Bug#969227: FTBFS with new runc 1.0.0~rc92 and libcap2 2.43

[Shengjing Zhu]

On Mon, Aug 31, 2020 at 1:42 PM El boulangero  wrote:
>
> The patch test--fix-against-libcap2-2.43.patch actually fails the build for 
> me, in a sid chroot with libcap 2.43.
>
> 
> === RUN   TestTarUntarWithXattr
> archive_unix_test.go:267: assertion failed: string 
> "/tmp/docker-test-untar-origin293876876/2 = cap_block_suspend+ep\n" does not 
> contain "cap_block_suspend=ep": untar should have kept the 
> 'security.capability' xattr
> archive_unix_test.go:267: assertion failed: string 
> "/tmp/docker-test-untar-origin293876876/2 = cap_block_suspend+ep\n" does not 
> contain "cap_block_suspend=ep": untar should have kept the 
> 'security.capability' xattr
> 
>
> This is not very important anyway, as this patch applies to a test that 
> requires root, hence is skipped on buildd.

Indeed, it's skipped. Seems sbuild gives me a shell with root when
building fails, which makes this test to be run.

-- 
Shengjing Zhu

Bug#969227: FTBFS with new runc 1.0.0~rc92 and libcap2 2.43

[El boulangero]

The patch test--fix-against-libcap2-2.43.patch actually fails the build for
me, in a sid chroot with libcap 2.43.


=== RUN   TestTarUntarWithXattr
archive_unix_test.go:267: assertion failed: string
"/tmp/docker-test-untar-origin293876876/2 = cap_block_suspend+ep\n" does
not contain "cap_block_suspend=ep": untar should have kept the
'security.capability' xattr
archive_unix_test.go:267: assertion failed: string
"/tmp/docker-test-untar-origin293876876/2 = cap_block_suspend+ep\n" does
not contain "cap_block_suspend=ep": untar should have kept the
'security.capability' xattr


This is not very important anyway, as this patch applies to a test that
requires root, hence is skipped on buildd.

The patch fix-build-against-runc-rc92.patch indeed fixes the build. Going
to upload  a new version of the docker.io package soon.

Thanks!

  Arnaud


On Sun, Aug 30, 2020 at 8:09 AM Dmitry Smirnov  wrote:

> On Sunday, 30 August 2020 3:01:34 AM AEST Shengjing Zhu wrote:
> > Please see the patches attached.
>
> Thank you very much!
>
>
> > BTW, is there any instruction to work with the docker.io git repo?
> > It seems `gbp buildpackage` or `gbp pq` are hard to use with it.
>
> Something like the following:
>
>   https://salsa.debian.org/onlyjob/notes/-/wikis/bp
>
> Start with "debian" directory, obtain and extract orig tarballs with
> 'origtargz' then build with your preferred method (e.g. pbuilder).
>
> MUT and complex Golang packages are ridiculously difficult to maintain
> with GBP...
>
> See also https://salsa.debian.org/onlyjob/notes/-/wikis/no-gbp
>
> --
> Best wishes,
>  Dmitry Smirnov.
>
> ---
>
> Truth — Something somehow discreditable to someone.
> -- H. L. Mencken, 1949
>
> ---
>
> A study on infectivity of asymptomatic SARS-CoV-2 carriers, concludes weak
> transmission. "The median contact time for patients was four days and that
> for family members was five days."
> -- https://pubmed.ncbi.nlm.nih.gov/32513410/
>

Bug#958606: bitlbee: Build-Depends on deprecated dh-systemd which is going away

[Gunnar Wolf]

tags 958606 + patch
thanks

The patch for this, given bitlbee already depends on debhelper, is
straightforward; I am inlining it here:

--- a/debian/control
+++ b/debian/control
@@ -4,7 +4,7 @@ Priority: optional
 Maintainer: Wilmer van der Gaast 
 Uploaders: Jelmer Vernooij 
 Standards-Version: 3.9.8
-Build-Depends: libglib2.0-dev (>= 2.4), libevent-dev, libgnutls28-dev | 
libgnutls-dev | gnutls-dev, po-debconf, libpurple-dev, libotr5-dev, debhelper 
(>= 10~), dh-systemd (>= 1.5), python3
+Build-Depends: libglib2.0-dev (>= 2.4), libevent-dev, libgnutls28-dev | 
libgnutls-dev | gnutls-dev, po-debconf, libpurple-dev, libotr5-dev, debhelper 
(>= 10~), python3
 Homepage: http://www.bitlbee.org/
 Vcs-Git: https://github.com/bitlbee/bitlbee
 Vcs-Browser: https://github.com/bitlbee/bitlbee

Bug#969225: python3-electrum: Please relax dependency on python3-qdarkstyle

[intrigeri]

Hi Tristan,

Tristan Seligmann (2020-08-30):
> On Sat, 29 Aug 2020 at 16:45,  wrote:
>> On top of that, since 4.0.2-1, python3-electrum has "Depends:
>> python3-qdarkstyle". Is this absolute dependency needed?
>> (See Policy 7.2¹ for details.)
>
> This dependency was picked up mostly by accident; upstream specifies a
> dependency on qdarkstyle in setup.py so when python3-qdarkstyle is
> installed at build-time, dh_python3 automatically translates the
> requires.txt entry into a Depends: in the binary package. Electrum is
> perfectly functional without this, though (it will just give you a
> warning if you try to activate dark mode), so I will filter the dep
> out at build time.

Thanks a lot for the quick fix!

Bug#942954: bitlbee: Build-Depends on deprecated dh-systemd which is going away

[Gunnar Wolf]

tags 958606 + ftbfs pending
tags 942954 + ftbfs pending
thanks

I will be NMUing in some minutes bitlbee to the 3-day delayed queue
due to the two mentioned bugs, as they cause the package to FTBFS (and
are quite trivial to fix).

The patch for 942954 was sent several months ago by Matthias Klose; I
will provide the patch to 958606 shortly in a separate message.


signature.asc
Description: PGP signature

Bug#908670: Any chance to get libbiod compiling again?

[Andreas Tille]

Control: tags -1 -moreinfo

On Mon, Aug 31, 2020 at 03:56:12AM +0200, Chris Hofstaedtler wrote:
> Hi Andreas,
> 
> * Scott Kitterman :
> > On Thu, 19 Sep 2019 17:23:23 +0200 Andreas Tille  wrote:
> > > Control: reassign -1 ftp.debian.org
> > > Control: retitle -1 ROM: libundead: Please remove this package from Debian
> > > 
> > > Hi ftpmasters,
> > > 
> > > libundead is not used any more and should be removed.
> > 
> > Actually, it is:
> > 
> > Checking reverse dependencies...
> > # Broken Depends:
> > libbiod: libbiod0 [amd64 i386]
> > sambamba: sambamba [amd64]
> > 
> > # Broken Build-Depends:
> > libbiod: libundead-dev
> > sambamba: libundead-dev (>= 1.0.9-2)
> > 
> > Dependency problem found.
> > 
> > If you still want this removed, please remove the moreinfo tag once these 
> > have 
> > been resolved.  If you don't, please close the bug.
> 
> The reverse dependencies are gone now, please clear the moreinfo tag
> if this should still go away?
> 
> Chris
> 

-- 
http://fam-tille.de

Bug#969305: [Pkg-zsh-devel] Bug#969305: zsh: safe-rm needs to be added to the default path of interactive shells to work

[Daniel Shahaf]

Control: affects -1 safe-rm

Francois Marier wrote on Sun, Aug 30, 2020 at 19:50:10 -0700:
> This isn't really a bug in zsh, but rather I'd like to figure out how to
> best enable the safe-rm package for zsh users.

Thanks!

> As far as I can tell, the equivalent to protect zsh users who choose to
> install safe-rm would be to add the following to /etc/zhs/zshrc:
> 
>   if [[ -d "/usr/share/safe-rm/bin" ]]
>   then
> PATH="/usr/share/safe-rm/bin:$PATH"
> export PATH
>   fi

I guess it should be in the zprofile file, guarded by a [[ -o interactive ]] 
check.

> However, I don't see a way for packages to do this. So I guess there would
> be two ways to make this possible:
> 
> 1. The main /etc/zsh/zshrc script could source all .sh files in a new
>/etc/zsh/zshrc.d/ directory.
> 2. The /etc/zsh/zshrc that ships in Debian could include the above.
> 
> Are either of these something you'd be willing to consider?

I don't have an opinion one way or the other.

I do note that option #2 would cause a stat(2) call during shell startup
for everyone who _doesn't_ use safe-rm.  Would that be a problem?
(E.g., slower shell startup)

> Or is there another way to do this that I haven't seen?

Probably not what you had in mind, but my first instinct here is to look
for a shell-independent solution.  For example:

3. Get the OS to add /usr/share/safe-rm/bin to $PATH before the user's
shell is executed in the first place.  (On FreeBSD that'd be
login.conf(5), but I don't know what the Linux equivalent is.)

4. Use dpkg-divert(8) to replace /bin/rm with a wrapper that calls
either safe-rm or the diverted rm binary, depending on whether it's
interactive or not.

> I would really like to make it easy for zsh users to be as protected as
> bash/dash users (i.e. "apt install safe-rm" and you're done).

Thanks!

If you don't already know them, see RM_STAR_SILENT and RM_STAR_WAIT in
zshoptions(1).

Cheers,

Daniel

P.S.  Compare #489646, about providing a directory for packages to drop
completion files into.  (That didn't involve reimplementing
run-parts(1), though; it was just a matter of adding a directory to
a list of directories.)

Bug#969174: firefox: FF80 seems to have broken all add-ons on existing profiles

[Paul Wise]

On Fri, 28 Aug 2020 17:18:44 +0200 Christoph Anton Mitterer wrote:

> It seems that with FF80 all addons are broken in existing profiles.
 
I noticed the same issue too.

I note that the issue does *not* occur in new profiles.

-- 
bye,
pabs

https://wiki.debian.org/PaulWise


signature.asc
Description: This is a digitally signed message part

Bug#969308: linux-image-5.3.0-kali3-amd64: Logitech wireless kbd/mouse model EX110 erroneously detected as Logitech LX710

[Sometime Mystic]

Package: src:linux
Version: 5.3.15-1kali1
Severity: normal

Dear Maintainer,

*** Reporter, please consider answering these questions, where appropriate
***

   * What led up to the situation?
Recent dist-upgrade, Logitech EX110 kbd/mouse  not detected
properly after upgrade, detected as Logitech LX710
   * What exactly did you do (or not do) that was effective (or
ineffective)?
rebooted into 2019.2 release
   * What was the outcome of this action?
verified kbd/mouse properly detected in this release
   * What outcome did you expect instead?

*** End of the template - remove these template lines ***


-- Package-specific info:
** Version:
Linux version 5.3.0-kali3-amd64 (de...@kali.org) (gcc version 9.2.1
20191130 (Debian 9.2.1-21)) #1 SMP Debian 5.3.15-1kali1 (2019-12-09)

** Command line:
BOOT_IMAGE=/vmlinuz-5.3.0-kali3-amd64 root=/dev/mapper/notwin12--vg-root ro
initrd=/install/gtk/initrd.gz quiet splash

** Not tainted

** Kernel log:
[3024075.518455] usb 6-1: USB disconnect, device number 4
[3024075.518460] usb 6-1.1: USB disconnect, device number 5
[3024079.182403] usb 6-1: new full-speed USB device number 6 using uhci_hcd
[3024079.355404] usb 6-1: New USB device found, idVendor=0557,
idProduct=7000, bcdDevice= 1.00
[3024079.355409] usb 6-1: New USB device strings: Mfr=0, Product=0,
SerialNumber=0
[3024079.359822] hub 6-1:1.0: USB hub found
[3024079.361404] hub 6-1:1.0: 4 ports detected
[3024079.658370] usb 6-1.1: new low-speed USB device number 7 using uhci_hcd
[3024079.847401] usb 6-1.1: New USB device found, idVendor=046d,
idProduct=c517, bcdDevice=38.10
[3024079.847405] usb 6-1.1: New USB device strings: Mfr=1, Product=2,
SerialNumber=0
[3024079.847408] usb 6-1.1: Product: USB Receiver
[3024079.847411] usb 6-1.1: Manufacturer: Logitech
[3024079.878602] logitech-djreceiver 0003:046D:C517.0005: hidraw0: USB HID
v1.10 Keyboard [Logitech USB Receiver] on usb-:00:1d.0-1.1/input0
[3024080.010622] logitech-djreceiver 0003:046D:C517.0006: hiddev0,hidraw1:
USB HID v1.10 Mouse [Logitech USB Receiver] on usb-:00:1d.0-1.1/input1

** Model information
sys_vendor: Intel Corporation
product_name: Milstead Platform
product_version: 2.2
chassis_vendor: Intel Corporation
chassis_version: 1.0
bios_vendor: Phoenix Technologies Ltd.
bios_version: CDV WSS 03
board_vendor: Intel Corporation
board_name: Granite Well
board_version: FABA

** Loaded modules:
rpcsec_gss_krb5
auth_rpcgss
nfsv4
nfs
lockd
grace
sunrpc
md4
sha512_ssse3
sha512_generic
cmac
nls_utf8
cifs
gcm
dns_resolver
fscache
binfmt_misc
nls_ascii
nls_cp437
vfat
fat
efi_pstore
intel_powerclamp
coretemp
rt2800usb
rt2x00usb
rt2800lib
rt2x00lib
mac80211
serio_raw
efivars
pcspkr
cfg80211
crc_ccitt
rfkill
libarc4
snd_hda_codec_hdmi
sg
snd_hda_intel
iTCO_wdt
iTCO_vendor_support
snd_hda_codec
watchdog
snd_hda_core
snd_hwdep
snd_pcm
snd_timer
snd
soundcore
evdev
efivarfs
ip_tables
x_tables
autofs4
ext4
crc16
mbcache
jbd2
crc32c_generic
dm_mod
hid_logitech_dj
uas
usb_storage
hid_generic
usbhid
hid
sd_mod
ahci
libahci
psmouse
libata
i2c_i801
scsi_mod
gma500_gfx
lpc_ich
xhci_pci
mfd_core
i2c_algo_bit
xhci_hcd
uhci_hcd
ehci_pci
ehci_hcd
drm_kms_helper
e1000e
usbcore
ptp
pps_core
usb_common
drm
video
button

** PCI devices:
00:00.0 Host bridge [0600]: Intel Corporation Atom Processor D2xxx/N2xxx
DRAM Controller [8086:0bf3] (rev 04)
Subsystem: Intel Corporation Atom Processor D2xxx/N2xxx DRAM
Controller [8086:1999]
Control: I/O+ Mem+ BusMaster+ SpecCycle- MemWINV- VGASnoop- ParErr-
Stepping- SERR- FastB2B- DisINTx-
Status: Cap- 66MHz- UDF- FastB2B- ParErr- DEVSEL=fast >TAbort-
SERR- TAbort-
SERR- 
Kernel driver in use: gma500
Kernel modules: gma500_gfx

00:1a.0 USB controller [0c03]: Intel Corporation 82801JI (ICH10 Family) USB
UHCI Controller #4 [8086:3a37] (prog-if 00 [UHCI])
Subsystem: Device [1c3d:1a1b]
Control: I/O+ Mem- BusMaster+ SpecCycle- MemWINV- VGASnoop- ParErr-
Stepping- SERR- FastB2B- DisINTx-
Status: Cap+ 66MHz- UDF- FastB2B+ ParErr- DEVSEL=medium >TAbort-
SERR- 
Kernel driver in use: uhci_hcd
Kernel modules: uhci_hcd

00:1a.7 USB controller [0c03]: Intel Corporation 82801JI (ICH10 Family)
USB2 EHCI Controller #2 [8086:3a3c] (prog-if 20 [EHCI])
Subsystem: Device [1c3d:1a1b]
Control: I/O- Mem+ BusMaster+ SpecCycle- MemWINV- VGASnoop- ParErr-
Stepping- SERR- FastB2B- DisINTx-
Status: Cap+ 66MHz- UDF- FastB2B+ ParErr- DEVSEL=medium >TAbort-
SERR- 
Kernel driver in use: ehci-pci
Kernel modules: ehci_pci

00:1b.0 Audio device [0403]: Intel Corporation 82801JI (ICH10 Family) HD
Audio Controller [8086:3a3e]
Subsystem: Device [1c3d:1a1b]
Control: I/O- Mem+ BusMaster+ SpecCycle- MemWINV- VGASnoop- ParErr-
Stepping- SERR- FastB2B- DisINTx+
Status: Cap+ 66MHz- UDF- FastB2B- ParErr- DEVSEL=fast >TAbort-
SERR- 
Kernel driver in use: snd_hda_intel
Kernel modules: snd_hda_intel

Bug#969306: safe-rm: Add support for ksh, the KornShell

[Francois Marier]

Package: safe-rm
Version: 0.12-10
Severity: wishlist
Tags: help

Right now safe-rm is enabled by default for interactive bash/dash shells due
to the fact that it drops a configuration blurb in /etc/profile.d/ which
overwrites the default PATH:

  https://salsa.debian.org/debian/safe-rm/-/blob/master/debian/safe-rm.sh

It would be good to add the equivalent configuration blurb for ksh.

Francois

-- 
https://fmarier.org/

Bug#969307: safe-rm: Add support for Fish, the friendly interactive shell

[Francois Marier]

Package: safe-rm
Version: 0.12-10
Severity: wishlist
Tags: help

Right now safe-rm is enabled by default for interactive bash/dash shells due
to the fact that it drops a configuration blurb in /etc/profile.d/ which
overwrites the default PATH:

  https://salsa.debian.org/debian/safe-rm/-/blob/master/debian/safe-rm.sh

It would be good to add the equivalent configuration blurb for fish.

Francois

-- 
https://fmarier.org/

Bug#969305: zsh: safe-rm needs to be added to the default path of interactive shells to work

[Francois Marier]

Package: zsh
Version: 5.8-5
Severity: normal

This isn't really a bug in zsh, but rather I'd like to figure out how to
best enable the safe-rm package for zsh users.

For bash, we ship a config file in /etc/profile.d/ which adds
/usr/share/safe-rm/bin in front of /bin:

  https://salsa.debian.org/debian/safe-rm/-/blob/master/debian/safe-rm.sh

As far as I can tell, the equivalent to protect zsh users who choose to
install safe-rm would be to add the following to /etc/zhs/zshrc:

  if [[ -d "/usr/share/safe-rm/bin" ]]
  then
PATH="/usr/share/safe-rm/bin:$PATH"
export PATH
  fi

However, I don't see a way for packages to do this. So I guess there would
be two ways to make this possible:

1. The main /etc/zsh/zshrc script could source all .sh files in a new
   /etc/zsh/zshrc.d/ directory.
2. The /etc/zsh/zshrc that ships in Debian could include the above.

Are either of these something you'd be willing to consider? Or is there
another way to do this that I haven't seen?

I would really like to make it easy for zsh users to be as protected as
bash/dash users (i.e. "apt install safe-rm" and you're done).

Francois

-- 
https://fmarier.org/

Bug#969304: RFS: tcpslice/1.3-2 -- extract pieces of and/or glue together tcpdump files

[Bruno Naibert de Campos]

Package: sponsorship-requests
Severity: normal

Dear mentors,

I am looking for a sponsor for my package "tcpslice":

 * Package name: tcpslice
   Version : 1.3-2
   Upstream Author : https://github.com/the-tcpdump-group/tcpslice/issues
 * URL : http://www.tcpdump.org
 * License : BSD-4-Clause, BSD-3-Clause
 * Vcs : https://salsa.debian.org/debian/tcpslice
   Section : net

It builds those binary packages:

  tcpslice - extract pieces of and/or glue together tcpdump files

To access further information about this package, please visit the following 
URL:

  https://mentors.debian.net/package/tcpslice/

Alternatively, one can download the package with dget using this command:

  dget -x 
https://mentors.debian.net/debian/pool/main/t/tcpslice/tcpslice_1.3-2.dsc

Changes since the last upload:

 tcpslice (1.3-2) unstable; urgency=medium
 .
   * Upload to unstable.

Regards,
--
  Bruno Naibert de Campos

Bug#799323: local-apt-repository: Uninstallable without systemd despite that seems supported according to the package description

[Ángel]

On 2020-08-27 at 20:44 +0200, Joachim Breitner wrote:
> I consider this (not having to manually run the rebuild script)
> central functionality of local-apt-repository: The goal is that the
> user has to worry about nothing but dropping apt files in the right
> directory. I only know how to achieve this easily with systemd.

To be fair, I hadn't noticed the magic behavior.

This part is simple on this package just because systemd is doing the
heavy lifting. It would be possible to by using for instance fswatch
ran from an init daemon, but it isn't too clean (plus, it seems to loop
by also detecting accesses by rebuild).

Probably the best way would be to hook apt update to perform the
rebuild there if needed.

Regards

Bug#968204: RM: gkrellmoon -- ROM; outdated, uses outdated libs, not used any more

[Chris Hofstaedtler]

control: tag -1 - moreinfo

* Sean Whitton  [200831 01:57]:
> control: tag -1 + moreinfo
> 
> Hello Martin,
> 
> On Mon 10 Aug 2020 at 07:03PM +02, Martin Zobel-Helas wrote:
> 
> > Package: ftp.debian.org
> > Severity: normal
> >
> > Please remove gkrellmoon.
> 
> Hmm, it doesn't seem to be RC-buggy; what exactly do you mean by "uses
> outdated libs" and "not used anymore"?

See #967419: gtk 2.0, which the gtk maintainers really want to make
go away.

Also, this is gkrellmoon, not gkrellm(on).

Chris

Bug#908670: Any chance to get libbiod compiling again?

[Chris Hofstaedtler]

Hi Andreas,

* Scott Kitterman :
> On Thu, 19 Sep 2019 17:23:23 +0200 Andreas Tille  wrote:
> > Control: reassign -1 ftp.debian.org
> > Control: retitle -1 ROM: libundead: Please remove this package from Debian
> > 
> > Hi ftpmasters,
> > 
> > libundead is not used any more and should be removed.
> 
> Actually, it is:
> 
> Checking reverse dependencies...
> # Broken Depends:
> libbiod: libbiod0 [amd64 i386]
> sambamba: sambamba [amd64]
> 
> # Broken Build-Depends:
> libbiod: libundead-dev
> sambamba: libundead-dev (>= 1.0.9-2)
> 
> Dependency problem found.
> 
> If you still want this removed, please remove the moreinfo tag once these 
> have 
> been resolved.  If you don't, please close the bug.

The reverse dependencies are gone now, please clear the moreinfo tag
if this should still go away?

Chris

Bug#964468: RM: libifp -- RoQA; unmaintained; dead upstream; obsolete hardware

[Chris Hofstaedtler]

Dear possibly libifp-interested people,

I've asked ftpmaster to remove libifp, because:
| It has not seen an upload for 9+ years, and is a support library for
| iRiver media players, which I haven't seen in years either.

If you are still interested in this software, please indicate your
interest in this bug, within the next two weeks.
Otherwise, please expect it to go away soon.

Best,
Chris

Bug#969303: tiger: diff for NMU version 1:3.2.4~rc1-2.1

[Francois Marier]

Package: tiger
Version: 1:3.2.4~rc1-2
Severity: normal
Tags: patch  pending

Dear maintainer,

I've prepared an NMU for tiger (versioned as 1:3.2.4~rc1-2.1) and
uploaded it to DELAYED/10. Please feel free to tell me if I
should delay it longer.

Regards.

Francois

-- 
https://fmarier.org/
diff -u tiger-3.2.4~rc1/config tiger-3.2.4~rc1/config
--- tiger-3.2.4~rc1/config
+++ tiger-3.2.4~rc1/config
@@ -415,7 +415,7 @@
   #
 
   [ -n "$RCFILE" -a -r $RCFILE ] && {
-tempfile=`tempfile -d $WORKDIR` || tempfile=$WORKDIR/rcfile.$$
+tempfile=`mktemp -p $WORKDIR` || tempfile=$WORKDIR/rcfile.$$
 $GREP -v '^#' $RCFILE |
 $SED -e 's/^\(.*\)=/export \1; \1=/' > $tempfile
 . $tempfile
diff -u tiger-3.2.4~rc1/debian/changelog tiger-3.2.4~rc1/debian/changelog
--- tiger-3.2.4~rc1/debian/changelog
+++ tiger-3.2.4~rc1/debian/changelog
@@ -1,3 +1,12 @@
+tiger (1:3.2.4~rc1-2.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Add missing dependency on lsb-release (closes: #962975).
+  * Use mktemp instead of tempfile (closes: #961642).
+  * Teach tiger about nsfs (closes: #968713).
+
+ -- Francois Marier   Sun, 30 Aug 2020 16:58:11 -0700
+
 tiger (1:3.2.4~rc1-2) unstable; urgency=medium
 
   * debian/config: Remove only files using xarg instead of -exec.
diff -u tiger-3.2.4~rc1/debian/control tiger-3.2.4~rc1/debian/control
--- tiger-3.2.4~rc1/debian/control
+++ tiger-3.2.4~rc1/debian/control
@@ -11,7 +11,7 @@
 
 Package: tiger
 Architecture: any
-Depends: net-tools, binutils, bsdmainutils, debconf | debconf-2.0, ucf, ${shlibs:Depends}, ${misc:Depends}
+Depends: net-tools, binutils, bsdmainutils, debconf | debconf-2.0, ucf, lsb-release, ${shlibs:Depends}, ${misc:Depends}
 Recommends: sendmail | mail-transport-agent, john, chkrootkit, tripwire | aide
 Suggests: lsof, lynis
 Description: security auditing and intrusion detection tools for Linux
diff -u tiger-3.2.4~rc1/systems/Linux/2/gen_mounts tiger-3.2.4~rc1/systems/Linux/2/gen_mounts
--- tiger-3.2.4~rc1/systems/Linux/2/gen_mounts
+++ tiger-3.2.4~rc1/systems/Linux/2/gen_mounts
@@ -279,6 +279,7 @@
   [ "$1" = "mqueue" ] && LOCAL=1# POSIX message queues
   [ "$1" = "sockfs" ] && LOCAL=1# Sockets
   [ "$1" = "bdev" ] && LOCAL=1  # Block devices
+  [ "$1" = "nsfs" ] && LOCAL=1  # Namespace pseudo-filesystem
   [ "$1" = "pipefs" ] && LOCAL=1
   [ "$1" = "eventpollfs" ] && LOCAL=1   # Efficient event polling mechanism
   [ "$1" = "inotifyfs" ] && LOCAL=1 
only in patch2:
unchanged:
--- tiger-3.2.4~rc1.orig/systems/Linux/2/list_fs_linux.sh
+++ tiger-3.2.4~rc1/systems/Linux/2/list_fs_linux.sh
@@ -7,7 +7,7 @@
 # /proc/filesystems
 # /lib/modules/{kernel_name}/kernel/fs
 
-tempfile=`tempfile`
+tempfile=`mktemp`
  cat /proc/filesystems | while read type fs; do
 [ -z "$fs" ] && type=$fs
 echo $fs >>$tempfile
only in patch2:
unchanged:
--- tiger-3.2.4~rc1.orig/util/genmsgidx
+++ tiger-3.2.4~rc1/util/genmsgidx
@@ -79,8 +79,8 @@
 # Setup a tempfile
 [ -n "$TMPDIR" ] && TMPDIR=/tmp/
 tempfile=""
-if [ -n "`which tempfile`" ] ; then
-tempfile=`tempfile`
+if [ -n "`which mktemp`" ] ; then
+tempfile=`mktemp`
 fi
 [ -z "$tempfile" ] && tempfile=$TMPDIR/te.$$
 [ ! -e $tempfile ] && >$tempfile

Bug#968104: openafs-client: Upgrade of openfs-client break until reboot

[Benjamin Kaduk]

Hi Jose,

Sorry that I missed this when it first came in.
A couple notes inline, if you still remember much about the original
report...

On Sat, Aug 08, 2020 at 06:32:07PM +0100, Jose M Calhariz wrote:
> Package: openafs-client
> Version: 1.8.6-1~dsi10+1
> Severity: normal
> 
> Hi,
> 
> I have made a "private backport" of openafs software from bullseye to
> buster.  So this means is the first time for me that I am upgrading 
> openafs client 1.8.x on live systems.  Where in the past this worked 

To clarify: are you upgrading from 1.6.x to 1.8.x, or merely updating from
one 1.8.x version to a newer 1.8.x version?

> without problems for openafs 1.4 and 1.6, now the openafs client stops
> working and I need to do a reboot.
> 
> What I am requesting is that if possible to do a live upgrade of the
> software and the client does not stop working even if it is necessary 
> to work with the old software until a reboot.

What you are requesting is what is supposed to happen, so I'm unpleasantly
surprised to hear that it is not happening.

Once I hear back about the problematic scenario I can try to reproduce in a
local VM.

Thanks,

Ben

Bug#926321: openafs: FTBFS on arm64

[Benjamin Kaduk]

tags 926321 moreinfo
thanks

On Sat, Apr 06, 2019 at 10:10:57AM -0500, Benjamin Kaduk wrote:
> Hi Paul,
> 
> On Wed, Apr 03, 2019 at 01:06:08PM +0100, Paul Martin wrote:
> > Source: openafs
> > Version: 1.6.20-2+deb9u2
> > Severity: normal
> > Tags: patch, ftbfs, stretch
> > 
> > It would be nice if openafs were to be available on ARM64 architecture 
> > in Debian Stretch and Ubuntu Bionic.
> > 
> > The OpenStack Infrastructure project in particular would benefit from 
> > this package suite being available.
> 
> Thanks for the report (and patch).
> 
> I think I remember it being a conscious decision around the time of
> upstream's 1.8.0 to only bring arm64 support into Debian alongside 1.8.0
> (i.e., for buster), and I thought that's because upstream had needed more
> changes than just the sort you have in these patches.  But presumably your
> systems are working with just the posted patches, so I'll try to take a
> closer look at what actually happened with upstream and refresh my memory
> of the situation.
> 
> That said, I don't know how the SRMs feel about this sort of change.
> Did you consider using a backported 1.8.2-1 from buster?  (I don't have
> much time for working on the Ubuntu packaging;
> https://launchpad.net/~openafs/+archive/ubuntu/stable?field.series_filter=zesty
> may be an option for you there.)

Hi Paul,

Did you manage to resolve the situation here in some way?
I fear that the passage of time may have overtaken events, here...

Thanks,

Ben

Bug#966004: bugs.debian.org: .XCompose fails to make long substitutions

[Chris Hofstaedtler]

Control: reassign -1 libx11-6

XCompose appears to be a libX11 feature, reassigning there.

Best,
Chris

Bug#913542: teckit: Fails to build on Ubuntu's ppc64el (symbols)

[Norbert Preining]

Hi Hilmar,

> lots about symbol files

I tend to drop the symbols file completely, it seems - adn this is
confirmed by others, that symbols files for c++ programs/libs are just
broken.

https://lists.debian.org/debian-devel/2020/07/msg00259.html

and use shlibs files instead. 

> I changed the symbols file according to [1]. Now the build is fine on
> i386, but fails on amd64. It was not that easy, sorry!

One needs to go through each single, convert the symbols with c++filt,
and replace with the actual names, otherwise within no time the
generated symbols will be borken again. Happy g++/c++ world.

Best

Norbert

--
PREINING Norbert  https://www.preining.info
Accelia Inc. + IFMGA ProGuide + TU Wien + JAIST + TeX Live + Debian Dev
GPG: 0x860CDC13   fp: F7D8 A928 26E3 16A1 9FA0 ACF0 6CAC A448 860C DC13

Bug#969302: ITP: bluez-alsa -- Bluetooth Audio ALSA Backend

[Nobuhiro Iwamatsu]

Package: wnpp
Severity: wishlist
Owner: Nobuhiro Iwamatsu 
X-Debbugs-Cc: debian-de...@lists.debian.org

* Package name: bluez-alsa
  Version : 2.1.0
  Upstream Author : Arkadiusz Bokowy
* URL : https://github.com/Arkq/bluez-alsa
* License : Expat
  Programming Lang: C
  Description : Bluetooth Audio ALSA Backend


This project is a rebirth of a direct integration between BlueZ and
ALSA. Since BlueZ >= 5, the build-in integration has been removed in
favor of 3rd party audio applications. From now on, BlueZ acts as a
middleware between an audio application, which implements Bluetooth
audio profile, and a Bluetooth audio device.

Bug#963846: bugs.debian.org: usb-audio : Lexicon Omega only 2 analog inputs in Debian 10, while showing 4 analog inputs in Debian 9

[Chris Hofstaedtler]

Hi,

thanks for your interest in making Debian better and filing
this report:

* G Bradsly :
> In Debian 9 I had 4 analog inputs, 2 analog outputs, an in and out s/pdif and
> an in and out midi
> In Debian 10 I have only 2 analog inputs, the analog outputs, s/pdif i/o and
> midi i/o are the same.
> In short : I'm missing 2 analog inputs! What gives?

However, more diagnosing work is needed to identify where the
problem lies. Please try general troubleshooting: different audio
systems, check what ALSA has to say, try PulseAudio, and maybe try a
newer or older kernel version.

You can find help with these things at other venues listed at
   https://www.debian.org/support - especially IRC,
the mailing lists or http://forums.debian.net/ .

Once there is a clear bug identified, please reassign this bug to
the package having the bug.


Thank you for your understanding,
Chris

Bug#969079: [Pkg-phototools-devel] Bug#969079: darktable: edits are not saved

[Steven O'Connor]

On Thu, 27 Aug 2020 08:31:18 -0300 David Bremner  wrote:
> Steven O'Connor  writes:
>
> Control: tag -1 unreproducible
>
> > Package: darktable
> > Version: 3.2.1-2+b1
> > Severity: important
> > X-Debbugs-Cc: slack...@gmail.com
> >
> > Dear Maintainer,
> >
> > When I crop a photo and go to lightbox the cropping is lost, I have
tried Ctl-e
> > from darkroom but the export is an uncropped image.
> >
> > I think this problem started with the upgrade to 3.2.1.
> >
> > I have tried deleting the database and config but this hasn't help.
>
> Hi Stephen;
>
> I can't duplicate the problem here.  If you have a photo file that shows
> this problem, and is less than 10MB in size, please attach to the bug
> report (a standard MIME attachment in a reply should work).
>
> d
>
>
The problem is solved. A module is not applied until another module is
selected.

This is different behavior from the previous revision and perhaps needs an
"Apply" button.

Thanks for your assistance.

Bug#969301: mutool: add OpenSSL support

[John Scott]

Package: mupdf-tools
Version: 1.17.0+ds1-1
Severity: normal
X-Debbugs-Cc: 

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

It appears mutool can't verify signed PDFs because it wasn't built
with OpenSSL support:
$ mutool sign -v signed.pdf
verifying signature 81
error: No OpenSSL support.
error processing signatures: No OpenSSL support.

I realize that since MuPDF uses the AGPL this is probably due to the
licenses clashing, but OpenSSL 3.0 with Apache v2 is in experimental
and might help the situation.

- -- System Information:
Debian Release: bullseye/sid
  APT prefers testing
  APT policy: (500, 'testing'), (2, 'unstable'), (1, 'testing-debug'), (1, 
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.7.0-2-amd64 (SMP w/2 CPU threads)
Kernel taint flags: TAINT_USER, TAINT_FIRMWARE_WORKAROUND
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages mupdf-tools depends on:
ii  libc62.31-3
ii  libfreetype6 2.10.2+dfsg-3
ii  libharfbuzz0b2.6.7-1
ii  libjbig2dec0 0.18+20200417-1
ii  libjpeg62-turbo  1:2.0.5-1.1
ii  libmujs1 1.0.7-2
ii  libopenjp2-7 2.3.1-1
ii  zlib1g   1:1.2.11.dfsg-2

mupdf-tools recommends no packages.

mupdf-tools suggests no packages.

- -- no debconf information

-BEGIN PGP SIGNATURE-

iHUEARYIAB0WIQT287WtmxUhmhucNnhyvHFIwKstpwUCX0w2+wAKCRByvHFIwKst
pzXyAQCCinw22u/+ybD5TY6Tuj7fw2tjJaSfLlNq1KAyUU9drwEAneq+lXb8VSSR
3bgznUa4jjNkctSKepUTnd2RVOyhSQY=
=XB4r
-END PGP SIGNATURE-

Bug#969300: ITP: mmhelper -- A small program to help solving Mastermind puzzles.

[jathan]

Package: mmhelper
Severity: wishlist

  * Package name: mmhelper
Version : 1.0
Upstream Author : Octavio Alvarez 
  * License : AGPL-3
  * URL : https://gitlab.com/alvarezp2000/mmhelper
  * Description : A small program to help solving Mastermind puzzles.

A nice program to find the right code in the game Mastermind.

-- 
Por favor evita enviarme adjuntos en formato de word o powerpoint, si
quieres saber porque lee esto:
http://www.gnu.org/philosophy/no-word-attachments.es.html
¡Cámbiate a GNU/Linux! http://getgnulinux.org/es



signature.asc
Description: OpenPGP digital signature

Bug#942698: bugs.debian.org: Multiple Call Traces in dmesg

[Chris Hofstaedtler]

Control: reassign -1 linux-image-4.19.0-6-amd64
Control: retitle -1 i915 workqueue issue / i915_hotplug_work_func 
__flush_work.cold.53

Hi sanshu,

thank you for your interest in making Debian better and filing this
report:

* sanshu  [200830 22:46]:
> [2.158101] [ cut here ]
> [2.158108] WARNING: CPU: 0 PID: 13 at kernel/workqueue.c:2911
> __flush_work.cold.53+0x1f/0x29
> [2.158168] Workqueue: events i915_hotplug_work_func [i915]
[..]

Other discussions on f.e. the Fedora bug tracker suggest that this
has been fixed in Linux kernel 5.3 or 5.4. Can you please try with
one of those versions (or just the current Debian 4.19) and see if
the problem goes away?

If the problem persists in 4.19, but is gone in 5.3/5.4, it might be
useful to "git bisect" to find the fix. Maybe it can be included in
a buster update, then.

Chris

Bug#939262: Bug still exists in Version 20200721-1

[sixerjman]

It just hit me again.

Bug#969263: closed by Chris Hofstaedtler (Re: Bug#969263: bugs.debian.org: debian 10 does not let me install vmware tools)

[Paul Flaherty]

I still get the issue regarding this

Get Outlook for iOS

From: Debian Bug Tracking System 
Sent: Sunday, August 30, 2020 6:24:05 PM
To: Paul Flaherty 
Subject: Bug#969263 closed by Chris Hofstaedtler  (Re: 
Bug#969263: bugs.debian.org: debian 10 does not let me install vmware tools)

This is an automatic notification regarding your Bug report
which was filed against the general package:

#969263: bugs.debian.org: debian 10 does not let me install vmware tools

It has been closed by Chris Hofstaedtler .

Their explanation is attached below along with your original report.
If this explanation is unsatisfactory and you have not received a
better one in a separate message then please contact Chris Hofstaedtler 
 by
replying to this email.


--
969263: 
https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fbugs.debian.org%2Fcgi-bin%2Fbugreport.cgi%3Fbug%3D969263data=02%7C01%7C%7Ca7c0ae45cd2146b9154b08d84d3368fb%7C84df9e7fe9f640afb435%7C1%7C0%7C637344230497128706sdata=IaX43nNisUHbB57Vo0jxp737y5Grc1oocqQO%2FXjvYvg%3Dreserved=0
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#969263: closed by Chris Hofstaedtler (Re: Bug#969263: bugs.debian.org: debian 10 does not let me install vmware tools)

[Paul Flaherty]

I still get issue

Get Outlook for iOS

From: Debian Bug Tracking System 
Sent: Sunday, August 30, 2020 6:24:05 PM
To: Paul Flaherty 
Subject: Bug#969263 closed by Chris Hofstaedtler  (Re: 
Bug#969263: bugs.debian.org: debian 10 does not let me install vmware tools)

This is an automatic notification regarding your Bug report
which was filed against the general package:

#969263: bugs.debian.org: debian 10 does not let me install vmware tools

It has been closed by Chris Hofstaedtler .

Their explanation is attached below along with your original report.
If this explanation is unsatisfactory and you have not received a
better one in a separate message then please contact Chris Hofstaedtler 
 by
replying to this email.


--
969263: 
https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fbugs.debian.org%2Fcgi-bin%2Fbugreport.cgi%3Fbug%3D969263data=02%7C01%7C%7Ca7c0ae45cd2146b9154b08d84d3368fb%7C84df9e7fe9f640afb435%7C1%7C0%7C637344230497128706sdata=IaX43nNisUHbB57Vo0jxp737y5Grc1oocqQO%2FXjvYvg%3Dreserved=0
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#969299: can't sign PDF made with TeX

[John Scott]

Package: libreoffice
Version: 1:7.0.1~rc1-2
Severity: normal
X-Debbugs-Cc: 

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Hi,

I think this might be a regression. I recall it working fine
after PDF signing in general got fixed in 1:7.0.0~beta2-1.

With this minimal LaTeX document, and any direct-to-PDF engine
(PDFLaTeX, XeLaTeX, LuaLaTeX),
\documentclass[letterpaper]{article}
\begin{document}f\end{document}

I get the attached 'tex-good.pdf'. If I navigate to 'Sign
Existing PDF...' in LibreOffice, choose to sign the document
and select my certificate, LibreOffice doesn't appear to do
anything. However, it does corrupt the document; see 'tex-bad.pdf'.

If you try opening it again, LibreOffice says "This PDF file is
encrypted and can't be opened." pdftotext indicates that it is
just corrupted. I couldn't find a report upstream about anything
like this.

I'm somewhat able to work around this by turning TeX to DVI first,
then converting it to PDF after. LibreOffice signs that fine, and
non-TeX documents are okay too.

- -- System Information:
Debian Release: bullseye/sid
  APT prefers testing
  APT policy: (500, 'testing'), (2, 'unstable'), (1, 'testing-debug'), (1, 
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.7.0-2-amd64 (SMP w/2 CPU threads)
Kernel taint flags: TAINT_USER, TAINT_FIRMWARE_WORKAROUND
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages libreoffice depends on:
ii  libreoffice-base1:7.0.1~rc1-2
ii  libreoffice-calc1:7.0.1~rc1-2
ii  libreoffice-core1:7.0.1~rc1-2
ii  libreoffice-draw1:7.0.1~rc1-2
ii  libreoffice-impress 1:7.0.1~rc1-2
ii  libreoffice-math1:7.0.1~rc1-2
ii  libreoffice-report-builder-bin  1:7.0.1~rc1-2
ii  libreoffice-writer  1:7.0.1~rc1-2
ii  python3-uno 1:7.0.1~rc1-2

Versions of packages libreoffice recommends:
ii  fonts-crosextra-caladea 20130214-2
ii  fonts-crosextra-carlito 20130920-1
ii  fonts-dejavu2.37-2
ii  fonts-liberation1:1.07.4-11
ii  fonts-liberation2   2.1.1-1
ii  fonts-linuxlibertine5.3.0-4
ii  fonts-noto-core 20200323-1
ii  fonts-noto-extra20200323-1
ii  fonts-noto-mono 20200323-1
ii  fonts-noto-ui-core  20200323-1
ii  fonts-sil-gentium-basic 1.102-1
ii  libreoffice-java-common 1:7.0.1~rc1-2
ii  libreoffice-nlpsolver   0.9+LibO7.0.1~rc1-2
ii  libreoffice-report-builder  1:7.0.1~rc1-2
ii  libreoffice-script-provider-bsh 1:7.0.1~rc1-2
ii  libreoffice-script-provider-js  1:7.0.1~rc1-2
ii  libreoffice-script-provider-python  1:7.0.1~rc1-2
ii  libreoffice-sdbc-mysql  1:7.0.1~rc1-2
ii  libreoffice-sdbc-postgresql 1:7.0.1~rc1-2
ii  libreoffice-wiki-publisher  1.2.0+LibO7.0.1~rc1-2

Versions of packages libreoffice suggests:
ii  cups-bsd2.3.3-2
ii  default-jre [java8-runtime] 2:1.11-72
ii  firefox 80.0-1
ii  firefox-esr 68.11.0esr-1
ii  ghostscript 9.52.1~dfsg-1
ii  gnupg   2.2.20-1
pn  gpa 
ii  gstreamer1.0-libav  1.16.2-2
ii  gstreamer1.0-plugins-bad1.16.2-2.3+b1
ii  gstreamer1.0-plugins-base   1.16.2-4
ii  gstreamer1.0-plugins-good   1.16.2-3
ii  gstreamer1.0-plugins-ugly   1.16.2-2.1+b1
ii  hunspell-en-us [hunspell-dictionary]1:2019.10.06-1
ii  hyphen-en-us [hyphen-hyphenation-patterns]  2.8.8-7
ii  imagemagick 8:6.9.11.24+dfsg-1+b1
ii  imagemagick-6.q16 [imagemagick] 8:6.9.11.24+dfsg-1+b1
ii  libgl1  1.3.2-1
pn  libofficebean-java  
pn  libreoffice-grammarcheck
ii  libreoffice-help-en-us [libreoffice-help]   1:7.0.1~rc1-2
pn  libreoffice-l10n
ii  libreoffice-librelogo   1:7.0.1~rc1-2
ii  libreoffice-plasma  1:7.0.1~rc1-2
ii  libsane 1.0.27-3.2+b1
ii  libxrender1 1:0.9.10-1
pn  myspell-dictionary  
ii  mythes-en-us [mythes-thesaurus] 1:7.0.0-1
pn  

Bug#969298: Kerberos authentication broken

[Eric Dorland]

Package: offlineimap
Version: 7.3.3+dfsg1-1
Severity: important

Kerberos authentication appears to be broken. I believe this happened after my 
latest apt full-upgrade, though I think the only relevant package that changed 
was python-imaplib2. Debugging flag isn't giving me a lot to go on:

$ offlineimap -d ALL
WARNING:root:Using old interface name, consider using one of quiet, ttyui, 
machineui, syslog, basic, blinkenlights
OfflineIMAP 7.3.3
  Licensed under the GNU GPL v2 or any later version (with an OpenSSL exception)
INFO:OfflineImap:OfflineIMAP 7.3.3
  Licensed under the GNU GPL v2 or any later version (with an OpenSSL exception)
imaplib2 v2.57 (system), Python v2.7.18, OpenSSL 1.1.1g  21 Apr 2020
INFO:OfflineImap:imaplib2 v2.57 (system), Python v2.7.18, OpenSSL 1.1.1g  21 
Apr 2020
Now debugging for imap: IMAP protocol debugging
DEBUG:OfflineImap:Now debugging for imap: IMAP protocol debugging
Now debugging for maildir: Maildir repository debugging
DEBUG:OfflineImap:Now debugging for maildir: Maildir repository debugging
Now debugging for thread: Threading debugging
DEBUG:OfflineImap:Now debugging for thread: Threading debugging
Now debugging for : Other offlineimap related sync messages
DEBUG:OfflineImap:Now debugging for : Other offlineimap related sync messages
Account sync kuroneko:
 [thread]: Register new thread 'Account sync kuroneko' (account 'kuroneko')
DEBUG:OfflineImap:[thread]: Register new thread 'Account sync kuroneko' 
(account 'kuroneko')
 [imap]: Using authentication mechanisms ['GSSAPI', 'XOAUTH2', 'CRAM-MD5', 
'PLAIN', 'LOGIN']
DEBUG:OfflineImap:[imap]: Using authentication mechanisms ['GSSAPI', 'XOAUTH2', 
'CRAM-MD5', 'PLAIN', 'LOGIN']
 [maildir]: MaildirRepository initialized, sep is '.'
DEBUG:OfflineImap:[maildir]: MaildirRepository initialized, sep is '.'
 *** Processing account kuroneko
INFO:OfflineImap:*** Processing account kuroneko
 Establishing connection to forge.kuroneko.ca:993 (forge)
INFO:OfflineImap:Establishing connection to forge.kuroneko.ca:993 (forge)
 [imap]: forge: level 'tls_compat', version 'None'
DEBUG:OfflineImap:[imap]: forge: level 'tls_compat', version 'None'
 [imap]: Attempting GSSAPI authentication
DEBUG:OfflineImap:[imap]: Attempting GSSAPI authentication
 [imap]: Attempting PLAIN authentication
DEBUG:OfflineImap:[imap]: Attempting PLAIN authentication
Enter password for user 'eric':

Let me know if I can do something else to get info.

-- System Information:
Debian Release: bullseye/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.19.0-5-amd64 (SMP w/2 CPU threads)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages offlineimap depends on:
ii  python-imaplib2  2.57-5.1
ii  python-six   1.15.0-1
ii  python2  2.7.18-2

Versions of packages offlineimap recommends:
ii  python-socks  1.6.8+dfsg-1.1

Versions of packages offlineimap suggests:
pn  python-gssapi  

-- no debconf information

Bug#957262: gdigi: diff for NMU version 0.4.0-1.1

[Sudip Mukherjee]

Control: tags 957262 + patch
Control: tags 957262 + pending

Dear maintainer,

I've prepared an NMU for gdigi (versioned as 0.4.0-1.1) and
uploaded it to DELAYED/2. Please feel free to tell me if I
should cancel it.

--
Regards
Sudip

diff -Nru gdigi-0.4.0/debian/changelog gdigi-0.4.0/debian/changelog
--- gdigi-0.4.0/debian/changelog2013-01-29 20:01:44.0 +
+++ gdigi-0.4.0/debian/changelog2020-08-30 23:05:33.0 +0100
@@ -1,3 +1,10 @@
+gdigi (0.4.0-1.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Fix ftbfs with GCC-10. (Closes: #957262)
+
+ -- Sudip Mukherjee   Sun, 30 Aug 2020 23:05:33 
+0100
+
 gdigi (0.4.0-1) unstable; urgency=low
 
   * New upstream release.
diff -Nru gdigi-0.4.0/debian/patches/gcc-10.patch 
gdigi-0.4.0/debian/patches/gcc-10.patch
--- gdigi-0.4.0/debian/patches/gcc-10.patch 1970-01-01 01:00:00.0 
+0100
+++ gdigi-0.4.0/debian/patches/gcc-10.patch 2020-08-30 23:00:48.0 
+0100
@@ -0,0 +1,28 @@
+Description: Fix ftbfs with GCC-10
+
+Author: Sudip Mukherjee 
+Bug-Debian: https://bugs.debian.org/957262
+Forwarded: no
+
+---
+
+--- gdigi-0.4.0.orig/gdigi.h
 gdigi-0.4.0/gdigi.h
+@@ -42,7 +42,7 @@ gboolean debug_flag_is_set (debug_flags_
+ #define GNX_CABINET_WARP 263
+ #define GNX_CHANNEL_FS_MODE 264
+ 
+-unsigned char product_id;
++extern unsigned char product_id;
+ 
+ enum {
+   GNX3K_WAH_TYPE_CRY = 129,
+@@ -1105,7 +1105,7 @@ enum {
+ GENETX_TYPE_CABINET
+ };
+ 
+-enum {
++typedef enum {
+ GENETX_CHANNEL1 = 0,
+ GENETX_CHANNEL2 = 1,
+ GENETX_CHANNEL1_CUSTOM = 2,
diff -Nru gdigi-0.4.0/debian/patches/series gdigi-0.4.0/debian/patches/series
--- gdigi-0.4.0/debian/patches/series   2013-01-29 20:01:44.0 +
+++ gdigi-0.4.0/debian/patches/series   2020-08-30 23:00:01.0 +0100
@@ -1,2 +1,3 @@
 01-Modify-distclean-and-install-targets.patch
 02-Update-categories-in-gdigi-desktop-file.patch
+gcc-10.patch

Bug#547454: cdrom: Installed system 2.6.26 fails to boot if CD is inserted upside down in drive

[Chris Hofstaedtler]

Control: reassign -1 initscripts

Reassigning to initscripts, as thats the most likely source for the
mount try after network startup.

Bug#969286: [pkg-cryptsetup-devel] Bug#969286: cryptsetup-suspend: Make it possible to exclude key from initramfs

[Guilhem Moulin]

Control: severity -1 wishlist

Hi Birger,

On Sun, 30 Aug 2020 at 19:24:43 +, Birger Schacht wrote:
> This defeats the purpose of cryptsetup-suspend (at list in my threat
> model ;) ) - maybe there can be an option to *not* include the key in
> the initramdisk in the case of cryptsetup-suspend and it is only
> possible to unlock on resume using a password?

It's unclear to me what the best course of action is.  An option to
remove key material from the initramfs would need to be treated with
care, because the document you linked to also suggests to use key-slot=
which would also need to be removed (or the same passphrase be used).
For now I guess we can just document that this is not a supported threat
model.

Cheers,
-- 
Guilhem.


signature.asc
Description: PGP signature

Bug#969021: RFP: getmail6 -- Mail retriever with support for POP3, IMAP4 and SDPS

[Sudip Mukherjee]

On Sun, Aug 30, 2020 at 5:24 AM Osamu Aoki  wrote:
>
> On Thu, 2020-08-27 at 19:42 +0100, Sudip Mukherjee wrote:
> > On Thu, Aug 27, 2020 at 7:37 PM 積丹尼 Dan Jacobson  > > wrote:
> > > Actually I am guessing the current maintainer isn't reading these
> > > emails, and you Sudip, should consider non-maintainer uploads or
> > > steps
> > > on how to take over the project altogether from non-active
> > > maintainers.
> >
> > Thats package hijacking. And Osamu is an active developer. So, I
> > can't do that.
> > And besides, We are all at debconf now so please expect delayed
> > reply.
>
> Sudip
>
> You can hijack if you are competent DM.  I am happy with this.

iiuc, getmail6 is a fork of getmail and from the getmail mailing list
it appears that Charles (upstream of getmail) is also working on
python3 version of getmail which will be ready sometime in the future.
Keeping that in mind I will suggest that we keep getmail and getmail6
separate.
I have mailed upstream of getmail6 and will need to ask him about few
of my doubts regarding copyright, after I get the reply I will move it
to ITP, unless someone else wants to package it before me.

--
Regards
Sudip

Bug#968780: multiarch spam

[Adam Borowski]

> (W)Packages: Ignoring Package (python3-pyzfs,0.8.4-2,i386) : architecture: 
> i386 is not included in all,amd64

As the list of configured architectures is easy to fetch, what about giving
this message just once?  Or perhaps, not at all -- there's AFAIK no
non-cheating way to build a .changes file for more than one architecture.


Meow!
-- 
⢀⣴⠾⠻⢶⣦⠀
⣾⠁⢠⠒⠀⣿⡁
⢿⡄⠘⠷⠚⠋⠀ It's time to migrate your Imaginary Protocol from version 4i to 6i.
⠈⠳⣄

Bug#905014: Short status message about dhcpy6d in Debian Unstable and the Python 2 to 3 migration

[Axel Beckert]

Hi,

just a short update on dhcpy6d in Debian Unstable (and the Python 2 to
3 migration):

I'm planning to do an upload of the 1.0.1 upstream version to Debian
Unstable soon (next few days) to fix the Python 2 to 3 migration issue
(#936391) and get the package back in shape.

The RFA (#905014) still stands as I still don't have use for dhcpy6d
anymore (due to a job change a while ago). I can only test the package
under an artificial conditions in a temporary environment with e.g. a
handful Raspberry Pis and a desktop switch.

Regards, Axel
-- 
 ,''`.  |  Axel Beckert , https://people.debian.org/~abe/
: :' :  |  Debian Developer, ftp.ch.debian.org Admin
`. `'   |  4096R: 2517 B724 C5F6 CA99 5329  6E61 2FF9 CD59 6126 16B5
  `-|  1024D: F067 EA27 26B9 C3FC 1486  202E C09E 1D89 9593 0EDE

Bug#962350: /etc/init.d/checkfs.sh is not very robust, and fails on missing filesystems.

[Trek]

On Sat, 06 Jun 2020 07:27:18 -0700
Brad Lanam  wrote:

> /etc/init.d/checkfs.sh fails when trying to check a non-existent
> filesystem.  Apparently it is trying to run a fsck on a filesystem
> that was removed.

it seems to be working as expected, but you could disable that
behavior adding the nofail mount option to that partition inside the
/etc/fstab file: see fstab(5) and fsck(8) manual pages for more info

ciao!

Bug#969295: ITP: node-i18next-http-backend -- Simple i18next backend to be used in Node.js

[Nicolas Mora]

Package: wnpp
Severity: wishlist
Owner: Nicolas Mora 
X-Debbugs-CC: pkg-javascript-de...@lists.alioth.debian.org

* Package name : node-i18next-http-backend
Version : 1.0.18
Upstream Author : i18next
* URL : https://github.com/i18next/i18next-http-backend
* License : Expat
Programming Lang: Javascript
Description : Simple i18next backend to be used in Node.js

 This is a simple i18next backend to be used in Node.js, in the browser and
 for Deno. It will load resources from a backend server using the
 XMLHttpRequest or the fetch API.
 .
 It's based on the deprecated i18next-xhr-backend
 and can mostly be used as a drop-in replacement.
 .
 Node.js is an event-based server-side JavaScript engine.

Bug#969294: RFS: libhx/3.25-1~exp1 -- Documentation files for libhx

[Jörg Frings-Fürst]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Package: sponsorship-requests
Severity: normal

Dear mentors,

I am looking for a sponsor for my package "libhx":

   Package name: libhx
   Version : 3.25-1~exp1
   Upstream Author : Jan Engelhardt 
   URL : https://inai.de/projects/libhx/
   License : WTFPL-2+, LGPL-2.1+, GPL-2+
   Vcs : https://jff.email/cgit/libhx.git
   Section : libs

It builds those binary packages:

  libhx-doc - Documentation files for libhx
  libhx-dev - Development files for libhx
  libhx32 - C library providing queue, tree, I/O and utility functions

To access further information about this package, please visit the following
URL:

  https://mentors.debian.net/package/libhx/

Alternatively, one can download the package with dget using this command:

  dget -x 
https://mentors.debian.net/debian/pool/main/libh/libhx/libhx_3.25-1~exp1.dsc

or from 
 
 git https://jff.email/cgit/libhx.git/?h=release%2Fexperimental%2F3.25-1_exp1

Changes since the last upload:

 libhx (3.25-1~exp1) experimental; urgency=medium
 .
   * New upstream release.
   * Migrate to debhelper 13:
 - Bump minimum debhelper-compat version in debian/control to = 13.
   * Declare compliance with Debian Policy 4.5.0 (No changes needed).
   * Bump package name depending on the SONAME to libhx32.
   * debian/copyright:
 - Refresh years.
 - Add Upstream-Contact.
 - Replace Homepage.
 - Fix lintian *-globbing-patterns errors.
   * debian/control:
 - Change homepage.
 - Add Replaces / Breaks.
 - Add Rules-Requires-Root: no.
   * Refresh patch.
   * debian/libhx-dev.lintian-overrides:
 - Rename tags.

CU
Jörg

- -- 
New:
GPG Fingerprint: 63E0 075F C8D4 3ABB 35AB  30EE 09F8 9F3C 8CA1 D25D
GPG key (long) : 09F89F3C8CA1D25D
GPG Key: 8CA1D25D
CAcert Key S/N : 0E:D4:56

Old pgp Key: BE581B6E (revoked since 2014-12-31).

Jörg Frings-Fürst
D-54470 Lieser


git:  https://jff.email/cgit/

Threema:  SYR8SJXB
Wire: @joergfringsfuerst
Skype:joergpenguin
Ring: jff
Telegram: @joergfringsfuerst


My wish list: 
 - Please send me a picture from the nature at your home.

-BEGIN PGP SIGNATURE-

iQIzBAEBCgAdFiEEY+AHX8jUOrs1qzDuCfifPIyh0l0FAl9MDM4ACgkQCfifPIyh
0l1yShAAtSviBXBxJD76U3EtCm+IYGDTPhgQrcq51M5qF14+hfQYOZ+lsp0uvSNM
ffYyrLf4qu65TEO+CdV4loummjizyLFrUJPFCZu/thJ8HCaQmq16z346LQIX3Azh
t45tarfDYHPHbVVf1XiTzc7+uyeZXqqY7XWq646DooeuSQEJ3zNWEUksngBlWxiO
aS+hdW4DAfW1FtAUEcOGly9lTW1M+gA6Vrz7Bx2Gb4mWTkm7bJY2EYrKzPhHNlE/
KYrNmZabXFy0soq07djOvgGqfL+LkiiRWJw8pNfooQ/6VqKIqUc5anjhQ/mgVtV3
QWDeIJPSzUTmDOJFE57/S1mRnuiSEbSrFyfN8cP5MLMJ/HbSxKY3pN0ORqm6s2lM
15F2UCcRBUHV7CRZRCyJ/DF9pFMSF9HTvugLTM2Jp+PcibJxd+oHD+V6i8NGT0je
2BVPcmMhbrifZQZAfiiQWFBm6nAv3aXq4gr0QyewEpDzneQcFBxKVzERpW1v+X5i
2GG/epkUyE8pJC3t6woKFVbk4nwR+lpWJ7GAaOFBzXQdh79po3yoc9tA50ihU/7Q
L2VnqL7Kox1D48ZaezMuNO7ug2FvwBBdHqg5VYB5prRhoBx35CARlvxUN2kyMc2V
ePenZEB18gKD5xNdbQeAURsJ/sdAaIOw4PNBKizaXFHuamjFmOA=
=C54U
-END PGP SIGNATURE-

Bug#931867: /lib/init/init-d-script is sourcing /etc/default/* too late

[Trek]

On Thu, 11 Jul 2019 12:05:10 -0500
Justin Pasher  wrote:

> Moving it above the following block would ensure it's sourced first:

this is a chicken-egg problem: init-d-script sources /etc/default/$NAME
but $NAME is defined inside /etc/init.d/snmpd (that is $SCRIPTNAME)

init-d-script could be modified, for example to source at
first /etc/default/$(basename $SCRIPTNAME), but to retain backward
compatibility it should source also /etc/default/$NAME and it would
begin a sourcing mess with possible conflicts

i think the init-d-script sourcing feature is not really useful and the
right way to include variables it is to source the environment file
inside the /etc/init.d/snmpd script, like batmand does for example:

https://sources.debian.org/src/batmand/0.3.2-21/debian/batmand.init


another possible way it could be to define DAEMON_ARGS directly
inside /etc/default/snmpd, but I don't know how well it will play with
other init systems

ciao!

Bug#969293: uci2wb: Long option strings are handled incorrectly due to insufficient buffer size

[Asher Gordon]

Package: uci2wb
Version: 4.1+git200714-1
Severity: normal
X-Debbugs-Cc: Asher Gordon 

Dear Maintainer,

When a very long UCI option string is encountered by uci2wb, such as the
UCI_Variant option for engines with many variants like Multi-Variant
Stockfish or Fairy-Stockfish, it overflows the 'val' buffer, causing the
option to be handled incorrectly (at least when compiled with
optimization). The easy fix is to simply increase the buffer size as
below:
diff -ur a/UCI2WB.c b/UCI2WB.c
--- a/UCI2WB.c	2020-07-14 08:03:26.0 -0400
+++ b/UCI2WB.c	2020-08-30 16:17:06.311188760 -0400
@@ -331,7 +331,7 @@
 	}
 	}
 	else if(!strcmp(command, "option")) { // USI option: extract data fields
-	char name[80], type[80], buf[1024], val[256], *q;
+	char name[80], type[80], buf[1024], val[1024], *q;
 	int min=0, max=1e9; *val = 0;
 	if(p = strstr(line+6, " type ")) sscanf(p+1, "type %s", type), *p = '\n';
 	if(p = strstr(line+6, " min "))  sscanf(p+1, "min %d", ), *p = '\n';
Of course, this is hardly perfect, but a better solution would require a
lot more work.

Incidentally, I think the following quote may be relevant for uci2wb:

On the subject of C program indentation:
"In My Egotistical Opinion, most people's C programs should
be indented six feet downward and covered with dirt."
-- Blair P. Houghton

Thanks,
Asher

-- System Information:
Debian Release: bullseye/sid
  APT prefers testing-debug
  APT policy: (500, 'testing-debug'), (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.7.0-2-amd64 (SMP w/2 CPU threads)
Kernel taint flags: TAINT_FIRMWARE_WORKAROUND
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages uci2wb depends on:
ii  libc6  2.31-3

Versions of packages uci2wb recommends:
ii  eboard 1.1.3-0.3
pn  gpsshogi | eleeye  
ii  xboard 4.9.1-2

uci2wb suggests no packages.

-- no debconf information

-- 
One picture is worth 128K words.
   
I prefer to send and receive mail encrypted. Please send me your
public key, and if you do not have my public key, please let me
know. Thanks.

GPG fingerprint: 38F3 975C D173 4037 B397  8095 D4C9 C4FC 5460 8E68


signature.asc
Description: PGP signature

Bug#888656: flowcanvas: should this package be removed? (superseded by ganv)

[Jann Haber]

Hi all,

recently, src:ladish has been removed from testing for other reasons.
If there are no other rdeps by now, how about we continue here and remove 
flowcanvas (at least from testing)?

Cheers,
Jann

On Tue, 11 Sep 2018 03:29:08 +0100 Alessio Treglia  wrote:
> Hi all,
> 
> On Mon, Sep 10, 2018 at 11:39 PM, Paul Brossier  wrote:
> > hi again,
> >
> > thanks for answering Felipe.
> >
> > Alessio, if cadence was in the archive, would removing the UI from
> > ladish seem like a good solution?
> 
> I agree, it would most definitely be the right solution.
> 
> Thanks.
> 
> -- 
> Alessio Treglia  | www.alessiotreglia.com
> Debian Developer | ales...@debian.org
> Ubuntu Core Developer|  quadris...@ubuntu.com
> 0416 0004 A827 6E40 BB98 90FB E8A4 8AE5 311D 765A
> 
> 

Bug#969292: golang-github-dgraph-io-badger-dev: please include go build dependencies

[Alexandre Viau]

Package: badger
Version: 0.0~git20170725.0.b89cc31-2
Severity: normal

Hello,

It looks like golang-github-dgraph-io-badger-dev depends on almost
nothing, which causes build failures for packages that depend on it.

For example:

src/github.com/dgraph-io/badger/table/table.go:41:2: cannot find package
"github.com/dgraph-io/ristretto" in any of:
/usr/lib/go-1.14/src/github.com/dgraph-io/ristretto (from $GOROOT)


Please add the go build depencies to the dev package's dependencies.

Cheers,

-- 
Alexandre Viau
av...@debian.org



signature.asc
Description: OpenPGP digital signature

Bug#969291: RFS: sane-backends/1.0.31-1~experimental1 [RC] -- API library for scanners [transitional package]

[Jörg Frings-Fürst]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Package: sponsorship-requests
Severity: important

Dear mentors,

I am looking for a sponsor for my package "sane-backends":

   Package name: sane-backends
   Version : 1.0.31-1~experimental1
   Upstream Author : [fill in name and email of upstream]
   URL : http://www.sane-project.org
   License : GPL-3+, GPL-2+ with sane exception, Artistic, GFDL-1.1,
 GPL-2+, LGPL-2.1+, GPL-2
   Vcs : https://jff.email/cgit/sane-backends.git
   Section : graphics

It builds those binary packages:

  libsane - API library for scanners [transitional package]
  libsane-dev - API development library for scanners [development files]
  libsane1 - API library for scanners
  libsane-common - API library for scanners -- documentation and support files
  sane-utils - API library for scanners -- utilities

To access further information about this package, please visit the following
URL:

  https://mentors.debian.net/package/sane-backends/

Alternatively, one can download the package with dget using this command:

 dget -x 
https://mentors.debian.net/debian/pool/main/s/sane-backends/sane-backends_1.0.31-1~experimental1.dsc

or from

 git 
https://jff.email/cgit/sane-backends.git?h=release%2Fdebian%2F1.0.31-1_experimental1

Changes since the last upload:

 sane-backends (1.0.31-1~experimental1) experimental; urgency=medium
 .
   * New upstream release (Closes: #968949, #962539).
   * Add back libsane transitional package, to ease upgrades (Closes: #962936):
 - debian/control: Add package libsane as oldlibs.
   Thanks to Gianfranco Costamagna .
   * debian/copyright:
 - Fix lintian *-globbing-patterns errors.
 - Refresh to the new upstream release.
   * Convert debian/po/de.po to utf-8.
   * New patches:
 - debian/patches/0045-disable_lock_test_at_build_time.patch
 - debian/patches/0050-Use-python3-shebang.patch
 - debian/patches/0055-Fix_build_error.patch
   * debian/rules:
 - Use --enable-locking instead --disable-locking.
   * debian/control:
 - Add libpoppler-glib-dev to Build-Depends.
 - Add ipp-usb to libsane1 Recommends (Closes: #968953).
   * debian/libsane1.symbols:
 - Remove 7 not longer available symbols.
   * debian/saned@.service:
 - Switch Standard[Output|Error] from syslog to append:/var/log/saned.log.
 - New debian/sane-utils.logrotate to pack and remove old logs.
   * debian/libsane-common.lintian-overrides:
 - Rename tags.
   * debian/patches/0125-multiarch_dll_search_path.patch:
 - Add $(prefix)/lib64/sane to lib search path  (Closes: #931297).
   * Fix FTCBFS: (Closes: #948711)
 - 0060-cross.patch: Make gphoto2 detection use the host architecture
   pkg-config.
 - Build tools/sane-desc for the build architecture.
 - Thanks to Helmut Grohne .
   * Remove files no longer needed:
 - debian/saned.socket
 - debian/saned@.service

CU
Jörg

- -- 
New:
GPG Fingerprint: 63E0 075F C8D4 3ABB 35AB  30EE 09F8 9F3C 8CA1 D25D
GPG key (long) : 09F89F3C8CA1D25D
GPG Key: 8CA1D25D
CAcert Key S/N : 0E:D4:56

Old pgp Key: BE581B6E (revoked since 2014-12-31).

Jörg Frings-Fürst
D-54470 Lieser


git:  https://jff.email/cgit/

Threema:  SYR8SJXB
Wire: @joergfringsfuerst
Skype:joergpenguin
Ring: jff
Telegram: @joergfringsfuerst


My wish list: 
 - Please send me a picture from the nature at your home.

-BEGIN PGP SIGNATURE-
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=4Bof
-END PGP SIGNATURE-

Bug#969290: gnome package depends on Vinagre instead of Boxes

[Roman Riabenko]

Package: gnome
Version: 1:3.30+2
Severity: normal

Dear Maintainer,

I expected the gnome package to depend on gnome-boxes instead of vinagre.
I belive that it will be in line with the GNOME project [1].

[1] https://blogs.gnome.org/mcatanzaro/2016/09/21/gnome-3-22-core-apps/

Best wishes
Roman

-- System Information:
Debian Release: bullseye/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 5.7.0-3-amd64 (SMP w/6 CPU threads)
Kernel taint flags: TAINT_WARN
Locale: LANG=uk_UA.UTF-8, LC_CTYPE=uk_UA.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages gnome depends on:
ii  avahi-daemon 0.8-3
ii  cheese   3.34.0-1+b2
ii  cups-pk-helper   0.2.6-1+b1
ii  desktop-base 10.0.3
ii  evolution3.36.4-2
ii  evolution-plugins3.36.4-2
ii  file-roller  3.36.2-1
ii  gedit-plugins3.36.2-1
ii  gnome-calendar   3.36.2-1
ii  gnome-clocks 3.36.2-1
ii  gnome-color-manager  3.36.0-1
ii  gnome-core   1:3.30+2
ii  gnome-documents  3.34.0-2
ii  gnome-getting-started-docs   3.36.2-1
ii  gnome-maps   3.36.2-1
ii  gnome-music  3.36.3-1
ii  gnome-screenshot 3.36.0-1
ii  gnome-sound-recorder 3.34.0-1
ii  gnome-todo   3.28.1-5
ii  gnome-tweaks 3.34.0-3
ii  gnome-weather3.36.1-1
ii  gstreamer1.0-libav   1.16.2-2
ii  gstreamer1.0-plugins-ugly1.16.2-2.1+b1
ii  libgsf-bin   1.14.47-1
ii  libproxy1-plugin-networkmanager  0.4.15-13
ii  libreoffice-calc 1:7.0.1~rc1-2
ii  libreoffice-gnome1:7.0.1~rc1-2
ii  libreoffice-impress  1:7.0.1~rc1-2
ii  libreoffice-writer   1:7.0.1~rc1-2
ii  nautilus-sendto  3.8.6-3
ii  network-manager-gnome1.18.0-1
ii  orca 3.36.5-1
ii  rhythmbox3.4.4-2+b1
ii  rhythmbox-plugin-cdrecorder  3.4.4-2+b1
ii  rhythmbox-plugins3.4.4-2+b1
ii  rygel-playbin0.38.3-1
ii  rygel-tracker0.38.3-1
ii  seahorse 3.36-1
ii  shotwell 0.30.10-1+b1
ii  simple-scan  3.36.4-1
ii  totem-plugins3.34.1-2+b1
ii  vinagre  3.22.0-7
ii  vino 3.22.0-6
ii  xdg-user-dirs-gtk0.10-3

Versions of packages gnome recommends:
pn  gnome-games 
pn  nautilus-extension-brasero  
ii  transmission-gtk3.00-1

Versions of packages gnome suggests:
pn  alacarte 
pn  empathy  
pn  firefox-esr-l10n-all | firefox-l10n-all  
pn  gnome-remote-desktop 
pn  goobox | sound-juicer
pn  polari   
pn  webext-ublock-origin 

Versions of packages gnome-core depends on:
ii  adwaita-icon-theme3.36.1-2
ii  at-spi2-core  2.36.0-3
ii  baobab3.34.0-1
ii  caribou   0.4.21-7
ii  dconf-cli 0.36.0-1
ii  dconf-gsettings-backend   0.36.0-1
ii  eog   3.36.3-1
ii  epiphany-browser  3.36.3-1+b1
ii  evince3.36.7-1
ii  evolution-data-server 3.36.4-1
ii  firefox   80.0-1
ii  fonts-cantarell   0.111-2
ii  gdm3  3.36.2-1
ii  gedit 3.36.2-1
ii  gkbd-capplet  3.26.1-1
ii  glib-networking   2.64.3-2
ii  gnome-backgrounds 3.36.0-1
ii  gnome-bluetooth   3.34.1-1
ii  gnome-calculator  3.36.0-1
ii  gnome-characters  3.34.0-1
ii  gnome-contacts3.36.1-1
ii  gnome-control-center  1:3.36.4-1
ii  gnome-disk-utility3.36.3-1
ii  gnome-font-viewer 3.34.0-2+b1
ii  gnome-keyring 3.36.0-1
ii  gnome-logs3.36.0-2
ii  gnome-menus   3.36.0-1
ii  gnome-online-accounts 3.36.0-1
ii  gnome-online-miners   3.34.0-2
ii  gnome-session 3.36.0-2
ii  gnome-settings-daemon 3.36.1-1
ii  gnome-shell   3.36.5-1
ii  gnome-shell-extensions3.36.2-1
ii  gnome-software3.36.1-2
ii  gnome-sushi   3.34.0-2
ii  gnome-system-monitor  3.36.0-1
ii  gnome-terminal3.36.2-2
ii  gnome-themes-extra3.28-1
ii  

Bug#967997: rdiff-backup: maintainer address invalid

[Ansgar]

Control: tag -1 - moreinfo

Otto Kekäläinen writes:
> Blocking the package from entering testing due to Python team address
> issues is not fair, so decreasing severity. Also adding the tag
> 'moreinfo' since the request for more info is still open.

Usually these bugs are easy to fix; I'm not sure what additional
information you ask from me.  I don't maintain the package and thus
don't know the maintainer address.

Ansgar

Bug#969289: gnome package depends on two music managers

[Roman Riabenko]

Package: gnome
Version: 1:3.30+2
Severity: normal

Dear Maintainer,

gnome package depends on both rhythmbox and gnome-music, which both provide
similar functionality: they are music managing applications and players.
I expected that to have full GNOME experience one music manager will be 
provided.
So, gnome package should depend on either of them or one of them.

Best wishes
Roman

-- System Information:
Debian Release: bullseye/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 5.7.0-3-amd64 (SMP w/6 CPU threads)
Locale: LANG=uk_UA.UTF-8, LC_CTYPE=uk_UA.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages gnome depends on:
ii  avahi-daemon 0.8-3
ii  cheese   3.34.0-1+b2
ii  cups-pk-helper   0.2.6-1+b1
ii  desktop-base 10.0.3
ii  evolution3.36.4-2
ii  evolution-plugins3.36.4-2
ii  file-roller  3.36.2-1
ii  gedit-plugins3.36.2-1
ii  gnome-calendar   3.36.2-1
ii  gnome-clocks 3.36.2-1
ii  gnome-color-manager  3.36.0-1
ii  gnome-core   1:3.30+2
ii  gnome-documents  3.34.0-2
ii  gnome-getting-started-docs   3.36.2-1
ii  gnome-maps   3.36.2-1
ii  gnome-music  3.36.3-1
ii  gnome-screenshot 3.36.0-1
ii  gnome-sound-recorder 3.34.0-1
ii  gnome-todo   3.28.1-5
ii  gnome-tweaks 3.34.0-3
ii  gnome-weather3.36.1-1
ii  gstreamer1.0-libav   1.16.2-2
ii  gstreamer1.0-plugins-ugly1.16.2-2.1+b1
ii  libgsf-bin   1.14.47-1
ii  libproxy1-plugin-networkmanager  0.4.15-13
ii  libreoffice-calc 1:7.0.1~rc1-2
ii  libreoffice-gnome1:7.0.1~rc1-2
ii  libreoffice-impress  1:7.0.1~rc1-2
ii  libreoffice-writer   1:7.0.1~rc1-2
ii  nautilus-sendto  3.8.6-3
ii  network-manager-gnome1.18.0-1
ii  orca 3.36.5-1
ii  rhythmbox3.4.4-2+b1
ii  rhythmbox-plugin-cdrecorder  3.4.4-2+b1
ii  rhythmbox-plugins3.4.4-2+b1
ii  rygel-playbin0.38.3-1
ii  rygel-tracker0.38.3-1
ii  seahorse 3.36-1
ii  shotwell 0.30.10-1+b1
ii  simple-scan  3.36.4-1
ii  totem-plugins3.34.1-2+b1
ii  vinagre  3.22.0-7
ii  vino 3.22.0-6
ii  xdg-user-dirs-gtk0.10-3

Versions of packages gnome recommends:
pn  gnome-games 
pn  nautilus-extension-brasero  
ii  transmission-gtk3.00-1

Versions of packages gnome suggests:
pn  alacarte 
pn  empathy  
pn  firefox-esr-l10n-all | firefox-l10n-all  
pn  gnome-remote-desktop 
pn  goobox | sound-juicer
pn  polari   
pn  webext-ublock-origin 

Versions of packages gnome-core depends on:
ii  adwaita-icon-theme3.36.1-2
ii  at-spi2-core  2.36.0-3
ii  baobab3.34.0-1
ii  caribou   0.4.21-7
ii  dconf-cli 0.36.0-1
ii  dconf-gsettings-backend   0.36.0-1
ii  eog   3.36.3-1
ii  epiphany-browser  3.36.3-1+b1
ii  evince3.36.7-1
ii  evolution-data-server 3.36.4-1
ii  firefox   80.0-1
ii  fonts-cantarell   0.111-2
ii  gdm3  3.36.2-1
ii  gedit 3.36.2-1
ii  gkbd-capplet  3.26.1-1
ii  glib-networking   2.64.3-2
ii  gnome-backgrounds 3.36.0-1
ii  gnome-bluetooth   3.34.1-1
ii  gnome-calculator  3.36.0-1
ii  gnome-characters  3.34.0-1
ii  gnome-contacts3.36.1-1
ii  gnome-control-center  1:3.36.4-1
ii  gnome-disk-utility3.36.3-1
ii  gnome-font-viewer 3.34.0-2+b1
ii  gnome-keyring 3.36.0-1
ii  gnome-logs3.36.0-2
ii  gnome-menus   3.36.0-1
ii  gnome-online-accounts 3.36.0-1
ii  gnome-online-miners   3.34.0-2
ii  gnome-session 3.36.0-2
ii  gnome-settings-daemon 3.36.1-1
ii  gnome-shell   3.36.5-1
ii  gnome-shell-extensions3.36.2-1
ii  gnome-software3.36.1-2
ii  gnome-sushi   3.34.0-2
ii  gnome-system-monitor  3.36.0-1
ii  gnome-terminal

Bug#969280: provide transitional dummy package qdbus

[Helmut Grohne]

Hi Lisandro,

On Sun, Aug 30, 2020 at 03:33:56PM -0300, Lisandro Damián Nicanor Pérez Meyer 
wrote:
> In which specific case this would be needed? A normal user should not
> install qdbus by hand, an a developer should be able to quickly find it.
> But of course I might be missing some use case.

I'm wondering whether I count as normal user or as developer here.
Likely I'm not a normal user, because I installed it by hand. I failed
to quickly find it and had to ask around. But the key here is: I should
not need to find it. If there was a transitional dummy package, it would
seamlessly upgrade without me hunting it. This is precisely what we have
transitional dummy packages for.

Helmut

Bug#882210: ITP: jgmenu -- simple modern standalone X11 menu

[Leandro Cunha]

Hi,

I intend to place this package in the official Debian archives. I am going
to be working on it according to the Debian Developer Reference and Debian
Policy. The bug has already been changed to ITP and it is now the
construction of this package for this to be completed.
Thanks!

-- 
Cheers,
Leandro Cunha
Debian Contributor, developer and student in Systems of Information course.

Bug#969172: buster-pu: package asterisk/1:16.2.1~dfsg-1+deb10u2

[Adam D. Barratt]

Control: tags -1 + confirmed

On Fri, 2020-08-28 at 16:56 +0200, Bernhard Schmidt wrote:
> I would like to make a stable-update for asterisk.
> 
> It fixes three minor CVEs (marked no-dsa)
> 
> #940060 CVE-2019-15297: AST-2019-004: Crash when negotiating
> for T.38 with a declined stream
> #947377   CVE-2019-18610: AST-2019-007: AMI user could execute system
> commands
> #947381   CVE-2019-18790: AST-2019-006: SIP request can change
> address of a SIP peer
> 
> It fixes one segmentation fault due to a wrong datatype when IPv6 is
> in use
[...]
> and one use-after-free that causes a misleading error message to
> appear

Please go ahead.

Regards,

Adam

Bug#969288: src:r-cran-htmltools: fails to migrate to testing for too long: autopkgtest regression

[Paul Gevers]

Source: r-cran-htmltools
Version: 0.4.0-2
Severity: serious
Control: close -1 0.5.0-1
Tags: sid bullseye
User: release.debian@packages.debian.org
Usertags: out-of-sync

Dear maintainer(s),

As recently announced [1], the Release Team now considers packages that
are out-of-sync between testing and unstable for more than 60 days as
having a Release Critical bug in testing. Your package
src:r-cran-htmltools in its current version in unstable has been trying
to migrate for 60 days [2]. Hence, I am filing this bug.

If a package is out of sync between unstable and testing for a longer
period, this usually means that bugs in the package in testing cannot be
fixed via unstable. Additionally, blocked packages can have impact on
other packages, which makes preparing for the release more difficult.
Finally, it often exposes issues with the package and/or
its (reverse-)dependencies. We expect maintainers to fix issues that
hamper the migration of their package in a timely manner.

This bug will trigger auto-removal when appropriate. As with all new
bugs, there will be at least 30 days before the package is auto-removed.

I have immediately closed this bug with the version in unstable, so if
that version or a later version migrates, this bug will no longer affect
testing. I have also tagged this bug to only affect sid and bullseye, so
it doesn't affect (old-)stable.

If you believe your package is unable to migrate to testing due to
issues beyond your control, don't hesitate to contact the Release Team.

Paul

[1] https://lists.debian.org/debian-devel-announce/2020/02/msg5.html
[2] https://qa.debian.org/excuses.php?package=r-cran-htmltools




signature.asc
Description: OpenPGP digital signature

Bug#968589: Need to restart internet connections upon upgrade, else no names can be resolved

[積丹尼 Dan Jacobson]

Nameserver running fine.

  # aptitude reinstall systemd
  Reinstalling systemd (246.3-1) over (246.3-1) ...

Nameserver now not running fine. Can only reach IP addresses. Can't
resolve names.

  poff; ifconfig ... down; sleep ...; ifconfig ... up; pon

fixed it this time. Didn't need full reboot.

See also
https://bugs.debian.org/cgi-bin/bugreport.cgi?att=1;bug=968589;filename=reportbug-systemd-backup-20200819-23352-5i1cr8wc.gz;msg=36

Bug#969287: raspi-firmware: Dual HDMI support for RaspberryPI4

[ibu radempa]

Package: raspi-firmware
Version: 1.20200601-3
Severity: wishlist

I'd like to run two HDMI displays on RaspberryPI4.
I've tried hard, but cannot get it to work.
It works with RaspberryPI OS and obviously also on gentoo.
I have limited knowledge w.r.t. video; maybe I have overlooked
something very simple. Below I'm copying my findings.

## Dual HDMI support for RaspberryPI4

RaspberryPI4 has two HDMI connectors and the GPU can produce two
video signals (in case of 2 connected 4k-monitors only at 30Hz, both).

Currently, Debian only has support for one monitor (connected to
HDMI0, that one of the two connectors which is near the power connector).

### Current situation

The current situation (with kernel 5.8 from experimental and otherwise
the family 4 image from https://raspi.debian.net/tested-images/ with
updates) is the following:

* The code in EEPROM reads config.txt from the first partition of the
  sdcard. (bootcode.bin is not used on the PI4.)
* Therein the start_file and fixup_file files can be defined,
  defaulting to start4.elf and fixup4.dat, respectively.
  start4.elf is a binary blob with GPU firmware from Broadcom.
  It gets loaded.
* Before booting linux the device tree bcm2711-rpi-4-b.dtb gets
  patched with a "chosen" section containing framebuffer@3e3cf000.
* The kernel and initramfs defined in config.txt are loaded and
  the kernel is executed with some generated boot params (to which
  custom params can be appended using cmdline=... in config.txt),
  among them video=HDMI-A-1:1920x1080M@60 and if a second HDMI display
  is detected at that time, also video=HDMI-A-2:1920x1080M@60.
* Lacking graphics card devices the kernel ignores the video=...
  params and instead initializes a simple-framebuffer [1] as
  obtained from the device tree:
```
Feb 14 11:11:59 rpi4 kernel: simple-framebuffer 3e3cf000.framebuffer: 
framebuffer at 0x3e3cf000, 0x7f8000 bytes, mapped to 0x(ptrval)
Feb 14 11:11:59 rpi4 kernel: simple-framebuffer 3e3cf000.framebuffer: 
format=a8r8g8b8, mode=1920x1080x32, linelength=7680
Feb 14 11:11:59 rpi4 kernel: Console: switching to colour frame buffer device 
240x67
Feb 14 11:11:59 rpi4 kernel: simple-framebuffer 3e3cf000.framebuffer: fb0: 
simplefb registered!
```
* The X server also uses [2] this /dev/fb0.
  No /dev/dri/* is present.
  No /sys/devices/platform/gpu exists.
  No DRM, no KMS.

### RaspberryPi OS without vc4

I have looked a bit into how RaspberryPi OS handles the case of two HDMI
displays. As long as the vc4 driver is not enabled in config.txt, it
uses a kernel module bcm2708_fb (
https://github.com/raspberrypi/linux/blob/rpi-5.4.y/drivers/video/fbdev/bcm2708_fb.c
) from broadcom for framebuffer setup:
```
Aug 30 09:07:43 raspberrypi kernel: bcm2708_fb soc:fb: FB found 2 display(s)
Aug 30 09:07:43 raspberrypi kernel: Console: switching to colour frame buffer 
device 240x67
Aug 30 09:07:43 raspberrypi kernel: bcm2708_fb soc:fb: Registered framebuffer 
for display 0, size 1920x1080
Aug 30 09:07:43 raspberrypi kernel: bcm2708_fb soc:fb: Registered framebuffer 
for display 1, size 1920x1080
```
And obviously this can handle two displays. (There is just one framebuffer
device, /dev/fb0.) The second display is however not used by X; it displays
a splashscreen with a coloful raspberry and and some log info during startup.

bcm2708_fb is not in mainline linux.

The firmware also adds kernel params for this module:
bcm2708_fb.fbwidth=1920
bcm2708_fb.fbheight=1080
bcm2708_fb.fbswap=1
And the video=... params are not there.

Later also a module rpivid_mem gets loaded:
```
Aug 30 09:07:43 raspberrypi kernel: rpivid-mem feb0.hevc-decoder: 
rpivid-hevcmem initialised: Registers at 0xfeb0 length 0x0001
Aug 30 09:07:43 raspberrypi kernel: rpivid-mem feb1.rpivid-local-intc: 
rpivid-intcmem initialised: Registers at 0xfeb1 length 0x1000
Aug 30 09:07:43 raspberrypi kernel: rpivid-mem feb2.h264-decoder: 
rpivid-h264mem initialised: Registers at 0xfeb2 length 0x0001
Aug 30 09:07:43 raspberrypi kernel: rpivid-mem feb3.vp9-decoder: 
rpivid-vp9mem initialised: Registers at 0xfeb3 length 0x0001
```

### RaspberryPi OS with vc4

Only if I enable device tree overlays for vc4 (dtoverlay=vc4-fkms-v3d in
config.txt, or dtoverlay=vc4-kms-v3d), X runs on both displays.

The kernel is executed with params
video=HDMI-A-1:1920x1080M@60 video=HDMI-A-2:1920x1080M@60 .

Looking at dmesg we find that now several modules get loaded:

```
Aug 30 05:23:58 raspberrypi kernel: vchiq: vchiq_init_state: slot_zero = 
(ptrval)
...
Aug 30 05:23:58 raspberrypi kernel: rpivid-mem feb0.hevc-decoder: 
rpivid-hevcmem initialised: Registers at 0xfeb0 length 0x0001
Aug 30 05:23:58 raspberrypi kernel: rpivid-mem feb1.rpivid-local-intc: 
rpivid-intcmem initialised: Registers at 0xfeb1 length 0x1000
Aug 30 05:23:58 raspberrypi kernel: rpivid-mem feb2.h264-decoder: 
rpivid-h264mem initialised: Registers at 0xfeb2 

Bug#969163: buster-pu: package npm/5.8.0+ds6-4+deb10u2

[Adam D. Barratt]

Control: tags -1 + confirmed

On Fri, 2020-08-28 at 14:00 +0200, Xavier Guimard wrote:
> npm is vulnerable to CVE-2020-15095: password in URL are stored in
> logs.
> 

Please go ahead.

Regards,

Adam

Bug#968037: buster-pu: package facter/3.11.0-2+deb10u1

[Adam D. Barratt]

Control: tags -1 + confirmed

On Sun, 2020-08-16 at 10:54 +0200, Sven Hoexter wrote:
> On Sat, Aug 15, 2020 at 05:45:51PM +0100, Adam D. Barratt wrote:
> > On Fri, 2020-08-07 at 10:46 +0200, Sven Hoexter wrote:
> > > if you run facter in the context of Googles GCE it will fetch
> > > information from Googles metadata service, but form an old
> > > beta API endpoint. This one is due to get shutdown by the
> > > end of September 2020.
> > > https://cloud.google.com/compute/docs/migrating-to-v1-metadata-server
> > 
> > Do we have an idea of how widely used this particular combination
> > is?
> 
> TBH no idea. We use it in combination with ansible on GCE VMs. 
[...]
> > The reason I ask is that, even if we pull the 10.6 point release
> > back in line with where it would have been if 10.5 hadn't been
> > delayed for the Grub issues, that would still be during the second
> > half of September and quite close to the shutdown date.
> 
> Well our internal ticket about Google urging us to move away from the
> old API endpoint was lingering for several weeks. I guess they also
> pinged other customers and nobody cared enough to investigate it or
> at least report a bug in the bts. So probably that issue is less
> important/urgen than I initially thought. None the less I still
> believe it's sensible to fix it in a forthcoming point release,
> whenever that will be.

Thanks. Please feel free to upload.

Regards,

Adam

Bug#969285: src:openvswitch: fails to migrate to testing for too long: FTBFS on armel and unresolved RC bug

[Paul Gevers]

Source: openvswitch
Version: 2.13.0+dfsg1-10
Severity: serious
Control: close -1 2.13.0+dfsg1-12
Tags: sid bullseye
User: release.debian@packages.debian.org
Usertags: out-of-sync
Control: block -1 by 966921

Dear maintainer(s),

As recently announced [1], the Release Team now considers packages that
are out-of-sync between testing and unstable for more than 60 days as
having a Release Critical bug in testing. Your package src:openvswitch
in its current version in unstable has been trying to migrate for 60
days [2]. Hence, I am filing this bug.

If a package is out of sync between unstable and testing for a longer
period, this usually means that bugs in the package in testing cannot be
fixed via unstable. Additionally, blocked packages can have impact on
other packages, which makes preparing for the release more difficult.
Finally, it often exposes issues with the package and/or
its (reverse-)dependencies. We expect maintainers to fix issues that
hamper the migration of their package in a timely manner.

This bug will trigger auto-removal when appropriate. As with all new
bugs, there will be at least 30 days before the package is auto-removed.

I have immediately closed this bug with the version in unstable, so if
that version or a later version migrates, this bug will no longer affect
testing. I have also tagged this bug to only affect sid and bullseye, so
it doesn't affect (old-)stable.

If you believe your package is unable to migrate to testing due to
issues beyond your control, don't hesitate to contact the Release Team.

Paul

[1] https://lists.debian.org/debian-devel-announce/2020/02/msg5.html
[2] https://qa.debian.org/excuses.php?package=openvswitch




signature.asc
Description: OpenPGP digital signature

Bug#969286: cryptsetup-suspend: Make it possible to exclude key from initramfs

[Birger Schacht]

Package: cryptsetup-suspend
Version: 2:2.3.3-3+exp1
Severity: normal
X-Debbugs-Cc: bir...@debian.org

Dear Maintainer,

when having /boot on an encrypted root partition and adding a key to a
second key slot (as described in [0]) cryptsetup-suspend uses this key
to unlock the volume on resume.
This defeats the purpose of cryptsetup-suspend (at list in my threat
model ;) ) - maybe there can be an option to *not* include the key in
the initramdisk in the case of cryptsetup-suspend and it is only
possible to unlock on resume using a password?

cheers,
Birger

[0] 
https://cryptsetup-team.pages.debian.net/cryptsetup/encrypted-boot.html#avoiding-the-extra-password-prompt

-- Package-specific info:

-- System Information:
Debian Release: bullseye/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 5.7.0-2-amd64 (SMP w/4 CPU threads)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages cryptsetup-suspend depends on:
ii  cryptsetup-initramfs  2:2.3.3-1
ii  libc6 2.31-3
ii  libcryptsetup12   2:2.3.3-1+b1
ii  systemd   246-2

cryptsetup-suspend recommends no packages.

cryptsetup-suspend suggests no packages.

-- no debconf information

Bug#968846: buster-pu: package ros-actionlib/1.11.15-1

[Adam D. Barratt]

Control: tags -1 + confirmed

On Sat, 2020-08-22 at 11:43 +0200, Jochen Sprickerhof wrote:
> The ros-actionlib version in buster is affected affected by
> CVE-2020-10289 which was flagged no-dsa by the security team.
> 

Please go ahead.

Regards,

Adam

Bug#968723: buster-pu: package incron/0.5.12-1+deb10u1

[Adam D. Barratt]

Control: tags -1 + confirmed

On Thu, 2020-08-20 at 18:18 +0200, Emmanuel Bouthenot wrote:
> I'd like to upload incron/0.5.12-1+deb10u1 to buster to fix #930526.
> 
> Incron creates a lot zombies processes and make the whole system
> unstable.
> 

Please go ahead.

Regards,

Adam

Bug#969284: xorg-server: FTBFS: configure: error: Xwayland build explicitly requested, but required modules not found

[Salvatore Bonaccorso]

Source: xorg-server
Version: 2:1.20.8-2
Severity: serious
Justification: FTBFS
X-Debbugs-Cc: car...@debian.org

Hi

When trying to build xorg-server 2:1.20.8-2 in unstable, the build
fails (on configure already) with:

configure: error: Xwayland build explicitly requested, but required modules not 
found

full build log though attached (and I have not further checked if
another dependency is actually at fault).

Regards,
Salvatore


xorg-server_1.20.8-2_amd64.build.xz
Description: application/xz

Bug#969274: libc++-11-dev includes libc++abi-11-dev headers

[Raul Tambre]

Package: libc++-11-dev
Version: 1:11.0.0~+rc2-4
Severity: normal

The libc++-11-dev package includes libc++abi headers __cxxabi_config.h and 
cxxabi.h.
I don't they belong in there and they're also already in libc++abi-11-dev.

-- System Information:
Debian Release: bullseye/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 5.7.0-3-amd64 (SMP w/8 CPU threads)
Locale: LANG=en_IE.UTF-8, LC_CTYPE=en_IE.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_IE:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages libc++-11-dev depends on:
ii  libc++1-11  1:11.0.0~+rc2-4

libc++-11-dev recommends no packages.

libc++-11-dev suggests no packages.

-- no debconf information

Bug#967997: rdiff-backup: maintainer address invalid

[Otto Kekäläinen]

Control: tags -1 moreinfo
Control: severity -1 normal
Severity: normal

Blocking the package from entering testing due to Python team address
issues is not fair, so decreasing severity. Also adding the tag
'moreinfo' since the request for more info is still open.

Bug#969283: elinks: hangs connecting to https://cbc.ca (even though Links 2, Lynx, Falkon and others have no problem)

[Axel Stammler]

Package: elinks
Version: 0.13~20190125-3
Severity: normal

Dear Maintainer,

elinks 'https://cbc.ca'

hangs showing an empty screen with this status bar (in which only the time keeps
changing):

Received 0 B, average speed 0 B/s, current speed 0 B/s, elapsed time 0:38

-- System Information:
Debian Release: 10.5
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.19.0-10-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_IE.UTF-8, LC_CTYPE=en_IE.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_IE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages elinks depends on:
ii  elinks-data   0.13~20190125-3
ii  libbz2-1.01.0.6-9.2~deb10u1
ii  libc6 2.28-10
ii  libcom-err2   1.44.5-1+deb10u3
ii  libev41:4.25-1
ii  libexpat1 2.2.6-2+deb10u1
ii  libfsplib00.11-2
ii  libgcrypt20   1.8.4-5
ii  libgnutls30   3.6.14-2
ii  libgpm2   1.20.7-5
ii  libgssapi-krb5-2  1.17-3
ii  libidn11  1.33-2.2
ii  libk5crypto3  1.17-3
ii  libkrb5-3 1.17-3
ii  liblua5.1-0   5.1.5-8.1+b2
ii  liblzma5  5.2.4-1
ii  libperl5.28   5.28.1-6+deb10u1
ii  libtinfo6 6.1+20181013-2+deb10u2
ii  libtre5   0.8.0-6

elinks recommends no packages.

Versions of packages elinks suggests:
ii  elinks-doc  0.13~20190125-3

-- debconf-show failed

Bug#969280: provide transitional dummy package qdbus

[Lisandro Damián Nicanor Pérez Meyer]

Hi Helmut!

El dom., 30 ago. 2020 14:54, Helmut Grohne  escribió:

> Package: qdbus-qt5
> Version: 5.14.2-3
>
> The qdbus package vanished in the qt4 removal. It appears like one has
> to stop using this software, unless one happens to know that there is a
> qt5 variant of it. To a basic user, these are indistinguishable. I argue
> that therefore qdbus-qt5 should just fill the gap and ship a
> transitional dummy package called qdbus, which depends on qdbus-qt5.
> That'd make upgrading a lot smoother. Thanks for considering.
>

In which specific case this would be needed? A normal user should not
install qdbus by hand, an a developer should be able to quickly find it.
But of course I might be missing some use case.

>

Bug#906288: StartLXDE replace XDG_DATA_DIRS

[Maxwell Aguiar Silva]

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=906288

Dear Maintainer,

   * What led up to the situation?
When I install snaps in a freshly installed Debian 9 with LXDE. The
snaps with .desktop should be populated automatically inside the menu,
but it didn't.

   * What exactly did you do (or not do) that was effective (or
 ineffective)?
After thorough investigation (logged
inhttps://forum.snapcraft.io/t/snaps-not-appearing-in-debian9-stretch-lxde-menu-not-wayland-bug/6866/14),

I discovered the /usr/bin/lxde has this line overrides all the
XDG_DATA_DIRS set by Xsession.d configuration files:
```
export
XDG_DATA_DIRS="/usr/local/share/:/usr/share/:/usr/share/gdm/:/var/lib/menu-xdg/"
```

By replacing that line with a proper checking before overwriting, the
issue disappeared and all the custom paths appears in the menu properly.
```
xdg_path="/usr/local/share/:/usr/share/:/usr/share/gdm/:/var/lib/menu-xdg/"
if [ -z "$XDG_DATA_DIRS" ]; then
export XDG_DATA_DIRS="$xdg_path"
else
if [ -z "$(echo "$XDG_DATA_DIRS" | grep "$xdg_path")" ]; then
export XDG_DATA_DIRS="${XDG_DATA_DIRS}:$xdg_path"
fi
fi
unset xdg_path
```

   * What was the outcome of this action?
All custom .desktop path are properly populated without manual
intervention.

   * What outcome did you expect instead?
I expect all the .desktop are populated properly, without monkey
patching anything created by the package.

Currently, those UI-based snaps are quite hard to access, but not
impossible.

   * p/s
I'm too new to debian mailing list and reportbug tool. In case of
silence, please reach me at kean.ho.c...@zoralab.com. I'm willing
to help.


-- System Information:
Debian Release: 9.5
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-7-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8),
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages openbox-lxde-session depends on:
ii  lxde-common  0.99.2-3
ii  lxsession0.5.3-2
ii  openbox  3.6.1-4

openbox-lxde-session recommends no packages.

openbox-lxde-session suggests no packages.

-- no debconf information

Bug#969282: golang-goleveldb: Please upload a newer version

[Alexandre Viau]

Package: golang-goleveldb
Version: 0.0~git20170725.0.b89cc31-2
Severity: wishlist

Hello!

I am looking into packaging newer versions of Syncthing and looks like
they need a newer version of golang-goleveldb.

Would you be willing to upload a newer version?

Thank you :)

-- 
Alexandre Viau
av...@debian.org



signature.asc
Description: OpenPGP digital signature

Bug#969281: btscanner FTCBFS: hard codes the build architecture pkg-config

[Helmut Grohne]

Source: btscanner
Version: 2.1-8
Tags: patch upstream
User: debian-cr...@lists.debian.org
Usertags: ftcbfs

btscanner fails to cross build from source, because configure.in hard
codes the build architecture pkg-config. It is best to use the standard
PKG_CHECK_MODULES macro instead. Please consider applying the attached
patch.

Helmut
--- btscanner-2.1.orig/configure.in
+++ btscanner-2.1/configure.in
@@ -39,9 +39,10 @@
 #CFLAGS="-g -ggdb"
 
 # config for libxml2 check
-CFLAGS="$CFLAGS `pkg-config libxml-2.0 --cflags`"
+PKG_CHECK_MODULES([XML2],[libxml-2.0])
+CFLAGS="$CFLAGS $XML2_CFLAGS"
 CPPFLAGS="$CPPFLAGS"
-LDFLAGS="$LDFLAGS `pkg-config libxml-2.0 --libs`"
+LDFLAGS="$LDFLAGS $XML2_LIBS"
 
 # check for libxml2 heads/libs
 AC_CHECK_HEADERS([libxml/parser.h libxml/tree.h],,

Bug#969280: provide transitional dummy package qdbus

[Helmut Grohne]

Package: qdbus-qt5
Version: 5.14.2-3

The qdbus package vanished in the qt4 removal. It appears like one has
to stop using this software, unless one happens to know that there is a
qt5 variant of it. To a basic user, these are indistinguishable. I argue
that therefore qdbus-qt5 should just fill the gap and ship a
transitional dummy package called qdbus, which depends on qdbus-qt5.
That'd make upgrading a lot smoother. Thanks for considering.

Helmut

Bug#968589: Need to restart internet connections upon upgrade, else no names can be resolved

[Michael Biebl]

On Tue, 18 Aug 2020 13:53:34 +0800 =?utf-8?B?56mN5Li55bC8?= Dan Jacobson
 wrote:
> Package: systemd
> Version: 246.2-1
> 
> After installing this package,
> one needs to restart their internet connection,
> else no sites can be resolved:
> $ w3m example.com
> w3m: Can't load example.com.
> 
> 

This is not a user support forum.
Please don't file any such contentless bug reports anymore, they are
just a waste of time.
If you are not willing to spend any effort into writing a proper bug
report, I'm not willing to spend any effort either.




signature.asc
Description: OpenPGP digital signature

Bug#840897: general: framebuffer modules for non-dri graphics cards are not loaded

[Michael Biebl]

Control: reassign -1 udev
Control: tags -1 + moreinfo

Am 30.08.20 um 12:21 schrieb Chris Hofstaedtler:
> Control: reassign -1 systemd
> 
> * Michal Suchanek :
>> So I would like the fbdev modules removed from whatever blacklist prevents
>> loading them and have them loaded on systems that don't have dri modules to
>> handle graphics.
> 
> AFAICT systemd ships the fbdev blacklist nowadays, reassigning
> there.

The udev package does (but it's src:systemd, so close enough) in
/lib/modprobe.d/fbdev-blacklist.conf

I don't know the history behind this file though, it predates the
udev/systemd merge and a quick search in the old src:udev package did
not really yield anything useful.

Hopefully Marco can chime in here and provide some context why it was
added and if it's still required thoday.

Regards,
Michael




signature.asc
Description: OpenPGP digital signature

Bug#969279: mutt - could not create tempory files

[Hans-J. Ullrich]

Package: mutt
Version: 1.14.6-1
Severity: important

Dear Maintainer,

latest mutt in debiena testing hangs with the message "could not create 
temporary files" when I want to delete messages (Shift + d, and then .*, then 
quit mutt).

This issue happened already in 2015. 

Would be nice, if you could have a look at it. Thank you very much!

Best

Hans


-- Package-specific info:
Mutt 1.14.6 (2020-07-11)
Copyright (C) 1996-2020 Michael R. Elkins and others.
Mutt comes with ABSOLUTELY NO WARRANTY; for details type `mutt -vv'.
Mutt is free software, and you are welcome to redistribute it
under certain conditions; type `mutt -vv' for details.

System: Linux 5.7.0-2-amd64 (x86_64)
ncurses: ncurses 6.2.20200212 (compiled with 6.2)
libidn2: 2.3.0 (compiled with 2.3.0)
hcache backend: tokyocabinet 1.4.48

Compiler:
Using built-in specs.
COLLECT_GCC=gcc
COLLECT_LTO_WRAPPER=/usr/lib/gcc/x86_64-linux-gnu/10/lto-wrapper
OFFLOAD_TARGET_NAMES=nvptx-none:amdgcn-amdhsa:hsa
OFFLOAD_TARGET_DEFAULT=1
Target: x86_64-linux-gnu
Configured with: ../src/configure -v --with-pkgversion='Debian 10.2.0-3' 
--with-bugurl=file:///usr/share/doc/gcc-10/README.Bugs 
--enable-languages=c,ada,c++,go,brig,d,fortran,objc,obj-c++,m2 --prefix=/usr 
--with-gcc-major-version-only --program-suffix=-10 
--program-prefix=x86_64-linux-gnu- --enable-shared --enable-linker-build-id 
--libexecdir=/usr/lib --without-included-gettext --enable-threads=posix 
--libdir=/usr/lib --enable-nls --enable-clocale=gnu --enable-libstdcxx-debug 
--enable-libstdcxx-time=yes --with-default-libstdcxx-abi=new 
--enable-gnu-unique-object --disable-vtable-verify --enable-plugin 
--enable-default-pie --with-system-zlib --enable-libphobos-checking=release 
--with-target-system-zlib=auto --enable-objc-gc=auto --enable-multiarch 
--disable-werror --with-arch-32=i686 --with-abi=m64 
--with-multilib-list=m32,m64,mx32 --enable-multilib --with-tune=generic 
--enable-offload-targets=nvptx-none=/build/gcc-10-km0ZOU/gcc-10-10.2.0/debian/tmp-nvptx/usr,amdgcn-amdhsa=/build/gcc-10-km0ZOU/gcc-10-10.2.0/debian/tmp-gcn/usr,hsa
 --without-cuda-driver --enable-checking=release --build=x86_64-linux-gnu 
--host=x86_64-linux-gnu --target=x86_64-linux-gnu
Thread model: posix
Supported LTO compression algorithms: zlib zstd
gcc version 10.2.0 (Debian 10.2.0-3) 

Configure options: '--build=x86_64-linux-gnu' '--prefix=/usr' 
'--includedir=\${prefix}/include' '--mandir=\${prefix}/share/man' 
'--infodir=\${prefix}/share/info' '--sysconfdir=/etc' '--localstatedir=/var' 
'--disable-option-checking' '--disable-silent-rules' 
'--libdir=\${prefix}/lib/x86_64-linux-gnu' '--runstatedir=/run' 
'--disable-maintainer-mode' '--disable-dependency-tracking' 
'--with-mailpath=/var/mail' '--enable-compressed' '--enable-debug' 
'--enable-fcntl' '--enable-hcache' '--enable-gpgme' '--enable-imap' 
'--enable-smtp' '--enable-pop' '--enable-sidebar' '--enable-dotlock' 
'--disable-fmemopen' '--with-curses' '--with-gnutls' '--with-gss' '--with-idn2' 
'--with-mixmaster' '--with-sasl' '--without-gdbm' '--without-bdb' 
'--without-qdbm' '--with-tokyocabinet' 'build_alias=x86_64-linux-gnu' 
'CFLAGS=-g -O2 -fdebug-prefix-map=/build/mutt-7o6cHN/mutt-1.14.6=. 
-fstack-protector-strong -Wformat -Werror=format-security' 
'LDFLAGS=-Wl,-z,relro -Wl,-z,now' 'CPPFLAGS=-Wdate-time -D_FORTIFY_SOURCE=2'

Compilation CFLAGS: -Wall -pedantic -Wno-long-long -g -O2 
-fdebug-prefix-map=/build/mutt-7o6cHN/mutt-1.14.6=. -fstack-protector-strong 
-Wformat -Werror=format-security

Compile options:
-DOMAIN
+DEBUG
-HOMESPOOL  +USE_SETGID  +USE_DOTLOCK  +DL_STANDALONE  +USE_FCNTL  -USE_FLOCK   
+USE_POP  +USE_IMAP  +USE_SMTP  
-USE_SSL_OPENSSL  +USE_SSL_GNUTLS  +USE_SASL  +USE_GSS  +HAVE_GETADDRINFO  
+HAVE_REGCOMP  -USE_GNU_REGEX  
+HAVE_COLOR  +HAVE_START_COLOR  +HAVE_TYPEAHEAD  +HAVE_BKGDSET  
+HAVE_CURS_SET  +HAVE_META  +HAVE_RESIZETERM  +HAVE_FUTIMENS  
+CRYPT_BACKEND_CLASSIC_PGP  +CRYPT_BACKEND_CLASSIC_SMIME  +CRYPT_BACKEND_GPGME  
-EXACT_ADDRESS  -SUN_ATTACHMENT  
+ENABLE_NLS  -LOCALES_HACK  +HAVE_WC_FUNCS  +HAVE_LANGINFO_CODESET  
+HAVE_LANGINFO_YESEXPR  
+HAVE_ICONV  -ICONV_NONTRANS  -HAVE_LIBIDN  +HAVE_LIBIDN2  +HAVE_GETSID  
+USE_HCACHE  
+USE_SIDEBAR  +USE_COMPRESSED  +USE_INOTIFY  
-ISPELL
SENDMAIL="/usr/sbin/sendmail"
MAILPATH="/var/mail"
PKGDATADIR="/usr/share/mutt"
SYSCONFDIR="/etc"
EXECSHELL="/bin/sh"
MIXMASTER="mixmaster"

To contact the developers, please mail to .
To report a bug, please contact the Mutt maintainers via gitlab:
https://gitlab.com/muttmua/mutt/issues


-- System Information:
Debian Release: bullseye/sid
  APT prefers testing
  APT policy: (500, 'testing'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.7.0-2-amd64 (SMP w/2 CPU threads)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, 
TAINT_UNSIGNED_MODULE
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de
Shell: /bin/sh linked to /bin/dash
Init: systemd (via 

Bug#931867: /lib/init/init-d-script is sourcing /etc/default/* too late

[Thorsten Glaser]

On Sun, 30 Aug 2020, Trek wrote:

> this is a chicken-egg problem: init-d-script sources /etc/default/$NAME
> but $NAME is defined inside /etc/init.d/snmpd (that is $SCRIPTNAME)

It could do:

eval "$(grep '^NAME=' "$__init_d_script_name")"

This would cover most cases, and it could be made part of the API
of init-d-script that its users must have exactly one line matching
this which is a valid, context-free shell expression setting only $NAME.

Possible.

> init-d-script could be modified, for example to source at
> first /etc/default/$(basename $SCRIPTNAME), but to retain backward
> compatibility it should source also /etc/default/$NAME and it would
> begin a sourcing mess with possible conflicts

Erk. Also, they shan’t be sourced twice.

> i think the init-d-script sourcing feature is not really useful and the
> right way to include variables it is to source the environment file
> inside the /etc/init.d/snmpd script, like batmand does for example:
>
> https://sources.debian.org/src/batmand/0.3.2-21/debian/batmand.init

Yes, that too.

> another possible way it could be to define DAEMON_ARGS directly
> inside /etc/default/snmpd, but I don't know how well it will play with
> other init systems

That would only work in very simple cases.

bye,
//mirabilos
-- 
Sometimes they [people] care too much: pretty printers [and syntax highligh-
ting, d.A.] mechanically produce pretty output that accentuates irrelevant
detail in the program, which is as sensible as putting all the prepositions
in English text in bold font.   -- Rob Pike in "Notes on Programming in C"

Bug#925591: grub-install fails on raid1+efi setup

[epiq sty]

Jakub,

  if it's still relevant, I faced with exactly same problem during Debian
installation on Terramaster F5-421, grub-install fails with same messages.
I wonder if there's any workaround possible.


On Sun, 27 Oct 2019 23:29:28 + Jakub Filo  wrote:
> Hello,
>
> I would like to ask, what firmware is this happening on? Any chance it's
> OVMF?
>
>
> Best Regards,
> Jakub Filo
>
>
>

Bug#960640: bash-completion: dh_bash-completion needs to record installed files for dh_missing

[Nicholas Breen]

Hello Gabriel,

As an example package demonstrating this bug, I encountered it when
preparing votca-csg 1.6.2-1.  Removing the workaround in debian/rules
(lines 29 and 30) causes a build failure with debhelper compat 13.

Thanks!


-- 
Nicholas Breen
nbr...@debian.org

Bug#969278: gnome-music: albums without artist doesn't show up in album view

[Roman Riabenko]

Package: gnome-music
Version: 3.36.3-1
Severity: normal

Dear Maintainer,

I have an album of the in-game music published by the game developer. It 
consists
of MP3 files which has album indicated, but the artist field is empty. In GNOME
music I can see the songs in the all songs view. The artist is indicated as
unknown. But I do not see the album in the albums view.

If I add some info to the artist field with a tag editor (in VLC), the album
shows up in the albums view in GNOME music. If I remove the artist info, the
album disappears.

I expected that the album would show up in the albums view, probably with
"unknown artist" under it or without artist indication.

Best wishes
Roman

-- System Information:
Debian Release: bullseye/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 5.7.0-3-amd64 (SMP w/6 CPU threads)
Locale: LANG=uk_UA.UTF-8, LC_CTYPE=uk_UA.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages gnome-music depends on:
ii  dconf-gsettings-backend [gsettings-backend]  0.36.0-1
ii  gir1.2-dazzle-1.03.36.0-1
ii  gir1.2-glib-2.0  1.64.1-1
ii  gir1.2-goa-1.0   3.36.0-1
ii  gir1.2-grilo-0.3 0.3.12-1
ii  gir1.2-gst-plugins-base-1.0  1.16.2-4
ii  gir1.2-gstreamer-1.0 1.16.2-2
ii  gir1.2-gtk-3.0   3.24.22-1
ii  gir1.2-mediaart-2.0  1.9.4-2
ii  gir1.2-soup-2.4  2.70.0-1
ii  gir1.2-totemplparser-1.0 3.26.5-1
ii  gir1.2-tracker-2.0   2.3.4-1+b1
ii  gnome-settings-daemon3.36.1-1
ii  grilo-plugins-0.30.3.11-1
ii  libc62.31-3
ii  libcairo-gobject21.16.0-4
ii  libcairo21.16.0-4
ii  libgdk-pixbuf2.0-0   2.40.0+dfsg-5
ii  libglib2.0-0 2.64.4-1
ii  libgtk-3-0   3.24.22-1
ii  libpango-1.0-0   1.46.1-1
ii  libpangocairo-1.0-0  1.46.1-1
ii  python3  3.8.2-3
ii  python3-gi   3.36.1-1
ii  python3-gi-cairo 3.36.1-1
ii  python3-requests 2.23.0+dfsg-2
ii  tracker  2.3.4-1+b1

gnome-music recommends no packages.

gnome-music suggests no packages.

-- no debconf information

Bug#969277: RM: rr [i386] -- NBS; i386 removed

[Stephen Kitt]

Package: ftp.debian.org
Severity: normal

Dear FTP team,

Please remove rr on i386, the latest version of the package doesn’t
build it.

Regards,

Stephen

Bug#969224: cdimage.debian.org: Error installing Debian 10.5 from flash stick with Extlinux

[Lou Poppler]

On Sun, 2020-08-30 at 08:16 -0700, Lou Poppler wrote:
> Сергей:
> 
> As we tried to tell you yesterday, you should be writing ONLY the .iso image
> onto your install USB drive.  DO NOT ADD OTHER FILES like these init.rd and
> vmlinuz files from other places.  just copy the .iso image.  nothing else.

The complete installer and live .iso images are available from this source:
> https://cdimage.debian.org/cdimage/

You do not need to mix and match additional files from this other installer
hierarchy.

Bug#969276: python-uvicorn: CVE-2020-7694

[Salvatore Bonaccorso]

Source: python-uvicorn
Version: 0.11.5-1
Severity: important
Tags: security upstream
Forwarded: https://github.com/encode/uvicorn/issues/723
X-Debbugs-Cc: car...@debian.org, Debian Security Team 
Control: found -1 0.11.3-1

Hi,

The following vulnerability was published for python-uvicorn.

CVE-2020-7694[0]:
| This affects all versions of package uvicorn. The request logger
| provided by the package is vulnerable to ASNI escape sequence
| injection. Whenever any HTTP request is received, the default
| behaviour of uvicorn is to log its details to either the console or a
| log file. When attackers request crafted URLs with percent-encoded
| escape sequences, the logging component will log the URL after it's
| been processed with urllib.parse.unquote, therefore converting any
| percent-encoded characters into their single-character equivalent,
| which can have special meaning in terminal emulators. By requesting
| URLs with crafted paths, attackers can: * Pollute uvicorn's access
| logs, therefore jeopardising the integrity of such files. * Use ANSI
| sequence codes to attempt to interact with the terminal emulator
| that's displaying the logs (either in real time or from a file).


If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2020-7694
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7694
[1] https://snyk.io/vuln/SNYK-PYTHON-UVICORN-575560
[2] https://github.com/encode/uvicorn/issues/723

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Bug#969275: python-uvicorn: CVE-2020-7695

[Salvatore Bonaccorso]

Source: python-uvicorn
Version: 0.11.5-1
Severity: important
Tags: security upstream
X-Debbugs-Cc: car...@debian.org, Debian Security Team 
Control: found -1  0.11.3-1

Hi,

The following vulnerability was published for python-uvicorn.

CVE-2020-7695[0]:
| Uvicorn before 0.11.7 is vulnerable to HTTP response splitting. CRLF
| sequences are not escaped in the value of HTTP headers. Attackers can
| exploit this to add arbitrary headers to HTTP responses, or even
| return an arbitrary response body, whenever crafted input is used to
| construct HTTP headers.


If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2020-7695
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7695
[1] https://snyk.io/vuln/SNYK-PYTHON-UVICORN-570471
[2] https://github.com/encode/uvicorn/issues/719

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Bug#207394: Socond thoughts: common-auth

[Elrond]

Hi,


On Tue, Jul 28, 2020 at 08:08:40 -0400, Sam Hartman wrote:
> > "Petter" == Petter Reinholdtsen  writes:
> 
> Petter> In Debian Edu, /etc/environment is used to set the required
> Petter> HTTP proxy globally.  It would be nice if it actually took
> Petter> effect for all services.  :)

That's my current problem: PROXYs not being consistently
set in some services. (like sudo -i)


> I'd argue that this should be set in the systemd unit for the service
> for a service that does not traditionally use sessions.
> Also, I believe there is a way to get systemd to inject environment
> variables into init's environment, so they are inherited until the
> environment is cleared.
> I'd generally agree that applications should either preserve their
> environment, or use pam_env.

So we should go around and ask every service, that could
need a proxy to properly read /etc/environment either via
pam_env or via systemd's EnvirontFile (or whatever the name
was)?


I have another question:

Can you imagine a (sane) setting in /etc/environment
breaking a (sane) application, when we add pam_env to
common-session*?

Settings, that are not for the system as a whole, should be
in another file. For example the locale is in
/etc/default/locale, and it is sensible to only load it for
local (interactive) users. So we have a clear set of
applications, that we need to modify.

But for /etc/environment I can't imagine any application,
that should not read it.


Greetings

Elrond

Bug#969224: cdimage.debian.org: Error installing Debian 10.5 from flash stick with Extlinux

[Lou Poppler]

Сергей:

As we tried to tell you yesterday, you should be writing ONLY the .iso image
onto your install USB drive.  DO NOT ADD OTHER FILES like these init.rd and
vmlinuz files from other places.  just copy the .iso image.  nothing else.

On Sun, 2020-08-30 at 13:40 +0300, Сергей Фёдоров wrote:
> Package: cdimage.debian.org
> Severity: critical
> Justification: breaks the whole system
> 
> -- System Information:
> Debian Release: bullseye/sid
>   APT prefers unstable
>   APT policy: (500, 'unstable')
> Architecture: amd64 (x86_64)
> 
> Kernel: Linux 5.7.0-3-amd64 (SMP w/8 CPU threads)
> Locale: LANG=ru_RU.utf8, LC_CTYPE=ru_RU.utf8 (charmap=UTF-8), LANGUAGE not set
> Shell: /bin/sh linked to /usr/bin/dash
> Init: systemd (via /run/systemd/system)
> LSM: AppArmor: enabled
> 
> In both cases, when installing Debian from a flash drive, I received the 
> message:
> 
> Load installer components from an ISO installer.
> 
> No modules were found. This pfobably is due to a mismatch between the kernel
> by this version of the installer and the kernel version available in the
> archieve.
> 
> and the installation had to be stopped.
> 
> I think the problem is that the kernel versions for DVD and
> installer-amd64/current/images/hd-media/ or
> installer-amd64/current/images/hd-media/gtk/
> в initrd.gz
> for Debian 10.4 and Debian 10.5
> don't match.
> 
> for Debian 10.5
> 4.19.0-10 - the kernel versions for DVD
> 4.19.0-5  - the kernel versions for
> http://ftp.nl.debian.org/debian/dists/Debian10.5/main/installer-amd64/current/images/hd-media/
> or (for GTK)
> http://ftp.nl.debian.org/debian/dists/Debian10.5/main/installer-amd64/current/images/hd-media/gtk/
> 
> Для Debian 10.4
> 4.19.0-9 - the kernel versions for с DVD
> 4.19.0-5 - the kernel versions for
> http://ftp.nl.debian.org/debian/dists/Debian10.4/main/installer-amd64/current/images/hd-media/
> or (for GTK)
> http://ftp.nl.debian.org/debian/dists/Debian10.4/main/installer-amd64/current/images/hd-media/gtk/
> 
> Для Debian 10.3
> 4.19.0-8 - the kernel versions for с DVD
> 4.19.0-8 - the kernel versions for
> http://ftp.nl.debian.org/debian/dists/Debian10.3/main/installer-amd64/current/images/hd-media/
> or (for GTK)
> http://ftp.nl.debian.org/debian/dists/Debian10.3/main/installer-amd64/current/images/hd-media/gtk/
> 
> For Debian 10.3 everything was established without problems.
> 

Bug#966846: Kernel panic (4.19.0-10): RIP __cgroup_bpf_run_filter_skb

[Salvatore Bonaccorso]

Hi Immanuel,

On Sun, Aug 30, 2020 at 04:49:51PM +0200, isch...@der-ball-ist-rund.net wrote:
> I can confirm this bug. For me the panic is not exclusively related
> with docker.  I stopped my docker daemon - and I'm still suffering
> from random freezes of the kernel 4.19.0-10. Kernel is unusable.
> 
> But I'm still running two lxc-containers and two virtual machines kvm/qemu.
> 
> enclosed you'll find the "screenshot"

Yes, the issue would not be exclusively with docker.

The issue should be pending fixed, but if you can I would appreciate
if you can test (warning: temporary and unofficial build!) packages
rebased to 4.19.142 upstream:

https://people.debian.org/~carnil/tmp/linux/4.19.142-1/

Regards,
Salvatore

Bug#969270: [pkg-cryptsetup-devel] Bug#969270: cryptsetup-suspend: installation leads to suspend not working anymore

[Guilhem Moulin]

Control: tag -1 pending

On Sun, 30 Aug 2020 at 16:46:52 +0200, Birger Schacht wrote:
> On 8/30/20 4:28 PM, Guilhem Moulin wrote:
>> Does the attached patch help?
> 
> Yes! The system does suspend now, thanks!

Thank you for confirming :-)

-- 
Guilhem.


signature.asc
Description: PGP signature

Bug#969156: rumur FTBFS on armel/armhf/mipsel/mips64el: test failures

[Adrian Bunk]

On Fri, Aug 28, 2020 at 07:06:10AM -0700, Matthew Fernandez wrote:
> Thanks for reporting this, Adrian. I noticed this some time after upload and 
> fixed it upstream: 
> https://github.com/Smattr/rumur/commit/68683c4742b380421936a703c4b9262dac1e68dc
>  
> 
> 
> I hadn’t uploaded a fixed version to Debian because Rumur’s release cadence 
> is so frequent I expected to release a new upstream version before the fix 
> could get into Debian unstable. I hope this is an acceptable strategy.

No problem with that, just close this bug in the upload.

> By the way, is there any way to run the buildd tests prior to upload? I don’t 
> have, e.g. armhf, hardware and bringing up a usable armhf qemu environment 
> seems non-trivial. The buildd tests only seem to run after an upload is 
> accepted, so I end up only being able to run this cross-platform testing once 
> per release and only after the fact.

For armhf specifically the answer would be to get a Raspberry Pi.

There are porterboxes that can also be made available to non-DDs,
but in many cases it is easiest to just upload and see how it goes.

cu
Adrian

Bug#969270: [pkg-cryptsetup-devel] Bug#969270: cryptsetup-suspend: installation leads to suspend not working anymore

[Birger Schacht]

Hi Guilhem,

On 8/30/20 4:28 PM, Guilhem Moulin wrote:
> Hi Birger,
> 
> On Sun, 30 Aug 2020 at 13:45:51 +, Birger Schacht wrote:
>> thanks for working on cryptsetup-suspend. I installed the package, but
>> now executing systemctl suspend does not suspend anymore.
>> The system switches to tty for a short moment and I can see an error
>> message saying:
>>> cannot remove
>>> '/run/cryptsetup/cryptsetup-suspend-initramfs/lib/firmware': No such
>>> file or directory
> 
> Does the attached patch help?

Yes! The system does suspend now, thanks!

cheers,
Birger

Bug#969244: libreoffice: crash upon opening "Advanced" tab in Options

[JCGoran]

Hi Rene,

I can confirm that updating the `ure` package to the latest available 
version (7.0.1)
indeed resolves the issue, many thanks for the investigation!

Cheers,
Goran


On Sun, 30 Aug 2020 10:13:14 +0200 Rene Engelhard  wrote:
 > Hi,
 >
 > tag 969244 - unreproducible
 > tag 969244 - moreinfo
 > retitle 969244 libreoffice: crash upon opening "Advanced" tab in Options
 > with old URE
 > thanks
 >
 > Am 30.08.20 um 09:23 schrieb Rene Engelhard:
 > > Am 29.08.20 um 23:34 schrieb JCGoran:
 > >> Opening the "Advanced" tab in Tools > Options consistently causes a
 > >> crash in all LibreOffice components. I tried rebooting my machine and
 > >> deleting the LO profile, but the problem persists.
 > >> Using Safe mode, I can access the tab just fine, but exiting the
 > >> Options window again causes a crash.
 > >
 > > Can't reproduce in a uptodate sid VM.
 > >
 > >
 > > Is there any reason you[...]
 > >> ii uno-libs-private 1:6.4.2-2
 > >> ii ure 1:6.4.2-2
 > >> [...]
 > >
 > >> ii libuno-cppu3 1:6.4.2-2
 > >> ii libuno-cppuhelpergcc3-3 1:6.4.2-2
 > >> ii libuno-sal3 1:6.4.2-2
 > >> ii libuno-salhelpergcc3-3 1:6.4.2-2
 > >
 > [...]
 >
 > > Will try to use 6.4.2-2 for the libs from snapshot but please try a
 > > (dist-)upgrade so you have a consistent package set? At least to 
get info.
 >
 > Yes, that is it...
 >
 > Trying shows it just needs "ure" (which pulls in newer uno-libs-private
 > and libuno-cppuhelpergcc3-3, either one of the three pulls in the other
 > three...) updated.
 >
 > Regards,
 >
 > Rene
 >
 >

Bug#969270: [pkg-cryptsetup-devel] Bug#969270: Bug#969270: cryptsetup-suspend: installation leads to suspend not working anymore

[Guilhem Moulin]

On Sun, 30 Aug 2020 at 16:28:41 +0200, Guilhem Moulin wrote:
> Does the attached patch help?

Seems a slash got lost, patch updated.

-- 
Guilhem.
--- a/debian/scripts/suspend/cryptsetup-suspend-wrapper
+++ b/debian/scripts/suspend/cryptsetup-suspend-wrapper
@@ -69,8 +69,12 @@
 
 # copy all firmware files to ramdisk to prevent dead-lock
 # see https://salsa.debian.org/mejo/cryptsetup-suspend/issues/38)
-rm -r "${INITRAMFS_DIR:-/nonexistent}/lib/firmware"
-cp -r /lib/firmware "$INITRAMFS_DIR/lib/firmware"
+# XXX we should probably identify which firmwares need to be loaded
+# and only copy those
+if [ -d /lib/firmware ]; then
+rm -rf "$INITRAMFS_DIR/lib/firmware"
+cp -r /lib/firmware "$INITRAMFS_DIR/lib/firmware"
+fi
 
 for p in $BIND_PATHS; do
 mkdir -p -m 0755 "$INITRAMFS_DIR$p"


signature.asc
Description: PGP signature

Bug#969270: [pkg-cryptsetup-devel] Bug#969270: cryptsetup-suspend: installation leads to suspend not working anymore

[Guilhem Moulin]

Hi Birger,

On Sun, 30 Aug 2020 at 13:45:51 +, Birger Schacht wrote:
> thanks for working on cryptsetup-suspend. I installed the package, but
> now executing systemctl suspend does not suspend anymore.
> The system switches to tty for a short moment and I can see an error
> message saying:
>> cannot remove
>> '/run/cryptsetup/cryptsetup-suspend-initramfs/lib/firmware': No such
>> file or directory

Does the attached patch help?

Cheers
-- 
Guilhem.
--- a/lib/cryptsetup/scripts/suspend/cryptsetup-suspend-wrapper
+++ b/lib/cryptsetup/scripts/suspend/cryptsetup-suspend-wrapper
@@ -69,8 +69,12 @@
 
 # copy all firmware files to ramdisk to prevent dead-lock
 # see https://salsa.debian.org/mejo/cryptsetup-suspend/issues/38)
-rm -r "${INITRAMFS_DIR:-nonexistent}/lib/firmware"
-cp -r /lib/firmware "$INITRAMFS_DIR/lib/firmware"
+# XXX we should probably identify which firmwares need to be loaded
+# and only copy those
+if [ -d /lib/firmware ]; then
+rm -rf "$INITRAMFS_DIR/lib/firmware"
+cp -r /lib/firmware "$INITRAMFS_DIR/lib/firmware"
+fi
 
 for p in $BIND_PATHS; do
 mkdir -p -m 0755 "$INITRAMFS_DIR$p"


signature.asc
Description: PGP signature

Bug#954195: Bug#969271: gnome-music fails to start: AttributeError: 'NoneType' object has no attribute 'call_is_supported_provider'

[Simon McVittie]

Control: tags -1 + confirmed
Control: forwarded -1 https://gitlab.gnome.org/GNOME/gnome-music/-/issues/410

On Sun, 30 Aug 2020 at 14:53:49 +0100, Simon McVittie wrote:
> On Sat, 28 Mar 2020 at 07:46:39 +0100, navaneeth wrote:
> > AttributeError: 'NoneType' object has no attribute 
> > 'call_is_supported_provider'
> 
> This is a different bug and should be dealt with separately, even though
> the high-level symptom (gnome-music not starting) is the same. I've cloned
> the bug report so that it gets a new bug number.

This crash happens when gnome-online-accounts is not installed (it's not
meant to be a requirement, but the code that interacts with GOA is not
sufficiently robust).

To reproduce the bug:
- remove the gnome-online-accounts package
- kill any remaining goa-* service processes

Workaround: install gnome-online-accounts.

smcv

Bug#969273: gnome-shell-extension-weather: Error loading the extension.

[Djalil Chafaï]

Package: gnome-shell-extension-weather
Version: 0~20170402.git34506a6-2
Severity: important

Dear Maintainer,

The extension is not loaded by Gnome. 

The gnome-tweaks displays for it a triangle with an exclamation mark.

Best regards.

-- System Information:
Debian Release: bullseye/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.7.0-2-amd64 (SMP w/4 CPU threads)
Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages gnome-shell-extension-weather depends on:
ii  dconf-gsettings-backend [gsettings-backend]  0.36.0-1
ii  gir1.2-clutter-1.0   1.26.4+dfsg-1
ii  gir1.2-glib-2.0  1.64.1-1
ii  gir1.2-gtk-3.0   3.24.22-1
ii  gir1.2-soup-2.4  2.70.0-1
ii  gnome-shell  3.36.5-1

Versions of packages gnome-shell-extension-weather recommends:
ii  gnome-tweaks  3.34.0-3

gnome-shell-extension-weather suggests no packages.

-- no debconf information

Bug#969272: buster-pu: package bacula/9.4.2-2

[Carsten Leonhardt]

Package: release.debian.org
Severity: normal
Tags: buster
User: release.debian@packages.debian.org
Usertags: pu

Dear Release Team,

I'd like to fix CVE-2020-11061 for bacula in buster. The DSA team
recommends fixing it via point release (according to the security
tracker).

The version in testing/unstable already includes the fix. Stretch was
fixed by the LTS team.

Thanks,

Carsten


bacula_9.4.2-2+deb10u1.debdiff
Description: Binary data

Bug#954195: gnome-music fails to start

[Simon McVittie]

Control: clone 954195 -2
Control: retitle 954195 gnome-music fails to start: SyntaxError: invalid syntax 
", /,"
Control: fixed 954195 3.36.0-2
Control: retitle -2 gnome-music fails to start: AttributeError: 'NoneType' 
object has no attribute 'call_is_supported_provider'
Control: notforwarded -2
Control: tags -2 - fixed-upstream

On Wed, 18 Mar 2020 at 07:59:14 +0100, navaneeth wrote:
>   File "/usr/lib/python3.8/weakref.py", line 102
> def __init__(self, other=(), /, **kw):
>  ^
> SyntaxError: invalid syntax

This is #954195, and was fixed.

On Sat, 28 Mar 2020 at 07:46:39 +0100, navaneeth wrote:
> AttributeError: 'NoneType' object has no attribute 
> 'call_is_supported_provider'

This is a different bug and should be dealt with separately, even though
the high-level symptom (gnome-music not starting) is the same. I've cloned
the bug report so that it gets a new bug number.

If you get the same symptom (like a crash) in a different version with a
different error message, in future please open a separate bug for it.
Even if the root cause turns out to be the same, merging bugs is easier
than separating out more than one root cause from the same bug number.

smcv

Bug#968875: rss2email forges envelope sender

[gustavo panizzo]

Hello Ben

On Sat, Aug 22, 2020 at 09:10:59PM +0100, Ben Hutchings wrote:

Package: rss2email
Version: 1:3.12.1-1
Severity: serious
Tags: upstream

Today I learned that rss2email copies the email addresses from feed
entries into both the From field and the envelope sender of messages.

This is not acceptable behaviour in an email generator.  The envelope
sender *must* be sent to an address that the user configures, where
*they* can receive bounce messages.



I remember seeing emails going to post authors long ago if the default
configuration was in use. Current r2e sets the From in the config if is
not set. Which should stop the issue from happening.

With the version in sid I cannot reproduce the error, would you please
check in one of the bounces you get the rss2email version?
it should be in the email headers


thanks


The current behaviour results in bounces being sent to the authors of
feed entries, which is what just happened to me.  It can also result
in messages being dropped if the forgery is detected by MTAs that
check SPF.

Ben.

-- System Information:
Debian Release: bullseye/sid
 APT prefers unstable-debug
 APT policy: (500, 'unstable-debug'), (500, 'stable-updates'), (500, 
'unstable'), (500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.7.0-1-amd64 (SMP w/2 CPU threads)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages rss2email depends on:
ii  python3 3.8.2-3
ii  python3-feedparser  5.2.1-2
pn  python3-html2text   

Versions of packages rss2email recommends:
ii  python3-bs4  4.9.1-1

Versions of packages rss2email suggests:
pn  esmtp  
--
Ben Hutchings
When in doubt, use brute force. - Ken Thompson






--
IRC: gfa
GPG: 0x27263FA42553615F904A7EBE2A40A2ECB8DAD8D5
OLD GPG: 0x44BB1BA79F6C6333

Bug#969270: cryptsetup-suspend: installation leads to suspend not working anymore

[Birger Schacht]

Package: cryptsetup-suspend
Version: 2:2.3.3-3+exp1
Severity: normal
X-Debbugs-Cc: bir...@debian.org

Dear Maintainer,

thanks for working on cryptsetup-suspend. I installed the package, but
now executing systemctl suspend does not suspend anymore.
The system switches to tty for a short moment and I can see an error
message saying:
> cannot remove
> '/run/cryptsetup/cryptsetup-suspend-initramfs/lib/firmware': No such
> file or directory

journalctl -f shows:
> Aug 30 13:29:14 grml systemd[1]: Starting Suspend...
> Aug 30 13:29:14 grml polkitd(authority=local)[566]: Unregistered
> Authentication Agent for unix-process:1097:12106 (system bus name :1.44,
> object path /org/freedesktop/PolicyKit1/AuthenticationAgent, locale
> en_US.UTF-8) (disconnected from bus)
> Aug 30 13:29:16 grml systemd[517]:
> run-cryptsetup-cryptsetup\x2dsuspend\x2dinitramfs.mount: Succeeded.
> Aug 30 13:29:16 grml systemd[1]:
> run-cryptsetup-cryptsetup\x2dsuspend\x2dinitramfs.mount: Succeeded.
> Aug 30 13:29:16 grml systemd[1]: systemd-suspend.service: Main process
> exited, code=exited, status=1/FAILURE
> Aug 30 13:29:16 grml systemd[1]: systemd-suspend.service: Failed with
> result 'exit-code'.
> Aug 30 13:29:16 grml systemd[1]: Failed to start Suspend.
> Aug 30 13:29:16 grml systemd[1]: Dependency failed for Suspend.
> Aug 30 13:29:16 grml systemd[1]: suspend.target: Job
> suspend.target/start failed with result 'dependency'.
> Aug 30 13:29:16 grml systemd[1]: Stopped target Sleep.
> Aug 30 13:29:16 grml systemd-logind[466]: Operation 'sleep' finished.

But the system does not suspend and switches back to the gui.

I am not sure how to further debug the issue.

cheers,
Birger

-- Package-specific info:
-- /proc/cmdline
BOOT_IMAGE=/boot/vmlinuz-5.7.0-2-amd64 root=/dev/mapper/vg--x230-root ro quiet

-- /etc/crypttab
# 
sda2_crypt PARTUUID=02c175db-86e8-48cd-9035-8421d8e50d23 /etc/keys/sda2.key 
luks,discard,key-slot=1

-- /etc/fstab
# UNCONFIGURED FSTAB FOR BASE SYSTEM
UUID=2d18f674-79fd-4727-9bd8-aac8ef14a132 / ext4 defaults 0 1

-- lsmod
Module  Size  Used by
ctr16384  1
ccm20480  3
snd_hda_codec_hdmi 73728  1
snd_hda_codec_realtek   131072  1
snd_hda_codec_generic94208  1 snd_hda_codec_realtek
intel_rapl_msr 20480  0
intel_rapl_common  32768  1 intel_rapl_msr
iwldvm159744  0
x86_pkg_temp_thermal20480  0
intel_powerclamp   20480  0
coretemp   20480  0
mac80211  909312  1 iwldvm
uvcvideo  114688  0
kvm_intel 323584  0
libarc416384  1 mac80211
videobuf2_vmalloc  20480  1 uvcvideo
snd_hda_intel  57344  3
snd_intel_dspcfg   24576  1 snd_hda_intel
kvm   811008  1 kvm_intel
videobuf2_memops   20480  1 videobuf2_vmalloc
i915 2592768  7
snd_hda_codec 163840  4 
snd_hda_codec_generic,snd_hda_codec_hdmi,snd_hda_intel,snd_hda_codec_realtek
iwlwifi   274432  1 iwldvm
irqbypass  16384  1 kvm
videobuf2_v4l2 28672  1 uvcvideo
videobuf2_common   57344  2 videobuf2_v4l2,uvcvideo
snd_hda_core  106496  5 
snd_hda_codec_generic,snd_hda_codec_hdmi,snd_hda_intel,snd_hda_codec,snd_hda_codec_realtek
rapl   16384  0
videodev  266240  3 videobuf2_v4l2,uvcvideo,videobuf2_common
snd_hwdep  16384  1 snd_hda_codec
intel_cstate   16384  0
thinkpad_acpi 110592  0
snd_pcm   131072  4 
snd_hda_codec_hdmi,snd_hda_intel,snd_hda_codec,snd_hda_core
drm_kms_helper249856  1 i915
intel_uncore  163840  0
cfg80211  872448  3 iwldvm,iwlwifi,mac80211
tpm_tis16384  0
snd_timer  45056  1 snd_pcm
joydev 28672  0
evdev  28672  14
tpm_tis_core   28672  1 tpm_tis
iTCO_wdt   16384  0
nvram  16384  1 thinkpad_acpi
iTCO_vendor_support16384  1 iTCO_wdt
ledtrig_audio  16384  3 
snd_hda_codec_generic,snd_hda_codec_realtek,thinkpad_acpi
mc 57344  4 
videodev,videobuf2_v4l2,uvcvideo,videobuf2_common
serio_raw  20480  0
pcspkr 16384  0
sg 36864  0
snd   106496  15 
snd_hda_codec_generic,snd_hda_codec_hdmi,snd_hwdep,snd_hda_intel,snd_hda_codec,snd_hda_codec_realtek,snd_timer,thinkpad_acpi,snd_pcm
cec61440  2 drm_kms_helper,i915
i2c_algo_bit   16384  1 i915
watchdog   28672  1 iTCO_wdt
tpm73728  2 tpm_tis,tpm_tis_core
soundcore  16384  1 snd
rfkill 28672  4 thinkpad_acpi,cfg80211
rng_core   16384  1 tpm
ac 16384  0
button 24576  0
drm   606208  6 drm_kms_helper,i915
sunrpc503808  1
ip_tables  32768  0
x_tables   53248  1 ip_tables
autofs4

Bug#969257: plasma-discover: org.kde.discover.notifier.desktop causes kernel logs pollution

[Laurent Bonnaud]

Package: plasma-discover
Version: 5.19.4-1
Severity: normal


Dear Maintainer,

I see the following error message in the kernel logs on my system:

[ 1794.049495] systemd-xdg-autostart-generator[3071]: Configuration file 
/etc/xdg/autostart/org.kde.discover.notifier.desktop is marked executable. 
Please remove executable permission bits. Proceeding anyway.

This file has executable permissions indeed:

-rwxr-xr-x 1 root root 1110 Aug 30 08:55 
/etc/xdg/autostart/org.kde.discover.notifier.desktop

and is the only one in this directory.


-- System Information:
Debian Release: bullseye/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (1, 
'experimental-debug'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 5.8.0-trunk-amd64 (SMP w/2 CPU threads)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

--
Laurent.

Bug#969269: mirror submission for mirror.hodgepodge.dev

[Piper McCorkle]

Package: mirrors
Severity: wishlist
User: mirr...@packages.debian.org
Usertags: mirror-submission

Submission-Type: new
Site: mirror.hodgepodge.dev
Type: leaf
Archive-architecture: amd64 i386
Archive-http: /debian/
Archive-rsync: debian/
Maintainer: Piper McCorkle 
Country: US United States
Location: Fremont, California
Sponsor: Conduit Implementations, LLC https://conduitim.pl
Comment: There is also a CD image mirror at 
https://mirror.hodgepodge.dev/debian-cd




Trace Url: http://mirror.hodgepodge.dev/debian/project/trace/
Trace Url: 
http://mirror.hodgepodge.dev/debian/project/trace/ftp-master.debian.org
Trace Url: 
http://mirror.hodgepodge.dev/debian/project/trace/mirror.hodgepodge.dev

Bug#969255: kmix: kmix_autostart.desktop causes kernel logs pollution

[Laurent Bonnaud]

Package: kmix
Version: 4:20.08.0-1
Severity: normal


Dear Maintainer,

I see the following error message in the kernel logs on my system:

[ 1794.033071] systemd-xdg-autostart-generator[3071]: 
/etc/xdg/autostart/kmix_autostart.desktop:6: Unknown key name 'MimeType' in 
section 'Desktop Entry', ignoring.

The kmix_autostart.desktop file contains this line:

  MimeType=

which looks like it contains no useful information.


-- System Information:
Debian Release: bullseye/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (1, 
'experimental-debug'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 5.8.0-trunk-amd64 (SMP w/2 CPU threads)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

--
Laurent.