs25 | emacs24-nox | emacs24.

Maybe I should undo the migration from emacsen-common to dh-elpa, that
I was forced to by lintian warning (see
https://lintian.debian.org/tags/emacsen-common-without-dh-elpa.html )
or split out the elisp stuff into a separate package elpa-lbdb or the
like...

Greetings
Roland





signature.asc
Description: PGP signature

Bug#880981: fix build failure with glibc-2.26

[Matthias Klose]

Package: src:jigdo
Version: 0.7.3-4
Severity: important
Tags: sid buster

fix build failure with glibc-2.26.

The package could benefit with a conversion to quilt package format too.
Index: b/src/mkimage.cc
===
--- a/src/mkimage.cc
+++ b/src/mkimage.cc
@@ -285,27 +285,27 @@ bostream& JigdoDescVec::put(bostream& fi
 //__
 
 namespace {
-  const int SIZE_WIDTH = 12;
+  const int J_SIZE_WIDTH = 12;
 }
 
 ostream& JigdoDesc::ImageInfo::put(ostream& s) const {
-  s << "image-info  " << setw(SIZE_WIDTH) << size() << "  "
+  s << "image-info  " << setw(J_SIZE_WIDTH) << size() << "  "
 << md5() << ' ' << blockLength() << '\n';
   return s;
 }
 ostream& JigdoDesc::UnmatchedData::put(ostream& s) const {
-  s << "in-template " << setw(SIZE_WIDTH) << offset() << ' '
-<< setw(SIZE_WIDTH) << size() << '\n';
+  s << "in-template " << setw(J_SIZE_WIDTH) << offset() << ' '
+<< setw(J_SIZE_WIDTH) << size() << '\n';
   return s;
 }
 ostream& JigdoDesc::MatchedFile::put(ostream& s) const {
-  s << "need-file   " << setw(SIZE_WIDTH) << offset() << ' '
-<< setw(SIZE_WIDTH) << size() << ' ' << md5() << ' ' << rsync() << '\n';
+  s << "need-file   " << setw(J_SIZE_WIDTH) << offset() << ' '
+<< setw(J_SIZE_WIDTH) << size() << ' ' << md5() << ' ' << rsync() << '\n';
   return s;
 }
 ostream& JigdoDesc::WrittenFile::put(ostream& s) const {
-  s << "have-file   " << setw(SIZE_WIDTH) << offset() << ' '
-<< setw(SIZE_WIDTH) << size() << ' ' << md5() << ' ' << rsync() << '\n';
+  s << "have-file   " << setw(J_SIZE_WIDTH) << offset() << ' '
+<< setw(J_SIZE_WIDTH) << size() << ' ' << md5() << ' ' << rsync() << '\n';
   return s;
 }