Bug#987124: console-setup not work properly with plymouth

2021-04-17 Thread Pavel Samsonov 
Package: console-setup
Version: 1.202
Severity: normal
X-Debbugs-Cc: pvsamsono...@gmail.com

Dear Maintainer,

The /etc/init.d/console-setup.sh startup script does not change
 the system console font if the plymouth graphic splash screen is
 enabled at startup.


-- System Information:
Debian Release: bullseye/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.10.31-tinyware-amd64 (SMP w/3 CPU threads)
Kernel taint flags: TAINT_UNSIGNED_MODULE
Locale: LANG=ru_RU.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages console-setup depends on:
ii  console-setup-linux 1.202
ii  debconf 1.5.75
ii  keyboard-configuration  1.202
ii  xkb-data2.29-2

console-setup recommends no packages.

Versions of packages console-setup suggests:
ii  locales   2.31-11
ii  lsb-base  11.1.0

Versions of packages keyboard-configuration depends on:
ii  debconf 1.5.75
ii  liblocale-gettext-perl  1.07-4+b1

Versions of packages console-setup-linux depends on:
ii  init-system-helpers 1.60
ii  kbd 2.3.0-3
ii  keyboard-configuration  1.202

console-setup-linux suggests no packages.

Versions of packages console-setup is related to:
pn  console-common
pn  console-data  
pn  console-tools 
pn  gnome-control-center  
ii  kbd   2.3.0-3
ii  systemd   247.3-3

-- debconf-show failed

Bug#987121: wordpress: lighttpd not satisfying httpd dependency for installation

2021-04-17 Thread Kurt Fitzner 
Package: wordpress
Version: 5.6.1+dfsg1-1
Severity: normal

Dear Maintainer,

Wordpress depends, among other things on apache2 or httpd.  The httpd package
is, of course, a virtual one that is provided by twelve other packages, 
including
apache2 and lighttpd.

This is supposed to mean that any package in the httpd list will satisfy the
dependency, and only if no package from that list is installed on the system
will apache2 be installed with it.

Unfortunately, lighttpd is not satisfying the dependency.  Even when lighttpd
is installed on the system, apt will try and install apache2 along with
wordpress.


-- System Information:
Debian Release: bullseye/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.10.0-6-amd64 (SMP w/2 CPU threads)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages wordpress depends on:
ii  ca-certificates 20210119
pn  libapache2-mod-php | php
pn  libjs-cropper   
ii  libjs-underscore1.9.1~dfsg-3
ii  lighttpd [httpd]1.4.59-1
ii  mariadb-client-10.5 [virtual-mysql-client]  1:10.5.9-1
ii  php-gd  2:7.4+76
pn  php-getid3  
ii  php-mysql   2:7.4+76
ii  php7.4-gd [php-gd]  7.4.15-5+deb11u1
ii  php7.4-mysql [php-mysqlnd]  7.4.15-5+deb11u1

Versions of packages wordpress recommends:
pn  wordpress-l10n   
pn  wordpress-theme-twentytwentyone  

Versions of packages wordpress suggests:
ii  mariadb-server-10.5 [virtual-mysql-server]  1:10.5.9-1
pn  php-ssh2

Bug#987123: unblock: materia-gtk-theme/20200916-0.2

2021-04-17 Thread Leandro Cunha 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Dear Release Team,

Please unblock package materia-gtk-theme.

[ Reason ]

Corrects the problem detected of unhandled symlink to directory conversion
/usr/share/themes/*/gtk-assets with warning stating that it is not empty.
It is recommended to use the dpkg-maintscript-helper commands
"dir_to_symlink" and "symlink_to_dir" (since dpkg version 1.17.14)
to perform the conversion. The problem will occur when updating
20190201-1 (buster) to 20200916-0.1 (testing).

[1]
https://manpages.debian.org/unstable/dpkg/dpkg-maintscript-helper.1.en.html

[ Impact ]

Serious severity.

[ Tests ]

Tests passed (build & piuparts) with Salsa-CI tests also.

[ Risks ]

High risk: file .maintscript inserted according to log attached to the
bug #985292 with
multiple files affected. With the insertion of this file in the new version
the bug is corrected.

[ Checklist ]
  [X] all changes are documented in the d/changelog.
  [X] I reviewed all changes and I approve them.
  [X] attach debdiff against the package in testing.

[ Other info ]

Piuparts test can be accessed by the link below.

[2] https://piuparts.debian.org/stable2sid/source/m/materia-gtk-theme.html

unblock: materia-gtk-theme/20200916-0.2
-BEGIN PGP PUBLIC KEY BLOCK-
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=rdCA
-END PGP PUBLIC KEY BLOCK-


materia-gtk-theme.debdiff
Description: Binary data

Bug#987122: Mention GitHub in doc/perltidy/copyright

2021-04-17 Thread 積丹尼 Dan Jacobson 
Package: perltidy
Version: 20200110-1
Severity: wishlist
File: /usr/share/doc/perltidy/copyright

Please mention https://github.com/perltidy/perltidy in
/usr/share/doc/perltidy/copyright .

Bug#950862: exa: sorting is not locale based or unicode aware

2021-04-17 Thread ariasuni 

Upstream bug: https://github.com/ogham/exa/issues/410

Bug#987119: godot3: Name of .desktop file causes odd behavior in some DEs

2021-04-17 Thread egg 
Package: godot3
Version: 3.2.3-stable-1+b1
Severity: minor
X-Debbugs-Cc: xerographic.pa...@protonmail.com

Some desktop environments, such as KDE Plasma and Cinnamon, have icon-based
taskbars which group windows into a single icon.

Usually, when a pinned application is opened from this kind of taskbar, the
function of the icon switches from opening the application to maximizing
/minimizing/switching through running instances of the application. This 
happens in such a way that instances of the application are grouped 
together in a single icon.

It is somewhat difficult to explain, but in any case, godot3 does not seem
to behave as expected with these taskbars. Instead, once a project is opened
in godot3, the icon in the taskbar appears to duplicate, such that the running
instance of godot3 shows up separately from the pinned icon.

It seems that the fix is to change the name of the .desktop file from
"godot3.desktop" to just "godot.desktop"


-- System Information:
Debian Release: bullseye/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.10.0-6-amd64 (SMP w/8 CPU threads)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages godot3 depends on:
ii  libasound2 1.2.4-1.1
ii  libc6  2.31-11
ii  libenet7   1.3.13+ds-1
ii  libfreetype6   2.10.4+dfsg-1
ii  libgcc-s1  10.2.1-6
ii  libgl1 1.3.2-1
ii  libogg01.3.4-0.1
ii  libopus0   1.3.1-0.1
ii  libpcre2-32-0  10.36-2
ii  libpng16-161.6.37-3
ii  libpulse0  14.2-2
ii  libsquish0 1.15-1+b11
ii  libstdc++6 10.2.1-6
ii  libtheora0 1.1.1+dfsg.1-15
ii  libvorbis0a1.3.7-1
ii  libvpx61.9.0-1
ii  libwebp6   0.6.1-2+b1
ii  libx11-6   2:1.7.0-2
ii  libxcursor11:1.2.0-2
ii  libxi6 2:1.7.10-1
ii  libxinerama1   2:1.1.4-2
ii  libxrandr2 2:1.5.1-1
ii  libxrender11:0.9.10-1
ii  zlib1g 1:1.2.11.dfsg-2

godot3 recommends no packages.

godot3 suggests no packages.

-- no debconf information

Bug#986557: 加 U+7551 CJK Žô””®ú

2021-04-17 Thread 積丹尼 Dan Jacobson 
OK, made: https://github.com/chewing/libchewing/issues/322

Bug#987120: [libtorrent-rasterbar10] Please update - security fixes

2021-04-17 Thread Lyndon Brown 
Package: libtorrent-rasterbar10
Version: 1.2.9-0.2+b2
Tags: security

Version 1.2.12 (released 5th Jan 2021) includes some security fixes,
per [1].

[1]: https://libtorrent.org/security-audit.html

Bug#987118: [deluge] force-recheck not working

2021-04-17 Thread Lyndon Brown 
Package: deluge
Version: 2.0.3-3

The force-recheck feature fails to work.

I discovered that I was downloading something that I had already
downloaded previously. It had reached about 11%. It was not making any
progress at the time I noticed. I copied and pasted the old copy of the
file over the top of the new partially downloaded one and then used the
force-recheck feature to try to seed.

What happened was that it changed briefly to 'checking', then reset it
to 0% and moved it to the end of the queue (entry number was changed).

I repeated this several times, always resulting in the same thing. I
tried closing and reopening the program, no difference. I've rebooted
since and retried, no difference.

The torrent is about 1.3 GiB in size.

Bug#987104: minetest-server: Ipv6 is not enabled in default settings.

2021-04-17 Thread Robert Seimetz 

Control: tags -1 + patch

Hi,

in accordance to my recent bug report, I have made a patch for the 
problem which is attached to this email.


--
Robert Martin Seimetz (Veranstaltungsorganisation; Tutor 
Spielprogrammierung)

Teckids e.V. - Digitale Freiheit mit Jugend und Bildung.
https://www.teckids.org/diff -ur minetest-5.3.0+repack/debian/changelog minetest-5.3.0+repack.new/debian/changelog
--- minetest-5.3.0+repack/debian/changelog	2021-01-31 14:41:26.0 +0100
+++ minetest-5.3.0+repack.new/debian/changelog	2021-04-17 20:54:58.268160362 +0200
@@ -1,3 +1,9 @@
+minetest (5.3.0+repack-3) unstable; urgency=medium
+
+  * Enable ipv6 support in minetest-server default settings. (Closes: #987104)
+
+ -- Robert Seimetz   Sat, 17 Apr 2021 19:30:41 +0200
+
 minetest (5.3.0+repack-2) unstable; urgency=medium
 
   * Team upload.
Nur in minetest-5.3.0+repack.new/debian: changelog~.
diff -ur minetest-5.3.0+repack/debian/minetest.conf minetest-5.3.0+repack.new/debian/minetest.conf
--- minetest-5.3.0+repack/debian/minetest.conf	2021-01-31 10:43:36.0 +0100
+++ minetest-5.3.0+repack.new/debian/minetest.conf	2021-04-17 19:24:41.070019621 +0200
@@ -60,7 +60,7 @@
 #to IPv6 clients, depending on system configuration.
 #Ignored if bind_address is set.
 #type: bool
-# ipv6_server = false
+ipv6_server = true
 
 ### Advanced
 
Nur in minetest-5.3.0+repack.new/debian: minetest.conf~.

Bug#986139: offlineimap3 crashes with encoding error

2021-04-17 Thread Sudip Mukherjee 
Hi Santiago, Nehalenniæ,

On Thu, Apr 08, 2021 at 10:08:31AM +0100, Sudip Mukherjee wrote:
> Hi Santiago, Nehalenniæ,
> 
> On Fri, Apr 02, 2021 at 09:19:25PM +0100, Sudip Mukherjee wrote:
> > Control: forwarded -1 https://github.com/OfflineIMAP/offlineimap3/issues/62
> > --
> > 
> > On Fri, Apr 2, 2021 at 11:18 AM Nehalenniæ Oudin  
> > wrote:
> > >
> > > Hi,
> > >
> > > I have the same problem.
> > > If I have some time, I'll have a look at it.
> > 
> > Thanks. You might like to raise a PR in upstream repo also.
> 
> Can any of you help with a sample or sanitized email that causes the issue 
> please.

Will it be possible for you to test the PR at:
https://github.com/OfflineIMAP/offlineimap3/pull/63 and verify if that
fixes the encoding problem that you are seeing.

Thanks in advance.

--
Regards
Sudip

Bug#987117: unblock: rpki-trust-anchors/20210417-1

2021-04-17 Thread Marco d'Itri 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package rpki-trust-anchors

[ Reason ]
Contains one new debconf translation and a very important update of the 
APNIC trust anchor.

This change has been requested by APNIC and by one of the rpki-client 
upstream maintainers, and will also be required by the next release of 
rpki-client which expects the RRDP and rsync files to have the same 
name.

[ Impact ]
Without this change, at least, the next release of rpki-client will 
not work at all.
Since the old URL is not actually the official one, for all I know it 
may be retired hence breaking all RPKI clients.

[ Tests ]
I have no idea of how this package could automatically be tested.

[ Risks ]
Pretty much none, this is a very simple change and the reverse 
dependencies of rpki-trust-anchors are few packages with (currently) 
a small user base.

unblock rpki-trust-anchors/20210417-1

-- 
ciao,
Marco
diff -Nru rpki-trust-anchors-20200621/debian/changelog rpki-trust-anchors-20210417/debian/changelog
--- rpki-trust-anchors-20200621/debian/changelog	2020-06-21 19:13:33.0 +0200
+++ rpki-trust-anchors-20210417/debian/changelog	2021-04-17 11:55:56.0 +0200
@@ -1,3 +1,15 @@
+rpki-trust-anchors (20210417-1) unstable; urgency=medium
+
+  * Updated the https URL for the APNIC TAL.
+
+ -- Marco d'Itri   Sat, 17 Apr 2021 11:55:56 +0200
+
+rpki-trust-anchors (20200621-2) unstable; urgency=medium
+
+  * Added a debconf translation: pt. (Closes: #982337)
+
+ -- Marco d'Itri   Sun, 28 Mar 2021 00:30:51 +0100
+
 rpki-trust-anchors (20200621-1) unstable; urgency=high
 
   * Fixed the https URL of the APNIC TAL. (Closes: #963268)
diff -Nru rpki-trust-anchors-20200621/debian/po/pt.po rpki-trust-anchors-20210417/debian/po/pt.po
--- rpki-trust-anchors-20200621/debian/po/pt.po	1970-01-01 01:00:00.0 +0100
+++ rpki-trust-anchors-20210417/debian/po/pt.po	2021-04-17 11:53:54.0 +0200
@@ -0,0 +1,49 @@
+# Translation of rpki-trust-anchors debconf messages to European Portuguese.
+# Copyright (C) 2021 THE rpki-trust-anchors'S COPYRIGHT HOLDER
+# This file is distributed under the same license as the rpki-trust-anchors package.
+# Américo Monteiro , 2021.
+#
+msgid ""
+msgstr ""
+"Project-Id-Version: rpki-trust-anchors_20200621-1\n"
+"Report-Msgid-Bugs-To: rpki-trust-anch...@packages.debian.org\n"
+"POT-Creation-Date: 2019-12-14 17:54+0100\n"
+"PO-Revision-Date: 2021-02-08 23:33+\n"
+"Last-Translator: Américo Monteiro \n"
+"Language-Team: Portuguese <>\n"
+"Language: pt\n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: 8bit\n"
+"Plural-Forms: nplurals=2; plural=(n != 1);\n"
+"X-Generator: Lokalize 2.0\n"
+
+#. Type: boolean
+#. Description
+#: ../rpki-trust-anchors.templates:1001
+msgid "Do you accept the ARIN Relying Party Agreement (RPA)?"
+msgstr "Você aceita o Acordo ARIN Relying Party Agreement (RPA)?"
+
+#. Type: boolean
+#. Description
+#: ../rpki-trust-anchors.templates:1001
+msgid ""
+"ARIN forbids third parties from distributing the Trust Anchor Locator (TAL) "
+"for their RPKI repository, hence this package can download it only if you "
+"will agree to ARIN's conditions."
+msgstr ""
+"ARIN proíbe terceiros de distribuir o Trust Anchor Locator (TAL) para os "
+"seus repositórios RPKI, por isso este pacote apenas o pode descarregar se "
+"você concordar com as condições do ARIN."
+
+#. Type: boolean
+#. Description
+#: ../rpki-trust-anchors.templates:1001
+msgid ""
+"If you want that this package automatically download and installs the ARIN "
+"TAL, then you need to accept the ARIN Relying Party Agreement (RPA): https://";
+"www.arin.net/resources/manage/rpki/rpa.pdf ."
+msgstr ""
+"Se você quiser isso, este pacote descarrega e instala automaticamente o "
+"ARIN TAL, depois você precisa de aceitar o acordo ARIN Relying Party "
+"Agreement (RPA): https://www.arin.net/resources/manage/rpki/rpa.pdf ."
diff -Nru rpki-trust-anchors-20200621/tals/apnic.tal rpki-trust-anchors-20210417/tals/apnic.tal
--- rpki-trust-anchors-20200621/tals/apnic.tal	2020-06-21 19:06:44.0 +0200
+++ rpki-trust-anchors-20210417/tals/apnic.tal	2021-04-17 03:31:46.0 +0200
@@ -1,4 +1,4 @@
-https://tal.apnic.net/apnic.cer
+https://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
 rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
 
 MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9RWSL61YAAYumEiU8z8


signature.asc
Description: PGP signature

Bug#987116: firmware-iwlwifi: AX20* bluetooth random disconnects

2021-04-17 Thread AX20* bluetooth disconnecting from audio devices 
Package: firmware-iwlwifi
Version: 20210315-2
Severity: important
Tags: upstream
X-Debbugs-Cc: vitr...@gmail.com

Dear Maintainer,

   * What led up to the situation?
Firmware for intel AX200 and AX201 contains a bug. Installing the firmware 
causes random disconencts of bluetooth audio devices.
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
I didn't check if this could be fixed by downgrading, because foudn no 
packages. Arch users found that it could be solved downgrading to firmware 
20201218
   * What was the outcome of this action?
   * What outcome did you expect instead?
The whole situation with logs is discussed here 
https://bbs.archlinux.org/viewtopic.php?id=263040 (This is from arch, but 
exactly as in Debian). There is no solution up to now, as far as I know.


-- System Information:
Debian Release: bullseye/sid
  APT prefers testing-security
  APT policy: (500, 'testing-security'), (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.10.0-6-amd64 (SMP w/4 CPU threads)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

firmware-iwlwifi depends on no packages.

firmware-iwlwifi recommends no packages.

Versions of packages firmware-iwlwifi suggests:
ii  initramfs-tools  0.140

-- no debconf information

Bug#987104: minetest-server: Ipv6 is not enabled in default settings.

2021-04-17 Thread Robert Seimetz 
Package: minetest-server
Version: 5.3.0+repack-2
Severity: normal
Tags: ipv6
Control: affects -1 + freedombox

At the moment, ipv6 support is not enabled in default settings. This
is probably because the comment in the configuration file claims that,
when ipv6 support is enabled, minetest may only listen to ipv6 requests.

I've tested the minetest client and the results show me that, when ipv6
is enabled, the minetest listens to  both, ipv4 and ipv6 requests.

I am currently using the minetest server through the freedombox package 
and it would be good if freedombox users could use minetest out of the box.
Freedombox could also set this setting, but I think all users can benefit
from it.

-- System Information:
Debian Release: bullseye/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.10.0-6-amd64 (SMP w/2 CPU threads)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages minetest-server depends on:
ii  adduser  3.118
ii  init-system-helpers  1.60
ii  libc62.31-11
ii  libcurl3-gnutls  7.74.0-1.2
ii  libgcc-s110.2.1-6
ii  libgmp10 2:6.2.1+dfsg-1
ii  libjsoncpp24 1.9.4-4
ii  libleveldb1d 1.22-3
ii  libluajit-5.1-2  2.1.0~beta3+dfsg-5.3
ii  libncursesw6 6.2+20201114-2
ii  libpq5   13.2-1
ii  libspatialindex6 1.9.3-2
ii  libsqlite3-0 3.34.1-3
ii  libstdc++6   10.2.1-6
ii  libtinfo66.2+20201114-2
ii  lsb-base 11.1.0
ii  minetest-data5.3.0+repack-2
ii  zlib1g   1:1.2.11.dfsg-2

minetest-server recommends no packages.

minetest-server suggests no packages.

-- Configuration Files:
/etc/minetest/minetest.conf changed:
server_name = My Minetest server
server_description = Minetest server powered by Debian
server_announce = false
serverlist_url = servers.minetest.net
port = 3
ipv6_server = true
default_game = minetest
motd = Welcome to Minetest. Enjoy your stay!
max_users = 15
enable_damage = true
creative_mode = false
default_privs = interact, shout
enable_pvp = true


-- no debconf information

Bug#987103: grub-efi-*: Please backport regression fix for util/mkimage

2021-04-17 Thread Colin Watson 
On Sat, Apr 17, 2021 at 07:16:38PM +0200, John Paul Adrian Glaubitz wrote:
> The recent round of security fixes introduced a regression which broke GRUB
> on ia64 and potentially on other EFI platforms [1]. Upstream now proposed
> a patch to fix the issue [2] but it has not been merged yet.
> 
> Would it still be possible to get the patch included in the Debian package?

Sure, this looks reasonable enough to me - wrong section sizes make me
twitchy anyway.  I'll apply this.

Thanks,

-- 
Colin Watson (he/him)  [cjwat...@debian.org]

Bug#986341: unblock: neomutt/20201127+dfsg.1-1.1

2021-04-17 Thread Ryan Kavanagh 
Control: tags -1 - moreinfo

On Wed, Apr 07, 2021 at 10:43:36PM +0200, Sebastian Ramacher wrote:
> Please remove the moreinfo tag once the version is available in
> unstable.

It is now available in unstable.

Thanks,
Ryan

-- 
|)|/  Ryan Kavanagh  | GPG: 4E46 9519 ED67 7734 268F
|\|\  https://rak.ac |  BD95 8F7B F8FC 4A11 C97A

Bug#987115: linux-image-5.10.0-5-amd64: Sound volume fades out on right channel on AMD Family 17h HD Audio using snd_hda_intel

2021-04-17 Thread Federico Ceratto 
Package: src:linux
Version: 5.10.26-1
Severity: normal

Hello,

The sound fades out on the right channel on an AMD Family 17h HD Audio
card. It takes 5 to 10 seconds to fade to complete silence.
Sometimes it fades down to approx 80% instead of 0.
Occasionally it fades in, back to 100%. It happens only when using
headphones connected either to the headphones out on the laptop or to
the headphones connector on an external monitor connected via HDMI.

During the event the volume sliders on pavucontrol or alsamixer do not
move. Also "pulseaudio -v" running in foreground does not show any log
at that time.

Moving the volume sliders only affects the left channel, unless the
level is increased to a very high volume and it that case the right
channel jumps back to normal.

Stopping and restarting pulseaudio successfully reset the volume in few
tests, but I'm not sure if this is a pulseaudio or snd_hda_intel kernel bug.

Dmesg shows some snd_hda_intel "spurious response".

$ inxi -A
Audio: Device-1: Advanced Micro Devices [AMD/ATI] driver: snd_hda_intel 
   Device-2: Advanced Micro Devices [AMD] 
Raven/Raven2/FireFlight/Renoir Audio Processor driver: N/A 
   Device-3: Advanced Micro Devices [AMD] Family 17h HD Audio driver: 
snd_hda_intel 
   Device-4: Sunplus Innovation HD 720P webcam type: USB driver: 
snd-usb-audio,uvcvideo 
   Sound Server: ALSA v: k5.10.0-5-amd64

Thanks!
Federico


-- Package-specific info:
** Version:
Linux version 5.10.0-5-amd64 (debian-ker...@lists.debian.org) (gcc-10 (Debian 
10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2) #1 SMP 
Debian 5.10.26-1 (2021-03-27)

** Command line:
BOOT_IMAGE=/vmlinuz-5.10.0-5-amd64 
root=UUID=d9ead66b-449c-4aa3-9741-21164fbcfc09 ro quiet

** Not tainted

** Kernel log:
[389428.039537] smpboot: Booting Node 0 Processor 15 APIC 0xf
[389428.038343] microcode: CPU15: patch_level=0x08600103
[389428.039947] ACPI: \_SB_.PLTF.P00F: Found 3 idle states
[389428.040520] CPU15 is up
[389428.041618] ACPI: Waking up from system sleep state S3
[389428.043069] ACPI: EC: interrupt unblocked
[389428.102851] ACPI: EC: event unblocked
[389428.104068] [drm] PCIE GART of 1024M enabled (table at 0x00F40090).
[389428.104099] [drm] PSP is resuming...
[389428.123987] [drm] reserve 0x40 from 0xf41f80 for PSP TMR
[389428.126663] nvme nvme0: Shutdown timeout set to 8 seconds
[389428.163962] nvme nvme0: 16/0/0 default/read/poll queues
[389428.225313] r8169 :01:00.0 eno1: Link is Down
[389428.337286] amdgpu :03:00.0: amdgpu: RAS: optional ras ta ucode is not 
available
[389428.361100] amdgpu :03:00.0: amdgpu: RAP: optional rap ta ucode is not 
available
[389428.361108] amdgpu :03:00.0: amdgpu: SMU is resuming...
[389428.361257] amdgpu :03:00.0: amdgpu: dpm has been disabled
[389428.363131] amdgpu :03:00.0: amdgpu: SMU is resumed successfully!
[389428.364490] [drm] kiq ring mec 2 pipe 1 q 0
[389428.379026] [drm] DMUB hardware initialized: version=0x0100
[389428.409378] usb 3-1.5: reset high-speed USB device number 24 using xhci_hcd
[389428.417358] ata1: SATA link down (SStatus 0 SControl 300)
[389428.417940] ata2: SATA link down (SStatus 0 SControl 300)
[389428.423438] usb 1-3: reset high-speed USB device number 2 using xhci_hcd
[389428.511945] PM: dpm_run_callback(): usb_dev_resume+0x0/0x10 [usbcore] 
returns -5
[389428.511948] PM: Device 3-1.5 failed to resume async: error -5
[389428.679406] usb 1-4.3: reset high-speed USB device number 4 using xhci_hcd
[389428.981261] [drm] Fence fallback timer expired on ring sdma0
[389429.493265] [drm] Fence fallback timer expired on ring sdma0
[389429.525356] snd_hda_intel :03:00.1: azx_get_response timeout, switching 
to polling mode: last cmd=0x002f2d00
[389429.525371] snd_hda_intel :03:00.1: spurious response 0x0:0x0, last 
cmd=0x2f2d00
[389429.525410] snd_hda_intel :03:00.1: spurious response 0x233:0x0, last 
cmd=0x2f2d00
[389429.525418] snd_hda_intel :03:00.1: spurious response 0x0:0x0, last 
cmd=0x2f2d00
[389429.525423] snd_hda_intel :03:00.1: spurious response 0x0:0x0, last 
cmd=0x2f2d00
[389429.525429] snd_hda_intel :03:00.1: spurious response 0x0:0x0, last 
cmd=0x2f2d00
[389429.525434] snd_hda_intel :03:00.1: spurious response 0x0:0x0, last 
cmd=0x2f2d00
[389429.525440] snd_hda_intel :03:00.1: spurious response 0x0:0x0, last 
cmd=0x2f2d00
[389429.525445] snd_hda_intel :03:00.1: spurious response 0x0:0x0, last 
cmd=0x2f2d00
[389429.525451] snd_hda_intel :03:00.1: spurious response 0x0:0x0, last 
cmd=0x2f2d00
[389429.525456] snd_hda_intel :03:00.1: spurious response 0x0:0x0, last 
cmd=0x2f2d00
[389430.005252] [drm] Fence fallback timer expired on ring sdma0
[389430.517241] [drm] Fence fallback timer expired on ring sdma0
[389430.529270] snd_hda_intel :03:00.1: No response from codec, disabling 
MSI: last cmd=0x00272d01
[389431.029255] [drm] Fence fallback timer expired on ring sdma0
[389431.533282

Bug#986557: 加 U+7551 CJK 畑

2021-04-17 Thread Boyuan Yang 
Hi,

On Wed, 07 Apr 2021 08:51:31 +0800 積丹尼 Dan Jacobson 
wrote:
> Package: libchewing3
> Version: 0.5.1-4
> Severity: wishlist
> 
> 地籍圖常見之
> -
> U+7551 CJK UNIFIED IDEOGRAPH-7551
> 畑
> kHanyuPinyin: 32195.110:tián
> kMandarin: tián
> 
> 仍無法打。

Please also consider forwarding your suggestion to
https://github.com/chewing/libchewing/issues , which may get broader
attention.

Thanks,
Boyuan Yang


signature.asc
Description: This is a digitally signed message part

Bug#987114: hiredis: Enable TLS support

2021-04-17 Thread Michael Fladischer 
Source: hiredis
Severity: wishlist

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Dear Maintainer,

would it be possible to build hiredis with TLS support as described in the
documentation[0]?

[0] https://github.com/redis/hiredis#ssltls-support

Best regards,
Michael


- -- System Information:
Debian Release: 11.0
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: armhf

Kernel: Linux 5.10.0-6-amd64 (SMP w/2 CPU threads)
Locale: LANG=en_DK.UTF-8, LC_CTYPE=en_DK.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

-BEGIN PGP SIGNATURE-

iQFFBAEBCgAvFiEEqVSlRXW87UkkCnJc/9PIi5l90WoFAmB7PqARHGZsYWRpQGRl
Ymlhbi5vcmcACgkQ/9PIi5l90WrxuAgAm6ZEM9FXgOhfqoRHOfwkVZ1hM2Zuz7U+
F2PPzfoVbElmYW3vRn9UtJqy4IJJ6Xivuu+G60rdpAazXXLlbN7AlrB5Vhq7HSi9
7KRmCdciBmNwUmXKFcFgXKAEAyp6svVEOoP7SneJrqraRQ6y7nC8lsKmnf28iLd7
FRs457nmqitDf8Zu3UEdJUy8cAZ3YmepXBtziqgIBrblDG3kNDcFzmJiH4+7Ym+l
mrfEF4SjC+ctwzH84tAlD1FX28v4TvCX6D0wTJTlqaNlte9FKFPWWjoN7dCO2Slb
694bRQqT/vkqZfIcgeCwayWiTWkCvBmnRshjUqAha9xtIiy2T4n1VA==
=A0UT
-END PGP SIGNATURE-

Bug#987113: ruby-librarian: autopkgtest failure: times out everywhere

2021-04-17 Thread Paul Gevers 
Source: ruby-librarian
Version: 0.6.4-2
X-Debbugs-CC: debian...@lists.debian.org
Severity: serious
User: debian...@lists.debian.org
Usertags: fails-always timeout

Dear maintainers,

Your package has an autopkgtest, great. However it fails. Worse, since
0.6.4-2 it times out on the ci.d.n infrastructure after 2:47 hours. I
copied some of the output at the bottom of this report.

These kind of timeouts are bad for our infrastructure. I'll add your
package to our ignore-list.

Paul

https://ci.debian.net/packages/r/ruby-librarian/testing/amd64/
https://ci.debian.net/packages/r/ruby-librarian/testing/arm64/
https://ci.debian.net/packages/r/ruby-librarian/testing/armhf/
https://ci.debian.net/packages/r/ruby-librarian/testing/i386/
https://ci.debian.net/packages/r/ruby-librarian/testing/ppc64el/
https://ci.debian.net/packages/r/ruby-librarian/testing/s390x/


https://ci.debian.net/data/autopkgtest/testing/amd64/r/ruby-librarian/11723045/log.gz

autopkgtest [01:43:42]: test gem2deb-test-runner: gem2deb-test-runner
--autopkgtest --check-dependencies 2>&1
autopkgtest [01:43:42]: test gem2deb-test-runner: [---

┌──┐
│ Checking Rubygems dependency resolution on ruby2.7
   │
└──┘

GEM_PATH= ruby2.7 -e gem\ \"librarianp\"

┌──┐
│ Run tests for ruby2.7 from debian/ruby-tests.rake
   │
└──┘

mv lib .gem2deb.lib
mv Gemfile.lock .gem2deb.Gemfile.lock
RUBYLIB=. GEM_PATH= ruby2.7 -S rake -f debian/ruby-tests.rake
/usr/bin/ruby2.7
-I/usr/share/rubygems-integration/all/gems/rspec-support-3.9.3/lib:/usr/share/rubygems-integration/all/gems/rspec-core-3.9.2/lib
/usr/share/rubygems-integration/all/gems/rspec-core-3.9.2/exe/rspec
--pattern ./spec/\*\*/\*_spec.rb --format documentation

Librarian::Mock::Cli
  version
autopkgtest [04:30:22]: ERROR: timed out on command "su -s /bin/bash
debci -c set -e; export USER=`id -nu`; . /etc/profile >/dev/null 2>&1 ||
true;  . ~/.profile >/dev/null 2>&1 || true;
buildtree="/tmp/autopkgtest-lxc.4s6pt3u1/downtmp/build.PF3/src"; mkdir
-p -m 1777 --
"/tmp/autopkgtest-lxc.4s6pt3u1/downtmp/gem2deb-test-runner-artifacts";
export
AUTOPKGTEST_ARTIFACTS="/tmp/autopkgtest-lxc.4s6pt3u1/downtmp/gem2deb-test-runner-artifacts";
export ADT_ARTIFACTS="$AUTOPKGTEST_ARTIFACTS"; mkdir -p -m 755
"/tmp/autopkgtest-lxc.4s6pt3u1/downtmp/autopkgtest_tmp"; export
AUTOPKGTEST_TMP="/tmp/autopkgtest-lxc.4s6pt3u1/downtmp/autopkgtest_tmp";
export ADTTMP="$AUTOPKGTEST_TMP"; export DEBIAN_FRONTEND=noninteractive;
export LANG=C.UTF-8; export DEB_BUILD_OPTIONS=parallel=48; unset
LANGUAGE LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE   LC_MONETARY
LC_MESSAGES LC_PAPER LC_NAME LC_ADDRESS   LC_TELEPHONE LC_MEASUREMENT
LC_IDENTIFICATION LC_ALL;rm -f /tmp/autopkgtest_script_pid; set -C; echo
$$ > /tmp/autopkgtest_script_pid; set +C; trap "rm -f
/tmp/autopkgtest_script_pid" EXIT INT QUIT PIPE; cd "$buildtree"; touch
/tmp/autopkgtest-lxc.4s6pt3u1/downtmp/gem2deb-test-runner-stdout
/tmp/autopkgtest-lxc.4s6pt3u1/downtmp/gem2deb-test-runner-stderr; bash
-ec 'gem2deb-test-runner --autopkgtest --check-dependencies 2>&1' 2>
>(tee -a
/tmp/autopkgtest-lxc.4s6pt3u1/downtmp/gem2deb-test-runner-stderr >&2) >
>(tee -a
/tmp/autopkgtest-lxc.4s6pt3u1/downtmp/gem2deb-test-runner-stdout);"
(kind: test)
autopkgtest [04:30:22]: test gem2deb-test-runner: ---]



OpenPGP_signature
Description: OpenPGP digital signature

Bug#987112: wdisplays: The upstream project's github repository has disappeared.

2021-04-17 Thread Carlos Aguilar 
Package: wdisplays
Version: 1.0-2
Severity: important
Tags: upstream
X-Debbugs-Cc: hacerespa...@gmail.com

Dear Maintainer,


The upstream project for the wdisplays packages seems to have disappeared
without prior notice. The github and sourcehut repositories alluding to this
project, as well as the github account of the main author of the project, Jason
Francis (aka cyclopsian) have also been deleted. See:

* https://sr.ht/~jf/wdisplays/
* https://github.com/cyclopsian
* https://github.com/cyclopsian/wdisplays

 Apparently, this was noticed around March 28th, 2021 on
https://aur.archlinux.org/packages/wdisplays-git/

The only trace that I was able to find from the upstream was a this wayback
machine's snapshot:
https://web.archive.org/web/20210204184506/https://github.com/cyclopsian/wdisplays
. However, there is a repository that mirrored the upstream project and has had
some development after the upstream's disappearance. See:
https://github.com/artizirk/wdisplays . Perhaps this could become the new
upstream for wdisplays?


Best regards,

Carlos Aguilar


-- System Information:
Debian Release: 11.0
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 5.10.0-6-amd64 (SMP w/4 CPU threads)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not
set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages wdisplays depends on:
ii  libc62.31-11
ii  libcairo21.16.0-5
ii  libepoxy01.5.5-1
ii  libglib2.0-0 2.66.8-1
ii  libgtk-3-0   3.24.24-3
ii  libpango-1.0-0   1.46.2-3
ii  libpangocairo-1.0-0  1.46.2-3
ii  libwayland-client0   1.19.0-2

wdisplays recommends no packages.

wdisplays suggests no packages.

Bug#987111: gpsd ntrip username and password parsing error

2021-04-17 Thread Aiden Morrison 
Package: gpsd
Version: 3.20 (revision 3.20)

error text:
gpsd:ERROR: not authorized for Ntrip stream caster.dyndns.org/NOT
gpsd:ERROR: can't extrat Ntrip stream from (username redacted):(password 
redacted)
gpsd:ERROR: ntrip://(username):(password): device activation failed.
gpsd:ERROR: ntrip://(username):(password): activation failed, freeing device.

Reproduction:
provide gpsd with an ntrip server which requires a username:password@... to be 
defined and it will fail to connect, while also erroneously reporting the 
device as being the username and password, not the server.

I can connect to the same ntrip server using 
https://github.com/nunojpg/ntripclient as well as two commercial software 
packages, so the error appears to be in how gpsd is interpreting the connection 
string.

If credentials would be helpful in reproducing this bug I can be contacted at 
aiden.morri...@sintef.no
[https://avatars.githubusercontent.com/u/3163870?s=400&v=4]
GitHub - nunojpg/ntripclient: Ntrip Version 2.0 Command Line 
Client
Ntrip Version 2.0 Command Line Client. Contribute to nunojpg/ntripclient 
development by creating an account on GitHub.
github.com

Bug#987110: gdb: Segfaults in a qemu-system-s390x virtual machine

2021-04-17 Thread Sven Geuer 
Package: gdb
Version: 10.1-2
Severity: important

Dear Maintainer,

run in a qemu-system-s390x virtual machine, gdb returns a segfault when
starting the program to be debugged.

These are the steps to reproduce the issue.

1) Download the s390x image from https://people.debian.org/~gio/dqib/
2) Unzip the downloaded file artifacts.zip
3) Enter the created folder 'artifacts' and start the virtual machine using
   the command listed in file 'readme.txt'
4) Login as root
5) Install gdb: apt-get install gdb
6) Start gbd with any program to debug (I picked 'ls'): gdp --args ls
7) Issue the 'run' command
8) gbd returns

  Starting program: /bin/ls 

  Program received signal SIGSEGV, Segmentation fault.
  _dl_debug_initialize (ldbase=4398012600384, ns=4398012432784) at dl-debug.c:54
  54dl-debug.c: No such file or directory.

The error stays the same regardless of what program has been chosen to debug.

The same steps work flawlessly in other Qemu VMs, for instance in
qemu-system-ppc64le.

This bug has been filed from within the s390x virtual machine.



-- System Information:
Debian Release: 11.0
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: s390x

Kernel: Linux 5.10.0-6-s390x (SMP w/1 CPU thread)
Kernel taint flags: TAINT_UNSIGNED_MODULE
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages gdb depends on:
ii  libbabeltrace1  1.5.8-1+b3
ii  libc6   2.31-11
ii  libdebuginfod1  0.183-3
ii  libexpat1   2.2.10-2
ii  libgcc-s1   10.2.1-6
ii  liblzma55.2.5-2
ii  libmpfr64.1.0-3
ii  libncursesw66.2+20201114-2
ii  libpython3.93.9.2-1
ii  libreadline88.1-1
ii  libsource-highlight4v5  3.1.9-3+b1
ii  libstdc++6  10.2.1-6
ii  libtinfo6   6.2+20201114-2
ii  libxxhash0  0.8.0-2
ii  zlib1g  1:1.2.11.dfsg-2

Versions of packages gdb recommends:
ii  libc6-dbg [libc-dbg]  2.31-11

Versions of packages gdb suggests:
pn  gdb-doc
pn  gdbserver  

-- no debconf information

Bug#987109: readelf --dyn-syms truncates symbol names

2021-04-17 Thread Josh Triplett 
Package: binutils-x86-64-linux-gnu
Version: 2.35.2-2
Severity: normal
File: /usr/bin/x86_64-linux-gnu-readelf
X-Debbugs-Cc: j...@joshtriplett.org

Since version 2.35, readelf truncates symbol names to attempt to make
the output fit in 80 characters, by default, even if output is not going
to a terminal.

$ readelf --dyn-syms /usr/bin/readelf | fgrep ... | head
 2:  0 FUNCGLOBAL DEFAULT  UND [...]@GLIBC_2.2.5 (2)
 4:  0 FUNCGLOBAL DEFAULT  UND c[...]@LIBCTF_1.0 (3)
 5:  0 FUNCGLOBAL DEFAULT  UND [...]@GLIBC_2.2.5 (2)
 6:  0 FUNCGLOBAL DEFAULT  UND [...]@GLIBC_2.2.5 (2)
 7:  0 FUNCGLOBAL DEFAULT  UND [...]@GLIBC_2.2.5 (2)
 8:  0 NOTYPE  WEAK   DEFAULT  UND _ITM_deregisterT[...]
 9:  0 OBJECT  GLOBAL DEFAULT  UND [...]@GLIBC_2.2.5 (2)
10:  0 FUNCGLOBAL DEFAULT  UND [...]@GLIBC_2.2.5 (2)
11:  0 FUNCGLOBAL DEFAULT  UND __[...]@GLIBC_2.7 (4)
12:  0 FUNCGLOBAL DEFAULT  UND c[...]@LIBCTF_1.0 (3)


This breaks tools that parse the output of readelf. (I discovered this
while trying to build the a recent version of syslinux from git.)

Please consider dropping the default truncation (ideally always, but at
a minimum if output is not going to a terminal), and making the --wide
option a no-op for compatibility.

I can confirm that this issue still exists in the latest version from
experimental (2.36.1-6).

-- System Information:
Debian Release: 11.0
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (1, 
'experimental-debug'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 5.10.0-6-amd64 (SMP w/4 CPU threads)
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages binutils-x86-64-linux-gnu depends on:
ii  binutils-common  2.35.2-2
ii  libbinutils  2.35.2-2
ii  libc62.31-11
ii  libctf-nobfd02.35.2-2
ii  libctf0  2.35.2-2
ii  libgcc-s110.2.1-6
ii  libstdc++6   10.2.1-6
ii  zlib1g   1:1.2.11.dfsg-2

binutils-x86-64-linux-gnu recommends no packages.

Versions of packages binutils-x86-64-linux-gnu suggests:
pn  binutils-doc  

-- no debconf information

Bug#980743: release-notes: bullseye is the final release to ship apt-key

2021-04-17 Thread Justin B Rye 
Paul Gevers wrote:
> + 
> +  
> +   bullseye is the final Debian release to ship
> +   apt-key. Keys should be managed by
> +   dropping files into trusted.gpg.d instead, in binary format

trusted.gpg.d or maybe
/etc/apt/trusted.gpg.d?

> +   as created by gpg --export with a
> +   .gpg extension, or ASCII armored with a
> +   .asc extension.
> +   
> +   
> + A replacement for apt-key list to
> + manually investigate the keyring is planned, but work has
> + not started yet.
> +  
> + 

(odd indents here)

> +
>
>  
-- 
JBR with qualifications in linguistics, experience as a Debian
sysadmin, and probably no clue about this particular package

Bug#986637: fixed in speedtest-cli 2.1.3-1

2021-04-17 Thread Paul Gevers 
Hi,

On Mon, 12 Apr 2021 13:08:04 + Debian FTP Masters
 wrote:
>* Upgrade to debhelper-compat (=13)

With this reverted [1], it can be unblocked.

Paul

[1] https://release.debian.org/bullseye/FAQ.html section "I bumped the
debhelper compat level, why is it rejected?"




OpenPGP_signature
Description: OpenPGP digital signature

Bug#987079: unblock: boxer-data/10.8.21

2021-04-17 Thread Paul Gevers 
Control: tags -1 moreinfo

Hi Jonas,

On 17-04-2021 11:24, Jonas Smedegaard wrote:
> [ Tests ]
> This bug is covered by autopkgtest (that's how it was spotted), and the
> bugfix is confirmed to succeed that test.

If you fix the autopkgtest to not be amd64 specific, but also work on
the other architectures, in the current phase of the freeze it wouldn't
be blocked and we wouldn't need to unblock. Please fix your autopkgtest.

Paul



OpenPGP_signature
Description: OpenPGP digital signature

Bug#980743: release-notes: bullseye is the final release to ship apt-key

2021-04-17 Thread Paul Gevers 
Hi,

On Thu, 21 Jan 2021 10:17:48 +0100 Julian Andres Klode 
wrote:
> apt-key warns that it is deprecated and the manual page states that
> Debian 11 and Ubuntu 22.04 will be the last releases to ship it, but I
> guess given that use is still far too widespread, it can't hurt to add a
> similar message to the release notes.
> 
> -- Message:
> 
> This is the final Debian release to ship apt-key. Keys should be managed by
> dropping files into trusted.gpg.d instead, in binary format as created
> by gpg --export with a .gpg extension, or ASCII armored with a .asc
> extension.
> 
> A replacement for apt-key list to investigate the keyring is planned,
> but work has not started yet.

I have the attached patch ready to push.

Paul
From 7af57e1978d147978d9f65d8de2344396bb63d6e Mon Sep 17 00:00:00 2001
From: Julian Andres Klode 
Date: Sat, 17 Apr 2021 21:16:34 +0200
Subject: [PATCH] issues.dbk: apt-key is going away

Closes: #980743
---
 en/issues.dbk | 16 
 1 file changed, 16 insertions(+)

diff --git a/en/issues.dbk b/en/issues.dbk
index 61a12983..2517ddd7 100644
--- a/en/issues.dbk
+++ b/en/issues.dbk
@@ -515,6 +515,22 @@ Environment=SYSTEMD_SULOGIN_FORCE=1
   
 	
 
+	
+  
+   bullseye is the final Debian release to ship
+   apt-key. Keys should be managed by
+   dropping files into trusted.gpg.d instead, in binary format
+   as created by gpg --export with a
+   .gpg extension, or ASCII armored with a
+   .asc extension.
+	  
+	  
+	A replacement for apt-key list to
+	manually investigate the keyring is planned, but work has
+	not started yet.
+  
+	
+
   
 
 
-- 
2.30.2



OpenPGP_signature
Description: OpenPGP digital signature

Bug#986673: dnspython 1.16.0-1+deb10u1 flagged for acceptance

2021-04-17 Thread Adam D Barratt 
package release.debian.org
tags 986673 = buster pending
thanks

Hi,

The upload referenced by this bug report has been flagged for acceptance into 
the proposed-updates queue for Debian buster.

Thanks for your contribution!

Upload details
==

Package: dnspython
Version: 1.16.0-1+deb10u1

Explanation: XFR: do not attempt to compare to a non-existent "expiration" value

Bug#983110: ipmitool 1.8.18-6+deb10u1 flagged for acceptance

2021-04-17 Thread Adam D Barratt 
package release.debian.org
tags 983110 = buster pending
thanks

Hi,

The upload referenced by this bug report has been flagged for acceptance into 
the proposed-updates queue for Debian buster.

Thanks for your contribution!

Upload details
==

Package: ipmitool
Version: 1.8.18-6+deb10u1

Explanation: fix buffer overflow issues [CVE-2020-5208]

Bug#934206: golang-github-docker-docker-credential-helpers 0.6.1-2+deb10u1 flagged for acceptance

2021-04-17 Thread Adam D Barratt 
package release.debian.org
tags 934206 = buster pending
thanks

Hi,

The upload referenced by this bug report has been flagged for acceptance into 
the proposed-updates queue for Debian buster.

Thanks for your contribution!

Upload details
==

Package: golang-github-docker-docker-credential-helpers
Version: 0.6.1-2+deb10u1

Explanation: fix double free issue [CVE-2019-1020014]

Bug#987032: cqrlog: Importing ADIF-logs results in 0 byte logs

2021-04-17 Thread Federico Grau 

Control: tag -1 patch

Attached patch to go in d/patches.

Patch to fix Debian#987032: cqrlog: Importing ADIF-logs results in 0 byte logs - https://bugs.debian.org/987032
Applies upstream commits:
42d1ad402affd0af0f3087562c101fc34940ffc5
Original_Author: Petr Hlozek 
Date:   Sun Feb 7 07:19:57 2021 +0100

fix: workaround for 'TRegExpr exec: empty input string' error in fpc compiler
Author: donf...@casagrau.org
diff --git a/src/fAdifImport.pas b/src/fAdifImport.pas
index 2481086..934b158 100644
--- a/src/fAdifImport.pas
+++ b/src/fAdifImport.pas
@@ -420,8 +420,12 @@ begin
 d.IOTA  := UpperCase(d.IOTA);
 d.NAME  := Copy(d.NAME, 1 ,40);
 d.QTH   := Copy(d.QTH, 1, 60);
-d.DARC_DOK := ReplaceRegExpr('Ø', d.DARC_DOK, '0', True);
-d.DARC_DOK := LeftStr(Uppercase(ReplaceRegExpr('[^a-zA-Z0-9]',d.DARC_DOK, '', True)), 12);
+//workaround for 'TRegExpr exec: empty input string' error in fpc compiler
+if (trim(d.DARC_DOK) <> '') then
+begin
+  d.DARC_DOK := ReplaceRegExpr('Ø', d.DARC_DOK, '0', True);
+  d.DARC_DOK := LeftStr(Uppercase(ReplaceRegExpr('[^a-zA-Z0-9]',d.DARC_DOK, '', True)), 12);
+end;
 
 d.QSL_VIA := UpperCase(d.QSL_VIA);
 if Pos('QSL VIA',d.QSL_VIA) > 0 then


signature.asc
Description: PGP signature

Bug#963964: release-notes: document aufs removal for bullseye

2021-04-17 Thread Paul Gevers 
Hi,

On 18-03-2021 10:55, Paul Gevers wrote:
> On Mon, 29 Jun 2020 21:36:55 +0300 Andrei POPESCU
>  wrote:
>> Control: tags -1 moreinfo
>>
>> On Lu, 29 iun 20, 10:31:02, Holger Levsen wrote:
>>> package: release-notes
>>> x-debbugs-cc: Timo Weingärtner , Jan Luca 
>>> Naumann , 963...@bugs.debian.org, 
>>> debian-de...@lists.debian.org
>>>
>>> in #963191 on Mon, Jun 29, 2020 at 10:06:33AM +0200, Bastian Blank wrote:
 On Mon, Jun 29, 2020 at 09:32:09AM +0200, Timo Weingärtner wrote:
> 20.06.20 13:26 Bastian Blank:
>> Since the kernel supports overlayfs since some time now, what blocks
>> it's removal?
> There are Debian installations on filesystems that are incompatible 
with 
> overlayfs, for example xfs without d_type.
> I ran into this while trying to get rid of aufs.
 So we need to document this problem in the release notes.  That's an
 easy task.
>>
>> Some more details (or even better, suggested wording) would be much 
>> appreciated, just in case none of the Release Notes editors are familiar 
>> with XFS and 'd_type'.
> 
> I have no clue. Would all users of XFS know what d_type is? What are
> their options? The question of zigo (adding d_type to to an existing xfs
> of ftype=0 and/or conversion tool from ftype=0 to ftype=1) in 963191
> went unanswered.

Ping, anybody?

Paul



OpenPGP_signature
Description: OpenPGP digital signature

Bug#987108: ITP: puppet-module-camptocamp-postfix -- Puppet module for Postfix

2021-04-17 Thread Thomas Goirand 
Package: wnpp
Severity: wishlist
Owner: Thomas Goirand 
X-Debbugs-Cc: debian-de...@lists.debian.org

* Package name: puppet-module-camptocamp-postfix
  Version : 1.11.0
  Upstream Author : Raphaël Pinson 
* URL : https://github.com/camptocamp/puppet-postfix
* License : Apache-2.0
  Programming Lang: Puppet
  Description : Puppet module for Postfix

 Puppet lets you centrally manage every important aspect of your system using a
 cross-platform specification language that manages all the separate elements
 normally aggregated in different files, like users, cron jobs, and hosts,
 along with obviously discrete elements like packages, services, and files.
 .
 camptocamp-postfix manages installation and configuration of Postfix.

Bug#987069: document which file systems support cgroupv2 I/O controller

2021-04-17 Thread Paul Gevers 
Hi Nicholas,

On 17-04-2021 00:35, Nicholas D Steeves wrote:
> Last I checked, only btrfs supports the cgroupv2 I/O controller; this
> should probably be documented.  Alternatively, if more than btrfs (ie:
> XFS and ext4) supports it, but not other file systems (ie: f2fs,
> reiser4, jfs, etc) than this should be documented.
> 
> As far as I can tell, the significance of this is as follows: Buster
> switched to mq-deadline, which does not support the idle I/O priority,
> and to get functional ionice the user/sysadmin had to switch to the
> non-mq CFQ, or bfq.  The situation in a default Bullseye install is
> better, but only for file systems that support the cgroupv2 I/O
> controller.

As I don't have much knowledge on this front, can you maybe do an actual
proposal for text to be added? And, if you're unsure, how do we find out
if you're right?

Paul



OpenPGP_signature
Description: OpenPGP digital signature

Bug#987107: ITP: puppet-module-puppetlabs-mailalias-core -- Puppet module for creating local email aliases

2021-04-17 Thread Thomas Goirand 
Package: wnpp
Severity: wishlist
Owner: Thomas Goirand 
X-Debbugs-Cc: debian-de...@lists.debian.org

* Package name: puppet-module-puppetlabs-mailalias-core
  Version : 1.0.6
  Upstream Author : Puppet Labs Inc
* URL : https://github.com/puppetlabs/puppetlabs-mailalias_core
* License : Apache-2.0
  Programming Lang: Puppet
  Description : Puppet module for creating local email aliases

 Puppet lets you centrally manage every important aspect of your system using a
 cross-platform specification language that manages all the separate elements
 normally aggregated in different files, like users, cron jobs, and hosts,
 along with obviously discrete elements like packages, services, and files.
 .
 puppetlabs-mailalias-core manages the local email alias database.

This is a dependency of camptocamp-postfix, which I'm packaging.

Bug#987105: inkscape: Incoherent style for window titlebar buttons

2021-04-17 Thread Mattia Rizzolo 
Hi!

On Sat, Apr 17, 2021 at 03:44:06PM -0300, Joseph Ponte wrote:
> The windows title bar buttons of inkscape package have a different style from 
> standard GTK theme. 
> 
> It seems overwrite on front of the correct style. It is more evident when use 
> the GTK arc-theme for example.
> 
> It happens with all of three buttons (minize, maximize and close)
> 
> An anhoter behavior that I noticed, the application GTK theme doesn't
> change automatically when I change the settings of gnome-shell  with
> gsettings set org.gnome.desktop.interface gtk-theme.

Could you please see if what you are describing is the same as this:
https://gitlab.com/inkscape/inkscape/-/issues/1925

Else, since I cannot find anything similar besides that one report, it
would be best if you could file this issue directly upstream here:
https://gitlab.com/inkscape/inbox/-/issues/new

-- 
regards,
Mattia Rizzolo

GPG Key: 66AE 2B4A FCCF 3F52 DA18  4D18 4B04 3FCD B944 4540  .''`.
More about me:  https://mapreri.org : :'  :
Launchpad user: https://launchpad.net/~mapreri  `. `'`
Debian QA page: https://qa.debian.org/developer.php?login=mattia  `-


signature.asc
Description: PGP signature

Bug#987068: assert "preliminary cgroupv2 support" or fix outstanding bugs (eg: debootstrap+Docker)

2021-04-17 Thread Paul Gevers 
Hi Nicholas,

Thanks for your bug report.

On 17-04-2021 00:27, Nicholas D Steeves wrote:
> It looks like Debian's Docker package has broken cgroup2 support
> (#985481), so either that bug should be fixed, or issues.dbk (around
> L66) should document that cgroup2 support may be broken in Docker
> containers on Bullseye.

I fail to see what you had in mind. Can you make your proposal a bit
more concrete? I haven't made backtracking to line 66 easier by
reorganizing that particular file, but the only place where we discuss
cgroups v2 is in OpenStack and that's much later.

Paul





OpenPGP_signature
Description: OpenPGP digital signature

Bug#987106: ITP: puppet-module-camptocamp-augeas -- Puppet module for Augeas

2021-04-17 Thread Thomas Goirand 
Package: wnpp
Severity: wishlist
Owner: Thomas Goirand 
X-Debbugs-Cc: debian-de...@lists.debian.org

* Package name: puppet-module-camptocamp-augeas
  Version : 1.9.0
  Upstream Author : Raphaël Pinson 
* URL : https://github.com/camptocamp/puppet-augeas
* License : Apache-2.0
  Programming Lang: Puppet
  Description : Puppet module for Augeas

 Puppet lets you centrally manage every important aspect of your system using a
 cross-platform specification language that manages all the separate elements
 normally aggregated in different files, like users, cron jobs, and hosts,
 along with obviously discrete elements like packages, services, and files.
 .
 Camptocamp Augeas extends Puppetlabs's augeas-core. Augeas is a configuration
 editing tool. It parses configuration files in their native formats and
 transforms them into a tree. Configuration changes are made by manipulating
 this tree and saving it back into native config files.

This is a dependency of camptocamp-postfix which I'm packaging.

Bug#987105: inkscape: Incoherent style for window titlebar buttons

2021-04-17 Thread Joseph Ponte 
Package: inkscape
Version: 1.0.2-3
Severity: minor
X-Debbugs-Cc: joseph.po...@gmail.com

Dear Maintainer,

The windows title bar buttons of inkscape package have a different style from 
standard GTK theme. 

It seems overwrite on front of the correct style. It is more evident when use 
the GTK arc-theme for example.

It happens with all of three buttons (minize, maximize and close)

An anhoter behavior that I noticed, the application GTK theme doesn't change 
automatically when I change the settings of gnome-shell  with gsettings set 
org.gnome.desktop.interface gtk-theme.   


-- System Information:
Debian Release: bullseye/sid
  APT prefers testing-security
  APT policy: (500, 'testing-security'), (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.10.0-6-amd64 (SMP w/4 CPU threads)
Locale: LANG=pt_BR.UTF-8, LC_CTYPE=pt_BR.UTF-8 (charmap=UTF-8), 
LANGUAGE=pt_BR:pt:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages inkscape depends on:
ii  libatkmm-1.6-1v5   2.28.0-3
ii  libc6  2.31-11
ii  libcairo2  1.16.0-5
ii  libcairomm-1.0-1v5 1.12.2-4
ii  libcdr-0.1-1   0.1.6-2
ii  libdbus-glib-1-2   0.110-6
ii  libdouble-conversion3  3.1.5-6.1
ii  libfontconfig1 2.13.1-4.2
ii  libfreetype6   2.10.4+dfsg-1
ii  libgc1 1:8.0.4-3
ii  libgcc-s1  10.2.1-6
ii  libgdk-pixbuf-2.0-02.42.2+dfsg-1
ii  libgdl-3-5 3.34.0-1
ii  libglib2.0-0   2.66.8-1
ii  libglibmm-2.4-1v5  2.64.2-2
ii  libgomp1   10.2.1-6
ii  libgsl25   2.6+dfsg-2
ii  libgtk-3-0 3.24.24-3
ii  libgtkmm-3.0-1v5   3.24.2-2
ii  libgtkspell3-3-0   3.0.10-1
ii  libharfbuzz0b  2.7.4-1
ii  libjpeg62-turbo1:2.0.6-4
ii  liblcms2-2 2.12~rc1-2
ii  libmagick++-6.q16-88:6.9.11.60+dfsg-1
ii  libpango-1.0-0 1.46.2-3
ii  libpangocairo-1.0-01.46.2-3
ii  libpangoft2-1.0-0  1.46.2-3
ii  libpangomm-1.4-1v5 2.42.1-1
ii  libpng16-161.6.37-3
ii  libpoppler-glib8   20.09.0-3.1
ii  libpoppler102  20.09.0-3.1
ii  libpotrace01.16-2
ii  librevenge-0.0-0   0.0.4-6+b1
ii  librsvg2-common2.50.3+dfsg-1
ii  libsigc++-2.0-0v5  2.10.4-2
ii  libsoup2.4-1   2.72.0-2
ii  libstdc++6 10.2.1-6
ii  libvisio-0.1-1 0.1.7-1+b1
ii  libwpg-0.3-3   0.3.3-1
ii  libx11-6   2:1.7.0-2
ii  libxml22.9.10+dfsg-6.3+b1
ii  libxslt1.1 1.1.34-4
ii  python33.9.2-2
ii  zlib1g 1:1.2.11.dfsg-2

Versions of packages inkscape recommends:
ii  aspell   0.60.8-2
ii  fig2dev  1:3.2.8-2
ii  imagemagick  8:6.9.11.60+dfsg-1
ii  imagemagick-6.q16 [imagemagick]  8:6.9.11.60+dfsg-1
ii  libimage-magick-perl 8:6.9.11.60+dfsg-1
ii  libwmf-bin   0.2.8.4-17
ii  python3-lxml 4.6.3-1
ii  python3-numpy1:1.19.5-1
ii  python3-scour0.38.2-1

Versions of packages inkscape suggests:
pn  dia   
pn  inkscape-tutorials
pn  libsvg-perl   
pn  libxml-xql-perl   
pn  pstoedit  
pn  python3-uniconvertor  
pn  ruby  

-- no debconf information

Bug#986814: Latest vagrant Buster libvirt image not found

2021-04-17 Thread Emmanuel Kasper 
Le 12/04/2021 à 13:14, Christopher Huhn a écrit :
> Package: cloud.debian.org
> Severity: serious
> 
> The latest Buster libvirt image for vagrant gives me a 404, `vagrant box
> update` fails.
> 
> λ > curl
> https://app.vagrantup.com/debian/boxes/buster64/versions/10.20210409.1/providers/libvirt.box

Hi
Thanks for your interest for the Debian Vagrant boxes.

when I'm doing vagrant box update the box is downloaded from
https://vagrantcloud.com/debian/boxes/buster64/versions/10.20210409./providers/libvirt.box

and is properly found

vagrant box update
==> default: Checking for updates to 'debian/buster64'
default: Latest installed version: 10.4.0
default: Version constraints:
default: Provider: libvirt
==> default: Updating 'debian/buster64' with provider 'libvirt' from version
==> default: '10.4.0' to '10.20210409.1'...
==> default: Loading metadata for box
'https://vagrantcloud.com/debian/buster64'
==> default: Adding box 'debian/buster64' (v10.20210409.1) for provider:
libvirt
default: Downloading:
https://vagrantcloud.com/debian/boxes/buster64/versions/10.20210409.1/providers/libvirt.box
Download redirected to host:
vagrantcloud-files-production.s3-accelerate.amazonaws.com
==> default: Successfully added box 'debian/buster64' (v10.20210409.1)
for 'libvirt'!


when creating a fresh environment with
export VAGRANT_DEFAULT_PROVIDER=libvirt
vagrant init debian/buster64`
vagrant up

is the box properly downloaded on your side ?


-- 
You know an upstream is nice when they even accept m68k patches.
  - John Paul Adrian Glaubitz, Debian OpenJDK maintainer

Bug#984791: eatmydata-udeb: udeb included in Debian ISO, but eatmydata and libeatmydata1 are not

2021-04-17 Thread Mattia Rizzolo 
On Sat, Apr 17, 2021 at 07:01:33PM +0200, Petter Reinholdtsen wrote:
> I suspect this BTS report should be either closed as fixed

Yes, whatever is remaining is not within src:libeatmydata to fix, IMHO,
so I'm closing this report.

Thank you for handling this.

-- 
regards,
Mattia Rizzolo

GPG Key: 66AE 2B4A FCCF 3F52 DA18  4D18 4B04 3FCD B944 4540  .''`.
More about me:  https://mapreri.org : :'  :
Launchpad user: https://launchpad.net/~mapreri  `. `'`
Debian QA page: https://qa.debian.org/developer.php?login=mattia  `-


signature.asc
Description: PGP signature

Bug#987103: grub-efi-*: Please backport regression fix for util/mkimage

2021-04-17 Thread John Paul Adrian Glaubitz 
Source: grub2
Version: 2.04-17
Severity: normal
Tags: patch
User: debian-i...@lists.debian.org
Usertags: ia64
X-Debbugs-Cc: debian-i...@lists.debian.org,fmart...@redhat.com

Hello!

The recent round of security fixes introduced a regression which broke GRUB
on ia64 and potentially on other EFI platforms [1]. Upstream now proposed
a patch to fix the issue [2] but it has not been merged yet.

Would it still be possible to get the patch included in the Debian package?

I'm attaching the patch to this bug report in any case.

Thanks,
Adrian

> [1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg00239.html
> [2] https://lists.gnu.org/archive/html/grub-devel/2021-04/msg00061.html

--
 .''`.  John Paul Adrian Glaubitz
: :' :  Debian Developer - glaub...@debian.org
`. `'   Freie Universitaet Berlin - glaub...@physik.fu-berlin.de
  `-GPG: 62FF 8A75 84E0 2956 9546  0006 7426 3B37 F5B5 F913
>From a2775fa3c3327be92e5657a9c3d1bfbc8ee70111 Mon Sep 17 00:00:00 2001
From: Javier Martinez Canillas 
Date: Fri, 16 Apr 2021 21:37:23 +0200
Subject: [PATCH] util/mkimage: Some fixes to PE binaries section size
 calculation

Commit f60ba9e5945 (util/mkimage: Refactor section setup to use a helper)
added a helper function to setup PE sections, but it caused regressions
in some arches where the natural alignment lead to wrong section sizes.

This patch fixes a few things that were caused the section sizes to be
calculated wrongly. These fixes are:

 * Only align the virtual memory addresses but not the raw data offsets.
 * Use aligned sizes for virtual memory sizes but not for raw data sizes.
 * Always align the sizes to set the virtual memory sizes.

These seems to not cause problems for x64 and aa64 EFI platforms but was
a problem for ia64. Because the size of the ".data" and "mods" sections
were wrong and didn't have the correct content. Which lead to GRUB not
being able to load any built-in module.

Reported-by: John Paul Adrian Glaubitz 
Signed-off-by: Javier Martinez Canillas 
---
 util/mkimage.c | 21 -
 1 file changed, 12 insertions(+), 9 deletions(-)

diff --git a/util/mkimage.c b/util/mkimage.c
index a26cf76f7..b84311f1f 100644
--- a/util/mkimage.c
+++ b/util/mkimage.c
@@ -841,7 +841,7 @@ init_pe_section(const struct grub_install_image_target_desc 
*image_target,
 
   section->raw_data_offset = grub_host_to_target32 (*rda);
   section->raw_data_size = grub_host_to_target32 (rsz);
-  (*rda) = ALIGN_UP (*rda + rsz, GRUB_PE32_FILE_ALIGNMENT);
+  (*rda) = *rda + rsz;
 
   section->characteristics = grub_host_to_target32 (characteristics);
 
@@ -1309,7 +1309,7 @@ grub_install_generate_image (const char *dir, const char 
*prefix,
char *pe_img, *pe_sbat, *header;
struct grub_pe32_section_table *section;
size_t n_sections = 4;
-   size_t scn_size;
+   size_t scn_size, raw_size;
grub_uint32_t vma, raw_data;
size_t pe_size, header_size;
struct grub_pe32_coff_header *c;
@@ -1410,7 +1410,8 @@ grub_install_generate_image (const char *dir, const char 
*prefix,
   GRUB_PE32_SCN_MEM_EXECUTE |
   GRUB_PE32_SCN_MEM_READ);
 
-   scn_size = ALIGN_UP (layout.kernel_size - layout.exec_size, 
GRUB_PE32_FILE_ALIGNMENT);
+   raw_size = layout.kernel_size - layout.exec_size;
+   scn_size = ALIGN_UP (raw_size, GRUB_PE32_FILE_ALIGNMENT);
/* ALIGN_UP (sbat_size, GRUB_PE32_FILE_ALIGNMENT) is done earlier. */
PE_OHDR (o32, o64, data_size) = grub_host_to_target32 (scn_size + 
sbat_size +
   ALIGN_UP 
(total_module_size,
@@ -1418,15 +1419,16 @@ grub_install_generate_image (const char *dir, const 
char *prefix,
 
section = init_pe_section (image_target, section, ".data",
   &vma, scn_size, image_target->section_align,
-  &raw_data, scn_size,
+  &raw_data, raw_size,
   GRUB_PE32_SCN_CNT_INITIALIZED_DATA |
   GRUB_PE32_SCN_MEM_READ |
   GRUB_PE32_SCN_MEM_WRITE);
 
-   scn_size = pe_size - layout.reloc_size - sbat_size - raw_data;
+   raw_size = pe_size - layout.reloc_size - sbat_size - raw_data;
+   scn_size = ALIGN_UP (raw_size, GRUB_PE32_FILE_ALIGNMENT);
section = init_pe_section (image_target, section, "mods",
   &vma, scn_size, image_target->section_align,
-  &raw_data, scn_size,
+  &raw_data, raw_size,
   GRUB_PE32_SCN_CNT_INITIALIZED_DATA |
   GRUB_PE32_SCN_MEM_READ |
   GRUB_PE32_SCN_MEM_WRITE);
@@ -1436,21 +1438,22 @@ grub_install_generate_image (const char *dir, const 
char *prefix,
pe_sbat = pe_i

Bug#986018: avahi-daemon: local DoS (daemon dies) on badly formatted hostname query to /run/avahi-daemon/socket

2021-04-17 Thread Salvatore Bonaccorso 
Hi Thomas,

On Sat, Apr 17, 2021 at 06:25:54PM +0200, Thomas Kremer wrote:
> On 16.04.2021 08:57, Salvatore Bonaccorso wrote:
> > This is now CVE-2021-3502.
> > 
> > Have you reported the issue to upstream?
> 
> No, I have not.

Would it be possible that you could do that and add a forwarded field
for this downstream accordingly? It is best tracked upstream.

Regards,
Salvatore

Bug#911329: add .libretro metadata for better integration with gnome-games

2021-04-17 Thread Sébastien Villemot 
I did the NMU and requested an unblock (#987102).

I also opened a merge request on Salsa with the changes I made (I don’t
have push rights in the Games Team):
https://salsa.debian.org/games-team/libretro-gambatte/-/merge_requests/1

Best,

Le vendredi 16 avril 2021 à 18:27 -0400, Jeremy Bicha a écrit :
> Please go ahead.
> 
> Thank you,
> Jeremy Bicha
> 
> On Fri, Apr 16, 2021, 17:14 Sébastien Villemot 
> wrote:
> > Control: found -1 0.5.0+git20160522+dfsg1-2
> > Control: severity -1 important
> > 
> > On Sun, 03 Mar 2019 00:35:00 + Jeremy Bicha 
> > wrote:
> > 
> > >   libretro-gambatte (0.5.0+git20160522+dfsg1-2) unstable;
> > urgency=medium
> > >   .
> > >     * Team upload
> > >     * Import packaging to https://salsa.debian.org
> > >     * Add minimal debian/gbp.conf
> > >     * Use dh-exec instead of manual .sh script for install file
> > >     * Add .libretro file & AppStream metadata for integration
> > > with
> > GNOME Games
> > >   (Closes: #911329)
> > 
> > Reopening this bug. The .libretro file and the AppStream metadata
> > were
> > included in the source package, but not in the binary package.
> > 
> > Also raising the severity, because it makes the package unusable
> > with
> > gnome-games-app.
> > 
> > Jeremy: I think this should be fixed for bullseye. Are you going to
> > take care of it, or do you want me to NMU?
> > 

-- 
⢀⣴⠾⠻⢶⣦⠀  Sébastien Villemot
⣾⠁⢠⠒⠀⣿⡁  Debian Developer
⢿⡄⠘⠷⠚⠋⠀  https://sebastien.villemot.name
⠈⠳⣄  https://www.debian.org



signature.asc
Description: This is a digitally signed message part

Bug#987102: unblock: libretro-gambatte/0.5.0+git20160522+dfsg1-2.1

2021-04-17 Thread Sébastien Villemot 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Dear Release Team,

Please unblock package libretro-gambatte.

The version currently in unstable fixes important bug #911329.

This bug makes libretro-gambatte (a Game Boy emulator) unusable with GNOME
Games. It remains usable with retroarch, hence the non-RC severity.

A first attempt at fixing this bug had been made in a previous upload, but it
was not complete. This explains why the debdiff (in attachment) is quite small.

Also note that libretro-gambatte is a non-key leaf package.

unblock libretro-gambatte/0.5.0+git20160522+dfsg1-2.1

Thanks,

--
⢀⣴⠾⠻⢶⣦⠀  Sébastien Villemot
⣾⠁⢠⠒⠀⣿⡁  Debian Developer
⢿⡄⠘⠷⠚⠋⠀  https://sebastien.villemot.name
⠈⠳⣄  https://www.debian.org
diff -Nru libretro-gambatte-0.5.0+git20160522+dfsg1/debian/changelog 
libretro-gambatte-0.5.0+git20160522+dfsg1/debian/changelog
--- libretro-gambatte-0.5.0+git20160522+dfsg1/debian/changelog  2019-03-03 
01:06:24.0 +0100
+++ libretro-gambatte-0.5.0+git20160522+dfsg1/debian/changelog  2021-04-17 
17:25:18.0 +0200
@@ -1,3 +1,11 @@
+libretro-gambatte (0.5.0+git20160522+dfsg1-2.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Really install .libretro file & AppStream metadata for integration with
+GNOME Games (Really closes: #911329)
+
+ -- Sébastien Villemot   Sat, 17 Apr 2021 17:25:18 +0200
+
 libretro-gambatte (0.5.0+git20160522+dfsg1-2) unstable; urgency=medium
 
   * Team upload
diff -Nru libretro-gambatte-0.5.0+git20160522+dfsg1/debian/gambatte.libretro 
libretro-gambatte-0.5.0+git20160522+dfsg1/debian/gambatte.libretro
--- libretro-gambatte-0.5.0+git20160522+dfsg1/debian/gambatte.libretro  
2019-03-03 01:06:24.0 +0100
+++ libretro-gambatte-0.5.0+git20160522+dfsg1/debian/gambatte.libretro  
2021-04-17 17:25:18.0 +0200
@@ -1,3 +1,4 @@
+[Libretro]
 Type=Emulator
 Version=1.0
 Name=Gambatte
diff -Nru libretro-gambatte-0.5.0+git20160522+dfsg1/debian/install 
libretro-gambatte-0.5.0+git20160522+dfsg1/debian/install
--- libretro-gambatte-0.5.0+git20160522+dfsg1/debian/install2019-03-03 
01:06:24.0 +0100
+++ libretro-gambatte-0.5.0+git20160522+dfsg1/debian/install2021-04-17 
17:25:09.0 +0200
@@ -1,2 +1,4 @@
 #!/usr/bin/dh-exec
 libgambatte/*.so usr/lib/${DEB_HOST_MULTIARCH}/libretro
+debian/libretro-gambatte.metainfo.xml usr/share/metainfo
+debian/gambatte.libretro usr/lib/${DEB_HOST_MULTIARCH}/libretro

Bug#986806: CVE-2021-28965

2021-04-17 Thread Pirate Praveen 




On Sat, Apr 17, 2021 at 10:16 pm, Utkarsh Gupta  
wrote:
Makes sense. Probably the time to RM ruby-rexml from the archive is 
*now*?


Requested removal from archive in #987101

Bug#984791: eatmydata-udeb: udeb included in Debian ISO, but eatmydata and libeatmydata1 are not

2021-04-17 Thread Petter Reinholdtsen 


For the record, a patch to fix this issue (missing debs on ISO) has been
provided in https://bugs.debian.org/986772 >, and the maintainer
said the fix will be included in the next official ISOs.

See also thread starting on
https://lists.debian.org/debian-boot/2021/03/msg00121.html > for
a discussion on the topic in debian-boot@.

I suspect this BTS report should be either closed as fixed or moved to
some other package (d-i?) for futher followup.  As far as I understand
it, there is not much more to do in the eatmydata-udeb context.  The
rest of the fixes need to happen in debootstrap, d-i and the ftp
archive.

-- 
Happy hacking
Petter Reinholdtsen

Bug#987063: gwenview: looses image metadata on jpg rotation

2021-04-17 Thread Lisandro Damián Nicanor Pérez Meyer 
Hi!

El sáb., 17 abr. 2021 00:36, Norbert Preining 
escribió:

> severity -1 serious
> thanks
>
> Meta data is data, and losing exif data is extremely bad.
>

Too late, but I agree with the severity here. Thanks Norbert!

>

Bug#783832: debsources: reenable the file count assertion that fails on travis builds

2021-04-17 Thread Raúl Benencia 
tags 783832 patch
thanks

Hi,

On Sun, May 10, 2015 at 09:14:03PM +0200, Stefano Zacchiroli wrote:
> However, we do want to run all tests also in travis builds. This bug
> will track the need of doing that.

There's an on-going conversation about this bug on this[0] merge
request; the contribution succeeds in running all CI tests.

  [0] https://salsa.debian.org/qa/debsources/-/merge_requests/4

Regards,
--
Raúl Benencia


signature.asc
Description: PGP signature

Bug#987101: RM: ruby-rexml -- ROM; duplicate package, included in libruby2.7

2021-04-17 Thread Pirate Praveen 

Package: ftp.debian.org
Severity: normal
Control: block 986806 by -1

This package duplicates fucntionality embedded in ruby. This is 
affected by rc bug #986806 (already fixed in ruby2.7 2.7.3-1). As 
discussed in the rc bug above, please remove this package from the 
archive.

Bug#986806: CVE-2021-28965

2021-04-17 Thread Utkarsh Gupta 
Hi Praveen,

On Fri, Apr 16, 2021 at 3:24 PM Pirate Praveen  wrote:
> I think the separate package was introduced by mistake without seeing
> the copy embedded in ruby. I think the right way is to fix this in ruby
> and remove this separate package. But I'd like someone from ruby team
> to confirm this.

Makes sense. Probably the time to RM ruby-rexml from the archive is *now*?

As for fixing this in src:ruby2.7, see #986742. TL;DR: ruby2.7 2.7.3-1
was uploaded to fix this earlier today.


- u

Bug#986742: unblock: ruby2.7/2.7.3-1

2021-04-17 Thread Utkarsh Gupta 
Hi Sebastian,

On Sat, Apr 17, 2021 at 3:08 PM Sebastian Ramacher  wrote:
> Thanks, please go ahead and remove the moreinfo tag once the version is
> available in unstable.

Uploaded to unstable, thanks. And removed the tag as well.


- u

Bug#986018: avahi-daemon: local DoS (daemon dies) on badly formatted hostname query to /run/avahi-daemon/socket

2021-04-17 Thread Thomas Kremer 
On 16.04.2021 08:57, Salvatore Bonaccorso wrote:
> This is now CVE-2021-3502.
> 
> Have you reported the issue to upstream?

No, I have not.


Yours,
Thomas Kremer


-- 
OpenPGP Key ID: 0x6BFFE5CF3C7720398928CE741F2DAE97486A60BF

Bug#987032: cqrlog: Importing ADIF-logs results in 0 byte logs

2021-04-17 Thread Federico Grau 
On Thu, Apr 15, 2021 at 05:28:21PM -0400, Eike Lantzsch ZP6CGE wrote:
> On a fresh install of CQRLOG 2.5.1-1 it is impossible to import ADIF-files
> because 0-bytes are imported. I made sure that the files are OK and comply
> with the rules.  Import from Klog into xlog works but import from Klog into
> CQRLog does not.
> 
...

Thank you for the detailed bug report and steps to reproduce the issue.

Could you share a sample ADIF file, either with the bug report or email me
directly?

regards,
donfede


signature.asc
Description: PGP signature

Bug#987032: cqrlog: Importing ADIF-logs results in 0 byte logs

2021-04-17 Thread Federico Grau 
Attached a couple sample ADIF files, initially generated from tqsl.

K2ZY
   6M
   SSB
   20200923
   012500
   50.125
   6M
   50.125

W1ABC
   2M
   FM
   20200317
   02
   146.580
   2M
   146.580



signature.asc
Description: PGP signature

Bug#987100: unblock: gwenview/4:20.12.3-2

2021-04-17 Thread Norbert Preining 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: debian-...@lists.debian.org

Please unblock package gwenview

[ Reason ]
The current version of gwenview has a serious bug #987063
that images that get rotated are automatically saved with exif metadata
removed.

[ Impact ]
Exif meta data loss. This is serious since many photo application
workflows depend on exif metadata being present.

[ Tests ]
Bug reported confirms that the new version fixes the problem and
exif data isn't dropped anymore.

[ Risks ]
Code has been in the release till 20.12.1 and has already been merged
into the next release of apps 20.12.

[ Checklist ]
  [x] all changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in testing

[ Other info ]
Upstream pull request: 
https://invent.kde.org/graphics/gwenview/-/merge_requests/57

unblock gwenview/4:20.12.3-2

Thanks

Norbert

--
PREINING Norbert  https://www.preining.info
Fujitsu Research  +  IFMGA Guide  +  TU Wien  +  TeX Live  + Debian Dev
GPG: 0x860CDC13   fp: F7D8 A928 26E3 16A1 9FA0 ACF0 6CAC A448 860C DC13
diff -Nru gwenview-20.12.3/debian/changelog gwenview-20.12.3/debian/changelog
--- gwenview-20.12.3/debian/changelog   2021-03-09 05:52:12.0 +0900
+++ gwenview-20.12.3/debian/changelog   2021-04-17 12:49:03.0 +0900
@@ -1,3 +1,11 @@
+gwenview (4:20.12.3-2) unstable; urgency=medium
+
+  [ Norbert Preining ]
+  * Cherry-pick upstream fix for lost exif data (Closes: #987063)
+  * Add myself to uploaders.
+
+ -- Norbert Preining   Sat, 17 Apr 2021 12:49:03 +0900
+
 gwenview (4:20.12.3-1) unstable; urgency=medium
 
   [ Aurélien COUDERC ]
diff -Nru gwenview-20.12.3/debian/control gwenview-20.12.3/debian/control
--- gwenview-20.12.3/debian/control 2021-03-09 05:49:58.0 +0900
+++ gwenview-20.12.3/debian/control 2021-04-17 12:48:43.0 +0900
@@ -4,6 +4,7 @@
 Maintainer: Debian Qt/KDE Maintainers 
 Uploaders: Aurélien COUDERC ,
Sune Vuorela ,
+   Norbert Preining ,
 Build-Depends: baloo-kf5-dev (>= 5.13),
cmake (>= 3.0~),
debhelper-compat (= 13),
diff -Nru gwenview-20.12.3/debian/patches/series 
gwenview-20.12.3/debian/patches/series
--- gwenview-20.12.3/debian/patches/series  2020-10-27 07:45:28.0 
+0900
+++ gwenview-20.12.3/debian/patches/series  2021-04-17 12:46:41.0 
+0900
@@ -1 +1,2 @@
 fix-incorrect-path-for-interpreter
+upstream-7e59f65f-revert-for-exif-data-loss.patch
diff -Nru 
gwenview-20.12.3/debian/patches/upstream-7e59f65f-revert-for-exif-data-loss.patch
 
gwenview-20.12.3/debian/patches/upstream-7e59f65f-revert-for-exif-data-loss.patch
--- 
gwenview-20.12.3/debian/patches/upstream-7e59f65f-revert-for-exif-data-loss.patch
   1970-01-01 09:00:00.0 +0900
+++ 
gwenview-20.12.3/debian/patches/upstream-7e59f65f-revert-for-exif-data-loss.patch
   2021-04-17 12:46:07.0 +0900
@@ -0,0 +1,37 @@
+From 7e59f65fb1f14c36fcf12683c6eacb5f658dc3fc Mon Sep 17 00:00:00 2001
+From: Madhav Kanbur 
+Date: Fri, 2 Apr 2021 16:11:06 +0530
+Subject: [PATCH] Partially revert commit "Use Quality level when saving JPEG
+ images"
+
+* Fixes exif metadata being lost
+
+Signed-off-by: Madhav Kanbur 
+---
+ lib/jpegcontent.cpp | 10 ++
+ 1 file changed, 2 insertions(+), 8 deletions(-)
+
+diff --git a/lib/jpegcontent.cpp b/lib/jpegcontent.cpp
+index 6189cf99..558a3e94 100644
+--- a/lib/jpegcontent.cpp
 b/lib/jpegcontent.cpp
+@@ -687,14 +687,8 @@ bool JpegContent::save(QIODevice* device)
+ d->mRawData.resize(io.size());
+ io.read((unsigned char*)d->mRawData.data(), io.size());
+ 
+-QImage _image;
+-_image.loadFromData(d->mRawData);
+-QImageWriter writer(device, "jpeg");
+-writer.setQuality(GwenviewConfig::jPEGQuality());
+-if (!writer.write(_image)) {
+-d->mErrorString = writer.errorString();
+-return false;
+-}
++QDataStream stream(device);
++stream.writeRawData(d->mRawData.data(), d->mRawData.size());
+ 
+ // Make sure we are up to date
+ loadFromData(d->mRawData);
+-- 
+GitLab
+

Bug#987063: gwenview: looses image metadata on jpg rotation

2021-04-17 Thread Norbert Preining 
> Works for me again.

Thanks for your reconfirmation!

Norbert

--
PREINING Norbert  https://www.preining.info
Fujitsu Research  +  IFMGA Guide  +  TU Wien  +  TeX Live  + Debian Dev
GPG: 0x860CDC13   fp: F7D8 A928 26E3 16A1 9FA0 ACF0 6CAC A448 860C DC13

Bug#987099: ITP: openrefine-opencsv -- CSV parser library for Java

2021-04-17 Thread Markus Koschany 
Package: wnpp
Severity: wishlist
Owner: Markus Koschany 
X-Debbugs-Cc: debian-de...@lists.debian.org, debian-j...@lists.debian.org, 
a...@debian.org

* Package name: openrefine-opencsv
  Version : 2.4
  Upstream Author : Bytecode Pty Ltd, Kyle Miller
* URL : https://github.com/OpenRefine/opencsv
* License : Apache-2.0
  Programming Lang: Java
  Description : CSV parser library for Java

OpenCSV is an easy-to-use CSV (comma-separated values) parser library
for Java. Opencsv supports all the basic CSV-type features like:
  * Arbitrary numbers of values per line
  * Ignoring commas in quoted elements
  * Handling quoted entries with embedded carriage returns
  * Configurable separator and quote characters
 .
 This is a fork of the OpenCSV project on SourceForge. In addition this package
 supports multi-character separators in CSV/TSV files.

Bug#987098: ITP: httpcomponents-client5 -- HTTP/1.1 and HTTP/2 compliant HTTP agent implementation

2021-04-17 Thread Markus Koschany 
Package: wnpp
Severity: wishlist
Owner: Markus Koschany 
X-Debbugs-Cc: debian-de...@lists.debian.org, debian-j...@lists.debian.org, 
a...@debian.org

* Package name: httpcomponents-client5
  Version : 5.0.3
  Upstream Author : The Apache Software Foundation
* URL : https://hc.apache.org/httpcomponents-client-5.0.x/
* License : Apache-2.0
  Programming Lang: Java
  Description : HTTP/1.1 and HTTP/2 compliant HTTP agent implementation

HttpClient is a HTTP/1.1 and HTTP/2 compliant HTTP agent
implementation based on HttpCore. It also provides reusable components
for client-side authentication, HTTP state management, and HTTP
connection management.

This package contains the 5.x series of httpcomponents-client. It supports
request execution with the classic, fluent and async APIs.

Bug#987097: ITP: httpcomponents-core5 -- set of low level HTTP transport components for Java

2021-04-17 Thread Markus Koschany 
Package: wnpp
Severity: wishlist
Owner: Markus Koschany 
X-Debbugs-Cc: debian-de...@lists.debian.org, debian-j...@lists.debian.org, 
a...@debian.org

* Package name: httpcomponents-core5
  Version : 5.0.3
  Upstream Author : The Apache Software Foundation
* URL : https://hc.apache.org/httpcomponents-core-5.0.x/
* License : Apache-2.0
  Programming Lang: Java
  Description : set of low level HTTP transport components for Java

HttpCore is a set of low level HTTP transport components that can be used to
build custom client and server side HTTP services with a minimal footprint.
HttpCore supports two I/O models:
 .
  * blocking I/O model, based on the classic Java I/O;
  * non-blocking, event driven I/O model based on Java NIO.
 .
The blocking I/O model may be more appropriate for data intensive, low latency
scenarios, whereas the non-blocking model may be more appropriate for high
latency scenarios where raw data throughput is less important than the ability
to handle thousands of simultaneous HTTP connections in a resource efficient
manner.
 .
This package contains the 5.x series of httpcomponents-core.

Bug#978674: python3-build: Fails to work unless pip is installed

2021-04-17 Thread Peter Pentchev 
On Fri, Mar 26, 2021 at 07:32:47PM -0400, Sergio Durigan Junior wrote:
> Control: severity -1 serious
> Control: tags -1 + help
> 
> On Sunday, January 17 2021, Martina Ferrari wrote:
> 
> > On 17/01/2021 01:06, Sergio Durigan Junior wrote:
> >
> >> Thanks for the bug report, Martina.
> >> Yeah, this is strange.  I don't think it should require pip, and
> >> after
> >> installing python3-pip here and re-running /usr/bin/pyproject-build I
> >> noticed that it (obviously) invokes pip and downloads several things,
> >> which IMO is a no-no.
> >
> > Yeah, that's bad.
> >
> >> The reason I packaged python3-build is because check-manifest started
> >> depending on it.  I'm thinking about removing the
> >> /usr/bin/pyproject-build program and just shipping the library.  Do you
> >> think it could work?  (Sorry, I'm not a PEP-517 expert).
> >
> > Honestly, I don't know much about it either.. I'd suggest discussing
> > it with the python-modules team? I guess somebody there would know
> > what to do.
> 
> I'm marking this bug as serious because I don't think we want a clearly
> broken package in bullseye.
> 
> I don't have much time to work on it right now, so I'm tagging this bug
> as "help" and would appreciate if someone could take another look and
> check if it's possible to fix it, or if it even makes sense having this
> package in Debian, given that python-build seems to depend on
> downloading things via pip and all...
> 
> The only reverse-dependency of python3-build is check-manifest, which is
> another package I've uploaded, and nothing really depends on it, so I'm
> fine if nobody steps up to fix this bug and both packages are excluded
> from bullseye.

Hm. I may be a bit off-base here, but I needed to look at the "build"
tool a while ago as part of $REAL_JOB, and, hm...

...is this not how python3-build is supposed to operate?

From what I know (which may not be completely correct), it has two basic
operating modes:

- isolated (the default one): create a virtual environment, make sure
  that the specified build system's dependencies are satisfied in there,
  then run the specified build system's PEP 517 hook for creating wheel
  packages

- non-isolated (the -n command-line option): do not create a virtual
  environment, assume that the build system itself and all its
  dependencies are already installed in the environment of the Python
  interpreter that "build" is being run with, so just invoke the build
  system's PEP 517 hook for creating wheel packages

So if one invokes `python3 -m build --wheel` (which is the default
target if none are specified), "build" will create a virtual
environment, then look at the pyproject.toml file and figure out what
packages need to be installed within the newly-created environment.
After that, it will use pip to install them.

The way to avoid that is to use build's non-isolated mode by specifying
the -n option on the command line. Of course, this brings along all
the perils of a non-isolated build, e.g. not noticing forgotten build
dependencies that are accidentally present in the current environment.

So... I think that this is the way the "build" tool is supposed to
operate. If somebody needs to use it with assuredly nothing downloaded
from external sites, e.g. during a Debian package build, then I think
a non-isolated build is the way to go.

I hope this was useful in some way - I thought I'd make things a bit
clearer for people who are not familiar with the tool itself.
If somebody still decides that the "build" tool's default mode of
operation makes it unsuitable for Debian, well, I guess that would be
a valid viewpoint, but IMHO that would also apply to many, many other
Debian packages related to various language ecosystems that have
"download stuff from a central repository" as their main purpose :)

Thanks, everyone, for your work on Debian!

G'luck,
Peter

-- 
Peter Pentchev  r...@ringlet.net r...@debian.org p...@storpool.com
PGP key:http://people.FreeBSD.org/~roam/roam.key.asc
Key fingerprint 2EE7 A7A5 17FC 124C F115  C354 651E EFB0 2527 DF13


signature.asc
Description: PGP signature

Bug#987096: unblock: ant/1.10.9-4

2021-04-17 Thread Emmanuel Bourg 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package ant/1.10.9-4

This update fixes the RC bug #986518, the debdiff is copied below.

Thank you,

Emmanuel Bourg


unblock ant/1.10.9-4



diff --git a/debian/changelog b/debian/changelog
index 9fefeaf..d569877 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+ant (1.10.9-4) unstable; urgency=medium
+
+  * Disable doclint only with the default doclet (Closes: #986518)
+
+ -- Emmanuel Bourg   Sat, 17 Apr 2021 15:55:11 +0200
+
 ant (1.10.9-3) unstable; urgency=medium

   * Disable doclint by default when building a Debian package (Closes: #981927)
diff --git a/debian/patches/0018-disable-doclint.patch 
b/debian/patches/0018-disable-doclint.patch
index 66166e5..2984428 100644
--- a/debian/patches/0018-disable-doclint.patch
+++ b/debian/patches/0018-disable-doclint.patch
@@ -7,7 +7,7 @@ Forwarded: not-needed
  log("Debian build on Java 9+ detected: Adding the 
--ignore-source-errors option");
  }

-+if (LanguageLevel.isDebianBuild() && 
JavaEnvUtils.isAtLeastJavaVersion("9")) {
++if (doclet == null && LanguageLevel.isDebianBuild() && 
JavaEnvUtils.isAtLeastJavaVersion("9")) {
 +toExecute.createArgument().setValue("-Xdoclint:none");
 +log("Debian build on Java 9+ detected: Adding the -Xdoclint:none 
option");
 +}

Bug#987059: gscan2pdf: POD and manpage improvements

2021-04-17 Thread Jeff 
Thanks for the patch. Committed upstream. This isn't critical for 
bullseye, so it won't hit unstable until after the release.




OpenPGP_signature
Description: OpenPGP digital signature

Bug#986806: CVE-2021-28965

2021-04-17 Thread Antonio Terceiro 
On Fri, Apr 16, 2021 at 03:22:24PM +0530, Pirate Praveen wrote:
> On Mon, 12 Apr 2021 12:05:29 +0200 Moritz Muehlenhoff 
> wrote:
> > https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/
> >
> > Why is there a separate package duplicating rexml from src:ruby2.7 in
> bullseye?
> 
> I think the separate package was introduced by mistake without seeing the
> copy embedded in ruby. I think the right way is to fix this in ruby and
> remove this separate package. But I'd like someone from ruby team to confirm
> this.

agreed.


signature.asc
Description: PGP signature

Bug#987095: transitive_closure corrupted results, after vertex deleted

2021-04-17 Thread Dominique Dumont 
I've created a bug upstream:

https://github.com/graphviz-perl/Graph/issues/20

All the best

Bug#987063: gwenview: looses image metadata on jpg rotation

2021-04-17 Thread Karsten Hilbert 
Am Sat, Apr 17, 2021 at 12:54:23PM +0900 schrieb Norbert Preining:

> On Fri, 16 Apr 2021, Nicholas D Steeves wrote:
> > Justification: loss of exif metadata.  A photographer would say "grave 
> > severity"!
>
> Uploaded a fixed version.

Works for me again.

Thanks !

Karsten
--
GPG  40BE 5B0E C98E 1713 AFA6  5BC0 3BEA AC80 7D4F C89B

Bug#987095: transitive_closure corrupted results, after vertex deleted

2021-04-17 Thread Dominique Dumont 
Hi

On Sat, 17 Apr 2021 12:59:40 +0100 Ian Jackson <> The correct output, as seen 
on buster:
> 
>  input: A-NOTA,B-A,B-NOTA
>  output: A-A,A-NOTA,B-A,B-B,B-NOTA,NOTA-NOTA
>  output: A-NOTA,B-A,B-NOTA,NOTA-NOTA

I've bisected this regression to:

3ded9c7a25bf190fda5add1a13ed4f9b54082db7 is the first bad commit
commit 3ded9c7a25bf190fda5add1a13ed4f9b54082db7
Author: Ed J 
Date:   Mon Dec 14 13:34:32 2020 +

all AdjacencyMap store _i as array-refs

 lib/Graph/AdjacencyMap.pm|  6 +-
 lib/Graph/AdjacencyMap/Heavy.pm  | 10 --
 lib/Graph/AdjacencyMap/Light.pm  |  9 ++---
 lib/Graph/AdjacencyMap/Vertex.pm |  8 ++--
 lib/Graph/AdjacencyMatrix.pm | 17 ++--
 lib/Graph/BitMatrix.pm   | 42 +
+--
 6 files changed, 34 insertions(+), 58 deletions(-)

All the best

Bug#987095: transitive_closure corrupted results, after vertex deleted

2021-04-17 Thread Ian Jackson 
Package: libgraph-perl
Version: 1:0.9716-1
Severity: grave

The attached script, which tests the transitive closure function,
prints this output on testing:

 input: A-NOTA,B-A,B-NOTA
 Use of uninitialized value $_ in exists at /usr/share/perl5/Graph.pm line 362.
 Use of uninitialized value $_ in exists at /usr/share/perl5/Graph.pm line 362.
 output: A-A,A-B,B-B,NOTA-NOTA
 output: A-B,NOTA-NOTA

The correct output, as seen on buster:

 input: A-NOTA,B-A,B-NOTA
 output: A-A,A-NOTA,B-A,B-B,B-NOTA,NOTA-NOTA
 output: A-NOTA,B-A,B-NOTA,NOTA-NOTA

Empirically, the delete_vertex call is necessary for the repro.

I think this is certainly release critical.  I chose "grave" rather
than "serious" since this can produce corrupted output in data
processing situations, where the corrupted output might not be
detected.

In my Debian tally sheet processing program
  https://www.chiark.greenend.org.uk/ucgi/~ian/git?p=appendix-a6.git
(`compute`, there), this can produce totally wrong answers for the
winner of votes.

Ian.

#!/usr/bin/perl -w

use strict;
use Graph::Directed;

my $input = Graph::Directed->new;

foreach my $e (qw(
  A-C
  A-NOTA
  B-A
  B-C
  B-NOTA
)) {
  my ($x,$y) = split /-/, $e;
  $input->add_edge($x,$y); 
}

$input->delete_vertex('C');

print "input: $input\n";

my $output = $input->transitive_closure();
print "output: $output\n";

foreach my $x (qw(A B C N)) {
  $output->delete_edge($x,$x);
}
print "output: $output\n";

-- 
Ian JacksonThese opinions are my own.  

Pronouns: they/he.  If I emailed you from @fyvzl.net or @evade.org.uk,
that is a private address which bypasses my fierce spamfilter.

Bug#987065: wordpress: CVE-2021-29450: Authenticated disclosure of password-protected posts and pages

2021-04-17 Thread Salvatore Bonaccorso 
Hi,

On Sat, Apr 17, 2021 at 09:22:09PM +1000, Craig Small wrote:
> Yeah I realised there wasn't PHP 8 in Debian anywhere yet but referencing
> it is worthwhile otherwise months later someone might ask me about it and
> I'll go, hmm I think we fixed that.

Ack.

> Buster will have a debdiff to review very soon. Bullseye I have asked for
> the version in Sid to be unblocked in #987084 which I think is the best
> outcome for future maintenance.

Thanks, best just to the team alias for the security-team so we can
distribute review workload.

Regards,
Salvatore

Bug#986971: Info

2021-04-17 Thread Martin Dosch 

I started to compile a list of sendxmpp alternatives there: 
https://wiki.xmpp.org/web/User:MDosch/Sendxmpp_incarnations
Xmppc is already in debian testing so it'll probably be included in 
bullseye.


signature.asc
Description: PGP signature

Bug#987094: unblock: usb.ids/2021.03.31-1

2021-04-17 Thread Aurelien Jarno 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package usb.ids

[ Reason ]
This new upstream version of the USB ID database adds a few USB devices.

[ Impact ]
New USB devices won't be displayed with a human readable name for
package using this database.

[ Tests ]
There is no test associated with this database. This package only
contains data, no code. 

[ Risks ]
Risks are very low, such update are routinely done in stable.

[ Checklist ]
  [x] all changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in testing

[ Other info ]
None

unblock usb.ids/2021.03.31-1
diff -Nru usb.ids-2021.01.29/debian/changelog 
usb.ids-2021.03.31/debian/changelog
--- usb.ids-2021.01.29/debian/changelog 2021-02-01 06:39:29.0 +0100
+++ usb.ids-2021.03.31/debian/changelog 2021-04-06 00:36:05.0 +0200
@@ -1,3 +1,9 @@
+usb.ids (2021.03.31-1) unstable; urgency=medium
+
+  * New upstream version.
+
+ -- Aurelien Jarno   Tue, 06 Apr 2021 00:36:05 +0200
+
 usb.ids (2021.01.29-1) unstable; urgency=medium
 
   * New upstream version. 
diff -Nru usb.ids-2021.01.29/usb.ids usb.ids-2021.03.31/usb.ids
--- usb.ids-2021.01.29/usb.ids  2021-01-29 21:34:11.0 +0100
+++ usb.ids-2021.03.31/usb.ids  2021-03-31 21:34:09.0 +0200
@@ -9,8 +9,8 @@
 #  The latest version can be obtained from
 #  http://www.linux-usb.org/usb.ids
 #
-# Version: 2021.01.29
-# Date:2021-01-29 20:34:11
+# Version: 2021.03.31
+# Date:2021-03-31 20:34:09
 #
 
 # Vendors, devices and interfaces. Please keep sorted.
@@ -593,6 +593,7 @@
6217  Color LaserJet 4700
6302  PhotoSmart 318/612
6317  Color LaserJet 4730mfp
+   632a  LaserJet M203-M206
6402  PhotoSmart 715 (ptp)
6411  PhotoSmart C8100 series
6417  LaserJet 5200
@@ -781,6 +782,7 @@
5642  Storage Device
5661  M5661 MP3 player
5667  M5667 MP3 player
+   8841  Newmine Camera
9665  Gateway Webcam
 0403  Future Technology Devices International, Ltd
  H4SMK 7 Port Hub / Bricked Counterfeit FT232 Serial (UART) IC
@@ -820,8 +822,10 @@
9090  SNAP Stick 200
9132  LCD and Temperature Interface
9133  CallerID
+   9134  Virtual keyboard
9135  Rotary Pub alarm
9136  Pulsecounter
+   9137  Ledbutton interface
9e90  Marvell OpenRD Base/Client
9f08  CIB-1894 Conclusion SmartLink Box:
9f80  Ewert Energy Systems CANdapter
@@ -1014,6 +1018,7 @@
00c0  Wireless Remocon
00f7  Smart Display PK-SD10
011d  e228 Mobile Phone
+   0193  RVT-R Writer
0203  HID Audio Controls
021d  Aterm WL54SU2 802.11g Wireless Adapter [Atheros AR5523]
0248  Aterm PA-WL54GU
@@ -1374,6 +1379,7 @@
3220  Sound Blaster Tactic(3D) Sigma sound card
3232  Sound Blaster Premium HD [SBX]
3237  SB X-Fi Surround 5.1 Pro
+   3241  Sound Blaster JAM
3263  SB X-Fi Surround 5.1 Pro
3f00  E-Mu Xboard 25 MIDI Controller
3f02  E-Mu 0202
@@ -2532,6 +2538,7 @@
09a0  RTL8153B GigE [Surface Ethernet Adapter]
09c0  Surface Type Cover
0a00  Lumia 950 Dual SIM (RM-1118)
+   0b12  Xbox Wireless Controller (model 1914)
930a  ISOUSB.SYS Intel 82930 Isochronous IO Test Board
ffca  Catalina
fff8  Keyboard
@@ -2687,7 +2694,8 @@
085c  C922 Pro Stream Webcam
0870  QuickCam Express
0890  QuickCam Traveler
-   0892  OrbiCam
+   0892  C920 HD Pro Webcam
+   0893  StreamCam
0894  CrystalCam
0895  QuickCam for Dell Notebooks
0896  OrbiCam
@@ -2796,6 +2804,7 @@
0a5b  G933 Wireless Headset Dongle
0a5d  G933 Headset Battery Charger
0a66  [G533 Wireless Headset Dongle]
+   0a8f  H390 headset with microphone
0b02  C-UV35 [Bluetooth Mini-Receiver] (HID proxy mode)
8801  Video Camera
b014  Bluetooth Mouse M336/M337/M535
@@ -2875,6 +2884,7 @@
c083  G403 Prodigy Gaming Mouse
c084  G203 Gaming Mouse
c08b  G502 SE HERO Gaming Mouse
+   c092  G203 LIGHTSYNC Gaming Mouse
c101  UltraX Media Remote
c110  Harmony 785/880/885 Remote
c111  Harmony 525 Remote
@@ -2934,6 +2944,7 @@
c24e  G500s Laser Gaming Mouse
c24f  G29 Driving Force Racing Wheel [PS3]
c260  G29 Driving Force Racing Wheel [PS4]
+   c262  G920 Driving Force Racing Wheel
c281  WingMan Force
c283  WingMan Force 3D
c285  WingMan Strike Force 3D
@@ -2981,6 +2992,7 @@
c332  G502 Proteus Spectrum Optical Mouse
c335  G910 Orion Spectrum Mechanical Keyboard
c33a  G413 Gaming Keyboard
+   c33f  G815 Mechanical Keyboard
c401  TrackMan Marble Wheel
c402  Marble Mouse (2-button)

Bug#987076: gnome-shell: error on switching to an application on another workspace from the dashboard

2021-04-17 Thread Todor Tsankov 
Package: gnome-shell
Version: 3.38.4-1
Severity: normal

Dear Maintainer,

When switching to an application on a different workspace by clicking on
the icon in the dashboard, some error messages appear in the journal
(see below). Moreover, there is a rather unpleasant visual glitch:
instead of a smooth animation, the background is showed briefly and
abruptly. The bug is present in both Wayland and Xorg sessions with no
extensions running. The problem seems to be in the interaction between
the C and the JavaScript code in gnome shell. It is easy to reproduce as
it happens every time:

1. Launch two different applications and put them on different workspaces.

2. Switch between them by clicking on the icons in the overview.

This bug has also been reported upstream here:

https://gitlab.gnome.org/GNOME/gnome-shell/-/issues/3341

Thank you for maintaining this package.

Best wishes,
Todor

Relevant excerpt from the journal:

 Object .Gjs_ui_workspace_Workspace (0x562acc6c07a0), has been already
deallocated — impossible to set any property on it. This might be caused
by the object having been destroyed from C code using something such as
destroy(), dispose(), or remove() vfuncs.
 Object .Gjs_ui_workspace_Workspace (0x562ac8dd7d60), has been already
deallocated — impossible to set any property on it. This might be caused
by the object having been destroyed from C code using something such as
destroy(), dispose(), or remove() vfuncs.
 == Stack trace for context 0x562ac87e6120 ==
 #0   7ffe5b9a6960 b
resource:///org/gnome/shell/ui/workspacesView.js:191 (3d630670fab0 @ 269)
 #1   562ac95d9ba8 i
resource:///org/gnome/shell/ui/workspacesView.js:174 (3d630670fb00 @ 24)
 #2   7ffe5b9a7490 b   resource:///org/gnome/shell/ui/environment.js:85
(21902df84bf0 @ 98)
 #3   7ffe5b9a7bd0 b   resource:///org/gnome/shell/ui/environment.js:246
(21902df84740 @ 14)
 == Stack trace for context 0x562ac87e6120 ==
 #0   7ffe5b9a6960 b
resource:///org/gnome/shell/ui/workspacesView.js:191 (3d630670fab0 @ 269)
 #1   562ac95d9ba8 i
resource:///org/gnome/shell/ui/workspacesView.js:174 (3d630670fb00 @ 24)
 #2   7ffe5b9a7490 b   resource:///org/gnome/shell/ui/environment.js:85
(21902df84bf0 @ 98)
 #3   7ffe5b9a7bd0 b   resource:///org/gnome/shell/ui/environment.js:246
(21902df84740 @ 14)
 == Stack trace for context 0x562ac87e6120 ==
 #0   7ffe5b9a6960 b
resource:///org/gnome/shell/ui/workspacesView.js:191 (3d630670fab0 @ 269)
 #1   562ac95d9ba8 i
resource:///org/gnome/shell/ui/workspacesView.js:174 (3d630670fb00 @ 24)
 #2   7ffe5b9a7490 b   resource:///org/gnome/shell/ui/environment.js:85
(21902df84bf0 @ 98)
 #3   7ffe5b9a7bd0 b   resource:///org/gnome/shell/ui/environment.js:246
(21902df84740 @ 14)
 == Stack trace for context 0x562ac87e6120 ==
 #0   7ffe5b9a6960 b
resource:///org/gnome/shell/ui/workspacesView.js:191 (3d630670fab0 @ 269)
 #1   562ac95d9ba8 i
resource:///org/gnome/shell/ui/workspacesView.js:174 (3d630670fb00 @ 24)
 Object .Gjs_ui_workspace_Workspace (0x562aca87d4f0), has been already
deallocated — impossible to set any property on it. This might be caused
by the object having been destroyed from C code using something such as
destroy(), dispose(), or remove() vfuncs.
 #2   7ffe5b9a7490 b   resource:///org/gnome/shell/ui/environment.js:85
(21902df84bf0 @ 98)
 #3   7ffe5b9a7bd0 b   resource:///org/gnome/shell/ui/environment.js:246
(21902df84740 @ 14)
 == Stack trace for context 0x562ac87e6120 ==
 #0   7ffe5b9a6960 b
resource:///org/gnome/shell/ui/workspacesView.js:191 (3d630670fab0 @ 269)
 #1   562ac95d9ba8 i
resource:///org/gnome/shell/ui/workspacesView.js:174 (3d630670fb00 @ 24)
 #2   7ffe5b9a7490 b   resource:///org/gnome/shell/ui/environment.js:85
(21902df84bf0 @ 98)
 #3   7ffe5b9a7bd0 b   resource:///org/gnome/shell/ui/environment.js:246
(21902df84740 @ 14)
 Object .Gjs_ui_workspace_Workspace (0x562aca83feb0), has been already
deallocated — impossible to set any property on it. This might be caused
by the object having been destroyed from C code using something such as
destroy(), dispose(), or remove() vfuncs.
 Object .Gjs_ui_workspace_Workspace (0x562acbe41e10), has been already
deallocated — impossible to set any property on it. This might be caused
by the object having been destroyed from C code using something such as
destroy(), dispose(), or remove() vfuncs.



-- System Information:
Debian Release: bullseye/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.10.0-6-amd64 (SMP w/4 CPU threads)
Kernel taint flags: TAINT_WARN
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8), LANGUAGE
not set
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages gnome-shell depends on:
ii  dconf-gsettings-backend [gsettings-backend]  0.38.0-2
ii  evolution-data-server3.38.3-1
ii  gir1.2-accountsservice-1.0   0.6.55-3
ii  gir1.2-atspi-2.0

Bug#987080: ITP: portage -- package management system based on ports collections

2021-04-17 Thread Yangfl 
Ludovic Bellier  于2021年4月17日周六 下午7:18写道:
>
> Le 17/04/2021 à 11:57, Yangfl a écrit :
> > Package: wnpp
> > Severity: wishlist
> > Owner: Yangfl 
> >
> > * Package name: portage
> >Version : 3.0.17
> >Upstream Author : Gentoo Foundation
> > * URL : https://gitweb.gentoo.org/proj/portage.git/
> > * License : GPL-2
> >Programming Lang: Python
> >Description : package management system based on ports collections
> >
> > Portage is a package management system based on ports collections. The
> > Package Manager Specification Project (PMS) standardises and documents
> > the behaviour of Portage so that ebuild repositories can be used by
> > other package managers.
>
> Hi Yangfl,
>
> *I'm just curious*, what is the use case for portage in Debian?
>
> As it's the Gentoo package manager, do you use it to install ebuild
> packages in Debian? To test ebuild packages? A Gentoo ebuild farm from
> Debian? ...
>
> Regards
>
> Ludovic
>

Mainly for testing and cross building, of course.

Bug#987093: xfsprogs: need config.guess/sub update for riscv64

2021-04-17 Thread Aurelien Jarno 
Source: xfsprogs
Version: 5.10.0-4
Severity: important
Tags: ftbfs upstream patch
Justification: Policy 4.3
User: debian-ri...@lists.debian.org
Usertags: riscv64

xfsprogs used to build fine on riscv64 up to version 5.6.0, but the new
upstream version introduced a rollback of the config.guess/sub files
back to 2013. This version is way to old to recognize this architecture,
causing a FTBFS [1].

The short term solution is to update those files from autotools-dev, as
recommended by Debian Policy §4.3. This is what the single patch
below does, by running the dh_update_autotools_config command just
before configure. Restoring those files in the clean rule is done by
dh_clean.

As a long term solution, it would be nice if upstream can ship updated
files in their next releases.

Thanks,
Aurelien

[1] 
https://buildd.debian.org/status/fetch.php?pkg=xfsprogs&arch=riscv64&ver=5.10.0-4&stamp=1613480689&raw=0

--- xfsprogs-5.10.0/debian/rules
+++ xfsprogs-5.10.0/debian/rules
@@ -42,6 +42,7 @@
 .census:
@echo "== dpkg-buildpackage: configure" 1>&2
$(checkdir)
+   dh_update_autotools_config
AUTOHEADER=/bin/true dh_autoreconf
$(options) $(MAKE) $(PMAKEFLAGS) include/platform_defs.h
touch .census

Bug#987080: ITP: portage -- package management system based on ports collections

2021-04-17 Thread Ludovic Bellier 

Le 17/04/2021 à 11:57, Yangfl a écrit :

Package: wnpp
Severity: wishlist
Owner: Yangfl 

* Package name: portage
   Version : 3.0.17
   Upstream Author : Gentoo Foundation
* URL : https://gitweb.gentoo.org/proj/portage.git/
* License : GPL-2
   Programming Lang: Python
   Description : package management system based on ports collections

Portage is a package management system based on ports collections. The
Package Manager Specification Project (PMS) standardises and documents
the behaviour of Portage so that ebuild repositories can be used by
other package managers.


Hi Yangfl,

*I'm just curious*, what is the use case for portage in Debian?

As it's the Gentoo package manager, do you use it to install ebuild 
packages in Debian? To test ebuild packages? A Gentoo ebuild farm from 
Debian? ...


Regards

Ludovic

Bug#987092: O: ukopp -- Full and incremental backup to disk or disk-like device

2021-04-17 Thread Mattia Rizzolo 
Package: wnpp

The current maintainer of ukopp, Leo Iannacone ,
has retired.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: ukopp
Binary: ukopp
Version: 4.9-1
Maintainer: Leo Iannacone 
Build-Depends: debhelper (>= 9), pkg-config, libgtk-3-dev, libglib2.0-dev
Architecture: any
Standards-Version: 3.9.5
Format: 3.0 (quilt)
Files:
 f50c02d592eb65ee8986365da7d91034 1821 ukopp_4.9-1.dsc
 0f23d513ffb9c4fc8083b5a0ccf21de2 303995 ukopp_4.9.orig.tar.gz
 143807f08e1d432d1f1e00dd8a94c2f2 3972 ukopp_4.9-1.debian.tar.gz
Vcs-Browser: http://anonscm.debian.org/gitweb/?p=collab-maint/ukopp.git
Vcs-Git: git://anonscm.debian.org/collab-maint/ukopp.git
Checksums-Sha256:
 5068e700fc61823ef489b372a494a895458cc10202bb983ffc68f4448e17f30e 1821 
ukopp_4.9-1.dsc
 a9350506b7cb2c6c3c7ba59ae5f9e6a755a5ada0fc995585b404b7a4cf01c2a3 303995 
ukopp_4.9.orig.tar.gz
 5dbd616982ccb079d8423d610e11d01933e3820a81a66415126ef3b51b6b9d90 3972 
ukopp_4.9-1.debian.tar.gz
Homepage: http://www.kornelix.com/ukopp.html
Package-List: 
 ukopp deb admin optional arch=any
Directory: pool/main/u/ukopp
Priority: source
Section: admin

Package: ukopp
Source: ukopp (4.9-1)
Version: 4.9-1+b1
Installed-Size: 490
Maintainer: Leo Iannacone 
Architecture: amd64
Depends: libatk1.0-0 (>= 1.12.4), libc6 (>= 2.14), libcairo-gobject2 (>= 
1.10.0), libcairo2 (>= 1.2.4), libgcc1 (>= 1:3.0), libgdk-pixbuf2.0-0 (>= 
2.22.0), libglib2.0-0 (>= 2.16.0), libgtk-3-0 (>= 3.3.16), libpango-1.0-0 (>= 
1.14.0), libpangocairo-1.0-0 (>= 1.14.0), libstdc++6 (>= 5), udev
Description: Full and incremental backup to disk or disk-like device
Description-md5: 6b93d5816d7f57e0364d2050ecc8bb36
Homepage: http://www.kornelix.com/ukopp.html
Tag: admin::backup, interface::graphical, interface::x11, role::program,
 uitoolkit::gtk
Section: admin
Priority: optional
Filename: pool/main/u/ukopp/ukopp_4.9-1+b1_amd64.deb
Size: 254922
MD5sum: 65085b89d8cd420265ba055754e6d5fa
SHA256: e707f3b09ecb4be80e1114565bd022313bf95090fc38c58b563de1f4627c0f8f


-- 
regards,
Mattia Rizzolo

GPG Key: 66AE 2B4A FCCF 3F52 DA18  4D18 4B04 3FCD B944 4540  .''`.
More about me:  https://mapreri.org : :'  :
Launchpad user: https://launchpad.net/~mapreri  `. `'`
Debian QA page: https://qa.debian.org/developer.php?login=mattia  `-


signature.asc
Description: PGP signature

Bug#987091: O: python-socketio-client -- socket.io-client library for Python3

2021-04-17 Thread Mattia Rizzolo 
Package: wnpp

The current maintainer of python-socketio-client, Leo Iannacone 
,
has retired.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: python-socketio-client
Binary: python3-socketio-client
Version: 0.6.5-0.2
Maintainer: Leo Iannacone 
Build-Depends: debhelper (>= 9), dh-python, python3-all, python3-setuptools
Architecture: all
Standards-Version: 3.9.6
Format: 3.0 (quilt)
Files:
 af78bab2e565096cae3e7bf031d42bab 2061 python-socketio-client_0.6.5-0.2.dsc
 5444ac82c9f14bd044c8cd2993d57907 17766 python-socketio-client_0.6.5.orig.tar.gz
 1503d71e793e5ecfda040265ad0ca1f4 2292 
python-socketio-client_0.6.5-0.2.debian.tar.xz
Vcs-Browser: 
http://anonscm.debian.org/gitweb/?p=collab-maint/python-socketio-client.git
Vcs-Git: git://anonscm.debian.org/collab-maint/python-socketio-client.git
Checksums-Sha256:
 9bcc15e68e864f319a7cde1fe213d9b559ba35d991b61699b3a188f25f7d0067 2061 
python-socketio-client_0.6.5-0.2.dsc
 b1defde04949cc5dc8021264fd9a3905f738ed9b1845c4925d324815d35bc4be 17766 
python-socketio-client_0.6.5.orig.tar.gz
 0b6210f5b2b2a2f29d82b573f94120b7fc9cb22a41a09171b728bfb12e506246 2292 
python-socketio-client_0.6.5-0.2.debian.tar.xz
Homepage: https://github.com/invisibleroads/socketIO-client
Package-List: 
 python3-socketio-client deb python optional arch=all
Directory: pool/main/p/python-socketio-client
Priority: optional
Section: misc

Package: python3-socketio-client
Source: python-socketio-client
Version: 0.6.5-0.2
Installed-Size: 99
Maintainer: Leo Iannacone 
Architecture: all
Depends: python3-requests, python3-six, python3-websocket, python3:any
Description: socket.io-client library for Python3
Description-md5: cf00bfed3394529d95c483061bff6d7a
Homepage: https://github.com/invisibleroads/socketIO-client
Section: python
Priority: optional
Filename: 
pool/main/p/python-socketio-client/python3-socketio-client_0.6.5-0.2_all.deb
Size: 21752
MD5sum: 86333bf2888c49aa9a054246f42a1306
SHA256: bf5da7a924c93fd9a442606091d17817d2cc3971014f95c9a6e9ac9a670eefb3


-- 
regards,
Mattia Rizzolo

GPG Key: 66AE 2B4A FCCF 3F52 DA18  4D18 4B04 3FCD B944 4540  .''`.
More about me:  https://mapreri.org : :'  :
Launchpad user: https://launchpad.net/~mapreri  `. `'`
Debian QA page: https://qa.debian.org/developer.php?login=mattia  `-


signature.asc
Description: PGP signature

Bug#987090: O: ion -- NASA implementation of Delay-Tolerant Networking (DTN)

2021-04-17 Thread Mattia Rizzolo 
Package: wnpp

The current maintainer of ion, Leo Iannacone ,
has retired.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: ion
Binary: ion, libion0, libion-dev, ion-doc
Version: 3.2.1+dfsg-1.1
Maintainer: Leo Iannacone 
Build-Depends: debhelper (>= 9), dh-autoreconf, ghostscript, groff, 
libexpat1-dev, procps, psutils
Architecture: any all
Standards-Version: 3.9.6
Format: 3.0 (quilt)
Files:
 bde157ffd3966db53935060c7e70a927 2024 ion_3.2.1+dfsg-1.1.dsc
 cdddeea56128e34beb29d381298dbe51 4187913 ion_3.2.1+dfsg.orig.tar.gz
 1343ba339e4a6c46155857a5b9fa2b2d 8436 ion_3.2.1+dfsg-1.1.debian.tar.xz
Vcs-Browser: http://anonscm.debian.org/gitweb/?p=collab-maint/ion.git
Vcs-Git: git://anonscm.debian.org/collab-maint/ion.git
Checksums-Sha256:
 90376a2ebacb2b1601141392f78d923213f1e4e77e73cfcd2e6cc3f0a88aba49 2024 
ion_3.2.1+dfsg-1.1.dsc
 e9c75cc1894524ddd2ed19128078fd1716961f8924e0a4708f0e26cab5111785 4187913 
ion_3.2.1+dfsg.orig.tar.gz
 67c85534c72219d1e5d02d2ff1caeefc34ef001f53da30e3096aa31b17fbdb07 8436 
ion_3.2.1+dfsg-1.1.debian.tar.xz
Homepage: https://ion.ocp.ohiou.edu/
Package-List: 
 ion deb net extra arch=any
 ion-doc deb doc extra arch=all
 libion-dev deb libdevel extra arch=any
 libion0 deb libs extra arch=any
Directory: pool/main/i/ion
Priority: source
Section: net


-- 
regards,
Mattia Rizzolo

GPG Key: 66AE 2B4A FCCF 3F52 DA18  4D18 4B04 3FCD B944 4540  .''`.
More about me:  https://mapreri.org : :'  :
Launchpad user: https://launchpad.net/~mapreri  `. `'`
Debian QA page: https://qa.debian.org/developer.php?login=mattia  `-


signature.asc
Description: PGP signature

Bug#987089: O: dkopp -- Full and incremental backup to DVD

2021-04-17 Thread Mattia Rizzolo 
Package: wnpp

The current maintainer of dkopp, Leo Iannacone ,
has retired.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: dkopp
Binary: dkopp
Version: 6.5-1.1
Maintainer: Leo Iannacone 
Build-Depends: debhelper (>= 9), pkg-config, libgtk-3-dev, libglib2.0-dev
Architecture: any
Standards-Version: 3.9.5
Format: 3.0 (quilt)
Files:
 c2309e7fa72804797e61e6c570a98c6a 1843 dkopp_6.5-1.1.dsc
 446e4934e4f65520852e18ed478cd655 448480 dkopp_6.5.orig.tar.gz
 330ab648987d786914b2124f3588e839 4372 dkopp_6.5-1.1.debian.tar.xz
Vcs-Browser: http://anonscm.debian.org/gitweb/?p=collab-maint/dkopp.git
Vcs-Git: git://anonscm.debian.org/collab-maint/dkopp.git
Checksums-Sha256:
 76ddb0bbf4b753ce328d80dd4d7e5fe0e08dd5874a278ebc9a0e00d0086a24fb 1843 
dkopp_6.5-1.1.dsc
 ff909904ed6fe1b14b7b44bb2c9dcfe2306c4189bcf354a9e573febda61817bd 448480 
dkopp_6.5.orig.tar.gz
 f61b71b6eb482d6e5cc3356d2a9a3f784ffa872da80a13483105bc649228527f 4372 
dkopp_6.5-1.1.debian.tar.xz
Homepage: http://www.kornelix.com/dkopp.html
Package-List: 
 dkopp deb admin optional arch=any
Directory: pool/main/d/dkopp
Priority: source
Section: admin

Package: dkopp
Version: 6.5-1.1
Installed-Size: 614
Maintainer: Leo Iannacone 
Architecture: amd64
Depends: libc6 (>= 2.29), libcairo2 (>= 1.2.4), libgcc-s1 (>= 3.0), 
libgdk-pixbuf2.0-0 (>= 2.22.0), libglib2.0-0 (>= 2.14.0), libgtk-3-0 (>= 
3.3.16), libpango-1.0-0 (>= 1.14.0), libpangocairo-1.0-0 (>= 1.14.0), 
libstdc++6 (>= 5), udev, dvd+rw-tools
Description: Full and incremental backup to DVD
Description-md5: 36b075c2cf65b2800085f34054cd6f22
Homepage: http://www.kornelix.com/dkopp.html
Tag: admin::backup, interface::graphical, interface::x11, role::program,
 scope::utility, uitoolkit::gtk
Section: admin
Priority: optional
Filename: pool/main/d/dkopp/dkopp_6.5-1.1_amd64.deb
Size: 407192
MD5sum: ce9118bf4d790f71dbe91f0bb71e4e20
SHA256: 42f83d386db15d880d2223279eb6d4b39b48602f5a674352e526df4f7e39989a


-- 
regards,
Mattia Rizzolo

GPG Key: 66AE 2B4A FCCF 3F52 DA18  4D18 4B04 3FCD B944 4540  .''`.
More about me:  https://mapreri.org : :'  :
Launchpad user: https://launchpad.net/~mapreri  `. `'`
Debian QA page: https://qa.debian.org/developer.php?login=mattia  `-


signature.asc
Description: PGP signature

Bug#987088: unblock: helm/3.7.0-2

2021-04-17 Thread David Bremner 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: debian-emac...@lists.debian.org

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Please unblock package helm


[ Reason ]

This upload closes RC Bug #986854

[ Impact ]

Apparently the package is useless for some / most users without these
file of keybindings.

[ Tests ]

I have loaded the newly provided file of keybindings from the binary
package, and verified that the corresponding keybindings are provided.

[ Risks ]

This is a leaf package. The changes seem low risk, given the package
builds (which it does). The net result is to provide a file of
bytecode (and corresponding source) that can optionally be loaded by
the user.

[ Checklist ]
  [x] all changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in testing

[ Other info ]

I'm not actually a user of this package, so I'm mostly taking the reporter's
word for the severity.

unblock helm/3.7.0-2


-BEGIN PGP SIGNATURE-
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=I3QQ
-END PGP SIGNATURE-
diff -Nru helm-3.7.0/debian/changelog helm-3.7.0/debian/changelog
--- helm-3.7.0/debian/changelog 2020-11-07 15:43:36.0 -0400
+++ helm-3.7.0/debian/changelog 2021-04-17 07:31:15.0 -0300
@@ -1,3 +1,10 @@
+helm (3.7.0-2) unstable; urgency=medium
+
+  * Team upload
+  * ship helm-global-bindings.el in elpa-helm (Closes: #986854).
+
+ -- David Bremner   Sat, 17 Apr 2021 07:31:15 -0300
+
 helm (3.7.0-1) unstable; urgency=medium
 
   * Update to new upstream version 3.7.0.
diff -Nru helm-3.7.0/debian/elpa-helm.elpa helm-3.7.0/debian/elpa-helm.elpa
--- helm-3.7.0/debian/elpa-helm.elpa2020-11-07 15:43:36.0 -0400
+++ helm-3.7.0/debian/elpa-helm.elpa2021-04-17 07:31:15.0 -0300
@@ -16,6 +16,7 @@
 helm-find.el
 helm-font.el
 helm-for-files.el
+helm-global-bindings.el
 helm-grep.el
 helm-help.el
 helm-id-utils.el

Bug#987087: O: apt-venv -- apt virtual environment

2021-04-17 Thread Mattia Rizzolo 
Package: wnpp

The current maintainer of apt-venv, Leo Iannacone ,
has retired.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: apt-venv
Binary: apt-venv
Version: 1.0.0-2.1
Maintainer: Leo Iannacone 
Build-Depends: debhelper (>= 8), dh-python, python3-all, python3-xdg
Architecture: all
Standards-Version: 3.9.5
Format: 3.0 (quilt)
Files:
 fdcfdf8cb120098ce9381bdae30979d2 1888 apt-venv_1.0.0-2.1.dsc
 ffe77d93af793320e51e092b023bfc40 17374 apt-venv_1.0.0.orig.tar.gz
 795f9190284bb2d87a2262ac607af0d0 2028 apt-venv_1.0.0-2.1.debian.tar.xz
Vcs-Browser: http://anonscm.debian.org/gitweb/?p=collab-maint/apt-venv.git
Vcs-Git: git://anonscm.debian.org/collab-maint/apt-venv.git
Checksums-Sha256:
 a0f9b330c433414ca7d5b8f648dfdb574910b361e3907f6e1047cf0b4359 1888 
apt-venv_1.0.0-2.1.dsc
 c54b60bd433a0bb111824b7712a693065c71e558d88031e81938768cf1e5fa97 17374 
apt-venv_1.0.0.orig.tar.gz
 773c88d071ac34bbdef0faaa4090b47489ce7571c4aaaf2cf98dfc13c964dd90 2028 
apt-venv_1.0.0-2.1.debian.tar.xz
Homepage: https://github.com/LeoIannacone/apt-venv
Package-List: 
 apt-venv deb admin optional arch=all
Directory: pool/main/a/apt-venv
Priority: optional
Section: misc

Package: apt-venv
Version: 1.0.0-2.1
Installed-Size: 42
Maintainer: Leo Iannacone 
Architecture: all
Depends: python3-xdg, python3:any
Description: apt virtual environment
Description-md5: 998def5b4f6b78bf45ded0d7b7dbad36
Homepage: https://github.com/LeoIannacone/apt-venv
Section: admin
Priority: optional
Filename: pool/main/a/apt-venv/apt-venv_1.0.0-2.1_all.deb
Size: 8044
MD5sum: 5a2e656c169a9bdffb44e99c2fbbfe04
SHA256: e64fc5938125aa442b9790b0b65f0d1a792082e8d3bf5e51c77c7c63225282fb


-- 
regards,
Mattia Rizzolo

GPG Key: 66AE 2B4A FCCF 3F52 DA18  4D18 4B04 3FCD B944 4540  .''`.
More about me:  https://mapreri.org : :'  :
Launchpad user: https://launchpad.net/~mapreri  `. `'`
Debian QA page: https://qa.debian.org/developer.php?login=mattia  `-


signature.asc
Description: PGP signature

Bug#987086: unblock: lxpanel/0.10.1-2

2021-04-17 Thread Andriy Grytsenko 
Package: release.debian.org

Please unblock package lxpanel (0.10.1-2), it fixes the bug #985517 of
severity serious: lxpanel-dev has missing dependency on lxpanel.

Debiff between versions 0.10.1-1 and 0.10.1-2 follows:

diff -Nru lxpanel-0.10.1/debian/changelog lxpanel-0.10.1/debian/changelog
--- lxpanel-0.10.1/debian/changelog 2021-02-07 00:12:25.0 +0200
+++ lxpanel-0.10.1/debian/changelog 2021-04-17 13:22:04.0 +0300
@@ -1,3 +1,9 @@
+lxpanel (0.10.1-2) unstable; urgency=medium
+
+  * Making lxpanel-dev package Multi-Arch: no (Closes: #985517).
+
+ -- Andriy Grytsenko   Sat, 17 Apr 2021 13:22:04 +0300
+
 lxpanel (0.10.1-1) unstable; urgency=medium
 
   * Merging upstream version 0.10.1.
diff -Nru lxpanel-0.10.1/debian/control lxpanel-0.10.1/debian/control
--- lxpanel-0.10.1/debian/control   2021-02-06 23:49:02.0 +0200
+++ lxpanel-0.10.1/debian/control   2021-03-20 13:19:28.0 +0200
@@ -63,8 +63,8 @@
 
 Package: lxpanel-dev
 Architecture: any
-Multi-Arch: same
-Depends: ${misc:Depends},
+Multi-Arch: no
+Depends: ${misc:Depends}, lxpanel (= ${binary:Version}),
  libgtk2.0-dev, libfm-gtk-dev (>= 1.2.0)
 Breaks: lxpanel (<< 0.8.2)
 Replaces: lxpanel (<< 0.8.2)

Bug#987065: wordpress: CVE-2021-29450: Authenticated disclosure of password-protected posts and pages

2021-04-17 Thread Craig Small 
Yeah I realised there wasn't PHP 8 in Debian anywhere yet but referencing
it is worthwhile otherwise months later someone might ask me about it and
I'll go, hmm I think we fixed that.

Buster will have a debdiff to review very soon. Bullseye I have asked for
the version in Sid to be unblocked in #987084 which I think is the best
outcome for future maintenance.

 - Craig

On Sat, 17 Apr 2021 at 16:37, Salvatore Bonaccorso 
wrote:

> Hi Craig,
>
> On Sat, Apr 17, 2021 at 08:32:35AM +1000, Craig Small wrote:
> > Should CVE-2021-29447 [1] be also listed against this bug? I'll be
> putting
> > it in the changelog.
>
> I choosed to explicitly cover only CVE-2021-29450 with this bug
> because CVE-2021-29447 while fixed as well with 5.7.1, is only a
> problem with PHP8, which is not the default version for bullseye/sid.
>
> But clearly if you fix the issues by updating to 5.7.1 then by all
> means yes list as well CVE-2021-29447 in the changelog entry.
>
> Thanks for your work!
>
> Salvatore
>

Bug#987085: unblock: lxpanel/0.10.1-2

2021-04-17 Thread Andriy Grytsenko 
Package: lxpanel
Version: 0.10.1-2

Please unblock package lxpanel (0.10.1-2), it fixes the bug #985517 of
severity serious: lxpanel-dev has missing dependency on lxpanel.

Debiff between versions 0.10.1-1 and 0.10.1-2 follows:

diff -Nru lxpanel-0.10.1/debian/changelog lxpanel-0.10.1/debian/changelog
--- lxpanel-0.10.1/debian/changelog 2021-02-07 00:12:25.0 +0200
+++ lxpanel-0.10.1/debian/changelog 2021-04-17 13:22:04.0 +0300
@@ -1,3 +1,9 @@
+lxpanel (0.10.1-2) unstable; urgency=medium
+
+  * Making lxpanel-dev package Multi-Arch: no (Closes: #985517).
+
+ -- Andriy Grytsenko   Sat, 17 Apr 2021 13:22:04 +0300
+
 lxpanel (0.10.1-1) unstable; urgency=medium
 
   * Merging upstream version 0.10.1.
diff -Nru lxpanel-0.10.1/debian/control lxpanel-0.10.1/debian/control
--- lxpanel-0.10.1/debian/control   2021-02-06 23:49:02.0 +0200
+++ lxpanel-0.10.1/debian/control   2021-03-20 13:19:28.0 +0200
@@ -63,8 +63,8 @@
 
 Package: lxpanel-dev
 Architecture: any
-Multi-Arch: same
-Depends: ${misc:Depends},
+Multi-Arch: no
+Depends: ${misc:Depends}, lxpanel (= ${binary:Version}),
  libgtk2.0-dev, libfm-gtk-dev (>= 1.2.0)
 Breaks: lxpanel (<< 0.8.2)
 Replaces: lxpanel (<< 0.8.2)

Bug#987084: unblock: wordpress/5.7.1+dfsg1-1

2021-04-17 Thread Craig Small 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Please unblock package wordpress

Currently Wordpress in Bullseye is 5.6.1 and is vulnerable to CVE-2021-29450
reported in bug #987065

There are really three options here, either
 a) Bullseye gets upgraded to 5.6.3 [1]; or
 b) Bullseye gets 5.6.1 that only has the patch
 c) WordPress in 5.7.1 in Sid is unblocked and put into Bullseye

My preference is to have Bullseye use 5.7.1, i.e. unblock from Sid,
hence this email.

This will make the inevitable security updates easier during the life of 
Bullseye
and will slow down "why is this version so old" emails I'll get.

I was hoping to get 5.7 into Bullseye anyway but missed the freeze.
With this security bug, there needs to be an update, it just comes
down to which one to do.

Patching only the change initially sounds good, but the issue is any
subsequent patches (and there will be security bugs in future) become
very difficult to do. Upstream may also assume a bug is not a bug due to
some previous fix (e.g. a change in 5.6.2 we don't put stops some
future security issue.

The issue of patching future WordPress 5.6.1+ versions is easy to see
by looking at upstreams source repository[2], there are two security
updates here.

So, 768f1d8 looks like a good contender for a PHP8 related problem
which is CVE-2021-29447[3] but where is the fix for CVE-2021-29450 [4]?
It's probably buried in c937087 "Grouped merges for 5.6.3"

This sort of thing happens all the time, its why for example Buster we
track 5.0.x [5] and Buster has 5.0.11 not 5.0.4+something.

[ Reason ]
To fix security bug CVE-2021-29450 [4] and to ensure that subsequent
security issues are properly handled for Bullseye.

[ Impact ]
Bullseye WordPress users will remain vulnerable OR we have to do some
special upload of 5.6.3 OR some patched thing which is almost but not
quite anything tested anywhere.

[ Tests ]
There are two sets of changes here. WordPress 5.7 has been out for
about a month with no reported issues, so its been tested on various
systems out there including my own.

WordPress 5.7.1 is new. Upstream have automated tests, I have run
this version on my on systems and not had any issues.

[ Risks ]
The change from 5.6.1 to 5.7.1 is big, about 20MB of data but that
would include things like minimised and unminimised javascript.

I'm not sure of the mix of upstream WordPress websites between
5.6.x and 5.7.x but I'd expect most track the latest upstream
meaning 5.7.1 would be used *way* more than 5.6.3

Nobody would be using the patched 5.6.1 option before its released.

[ Checklist ]
  [Y] all changes are documented in the d/changelog
  [Y] I reviewed all changes and I approve them
  [N] attach debdiff against the package in testing

[ Other info ]
I can provide the 25M debdiff if required, but I don't think it will be
useful.

1: https://wordpress.org/support/wordpress-version/version-5-6-3/
2: https://github.com/WordPress/WordPress/commits/5.6-branch
3: 
https://github.com/WordPress/wordpress-develop/security/advisories/GHSA-rv47-pc52-qrhh
4: 
https://github.com/WordPress/wordpress-develop/security/advisories/GHSA-pmmh-2f36-wvhq
5: 
https://metadata.ftp-master.debian.org/changelogs//main/w/wordpress/wordpress_5.0.11+dfsg1-0+deb10u1_changelog
unblock wordpress/5.7.1+dfsg1-1


-BEGIN PGP SIGNATURE-
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=GwCm
-END PGP SIGNATURE-

Bug#987083: iwlmvm: sometimes doesn't initialise on boot, requires a reboot

2021-04-17 Thread Russell Stuart 
Package: src:linux
Version: 5.10.28-1
Severity: normal

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Dear Maintainer,

As of the upgrade 10 linux-image-5.10.0-6-amd64 the Intel AX200 WiFi
(0x8086 0x2723) doesn't work.  Network Manager doesn't find any Wireless
Networks.

rmmod'ing iwlmvm, iwlwifi, cfg80211, mac80211 and then modprob'ing
iwlmvm does not fix the problem.  I have to reboot.  This normally
happens on boot up, but has happened once when I changed to a
different SSID.


- -- Package-specific info:
** Version:
Linux version 5.10.0-6-amd64 (debian-ker...@lists.debian.org) (gcc-10 (Debian 
10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2) #1 SMP 
Debian 5.10.28-1 (2021-04-09)

** Command line:
BOOT_IMAGE=/boot/vmlinuz-5.10.0-6-amd64 
root=UUID=f58461ea-cd6d-434d-abf4-81ff52141b6b ro quiet

** Not tainted

** Kernel log:
[6.362591] NET: Registered protocol family 38
[6.375402] Bluetooth: RFCOMM TTY layer initialized
[6.375406] Bluetooth: RFCOMM socket layer initialized
[6.375409] Bluetooth: RFCOMM ver 1.11
[6.886692] rfkill: input handler disabled
[   10.226501] wlp82s0: authenticate with 9e:92:1f:4c:0b:b8
[   10.234700] wlp82s0: send auth to 9e:92:1f:4c:0b:b8 (try 1/3)
[   10.397715] wlp82s0: authenticated
[   10.401110] wlp82s0: associate with 9e:92:1f:4c:0b:b8 (try 1/3)
[   10.414197] wlp82s0: RX AssocResp from 9e:92:1f:4c:0b:b8 (capab=0x1431 
status=0 aid=1)
[   10.434958] wlp82s0: associated
[   10.566237] IPv6: ADDRCONF(NETDEV_CHANGE): wlp82s0: link becomes ready
[   11.036243] bridge: filtering via arp/ip/ip6tables is no longer available by 
default. Update your scripts to load br_netfilter if you need this.
[   11.301638] kauditd_printk_skb: 24 callbacks suppressed
[   11.301641] audit: type=1400 audit(1618641084.841:35): apparmor="STATUS" 
operation="profile_replace" info="same as current profile, skipping" 
profile="unconfined" name="/usr/bin/lxc-start" pid=1520 comm="apparmor_parser"
[   11.353157] audit: type=1400 audit(1618641084.893:36): apparmor="STATUS" 
operation="profile_replace" info="same as current profile, skipping" 
profile="unconfined" name="lxc-container-default" pid=1524 
comm="apparmor_parser"
[   11.353164] audit: type=1400 audit(1618641084.893:37): apparmor="STATUS" 
operation="profile_replace" info="same as current profile, skipping" 
profile="unconfined" name="lxc-container-default-cgns" pid=1524 
comm="apparmor_parser"
[   11.353168] audit: type=1400 audit(1618641084.893:38): apparmor="STATUS" 
operation="profile_replace" info="same as current profile, skipping" 
profile="unconfined" name="lxc-container-default-with-mounting" pid=1524 
comm="apparmor_parser"
[   11.353171] audit: type=1400 audit(1618641084.893:39): apparmor="STATUS" 
operation="profile_replace" info="same as current profile, skipping" 
profile="unconfined" name="lxc-container-default-with-nesting" pid=1524 
comm="apparmor_parser"
[   18.283646] nouveau :01:00.0: fb: VPR locked, but no scrubber binary!
[   18.613288] rfkill: input handler enabled
[   20.405397] rfkill: input handler disabled
[  514.369698] usb 2-2: new SuperSpeed Gen 1 USB device number 2 using xhci_hcd
[  514.391132] usb 2-2: New USB device found, idVendor=152d, idProduct=0578, 
bcdDevice= 2.09
[  514.391139] usb 2-2: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  514.391143] usb 2-2: Product: USB to ATA/ATAPI Bridge
[  514.391146] usb 2-2: Manufacturer: JMicron
[  514.391148] usb 2-2: SerialNumber: 0123456789ABCDEF
[  514.421422] SCSI subsystem initialized
[  514.424884] usbcore: registered new interface driver usb-storage
[  514.428996] scsi host0: uas
[  514.429067] usbcore: registered new interface driver uas
[  514.429478] scsi 0:0:0:0: Direct-Access JMicron  Generic  0209 
PQ: 0 ANSI: 6
[  514.438420] scsi 0:0:0:0: Attached scsi generic sg0 type 0
[  516.823958] sd 0:0:0:0: [sda] 976773168 512-byte logical blocks: (500 GB/466 
GiB)
[  516.823965] sd 0:0:0:0: [sda] 4096-byte physical blocks
[  516.824148] sd 0:0:0:0: [sda] Write Protect is off
[  516.824152] sd 0:0:0:0: [sda] Mode Sense: 53 00 00 08
[  516.824547] sd 0:0:0:0: [sda] Disabling FUA
[  516.824551] sd 0:0:0:0: [sda] Write cache: enabled, read cache: enabled, 
doesn't support DPO or FUA
[  516.824889] sd 0:0:0:0: [sda] Optimal transfer size 33553920 bytes not a 
multiple of physical block size (4096 bytes)
[  516.851569]  sda: sda1
[  516.853924] sd 0:0:0:0: [sda] Attached SCSI disk
[  755.948101] usb 2-2: USB disconnect, device number 2
[  755.949812] sd 0:0:0:0: [sda] Synchronizing SCSI cache
[  756.187902] sd 0:0:0:0: [sda] Synchronize Cache(10) failed: Result: 
hostbyte=DID_ERROR driverbyte=DRIVER_OK
[ 1051.709005] nouveau :01:00.0: fb: VPR locked, but no scrubber binary!
[ 1476.739325] nouveau :01:00.0: fb: VPR locked, but no scrubber binary!
[ 1862.143451] nouveau :01:00.0: fb: VPR locked, but no scrubber binary!
[ 2783.993471] nouveau :01:00.0: fb: VPR locked, but no scrubber

Bug#987082: lxqt: archiver dependency

2021-04-17 Thread Dimitris 

Package: lxqt
Version: 30
Severity: wishlist

Hey,

even though i have lxqt-archiver installed, when i removed engrampa 
(switching from mate -> lxqt), apt wants to install xarchiver package.
it seems lxqt (archiver) dependency is ' ark | engrampa | xarchiver' , 
maybe lxqt-archiver should be added to this list.


thanks in advance,
d.

-- System Information:
Distributor ID: Devuan
Description:Devuan GNU/Linux 4 (chimaera/ceres)
Release:testing/unstable
Codename:   n/a
Architecture: x86_64

Kernel: Linux 5.10.0-6-amd64 (SMP w/4 CPU threads)
Locale: LANG=el_GR.UTF-8, LC_CTYPE=el_GR.UTF-8 (charmap=UTF-8), LANGUAGE 
not set

Shell: /bin/sh linked to /bin/dash
Init: runit (via /run/runit.stopit)
LSM: AppArmor: enabled

Versions of packages lxqt depends on:
ii  featherpad0.17.1-1
ii  lightdm [x-display-manager]   1.26.0-7+devuan3
ii  lximage-qt0.16.0-1
ii  lxqt-about0.16.0-1
ii  lxqt-admin0.16.0-1
ii  lxqt-branding-debian [lxqt-branding]  0.14.0.3
ii  lxqt-core 30
ii  lxqt-openssh-askpass  0.16.0-1
ii  lxqt-powermanagement  0.16.0-1
ii  lxqt-sudo 0.16.0-1
ii  openbox [x-window-manager]3.6.1-9+deb11u1
ii  pavucontrol-qt0.16.0-1
ii  qlipper   1:5.1.2-1+b1
ii  qps   2.2.0-1
ii  qterminal 0.16.1-1
ii  qttranslations5-l10n  5.15.2-2
ii  sddm [x-display-manager]  0.19.0-3
ii  sddm-theme-debian-maui [sddm-theme]   0.19.0-3
ii  xarchiver 1:0.5.4.17-1
ii  xfwm4 [x-window-manager]  4.16.1-1

Versions of packages lxqt recommends:
ii  audacious 4.0.5-1
ii  bsd-mailx [mail-reader]   8.1.2-0.20180807cvs-2
ii  feathernotes  0.8.0-1
ii  firefox [www-browser] 87.0-2
ii  firefox-esr [www-browser] 78.9.0esr-1
pn  gucharmap 
ii  hexchat   2.14.3-5
ii  lynx [www-browser]2.9.0dev.6-2
ii  meteo-qt  2.1-1
ii  midori [www-browser]  7.0-2.1
ii  mutt [mail-reader]2.0.5-4
ii  network-manager-gnome 1.20.0-3
ii  nm-tray   0.4.3-2+b1
pn  preload   
ii  qpdfview  0.4.18-4
pn  screengrab
ii  smplayer  20.6.0~ds0-1
pn  smtube
ii  thunderbird [mail-reader] 1:78.9.0-1
ii  ungoogled-chromium [www-browser]  89.0.4389.114-1.sid1
ii  w3m [www-browser] 0.5.3+git20210102-6

Versions of packages lxqt suggests:
pn  calibre
ii  compton-conf   0.16.0-1
ii  juffed 0.10-89-g3690b60-5+b1
pn  nomacs 
pn  obconf-qt  
ii  qt5-style-kvantum  0.18.0+repack-1
pn  qtpass 
pn  shutter
pn  vokoscreen 

-- no debconf information

Bug#987081: unblock: puppet-module-puppetlabs-haproxy/2.1.0-3

2021-04-17 Thread Thomas Goirand 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package puppet-module-puppetlabs-haproxy

This fixes a minor issue in the prerm when removing
alternatives (ie: wrong path when removing the alternative).

(very) small debdiff attached.

Please unblock puppet-module-puppetlabs-haproxy/2.1.0-3.

Cheers,

Thomas Goirand (zigo)
diff -Nru puppet-module-puppetlabs-haproxy-2.1.0/debian/changelog 
puppet-module-puppetlabs-haproxy-2.1.0/debian/changelog
--- puppet-module-puppetlabs-haproxy-2.1.0/debian/changelog 2020-03-24 
11:21:33.0 +0100
+++ puppet-module-puppetlabs-haproxy-2.1.0/debian/changelog 2021-04-17 
11:58:30.0 +0200
@@ -1,3 +1,9 @@
+puppet-module-puppetlabs-haproxy (2.1.0-3) unstable; urgency=medium
+
+  * Fix update-alternatives --remove in prerm.
+
+ -- Thomas Goirand   Sat, 17 Apr 2021 11:58:30 +0200
+
 puppet-module-puppetlabs-haproxy (2.1.0-2) unstable; urgency=medium
 
   [ Ondřej Nový ]
diff -Nru 
puppet-module-puppetlabs-haproxy-2.1.0/debian/puppet-module-puppetlabs-haproxy.prerm
 
puppet-module-puppetlabs-haproxy-2.1.0/debian/puppet-module-puppetlabs-haproxy.prerm
--- 
puppet-module-puppetlabs-haproxy-2.1.0/debian/puppet-module-puppetlabs-haproxy.prerm
2020-03-24 11:21:33.0 +0100
+++ 
puppet-module-puppetlabs-haproxy-2.1.0/debian/puppet-module-puppetlabs-haproxy.prerm
2021-04-17 11:58:30.0 +0200
@@ -3,7 +3,7 @@
 set -e
 
 if [ "${1}" = "remove" ] || [ "${1}" = "upgrade" ] || [ "${1}" = "deconfigure" 
] ; then
-   update-alternatives --remove puppet-module-haproxy 
/usr/share/puppet/modules.available/puppet-module-puppetlabs-haproxy
+   update-alternatives --remove puppet-module-haproxy 
/usr/share/puppet/modules.available/puppetlabs-haproxy
 fi
 
 #DEBHELPER#

Bug#987080: ITP: portage -- package management system based on ports collections

2021-04-17 Thread Yangfl 
Package: wnpp
Severity: wishlist
Owner: Yangfl 

* Package name: portage
  Version : 3.0.17
  Upstream Author : Gentoo Foundation
* URL : https://gitweb.gentoo.org/proj/portage.git/
* License : GPL-2
  Programming Lang: Python
  Description : package management system based on ports collections

Portage is a package management system based on ports collections. The
Package Manager Specification Project (PMS) standardises and documents
the behaviour of Portage so that ebuild repositories can be used by
other package managers.

Bug#987079: unblock: boxer-data/10.8.21

2021-04-17 Thread Jonas Smedegaard 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Please unblock package boxer-data

(Please provide enough (but not too much) information to help
the release team to judge the request efficiently. E.g. by
filling in the sections below.)

[ Reason ]
the removal of citadel-server from bullseye caused the autopkgtest for
boxer-data to fail, as tracked in Bug#986726.

[ Impact ]
boxer-data is used to generate package lists e.g. to build metapackages.
This bug occurs when using boxer to make a list of Debian packages which
epxplicitly excludes all packages providing an MTA *and* using that list
in a context which chokes non-existing packages being explicitly listed.

No reverse (build-)dependencies are affected by this bug, but direct use
of boxer to generate a local metapackage or script to avoid MTAs on a
system is not an unusual use of boxer.

[ Tests ]
This bug is covered by autopkgtest (that's how it was spotted), and the
bugfix is confirmed to succeed that test.

[ Risks ]
Code change needed to fix this bug was trivial: commenting out virtual
package "citadel-mta" previously provided by src:citadel.

[ Checklist ]
  [x] all changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in testing

unblock boxer-data/10.8.21


-BEGIN PGP SIGNATURE-
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=/VWB
-END PGP SIGNATURE-
diff -Nru boxer-data-10.8.21/bullseye/classes/Service/mail/avoid.yml 
boxer-data-10.8.22/bullseye/classes/Service/mail/avoid.yml
--- boxer-data-10.8.21/bullseye/classes/Service/mail/avoid.yml  1970-01-01 
01:00:00.0 +0100
+++ boxer-data-10.8.22/bullseye/classes/Service/mail/avoid.yml  2021-04-17 
10:44:49.0 +0200
@@ -0,0 +1,23 @@
+# FIXME: avoid citadel-mta (or citadel-server) when available in Debian
+classes:
+  - Service.mail.base
+parameters:
+  doc:
+service-mail:
+  pkg:
+- avoid mail transport agent
+  pkg-avoid:
+- masqmail
+- dma
+- courier-mta
+- esmtp-run
+- msmtp-mta
+- qmail-run
+- ssmtp
+- postfix
+- exim4-daemon-light
+- exim4-daemon-heavy
+- opensmtpd
+- sendmail-bin
+#- citadel-mta
+- nullmailer
diff -Nru boxer-data-10.8.21/debian/changelog 
boxer-data-10.8.22/debian/changelog
--- boxer-data-10.8.21/debian/changelog 2021-03-02 15:47:13.0 +0100
+++ boxer-data-10.8.22/debian/changelog 2021-04-17 10:47:12.0 +0200
@@ -1,3 +1,11 @@
+boxer-data (10.8.22) unstable; urgency=medium
+
+  * fix class Service.mail.avoid:
+stop avoid citadel-mta unavailable since bullseye;
+closes: bug#986726, thanks to Graham Inggs
+
+ -- Jonas Smedegaard   Sat, 17 Apr 2021 10:47:12 +0200
+
 boxer-data (10.8.21) unstable; urgency=medium
 
   * update class Desktop.design.web.sass:

Bug#987078: usbview: Remove duplicated files from upstream, and files no more needed

2021-04-17 Thread Pino Toscano 
Source: usbview
Version: 2.0-21-g6fe2f4f-2
Severity: wishlist
Tags: patch

Hi,

the current debian directory ships some file that shadows files provided
by upstream (e.g. the desktop file and the icons), and ships some files
that are not needed. Hence, the provided patch simplify things a bit:
- drop our own icons, as upstream now installs all the XDG icon themes
  icons properly (PNG and SVG)
- drop the old Debian menu file, as a desktop file is provided, so by
  Policy the menu file ought to not be shipped; furthermore, the old
  menu system has been deprecated for 6 years
- use su-to-root in the desktop file as a patch rather than using a copy
  of it: this reduces the maintenance cost, and it clearly separates
  the changes applied to it
- use a debian/upstream/metadata file to reference the upstream Git
  repository, according to DEP 12 (replacing the X- field)

The debdiff between a rebuild of 2.0-21-g6fe2f4f-2 and the provided
2.0-21-g6fe2f4f-3 is the following:

Files in first .deb but not in second
-
-rw-r--r--  root/root   /usr/share/icons/hicolor/32x32/apps/usbview.xpm
-rw-r--r--  root/root   /usr/share/menu/usbview
-rwxr-xr-x  root/root   DEBIAN/postinst
-rwxr-xr-x  root/root   DEBIAN/postrm

Control files: lines which differ (wdiff format)

Installed-Size: [-1201-] {+1191+}
Version: [-2.0-21-g6fe2f4f-2-] {+2.0-21-g6fe2f4f-3+}

Which is expected, as the XPM icon and the old Debian menu are to not
be shipped anymore.

Of course, I'm available to edit any part of it -- I personally see
these changes as improvement and cleanups.

Thanks,
-- 
Pino
diff -Nru usbview-2.0-21-g6fe2f4f/debian/changelog 
usbview-2.0-21-g6fe2f4f/debian/changelog
--- usbview-2.0-21-g6fe2f4f/debian/changelog2018-06-04 11:52:41.0 
+0200
+++ usbview-2.0-21-g6fe2f4f/debian/changelog2021-04-17 10:41:34.0 
+0200
@@ -1,3 +1,19 @@
+usbview (2.0-21-g6fe2f4f-3) UNRELEASED; urgency=medium
+
+  [ Pino Toscano ]
+  * Drop debian/usbview.manpages, as upstream already installs the man page.
+  * Drop menu file, as usbview already provides a .desktop file.
+  * Drop our own copy of usbview.svg, as it is provided by upstream already.
+  * Stop manually convering icons, as upstream already installs all the needed
+hicolor icons.
+  * Make the usage of su-to-root for the desktop file as patch to the desktop
+file provided by upstream, rather than as fork of that file; this way,
+there is no need to maintain it.
+  * Create a debian/upstream/metadata with references to the upstream Git
+repository, removing the X-Vcs-Upstream-Git field from debian/control.
+
+ -- Mark Brown   Sat, 17 Apr 2021 10:41:34 +0200
+
 usbview (2.0-21-g6fe2f4f-2) unstable; urgency=low
 
* Add build dependency on librsvg2-bin since the imagemagick
diff -Nru usbview-2.0-21-g6fe2f4f/debian/clean 
usbview-2.0-21-g6fe2f4f/debian/clean
--- usbview-2.0-21-g6fe2f4f/debian/clean2017-02-04 12:24:38.0 
+0100
+++ usbview-2.0-21-g6fe2f4f/debian/clean1970-01-01 01:00:00.0 
+0100
@@ -1 +0,0 @@
-debian/icons/*/*
diff -Nru usbview-2.0-21-g6fe2f4f/debian/control 
usbview-2.0-21-g6fe2f4f/debian/control
--- usbview-2.0-21-g6fe2f4f/debian/control  2018-06-04 11:52:41.0 
+0200
+++ usbview-2.0-21-g6fe2f4f/debian/control  2021-04-17 10:41:34.0 
+0200
@@ -6,7 +6,6 @@
 Homepage: http://www.kroah.com/linux-usb/
 Build-Depends: debhelper (>= 9), dh-autoreconf, autoconf-archive,
   imagemagick, libmagickcore-6.q16-2-extra, libgtk-3-dev, librsvg2-bin
-X-Vcs-Upstream-Git: git://github.com/gregkh/usbview.git
 
 Package: usbview
 Architecture: any
diff -Nru usbview-2.0-21-g6fe2f4f/debian/patches/desktop-use-su-to-exec.diff 
usbview-2.0-21-g6fe2f4f/debian/patches/desktop-use-su-to-exec.diff
--- usbview-2.0-21-g6fe2f4f/debian/patches/desktop-use-su-to-exec.diff  
1970-01-01 01:00:00.0 +0100
+++ usbview-2.0-21-g6fe2f4f/debian/patches/desktop-use-su-to-exec.diff  
2021-04-17 10:41:34.0 +0200
@@ -0,0 +1,15 @@
+Author: Mark Brown 
+Description: Make desktop entry use su-wrapper.
+Last-Update: 2015-04-25
+
+--- a/usbview.desktop
 b/usbview.desktop
+@@ -2,7 +2,7 @@
+ Name=USBView
+ GenericName=USB Device Viewer
+ Comment=View USB devices attached to system
+-Exec=pkexec /usr/bin/usbview
++Exec=su-to-root -X -c /usr/bin/usbview
+ Icon=usbview
+ Terminal=false
+ Type=Application
diff -Nru usbview-2.0-21-g6fe2f4f/debian/patches/series 
usbview-2.0-21-g6fe2f4f/debian/patches/series
--- usbview-2.0-21-g6fe2f4f/debian/patches/series   1970-01-01 
01:00:00.0 +0100
+++ usbview-2.0-21-g6fe2f4f/debian/patches/series   2021-04-17 
10:41:34.0 +0200
@@ -0,0 +1 @@
+desktop-use-su-to-exec.diff
diff -Nru usbview-2.0-21-g6fe2f4f/debian/rules 
usbview-2.0-21-g6fe2f4f/debian/rules
--- usbview-2.0-21-g6fe2f4f/debian/rules2017-02-04 12:24:38.0 
+0100
+++ usbview-2.0-21-g6fe2f4f/debian/rule

Bug#987077: unblock: ensmallen/2.16.2-1

2021-04-17 Thread Barak A. Pearlmutter 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock (or manually allow transition of) package ensmallen

[ Reason ]

The previous version was 20+ days old.
The only delta here is adding autopkgtest support, which passes fine.
Which suggests that this might reasonably be treated as 20+ days old
with autopkgtest support.

[ Impact ]

The version currently in testing has subtle numeric bugs, which seem
more likely to manifest on unusual architectures. Since this is
numeric software, bugs can silently yield incorrect numeric results.

[ Tests ]

The autopkgtest test suite is rather comprehensive.

[ Risks ]

Although in -dev, this is a near-leaf package: only mlpack uses it,
and I don't think mlpack will make it into the release. So, no
particular risks.

[ Checklist ]
  [X] all changes are documented in the d/changelog
  [X] I reviewed all changes and I approve them
  [X] attach debdiff against the package in testing

unblock ensmallen/2.16.2-1



diff -Nru ensmallen-2.16.2/debian/changelog ensmallen-2.16.2/debian/changelog
--- ensmallen-2.16.2/debian/changelog   2021-03-25 21:55:13.0 +
+++ ensmallen-2.16.2/debian/changelog   2021-04-16 16:49:42.0 +0100
@@ -1,3 +1,9 @@
+ensmallen (2.16.2-2) unstable; urgency=medium
+
+  * add autopkgtest support
+
+ -- Barak A. Pearlmutter   Fri, 16 Apr 2021 16:49:42 +0100
+
 ensmallen (2.16.2-1) unstable; urgency=medium
 
   * New upstream version, WILL fix broken test (closes: #984868)
diff -Nru ensmallen-2.16.2/debian/patches/0001-include-path.patch 
ensmallen-2.16.2/debian/patches/0001-include-path.patch
--- ensmallen-2.16.2/debian/patches/0001-include-path.patch 1970-01-01 
01:00:00.0 +0100
+++ ensmallen-2.16.2/debian/patches/0001-include-path.patch 2021-04-16 
16:49:42.0 +0100
@@ -0,0 +1,24 @@
+From: "Barak A. Pearlmutter" 
+Date: Fri, 16 Apr 2021 15:54:22 +0100
+Subject: include path
+
+The C++ test files must #include  rather than
+"../include/ensmallen.hpp" in order to allow the installed files,
+rather than the repo-local files, to be tested.
+---
+ tests/de_test.cpp | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/tests/de_test.cpp b/tests/de_test.cpp
+index a4bb246..c116c69 100644
+--- a/tests/de_test.cpp
 b/tests/de_test.cpp
+@@ -8,7 +8,7 @@
+  * http://www.opensource.org/licenses/BSD-3-Clause for more information.
+  */
+ 
+-#include "../include/ensmallen.hpp"
++#include 
+ #include "catch.hpp"
+ #include "test_function_tools.hpp"
+ 
diff -Nru ensmallen-2.16.2/debian/patches/series 
ensmallen-2.16.2/debian/patches/series
--- ensmallen-2.16.2/debian/patches/series  1970-01-01 01:00:00.0 
+0100
+++ ensmallen-2.16.2/debian/patches/series  2021-04-16 16:49:42.0 
+0100
@@ -0,0 +1 @@
+0001-include-path.patch
diff -Nru ensmallen-2.16.2/debian/rules ensmallen-2.16.2/debian/rules
--- ensmallen-2.16.2/debian/rules   2021-03-04 10:05:57.0 +
+++ ensmallen-2.16.2/debian/rules   2021-04-16 11:35:59.0 +0100
@@ -7,9 +7,13 @@
 %:
dh $@
 
+# Number of times to run test suite.
+# (There was a heisenbug, and this was used to help track it down.)
+n_test = 1
+
 override_dh_auto_test:
ok=true; \
-   for i in $$(seq 3); do \
+   for i in $$(seq $(n_test)); do \
  echo "Test Run $$i"; \
  if env CTEST_OUTPUT_ON_FAILURE=1 dh_auto_test; \
  then \
diff -Nru ensmallen-2.16.2/debian/tests/control 
ensmallen-2.16.2/debian/tests/control
--- ensmallen-2.16.2/debian/tests/control   1970-01-01 01:00:00.0 
+0100
+++ ensmallen-2.16.2/debian/tests/control   2021-04-16 16:49:42.0 
+0100
@@ -0,0 +1,3 @@
+Tests: test-script
+Depends: @, g++ | clang | c++-compiler, libarmadillo-dev
+Restrictions: allow-stderr
diff -Nru ensmallen-2.16.2/debian/tests/test-script 
ensmallen-2.16.2/debian/tests/test-script
--- ensmallen-2.16.2/debian/tests/test-script   1970-01-01 01:00:00.0 
+0100
+++ ensmallen-2.16.2/debian/tests/test-script   2021-04-16 16:49:42.0 
+0100
@@ -0,0 +1,10 @@
+#!/bin/sh
+set -e
+set -x
+# Choose location for test executable
+e=$(mktemp --tmpdir=${AUTOPKGTEST_TMP} ensmallen-test-XX)
+# Build outside tests to reduce possibility of getting build rather
+# than installed ensmallen files via #include.
+c++ -O0 -o ${e} tests/*.cpp -lpthread -larmadillo
+# cd tests because the executable reads data/* files.
+cd tests && ${e} --durations yes

Bug#987075: unblock: libquotient/0.6.6-1

2021-04-17 Thread Andres Salomon 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package libquotient

[ Reason ]
0.6.6 of libquotient fixes a security issue (in the form of a remote DoS).
This doesn't affect stable (the bug was introduced in 0.6.2 according to
https://github.com/quotient-im/libQuotient/issues/456), so it only needs
to be fixed in testing at this point and shouldn't need a DSA.

[ Impact ]
Users of the library can have their matrix clients crash by malformed user
ids.

[ Tests ]
I've let it sit in sid for 20 days to ensure people used it (and I'm
currently using it with the Spectral client).

[ Risks ]
0.6.x is a bugfix branch for libquotient, with the 0.7 branch seeing
active development. Although the update (0.6.4 -> 0.6.6) also includes
changes from the the 0.6.5 release, these are simply additional
backported fixes. Clients currently using libquotient in Debian are
Spectral and Quaternion.

[ Checklist ]
  [ ] all changes are documented in the d/changelog
  [X] I reviewed all changes and I approve them
  [X] attach debdiff against the package in testing

[ Other info ]
(Anything else the release team should know.)

unblock libquotient/0.6.6-1
diff -Nru libquotient-0.6.4/CMakeLists.txt libquotient-0.6.6/CMakeLists.txt
--- libquotient-0.6.4/CMakeLists.txt2021-01-15 15:53:46.0 +
+++ libquotient-0.6.6/CMakeLists.txt2021-03-17 20:23:20.0 +
@@ -4,7 +4,7 @@
 endif()
 
 set(API_VERSION "0.6")
-project(Quotient VERSION "${API_VERSION}.4" LANGUAGES CXX)
+project(Quotient VERSION "${API_VERSION}.6" LANGUAGES CXX)
 
 option(${PROJECT_NAME}_INSTALL_TESTS "install quotest (former qmc-example) 
application" ON)
 # https://github.com/quotient-im/libQuotient/issues/369
diff -Nru libquotient-0.6.4/CONTRIBUTING.md libquotient-0.6.6/CONTRIBUTING.md
--- libquotient-0.6.4/CONTRIBUTING.md   2021-01-15 15:53:46.0 +
+++ libquotient-0.6.6/CONTRIBUTING.md   2021-03-17 20:23:20.0 +
@@ -88,8 +88,7 @@
 
 Unless a contributor explicitly specifies otherwise, we assume contributors
 to agree that all contributed code is released either under *LGPL v2.1 or 
later*.
-This is more than just [LGPL v2.1 libQuotient now uses](./COPYING)
-because the project plans to switch to LGPL v3 for library code in the near 
future.
+The project plans to switch to LGPL v3 for library code in the near future.