Bug#905756: Debian 9 boot hangs with linux-image-4.17.0-0.bpo.1-amd64

[Juha Heinanen]

Package: linux-image-4.17.0-0.bpo.1-amd64
Version: 4.17.8-1~bpo9+1

Boot of my Acer C740 hangs after upgrade of Linux kernel from
linux-image-4.16.0-0.bpo.2-amd64 to linux-image-4.17.0-0.bpo.1-amd64.

Hang happens after console message telling that disk sd has been
stopped.

My Debian is version 9 except of this linux-image package from
backports.

Boot using linux-image-4.16.0-0.bpo.2-amd64 works fine.

Bug#900415: just filed #900975

[shirish शिरीष]

Dear Jim_p,

a bit of good news, at least there seems to be an auto-boost
transition listed on the transition tracker.

See https://release.debian.org/transitions/ and more specifically
https://release.debian.org/transitions/html/boost1.67.html

The downer though is that the transition may take a bit of time as
there seem to be quite few transitions to go before boost comes up and
as can be seen the boost transition itself would be a long one.

Feb 2019 is the deadline when Debian will stop accepting new packages.
If the transition happens in a month or two and the maintainer puts
both the newest libtorrent and qbittorrent simultaneously in/around
October or something, it's possible we may be stuck with an older
version of qbittorrent in this cycle.

What could the maintainer do if Christian, the maintainer has the time
is put the latest release on 'experimental' and we the users could use
it and tell if something is missing or if something is buggy but that
is if he can find the time.

-- 
  Regards,
  Shirish Agarwal  शिरीष अग्रवाल
  My quotes in this email licensed under CC 3.0
http://creativecommons.org/licenses/by-nc/3.0/
http://flossexperiences.wordpress.com
EB80 462B 08E1 A0DE A73A  2C2F 9F3D C7A4 E1C4 D2D8

Bug#905731: cinnamon: Localisation seems to be broken in cinnamon 3.8.8 (sid)

[Fabio Fantoni]

Hi, from what you posted I nosaw this:
> Versions of packages cinnamon recommends:
> pn  cinnamon-l10n 
cinnamon-l10n is the package with the translations and result not
installed marked for purge.
This is strange that is caused by upgrade because it is still
recommended by many cinnamon related packages, what you did exactly for
upgrade?

Bug#903709: atomic_init() and friends failing on clang

[Peter Palfrader]

severity 903709 important
thanks

On Fri, 13 Jul 2018, Peter Palfrader wrote:

> Package: clang-6.0
> Version: 1:6.0.1-2
> Severity: normal
> 
> Clang fails to compile the following snippet on (at least) amd64 and i386
> while gcc builds it:
> 
> #include 
> void increment(atomic_size_t *arg) {
>   atomic_fetch_add(arg, 1);
> }
> 
> Maybe something is fishy with the include paths, but it's not clear to me.

Ping?

This breaks building perfectly fine software.

-- 
|  .''`.   ** Debian **
  Peter Palfrader   | : :' :  The  universal
 https://www.palfrader.org/ | `. `'  Operating System
|   `-https://www.debian.org/

Bug#905748: debian-games: Please bring back games-finest-light

[Markus Koschany]

Hi Axel,

Am 08.08.2018 um 23:02 schrieb Axel Beckert:
> Source: debian-games
> Severity: wishlist
> Version: 2.4
> 
> The debian/changelog entry for 2.4 says:
> 
>* Remove finest-light binary package. Nowadays modern computers should be
>  capable of running all free software games in Debian without 
> restrictions.
> 
> The latter is neither true nor should it be a reason to remove this IMHO
> very useful metapackage:
> 
>* There are definitely many modern computers without graphics
>  hardware acceleration, espcially in the single board computer
>  segment (ARM, MIPS, etc., which Debian also targets).
> 
>* On all devices which boot up on SD or MicroSD cards, disk space is
>  scarce and hence a collection of lightweight games makes also sense
>  for more powerful computers which don't have a hard disk or real SSD.
> 
>* Debian does not only run on "modern" computers.

This was not the only reason but surely one of the most important ones.
Compared to games-finest, games-finest-light always had less than half
of the reported popcon installations. It was a subset of games-finest
anyway minus 21 packages that are more hardware demanding or occupy more
disk space and resources.

The target group of debian-games are gamers and I simply assume that in
2018 most desktop computers and even older models are shipped with a
hardware accelerated video card. Even the oldest video card is capable
of running OpenArena whose engine is already 20 years old. The vast
majority of gamers use amd64 hardware and nowadays a typical desktop
computer provides hundreds of gigabyte of disk space. ARM and MIPS
gamers are a tiny, tiny minority of another minority: FOSS gamers. I
have also recently learned that MIPS is strong in one segment, routers,
but I have never heard that they seriously target gamers.

games-finest-light always felt like a duplicate to me because it
contained 80% of the packages of games-finest. Someone who has to make
compromises due to disk space or hardware constraints can simply decide
to not install those 21 games which were omitted from games-finest-light
or decide to install games manually by looking at the recommended list
from games-finest.

I think the idea to include games-finest-light was good but I don't feel
that the omission of games-finest-light makes a big overall difference
and I don't intend to bring it back.

Regards,

Markus



signature.asc
Description: OpenPGP digital signature

Bug#905397: Unable to build Julia 0.7.0~rc2 due to illegal inttoptr

[Lumin]

control: tag -1 +confirmed +patch

We have successfully built Julia with the patched llvm-6.0 .
Please merge the two patches and update the llvm package.

 * llvm-D49832-SCEVPred.patch
 * llvm-rL323946-LSRTy.patch

They come from Julia's commit df451468a14e0b0f7985f8396a6c15ef5a411422
commit 98592fcc61307968f7df1362771534595a1e1c21
Author: Keno Fischer 
Date:   Wed Jul 25 19:29:02 2018 -0400

[SCEV] Don't expand Wrap predicate using inttoptr in ni addrspaces

Summary:
In non-integral address spaces, we're not allowed to introduce inttoptr/ptrtoint
intrinsics. Instead, we need to expand any pointer arithmetic as geps on the
base pointer. Luckily this is a common task for SCEV, so all we have to do here
is hook up the corresponding helper function and add test case.

Fixes PR38290

Reviewers: reames, sanjoy

Subscribers: javed.absar, llvm-commits

Differential Revision: https://reviews.llvm.org/D49832

diff --git a/lib/Analysis/ScalarEvolutionExpander.cpp b/lib/Analysis/ScalarEvolutionExpander.cpp
index 7f76f057216..f441a3647fb 100644
--- a/lib/Analysis/ScalarEvolutionExpander.cpp
+++ b/lib/Analysis/ScalarEvolutionExpander.cpp
@@ -2157,8 +2157,9 @@ Value *SCEVExpander::generateOverflowCheck(const SCEVAddRecExpr *AR,
   const SCEV *Step = AR->getStepRecurrence(SE);
   const SCEV *Start = AR->getStart();
 
+  Type *ARTy = AR->getType();
   unsigned SrcBits = SE.getTypeSizeInBits(ExitCount->getType());
-  unsigned DstBits = SE.getTypeSizeInBits(AR->getType());
+  unsigned DstBits = SE.getTypeSizeInBits(ARTy);
 
   // The expression {Start,+,Step} has nusw/nssw if
   //   Step < 0, Start - |Step| * Backedge <= Start
@@ -2170,11 +2171,12 @@ Value *SCEVExpander::generateOverflowCheck(const SCEVAddRecExpr *AR,
   Value *TripCountVal = expandCodeFor(ExitCount, CountTy, Loc);
 
   IntegerType *Ty =
-  IntegerType::get(Loc->getContext(), SE.getTypeSizeInBits(AR->getType()));
+  IntegerType::get(Loc->getContext(), SE.getTypeSizeInBits(ARTy));
+  Type *ARExpandTy = DL.isNonIntegralPointerType(ARTy) ? ARTy : Ty;
 
   Value *StepValue = expandCodeFor(Step, Ty, Loc);
   Value *NegStepValue = expandCodeFor(SE.getNegativeSCEV(Step), Ty, Loc);
-  Value *StartValue = expandCodeFor(Start, Ty, Loc);
+  Value *StartValue = expandCodeFor(Start, ARExpandTy, Loc);
 
   ConstantInt *Zero =
   ConstantInt::get(Loc->getContext(), APInt::getNullValue(DstBits));
@@ -2197,8 +2199,21 @@ Value *SCEVExpander::generateOverflowCheck(const SCEVAddRecExpr *AR,
   // Compute:
   //   Start + |Step| * Backedge < Start
   //   Start - |Step| * Backedge > Start
-  Value *Add = Builder.CreateAdd(StartValue, MulV);
-  Value *Sub = Builder.CreateSub(StartValue, MulV);
+  Value *Add = nullptr, *Sub = nullptr;
+  if (ARExpandTy->isPointerTy()) {
+PointerType *ARPtrTy = cast(ARExpandTy);
+const SCEV *MulS = SE.getSCEV(MulV);
+const SCEV *const StepArray[2] = {MulS, SE.getNegativeSCEV(MulS)};
+Add = Builder.CreateBitCast(
+expandAddToGEP(&StepArray[0], &StepArray[1], ARPtrTy, Ty, StartValue),
+ARPtrTy);
+Sub = Builder.CreateBitCast(
+expandAddToGEP(&StepArray[1], &StepArray[2], ARPtrTy, Ty, StartValue),
+ARPtrTy);
+  } else {
+Add = Builder.CreateAdd(StartValue, MulV);
+Sub = Builder.CreateSub(StartValue, MulV);
+  }
 
   Value *EndCompareGT = Builder.CreateICmp(
   Signed ? ICmpInst::ICMP_SGT : ICmpInst::ICMP_UGT, Sub, StartValue);
diff --git a/test/Analysis/LoopAccessAnalysis/wrapping-pointer-ni.ll b/test/Analysis/LoopAccessAnalysis/wrapping-pointer-ni.ll
new file mode 100644
index 000..ddcf5e1a195
--- /dev/null
+++ b/test/Analysis/LoopAccessAnalysis/wrapping-pointer-ni.ll
@@ -0,0 +1,73 @@
+; RUN: opt -loop-versioning -S < %s | FileCheck %s -check-prefix=LV
+
+; NB: addrspaces 10-13 are non-integral
+target datalayout = "e-m:e-i64:64-f80:128-n8:16:32:64-S128-ni:10:11:12:13"
+
+; This matches the test case from PR38290
+; Check that we expand the SCEV predicate check using GEP, rather
+; than ptrtoint.
+
+%jl_value_t = type opaque
+%jl_array_t = type { i8 addrspace(13)*, i64, i16, i16, i32 }
+
+declare i64 @julia_steprange_last_4949()
+
+define void @"japi1_align!_9477"(%jl_value_t addrspace(10)**) #0 {
+; LV-LAVEL: L26.lver.check
+; LV: [[OFMul:%[^ ]*]]  = call { i64, i1 } @llvm.umul.with.overflow.i64(i64 4, i64 [[Step:%[^ ]*]])
+; LV-NEXT: [[OFMulResult:%[^ ]*]] = extractvalue { i64, i1 } [[OFMul]], 0
+; LV-NEXT: [[OFMulOverflow:%[^ ]*]] = extractvalue { i64, i1 } [[OFMul]], 1
+; LV-NEXT: [[PosGEP:%[^ ]*]] = getelementptr i32, i32 addrspace(13)* [[Base:%[^ ]*]], i64 [[Step]]
+; LV-NEXT: [[NegGEP:%[^ ]*]] = getelementptr i32, i32 addrspace(13)* [[Base]], i64 [[NegStep:%[^ ]*]]
+; LV-NEXT: icmp ugt i32 addrspace(13)* [[NegGEP]], [[Base]]
+; LV-NEXT: icmp ult i32 addrspace(13)* [[PosGEP]], [[Base]]
+; LV-NOT: inttoptr
+; LV-NOT: ptrtoint
+top:
+  %1 = load %jl_value_t addrspace(10)*, %jl_value_t addrspace(10)** %0,

Bug#905755: ITP: emacs-theme-gruvbox -- retro groove colour scheme for Emacs

[Nicholas D Steeves]

Package: wnpp
Severity: wishlist
Owner: Nicholas D Steeves 

Package name: emacs-theme-gruvbox
Version : 1.26.0
Upstream Author : Jason Milkins 
URL : https://github.com/greduan/emacs-theme-gruvbox/
License : MIT
Programming Lang: elisp
Description : retro groove colour scheme for Emacs

 Gruvbox is a retro groove color scheme for Emacs. It is a port of
 Pavel Pertsev's original Vim theme.  This theme uses far less blue
 than most, and eschews candy colours for a warmer colour scheme that
 retains contrast.  It seems to be retro insomuch as it makes use of
 various green, beige, peach, and orange tones—tones that do not match
 astonishingly bright RGB LEDs.
 .
 Gruvbox contains light and dark themes in hard, medium, and soft
 variants.

This package appears to be unique among the modern Emacs custom
themes, and is the first theme that has tempted me away from my
customisation of the default theme, plus frame-background-mode 'dark.

I plan to maintain it as part of the Debian Emacsen team and will need
a sponsor for the initial upload.

Regards,
Nicholas

Bug#905710: PATCH: News.Debian and su.1 (Was Re: util-linux: "su: revoking keys needs to be documented')

[Andreas Henriksson]

Control: tags -1 = pending

On Thu, Aug 09, 2018 at 09:05:54AM +0530, Kapil Hari Paranjape wrote:
> Hello,
> 
> On Wed, 08 Aug 2018, Andreas Henriksson wrote:
> > Please do feel free to write something up and send it as a merge
> > request! Your contribution will be very appreciated! I'll offer to
> > review them once I find time for it.
> 
> I am attaching patches for "News.Debian" and "su.1".
> 
> In my opinion this should be adequate documentation of the changes.

Thanks alot for your contributions!

I've massaged the NEWS part to apply and pushed it to the git repo.

Comments regarding the su(1) part:
- this is for upstream, please submit it there directly following the
  documented submission procedure if you want them to review it.
- I don't think what you wrote there is accurate. The su(1) binary
  does no such thing, it's the pam configuration you're talking about
  which is not part of util-linux upstream at all.

FYI the su-l pam config was copied from Fedora.

Regards,
Andreas Henriksson

Bug#905267: testng: Help upgrade package to latest upstream release

[tony mancill]

On Thu, Aug 02, 2018 at 01:29:15PM +0300, Eugene Zhukov wrote:
> Package: testng
> Severity: wishlist
> 
> Upstream switched to Gradle packaging, which I'm not very familiar with.
> Please help upgrading TestNG to latest upstream release.

Hello Eugene,

I'm going to take a look very soon. Thank you for filing the bug
report.

Cheers,
tony


signature.asc
Description: PGP signature

Bug#905751: SegmentSmack

[Salvatore Bonaccorso]

Control: reassign 905751 src:linux 4.9~rc3-1~exp1
Control: retitle -1 linux: CVE-2018-5390
Control: severity -1 grave
Control: fixed -1 4.9.110-3+deb9u1

Hi,

On Wed, Aug 08, 2018 at 04:42:42PM -0600, Jamie wrote:
> Package: Kernel
> 
> Version: 4.9+
> 
> Severity: Critical
> 
>  
> 
> So I was reading isc.sans.edu and came across this 
> 
> That people are dubbing "segmentsmack" 
> 
>  
> 
> https://isc.sans.edu/forums/diary/What+Do+I+Need+To+Know+about+SegmentSmack/
> 23964/
> 
> Which affects  Linux Kernels 4.9+ 
> 
>  
> 
> https://www.kb.cert.org/vuls/id/962459
> 
> "The Linux kernel versions 4.9+ and supported versions of 
> 
> FreeBSD are vulnerable to denial  of service conditions with low 
> 
> rates of specially modified packets."
> 
>  
> 
>  
> 
> Vulnerability Note VU#962459
> 
> TCP implementations vulnerable to Denial of Service
> 
>  
> 
> The Linux kernel versions 4.9+ and supported versions of FreeBSD are
> vulnerable 
> 
> to denial of service conditions with low rates of specially modified
> packets.
> 
> Description
> 
>  
> 
> CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion') -
> CVE-2018-5390
> 
>  
> 
> Linux kernel versions 4.9+ can be forced to make very expensive calls to
> tcp_collapse_ofo_queue() 
> 
> and tcp_prune_ofo_queue() for every incoming packet which can lead to a
> denial of service.
> 
>  
> 
> CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion') -
> CVE-2018-6922
> 
> A TCP data structure in supported versions of FreeBSD (11, 11.1, 11.2, 10,
> and 10.4) use an 
> 
> inefficient algorithm to reassemble the data.
> 
>  
> 
> Now it does say that Debian is susceptible to this bug as well.
> 
>  
> 
> "Debian GNU/LinuxAffected  23 Jul 2018"
> 
>  
> 
> uname -a
> 
> Linux server1 4.9.0-6-amd64 #1 SMP Debian 4.9.88-1+deb9u1 (2018-05-07)
> x86_64 GNU/Linux
> 
>  
> 
> As you can see I am on Debian 9.5 using a kernel version of 4.9.88-1+deb9u1

It is already fixed for stable via DSA-4266-1
(https://www.debian.org/security/2018/dsa-4266).

Regards,
Salvatore

Bug#905729: laptop-mode-tools causes `sda` disk to stop indefinitely when disconnect AC power.

[Ritesh Raj Sarraf]

Control: merge -1 904441


On Wed, 2018-08-08 at 13:32 -0400, Felipe Sologuren Gutiérrez wrote:
> Package: laptop-mode-tools
> Version: 1.72-2
> Severity: critical
> Justification: breaks the whole system
> 
> 
> I read bug #889544 and my problem is the same except my disk never
> leave the stopped status, exactly as Jean-Marie reported.
> After that, I observed the same issues, the whole system starts to
> fail to write down to the disk reporting that it's damaged, and the
> last entry that persist at syslog is that `sda` stopped.
> My problem started when I installed kernel 4.17 and is not happening
> with kernel 4.16.
> My hardware is Asus n46vj, disk drive:
> ata1.00: ATA-10: Crucial_CT1050MX300SSD1,  M0CR040, max UDMA/133
> BIOS has enabled AHCI.
> 

This is an issue with the Linux kernel. This is now uncovered, more
often with 4.17, because the multiqueue setting was enabled by default
with this version.

-- 
Ritesh Raj Sarraf | http://people.debian.org/~rrs
Debian - The Universal Operating System


signature.asc
Description: This is a digitally signed message part

Bug#905754: debdelta FTCBFS: uses the build architecture compiler

[Helmut Grohne]

Source: debdelta
Version: 0.62
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap

debdelta fails to cross build from source, because it uses the build
architecture compiler. Letting dpkg's buildtools.mk fixes that, but then
install uses the build architecture strip. After fixing both, debdelta
cross builds successfully. Please consider applying the attached patch.

Also consider using debhelper. Using dh_strip just works with no extra
effort.

Helmut
diff --minimal -Nru debdelta-0.62/debian/changelog 
debdelta-0.62+nmu1/debian/changelog
--- debdelta-0.62/debian/changelog  2018-06-06 09:22:34.0 +0200
+++ debdelta-0.62+nmu1/debian/changelog 2018-08-09 05:53:03.0 +0200
@@ -1,3 +1,10 @@
+debdelta (0.62+nmu1) UNRELEASED; urgency=medium
+
+  * Non-maintainer upload.
+  * Fix FTCBFS: Use host tools. (Closes: #-1)
+
+ -- Helmut Grohne   Thu, 09 Aug 2018 05:53:03 +0200
+
 debdelta (0.62) unstable; urgency=medium
 
   * update Vcs-git to point to salsa
diff --minimal -Nru debdelta-0.62/debian/rules debdelta-0.62+nmu1/debian/rules
--- debdelta-0.62/debian/rules  2018-06-06 09:22:34.0 +0200
+++ debdelta-0.62+nmu1/debian/rules 2018-08-09 05:52:22.0 +0200
@@ -19,9 +19,10 @@
 MO_FILES := $(patsubst %.po,%.mo,$(PO_FILES))
 LANGS := $(patsubst po/%.po,%,$(PO_FILES))
 
-CC = gcc
-
-INSTALL_PROGRAM = install
+include /usr/share/dpkg/architecture.mk
+-include /usr/share/dpkg/buildtools.mk
+STRIP = $(DEB_HOST_GNU_TYPE)-strip
+INSTALL_PROGRAM = install --strip-program=$(STRIP)
 
 CPPFLAGS:=$(shell dpkg-buildflags --get CPPFLAGS)
 CFLAGS:=$(shell dpkg-buildflags --get CFLAGS)

Bug#905710: PATCH: News.Debian and su.1 (Was Re: util-linux: "su: revoking keys needs to be documented')

[Kapil Hari Paranjape]

Hello,

On Wed, 08 Aug 2018, Andreas Henriksson wrote:
> Please do feel free to write something up and send it as a merge
> request! Your contribution will be very appreciated! I'll offer to
> review them once I find time for it.

I am attaching patches for "News.Debian" and "su.1".

In my opinion this should be adequate documentation of the changes.

Regards,

Kapil.
--

--- NEWS.Debian.orig	2018-08-09 08:46:41.536831490 +0530
+++ NEWS.Debian	2018-08-09 08:49:59.515824839 +0530
@@ -11,7 +11,8 @@
 even in 'preserve environment' mode.
   - su '' (empty user string) used to give root, but now returns an error.
   - previously su only had one pam config, but now 'su -' is configured
-separately in /etc/pam.d/su-l
+separately in /etc/pam.d/su-l. This file additionally invokes
+'pam_keyinit' to revoke the session keyring.
 
   The first difference is probably the most user visible one. Doing
   plain 'su' is a really bad idea for many reasons, so using 'su -' is
--- su.1.orig	2018-08-09 08:47:43.991829392 +0530
+++ su.1	2018-08-09 08:54:31.889815688 +0530
@@ -81,6 +81,11 @@
 .B TERM
 .TP
 o
+revokes the session keyring using the
+.BR pam_keyinit (8)
+module.
+.TP
+o
 initializes the environment variables
 .BR HOME ,
 .BR SHELL ,

Bug#905735: emacs-goodies-el: postinst failure due to missing lcomp.el

[Nicholas D Steeves]

Control: tag -1 + moreinfo

Dear Sebastien,

Reply follows in-line.

On Wed, Aug 08, 2018 at 02:07:31PM -0500, Sebastian Luque wrote:
> Package: emacs-goodies-el
> Version: 40.0
> Severity: important
> 
> Dear Maintainer,
> 
> I just noticed emacs-goodies-el is now using the elpa-* suite of
> packages.  However, the lcomp library is not yet part of that suite, and
> has been removed from emacs-goodies-el, so it fails the postinst script
> phase of the installation process.

Thank you for your bug report.  Yes, lcomp.el was dropped in 40.0,
because emacswiki is its only upstream.  FYI MELPA has also dropped
all emacswiki packages which are not maintained elsewhere.

It is highly probable that this bug occurred due to breaking changes
introduced with emacsen-common 3.0.2, rather than from removal of this
file.

> -- System Information:
> Debian Release: buster/sid
>   APT prefers testing
>   APT policy: (990, 'testing'), (300, 'unstable')
> Architecture: amd64 (x86_64)
> Foreign Architectures: i386

I see you're mixing testing and unstable.  Are you willing to test an
upgrade to unversioned emacs?  It would be a valuable data-point to
solving this emacs-goodies-el bug!  If so, please use the following
procedure:

# This bit returns goodies to the state it was for Stretch
apt purge --autoremove emacs-goodies-el
wget
https://snapshot.debian.org/archive/debian/20161122T032842Z/pool/main/e/emacs-goodies-el/emacs-goodies-el_36.3_all.deb
# this next line might be paranoia
apt autoremove --purge
# and finally install the package
dpkg -i emacs-goodies-el_36.3_all.deb

# This installs emacs-goodies-el from stretch, and will pull in the
# new unversioned emacs.  Please note the list of packages, in case
# you need to roll back.
apt install emacs-goodies-el=40.1

I expect that emacs-goodies-el will successfully upgrade at this
point, because I believe I fixed its dependency issue in 40.1.
Confirmation would be very much appreciated :-)

Cheers,
Nicholas


signature.asc
Description: PGP signature

Bug#904917: general: Gnome randomly crash and restart to login.

[Seth Arnold]

On Sun, Jul 29, 2018 at 03:50:41PM +0200, Riccardo Gagliarducci wrote:
> on Lenovo laptop ideapad 520 Gnome randomly crash and, after some seconds of
> text, the system ask me to login to gnome, as if I had access to it during

Can you try again with any gnome shell extensions disabled? I've heard
good success with this approach.

Thanks


signature.asc
Description: PGP signature

Bug#905753: blender: Modify the language to Simplified Chinese display square

[窦晓刚]

Package: blender
Version: 2.79.b+dfsg0-4
Severity: important
Tags: l10n

When I choose menu, File -> user preferences -> system -> international Fonts
-> Simplified Chinese ,display square,all are squares,all font.

like
https://imgsa.baidu.com/exp/w=500/sign=35b67969898ba61edfeec82f713597cc/ac6eddc451da81cbbd58fc6e5966d016082431d2.jpg



-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (900, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.17.0-1-amd64 (SMP w/12 CPU cores)
Locale: LANG=zh_CN.UTF-8, LC_CTYPE=zh_CN.UTF-8 (charmap=UTF-8), 
LANGUAGE=zh_CN.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages blender depends on:
ii  blender-data  2.79.b+dfsg0-4
ii  fonts-dejavu  2.37-1
ii  libavcodec58  7:4.0.2-1
ii  libavdevice58 7:4.0.2-1
ii  libavformat58 7:4.0.2-1
ii  libavutil56   7:4.0.2-1
ii  libboost-atomic1.62.0 1.62.0+dfsg-8
ii  libboost-chrono1.62.0 1.62.0+dfsg-8
ii  libboost-date-time1.62.0  1.62.0+dfsg-8
ii  libboost-filesystem1.62.0 1.62.0+dfsg-8
ii  libboost-iostreams1.62.0  1.62.0+dfsg-8
ii  libboost-locale1.62.0 1.62.0+dfsg-8
ii  libboost-regex1.62.0  1.62.0+dfsg-8
ii  libboost-system1.62.0 1.62.0+dfsg-8
ii  libboost-thread1.62.0 1.62.0+dfsg-8
ii  libc6 2.27-5
ii  libfftw3-double3  3.3.8-1
ii  libfontconfig12.13.0-5
ii  libfreetype6  2.8.1-2
ii  libgcc1   1:8.2.0-3
ii  libgl11.0.0+git20180308-3
ii  libglew2.02.0.0-6
ii  libglu1-mesa [libglu1]9.0.0-2.1
ii  libgomp1  8.2.0-3
ii  libilmbase23  2.2.1-2
ii  libjack-jackd2-0 [libjack-0.125]  1.9.12~dfsg-2
ii  libjemalloc1  3.6.0-11
ii  libjpeg62-turbo   1:1.5.2-2+b1
ii  libopenal11:1.18.2-3
ii  libopencolorio1v5 1.1.0~dfsg0-2
ii  libopenexr23  2.2.1-4
ii  libopenimageio1.8 1.8.12~dfsg0-1
ii  libopenjp2-7  2.3.0-1
ii  libopenvdb5.0 5.0.0-2
ii  libpcre3  2:8.39-10
ii  libpng16-16   1.6.34-2
ii  libpython3.6  3.6.6-1
ii  libsndfile1   1.0.28-4
ii  libspnav0 0.2.3-1
ii  libstdc++68.2.0-3
ii  libswscale5   7:4.0.2-1
ii  libtbb2   2017~U7-8
ii  libtiff5  4.0.9-6
ii  libx11-6  2:1.6.5-1
ii  libxfixes31:5.0.3-1
ii  libxi62:1.7.9-1
ii  libxml2   2.9.4+dfsg1-7+b1
ii  libxxf86vm1   1:1.1.4-1+b2
ii  python3   3.6.5-3
ii  zlib1g1:1.2.11.dfsg-1

blender recommends no packages.

blender suggests no packages.

-- no debconf information

Bug#905752: smokeping: FPing target supports and prefers IPv6, preventing IPv4 pings

[Mark Kamichoff]

Package: smokeping
Version: 2.6.11-5
Severity: important

Hi - 

It appears that as of 3.16, FPing is no longer a multi-call binary and
/usr/bin/fping and /usr/bin/fping6 act the same.  This ultimately
prevents the FPing probe from working properly because if a target with
both A &  records is used, FPing prefers the  record and
initiates a ping using IPv6 and not IPv4, which is not the intention.
The FPing probe does not support an address-family option to pass -4 or
-6 to the FPing binary so there is no way to force IPv4 name resolution.
As a result, there is no way of adding dual-stack targets to be probed
over IPv4.

A standard Probes file looks like this:

*** Probes ***

+ FPing

binary = /usr/bin/fping

+ FPing6

binary = /usr/bin/fping6

FPing installs like this:

-rwxr-xr-x 1 root root 43904 Jan  2  2018 /usr/bin/fping
lrwxrwxrwx 1 root root 5 Jan  2  2018 /usr/bin/fping6 -> fping

However, the behavior of both fping and fping6 calls to the fping binary
result in the same type of address family support:

(atlantis:17:42:PDT)% fping 1.1.1.1 
1.1.1.1 is alive
(atlantis:17:42:PDT)% fping6 1.1.1.1
1.1.1.1 is alive
(atlantis:17:42:PDT)% fping ipv6.google.com.
ipv6.google.com. is alive
(atlantis:17:42:PDT)% fping6 ipv6.google.com. 
ipv6.google.com. is alive
atlantis:17:42:PDT)% fping 2600:: 
2600:: is alive

SmokePing expects that fping6 should reject the 1.1.1.1 IPv4 address and
fping should reject the 2600:: address.  When resolving DNS, SmokePing
expects fping to look up an A record only and fping6 should look up an
 record only.

This is probably not a FPing bug because the project has correctly
decided to support IPv4 and IPv6 transparently and provide the -4 and -6
options if forcing an address family is required:

https://github.com/schweikert/fping/issues/80

However, SmokePing needs to be updated to use -4 and -6 switches for
FPing and FPing6 probes, respectively, hence this bug report.

- Mark

-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.17.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: systemd (via /run/systemd/system)

Versions of packages smokeping depends on:
ii  adduser3.117
ii  debianutils4.8.6
ii  exim4-daemon-light [mail-transport-agent]  4.91-6
ii  fping  4.0-6
ii  libcgi-fast-perl   1:2.13-1
ii  libconfig-grammar-perl 1.12-2
ii  libdigest-hmac-perl1.03+dfsg-2
ii  libjs-cropper  1.2.2-1
ii  libjs-prototype1.7.1-3
ii  libjs-scriptaculous1.9.0-2
ii  librrds-perl   1.7.0-1+b2
ii  libsnmp-session-perl   1.14~git20130523.186a005-3
ii  liburi-perl1.74-1
ii  libwww-perl6.35-2
ii  lsb-base   9.20170808
ii  perl   5.26.2-6
ii  ucf3.0038

Versions of packages smokeping recommends:
ii  apache2 [httpd-cgi]  2.4.34-1
ii  dnsutils 1:9.11.4+dfsg-4
pn  echoping 
ii  libsocket6-perl  0.28-1

Versions of packages smokeping suggests:
pn  curl   
ii  exim4  4.91-6
ii  exim4-daemon-light [mail-transport-agent]  4.91-6
pn  libauthen-radius-perl  
ii  libio-socket-ssl-perl  2.058-1
pn  libnet-dns-perl
pn  libnet-ldap-perl   
pn  libnet-telnet-perl 
ii  openssh-client 1:7.7p1-3

-- Configuration Files:
/etc/apache2/conf-available/smokeping.conf changed [not included]
/etc/smokeping/config.d/General changed [not included]
/etc/smokeping/config.d/Probes changed [not included]
/etc/smokeping/config.d/Targets changed [not included]
/etc/smokeping/smokeping_secrets [Errno 13] Permission denied: 
'/etc/smokeping/smokeping_secrets'

-- no debconf information

Bug#904259: [tellico] persian/arabic script: bracket confusion (due to left-to-right digits and right-to-left characters)

[Robby Stephenson]

On Sun, Jul 22, 2018 at 7:42 AM, Maria 
wrote:

> in a video collection with a persian title (right to left) and an entry
> for the year of production (left to right regardless of script), the
> brackets containing the year in top of the details part switch to wrong
> places.
>
> If no nationality is given or nationality is given in latin letters
> (l2r) the year and the closing bracket will stay at the right end (l2r)
> of the line, while the opening bracket stays on the left end (r2l)
>
> If nationality is given in persian the year (l2r) and the nationality
> (r2l) stay correctly at the left end, but the closing bracket stays at
> the right end (l2r)
>

Thank you for the helpful CSV test file. Tellico generates HTML and
displays it in a widget using KHTML, which I just tested. The HTML appears
to be correct and displays correctly if I look at it in Firefox but not
Chromium or Konqueror.

So ultimately, this is a bug in the old HTML display widget in KDE, which
is currently deprecated without further development, I believe. I'll try to
noodle a workaround, but the bug may be persistent until Tellico switches
to a different HTML view widget.

Bug#894318: Can this please be fixed in stable?!

[Emmanuel Bourg]

Le 03/07/2018 à 15:11, Martin Zobel-Helas a écrit :

> find_jdks()
> {
> for java_version in 9 8
> do
> for jvmdir in /usr/lib/jvm/java-${java_version}-openjdk-* \
>   /usr/lib/jvm/jdk-${java_version}-oracle-* \
>   /usr/lib/jvm/jre-${java_version}-oracle-* \
> -  /usr/lib/jvm/java-${java_version}-oracle
> +  /usr/lib/jvm/java-${java_version}-oracle \
> +  /usr/lib/jvm/oracle-java${java_version}-jdk-*
> do
> 

Hum the directory change happened in java-package/0.61 and slipped
through my review, that's unfortunate. We have to support yet another
path now :( The jetty9 package is also affected.

Thank you for the patch Martin, I'll apply it in unstable and stage it
for the next stable or security update. In the meantime I suggest
setting the JAVA_HOME variable in /etc/default/tomcat8.

Emmanuel Bourg

Bug#905402: RFS: openvoronoi -- 2D Voronoi diagram library with CAM focus

[Kurt Kremitzki]

Hello all, I've prepared this package and it's ready for
review/sponsorship for any who would like to take a look:

https://salsa.debian.org/kkremitzki-guest/openvoronoi

(By the way, could someone create the science-team/openvoronoi
repository on salsa?)

Thank you!

On Sat, 04 Aug 2018 00:14:07 -0500 Kurt Kremitzki 
wrote:
> Package: wnpp
> Severity: wishlist
> Owner: Kurt Kremitzki 
>
> * Package name : openvoronoi
> Version : 2018.08
> Upstream Author : Anders Wallin 
> * URL : https://github.com/aewallin/openvoronoi
> * License : LGPL-2.1
> Programming Lang: C++
> Description : 2D Voronoi diagram library with CAM focus
>
> The OpenVoronoi project aims to produce an algorithm for calculating
the 2D
> Voronoi diagram for point, line-segment, and circular-arc sites. Currently
> point-sites and line-segment sites work. Arc-sites are being worked
on. The
> incremental topology-oriented algorithm is used.
>
> The core algorithm is in C++ with Python bindings using Boost Python.
>
> Voronoi diagrams are used for many purposes in computational geometry,
but the
> motivation for OpenVoronoi is mainly been 2D offset-generation for CNC
mill
> toolpath calculations for computer-assisted machining. An experimental
> approximate medial-axis filter is included.
>
> This library was recently relicensed from GPL3 to be usable in
FreeCAD's Path
> Workbench along with OpenCAMLib.
>
> I plan to maintain it under the Debian Science Team.
>
> Note: A similar library, voro++, is already in Debian, but it wasn't
> suitable for Path WB developers' needs as it's primarily 3D- and
> cell-based.
>
>

Bug#905460: ITP: opencamlib -- C++ library for creating 3D toolpaths for CNC machines

[Kurt Kremitzki]

Hello all, I've prepared this package and it's ready for
review/sponsorship for any who would like to take a look:

https://salsa.debian.org/kkremitzki-guest/opencamlib

(By the way, could someone create the science-team/opencamlib repository
on salsa?)

Thank you!
On Sat, 04 Aug 2018 18:17:24 -0500 Kurt Kremitzki 
wrote:
> Package: wnpp
> Severity: wishlist
> Owner: Kurt Kremitzki 
>
> * Package name : opencamlib
> Version : 2018.08
> Upstream Author : Anders Wallin 
> * URL : https://github.com/aewallin/opencamlib
> * License : LGPL-2.1
> Programming Lang: C++
> Description : C++ library for creating 3D toolpaths for CNC machines
>
> OpenCAMLib is a 3D CAM library in C++ with Python bindings. The main
> functionality it provides is axial and radial cutter-projection algorithms
> against polyhedral (triangulated) surfaces.
>
> Along with OpenVoronoi, OpenCAMLib was recently relicensed to allow for
> inclusion in FreeCAD's Path Workbench.
>
> I plan on packaging this under the Debian Science Team.
>
>

Bug#898215: proposed NMU

[Adam Borowski]

Hi!
As you apparently had no time to repack the .orig yourself, I've prepared a
NMU.  It fixes the autoreject (by removing chm and its binary indices from
the .orig tarball), and the Java 9 FTBFS.  It turns out that two other FTBFS
problems popped up in just the last month: with Java 10, and gcc-8.  I've
fixed them as well.

Here's the NMU debdiff.  Alas, debdiff fails to handle deletion of binary
files well -- if you want to apply it, you'd need to delete the files by
hand.

I'll upload to DELAYED/7 once I verify that it builds on riscv64 as well.


Meow!
-- 
⢀⣴⠾⠻⢶⣦⠀ So a Hungarian gypsy mountainman, lumberjack by day job,
⣾⠁⢰⠒⠀⣿⡁ brigand by, uhm, hobby, invented a dish: goulash on potato
⢿⡄⠘⠷⠚⠋⠀ pancakes.  Then the Polish couldn't decide which of his
⠈⠳⣄ adjectives to use for the dish's name.
diff -Nru db5.3-5.3.28/debian/changelog db5.3-5.3.28+dfsg1/debian/changelog
--- db5.3-5.3.28/debian/changelog   2017-08-17 14:35:22.0 +0200
+++ db5.3-5.3.28+dfsg1/debian/changelog 2018-08-09 01:12:06.0 +0200
@@ -1,3 +1,14 @@
+db5.3 (5.3.28+dfsg1-0.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Repack the .orig tarball to eliminate prebuilt binaries that need a
+Visual Studio plugin to build from source. (Closes: #898215)
+  * Fix FTBFS with Java 9, thanks Markus Koschany. (Closes: #873976)
+  * Fix FTBFS with Java 10 (bogus version detection).
+  * Fix FTBFS with GCC-8 (__atomic_compare_exchange).
+
+ -- Adam Borowski   Thu, 09 Aug 2018 01:12:06 +0200
+
 db5.3 (5.3.28-13.1) unstable; urgency=medium
 
   * Non-maintainer upload.
diff -Nru db5.3-5.3.28/debian/patches/009-java-10.patch 
db5.3-5.3.28+dfsg1/debian/patches/009-java-10.patch
--- db5.3-5.3.28/debian/patches/009-java-10.patch   1970-01-01 
01:00:00.0 +0100
+++ db5.3-5.3.28+dfsg1/debian/patches/009-java-10.patch 2018-08-09 
00:33:37.0 +0200
@@ -0,0 +1,22 @@
+Description: fix a bogus Java version check
+ These clowns look at just the first digit, thinking that 10 means 1.
+
+--- db5.3-5.3.28+dfsg1.orig/dist/configure.ac
 db5.3-5.3.28+dfsg1/dist/configure.ac
+@@ -453,11 +453,11 @@ if test "$db_cv_java" = "yes" -o "$db_cv
+   sed -e '/ version /!d' -e 's/.*"\(.*\)".*/\1/'` ;;
+   esac
+   AC_MSG_RESULT($JAVA_VERSION)
+-  case "$JAVA_VERSION" in
+-  1.[[3456789]]* | 1.[[1-9]][[0-9]]* | [[23456789]]* ) ;;
+-  * )
+-  AC_MSG_ERROR([Java version 1.3 or higher required, got 
$JAVA_VERSION]) ;;
+-  esac
++  #case "$JAVA_VERSION" in
++  #1.[[3456789]]* | 1.[[1-9]][[0-9]]* | [[23456789]]* ) ;;
++  #* )
++  #   AC_MSG_ERROR([Java version 1.3 or higher required, got 
$JAVA_VERSION]) ;;
++  #esac
+ 
+   # Because of the code that SWIG generates to cast between pointers and
+   # integers, we need to add the flag "-fno-strict-aliasing" to the gcc
diff -Nru db5.3-5.3.28/debian/patches/010-__atomic_compare_exchange.patch 
db5.3-5.3.28+dfsg1/debian/patches/010-__atomic_compare_exchange.patch
--- db5.3-5.3.28/debian/patches/010-__atomic_compare_exchange.patch 
1970-01-01 01:00:00.0 +0100
+++ db5.3-5.3.28+dfsg1/debian/patches/010-__atomic_compare_exchange.patch   
2018-08-09 01:12:04.0 +0200
@@ -0,0 +1,24 @@
+Description: function conflict with GCC-8
+ Identifiers with names starting with __ are reserved for the compiler and
+ core system libs only, random user programs are not supposed to use them.
+
+--- db5.3-5.3.28+dfsg1.orig/src/dbinc/atomic.h
 db5.3-5.3.28+dfsg1/src/dbinc/atomic.h
+@@ -144,7 +144,7 @@ typedef LONG volatile *interlocked_val;
+ #define   atomic_inc(env, p)  __atomic_inc(p)
+ #define   atomic_dec(env, p)  __atomic_dec(p)
+ #define   atomic_compare_exchange(env, p, o, n)   \
+-  __atomic_compare_exchange((p), (o), (n))
++  db__atomic_compare_exchange((p), (o), (n))
+ static inline int __atomic_inc(db_atomic_t *p)
+ {
+   int temp;
+@@ -176,7 +176,7 @@ static inline int __atomic_dec(db_atomic
+  * http://gcc.gnu.org/onlinedocs/gcc-4.1.0/gcc/Atomic-Builtins.html
+  * which configure could be changed to use.
+  */
+-static inline int __atomic_compare_exchange(
++static inline int db__atomic_compare_exchange(
+   db_atomic_t *p, atomic_value_t oldval, atomic_value_t newval)
+ {
+   atomic_value_t was;
diff -Nru db5.3-5.3.28/debian/patches/series 
db5.3-5.3.28+dfsg1/debian/patches/series
--- db5.3-5.3.28/debian/patches/series  2017-08-17 14:35:22.0 +0200
+++ db5.3-5.3.28+dfsg1/debian/patches/series2018-08-09 01:10:55.0 
+0200
@@ -7,3 +7,5 @@
 mmap_extend-mode-requires-page-aligned-extends.patch
 008-autoconf-in-lang-sql-sqlite.patch
 CVE-2017-10140-cwd-db_config.patch
+009-java-10.patch
+010-__atomic_compare_exchange.patch
diff -Nru db5.3-5.3.28/debian/rules db5.3-5.3.28+dfsg1/debian/rules
--- db5.3-5.3.28/debian/rules   2017-08-17 14:35:22.0 +0200
+++ db5.3-5.3.28+dfsg1/debian/rules 2018-08-09 00:24:54.00

Bug#904863: emacs-goodies-el: drop tc.el

[Nicholas D Steeves]

Hi Gijs,

On Wed, Aug 08, 2018 at 08:36:29AM +0200, Gijs Hillenius wrote:
> On 29 Jul 2018, David Bremner wrote:
> 
> > Package: emacs-goodies-el
> > Version: 39.0
> > Severity: normal
> >
> > trivial-cite is no longer available even from emacswiki. If someone
> > wants to take over as upstream we can re-introduce it.
> >
> 
> 
> It took a few tries, but I managed to contact Lars Ræder Clausen by
> email. He is fine with me becoming a point of contact for tc.el. I'll
> now see how to add it to Elpa.

Thank you for pursuing this :-)  Strictly speaking, we're looking for an
active upstream maintainer.  For example, eproject has one, but is
neither part of GNU ELPA nor MELPA ( https://github.com/jrockway/eproject ).
From what I've read an active upstream maintainer is also now part of
MELPA's standards, and they'll also probably ask for trivial-cite's
project URL.

In github namespace, tc is now occupied by https://github.com/kanchoku/tc
It might be worth renaming the package to trivial-cite at this time,
to avoid the confusion this causes.

Please let us know once you have it in Vcs.  Other hosts like Gitlab
or Bitbucket are also perfectly fine :-)

Sincerely,
Nicholas

P.S. At some point this bug will be automatically archived and locked.
If that happens and you don't know how to unarchive the bug, please
email debian-emac...@lists.debian.org


signature.asc
Description: PGP signature

Bug#576875: tomcat6: Allow running the init script as a normal user, not admin

[Emmanuel Bourg]

Control: tags -1 + wontfix
Control: close -1

I don't think the init script can be run without root privileges. sudo
looks like the right alternative.

Bug#853173: tomcat8: Failed tomcat8 upgrade with exit status 128

[Emmanuel Bourg]

I wonder if this issue is a duplicate of #658554. Dave do you know if
JAVA_OPTS in /etc/default/tomcat8 is on multiple lines?

Emmanuel Bourg

Bug#905751: SegmentSmack

[Jamie]

Package: Kernel

Version: 4.9+

Severity: Critical

 

So I was reading isc.sans.edu and came across this 

That people are dubbing "segmentsmack" 

 

https://isc.sans.edu/forums/diary/What+Do+I+Need+To+Know+about+SegmentSmack/
23964/

Which affects  Linux Kernels 4.9+ 

 

https://www.kb.cert.org/vuls/id/962459

"The Linux kernel versions 4.9+ and supported versions of 

FreeBSD are vulnerable to denial  of service conditions with low 

rates of specially modified packets."

 

 

Vulnerability Note VU#962459

TCP implementations vulnerable to Denial of Service

 

The Linux kernel versions 4.9+ and supported versions of FreeBSD are
vulnerable 

to denial of service conditions with low rates of specially modified
packets.

Description

 

CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion') -
CVE-2018-5390

 

Linux kernel versions 4.9+ can be forced to make very expensive calls to
tcp_collapse_ofo_queue() 

and tcp_prune_ofo_queue() for every incoming packet which can lead to a
denial of service.

 

CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion') -
CVE-2018-6922

A TCP data structure in supported versions of FreeBSD (11, 11.1, 11.2, 10,
and 10.4) use an 

inefficient algorithm to reassemble the data.

 

Now it does say that Debian is susceptible to this bug as well.

 

"Debian GNU/LinuxAffected  23 Jul 2018"

 

uname -a

Linux server1 4.9.0-6-amd64 #1 SMP Debian 4.9.88-1+deb9u1 (2018-05-07)
x86_64 GNU/Linux

 

As you can see I am on Debian 9.5 using a kernel version of 4.9.88-1+deb9u1

 

 

 

Bug#846006: debian-cd: please provide flavor/spin netinst image for Debian Edu

[Holger Levsen]

On Tue, Jul 31, 2018 at 12:36:35PM +0200, Wolfgang Schweer wrote:
> > > do you have a pointer to an "old" ignore.txt and avoid.txt? i cannot
> > > find it in my old edu svn checkout...
> > actually it's avoidpackages.txt (generated via blends-dev at build 
> > time, afaict).
> see the 'grep avoid /usr/share/blends-dev/Makefile' output.

ah, thanks!

I suppose we don't need those avoidlists anymore, today?!


-- 
cheers,
Holger

---
holger@(debian|reproducible-builds).org


signature.asc
Description: PGP signature

Bug#903295: libpam-systemd: Depends: systemd-shim (>= 10-4~) but it is not going to be installed: A stopgap, probably incorrect solution

[Wyatt Ward]

This is probably not a good solution, but as a stopgap measure for anyone
who finds this bug report via google, one can install 'dpkg-dev' and
'devscripts', and then do the following in an empty directory (assuming
they have the debian source packages in their sources.list):

apt-get source systemd-shim
cd systemd-shim-10
debchange --increment
dpkg-buildpackage -uc -us -b
cd ../

This will create a new .deb package which is identical to 10-3, except it
will identify itself as 10-4.
The primary issue here is that actual things that could have changed
between debian's revision 3 and revision 4 of systemd 10 (if any) won't be
accounted for, and it will prevent a normal 'apt-get upgrade' from
installing systemd-shim 10-4 from the debian repositories, should it ever
become available.

apt-get install --reinstall systemd-shim would obviate that last problem,
but would have to be done manually, which requires remembering to do it in
the future.

I did this, just to prevent apt from completely trashing some of my SW that
has a systemd dependency, but please only do this if you know what you are
doing.

Bug#846006: debian-cd: please provide flavor/spin netinst image for Debian Edu

[Holger Levsen]

On Tue, Aug 07, 2018 at 12:40:09PM +0200, Wolfgang Schweer wrote:
> After looking up the installation process once again (both netinst and 
> BD image as of 2018-08-06), I noticed that the netinst image could be 
> considerably reduced in size; besides the kernel params only three udebs 
> seem to be needed in addition to the stock Debian netinst image, 
> everything else could be fetched from the network.

Thanks for your analysis and your patches, Wolfgang!

> So this might work:
> 
> diff --git a/tasks/buster/debian-edu b/tasks/buster/debian-edu

I've done this change in debian-cd.git now, but as you said(?), this
will probably not be enough for the BD image, or will it?

Else we need to add them via tools/generate_debian-edu_task or probably
better via tasks/buster/Debian-edu-full

> As far as the BD image is concerned, the size has come considerably down 
> (< 3 GiB for both amd64 and i386). 

cool!

> Now all education-desktop-* packages 
> should be kept on the list, OTOH education-video could be excluded.
 
done in debian-cd.git

> There are some packages missing on the BD image; these should be pulled 
> in once newer binary packages from src:debian-edu and 
> src:debian-edu-install are available in testing.

ok. as you'll have seen, I've uploaded new versions of these packages to
sid today...

> Thanks for providing all these Debian Edu installation media!

I'm pretty happy about this too! blog-post pending...

Steve, do you think we could have Stretch Edu images too or is there
some problem (*besides* the non-free issue still present in Stretch
today, but I think we could fix this with a point release, see #474745
for details...)

The last half sentence is probably a note for myself, but the beginning
of that Paragraph is for Steve :) though this probably also means we'll
need to Stretch point releases until we'd have Edu Stretch images
again. (Our existing Stretch builds have been broken over time, also
because of the Alioth shutdown...)


-- 
cheers,
Holger

---
holger@(debian|reproducible-builds).org


signature.asc
Description: PGP signature

Bug#903514: Deadlock in _dl_close join-ing threads accessing TLS (was Re: gimp won't launch)

[Alexis Murzeau]

On 08/08/2018 00:59, Alexis Murzeau wrote:
> severity 903514 important
> thanks
> 
>> Reassigning to glibc with affects on openblas and gimp as this is caused
>> by a deadlock inside glibc.
> 
> Done.
> 
> Lowering severity as this does not render any package unusable by
> themselves, but only a combination of them (GIMP + OpenBLAS).
> 
> I think a workaround solution against GIMP OpenBLAS should be done as
> I'm not sure a good solution will emerge in glibc given attempts done in
> the past. The work to be done seems non trivial.
> 
> My though on possible solutions:
>  * Add a breaks between GIMP and OpenBLAS
>  * Disable TLS in OpenBLAS build (if possible, but this would cause a
> performance loss for users that use OpenBLAS without gimp)
>  * Add a delay in GIMP to not load then close libraries too fast (so
> OpenBLAS threads are fully initialized when dl_close is called on it)
> 

Hi,

I've posted a issue on openblas upstream project [0] and they suggested
some solutions.
One of them is to disable the use of compiler supported TLS and instead
use pthreads.

I tested this and it seems to fix deadlocks while starting gimp (I tried
without arguments, with a non existing file and with an existing file).

I've pushed a merge request with the patch at [1].
I've also asked openblas upstream if this patch could be a good solution.

In that case would it be possible to have this patch tested for ones who
have major instabilities with gimp + openblas ?

Thanks :)

-- 
Alexis Murzeau
PGP: B7E6 0EBB 9293 7B06 BDBC  2787 E7BD 1904 F480 937F



signature.asc
Description: OpenPGP digital signature

Bug#904852: lintian: package-contains-documentation-outside-usr-share-doc far too overzealous

[roucaries bastien]

On Tue, Aug 7, 2018 at 3:54 PM Chris Lamb  wrote:
>
> Chris Lamb wrote:
>
> > > the phrase "Please move this files to /usr/share/doc/ or remove it."
> > > sounds very final, but completely ignores that there are quite a lot of
> > > files (often named README or so) documenting the purpose or contents of
> > > the directory they're in.
> >
> > I agree. Bastian, you added this in #901274 — can you chime in here? I
> > am not the greatest fan of this tag, and have already skipped it in some
> > of my own packages which is not the best sign from a Lintian maintainer...
>
> Gentle ping on this, Bastian? :)

Done will check only this directory in README.*
>
>
> Regards,
>
> --
>   ,''`.
>  : :'  : Chris Lamb
>  `. `'`  la...@debian.org / chris-lamb.co.uk
>`-

Bug#905746: node-code: Please clarify/tidy original origin of module

[roucaries bastien]

Ok will clarifiy.

It is inpired by node chai but it is a full rewrite
On Wed, Aug 8, 2018 at 10:57 PM Chris Lamb  wrote:
>
> Source: node-code
> Version: 5.2.0-1
> Severity: wishlist
> X-Debbugs-CC: Bastien Roucaris ,
> ftpmas...@debian.org
>
> Hi,
>
> I just ACCEPTed node-code from NEW but was wondering if you could
> clarify in debian/copyright that it is based on original work by
> someone called "Chai".
>
>
> Regards,
>
> --
>   ,''`.
>  : :'  : Chris Lamb
>  `. `'`  la...@debian.org / chris-lamb.co.uk
>`-

Bug#905750: RFS: elpy/1.23.0-1

[Nicholas D Steeves]

Package: sponsorship-requests
Severity: normal

Dear mentors,

I am looking for a sponsor for my package "elpy"

Hi Chris, I've CCed you because you've sponsored past releases.

Package name: elpy
Version : 1.23.0-1
Upstream Author : Jorgen Schaefer 
URL : https://github.com/jorgenschaefer/elpy
License : GPL-3+
Section : devel

It builds this binary package:

  elpa-elpy  - Emacs Python Development Environment

To access further information about this package, please visit the following 
URL:

  https://mentors.debian.net/package/elpy

Alternatively, one can download the package with dget using this command:

  dget -x https://mentors.debian.net/debian/pool/main/e/elpy/elpy_1.23.0-1.dsc

Alternatively, clone its repository using this command:

  git clone https://salsa.debian.org/emacsen-team/elpy.git

Changes since the last upload:

elpy (1.23.0-1) unstable; urgency=medium

  * New upstream version.
  * Build and install info page.
  * Declare Standards-Version: 4.2.0
- §12.7, Install NEWS.rst as NEWS.
  * Add "Local Variables" footer to NEWS so that it opens in ReST mode.
  * Compress README.rst with gzip before installing.

 -- Nicholas D Steeves   Wed, 08 Aug 2018 16:04:52 -0400

elpy (1.22.0-1) unstable; urgency=medium


Regards,
Nicholas D Steeves

Bug#904782: tabbar-el: Please inline web-based comments in debian/copyright

[Nicholas D Steeves]

Control: tag -1 + pending

On Fri, Jul 27, 2018 at 08:58:08PM -0400, Nicholas D Steeves wrote:
> Hi Chris,
> 
> On Sat, Jul 28, 2018 at 01:30:39AM +0100, Chris Lamb wrote:
> > Source: tabbar-el
> > Version: 2.2-1
> > Severity: wishlist
> > X-Debbugs-CC: Nicholas D Steeves 
> > 
> > Hi,
> > 
> > I just ACCEPTed tabbar-el from NEW but noticed that you link to a web-
> > based discussion:
> > 
> >  50 Comment: Copyright was established with discussion with upstreams at:
> >  51  https://github.com/dholm/tabbar/issues/31
> >  52  https://github.com/davidswelt/aquamacs-emacs/issues/138
> >  53  Aquamacs plans to add copyright info for Tabbar, then, dholms's project
> >  54  can sync the file, at which time we can sync with his and these 
> > comments
> >  55  can be dropped.
> > 
> > This is sub-optimal as it requires internet access to view or can
> > otherwise can disappear or change. Please inline/quote the relevant
> > parts of the discussion in your debian/copyright instead as you deem
> > densible.
> 
> Thank you for accepting tabbar-el despite this, thank you for filing
> this bug as a reminder to fix this issue, and also for leaving it to
> my discretion.  In those discussions I spent my goodwill pursuing an
> upstream copy of the copyright info, as a file in the repository,
> which also benefits users outside of Debian.  If it hasn't been
> resolved upstream in a month, then I plan to send a gentle reminder
> and offer to draft that file—which would need to be acked by two or
> three copyright holders.
> 
> Cheers,
> Nicholas

Well, I took a stab at synthesizing and summarizing the relevant
process, plus quoting upstream's response.  I consider this fixed
@commit: 23e2eb9

Cheers,
Nicholas


signature.asc
Description: PGP signature

Bug#902225: RFS: ii/1.8-1

[Niels Thykier]

itd:
> Hi,
> 
> thanks for the review!
> 
> Niels Thykier:
>> # The remark:
> Oops! Fixed, thanks. (Updated Build-Dependency on debhelper.)
> 

Ack. :)

>>  * Relicense the patches to the same as upstream (requires approval from
>>the previous maintainer).  We already spoke about this on IRC.
> Previous maintainer approves (see #902225 message #23). (@Nico: Thanks!)
> (Updated d/copyright.)
> 

Excellent.  For good measure, please document this in the changelog.
Mostly so it is obvious to people who were not following along on these
bugs (and to help ourselves if we are asked to explain it later)

On a related note, there is a minor but relevant mistake in the
debian/copyright file:

"""
Files: *
   debian/patches/*
[...]
License: MIT

Files: debian/*
[...]
License: GPL-2
"""

The problem is that the "debian/*" overshadows the debian/patches/*
entry.  According to the copyright file, debian/patches/* are still
under the GPL-2.
  This is caused by how the copyright file is read.  I a bit surprised
that lintian did not give any warnings about this (it does for some
similar cases), so I have filed #905747 to improve the situation.

>> [... other suggestions ...]
> Done.
> 

:)

>>  * Have you considered setting up a git repository for the packaging on
>>salsa.debian.org?
> Yes. I'm currently using https://salsa.debian.org/itd-guest/ii.
> It has restricted ("internal") visibility, since it's not official. I
> couldn't find a previous repository. "gbp import-dscs --debsnap ii" was
> used to import previous package versions (IIRC).
> 

A good idea for bootstrapping a git repo. :)  Given that you are (about
to be) the official maintainer for ii, please make it public and then
you can add the Vcs-Git + Vcs-Browser fields in debian/control as well. :)
  Alternatively, we can add a "debian/ii" repo that you can work in if
you think that would be better.  (But I do not think it is worth
stalling the upload for that.  Uploads are cheap so we can always do
another one for that)

On a related note, as Axel mentioned, Nico has retired from Debian.
Please replace him with yourself in the Maintainers field (and drop the
Uploaders field).  :)

These bits are less critical and can wait till a later upload if you prefer.

> # Other changes
> * use libbsd-dev to provide strlcpy(3) and exclude "strlcpy.c"
> * apply upstream patch that adds additional user input validation
> 

Excellent. :)

> Thanks again!
> 
> Regards,
> itd
> --
> $ head -n 17 debian/changelog
> [...]
> 


Once again, thanks for working on improving Debian, :)
~Niels

Bug#905747: lintian: Better checking of DEP-5 copyright Files field

[Mattia Rizzolo]

On Wed, Aug 08, 2018 at 10:53:55PM +0200, Niels Thykier wrote:
>  1) The debian/patches/* entry in the first paragraph is completely
> overwritten by the debian/*.  There is no warning about this
> even though it is a mistake (redundant at best; most likely
> an incorrect license is recorded for the overshadowed entry).

JFTR: this would have been covered by
unused-file-paragraph-in-dep5-copyright if it wasn't that the first
paragraph *also* has the catch-all entry.

-- 
regards,
Mattia Rizzolo

GPG Key: 66AE 2B4A FCCF 3F52 DA18  4D18 4B04 3FCD B944 4540  .''`.
more about me:  https://mapreri.org : :'  :
Launchpad user: https://launchpad.net/~mapreri  `. `'`
Debian QA page: https://qa.debian.org/developer.php?login=mattia  `-


signature.asc
Description: PGP signature

Bug#905749: Please package new upstream version

[Bastien Roucariès]

Package: node-http-errors
Version: 1.6.3-1
Severity: wishlist
control: block -1 by 905716

A reminder that new upstream is blocked by #905716

signature.asc
Description: This is a digitally signed message part.

Bug#905748: debian-games: Please bring back games-finest-light

[Axel Beckert]

Source: debian-games
Severity: wishlist
Version: 2.4

The debian/changelog entry for 2.4 says:

   * Remove finest-light binary package. Nowadays modern computers should be
 capable of running all free software games in Debian without restrictions.

The latter is neither true nor should it be a reason to remove this IMHO
very useful metapackage:

   * There are definitely many modern computers without graphics
 hardware acceleration, espcially in the single board computer
 segment (ARM, MIPS, etc., which Debian also targets).

   * On all devices which boot up on SD or MicroSD cards, disk space is
 scarce and hence a collection of lightweight games makes also sense
 for more powerful computers which don't have a hard disk or real SSD.

   * Debian does not only run on "modern" computers.

-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (990, 'unstable'), (600, 'testing'), (500, 'unstable-debug'), 
(500, 'buildd-unstable'), (110, 'experimental'), (1, 'experimental-debug'), (1, 
'buildd-experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.17.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE=C.UTF-8 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)
LSM: AppArmor: enabled

Bug#905747: lintian: Better checking of DEP-5 copyright Files field

[Niels Thykier]

Package: lintian
Version: 2.5.94
Severity: minor

I saw the following in a d/copyright today and expected lintian to
give some form of warning:

"""
Files: *
   debian/patches/*
Copyright: [...]
License:   License1

Files: debian/*
Copyright: [...]
License:   License2
"""

There are two distrinct issues here:

 1) The debian/patches/* entry in the first paragraph is completely
overwritten by the debian/*.  There is no warning about this
even though it is a mistake (redundant at best; most likely
an incorrect license is recorded for the overshadowed entry).


 2) Having "*" together with anything else is redundant at best and
almost certainly a mistake.


In the concrete case, what the person wanted was:

"""
Files: *
   debian/patches/*
Copyright: [...]
License:   License1

Files: debian/*
Copyright: [...]
License:   License2

Files: debian/patches/*
Copyright: [...]
License:   License1
"""

I.e. debian/* is under License2 except for debian/patches which has
the same license as all of upstreams code.

Thanks,
~Niels

Bug#905746: node-code: Please clarify/tidy original origin of module

[Chris Lamb]

Source: node-code
Version: 5.2.0-1
Severity: wishlist
X-Debbugs-CC: Bastien Roucaris , 
ftpmas...@debian.org

Hi,

I just ACCEPTed node-code from NEW but was wondering if you could
clarify in debian/copyright that it is based on original work by
someone called "Chai".


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-

Bug#867951: liferea: Uses deprecated gir1.2-gnomekeyring-1.0

[Bastian Germann]

The upstream was ported to libsecret and the forwarded bug closed.

Bug#905744: qmidinet FTCBFS: configure detects the build architecture qmake

[Helmut Grohne]

Source: qmidinet
Version: 0.5.0-1
Tags: patch upstream
User: helm...@debian.org
Usertags: rebootstrap

qmidinet fails to cross build from source, because its ./configure
detects the build architecture qmake using AC_PATH_PROG. Since qmake is
only requested for the host architecture, it doesn't work. After
switching to AC_PATH_TOOL, qmidinet cross builds successfully. Please
consider applying the attached patch.

Helmut
--- qmidinet-0.5.0.orig/configure.ac
+++ qmidinet-0.5.0/configure.ac
@@ -196,12 +196,12 @@
 ac_errmsg="not found in current PATH. Maybe QT development environment isn't available."
 
 if test "x$ac_qt4" = "xyes"; then
-   AC_PATH_PROG(ac_qmake, qmake-qt4, [no], $ac_path)
+   AC_PATH_TOOL(ac_qmake, qmake-qt4, [no], $ac_path)
 else
-   AC_PATH_PROG(ac_qmake, qmake-qt5, [no], $ac_path)
+   AC_PATH_TOOL(ac_qmake, qmake-qt5, [no], $ac_path)
 fi
 if test "x$ac_qmake" = "xno"; then
-   AC_PATH_PROG(ac_cv_qmake, qmake, [no], $ac_path)
+   AC_PATH_TOOL(ac_cv_qmake, qmake, [no], $ac_path)
ac_qmake=$ac_cv_qmake
 fi
 if test "x$ac_qmake" = "xno"; then

Bug#905743: bind9: CVE-2018-5740: A flaw in the "deny-answer-aliases" feature can cause an INSIST assertion failure in named

[Salvatore Bonaccorso]

Source: bind9
Version: 1:9.10.3.dfsg.P4-12.3
Severity: important
Tags: security upstream
Control: found -1 1:9.11.4+dfsg-4

Hi,

The following vulnerability was published for bind9.

CVE-2018-5740[0]:
|A flaw in the "deny-answer-aliases" feature can cause an INSIST
|assertion failure in named

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2018-5740
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5740
[1] https://kb.isc.org/article/AA-01639/74/CVE-2018-5740

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Bug#905742: bsdmainutils: use util-linux implementations of various utilities?

[Chris Hofstaedtler]

Package: bsdmainutils

Hi Michael,

I've noticed bsdmainutils ships a number of binaries that are also
in the util-linux source. I don't know what the upstream/maintenance
status of bsdmainutils is.

Are you interested in letting util-linux ship these binaries instead
of bsdmainutils?

AFAICT the binaries that util-linux /could/ ship today are:

* cal
* col
* colcrt
* colrm
* column
* hexdump (not sure what about hd)
* ul

>From a quick look at the manpages of each utility it would appear
that the util-linux versions support all the options that are
present in the bsdmainutils versions, but a more torough check would
be needed.

What do you think?

Chris

Bug#902004: /usr/sbin/xrdp-build-pulse-modules: incorrect usage of dget

[Jonathan Lane]

Package: xrdp-pulseaudio-installer
Version: 0.9.6-1~bpo9+1
Followup-For: Bug #902004

Dear Maintainer,

The issue is on lines 22-34 of the script /usr/sbin/xrdp-build-pulse-modules.  
The text parsing to automatically populate the $pulseaudio_version, 
$pulseaudio_upstream_version, $mirror, and $suite variables is all wrong, 
possibly due to output format changes in "apt show" and "dpkg-query".  Hard 
coding the correct values and re-running the script produces xrdp pulseaudio 
modules that operate as expected.



-- System Information:
Debian Release: 9.5
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: arm64 (aarch64)

Kernel: Linux 4.9.0-6-arm64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages xrdp-pulseaudio-installer depends on:
ii  build-essential  12.3
ii  devscripts   2.17.6+deb9u2
ii  intltool 0.51.0-3
ii  libasound2-dev   1.1.3-5
ii  libasyncns-dev   0.8-6
ii  libavahi-client-dev  0.6.32-2
ii  libbluetooth-dev 5.43-2+deb9u1
ii  libcap-dev   1:2.25-1
ii  libfftw3-dev 3.3.5-3
ii  libgconf2-dev3.2.6-4+b1
ii  libglib2.0-dev   2.50.3-2
ii  libgtk-3-dev 3.22.11-1
ii  libice-dev   2:1.0.9-2
ii  libjack-dev  1:0.125.0-2
ii  libjson-c-dev0.12.1-1.1
ii  liblirc-dev [liblircclient-dev]  0.9.4c-9
ii  liblircclient-dev0.9.4c-9
ii  libltdl-dev  2.4.6-2
ii  liborc-0.4-dev   1:0.4.26-2
ii  libsamplerate0-dev   0.1.8-8+b2
ii  libsbc-dev   1.3-2
ii  libsndfile1-dev  1.0.27-3
ii  libsoxr-dev  0.1.2-2
ii  libspeexdsp-dev  1.2~rc1.2-1+b2
ii  libssl-dev   1.1.0f-3+deb9u2
ii  libsystemd-dev   232-25+deb9u4
ii  libtdb-dev   1.3.11-2
ii  libudev-dev  232-25+deb9u4
ii  libwebrtc-audio-processing-dev   0.3-1
ii  libwrap0-dev 7.6.q-26
ii  libx11-xcb-dev   2:1.6.4-3
ii  libxcb1-dev  1.12-1
ii  libxtst-dev  2:1.2.3-1
ii  pulseaudio   10.0-1+deb9u1

xrdp-pulseaudio-installer recommends no packages.

xrdp-pulseaudio-installer suggests no packages.

-- no debconf information

Bug#905674: undistributable

[Adam Borowski]

Actually, it seems to me it's not even distributable.

The wording sounds like a requirement rather than something non-mandatory --
reinforced by providing the alternative of paying €1.  Yet the license
is GPL3+, which expressly forbids additional fees.  This is even described
in FSF's GPL FAQ:
https://www.gnu.org/licenses/gpl-faq.en.html#RequireCitation

Thus, the copyright holder can distribute this software, but no one else
can.

As the requirement is not a part of the license, we could just remove the
demand nagware from the code.  But alas, the upstream (Ole Tange) threatened
legal action if you do so without renaming the package.  And it doesn't seem
to be just hot wind, as he registered it: US trademark number 87867112,
filed Apr 07, 2018.

Multiple people tried persuading the upstream to drop this requirement,
without success.  Thus, diplomacy doesn't appear to be likely to help,
although letting rms know may work (this package has been blessed as an
official GNU one, obviously before the requirement was added).

Thus, only options I see are:
* renaming the package and removing offending code, or
* complete removal


Meow!
-- 
// If you believe in so-called "intellectual property", please immediately
// cease using counterfeit alphabets.  Instead, contact the nearest temple
// of Amon, whose priests will provide you with scribal services for all
// your writing needs, for Reasonable And Non-Discriminatory prices.

Bug#900210: Thunderbird AppArmor config breaks stuff with custom $TMPDIR

[Christian Boltz]

Helllo,

Stephen, while we are discussing this, I'd like to give you an easy 
workaround:

Edit /etc/apparmor.d/tunables/alias and add this line:

alias /tmp/ -> /run/user/1000/,

This will (additionally) allow /run/user/1000/ whenever a profile says 
/tmp/

If you need a solution that works for all users (and is a bit less 
strict because it only enforces that the directory name has to start 
with a digit)

alias /tmp/ -> /run/user/[0-9]*/,


After adding the alias, reload all AppArmor profiles.

The alias will "fix" all profiles, not only the thunderbird profile.


Regards,

Christian Boltz

PS: Can someone who knows the Debian bugtracker better please tag this 
bug so that we get notifications on pkg-apparmor?
-- 
Most languages allow you to shoot your own foot,
C just gives you a tank instead of a handgun ;-)
[Cristian Rodríguez in opensuse-factory]


signature.asc
Description: This is a digitally signed message part.

Bug#905741: ploop FTCBFS: hard codes the build architecture pkg-config

[Helmut Grohne]

Source: ploop
Version: 1.15-6
Tags: patch upstream
User: helm...@debian.org
Usertags: rebootstrap

ploop fails to cross build from source, because it hard codes the build
architecture pkg-config and thus fails finding host architecture .pc
files. After making pkg-config substitutable, ploop cross builds
successfully. Please consider applying the attached patch.

Helmut
--- ploop-1.15.orig/Makefile.inc
+++ ploop-1.15/Makefile.inc
@@ -3,6 +3,7 @@
 RELEASE=
 
 CC=gcc
+PKG_CONFIG ?= pkg-config
 INSTALL=install
 SBINDIR=/sbin
 USRSBINDIR=/usr/sbin
--- ploop-1.15.orig/lib/Makefile
+++ ploop-1.15/lib/Makefile
@@ -37,9 +37,9 @@
 SOURCES=$(LIBOBJS:.o=.c)
 GENERATED=symbols.c
 
-CFLAGS += $(shell pkg-config libxml-2.0 --cflags) -fPIC -fvisibility=hidden
+CFLAGS += $(shell $(PKG_CONFIG) libxml-2.0 --cflags) -fPIC -fvisibility=hidden
 LDFLAGS+= -shared -Wl,-soname,$(LIBPLOOP_SO_X)
-LDLIBS += $(shell pkg-config libxml-2.0 --libs) -lpthread -lrt
+LDLIBS += $(shell $(PKG_CONFIG) libxml-2.0 --libs) -lpthread -lrt
 
 all: $(LIBPLOOP) $(LIBPLOOP_SO) $(PC)
 .PHONY: all

Bug#905710: util-linux: "su: revoking keys needs to be documented'

[Andreas Henriksson]

Control: tags -1 + moreinfo

Hello Kapil Hari Paranjape,

Thanks for your bug report. (Reply inline below.)

On Wed, Aug 08, 2018 at 05:36:31PM +0530, Kapil Hari Paranjape wrote:
> Package: util-linux
> Version: 2.32-0.4
> Severity: normal
> 
> Dear Maintainer,
> 
> Running "su -" or "su -l" or "su --login" makes use of /etc/pam.d/su-l
> which revokes *all* keys in the session keyring.
> 
> This can be unexpected in situations where the key is utilised by the
> invoking user (for example, to access an encrypted file system as
> happened in my case; see https://github.com/dnschneid/crouton/issues/3860).
> 
> Hence, at the very least it needs to be documented.

There where absolutely zero replies to my call for help with reviewing
the pam configuration in:
https://lists.debian.org/debian-devel/2018/06/msg00048.html

I'm thus not very sympathetic towards comments about how things could
be better.

> 
> It is indeed unfortunate that a single command "su" is used in a large
> number of different ways and contexts in scripts across diverse systems
> *without* consideration of the semantics. However, any such change is
> bound to cause breakage and documentation is the best way to avoid
> flames!

Please do feel free to write something up and send it as a merge
request! Your contribution will be very appreciated! I'll offer to
review them once I find time for it.

I'm however not sure that changes to the util-linux is the best place to
document generic sysadmin best practises. As discussed elsewhere it's
probably better to contribute a chapter to "debian handbook" or similar
documents.

Please note that IMO users are always better off by using sudo instead of su.

I'm tagging this bug report with 'moreinfo' as in my view you're asking
for documenting the new su-l pam configuration, which is already
described in util-linux.NEWS in the version you reported this bug
against. I thus don't see what remains to be done to close it.

Regards,
Andreas Henriksson

Bug#905740: wide-dhcvp6 FTCBFS: configures for the build architecture

[Helmut Grohne]

Source: wide-dhcpv6
Version: 20080615-21
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap

wide-dhcpv6 fails to cross build from source, because it does not pass
--host to configure. The easiest way of doing so is using
dh_auto_configure. It also confuses build and host. After fixing both,
wide-dhcpv6 cross builds successfully. Please consider applying the
attached patch.

Helmut
diff --minimal -Nru wide-dhcpv6-20080615/debian/changelog 
wide-dhcpv6-20080615/debian/changelog
--- wide-dhcpv6-20080615/debian/changelog   2018-03-25 15:44:40.0 
+0200
+++ wide-dhcpv6-20080615/debian/changelog   2018-08-08 21:56:01.0 
+0200
@@ -1,3 +1,12 @@
+wide-dhcpv6 (20080615-21.1) UNRELEASED; urgency=medium
+
+  * Non-maintainer upload.
+  * Fix FTCBFS: (Closes: #-1)
++ Fix build/host confusion introduced in #893988.
++ Let dh_auto_configure pass --host to ./configure.
+
+ -- Helmut Grohne   Wed, 08 Aug 2018 21:56:01 +0200
+
 wide-dhcpv6 (20080615-21) unstable; urgency=medium
 
   [ Cyril Brulebois ]
diff --minimal -Nru wide-dhcpv6-20080615/debian/rules 
wide-dhcpv6-20080615/debian/rules
--- wide-dhcpv6-20080615/debian/rules   2018-03-25 15:36:08.0 +0200
+++ wide-dhcpv6-20080615/debian/rules   2018-08-08 21:55:59.0 +0200
@@ -3,6 +3,8 @@
 # output every command that modifies files on the build system.
 #export DH_VERBOSE = 1
 
+include /usr/share/dpkg/architecture.mk
+
 # Security Hardening
 export DEB_BUILD_MAINT_OPTIONS = hardening=+all
 
@@ -15,12 +17,10 @@
for dir in build build-udeb; do \
rsync -a --exclude debian/ --exclude .pc/ --exclude .git/ . 
$$dir; \
[ $$dir = "build-udeb" ] && \
-   sed "s,^CLIENTLIBS=.*,CLIENTLIBS=$$(find 
/usr/lib/$$(dpkg-architecture -qDEB_BUILD_MULTIARCH) -name libfl.a)," \
+   sed "s,^CLIENTLIBS=.*,CLIENTLIBS=$$(find 
/usr/lib/$(DEB_HOST_MULTIARCH) -name libfl.a)," \
-i $$dir/Makefile.in; \
-   cd $$dir && \
-   ./configure --prefix=/usr --mandir=\$${prefix}/share/man \
-   --with-localdbdir=/var/lib/dhcpv6 
--sysconfdir=/etc/wide-dhcpv6 && \
-   cd -; \
+   dh_auto_configure --sourcedirectory $$dir -- \
+   --with-localdbdir=/var/lib/dhcpv6 
--sysconfdir=/etc/wide-dhcpv6; \
done
 
 override_dh_auto_build:

Bug#905478: Fwd: Re: Debian´s change of "su" to the one in util-linux

[Andreas Henriksson]

Control: tags -1 + moreinfo

Hi Martin Steigerwald,

On Mon, Aug 06, 2018 at 10:39:54AM +0200, Martin Steigerwald wrote:
> Dear Andreas, dear Ted.
> 
> Andreas, Ted provided an explanation that I can go with. 

I quickly skimmed the upstream thread.

> I understand that you wrote quite something in NEWS.Debian already. I
> lower the priority of the report to wishlist. It may still help to
> explain it to users a bit more carefully. But as I know some of the
> reasons now, I am fine with it either way.

I only documented changed behavior in NEWS. I have no intention to
document long-standing best practises in detail in that file as it does
not belong in a NEWS file. I quickly mentioned 'su' vs 'su -' as a hint
for people to read up as many people still seem to be unknowing of the
difference. I think a better place to document this is as Ted already
suggested in some generic handbook.

> 
> I bet I will go with configuring sudo to take over SSH agent environment 
> variables to the root session. As this is on my laptop, I think I 
> configure sudo to demand to root password instead of the user´s one.

IMHO sudo should always be preferred over su anyway (but I even left
that detail out of the NEWS file as I didn't think it belonged there
either).
FYI debian installer will lock your root account if you leave the root
password field empty and install+configure sudo for your user. Please
lock your root account today and stop using su. If you think it's
annoying to type sudo in front of every command, use sudo -i.
Please feel free to try to convince debian-boot that the root-password
prompt in d-i should be changed to 'expert' level (and thus not shown by
default) to promote this behavior even more (similar to how ubuntu
already does).

Please summarize (in 2 or less sentences or I won't have time to read)
what you still thinks needs to be done in util-linux package to close
this bug report! As things currently stand I'm leaning towards tagging
this wontfix and close the bug report because u-l is IMO not the place
to document generic sysadmin best practises.

Regards,
Andreas Henriksson

Bug#904041: wine64-development: wineserver can no longer create temporary files

[debian]

Michael,

Did you find a fix for this issue ?

Perhaps we should just add a fallback if /run/user does not exists (or
cannot be used for some reason)
You may find a (non tested) patch as attachment

Thanks,

On 07/20/2018 07:52 PM, deb...@jack.fr.eu.org wrote:
> Hi Michael,
> 
> XDG_RUNTIME_DIR is not set
> 
> There is no systemd here, except the following:
> 8% [jack:~]dpkg -l | grep systemd
> ii  libsystemd0:amd64 239-6 amd64 systemd utility library
> ii  libsystemd0:i386  239-6 i386  systemd utility library
> 
> Thanks
> 
> On 07/20/2018 05:13 AM, Michael Gilbert wrote:
>> control: tag -1 moreinfo
>>
>> On Wed, Jul 18, 2018 at 2:01 PM, Jack wrote:
>>> Using the latest release, wineserver dies with the following error:
>>> wineserver: mkdir /run/user/1000/wine: No such file or directory
>>
>> Is XDG_RUNTIME_DIR set in your environment?  If so, what does it contain?
>>
>> This is a system that is not using pam_systemd? In an attempt to get
>> ahead of any flame war, I am not suggesting that this is something
>> that should be required, I am just trying to understand your
>> configuration.
>>
>> Best wishes,
>> Mike
>>
> 

diff --git a/libs/wine/config.c b/libs/wine/config.c
index c9bc3bf..6625ce1 100644
--- a/libs/wine/config.c
+++ b/libs/wine/config.c
@@ -35,9 +35,10 @@
 #endif
 #include "wine/library.h"
 
-static const char server_config_dir[] = "/.wine";/* config dir relative to $HOME */
-static const char server_root_prefix[] = "/run/user";/* prefix for server root dir */
-static const char server_dir_prefix[] = "/server-";  /* prefix for server dir */
+static const char server_config_dir[] = "/.wine";   /* config dir relative to $HOME */
+static const char server_root_prefix[] = "/run/user";   /* prefix for server root dir */
+static const char server_root_prefix_fallback[] = "/tmp/.wine"; /* prefix to be used if server_root_prefix does not exists */
+static const char server_dir_prefix[] = "/server-"; /* prefix for server dir */
 
 static char *bindir;
 static char *dlldir;
@@ -225,8 +226,18 @@ static void init_server_dir( dev_t dev, ino_t ino )
 #ifdef __ANDROID__  /* there's no /tmp dir on Android */
 root = build_path( config_dir, ".wineserver" );
 #elif defined(HAVE_GETUID)
-root = xmalloc( sizeof(server_root_prefix) + 17 );
-sprintf( root, "%s/%u/wine", server_root_prefix, getuid() );
+DIR* dir = opendir(server_root_prefix);
+if(dir)
+{
+closedir(dir);
+root = xmalloc( sizeof(server_root_prefix) + 17 );
+sprintf( root, "%s/%u/wine", server_root_prefix, getuid() );
+}
+else
+{
+root = xmalloc( sizeof(server_root_prefix) + 12 );
+sprintf( root, "%s-%u", server_root_prefix, getuid() );
+}
 #else
 fatal_error("unable to get user id for temporary files");
 #endif

Bug#905739: wpa: CVE-2018-14526: Unauthenticated EAPOL-Key decryption in wpa_supplicant

[Salvatore Bonaccorso]

Source: wpa
Version: 2:2.4-1
Severity: important
Tags: patch security upstream

Hi,

The following vulnerability was published for wpa.

CVE-2018-14526[0]:
| An issue was discovered in rsn_supp/wpa.c in wpa_supplicant 2.0
| through 2.6. Under certain conditions, the integrity of EAPOL-Key
| messages is not checked, leading to a decryption oracle. An attacker
| within range of the Access Point and client can abuse the
| vulnerability to recover sensitive information.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2018-14526
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14526
[1] https://w1.fi/security/2018-1/unauthenticated-eapol-key-decryption.txt

Regards,
Salvatore

Bug#905738: qml-module-qtquick-controls2: incorrect dependencies due to pkg-kde-tools bug #905736

[Andreas Ferber]

Package: qml-module-qtquick-controls2
Version: 5.11.1-2
Severity: normal
Control: block -1 by 905736

Hi,

this package is affected by bug #905736 in pkg-kde-tools, which leads to
incorrect dependencies in the qml-module-qtquick-controls2 and
qml-module-qt-labs-calendar binary packages. Please see the other bug
report for details.

After the bug has been fixed in pkg-kde-tools, the build-dependency on
it should be bumped to the fixed version and the package rebuilt in
order to fix the dependencies.

As a workaround you could temporarily drop the ${qmlc:Depends} and add
the necessary libqt5qml5 dependencies manually.

Regards,
Andreas Ferber

Bug#905737: reportbug: fails with '500 Internal Server Error' and 'No such bug report' retrieving only some bugnumbers

[Santiago]

Package: reportbug
Version: 7.5.0
Severity: important

Dear Maintainer, for several months, I reported without problems about the 
bugnumber 885947 (the last correct was on 23-Jul-2018).


>From 29-Jul-2018, this command fails to recover the report, with messages '500 
>Internal Server Error' and 'No report available'.

$ reportbug -N 885947
*** Welcome to reportbug.  Use ? for help at prompts. ***
. . .
Retrieving report #885947 from Debian bug tracking system...
b'\n\n500 
Internal Server Error\n\nInternal Server 
Error\nThe server encountered an internal error or\nmisconfiguration 
and was unable to complete\nyour request.\nPlease contact the server 
administrator at \n ow...@bugs.debian.org to inform them of the time this error 
occurred,\n and the actions you performed just before this error.\nMore 
information about this error may be available\nin the server error 
log.\n\nApache Server at bugs.debian.org Port 
443\n\n'
No report available: #885947
No such bug report.


If I try other bugnumbers, several work fine (825930, 904391) but some work 
badly (750587) with the same error.

$ reportbug -N 825930
*** Welcome to reportbug.  Use ? for help at prompts. ***
. . .
Retrieving report #825930 from Debian bug tracking system...
What do you want to do now? [N|x|o|r|b|e|q|?]? q
Exiting.

$ reportbug -N  904391
*** Welcome to reportbug.  Use ? for help at prompts. ***
. . .
Retrieving report #904391 from Debian bug tracking system...
What do you want to do now? [x|O|r|b|e|q|?]? q
Exiting.

$ reportbug -N 750587
*** Welcome to reportbug.  Use ? for help at prompts. ***
. . .
Retrieving report #885947 from Debian bug tracking system...
b'\n\n500 
Internal Server Error\n\nInternal Server 
Error\nThe server encountered an internal error or\nmisconfiguration 
and was unable to complete\nyour request.\nPlease contact the server 
administrator at \n ow...@bugs.debian.org to inform them of the time this error 
occurred,\n and the actions you performed just before this error.\nMore 
information about this error may be available\nin the server error 
log.\n\nApache Server at bugs.debian.org Port 
443\n\n'
No report available: #885947
No such bug report.


Is it a bug in this package or is it a problem in the bug report?
How can I now inform the maintainer of bugnumber 885947?

Regards.


-- Package-specific info:
** Environment settings:
INTERFACE="text"

** /home/iotest/.reportbugrc:
reportbug_version "7.1.7"
mode novice
ui text
realname "Santiago"
email "yg2...@hotmail.com"
no-cc
header "X-Debbugs-CC: yg2...@hotmail.com"
smtphost reportbug.debian.org

-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.17.0-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=es_ES.UTF-8, LC_CTYPE=es_ES.UTF-8 (charmap=UTF-8), 
LANGUAGE=es_ES.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages reportbug depends on:
ii  apt1.6.3
ii  python33.6.5-3
ii  python3-reportbug  7.5.0
ii  sensible-utils 0.0.12

reportbug recommends no packages.

Versions of packages reportbug suggests:
pn  claws-mail 
ii  debconf-utils  1.5.69
ii  debsums2.2.3
pn  dlocate
pn  emacs24-bin-common | emacs25-bin-common
ii  exim4-daemon-light [mail-transport-agent]  4.91-6
ii  file   1:5.33-3
ii  gnupg  2.2.9-1
pn  python3-urwid  
pn  reportbug-gtk  
ii  xdg-utils  1.1.3-1

Versions of packages python3-reportbug depends on:
ii  apt1.6.3
ii  file   1:5.33-3
ii  python33.6.5-3
ii  python3-apt1.6.2
ii  python3-debian 0.1.32
ii  python3-debianbts  2.7.2
ii  python3-requests   2.18.4-2

python3-reportbug suggests no packages.

-- no debconf information

Bug#874275: exifprobe: diff for NMU version 2.0.1+git20170416.3c2b769-1.1

[Adrian Bunk]

Control: tags 874275 + patch
Control: tags 874275 + pending

Dear maintainer,

I've prepared an NMU for exifprobe (versioned as 
2.0.1+git20170416.3c2b769-1.1) and uploaded it to DELAYED/14.
Please feel free to tell me if I should cancel it.

cu
Adrian

-- 

   "Is there not promise of rain?" Ling Tan asked suddenly out
of the darkness. There had been need of rain for many days.
   "Only a promise," Lao Er said.
   Pearl S. Buck - Dragon Seed

diff -Nru exifprobe-2.0.1+git20170416.3c2b769/debian/changelog exifprobe-2.0.1+git20170416.3c2b769/debian/changelog
--- exifprobe-2.0.1+git20170416.3c2b769/debian/changelog	2017-07-09 01:36:23.0 +0300
+++ exifprobe-2.0.1+git20170416.3c2b769/debian/changelog	2018-08-08 21:56:31.0 +0300
@@ -1,3 +1,11 @@
+exifprobe (2.0.1+git20170416.3c2b769-1.1) unstable; urgency=high
+
+  * Non-maintainer upload.
+  * Add upstream fix for segfaults due to missing function prototypes.
+(Closes: #874275)
+
+ -- Adrian Bunk   Wed, 08 Aug 2018 21:56:31 +0300
+
 exifprobe (2.0.1+git20170416.3c2b769-1) unstable; urgency=medium
 
   * New upstream release: fixed crashes on corrupt file. (Closes: #809365)
diff -Nru exifprobe-2.0.1+git20170416.3c2b769/debian/patches/0001-Issue-15-Ensure-all-function-prototypes-are-availabl.patch exifprobe-2.0.1+git20170416.3c2b769/debian/patches/0001-Issue-15-Ensure-all-function-prototypes-are-availabl.patch
--- exifprobe-2.0.1+git20170416.3c2b769/debian/patches/0001-Issue-15-Ensure-all-function-prototypes-are-availabl.patch	1970-01-01 02:00:00.0 +0200
+++ exifprobe-2.0.1+git20170416.3c2b769/debian/patches/0001-Issue-15-Ensure-all-function-prototypes-are-availabl.patch	2018-08-08 21:11:42.0 +0300
@@ -0,0 +1,111 @@
+From 3db18aa9fef6a32786e4aa0479ed99861fc8d0ef Mon Sep 17 00:00:00 2001
+From: =?UTF-8?q?Hubert=20Figui=C3=A8re?= 
+Date: Sat, 16 Jun 2018 00:16:45 -0400
+Subject: Issue #15 - Ensure all function prototypes are available
+
+- This should fix strdup() return garbage when sizeof(void*) > 4
+
+https://github.com/hfiguiere/exifprobe/issues/15
+---
+ ciff.c | 2 ++
+ jp2000.c   | 2 ++
+ misc.c | 2 ++
+ options.c  | 2 ++
+ print.c| 2 ++
+ readfile.c | 1 +
+ tagnames.c | 2 ++
+ 7 files changed, 13 insertions(+)
+
+diff --git a/ciff.c b/ciff.c
+index 3b11940..f9fcec9 100644
+--- a/ciff.c
 b/ciff.c
+@@ -21,6 +21,8 @@ static char *ModuleId = "@(#) $Id: ciff.c,v 1.8 2005/07/24 17:03:18 alex Exp $";
+ /*http://www.sno.phy.queensu.ca/~phil/exiftool/canon_raw.html */
+ /* =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- */
+ 
++#define _POSIX_C_SOURCE 200809L /* for strdup() */
++
+ #include 
+ #include 
+ #include 
+diff --git a/jp2000.c b/jp2000.c
+index 1f031b3..5406665 100644
+--- a/jp2000.c
 b/jp2000.c
+@@ -26,6 +26,8 @@ static char *ModuleId = "@(#) $Id: jp2000.c,v 1.10 2005/07/24 19:54:04 alex Exp
+ /* 64-bit addressing is not yet supported */
+ /* =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- */
+ 
++#define _DEFAULT_SOURCE /* for isacii() */
++
+ #include 
+ #include 
+ #include 
+diff --git a/misc.c b/misc.c
+index 455cc00..e8e2343 100644
+--- a/misc.c
 b/misc.c
+@@ -10,6 +10,8 @@
+ static char *ModuleId = "@(#) $Id: misc.c,v 1.22 2005/07/24 16:01:17 alex Exp $";
+ #endif
+ 
++#define _POSIX_C_SOURCE 200809L /* for strdup() */
++
+ #include 
+ #include 
+ #include 
+diff --git a/options.c b/options.c
+index 740f275..8217808 100644
+--- a/options.c
 b/options.c
+@@ -10,6 +10,8 @@
+ static char *ModuleId = "@(#) $Id: options.c,v 1.21 2005/07/24 17:18:27 alex Exp $";
+ #endif
+ 
++#define _POSIX_C_SOURCE 1 /* for fileno() */
++
+ #include 
+ #include 
+ #include 
+diff --git a/print.c b/print.c
+index 0b0b8ed..208a1cb 100644
+--- a/print.c
 b/print.c
+@@ -13,6 +13,8 @@ static char *ModuleId = "@(#) $Id: print.c,v 1.51 2005/07/24 17:16:59 alex Exp $
+ /* This file contains the primary "print" routines for TIFF/EXIF  */
+ /* data, file offsets, etc.   */
+ 
++#define _DEFAULT_SOURCE /* for isacii() */
++
+ #include 
+ #include 
+ #include 
+diff --git a/readfile.c b/readfile.c
+index 0761308..012f412 100644
+--- a/readfile.c
 b/readfile.c
+@@ -21,6 +21,7 @@ static char *ModuleId = "@(#) $Id: readfile.c,v 1.30 2005/07/24 18:15:28 alex Ex
+ /* byteorder is "little-endian". The code does not currently handle   */
+ /* "pdp11" byteorder. */
+ 
++#define _DEFAULT_SOURCE /* for isacii() */
+ 
+ #include 
+ #include 
+diff --git a/tagnames.c b/tagnames.c
+index 781545a..19dc462 100644
+--- a/tagnames.c
 b/tagnames.c
+@@ -10,6 +10,8 @@
+ static char *ModuleId = "@(#) $Id: tagnames.c,v 1.21 2005/07/24 19:40:09 alex Exp $";
+ #endif
+ 
++#define _POSIX_C_SOURCE 200809L /* for strdup() */
++
+ #include 
+ #include 
+ #include "defs.h"
+-- 
+2.11.0
+
diff -Nru exifprobe-2.0.1+git201

Bug#905701: closed by Félix Sipma (Bug#905701: fixed in khard 0.12.2-3)

[Michael Wagner]

Hello Felix,

now is the new package in unstable, but it has no depency for 
'python3-distutils'.

$apt -t unstable depends khard
khard
  Depends: python3-atomicwrites
  Depends: python3-configobj
  Depends: python3-ruamel.yaml
  Depends: python3-unidecode
  Depends: python3-vobject
  Depends: 
python3
  Suggests: vdirsyncer

Michael

On Aug 08, 2018 at 10:09:03, Debian Bug Tracking System wrote:
> This is an automatic notification regarding your Bug report
> which was filed against the khard package:
> 
> #905701: khard: missing depency 'python3-distutils'
> 
> It has been closed by Félix Sipma .
> 
> Their explanation is attached below along with your original report.
> If this explanation is unsatisfactory and you have not received a
> better one in a separate message then please contact Félix Sipma 
>  by
> replying to this email.
> 
> 
> -- 
> 905701: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=905701
> Debian Bug Tracking System
> Contact ow...@bugs.debian.org with problems

> Date: Wed, 08 Aug 2018 10:06:27 +
> From: Félix Sipma 
> Subject: Bug#905701: fixed in khard 0.12.2-3
> To: 905701-cl...@bugs.debian.org
> X-Spam-Status: No, score=-17.7 required=4.0 tests=BAYES_00,DIGITS_LETTERS,
>  FVGT_m_MULTI_ODD,HAS_BUG_NUMBER,HEADER_FROM_DIFFERENT_DOMAINS,MD5_SHA1_SUM,
>  PGPSIGNATURE,RCVD_IN_DNSWL_MED,TXREP autolearn=ham autolearn_force=no
>  version=3.4.1-bugs.debian.org_2005_01_02
> Content-Type: text/plain; charset="utf-8"
> Message-Id: 
> 
> Source: khard
> Source-Version: 0.12.2-3
> 
> We believe that the bug you reported is fixed in the latest version of
> khard, which is due to be installed in the Debian FTP archive.
> 
> A summary of the changes between this version and the previous one is
> attached.
> 
> Thank you for reporting the bug, which will now be closed.  If you
> have further comments please address them to 905...@bugs.debian.org,
> and the maintainer will reopen the bug report if appropriate.
> 
> Debian distribution maintenance software
> pp.
> Félix Sipma  (supplier of updated khard package)
> 
> (This message was generated automatically at their request; if you
> believe that there is a problem with it please contact the archive
> administrators by mailing ftpmas...@ftp-master.debian.org)
> 
> 
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA512
> 
> Format: 1.8
> Date: Wed, 08 Aug 2018 11:50:00 +0200
> Source: khard
> Binary: khard
> Architecture: source amd64
> Version: 0.12.2-3
> Distribution: unstable
> Urgency: medium
> Maintainer: Félix Sipma 
> Changed-By: Félix Sipma 
> Description:
>  khard  - address book for the Linux console
> Closes: 905701
> Changes:
>  khard (0.12.2-3) unstable; urgency=medium
>  .
>* add python3-distutils to dependencies (Closes: #905701)
> Checksums-Sha1:
>  850aa6688432701e3ab5696c446f8ea8b9839d22 1948 khard_0.12.2-3.dsc
>  97a0a8742051b126c3bb089395ec30adab7ccbed 4632 khard_0.12.2-3.debian.tar.xz
>  2ba92cc1d0a25cc1e482d0db9d6fa2a695b03da2 6753 khard_0.12.2-3_amd64.buildinfo
>  ea46f2874e76ec147910816c673fdedcd07a25ff 4977072 khard_0.12.2-3_amd64.deb
> Checksums-Sha256:
>  c5868ddbdfa0e3df94dffec69ebeac87bd291b854287292ad616046fa47bcc89 1948 
> khard_0.12.2-3.dsc
>  cc0c778a4d9febba09c7aba810ad7bbc9d32aaa1de77fd7f64798e4e3d13ec08 4632 
> khard_0.12.2-3.debian.tar.xz
>  9346a666c80f668ea163f1bf847e74e24a4ee09f8057fe24721d8a7bacef8bb1 6753 
> khard_0.12.2-3_amd64.buildinfo
>  4aa638367253164b1c2c1b67e7add00af5970456389cc13e828b66b879f73ffb 4977072 
> khard_0.12.2-3_amd64.deb
> Files:
>  58c61694883c17d398e9a6e2167da300 1948 utils optional khard_0.12.2-3.dsc
>  98fac3686528180fad1fc535fc4d9205 4632 utils optional 
> khard_0.12.2-3.debian.tar.xz
>  00cc6754f37f31f571357d0f6452e653 6753 utils optional 
> khard_0.12.2-3_amd64.buildinfo
>  8834af10e0651198af492a1b5aaddae9 4977072 misc optional 
> khard_0.12.2-3_amd64.deb
> 
> -BEGIN PGP SIGNATURE-
> 
> iQIzBAEBCgAdFiEEYR+GG65kxsFKJlIvpxCCPjO92oEFAltqvRQACgkQpxCCPjO9
> 2oHuSA/+IVEx3IjXP49r7/GT5SmjH/CWrFlrRowR41Wwj0AdQa+Gx6IOpYGNEsyC
> KxWdXiu46FO4DP9toSeyEiOi3QrgpC1C+DvFMzRxqvPmQ7eAmLkZ4QvlpwyPoqZj
> 5xyoFVnGEwaHHQhAB9QBldl/f37y/BJtFn+fEb10M6LyVKQELGUGDk+OgKTBmGI1
> zq1sucbZdFygx62L0b4mbkV5UfCUPFCUV+CVLAcUOMaOguOx/TXE12M7VUajioxx
> Q5gboNvkpYIR7tXRSiRDiR0Z9Y0XMzCqV5/AGZbVVWPucg0roLC5c6Jf/+nf3ne0
> M1Ieo4Yt94sdMqi2jL6Cjs/aBPafJBHVu6z8IMyQ+vBffEfuELuPyKpbK0BatK1P
> qAtNYo7kVkD0YlDPobGNbY13XZ+mt/HtyIsoTuoGtIrx5fChB48We6GZddsRWEk2
> AmWTL2Z8cbPl3ZJ31P0sZAX5MltxPPh0vl4ecsTgw89y5ymX4iHv3IBpIzsM2Ina
> eKI5WjStbww2X0JoD3k13rNwIy5FzaIPGoWkqSY3dqCusqxvsBELSSWfE8rUAK/8
> joPzdOeHH4g/XPAfVLb47N7PKpfbeZVt+qfqWWMmaZy0JgIDvx9o9VDwv3SgLx8u
> QrdgKgeIwDeGHk6tfXHXE5L4EWxNOzN+V7DFvruTFmqzI5qxIAM=
> =NBeN
> -END PGP SIGNATURE-

> Date: Wed, 08 Aug 2018 11:04:29 +0200
> From: Michael Wagner 
> Subject: khard: missing depency 'python3-distutils'
> To: Debian Bug Tracking System 
> X-Spam-Status: No, score=-11.2 required=4.0 tests=BAYES_00,DIGITS_LETTERS,
>  FOURLA,FREEMAIL_FROM,HAS_PACKAG

Bug#905736: pkg-kde-tools: dh_qmlcdeps fails to process all packages

[Andreas Ferber]

Package: pkg-kde-tools
Version: 0.15.29
Severity: important
Tags: patch

Hi,

while making local backports of Qt5 for Debian stable, I noticed the
following messages in one of the build logs (the one for
qtquickcontrol2-opensource-src to be precise):

--
dpkg-gencontrol: warning: Depends field of package 
qml-module-qtquick-controls2: unknown substitution variable ${qmlc:Depends}
dpkg-gencontrol: warning: Depends field of package 
qml-module-qtquick-controls2: unknown substitution variable ${qmlc:Depends}
dpkg-gencontrol: warning: Depends field of package qml-module-qt-labs-calendar: 
unknown substitution variable ${qmlc:Depends}
dpkg-gencontrol: warning: Depends field of package qml-module-qt-labs-calendar: 
unknown substitution variable ${qmlc:Depends}
--

Checking against the logs from the Debian buildds showed that they were
also present there, so it wasn't just an artifact of my backporting.
What was strange about the messages was that the package in question
actually contains .qmlc files and correctly calls dh_qmlcdeps, so the
variables really should have been set.

Further investigation showed that there is a serious bug in dh_qmlcdeps
that makes it stop processing as soon as it encounters the first binary
package without any .qmlc files. Within the main loop over all packages,
right after the find, in line 79 there is a check if any $qt_version_bin
has been found while searching for .qmlc files, and it just exit()s when
there wasn't any:

--
$qt_version_bin or exit(0);
--

The attached patch fixes that by just continuing with the next loop
iteration instead of exiting.

What makes this bug important (I actually contemplated calling it
"serious") is that all binary packages built with the buggy dh_qmlcdeps
(the bug existed right from when it was introduced in version 0.15.26)
now potentially contain incorrect dependencies, and might have to be
rebuilt.

Affected packages should all have similar warnings to the above in their
respective build logs though, so there might be some way to check for
packages needing a rebuild. I don't know enough about the buildd
infrastructure, so I can't tell if there's a way to do what's
essentially a large-scale grep across all build logs.

Regards,
Andreas Ferber
>From c19dca9669ec21358793c38699be95cb528fe0a6 Mon Sep 17 00:00:00 2001
From: Andreas Ferber 
Date: Wed, 8 Aug 2018 20:44:44 +0200
Subject: [PATCH] dh_qmlcdeps: don't exit on first package without qmlc files.

---
 dh_qmlcdeps | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/dh_qmlcdeps b/dh_qmlcdeps
index 0b86df4..59b2de6 100755
--- a/dh_qmlcdeps
+++ b/dh_qmlcdeps
@@ -75,7 +75,7 @@ foreach my $package (@{$dh{DOPACKAGES}}) {
 }
 }, $tmpdir);
 
-$qt_version_bin or exit(0);
+$qt_version_bin or next;
 my @qt_version = unpack("C4", $qt_version_bin);
 my $qt_version_str = "$qt_version[2].$qt_version[1].$qt_version[0]";
 $qt_version[2] == 5 or error("Qt version $qt_version_str is not 
supported");
-- 
2.11.0

Bug#905044: clamav-daemon: Infinite loop at dpkg-reconfigure

[Santiago Ruano Rincón]

Control: tags -1 + patch
Control: found -1 0.100.0+dfsg-0+deb8u1

On Tue, 31 Jul 2018 00:19:39 +0200 =?UTF-8?Q?Christian_Schr=c3=b6tter?= 
 wrote:
> Package: clamav-daemon
> Version: 0.100.1+dfsg-1
> Severity: serious
> 
> Dear Maintainer,
> 
> there's an infinite loop at:
> 
> > dpkg-reconfigure clamav-daemon
> 
> Everything on default values I'm stuck at these two questions:
> 
> * ZIP files larger than this value […]: 1M
> * During the SelfCheck the daemon […]: 3600
> 
> They are displayed in an infinite loop. There's no way to finish all
> questions.

Hello,

The attached patch fixes the issue. I will upload a clamav package to
jessie including this.

Cheers,

S
From e91436719d438f3107a39e0d77553c2e7450b79b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Santiago=20Ruano=20Rinc=C3=B3n?= 
Date: Wed, 8 Aug 2018 20:10:35 +0200
Subject: [PATCH] debian/clamav-daemon.config.in: fix infinite loop after
 SelfCheck state
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Closes: #905044
Signed-off-by: Santiago Ruano Rincón 
---
 debian/clamav-daemon.config.in | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/debian/clamav-daemon.config.in b/debian/clamav-daemon.config.in
index 597cc84..60bef89 100644
--- a/debian/clamav-daemon.config.in
+++ b/debian/clamav-daemon.config.in
@@ -363,7 +363,7 @@ while [ "$STATE" != "End" ]; do
 StateGeneric low clamav-daemon/MaxZipTypeRcg SelfCheck MaxScriptNormalize
 ;;
 "SelfCheck")
-StateGeneric low clamav-daemon/SelfCheck MaxZipTypeRcg
+StateGeneric low clamav-daemon/SelfCheck User MaxZipTypeRcg
 ;;
 "User")
 StateUser
-- 
2.18.0



signature.asc
Description: PGP signature

Bug#905732: kernel-package: fails to create debian directory (/bin/sh: 1: [: -lt: unexpected operator)

[Claude Heiland-Allen]

With /bin/sh -> dash:

On 08/08/18 19:37, Claude Heiland-Allen wrote:

/bin/sh: 1: [: -lt: unexpected operator
/bin/sh: 1: [: -gt: unexpected operator
/bin/sh: 1: [: -lt: unexpected operator

With /bin/sh -> bash:

--8<--
/bin/sh: line 0: [: -lt: unary operator expected
/bin/sh: line 0: [: -gt: unary operator expected
/bin/sh: line 0: [: -lt: unary operator expected
--8<--

So it isn't a simple bashism.

Bug#905735: emacs-goodies-el: postinst failure due to missing lcomp.el

[Sebastian Luque]

Package: emacs-goodies-el
Version: 40.0
Severity: important

Dear Maintainer,

I just noticed emacs-goodies-el is now using the elpa-* suite of
packages.  However, the lcomp library is not yet part of that suite, and
has been removed from emacs-goodies-el, so it fails the postinst script
phase of the installation process.


-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (990, 'testing'), (300, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.16.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_CA:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages emacs-goodies-el depends on:
ii  bash   4.4.18-3.1
ii  dpkg   1.19.0.5+b1
ii  emacs  47.0
ii  emacs25 [emacsen]  25.2+1-6+b3
ii  emacsen-common 2.0.8
ii  install-info   6.5.0.dfsg.1-4

Versions of packages emacs-goodies-el recommends:
ii  elpa-apache-mode2.1+4.g97bf66c-2
ii  elpa-bar-cursor 2.0-1
pn  elpa-bm 
ii  elpa-boxquote   2.1-2
ii  elpa-browse-kill-ring   2.0.0-1
ii  elpa-csv-mode   1.7-1
ii  elpa-debian-el  37.5
ii  elpa-devscripts 40.1
ii  elpa-diminish   0.45-2
ii  elpa-dpkg-dev-el37.4
ii  elpa-eproject   1.5+git20180312.068218d-1
ii  elpa-graphviz-dot-mode  0.4+41+gc456a2b-1
ii  elpa-htmlize1.53-1
ii  elpa-initsplit  1.8+3+gc941d43-1
ii  elpa-markdown-mode  2.3+154-1
ii  elpa-pod-mode   1.03-1
ii  elpa-session2.4b-1
ii  elpa-tabbar 2.2-1
ii  perl-doc5.26.2-6
ii  wget1.19.5-1

emacs-goodies-el suggests no packages.

-- no debconf information

Bug#905734: Unable to backport package hplip on stretch : /usr/bin/ld: cannot find -lhpipp

[Nicolas DEFFAYET]

Package: hplip
Severity: normal

Unable to backport package hplip on stretch using newer version from
unstable or experimental: /usr/bin/ld: cannot find -lhpipp


hplip_3.17.10+repack0-5 from unstable:

libtool: relink: gcc -shared  -fPIC -DPIC  .libs/cupsext_la-
cupsext.o   -Wl,--as-needed -lcups -L/build/hplip-
3.17.10+repack0/debian/tmp/usr/lib/x86_64-linux-gnu -L/usr/lib/x86_64-
linux-gnu -lhpipp -lcrypto  -g -O2 -fstack-protector-strong -Wl,-z
-Wl,relro -Wl,-z -Wl,now   -Wl,-soname -Wl,cupsext.so -o
.libs/cupsext.so
/usr/bin/ld: cannot find -lhpipp
collect2: error: ld returned 1 exit status


hplip_3.18.6+dfsg0-1 from experimental:

 /bin/mkdir -p '/build/hplip-
3.18.6+dfsg0/debian/tmp/usr/share/hplip/prnt'
 /usr/bin/install -c -m 644 prnt/cups.py prnt/__init__.py prnt/ldl.py
prnt/pcl.py prnt/colorcal.py '/build/hplip-
3.18.6+dfsg0/debian/tmp/usr/share/hplip/prnt'
/usr/bin/ld: cannot find -lhpipp
collect2: error: ld returned 1 exit status



-- 
Nicolas DEFFAYET

Bug#905409: upgrade of util-linux and login break the xhost command for other users

[Chris Hofstaedtler]

* Helge Kreutzmann  [180808 18:57]:
> On Tue, Aug 07, 2018 at 08:20:23PM +0100, Simon McVittie wrote:
> > Andreas already asked for a merge request, so it seems that proposing a
> > patch would indeed be welcome.
> 
> I'll do, incorporating your excellent explaination. I'll do so until
> the end of the week (latest).

Gentle reminder about this.

Thanks,
Chris

Bug#902225: RFS: ii/1.8-1

[Axel Beckert]

Hi,

itd wrote:
> Yes. I'm currently using https://salsa.debian.org/itd-guest/ii.
> It has restricted ("internal") visibility, since it's not official. I
> couldn't find a previous repository. "gbp import-dscs --debsnap ii" was
> used to import previous package versions (IIRC).

That's a good method, thanks!

One thing which nobody seems to have noticed in this bug report yet:
Nico Golde has retired, see https://nm.debian.org/person/nion

So you should probably take over the package completely (i.e. list
yourself in the Maintainer field) instead of adding yourself to
Uploaders.

Regards, Axel
-- 
 ,''`.  |  Axel Beckert , https://people.debian.org/~abe/
: :' :  |  Debian Developer, ftp.ch.debian.org Admin
`. `'   |  4096R: 2517 B724 C5F6 CA99 5329  6E61 2FF9 CD59 6126 16B5
  `-|  1024D: F067 EA27 26B9 C3FC 1486  202E C09E 1D89 9593 0EDE


signature.asc
Description: Digital signature

Bug#905733: mariadb-10.3: CVE-2018-2767

[Salvatore Bonaccorso]

Source: mariadb-10.3
Version: 10.3.0-0+exp1
Severity: grave
Tags: security upstream fixed-upstream

Hi

As per http://www.openwall.com/lists/oss-security/2018/04/08/2,
MariaDB is similarly affected by CVE-2018-2767 . Upsream confirmed
that for MariaDB this means that if one connects to the remote server
using the embedded library (libmysqld), then SSL is not enforced.

Fixed as per upstream in
https://github.com/MariaDB/server/commit/f5369faf5bbf in 5.5.60,
10.0.35, 10.1.33, 10.2.15, and 10.3.7 .

Regards,
Salvatore

Bug#905732: kernel-package: fails to create debian directory (/bin/sh: 1: [: -lt: unexpected operator)

[Claude Heiland-Allen]

Package: kernel-package
Version: 13.018+nmu1
Severity: normal

Dear Maintainer,

   * What led up to the situation?

I tried to make-kpkg with the latest linux-4.18-rc8

   * What exactly did you do (or not do) that was effective (or
 ineffective)?

.../linux-4.18-rc8$ make-kpkg --rootcmd=fakeroot -j 32 --initrd kernel_image 
--verbose

   * What was the outcome of this action?

The build failed after a couple of seconds, with errors from /bin/sh along the 
way.

   * What outcome did you expect instead?

The .deb kernel package to have been built.

Full log:

8<
claude@eiskaffee:~/opt/src/linux/linux-4.18-rc8$ make-kpkg --rootcmd=fakeroot 
-j 32 --initrd kernel_image --verbose
exec make kpkg_version=13.018+nmu1 -f 
/usr/share/kernel-package/ruleset/minimal.mk debian V=1  INITRD=YES  
ROOT_CMD=fakeroot 
/bin/sh: 1: [: -lt: unexpected operator
/bin/sh: 1: [: -gt: unexpected operator
/bin/sh: 1: [: -lt: unexpected operator
== making target debian/stamp/conf/minimal_debian [new prereqs: ]==
This is kernel package version 13.018+nmu1.
test -d debian || mkdir debian
test ! -e stamp-building || rm -f stamp-building
install -p -m 755 /usr/share/kernel-package/rules debian/rules
for file in ChangeLog  Control  Control.bin86 config templates.in rules; do 
 \
cp -f  /usr/share/kernel-package/$file ./debian/;   
\
done
cp: cannot stat '/usr/share/kernel-package/ChangeLog': No such file or directory
for dir  in Config docs examples ruleset scripts pkg po;  do
  \
  cp -af /usr/share/kernel-package/$dir  ./debian/; 
\
done
test -f debian/control || sed -e 's/=V/../g'  \
-e 's/=D/..-10.00.Custom/g' -e 's/=A/amd64/g'  \
-e 's/=SA//g'  \
-e 's/=I//g'\
-e 's/=CV/./g'  \
-e 's/=M/Unknown Kernel Package Maintainer 
/g' \
-e 's/=ST/linux/g'  -e 's/=B/x86_64/g'\
-e 's/=R/initramfs-tools | linux-initramfs-tool,/g'
/usr/share/kernel-package/Control > debian/control
test -f debian/changelog ||  sed -e 's/=V/../g'   \
-e 's/=D/..-10.00.Custom/g'-e 's/=A/amd64/g'   \
-e 's/=ST/linux/g' -e 's/=B/x86_64/g' \
-e 's/=M/Unknown Kernel Package Maintainer 
/g'\
 /usr/share/kernel-package/changelog > debian/changelog
chmod 0644 debian/control debian/changelog
test -d ./debian/stamp || mkdir debian/stamp
make -f debian/rules debian/stamp/conf/kernel-conf
make[1]: Entering directory '/home/claude/opt/src/linux/linux-4.18-rc8'
dpkg-parsechangelog: warning: debian/changelog(l1): version 
'..-10.00.Custom' is invalid: version number does not start with digit
LINE: linux-source-.. (..-10.00.Custom) unstable; urgency=low
dpkg-parsechangelog: warning: debian/changelog(l1): version 
'..-10.00.Custom' is invalid: version number does not start with digit
LINE: linux-source-.. (..-10.00.Custom) unstable; urgency=low
dpkg-parsechangelog: warning: debian/changelog(l1): version 
'..-10.00.Custom' is invalid: version number does not start with digit
LINE: linux-source-.. (..-10.00.Custom) unstable; urgency=low
dpkg-parsechangelog: warning: debian/changelog(l1): version 
'..-10.00.Custom' is invalid: version number does not start with digit
LINE: linux-source-.. (..-10.00.Custom) unstable; urgency=low
dpkg-parsechangelog: warning: debian/changelog(l1): version 
'..-10.00.Custom' is invalid: version number does not start with digit
LINE: linux-source-.. (..-10.00.Custom) unstable; urgency=low
/bin/sh: 1: [: -lt: unexpected operator
/bin/sh: 1: [: -gt: unexpected operator
/bin/sh: 1: [: -lt: unexpected operator
/bin/sh: 1: [: -lt: unexpected operator
/bin/sh: 1: [: -eq: unexpected operator
/bin/sh: 1: [: -eq: unexpected operator
/bin/sh: 1: [: -lt: unexpected operator
/bin/sh: 1: [: -eq: unexpected operator
/bin/sh: 1: [: -eq: unexpected operator
/bin/sh: 1: [: -gt: unexpected operator
/bin/sh: 1: [: -ge: unexpected operator
/bin/sh: 1: [: -lt: unexpected operator
/bin/sh: 1: [: -eq: unexpected operator
/bin/sh: 1: [: -eq: unexpected operator
== making target debian/stamp/conf/kernel-conf [new prereqs: ]==
makeARCH=x86_64 \
oldconfig;
make[2]: Entering directory '/home/claude/opt/src/linux/linux-4.18-rc8'
make[2]: *** No rule to make target 'oldconfig'.  Stop.
make[2]: Leaving directory '/home/claude/opt/src/linux/linux-4.18-rc8'
make[1]: *** [debian/ruleset/targets/common.mk:199: 
debian/stamp/conf/kernel-conf] Error 2
make[1]: Leaving directory '/home/claude/opt/src/linux/linux-4.18-rc8'
make: *** [/usr/share/kernel-package/ruleset/minimal.mk:106: 
debian/stamp/conf/minimal_debian] Error 2
Failed to create a ./debian directory:  at /u

Bug#902225: RFS: ii/1.8-1

[itd]

Hi,

thanks for the review!

Niels Thykier:
> # The remark:
Oops! Fixed, thanks. (Updated Build-Dependency on debhelper.)

>  * Relicense the patches to the same as upstream (requires approval from
>the previous maintainer).  We already spoke about this on IRC.
Previous maintainer approves (see #902225 message #23). (@Nico: Thanks!)
(Updated d/copyright.)

>  * Set [Rules-Requires-Root] to "no" as the source package does not need
>(fake)root to build the .debs.  It is a one-line change to the
>debian/control file.
Done.

>(see attached debdiff)
Thanks! :)

>  * Use debhelper's dh_auto_* tools instead of calling $(MAKE) to support
>cross-building.  Literally no additional changes will be required
> [...]
>  * Consider rewriting debian/rules into a "dh7" style rules file.
Done. (By rewriting d/rules.)

>  * Have you considered setting up a git repository for the packaging on
>salsa.debian.org?
Yes. I'm currently using https://salsa.debian.org/itd-guest/ii.
It has restricted ("internal") visibility, since it's not official. I
couldn't find a previous repository. "gbp import-dscs --debsnap ii" was
used to import previous package versions (IIRC).

# Other changes
* use libbsd-dev to provide strlcpy(3) and exclude "strlcpy.c"
* apply upstream patch that adds additional user input validation

Thanks again!

Regards,
itd
--
$ head -n 17 debian/changelog
ii (1.8-1) unstable; urgency=medium

  * New upstream release (Closes: #890995).
  * Fix watchfile (upstream URL changed).
  * Bump compat level to 11 and debhelper dependency (>= 11.3.2~).
  * Bump standards version to 4.2.0.
  * Update patch respect_dpkg_buildflags.patch.
  * Update hardening option (requires dpkg-dev >= 1.16.1.1).
  * Switch to machine-readable copyright file.
  * Trivial autopkgtest smoke-test.
  * Switch to HTTPS upstream links.
  * Add myself to Uploaders.
  * Switch to "dh7" style rules file.
  * Set 'Rules-Requires-Root: no'.
  * Use libbsd-dev's strlcpy(3).

 -- itd   Sat, 23 Jun 2018 10:49:42 +0200



signature.asc
Description: OpenPGP digital signature

Bug#905731: cinnamon: Localisation seems to be broken in cinnamon 3.8.8 (sid)

[Lennart Nachtigall]

Package: cinnamon
Version: 3.8.8-1
Severity: important
Tags: l10n

Dear Maintainer,

I decided to upgrade my cinnamon packages to version 3.8.8 from sid.
Apparently the localisation isn't working properly. I'm running a system with
german localisation. Cinnamon was on german before upgrading. My LANG and
GDM_LANG variables are both set to german:
LANG=de_DE.UTF-8
GDM_LANG=de_DE.utf8

Greetings



-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.17.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), 
LANGUAGE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages cinnamon depends on:
ii  cinnamon-common  3.8.8-1
ii  cinnamon-control-center  3.8.1-1
ii  cinnamon-desktop-data3.8.1-2
ii  cinnamon-screensaver 3.8.2-1
ii  cinnamon-session 3.8.2-1
ii  cinnamon-settings-daemon 3.8.4-1
ii  cjs  3.8.0-4
ii  cups-pk-helper   0.2.6-1+b1
ii  dconf-gsettings-backend [gsettings-backend]  0.28.0-2
ii  gir1.2-accountsservice-1.0   0.6.45-1
ii  gir1.2-caribou-1.0   0.4.21-5
ii  gir1.2-clutter-1.0   1.26.2+dfsg-4
ii  gir1.2-cmenu-3.0 3.8.2-1
ii  gir1.2-cogl-1.0  1.22.2-3
ii  gir1.2-cvc-1.0   3.8.1-2
ii  gir1.2-gdkpixbuf-2.0 2.36.12-1
ii  gir1.2-gkbd-3.0  3.26.0-3
ii  gir1.2-glib-2.0  1.56.1-1
ii  gir1.2-gnomedesktop-3.0  3.28.2-2
ii  gir1.2-gtk-3.0   3.22.30-2
ii  gir1.2-gtkclutter-1.01.8.4-3
ii  gir1.2-keybinder-3.0 0.3.2-1
ii  gir1.2-meta-muffin-0.0   3.8.2-1
ii  gir1.2-nm-1.01.12.2-1
ii  gir1.2-nma-1.0   1.8.14-1
ii  gir1.2-notify-0.70.7.7-3
ii  gir1.2-pango-1.0 1.42.1-2
ii  gir1.2-polkit-1.00.105-21
ii  gir1.2-soup-2.4  2.62.2-2
ii  gir1.2-upowerglib-1.00.99.8-2
ii  gir1.2-xapp-1.0  1.2.2-1
ii  gkbd-capplet 3.26.0-3
ii  gnome-backgrounds3.28.0-1
ii  gnome-themes-extra   3.28-1
ii  gnome-themes-standard3.28-1
ii  gsettings-desktop-schemas3.28.0-1
ii  iso-flags-png-320x2401.0.2-1
ii  libatk-bridge2.0-0   2.26.2-1
ii  libatk1.0-0  2.28.1-1
ii  libc62.27-5
ii  libcairo21.15.10-3
ii  libcinnamon-desktop4 3.8.1-2
ii  libcinnamon-menu-3-0 3.8.2-1
ii  libcjs0  3.8.0-4
ii  libclutter-1.0-0 1.26.2+dfsg-4
ii  libcogl-pango20  1.22.2-3
ii  libcogl-path20   1.22.2-3
ii  libcogl201.22.2-3
ii  libcroco30.6.12-2
ii  libgdk-pixbuf2.0-0   2.36.12-1
ii  libgirepository-1.0-11.56.1-1
ii  libgl1   1.0.0+git20180308-3
ii  libglib2.0-0 2.56.1-2
ii  libglib2.0-bin   2.56.1-2
ii  libgstreamer1.0-01.14.2-2
ii  libgtk-3-0   3.22.30-2
ii  libmuffin0   3.8.2-1
ii  libpango-1.0-0   1.42.1-2
ii  libpangocairo-1.0-0  1.42.1-2
ii  libstartup-notification0 0.12-5
ii  libx11-6 2:1.6.5-1
ii  libxfixes3   1:5.0.3-1
ii  libxml2  2.9.4+dfsg1-7+b1
ii  mesa-utils   8.4.0-1
ii  muffin   3.8.2-1
ii  nemo 3.8.5-1
ii  network-manager-gnome1.8.14-1
ii  policykit-1-gnome0.105-7
ii  python3  3.6.5-3
ii  python3-dbus 1.2.8-2+b1
ii  python3-gi   3.28.2-1+b1
ii  python3-gi-ca

Bug#900784: quilt threading broken

[Steven Rostedt]

I hit this bug too. It appears that a fix is upstream, and has been
there for over a year! Can we please fix this in Debian testing?

 See 
http://git.savannah.nongnu.org/cgit/quilt.git/commit/?id=360b85e1f6b6d1aff5ada942fcee816e1ad7a13c

-- Steve

Bug#905685: intel-microcode: options to install all microcode and multiple specific microcode into the initramfs

[Henrique de Moraes Holschuh]

Hello Paul,

On Wed, 08 Aug 2018, Paul Wise wrote:
> installed on those systems. When I switch to a new computer the old
> microcode version is still in the initramfs and so needrestart
> complains that the wrong microcode is loaded. I have to reconfigure
> intel-microcode and reboot to get the right microcode loaded at boot
> time. It would be nice to have support for installing microcode for
> all CPUs and for multiple specific CPUs into the initramfs and having
> the initramfs load the correct one at boot.

Please check if the controls already available in
/etc/default/intel-microcode are sufficient to address this issue.

After you change them, you need to regenerate the initramfs.

If they're not sufficient, please describe what you'd like
changed/implemented, and I will see what I can do about it...

-- 
  Henrique Holschuh

Bug#897813: mosh: diff for NMU version 1.3.2-2.1

[Adrian Bunk]

Control: tags 897813 + patch
Control: tags 897813 + pending

Dear maintainer,

I've prepared an NMU for mosh (versioned as 1.3.2-2.1) and uploaded
it to DELAYED/14. Please feel free to tell me if I should cancel it.

cu
Adrian

-- 

   "Is there not promise of rain?" Ling Tan asked suddenly out
of the darkness. There had been need of rain for many days.
   "Only a promise," Lao Er said.
   Pearl S. Buck - Dragon Seed

diff -Nru mosh-1.3.2/debian/changelog mosh-1.3.2/debian/changelog
--- mosh-1.3.2/debian/changelog	2017-08-25 01:04:25.0 +0300
+++ mosh-1.3.2/debian/changelog	2018-08-08 20:45:44.0 +0300
@@ -1,3 +1,11 @@
+mosh (1.3.2-2.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * Add upstream fix for FTBFS with gcc 8, thanks to Reiner Herrmann.
+(Closes: #897813)
+
+ -- Adrian Bunk   Wed, 08 Aug 2018 20:45:44 +0300
+
 mosh (1.3.2-2) unstable; urgency=medium
 
   * Fix "mosh FTBFS with gcc 7" 
diff -Nru mosh-1.3.2/debian/patches/0001-Fix-gcc8-snprintf-truncation-warning.patch mosh-1.3.2/debian/patches/0001-Fix-gcc8-snprintf-truncation-warning.patch
--- mosh-1.3.2/debian/patches/0001-Fix-gcc8-snprintf-truncation-warning.patch	1970-01-01 02:00:00.0 +0200
+++ mosh-1.3.2/debian/patches/0001-Fix-gcc8-snprintf-truncation-warning.patch	2018-08-08 20:45:44.0 +0300
@@ -0,0 +1,24 @@
+From 2a5b5410b2a96d656544803809de109f474901f2 Mon Sep 17 00:00:00 2001
+From: John Hood 
+Date: Wed, 11 Apr 2018 18:10:59 -0400
+Subject: Fix gcc8 snprintf truncation warning.
+
+---
+ src/frontend/mosh-server.cc | 4 ++--
+ 1 file changed, 2 insertions(+), 2 deletions(-)
+
+diff --git a/src/frontend/mosh-server.cc b/src/frontend/mosh-server.cc
+index 7918c74..567252f 100644
+--- a/src/frontend/mosh-server.cc
 b/src/frontend/mosh-server.cc
+@@ -764,8 +764,8 @@ static void serve( int host_fd, Terminal
+ 	  throw NetworkException( std::string( "serve: getnameinfo: " ) + gai_strerror( errcode ), 0 );
+ 	}
+ 
+-	char tmp[ 64 ];
+-	snprintf( tmp, 64, "%s via mosh [%d]", host, getpid() );
++	char tmp[ 64 + NI_MAXHOST ];
++	snprintf( tmp, 64 + NI_MAXHOST, "%s via mosh [%d]", host, getpid() );
+ 	utempter_add_record( host_fd, tmp );
+ 
+ 	connected_utmp = true;
diff -Nru mosh-1.3.2/debian/patches/series mosh-1.3.2/debian/patches/series
--- mosh-1.3.2/debian/patches/series	2017-08-25 01:04:25.0 +0300
+++ mosh-1.3.2/debian/patches/series	2018-08-08 20:45:44.0 +0300
@@ -1 +1,2 @@
 0001-Fix-Debian-GCC7-FTBFS-remove-default-constructors.patch
+0001-Fix-gcc8-snprintf-truncation-warning.patch

Bug#885029: xrdp: thinclient_drives not umounted after session terminated

[Thorsten Glaser]

Apparently, other users are also running into this problem:

   The systemd timesync problem appears to be because there are
   lingering dead xrdp-chansrv FUSE mounts in /proc/mounts, which
   causes […]

From https://mobile.twitter.com/thatcks/status/1027175746735927306 via
https://utcc.utoronto.ca/~cks/space/blog/linux/SystemdTimesyncdFailure

bye,
//mirabilos
-- 
Stéphane, I actually don’t block Googlemail, they’re just too utterly
stupid to successfully deliver to me (or anyone else using Greylisting
and not whitelisting their ranges). Same for a few other providers such
as Hotmail. Some spammers (Yahoo) I do block.

Bug#905730: jmeters FTCBFS: hard codes the build architecture compiler g++

[Helmut Grohne]

Source: jmeters
Version: 0.4.1-4
Tags: patch upstream
User: helm...@debian.org
Usertags: rebootstrap

jmeters fails to cross build from source, because the upstream Makefile
hard codes the build architecture compiler in one place. After making it
substitutable, jmeters cross builds successfully. Please consider
applying the attached patch.

Helmut
--- jmeters-0.4.1.orig/source/Makefile
+++ jmeters-0.4.1/source/Makefile
@@ -41,7 +41,7 @@
 jmeters:	LDLIBS += -lsndfile -lclxclient -lclthreads -ljack -lpthread -lcairo -lpng -lXft -lX11 -lrt
 jmeters:	LDFLAGS += -L/usr/X11R6/lib
 jmeters:	$(JMETERS_O)
-	g++ $(LDFLAGS) -o $@ $(JMETERS_O) $(LDLIBS)
+	$(CXX) $(LDFLAGS) -o $@ $(JMETERS_O) $(LDLIBS)
 
 $(JMETERS_O):
 -include $(JMETERS_O:%.o=%.d)

Bug#905729: laptop-mode-tools causes `sda` disk to stop indefinitely when disconnect AC power.

[Felipe Sologuren Gutiérrez]

Package: laptop-mode-tools
Version: 1.72-2
Severity: critical
Justification: breaks the whole system

Dear Maintainer,

* What led up to the situation?
   Installing kernel 4.17.
* What exactly did you do (or not do) that was effective (or ineffective)?
   Configured laptop-mode-tools to package defaults. But didn't work.
* What was the outcome of this action?
   The disk stopped again after unplugged the AC power.
* What outcome did you expect instead?
   I expected that the battery mode on laptop changed to power saving, but 
working done.

I read bug #889544 and my problem is the same except my disk never leave the 
stopped status, exactly as Jean-Marie reported.
After that, I observed the same issues, the whole system starts to fail to 
write down to the disk reporting that it's damaged, and the last entry that 
persist at syslog is that `sda` stopped.
My problem started when I installed kernel 4.17 and is not happening with 
kernel 4.16.
My hardware is Asus n46vj, disk drive:
ata1.00: ATA-10: Crucial_CT1050MX300SSD1,  M0CR040, max UDMA/133
BIOS has enabled AHCI.

Thank you.

-- System Information:
Debian Release: buster/sid
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.17.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=es_CL.UTF-8, LC_CTYPE=es_CL.UTF-8 (charmap=UTF-8) (ignored: LC_ALL 
set to es_CL.UTF-8), LANGUAGE=es_CL.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set 
to es_CL.UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages laptop-mode-tools depends on:
ii  lsb-base9.20170808
ii  psmisc  23.1-1+b1
ii  util-linux  2.32-0.4

Versions of packages laptop-mode-tools recommends:
ii  ethtool 1:4.16-1
ii  hdparm  9.56+ds-2
ii  net-tools   1.60+git20161116.90da8a0-3
ii  python3-pyqt5   5.11.2+dfsg-1
ii  rfkill  2.32-0.4
ii  sdparm  1.08-1+b1
ii  udev239-7
ii  wireless-tools  30~pre9-12+b1

Versions of packages laptop-mode-tools suggests:
ii  acpid  1:2.0.28-1+b1

-- Configuration Files:
/etc/laptop-mode/conf.d/usb-autosuspend.conf [Errno 2] No existe el fichero o 
el directorio: '/etc/laptop-mode/conf.d/usb-autosuspend.conf'

-- no debconf information

Bug#855533: mate-dock-applet completely unusable

[Rock Storm]

Control: severity -1 grave

I'm raising the severity of this bug because it is currently unusable.
As explained by Laszlo, nothing happens when adding the dock to a panel.
However:

 * Downgrading to version 0.75-1 works perfect.

 * As suggested by Jorge, somehow, installing firewall-applet makes it
   work. Though, it looks weird. It definitely looks better on version
   0.75-1.

Please let me know if I can provide you with any other information in
order to debug this. Below are the two configurations I've tried.

==
== Working Setup ==
==
Package: mate-dock-applet
Version: 0.75-1

Versions of packages mate-dock-applet depends on:
ii  dconf-gsettings-backend [gsettings-backend]  0.28.0-2
ii  gir1.2-gdkpixbuf-2.0 2.36.12-1
ii  gir1.2-glib-2.0  1.56.1-1
ii  gir1.2-gtk-3.0   3.22.30-2
ii  gir1.2-mate-panel1.20.2-1
ii  gir1.2-wnck-3.0  3.24.1-2
ii  libglib2.0-bin   2.56.1-2
ii  mate-panel   1.20.2-1
ii  python3  3.6.6-1
ii  python3-gi-cairo 3.28.2-1+b1
ii  python3-pil  5.2.0-2
ii  python3-xdg  0.25-4

mate-dock-applet recommends no packages.

mate-dock-applet suggests no packages.

-- no debconf information

==
== Non-Working Setup ==
==
Package: mate-dock-applet
Version: 0.86-1

Versions of packages mate-dock-applet depends on:
ii  bamfdaemon   0.5.3-3
ii  dconf-gsettings-backend [gsettings-backend]  0.28.0-2
ii  gir1.2-bamf-30.5.3-3
ii  gir1.2-gdkpixbuf-2.0 2.36.12-1
ii  gir1.2-glib-2.0  1.56.1-1
ii  gir1.2-gtk-3.0   3.22.30-2
ii  gir1.2-mate-panel1.20.2-1
ii  gir1.2-wnck-3.0  3.24.1-2
ii  libglib2.0-bin   2.56.1-2
ii  mate-panel   1.20.2-1
ii  python3  3.6.6-1
ii  python3-gi-cairo 3.28.2-1+b1
ii  python3-pil  5.2.0-2
ii  python3-xdg  0.25-4
ii  python3-xlib 0.23-2

mate-dock-applet recommends no packages.

mate-dock-applet suggests no packages.

-- no debconf information

==

-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.17.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_GB:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Thanks,

-- 
Rock Storm
GPG KeyID: 4096R/C96832FD
GPG Fingerprint:
 C304 34B3 632C 464C 2FAF  C741 0439 CF52 C968 32FD

Bug#905728: Gtk-WARNINGs: is drawn without a current allocation. This should not happen.

[積丹尼 Dan Jacobson]

Package: emacs-gtk
Version: 1:25.2+1-9

Gtk-WARNINGs:
EmacsFixed 0xb1c130 is drawn without a current allocation. This should not 
happen.
GtkEventBox 0xb1c580 is drawn without a current allocation. This should not 
happen.
GtkEventBox 0xb1c6f0 is drawn without a current allocation. This should not 
happen.
GtkScrollbar 0x1a6a440 is drawn without a current allocation. This should not 
happen.
GtkScrollbar 0x1a6a640 is drawn without a current allocation. This should not 
happen.
GtkWindow 0xb162a0 is drawn without a current allocation. This should not 
happen.

Bug#849308:

[Jonathan Wiltshire]

Hi,

On Tue, Jun 19, 2018 at 06:26:17PM +0200, Jason A. Donenfeld wrote:
> The idea is to ship WireGuard in stable-backports
> and in unstable, but not let this migrate to testing.

That would, on the face of it, violate the inclusion criteria for backports
and require an exception from the Backports Team [1].

1: https://backports.debian.org/Contribute/

-- 
Jonathan Wiltshire  j...@debian.org
Debian Developer http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51

Bug#905727: bcache-tools FTCBFS: hard codes the build architecture pkg-config

[Helmut Grohne]

Source: bcache-tools
Version: 1.0.8-3
Tags: patch upstream
User: helm...@debian.org
Usertags: rebootstrap

bcache-tools fails to cross build from source, because the upstream hard
codes the build architecture pkg-config and thus fails finding host
architecture .pc files. After making pkg-config substitutable,
bcache-tools cross builds successfully. Please consider applying the
attached patch.

Helmut
--- bcache-tools-1.0.8.orig/Makefile
+++ bcache-tools-1.0.8/Makefile
@@ -4,6 +4,7 @@
 DRACUTLIBDIR=/lib/dracut
 INSTALL=install
 CFLAGS+=-O2 -Wall -g
+PKG_CONFIG ?= pkg-config
 
 all: make-bcache probe-bcache bcache-super-show bcache-register
 
@@ -20,13 +21,13 @@
 clean:
 	$(RM) -f make-bcache probe-bcache bcache-super-show bcache-test bcache-register -- *.o
 
-bcache-test: LDLIBS += `pkg-config --libs openssl` -lm
-make-bcache: LDLIBS += `pkg-config --libs uuid blkid`
-make-bcache: CFLAGS += `pkg-config --cflags uuid blkid`
+bcache-test: LDLIBS += `$(PKG_CONFIG) --libs openssl` -lm
+make-bcache: LDLIBS += `$(PKG_CONFIG) --libs uuid blkid`
+make-bcache: CFLAGS += `$(PKG_CONFIG) --cflags uuid blkid`
 make-bcache: bcache.o
-probe-bcache: LDLIBS += `pkg-config --libs uuid blkid`
-probe-bcache: CFLAGS += `pkg-config --cflags uuid blkid`
-bcache-super-show: LDLIBS += `pkg-config --libs uuid`
+probe-bcache: LDLIBS += `$(PKG_CONFIG) --libs uuid blkid`
+probe-bcache: CFLAGS += `$(PKG_CONFIG) --cflags uuid blkid`
+bcache-super-show: LDLIBS += `$(PKG_CONFIG) --libs uuid`
 bcache-super-show: CFLAGS += -std=gnu99
 bcache-super-show: bcache.o
 bcache-register: bcache-register.o

Bug#905704: astroquery: autopkgtest regression

[Vincent Prat]

Hi,

I have already fixed the problem.
When the new version is successfully tested, I will close the bug.

Best regards,

Vincent

Bug#905726: postfixadmin: sqlite recommends should likely be sqlite3

[Adrian Bunk]

Package: postfixadmin
Version: 3.0.2-2
Severity: important

Recommends: ..., virtual-mysql-server | postgresql | sqlite (>= 3.12.0), ...

There never was and never will be a version >= 3.12.0
of the old SQLite 2 package.

After seeing the alternative dependency on php-sqlite3
I am pretty convinced that this should be sqlite3.

Bug#873327: aegisub FTBFS with luajit 2.1

[Gunnar Wolf]

I have applied the patch mentioned above¹ to the aegisub packaging,
and fixed *this portion of* the FTBFS. Unfortunately, aegisub still
fails to build - From my build log:

g++ -MMD -MP -Wdate-time -D_FORTIFY_SOURCE=2 
-I/home/gwolf/vcs/build-area/aegisub-3.2.2+dfsg/src/ -I.. 
-I/home/gwolf/vcs/build-area/aegisub-3.2.2+dfsg/src/include 
-I/home/gwolf/vcs/build-area/aegisub-3.2.2+dfsg/libaegisub/include 
-I/home/gwolf/vcs/build-area/aegisub-3.2.2+dfsg/build -pthread   -g -O2 
-fdebug-prefix-map=/home/gwolf/vcs/build-area/aegisub-3.2.2+dfsg=. 
-fstack-protector-strong -Wformat -Werror=format-security -Wall -Wextra 
-Wno-unused-parameter -fno-strict-aliasing -pipe -g -std=c++11 
-Wno-c++11-narrowing -Wno-unused-local-typedefs -O3 
-I/usr/lib/x86_64-linux-gnu/wx/include/gtk2-unicode-3.0 -I/usr/include/wx-3.0 
-D_FILE_OFFSET_BITS=64 -DWXUSINGDLL -D__WXGTK__ -pthread -include 
/home/gwolf/vcs/build-area/aegisub-3.2.2+dfsg/src/agi_pre.h   -c -o 
/home/gwolf/vcs/build-area/aegisub-3.2.2+dfsg/src/utils.o 
/home/gwolf/vcs/build-area/aegisub-3.2.2+dfsg/src/utils.cpp
/home/gwolf/vcs/build-area/aegisub-3.2.2+dfsg/src/utils.cpp: In function 
‘wxString LocalizedLanguageName(const wxString&)’:
/home/gwolf/vcs/build-area/aegisub-3.2.2+dfsg/src/utils.cpp:269:17: error: 
aggregate ‘icu_60::UnicodeString ustr’ has incomplete type and cannot be defined
   UnicodeString ustr;
 ^~~~
At global scope:
cc1plus: warning: unrecognized command line option ‘-Wno-c++11-narrowing’
make[1]: *** [Makefile.target:100: 
/home/gwolf/vcs/build-area/aegisub-3.2.2+dfsg/src/utils.o] Error 1
make[1]: Leaving directory '/home/gwolf/vcs/build-area/aegisub-3.2.2+dfsg'
dh_auto_build: make -j1 returned exit code 2
make: *** [debian/rules:8: binary] Error 2

Please do note I am not applying the smaller patch² suggested by Paul
as it would require pulling in the git master - which has advanced
quite a bit from this version, and far exceeds what I'd be comfortable
in doing in a NMU.

--
¹ 
https://build.opensuse.org/package/view_file/multimedia:apps/aegisub/luabins.patch?expand=1
² https://github.com/Aegisub/Aegisub/pull/48


signature.asc
Description: PGP signature

Bug#905725: opensaml2: End of life warning

[Xavier Guimard]

Package: opensaml2
Version: 3.0.0-1
Severity: normal

Hello,

according to
https://wiki.shibboleth.net/confluence/display/OpenSAML/Home, OpenSAML2
has reached its End of Life and is no longer supported.

I'm opening this bug to warn if you've not seen this. Close it if you
already know this information (and excuse me for this convenience in this
case).

Cheers,
Xavier

-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (900, 'testing'), (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.17.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8), LANGUAGE= 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Bug#905724: ITP: python-os-faults -- OpenStack fault-injection library

[Thomas Goirand]

Package: wnpp
Severity: wishlist
Owner: Thomas Goirand 

* Package name: python-os-faults
  Version : 0.1.17
  Upstream Author : OpenStack Foundation 
* URL : https://github.com/openstack/os-faults
* License : Apache-2.0
  Programming Lang: Python
  Description : OpenStack fault-injection library

 The library does destructive actions inside an OpenStack cloud. It provides an
 abstraction layer over different types of cloud deployments. The actions are
 implemented as drivers (e.g. DevStack driver, Fuel driver, Libvirt driver,
 IPMI driver).

Note: This is a new dependency of Rally.

Bug#732796: Please remove the link from open to openvt

[Andreas Henriksson]

Hello again Vita,

On Thu, Jun 14, 2018 at 04:33:11PM +0200, Vitezslav Crhonek wrote:
> On 05/28/2018 10:05 PM, Andreas Henriksson wrote:
> > Hello Vitezslav Crhonek,
[...]
> 
> Hello Andreas,
> 
> Sorry for late response.
> 
> I have no objections against dropping it and I'm willing to do it
> in Fedora Rawhide.

Sorry for my late followup. I've gone ahead and dropped the open
symlink in debian now and the new package version[1] of kbd[2] is already
migrated to testing/buster[3]. This change will thus be part of the
upcoming Buster release of debian. Would be happy if you also went
ahead and dropped it on the Fedora side so we do this change
at roughly the same time. If you have contacts at some other
distribution which also carries the symlink, please do ask them to also
drop it.

Regards,
Andreas Henriksson

[1]: 
https://tracker.debian.org/news/976168/accepted-kbd-204-4-source-into-unstable/
[2]: https://tracker.debian.org/kbd
[3]: https://tracker.debian.org/news/977473/kbd-204-4-migrated-to-testing/

Bug#905723: ITP: shoelaces -- lightweight tool for server bootstrapping

[Raúl Benencia]

Package: wnpp
Severity: wishlist
Owner: Raúl Benencia 

* Package name: shoelaces
  Version : 1.0.0
  Upstream Author : Raúl Benencia 
* URL : https://github.com/thousandeyes/shoelaces
* License : Apache
  Programming Lang: Go
  Description : lightweight tool for automated server bootstrapping

 Shoelaces provides a mechanisms for automating the bootstrapping of servers. It
 serves iPXE boot scripts, cloud-init configuration, and actually any kind of
 plain text.

 Among its main features we can find that:
   - it allows automating the boot script to serve for a given server based
 on its IP address or DNS PTR record.
   - it has a web UI to show the current configurations, and history of
 servers that booted.
   - it uses the Go template language to serve the configurations, allowing
 to customize them with parameters received via GET request.

I am upstream for this tool and plan to be the main maintainer of the package.
The Debian Go Packaging Team will be set as Uploader.

Bug#848041: this still exists as of 2018-08-08

[Mason Loring Bliss]

To confirm the original poster's observations, this still exists as of August
2018. Removing libjson-xs-perl causes libcpanel-json-xs-perl to be installed
instead, and per https://rt.cpan.org/Public/Bug/Display.html?id=94784 and
discussion in 
https://forum.bestpractical.com/t/perl-upgrade-on-debian-9-causes-json-error/31524/5
this works.

It would be nice if this weren't broken out of the box. Making this package
substitution would do the trick.

Thank you.

-- 
The creatures outside looked from pig to man, and from man to pig, and from pig
to man again; but already it was impossible to say which was which. - G. Orwell


signature.asc
Description: PGP signature

Bug#903436:

[J. Smith]

reassign 903436 wnpp
stop

It's bad practice to bundle add-ons into the actual Emacs package, so this is 
better interpreted as a request for a new standalone tramp package. Personally 
I think this is extremely low priority, since the Tramp maintainer very 
actively syncs the latest Tramp release into upstream Emacs.

Bug#905722: gcovr: Missing runtime dependency - python-pkg-resources

[Bodo-Merle Sandor]

Package: gcovr
Version: 4.1-1
Severity: normal

Dear Maintainer,

Starting gcovr results in the following error:

# gcovr
Traceback (most recent call last):
  File "/usr/bin/gcovr", line 6, in 
from pkg_resources import load_entry_point
ImportError: No module named pkg_resources

-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.17.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968), LANGUAGE=C 
(charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /usr/bin/dash
Init: unable to detect

Versions of packages gcovr depends on:
ii  python   2.7.15-3
ii  python3  3.6.5-3

gcovr recommends no packages.

gcovr suggests no packages.

-- no debconf information

Bug#823307: libgstreamer1.0-dev is not Multi-Arch compatible

[Sebastian Dröge]

On Wed, 2018-08-08 at 12:30 +, Hugh McMaster wrote:
> On Monday, 30 July 2018 016:33:39 +1000, Sebastian Dröge wrote:
> > Which files are conflicting between the x86 and x86-64 version of the
> > package?
> 
> There is only file conflict: in the binary gst-codec-info-1.0.
> 
> As this is a compiled binary, it is not so easy to fix. But I need to look
> at the sources to understand if it has an architecture-indepenent
> interface and/or output.

It's not unfortunately, it needs to be able to load .so files for that
target build architecture during the build of packages.

How is this solved in other such cases?


signature.asc
Description: This is a digitally signed message part

Bug#903898: Acknowledgement (thunderbird: missing AppArmor entries)

[Nuno Oliveira]

* Carsten Schoenert  [2018-08-08 15:45]:

Hello Vincas,

On Wed, Aug 08, 2018 at 05:34:01PM +0300, Vincas Dargis wrote:

On Mon, 16 Jul 2018 16:03:01 +0100 Nuno Oliveira  wrote:
> Hi Vincas, Carsten,
>
> While you are at it, you might as well consider this extra line which
> appeared latter:
>
> /var/lib/xine/gxine.desktop r,

Nuno, could you give me a hint on how to reproduce this? I can't even find
package that would ship gxine.desktop:

$ apt-file search /var/lib/xine/gxine.desktop


I use mostly packages.d.o to search for specif files.

In this case this file comes from the package gxine.

https://packages.debian.org/search?searchon=contents&keywords=gxine.desktop&mode=exactfilename&suite=unstable&arch=any

Regards
Carsten


Hi Vincas,

Carsten is probably right. I can't find it's origin from the installed 
packages:


user@host:~$ ll /var/lib/xine/gxine.desktop
-rw-r--r-- 1 root root 2126 jan  5  2018 /var/lib/xine/gxine.desktop
user@host:~$ dpkg -S /var/lib/xine/gxine.desktop
dpkg-query: não foi encontrado caminho coincidindo com o padrão 
/var/lib/xine/gxine.desktop
user@host:~$ apt-cache policy gxine
gxine:
 Instalado: 0.5.910-2
 Candidato: 0.5.910-2
 Tabela de Versão:
*** 0.5.910-2 100
   100 /var/lib/dpkg/status
0.5.908-3.1+b1 600
   600 https:///debian stable/main amd64 Packages

I've removed it now, since it looks as old cruft.

Thanks,

Nuno.

Bug#905721: A2DP sink not available

[Ari Pollak]

Package: pulseaudio-module-bluetooth
Version: 12.0-1
Severity: normal

I have Bluetooth headphones that have both HSP/HFP and A2DP profiles,
and both of them used to work, but now only the HSP/HFP profile works
and A2DP is unavailable. No other pulseaudio daemon is running.

% pactl set-card-profile bluez_card.57_D3_98_0A_8A_DE a2dp_sink
Failure: Input/Output error

% pacmd list-cards
...
index: 4
name: 
driver: 
owner module: 28
properties:
device.description = "MDR-10RBT"
device.string = "57:D3:98:0A:8A:DE"
device.api =
"bluez"

device.class = "sound"
device.bus = "bluetooth"
device.form_factor = "headset"
bluez.path = "/org/bluez/hci0/dev_57_D3_98_0A_8A_DE"
bluez.class = "0x240404"
bluez.alias = "MDR-10RBT"
device.icon_name =
"audio-headset-bluetooth"

device.intended_roles = "phone"
profiles:
headset_head_unit: Headset Head Unit (HSP/HFP) (priority
30, available:
yes)
a2dp_sink: High Fidelity Playback (A2DP Sink) (priority 40,
available:
no)
off: Off (priority 0, available: yes)
active profile:


sinks:
bluez_sink.57_D3_98_0A_8A_DE.headset_head_unit/#5: MDR-10RBT
sources:
bluez_sink.57_D3_98_0A_8A_DE.headset_head_unit.monitor/#8:
Monitor of
MDR-10RBT
bluez_source.57_D3_98_0A_8A_DE.headset_head_unit/#9:
MDR-10RBT
ports:
headset-output: Headset (priority 0, latency offset 0 usec,
available:
yes)
properties:

headset-input: Headset (priority 0, latency offset 0 usec,
available:
yes)
properties:


-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable-debug'), (500,
'testing-debug'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.17.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8),
LANGUAGE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages pulseaudio-module-bluetooth depends on:
ii  bluez5.50-1
ii  libc62.27-5
ii  libcap2  1:2.25-1.2
ii  libdbus-1-3  1.12.10-1
ii  libpulse012.0-1
ii  libsbc1  1.3-3
ii  pulseaudio   12.0-1

pulseaudio-module-bluetooth recommends no packages.

pulseaudio-module-bluetooth suggests no packages.

-- no debconf information

Bug#905720: acme-tiny: Please follow upstream versioning instead of date-based versions

[Axel Beckert]

Package: acme-tiny
Severity: wishlist
Version: 20160801-3

Dear acme-tiny package Maintainers,

looking at https://packages.qa.debian.org/a/acme-tiny.html and
https://github.com/diafygi/acme-tiny/releases it is obvious that Debian
does not follow upstream version numbers (which look like semantic
versioning, which is good!) but uses its own date-based kind of
"upstream versions". This discrepancy is confusing.

So please switch to using upstream's version numbers for the upstream
version of acme-tiny's Debian packages. That way it's clear which Debian
package relates to which upstream release and Debian users would profit
from the semantic versioning.

-- System Information:
Debian Release: 9.5
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable-debug'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-6-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Bug#905719: mdk3 FTCBFS: second build with the wrong compiler

[Helmut Grohne]

Source: mdk3
Version: 6.0-4
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap

mdk3 fails to cross build from source. It actually cross builds the
binary during dh_auto_build correctly. But then it does dh_auto_install
and since there is a bad makefile dependency, it does the build again -
with the wrong compiler. Fixing the dependency fixes the cross build.
Please consider applying the attached patch.

Helmut
--- mdk3-6.0.orig/Makefile
+++ mdk3-6.0/Makefile
@@ -7,7 +7,7 @@
 
 OSD		= osdep
 LIBS		= -L$(OSD) -l$(OSD)
-LIBOSD		= $(OSD)/lib$(OSD).so
+LIBOSD		= $(OSD)/lib$(OSD).a
 
 
 all: osd mdk3
@@ -19,7 +19,7 @@
 	$(MAKE) -C $(OSD)
 
 mdk3: $(LIBOSD) mdk3.c
-	$(CC) $(CFLAGS) $(CPPFLAGS) mdk3.c $(OSD)/lib$(OSD).a -o $@ $(LDFLAGS) $(LIBS)
+	$(CC) $(CFLAGS) $(CPPFLAGS) mdk3.c $(LIBOSD) -o $@ $(LDFLAGS) $(LIBS)
 
 install: mdk3
 	$(MAKE) -C $(OSD) install

Bug#903898: Acknowledgement (thunderbird: missing AppArmor entries)

[Carsten Schoenert]

Hello Vincas,

On Wed, Aug 08, 2018 at 05:34:01PM +0300, Vincas Dargis wrote:
> On Mon, 16 Jul 2018 16:03:01 +0100 Nuno Oliveira  wrote:
> > Hi Vincas, Carsten,
> > 
> > While you are at it, you might as well consider this extra line which
> > appeared latter:
> > 
> > /var/lib/xine/gxine.desktop r,
> 
> Nuno, could you give me a hint on how to reproduce this? I can't even find
> package that would ship gxine.desktop:
> 
> $ apt-file search /var/lib/xine/gxine.desktop

I use mostly packages.d.o to search for specif files.

In this case this file comes from the package gxine.

https://packages.debian.org/search?searchon=contents&keywords=gxine.desktop&mode=exactfilename&suite=unstable&arch=any

Regards
Carsten

Bug#905659: qt5keychain-dev still makes psi-plus ftbfs

[Helmut Grohne]

On Wed, Aug 08, 2018 at 12:35:36PM +0300, Boris Pek wrote:
> Package src:qtkeychain is not FTBFS, so this tag is wrong. I am not sure
> which severity is better, but severity "serious" looks wrong to me.

The ftbfs tag was correct. The bug wasn't assigned to src:qtkeychain
(source package), but to qt5keychain-dev (binary package). In accordance
with the tag description (https://www.debian.org/Bugs/Developer#tags)
that means, affected source packages fail to build. So this was fully
correct until you uploaded psi-plus.

The discussion is fully moot now as both bugs are resolved now. Thanks
to all for the quick fixes.

Helmut

Bug#901262: bplay FTCBFS: does not pass a cross compiler to make

[Helmut Grohne]

On Wed, Aug 08, 2018 at 03:45:11PM +0200, Carlos Laviola wrote:
> Sorry for the delay in replying. Would you mind doing an NMU with your patch?

Heh. Delay is > 1 year for me. Given that I have very little knowledge
of your package, I prefer a maintainer doing the upload. I wouldn't know
if I'd break something. The package does not look like in best shape at
the moment. I hope you can do an upload before the buster freeze or
orphan the package.

Helmut

Bug#871621: ITP of skopeo

[Guido Günther]

Hi,
On Wed, Aug 08, 2018 at 04:36:52PM +0200, Bas Zoetekouw wrote:
> Hi Free,
> 
> Could you give an update on you ITP of skopeo?  I need skopeo as a
> dependency for virt-bootstrap, which is in turn required by virt-
> manager to build LXC environments.
> 
> Looking at the package, it's probably a lot of work to get all
> dependencies packaged and in the archive. Could you give a status
> update on those?  I'd be happy to help, if needed.

I vaguely remember that was possible to run virt-bootstrap without
skopeo with limited functionlity but I'm not sure if that's true
anymore.
 -- Guido

Bug#901789: mesa: white screen when running Xfwm4 with compositing

[Yves-Alexis Perez]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

control: forwarded -1 https://bugs.freedesktop.org/show_bug.cgi?id=107117

For what it's worth, Olivier Fourdan reported that bug upstream and
investigated it, and it's been supposedly fixed there.

There's a patch (https://patchwork.freedesktop.org/patch/241077/) which has
been committed to mesa developpment tree (
https://gitlab.freedesktop.org/mesa/mesa/commit/03a61b977e1f6adb64658aa059ce53e766ff9ad9
).

Could this commit be backported to Debian?

Thanks!
- -- 
Yves-Alexis
-BEGIN PGP SIGNATURE-

iQEzBAEBCAAdFiEE8vi34Qgfo83x35gF3rYcyPpXRFsFAltrAHQACgkQ3rYcyPpX
RFtPlQf+Obcd9iDQaqFDW+kOC8STFmHV5ZQ4NeRG2gMPB62LafoZ7ZWnzWm4ppba
B/Redi6Nx0sYMBne+9FTGfmATh/6So41USYPubANS0wEiyGqjt+6zkAdTqKtS/5b
IrldNVOufDQ05EfB1NNEAh6YEvHYF5pomKjnVJ1t3lVyqWHd2TB2A8pKYmBRywwj
gymniRQgsYxh4N10tXTlkHUyoZwE2/yAUByHoklyVI47z5lfOJuKHYbVwg4Tz4j1
FsR1cpVGXdsGS7x3/x6hO/DHYScYBqbLpCAU2c7lNvjYMNl4t3WohI7o1IRtkVpH
u+CATkFoxuLvvqJQYnR8W0bKfmdueA==
=bGgf
-END PGP SIGNATURE-

Bug#871621: ITP of skopeo

[Bas Zoetekouw]

Hi Free,

Could you give an update on you ITP of skopeo?  I need skopeo as a
dependency for virt-bootstrap, which is in turn required by virt-
manager to build LXC environments.

Looking at the package, it's probably a lot of work to get all
dependencies packaged and in the archive. Could you give a status
update on those?  I'd be happy to help, if needed.

Gr,
Bas.

Bug#903898: Acknowledgement (thunderbird: missing AppArmor entries)

[Vincas Dargis]

On Mon, 16 Jul 2018 16:03:01 +0100 Nuno Oliveira  wrote:

Hi Vincas, Carsten,

While you are at it, you might as well consider this extra line which 
appeared latter:


/var/lib/xine/gxine.desktop r,


Nuno, could you give me a hint on how to reproduce this? I can't even find package that would ship 
gxine.desktop:


$ apt-file search /var/lib/xine/gxine.desktop
$