Bug#1037282: opensnitch-ebpf-modules: causes opensnitch daemon to crash (SIGSEGV)

[Paul Wise]

Package: opensnitch-ebpf-modules
Version: 1.5.9-1
Severity: important
Usertags: crash
Control: found -1 1.5.9-2

When starting the opensnitch service while opensnitch-ebpf-modules is
installed, the opensnitch daemon crashes with the SIGSEGV error below.

This does not happen with the eBPF modules not installed and proc used.

I didn't provide a full backtrace because I'm not familiar with how to
get Golang programs to do a core dump nor how to get a backtrace.

   Jun 10 13:14:30 systemd[1]: Starting opensnitch.service - OpenSnitch is a 
GNU/Linux application firewall
   Jun 10 13:14:30 systemd[1]: Started opensnitch.service - OpenSnitch is a 
GNU/Linux application firewall..
   Jun 10 13:14:30 opensnitchd[3782650]: [2023-06-10 05:14:30]  IMP  Starting 
opensnitch-daemon v1.5.9
   Jun 10 13:14:30 opensnitchd[3782650]: [2023-06-10 05:14:30]  INF  Loading 
rules from /etc/opensnitchd/rules ...
   Jun 10 13:14:30 opensnitchd[3782650]: panic: runtime error: invalid memory 
address or nil pointer dereference
   Jun 10 13:14:30 opensnitchd[3782650]: [signal SIGSEGV: segmentation 
violation code=0x1 addr=0x10 pc=0x5a37ac]
   Jun 10 13:14:30 opensnitchd[3782650]: goroutine 1 [running]:
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/iovisor/gobpf/elf.(*Module).UpdateElement.func1(0x7f3faf601d08?, 
0x0?, 0x7f3fd7c18108?, 0x10?, 0xc58800?)
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/iovisor/gobpf/elf/table.go:75 +0x2c
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/iovisor/gobpf/elf.(*Module).UpdateElement(0xc00016a000?, 0xc?, 
0x97e195?, 0xa?, 0x62?)
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/iovisor/gobpf/elf/table.go:80 +0x59
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/evilsocket/opensnitch/daemon/procmon/ebpf.Start()
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/evilsocket/opensnitch/daemon/procmon/ebpf/ebpf.go:95 +0x4a5
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/evilsocket/opensnitch/daemon/procmon/monitor.Init()
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/evilsocket/opensnitch/daemon/procmon/monitor/init.go:55 +0x53
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/evilsocket/opensnitch/daemon/procmon/monitor.ReconfigureMonitorMethod({0xc0001b26e4,
 0x4})
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/evilsocket/opensnitch/daemon/procmon/monitor/init.go:29 +0x6c
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/evilsocket/opensnitch/daemon/ui.(*Client).loadConfiguration(0xc0001b19e0,
 {0xc0004a2a00, 0x169, 0x200})
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/evilsocket/opensnitch/daemon/ui/config.go:100 +0x285
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/evilsocket/opensnitch/daemon/ui.(*Client).loadDiskConfiguration(0xc0001b19e0,
 0x0)
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/evilsocket/opensnitch/daemon/ui/config.go:52 +0x10a
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/evilsocket/opensnitch/daemon/ui.NewClient({0x0, 0x0}, 0xc00070ea90, 
0xc00011a5a0)
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/evilsocket/opensnitch/daemon/ui/client.go:82 +0x114
   Jun 10 13:14:30 opensnitchd[3782650]: main.main()
   Jun 10 13:14:30 opensnitchd[3782650]: 
github.com/evilsocket/opensnitch/daemon/main.go:382 +0x62f
   Jun 10 13:14:30 systemd[1]: opensnitch.service: Main process exited, 
code=exited, status=2/INVALIDARGUMENT
   Jun 10 13:14:30 systemd[1]: opensnitch.service: Failed with result 
'exit-code'.

-- System Information:
Debian Release: 12.0
  APT prefers testing-security
  APT policy: (950, 'testing-security'), (900, 'testing-debug'), (900, 
'testing'), (860, 'testing-proposed-updates-debug'), (860, 
'testing-proposed-updates'), (850, 'buildd-testing-proposed-updates'), (800, 
'unstable-debug'), (800, 'unstable'), (790, 'buildd-unstable'), (700, 
'experimental-debug'), (700, 'experimental'), (690, 'buildd-experimental')
merged-usr: no
Architecture: amd64 (x86_64)

Kernel: Linux 6.1.0-9-amd64 (SMP w/8 CPU threads; PREEMPT)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_AU.utf8, LC_CTYPE=en_AU.utf8 (charmap=UTF-8), LANGUAGE=en_AU:en
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

opensnitch-ebpf-modules depends on no packages.

opensnitch-ebpf-modules recommends no packages.

Versions of packages opensnitch-ebpf-modules suggests:
ii  opensnitch  1.5.9-2

-- 
bye,
pabs

https://wiki.debian.org/PaulWise


signature.asc
Description: This is a digitally signed message part

Bug#1037281: Please add support for MediaTek MT7986 in U-Boot

[Bernhard]

Package: src:u-boot
Severity: wishlist

Hello Vagrant

I'm interested in the Router BANANA Pi R3 from Sinovoip:
https://wiki.banana-pi.org/Banana_Pi_BPI-R3

This Banana Pi has MediaTek MT7986 (Filogic 830).

Is it possible, to support this SoC within U-Boot?
In case you say, YES, I intend to buy this new BananaPi R3 Router.

Best regards and thank you for your great support
Bernhard




signature.asc
Description: This is a digitally signed message part

Bug#1037280: simstring: reproducible-builds: Embedded build path and usrmerge paths in example Makefile

[Vagrant Cascadian]

Source: simstring
Severity: normal
Tags: patch
User: reproducible-bui...@lists.alioth.debian.org
Usertags: buildpath usrmerge
X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org

The build path and various binary paths are embedded in
/usr/share/doc/simstring-dev/examples/sample/Makefile.gz:

  
https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/diffoscope-results/simstring.html

  ACLOCAL·=·${SHELL}·/build/1st/simstring-1.0/missing·--run·aclocal-1.11
  vs.
  ACLOCAL·=·${SHELL}·/build/2/simstring-1.0/2nd/missing·--run·aclocal-1.11

  EGREP·=·/bin/grep·-E  
  vs.
  EGREP·=·/usr/bin/grep·-E

The attached patch fixes this by removing the example Makefile, which
would have to be regenerated anyways to match the running system.

If removing the example Makefile is not viable, it might be possible to
sanitize the build paths, and add relevent arguments to configure
(e.g. EGREP='/bin/grep -e') to use the specified paths.

According to my local tests, with this patch applied simstring should build
reproducibly on tests.reproducible-builds.org!

Thanks for maintaining simstring!

live well,
  vagrant
From 80fdda4c12a5fe135f85cc40dd75c774838e8f67 Mon Sep 17 00:00:00 2001
From: Vagrant Cascadian 
Date: Fri, 9 Jun 2023 21:19:16 -0700
Subject: [PATCH] debian/rules: Remove example Makefile in dh_installexamples
 override.

The Makefile contains build paths and usrmerge paths that would not
work on a non-usrmerge system, so may have to be regenerated on the
running system anyways.

https://reproducible-builds.org/docs/build-path/
https://tests.reproducible-builds.org/debian/issues/unstable/paths_vary_due_to_usrmerge_issue.html
---
 debian/rules | 4 
 1 file changed, 4 insertions(+)

diff --git a/debian/rules b/debian/rules
index f997dbb..2333bf8 100755
--- a/debian/rules
+++ b/debian/rules
@@ -13,3 +13,7 @@ export DEB_BUILD_MAINT_OPTIONS := hardening=+all
 
 %:
 	dh $@
+
+override_dh_installexamples:
+	dh_installexamples
+	rm -vf debian/simstring-dev/usr/share/doc/simstring-dev/examples/sample/Makefile
-- 
2.39.2



signature.asc
Description: PGP signature

Bug#1037279: Angelfish built-in ad blocker not built due to missing Rust Build-Depends (Corrosion etc.)

[Kevin Kofler]

Package: angelfish
Version: 22.11-1+b2

Angelfish has a built-in ad blocker based on the Rust adblock crate from 
the Brave developers. This feature is missing from the Debian package 
because Corrosion and other build-time dependencies are not Build-Depended. 
(They may need to be added to Debian first.)


Just check your build logs, e.g.:
https://buildd.debian.org/status/fetch.php?pkg=angelfish=arm64=22.11-1%2Bb2=1679750090=0

Actual Results:  

-- The following RECOMMENDED packages have not been found:

 * Corrosion, CMake scripts to seamlessly build and link to targets using cargo, 

   Required to build the builtin adblocker


Expected Results:  
The ad blocker is built.


In addition to Corrosion, you will need cargo (though Corrosion should 
already be requiring it), rust-adblock, rust-cxx-build, and rust-cxx. You 
may also need to hack things up so that it can build offline.


See also https://bugzilla.redhat.com/show_bug.cgi?id=2213926 for the exact 
same issue in the Fedora package.

Bug#1037278: afterstep: reproducible-builds: Embedded build path and usrmerge paths in example Makefile

[Vagrant Cascadian]

Source: afterstep
Severity: normal
Tags: patch
User: reproducible-bui...@lists.alioth.debian.org
Usertags: buildpath usrmerge
X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org

The build path and various binary paths are embedded in
/usr/share/doc/libafterimage-dev/examples/Makefile:

  
https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/diffoscope-results/afterstep.html

  
CCFLAGS·=·-O3·-g·-ffile-prefix-map=/build/1st/afterstep-2.2.12=.·-fstack-protector-strong
 ...
  vs.
  
CCFLAGS·=·-O3·-g·-ffile-prefix-map=/build/2/afterstep-2.2.12/2nd=.·-fstack-protector-strong
 ...

  CP» » =·/bin/cp
  vs.
  CP» » =·/usr/bin/cp

The attached patch fixes this by adjusting these values from the
debian/rules dh_compress override.

According to my local tests, with this patch applied afterstep should build
reproducibly on tests.reproducible-builds.org!

Thanks for maintaining afterstep!

live well,
  vagrant
From dadf1113a310962fcbd1f934379ae5b634f67dae Mon Sep 17 00:00:00 2001
From: Vagrant Cascadian 
Date: Fri, 9 Jun 2023 20:16:52 -0700
Subject: [PATCH] debian/rules: Adjust build path and binary paths in example
 Makefile.

The embedded build path and binary paths would require regenerating
the Makefile to match the system they are run on.

https://reproducible-builds.org/docs/build-path/
https://tests.reproducible-builds.org/debian/issues/unstable/paths_vary_due_to_usrmerge_issue.html
---
 debian/rules | 7 +++
 1 file changed, 7 insertions(+)

diff --git a/debian/rules b/debian/rules
index f319152..0965416 100755
--- a/debian/rules
+++ b/debian/rules
@@ -245,6 +245,13 @@ override_dh_compress:
 	sh debian/scripts/fix_conffiles `dh_listpackages`
 	# the menu method is installed into ucf dir by fix_conffiles above
 	rm -f debian/afterstep/etc/menu-methods/afterstep
+	# Normalize build path and various binary paths
+	sed -i -e "s,$(CURDIR),BUILDPATH,g" \
+	   -e "s,/usr/bin/cp,/bin/cp,g" \
+	   -e "s,/usr/bin/mv,/bin/mv,g" \
+	   -e "s,/usr/bin/rm,/bin/rm,g" \
+	   -e "s,/usr/bin/mkdir,/bin/mkdir,g" \
+	  debian/libafterimage-dev/usr/share/doc/libafterimage-dev/examples/Makefile
 	dh_compress
 
 override_dh_md5sums:
-- 
2.39.2



signature.asc
Description: PGP signature

Bug#1002656: bridge-utils: bridge_hw: add random option like for ifupdown hwaddress

[Martin-Éric Racine]

On Fri, 7 Oct 2022 22:34:17 +0200 Santiago Garcia Mantinan
 wrote:
> > The kernel using the MAC of a real device, if none is specified, is
> > precisely what we wanna avoid.  Systemd is not involed.
>
> Like I said, if we don't specify the mac address systemd will set up a fake
> one for us, so... systemd is involved and the kernel is not allowed to use a
> real one, that's why I said that bridge-utils shouldn't do a thing about
> this.

No, systemd does not set up a fake MAC address. Rather, the MAC
address of any PHY attached to the bridge is used if no MAC address is
specified.

Martin-Éric

Bug#1037277: advi: reproducible-builds: Embedded build path and usrmerge paths in example Makefile

[Vagrant Cascadian]

Source: advi
Severity: normal
Tags: patch
User: reproducible-bui...@lists.alioth.debian.org
Usertags: buildpath usrmerge
X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org

The build path and various binary paths are embedded in
/usr/share/doc/advi/manual/pngs/Makefile.gz:

  
https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/diffoscope-results/advi.html

  ACLOCAL·=·${SHELL}·/build/1st/advi-1.10.2/missing·--run·aclocal-1.11
  vs.
  ACLOCAL·=·${SHELL}·/build/2/advi-1.10.2/2nd/missing·--run·aclocal-1.11

  EGREP·=·/bin/grep·-E  
  vs.
  EGREP·=·/usr/bin/grep·-E

The attached patch fixes this by removing the example Makefile, which
would have to be regenerated anyways to match the running system.

If removing the example Makefile is not viable, it might be possible to
sanitize the build paths, and add relevent arguments to configure
(e.g. EGREP='/bin/grep -e') to use the specified paths.

According to my local tests, with this patch applied advi should build
reproducibly on tests.reproducible-builds.org!

Thanks for maintaining advi!

live well,
  vagrant
From 74e3aa7add59ff6b73ff7aec20c6963244bc275d Mon Sep 17 00:00:00 2001
From: Vagrant Cascadian 
Date: Fri, 9 Jun 2023 19:40:34 -0700
Subject: [PATCH] debian/rules: Remove example Makefile in dh_install override.

This Makefile embeds the build path and binary paths of the build
environment, and would need to be regenerated to actually use.

https://reproducible-builds.org/docs/build-path/
https://tests.reproducible-builds.org/debian/issues/unstable/paths_vary_due_to_usrmerge_issue.html
---
 debian/rules | 5 +
 1 file changed, 5 insertions(+)

diff --git a/debian/rules b/debian/rules
index ca3a02c..2c8c922 100755
--- a/debian/rules
+++ b/debian/rules
@@ -30,6 +30,11 @@ endif
 override_dh_compress:
 	dh_compress --exclude=usr/share/doc/advi/splash.dvi
 
+override_dh_install:
+	dh_install
+	# Remove example Makefile with build paths and binary paths
+	rm -vf debian/advi/usr/share/doc/advi/manual/pngs/Makefile
+
 override_dh_auto_test:
 
 override_dh_autoreconf:
-- 
2.39.2



signature.asc
Description: PGP signature

Bug#1006263: ifupdown: outdated DHCP client support

[Santiago Ruano Rincón]

El 15/05/23 a las 14:17, Martin-Éric Racine escribió:
> Package: ifupdown
> Version: 0.8.41
> Followup-For: Bug #1006263
> 
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
> 
> This is still broken.
> 
> "dhclient, udhcpc, dhcpcd. (They have been listed in their order of 
> precedence.)"
> 
> This really is a problem if someone wants to use udhcpc or dhcpcd, because 
> dhclient is installed by default, so it always gets used. ifupdown really 
> needs a way to configure the precedence order.

Indeed. I will work on this after the upcoming release.

Thanks for pointing this out,

 -- Santiago


signature.asc
Description: PGP signature

Bug#1035972: isc-dhcp EOL'ed

[Santiago Ruano Rincón]

(Sorry, I have forgotten to answer this)

El 09/06/23 a las 15:35, Antoine Beaupré escribió:
> [adding package maintainer to CC]
> 
> On 2023-05-17 10:50:34, Moritz Muehlenhoff wrote:
> > On Fri, May 12, 2023 at 08:58:01AM +, Holger Levsen wrote:
> >> On Fri, May 12, 2023 at 10:08:52AM +0200, Raphael Hertzog wrote:
> >> > > ISC is not longer maintaing any of the components of isc-dhcp (client,
> >> > > I propose to mark it as unsupported. Or at least, limited, if we still
> >> > > have hope in those security update exceptions they claim they could do.
> >> [...]
> >> > It's not a service to our users to claim that we will not support them.
> >> [...]
> >> > But I'm afraid that we will have to keep maintaining those for the 
> >> > benefit
> >> > of our stable/oldstable (and even ELTS) users. I'm pretty sure that all
> >> > the other distributions will also continue to maintain those packages for
> >> > the lifetime of their respective releases so that we will have
> >> > opportunities to share the workload and patches.

Yeah, you are right. Sorry for my not-very-clever message, maybe due to
my disappointment of this deprecation.

> >
> > Agreed.
> >
> >> Given what Raphael wrote, should this bug maybe be about marking isc-dhcp
> >> unsupported in trixie?
> >
> > My take would be to mark it as unsupported after the trixie development 
> > cycle
> > has started (this flags awareness, but has no impact on stable releases)
> > and then revisit the support situation before the trixie freeze (Kea might 
> > be
> > a full replacment by then or maybe it turns out the patch support is ensured
> > despite upstream's EOL)
> 
> I think this is important enough to warrant an entry in the release
> notes. I started working on something to that effect here:
> 
> https://salsa.debian.org/ddp-team/release-notes/-/merge_requests/194
> 
> Hopefully that makes sense here?
> 

Thanks Antoine for start working on the MR.

Cheers,

 -- S


signature.asc
Description: PGP signature

Bug#1037276: bglibs: reproducible-builds: Different path to perl in cli-generate

[Vagrant Cascadian]

Source: bglibs
Severity: serious
Justification: TC resolution #994388
Tags: patch
User: reproducible-bui...@lists.alioth.debian.org
Usertags: usrmerge
X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org

The path to perl is embedded differently in /usr/bin/cli-generate
depending on if it was built on a usrmerge vs. non-usrmerge system.

  
https://tests.reproducible-builds.org/debian/rb-pkg/bookworm/amd64/diffoscope-results/bglibs.html

  /usr/bin/cli-generate

  #!·/usr/bin/perl
  vs.
  #!·/bin/perl

The attached patch fixes this by explicitly specifying the path as
/usr/bin/perl instead of using 'which' to detect the path, which is
compatible with both usrmerge and non-usrmerge systems.


According to my local tests, with this patch applied bglibs should build
reproducibly on tests.reproducible-builds.org!


Thanks for maintaining bglibs!

live well,
  vagrant
From c62fcbde299245ffcd027fd524f2fd2419d874c4 Mon Sep 17 00:00:00 2001
From: Vagrant Cascadian 
Date: Fri, 9 Jun 2023 18:44:06 -0700
Subject: Makefile: Ensure perl path is set to '/usr/bin/perl'.

Using 'which' to detect the path to perl may result in /bin/perl,
which is only typically available on usrmerge systems. /usr/bin/perl
is where perl has actually been installed for quite some time, and is
unlikely to change.

https://tests.reproducible-builds.org/debian/issues/unstable/paths_vary_due_to_usrmerge_issue.html
---
 Makefile | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/Makefile b/Makefile
index 2600365..8a87feb 100644
--- a/Makefile
+++ b/Makefile
@@ -864,8 +864,7 @@ path/mktemp.lo path/mktemp.o: ltcompile path/mktemp.c systime.h include/bglibs/p
 
 perl-head.pl: 
 	( set -e; PATH="/bin:/usr/bin:/usr/local/bin:$$PATH"; export PATH; \
-	  perl=`which perl`; \
-	  echo "#! $$perl"; \
+	  echo "#! /usr/bin/perl"; \
 	  echo "# WARNING: This file was auto-generated. Do not edit!"; \
 	  echo ) >perl-head.pl
 
-- 
2.39.2



signature.asc
Description: PGP signature

Bug#1037275: dd: regression - posix expression syntax no longer supported

[Marc Lehmann]

Package: coreutils
Version: 9.1-1
Severity: normal

Dear Maintainer,

I have a script that was used for some decades on multiple
unices. Beginning with bookworm, it stopped working because dd no longer
understands POSIX expression syntax for bs=:

   $ dd if=... bs=1024x1024x32
   dd: invalid number: ‘1024x1024x32’

This should be valid syntax according to POSIX, and was understood on
older versions of Debian GNU/Linux:

   Two or more positive decimal numbers (with or without k or b) separated by 
x, specifying the product of the indicated values

-- System Information:
Debian Release: 12.0
  APT prefers testing-security
  APT policy: (990, 'testing-security'), (990, 'testing'), (500, 
'unstable-debug'), (500, 'testing-debug'), (500, 'stable-debug'), (500, 
'unstable'), (1, 'experimental-debug'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386, x32

Kernel: Linux 6.1.32-schmorp (SMP w/24 CPU threads; PREEMPT)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_USER, TAINT_OOT_MODULE, 
TAINT_UNSIGNED_MODULE
Locale: LANG=en_IE.UTF-8, LC_CTYPE=en_IE.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages coreutils depends on:
ii  libacl1  2.3.1-3
ii  libattr1 1:2.5.1-4
ii  libc62.36-9
ii  libgmp10 2:6.2.1+dfsg1-1.1
ii  libselinux1  3.4-1+b6

coreutils recommends no packages.

coreutils suggests no packages.

-- no debconf information

Bug#1037274: libreadline8: Segmentation fault in rl_do_undo()

[Chris Danis]

Package: libreadline8
Version: 8.2-1.3
Severity: normal
Tags: upstream
X-Debbugs-Cc: cda...@gmail.com

My interactive sqlite3 shell crashed and dumped core.

Here's a backtrace with debug symbols via debuginfod:

(gdb) bt full
#0  0x7f1d30e4b6b6 in rl_do_undo () at ./undo.c:186
release = 
search = 
waiting_for_begin = 0
start = 
end = 
cur = 
temp = 
#1  0x7f1d30e4b995 in rl_revert_line (count=count@entry=1, key=key@entry=0) 
at ./undo.c:337
No locals.
#2  0x7f1d30e2ef3d in readline_internal_teardown (eof=0) at ./readline.c:498
temp = 0x559dad7afb40 "\337\022\240\364\230U"
entry = 
#3  0x7f1d30e303db in readline_internal () at ./readline.c:734
No locals.
#4  readline (prompt=prompt@entry=0x559dabc03740  "sqlite> ") at 
./readline.c:387
value = 
#5  0x559dabbed320 in one_input_line (isContinuation=, 
zPrior=0x559dad7ff720 "\377\213Z\364\230U", in=0x0) at ./shell.c:757
zPrompt = 0x559dabc03740  "sqlite> "
zResult = 
zPrompt = 
zResult = 
#6  process_input (p=0x7fff9cc73970) at ./shell.c:25506
zSql = 
nSql = 
errCnt = 
qss = 
zLine = 
nLine = 
nAlloc = 
rc = 
startline = 
zLine = 
zSql = 
nLine = 
nSql = 
nAlloc = 
rc = 
errCnt = 
startline = 
qss = 
i = 
#7  process_input (p=0x7fff9cc73970) at ./shell.c:25485
zLine = 0x0
zSql = 0x0
nLine = 
nSql = 0
nAlloc = 0
rc = 
errCnt = 0
startline = 0
qss = QSS_Start
i = 
#8  0x559dabbc1b25 in main (argc=, argv=0x7fff9cc74fd8) at 
./shell.c:26411
zHome = 
zHistory = 
nHistory = 
zErrMsg = 0x0
data = {db = 0x559dad6ce4e8, autoExplain = 1 '\001', autoEQP = 0 
'\000', autoEQPtest = 0 '\000', autoEQPtrace = 0 '\000', scanstatsOn = 0 
'\000', 
  openMode = 1 '\001', doXdgOpen = 0 '\000', nEqpLevel = 0 '\000', 
eTraceType = 0 '\000', bSafeMode = 0 '\000', bSafeModePersist = 0 '\000', 
cmOpts = {iWrap = 0, 
bQuote = 0 '\000', bWordWrap = 0 '\000'}, statsOn = 0, mEqpLines = 
0, inputNesting = 1, outCount = 0, cnt = 140, lineno = 31, openFlags = 0, in = 
0x0, 
  out = 0x7f1d30de9760 <_IO_2_1_stdout_>, traceOut = 0x0, nErr = 0, 
mode = 0, modePrior = 0, cMode = 0, normalMode = 2, writableSchema = 0, 
showHeader = 0, 
  nCheck = 0, nProgress = 0, mxProgress = 0, flgProgress = 0, shellFlgs 
= 2, priorShFlgs = 0, szMax = 0, zDestTable = 0x0, zTempFile = 0x0, 
  zTestcase = '\000' , colSeparator = "|", '\000' 
, rowSeparator = "\n", '\000' , 
  colSepPrior = '\000' , rowSepPrior = '\000' 
, colWidth = 0x0, actualWidth = 0x0, nWidth = 0, 
  nullValue = '\000' , outfile = '\000' , pStmt = 0x0, pLog = 0x0, aAuxDb = {{db = 0x0, 
  zDbFilename = 0x7fff9cc76e3c "lowballer.sqlite", zFreeOnClose = 
0x0, nSession = 0, aSession = {{zName = 0x0, nFilter = 0, azFilter = 0x0, p = 
0x0}, {
  zName = 0x0, nFilter = 0, azFilter = 0x0, p = 0x0}, {zName = 
0x0, nFilter = 0, azFilter = 0x0, p = 0x0}, {zName = 0x0, nFilter = 0, azFilter 
= 0x0, 
  p = 0x0}}}, {db = 0x0, zDbFilename = 0x0, zFreeOnClose = 0x0, 
nSession = 0, aSession = {{zName = 0x0, nFilter = 0, azFilter = 0x0, p = 0x0}, {
  zName = 0x0, nFilter = 0, azFilter = 0x0, p = 0x0}, {zName = 
0x0, nFilter = 0, azFilter = 0x0, p = 0x0}, {zName = 0x0, nFilter = 0, azFilter 
= 0x0, 
  p = 0x0}}}, {db = 0x0, zDbFilename = 0x0, zFreeOnClose = 0x0, 
nSession = 0, aSession = {{zName = 0x0, nFilter = 0, azFilter = 0x0, p = 0x0}, {
  zName = 0x0, nFilter = 0, azFilter = 0x0, p = 0x0}, {zName = 
0x0, nFilter = 0, azFilter = 0x0, p = 0x0}, {zName = 0x0, nFilter = 0, azFilter 
= 0x0, 
  p = 0x0}}}, {db = 0x0, zDbFilename = 0x0, zFreeOnClose = 0x0, 
nSession = 0, aSession = {{zName = 0x0, nFilter = 0, azFilter = 0x0, p = 0x0}, {
  zName = 0x0, nFilter = 0, azFilter = 0x0, p = 0x0}, {zName = 
0x0, nFilter = 0, azFilter = 0x0, p = 0x0}, {zName = 0x0, nFilter = 0, azFilter 
= 0x0, 
  p = 0x0}}}, {db = 0x0, zDbFilename = 0x0, zFreeOnClose = 0x0, 
nSession = 0, aSession = {{zName = 0x0, nFilter = 0, azFilter = 0x0, p = 0x0}, {
  zName = 0x0, nFilter = 0, azFilter = 0x0, p = 0x0}, {zName = 
0x0, nFilter = 0, azFilter = 0x0, p = 0x0}, {zName = 0x0, nFilter = 0, azFilter 
= 0x0, 
  p = 0x0, pAuxDb = 0x7fff9cc74ab8, aiIndent = 0x0, nIndent 
= 0, iIndent = 0, zNonce = 0x0, sGraph = {pRow = 0x0, pLast = 0x0, 
zPrefix = '\000' }, expert = {pExpert = 0x0, 
bVerbose = 0}}
zInitFile = 
i = 
rc = 
warnInmemoryDb = 0
readStdin = 
nCmd = 
azCmd = 
zVfs = 
(gdb) 

Bug#1037273: dupeguru: immediately crashes: ModuleNotFoundError: No module named 'core.pe.photo'

[Marc Lehmann]

Package: dupeguru
Version: 4.3.1-3+b1
Severity: grave
Justification: renders package unusable

Dear Maintainer,

while the package installs fine, it immediately crashes on startup:

   $ dupeguru
   qt.qpa.xkeyboard: failed to compile a keymap
   Traceback (most recent call last):
 File "/bin/dupeguru", line 88, in 
   sys.exit(main())
^^
 File "/bin/dupeguru", line 71, in main
   from qt.app import DupeGuru
 File "/usr/share/dupeguru/qt/app.py", line 22, in 
   from core.app import AppMode, DupeGuru as DupeGuruModel
 File "/usr/share/dupeguru/core/app.py", line 27, in 
   from core.pe.photo import get_delta_dimensions
   ModuleNotFoundError: No module named 'core.pe.photo'

-- System Information:
Debian Release: 12.0
  APT prefers testing-security
  APT policy: (990, 'testing-security'), (990, 'testing'), (500, 
'stable-updates'), (500, 'stable-security'), (500, 'unstable'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 6.1.33-schmorp (SMP w/12 CPU threads; PREEMPT)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_IE.UTF-8, LC_CTYPE=en_IE.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages dupeguru depends on:
ii  libc6 2.36-9
ii  python3   3.11.2-1+b1
ii  python3-distro1.8.0-1
ii  python3-mutagen   1.46.0-1
ii  python3-pyqt5 5.15.9+dfsg-1
ii  python3-semantic-version  2.9.0-2
ii  python3-send2trash1.8.1~b0-2
ii  python3-xxhash3.2.0-1+b1

dupeguru recommends no packages.

dupeguru suggests no packages.

-- no debconf information

Bug#1037272: gbrowse: reproducible builds: random value in /etc/gbrowse/ConfigData.pm

[Vagrant Cascadian]

Source: gbrowse
Severity: normal
Tags: patch
User: reproducible-bui...@lists.alioth.debian.org
Usertags: randomness
X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org

The OpenIDConsumerSecret in /etc/gbrowse/ConfigData.pm is a randomized value:

  
https://tests.reproducible-builds.org/debian/rb-pkg/bookworm/amd64/diffoscope-results/gbrowse.html

  'OpenIDConsumerSecret'·=>·'867318970136679',
  vs.
  'OpenIDConsumerSecret'·=>·'940203427089713',

The attached patch to Build.PL fixes this by initializing the random
seed using the SOURCE_DATE_EPOCH environment variable.

If this is really a secret, all debian users using the same package will
share the same secret, so there may be some security implications!

A better approach might be to generate this value at run time or package
installation time, but I do not know enough about how gbrowse uses this
to propose a specific approach.


Unfortunately, this is not the only reproducibility issue affecting
gbrowse, but applying this patch should make it easier to troubleshoot
the remaining issues.


Thanks for maintaining gbrowse!


live well,
  vagrant
From 00a106ede6981071dcb346c0e2efd196f0cf9662 Mon Sep 17 00:00:00 2001
From: Vagrant Cascadian 
Date: Fri, 9 Jun 2023 15:59:14 -0700
Subject: [PATCH] Build.PL: Seed random number generator with
 SOURCE_DATE_EPOCH.

---
 Build.PL | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/Build.PL b/Build.PL
index 7a664ab..3b8322f 100644
--- a/Build.PL
+++ b/Build.PL
@@ -128,6 +128,8 @@ for my $arg (keys %{$build->private_props}) {
 $build->config_data($arg=>$value);
 $argc++;
 }
+# Seed the random number generator with the value of SOURCE_DATE_EPOCH
+srand(int($ENV{SOURCE_DATE_EPOCH}));
 $build->config_data(OpenIDConsumerSecret=>int(1e15*rand()));
 $build->config_done(1) if $argc > 0;
 
-- 
2.39.2



signature.asc
Description: PGP signature

Bug#1037270: ITP: node-ftp -- FTP client module for node.js

[Israel Galadima]

Package: wnpp
Severity: wishlist
Owner: Israel Galadima 
X-Debbugs-CC: debian-de...@lists.debian.org

* Package name: node-ftp
  Version : 0.3.10
  Upstream Author : Brian White 
* URL : * https://github.com/mscdex/node-ftp
*
* License : Expat
  Programming Lang: JavaScript
  Description : FTP client module for node.js

An FTP client module for node.js that provides an asynchronous interface
for communicating with an FTP server.

This package is part of my effort to package corepack for Debian.

Package will be maintained by the Debian JavaScript Team.

Bug#1037269: freetds: reproducible-builds: time derived build number embedded in documentation

[Vagrant Cascadian]

Source: freetds
Severity: normal
Tags: patch
User: reproducible-bui...@lists.alioth.debian.org
Usertags: timestamps
X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org

A build number derived from the build time is embedded in various
/usr/share/doc/freetds-doc/reference/*_source.html files:

  
https://tests.reproducible-builds.org/debian/rb-pkg/bookworm/amd64/diffoscope-results/freetds.html

  #define·TDS_VERSION_BUILD_NUMBER·856
  vs.
  #define·TDS_VERSION_BUILD_NUMBER·1256

The attached patch to configure.ac fixes this by instead using the value of
SOURCE_DATE_EPOCH for the BUILD_NUMBER if it is set, and falling back to
the default behavior if it is not set.

Alternately, I tried instead passing --date=@$SOURCE_DATE_EPOCH to the
various date calls, but for some reason that was not sufficient.


According to my local tests, with this patch applied freetds should build
reproducibly on tests.reproducible-builds.org!

Thanks for maintaining freetds!


live well,
  vagrant
From 0130aad916458fa19aa7f7e5822203a48cf96b9f Mon Sep 17 00:00:00 2001
From: Vagrant Cascadian 
Date: Fri, 9 Jun 2023 14:26:15 -0700
Subject: [PATCH 1/3] configure.ac: Use SOURCE_DATE_EPOCH as BUILD_NUMBER if
 set.

https://reproducible-builds.org/docs/source-date-epoch/
---
 configure.ac | 7 +--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/configure.ac b/configure.ac
index 73b6d725..a76dc6ec 100644
--- a/configure.ac
+++ b/configure.ac
@@ -40,8 +40,11 @@ fi
 MAJOR=[`echo $ver | sed "s,$match,\1,"`]
 MINOR=[`echo $ver | sed "s,$match,\2,"`]
 SUBVERSION=[`echo $ver | sed "s,$match,\3,"`]
-BUILD_NUMBER="`date +1%j` - 1000 + ( `date +%Y` - 2021 )"
-BUILD_NUMBER="`expr $BUILD_NUMBER \* 366`"
+BUILD_NUMBER=$SOURCE_DATE_EPOCH
+if test -z "$BUILD_NUMBER"; then
+   BUILD_NUMBER="`date +1%j` - 1000 + ( `date +%Y` - 2021 )"
+   BUILD_NUMBER="`expr $BUILD_NUMBER \* 366`"
+fi
 if test "$SUBVERSION" = ""; then
 	MINOR=`expr $MINOR - 1`
 fi
-- 
2.39.2



signature.asc
Description: PGP signature

Bug#1037126: ansible-core: Patch to fix URI Module find json sub type

[Bernhard Turmann]

Am 08.06.23 um 18:37 schrieb Lee Garrett:
I acknowledge this bug, and will issue a point release update once it 
has been merged upstream.


Hello Lee,
meanwhile, upstream has merged the change also in stable-2.14, see [1].

After successful registering with salsa, I also opened a MR in 
ansible-core repo [2].


[1] https://github.com/ansible/ansible/pull/80870
[2] https://salsa.debian.org/debian/ansible-core/-/merge_requests/2

Thanks for efforts maintaining ansible in debian!

Grüße
Berni

Bug#1037268: kwin-x11: resource leak: the number of threads increases over time, boundlessly

[Julien Muchembled]

Package: kwin-x11
Version: 4:5.27.5-3
Severity: normal
Tags: upstream

After 17 days, the number of threads of /usr/bin/kwin_x11 process has exceeded 
2700 and it keeps increasing. At the beginning of a session, the process starts 
with 34 threads.

I could find that such leak happens when viewing videos fullscreen e.g. with 
mpv. Can anyone reproduce it ? More precisely:
1. start mpv without --fs -> thread count does not change
2. switch to fullscreen -> usually -2 threads
3. leaves fullscreen -> usually +17 threads
4. exit mpv -> thread count does not change

Such a leak is at least a severe issue for anyone like me who set a nproc limit 
to protect against fork-bombs, in particular because it causes mysterious 
process crashes. I only understood the problem when I wanted to build a 
software that spawned a lot of processes. It also makes nproc limiting quite 
unusable without restarting KDE from time to time.

Version 4:5.27.2-2 was affected too. I previously had 4:5.24.4-1 and I'm almost 
sure it had no leak.

A few notes that may be specific to my setup:
- I do have a 4k intel display. And regularly, for less than 1s, the display is 
corrupted. I haven't tried Wayland yet and I hope it will fix it.
- I use mpv from deb-multimedia.
- mpv conf: vo = gpu

I couldn't find anything on bug.kde.org: should I forward ?

Julien

-- System Information:
Debian Release: 12.0
  APT prefers testing
  APT policy: (900, 'testing'), (800, 'unstable'), (700, 'proposed-updates'), 
(700, 'stable'), (500, 'unstable-debug'), (500, 'testing-debug'), (500, 
'stable-security'), (500, 'stable-debug'), (500, 'oldstable-proposed-updates'), 
(500, 'oldstable'), (1, 'experimental-debug'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 6.1.0-9-amd64 (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_UNSIGNED_MODULE
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages kwin-x11 depends on:
ii  kwin-common4:5.27.5-3
ii  libc6  2.36-9
ii  libepoxy0  1.5.10-1
ii  libgcc-s1  12.2.0-14
ii  libkdecorations2-5v5   4:5.27.5-2
ii  libkf5configcore5  5.103.0-2
ii  libkf5configgui5   5.103.0-2
ii  libkf5configwidgets5   5.103.0-1
ii  libkf5coreaddons5  5.103.0-1
ii  libkf5crash5   5.103.0-1
ii  libkf5globalaccel-bin  5.103.0-1
ii  libkf5globalaccel5 5.103.0-1
ii  libkf5i18n55.103.0-1
ii  libkf5notifications5   5.103.0-1
ii  libkf5plasma5  5.103.0-1
ii  libkf5service-bin  5.103.0-1
ii  libkf5service5 5.103.0-1
ii  libkf5windowsystem55.103.0-1
ii  libkwineffects14   4:5.27.5-3
ii  libkwinglutils14   4:5.27.5-3
ii  libqaccessibilityclient-qt5-0  0.4.1-1+b1
ii  libqt5core5a   5.15.8+dfsg-11
ii  libqt5dbus55.15.8+dfsg-11
ii  libqt5gui5 5.15.8+dfsg-11
ii  libqt5qml5 5.15.8+dfsg-3
ii  libqt5quick5   5.15.8+dfsg-3
ii  libqt5widgets5 5.15.8+dfsg-11
ii  libqt5x11extras5   5.15.8-2
ii  libstdc++6 12.2.0-14
ii  libx11-6   2:1.8.4-2
ii  libxcb-composite0  1.15-1
ii  libxcb-keysyms10.4.0-1+b2
ii  libxcb-randr0  1.15-1
ii  libxcb-render0 1.15-1
ii  libxcb-shape0  1.15-1
ii  libxcb-xfixes0 1.15-1
ii  libxcb-xkb11.15-1
ii  libxcb11.15-1
ii  libxi6 2:1.8-1+b1
ii  libxkbcommon-x11-0 1.5.0-1
ii  libxkbcommon0  1.5.0-1

kwin-x11 recommends no packages.

kwin-x11 suggests no packages.

-- no debconf information

Bug#994492: sg3-utils-udev should not require initramfs-tools-core

[Laszlo]

Hello,

> This change was proposed by the Dracut maintainers.

> https://salsa.debian.org/linux-blocks-team/sg3-utils/-/merge_requests/1

Another MR proposed by a dracut maintainer to undo some of the effect of
previous MR.
https://salsa.debian.org/linux-blocks-team/sg3-utils/-/merge_requests/7

Thank you very much !

Laszlo

Bug#1037267: kawari8: reproducible-builds: timezone-dependent timestamps on files in documentation files

[Vagrant Cascadian]

Source: kawari8
Severity: normal
Tags: patch
User: reproducible-bui...@lists.alioth.debian.org
Usertags: timestamps timezone
X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org

The build timestamp is embedded in various /usr/share/doc/kawari8/ files
is timezone dependent:

  
https://tests.reproducible-builds.org/debian/rb-pkg/bookworm/amd64/diffoscope-results/kawari8.html

  
-rw-r--r--···0·root·(0)·root·(0)12246·2002-06-04·10:07:44.00·./usr/share/doc/kawari8/html/banners/kawalinks.png
  vs.
  
-rw-r--r--···0·root·(0)·root·(0)12246·2002-06-03·08:07:44.00·./usr/share/doc/kawari8/html/banners/kawalinks.png

The attached patch to debian/rules fixes this by exporting the TZ
variable with the UTC timezone, as part of the build process unzips the
upstream .zip file, which sets the timestamps using the local timezone.

Another option might be to switch to using dpkg-source format 3.0 quilt,
debhelper/dh, and repacking the upstream .zip file into an .orig.tar.*
file using uscan and debian/watch. This probably has numerous other
benefits as well...


According to my local tests, with this patch applied kawari8 should build
reproducibly on tests.reproducible-builds.org!

Thanks for maintaining kawari8!

live well,
  vagrant
From 6f15a73edfd20ad4385a571120fa2ace83b35543 Mon Sep 17 00:00:00 2001
From: Vagrant Cascadian 
Date: Fri, 9 Jun 2023 13:00:02 -0700
Subject: [PATCH] debian/rules: Export TZ=UTC variable.

Otherwise, unzip unpacks the upstream zip file setting some file
timestamps with a timezone-dependent timestamp.

https://reproducible-builds.org/docs/timezones/
---
 debian/rules | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/debian/rules b/debian/rules
index 2343083..fffe7d2 100755
--- a/debian/rules
+++ b/debian/rules
@@ -15,6 +15,8 @@ include /usr/share/cdbs/1/class/makefile.mk
 DEB_MAKE_MAKEFILE	:= gcc.mak
 DEB_MAKE_CLEAN_TARGET	:=
 
+export TZ=UTC
+
 build/kawari8::
 	docbook-to-man debian/kosui.sgml > kosui.6
 	docbook-to-man debian/kawari_encode.sgml > kawari_encode.6
-- 
2.39.2



signature.asc
Description: PGP signature

Bug#1035972: isc-dhcp EOL'ed

[Antoine Beaupré]

[adding package maintainer to CC]

On 2023-05-17 10:50:34, Moritz Muehlenhoff wrote:
> On Fri, May 12, 2023 at 08:58:01AM +, Holger Levsen wrote:
>> On Fri, May 12, 2023 at 10:08:52AM +0200, Raphael Hertzog wrote:
>> > > ISC is not longer maintaing any of the components of isc-dhcp (client,
>> > > I propose to mark it as unsupported. Or at least, limited, if we still
>> > > have hope in those security update exceptions they claim they could do.
>> [...]
>> > It's not a service to our users to claim that we will not support them.
>> [...]
>> > But I'm afraid that we will have to keep maintaining those for the benefit
>> > of our stable/oldstable (and even ELTS) users. I'm pretty sure that all
>> > the other distributions will also continue to maintain those packages for
>> > the lifetime of their respective releases so that we will have
>> > opportunities to share the workload and patches.
>
> Agreed.
>
>> Given what Raphael wrote, should this bug maybe be about marking isc-dhcp
>> unsupported in trixie?
>
> My take would be to mark it as unsupported after the trixie development cycle
> has started (this flags awareness, but has no impact on stable releases)
> and then revisit the support situation before the trixie freeze (Kea might be
> a full replacment by then or maybe it turns out the patch support is ensured
> despite upstream's EOL)

I think this is important enough to warrant an entry in the release
notes. I started working on something to that effect here:

https://salsa.debian.org/ddp-team/release-notes/-/merge_requests/194

Hopefully that makes sense here?

a.

Bug#1037263: unblock: php8.2/8.2.7-1

[Salvatore Bonaccorso]

Hi,

On Fri, Jun 09, 2023 at 08:06:41PM +0200, Ondřej Surý wrote:
> 
> 
> > On 9. 6. 2023, at 20:03, Paul Gevers  wrote:
> > 
> > Hi Ondřej,
> > 
> >> On 09-06-2023 18:58, Ondřej Surý wrote:
> >> php8.2 8.2.7-1 is a security release, so it would be pretty
> >> wrong to release bookworm with the old PHP.  I am sorry for
> >> the timing, but that's just coincidence.
> > 
> > Sorry, but this is really about 1 week too late (we are in the quite 
> > periode to prepare for tomorrow). From last weekend on security issues are 
> > handled by the security team. Otherwise you can prepare a point release 
> > update, but that's handled with different usertags and meta data.
> 
> I’ve already reached to the security team, so I guess we’ll handle
> it there. I didn’t know that bookworm-security has been open now.

Let's close this unblock request, as mentioned already on the mail to
team@s.d.o we can go trough bookworm-security.  Only think to be
careful here is the used verison, as 8.2.7-1 will go to unstable, for
bookworm-security we would have 8.2.7-1~deb12u1 (as this is just a
rebuild of the version, if on the other hand the packaging would have
diverged and importing a new upstream version on top, then it would
have been 8.2.7-0+deb12u1).

Regards,
Salvatore

Bug#1037221: [Emc-developers] Bug#1037221: linuxcnc: Prepared to support Bullseye version for 3-4 years?

[Petter Reinholdtsen]

[Andy Pugh]
> I don't fully understand the question.

The purpose of my question is to make sure the project understand the
current version in Debian Testing is the one that will be around in
Debian for the duration of Debian 12 Bookworm, and not be surprised by
the need to keep it working and secure for some years to come.

I just found https://wiki.debian.org/UpstreamGuide > which seem to
have some useful information for upstream projects.

The update policy for stable as expressed on
https://release.debian.org/ > is "Fast response for security
updates. Minor updates include security and other important fixes only."

> But we still support LinuxCNC 2.8 on Ubuntu 12.04 so I don't think
> that there is any question that we are in it for the long haul.

Very good. :)

-- 
Vennlig hilsen
Petter Reinholdtsen

Bug#568834: First stab at functionality for copying files

[Benj. Mako Hill]

Greetings!

This is just a followup to say that I've been using the patch for
about two years now and have not noticed any trouble. I use the
copying files functionality in vidir nearly every day!

If someone wants to take a more active role in maintaince and needs a
hand, let me know.

Regards,
Mako



> tags 882872 patch
> thanks
> 
> Greetings!
> 
> Thanks for maintaining moreutils! It's one of the packages I love most
> in Debian!
> 
> I'm attaching a first stab a patch to add copying file support to
> vidir (i.e., #882872) which is something I've wanted for a very long
> time and just broke down and did today.
> 
> It's been quite a while since I've written Perl and I'm not 100% sure
> that I've thought the logic through completely so as to avoid all
> possible corner cases (e.g., related to every way one would swap
> filenames and/or copy things repeatedly).
> 
> The way it works is much simpler than the model suggested in #568834,
> (which, BTW, sounds very nice): If a line number shows up twice in the
> vidir output—and if the two filenames associated with the lines
> numbers—are different, the file gets copied. That's it. :)
> 
> Regards,
> Mako
> https://mako.cc/





-- 
Benjamin Mako Hill
https://mako.cc/


signature.asc
Description: PGP signature

Bug#1035957: Accepted openjdk-17 17.0.7+7-1 (source) into unstable

[Salvatore Bonaccorso]

Source: openjdk-17
Source-Version: 17.0.7+7-1

- Forwarded message from Debian FTP Masters 
 -


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Tue, 06 Jun 2023 13:36:52 +0200
Source: openjdk-17
Architecture: source
Version: 17.0.7+7-1
Distribution: unstable
Urgency: high
Maintainer: OpenJDK Team 
Changed-By: Matthias Klose 
Changes:
 openjdk-17 (17.0.7+7-1) unstable; urgency=high
 .
   * OpenJDK 17.0.7 release, build 7.
 - CVE-2023-21930, CVE-2023-21937, CVE-2023-21938, CVE-2023-21939,
   CVE-2023-21954, CVE-2023-21967, CVE-2023-21968.
 - Release notes:
   https://mail.openjdk.org/pipermail/jdk-updates-dev/2023-April/021899.html
 .
   [ Vladimir Petko ]
   * Refresh patches.
   * debian/copyright: Convert to machine readable format.
   * Update watch file.
   * Update tag and version handling in the rules file.
   * debian/JB-jre-headless.postinst.in: trigger ca-certificates-java after
 the JRE is set up.
   * d/control: add jtreg6 dependencies, regenerate control.
   * d/rules: only compile google tests when with_check is enabled, disable them
 for bullseye and jammy.
   * d/rules: always use jtreg6.
   * d/p/exclude-broken-tests.patch: add OpenJDK 17 failures.
   * d/p/*: add patches for jtreg tests:
 - disable-thumb-assertion.patch: fix JDK-8305481.
 - update-assertion-for-armhf.patch: fix JDK-8305480.
 - misalign-pointer-for-armhf.patch: packaging-specific patch to fix test
 - failure introduced by d/p/m68k-support.diff.
 - log-generated-classes-test.patch: workaround JDK-8166162.
 - update-permission-test.patch: add security permissions for testng 7.
 - ldap-timeout-test-use-ip.patch, test-use-ip-address.patch: 
Ubuntu-specific
 - patches to workaround missing DNS resolver on the build machines.
 - exclude_broken_tests.patch: quarantine failing tests.
   * d/t/{jdk,hotspot,jaxp,lantools}: run tier1 and tier2 jtreg tests only,
   * add test options from OpenJDK Makefile, patch problem list to exclude
 architecture-specific failing tests.
   * d/t/*: fix test environment: add missing -nativepath (LP: #2001563).
   * d/t/jdk: provide dbus session for the window manager (LP: #2001576).
   * d/t/jtreg-autopkgtest.in: pass JTREG home to locate junit.jar, regenerate
   * d/t/jtreg-autopkgtest.sh (LP: #2016206).
   * d/rules: pack external debug symbols with build-id, do not strip JVM shared
 libraries (LP: #2012326, LP: #2016739).
   * drop d/p/{jaw-classpath.diff, jaw-optional.diff}: the atk wrapper is
 disabled and these patches cause class data sharing tests to fail.
 LP: #2016194.
Checksums-Sha1:
 43a78086bbdcec3106d577bc2fb540daac07b353 4522 openjdk-17_17.0.7+7-1.dsc
 38706ac1090cc214adc67f294b936f6222a6fe16 61894896 
openjdk-17_17.0.7+7.orig.tar.xz
 3467e46f8b96733412718bf9e43e3cf33aed1c8d 199104 
openjdk-17_17.0.7+7-1.debian.tar.xz
 77d309d1f93490bea26b4bbcd8aeb6e846bc2764 15621 
openjdk-17_17.0.7+7-1_source.buildinfo
Checksums-Sha256:
 e6b80ffc98e25e95f0f6e6bdb5452e27504d8b5bfa354fc282c1133d5938606a 4522 
openjdk-17_17.0.7+7-1.dsc
 54979d3108824cb1ff03063f9d00154395eeb6aa37153f1e3d990bd3064fe65f 61894896 
openjdk-17_17.0.7+7.orig.tar.xz
 e921593bfb589d616cd511275bc6e400bfb3ec3d1fd71d9c7881f2d7ae111c18 199104 
openjdk-17_17.0.7+7-1.debian.tar.xz
 6a8390158c41bfea88ad6f9731fffbce0c9a04ff756d79de14da17b7b5cd8ae4 15621 
openjdk-17_17.0.7+7-1_source.buildinfo
Files:
 3d4eae81da92046e8b9c05737156795b 4522 java optional openjdk-17_17.0.7+7-1.dsc
 31686ecebc0181d2fce168e83c6f4791 61894896 java optional 
openjdk-17_17.0.7+7.orig.tar.xz
 3dc12f5f83c48a32040eb8b0e68faafc 199104 java optional 
openjdk-17_17.0.7+7-1.debian.tar.xz
 d35cbe4ca8487b48527cb0673a16e377 15621 java optional 
openjdk-17_17.0.7+7-1_source.buildinfo

-BEGIN PGP SIGNATURE-

iQJEBAEBCgAuFiEE1WVxuIqLuvFAv2PWvX6qYHePpvUFAmSDPlwQHGRva29AZGVi
aWFuLm9yZwAKCRC9fqpgd4+m9RSuEACasTMv7CDSFc+/MBRQsq31WjGqzWAA/Yd5
C8geSHhKe+Qm/KzszIC1pKYspudn6eemVP8fsu3PSxes6zu0ccYbTjMoT/7Mo7qe
nDnb9KXAmhXY2wyPPXW+8OPvZUCdfppR5Nb/1muogTcdkW3Yte1dMyfDaTQCsW9J
qlnmb07obwK06bzrYEAcc17/J2Q4+/YEJUFFHenR+lU31XQ2V9F+0W4vSs6PPR5w
maY+Gf/dksoPE3m4YMiJvWP9jtl9NFo5qoh3bPccP00S6Aaovi+Em5yxMOGJ0KcJ
9nIJ7kErtE2sNokOY32XVTDWodCq6L74bD5FF0UMpCHj4WCxGLAwzkUly2b6N2cq
oD8MtQYaYwFS0cfr+svmD8FaOLcJ2TNiT3XfOCGDKKhvn24rF/qco8Z9f+1ub105
Qu6cZ5zVEsjAt1JM/iCvF2pXSy5EfEmqrpzmyXnPqytfBkYcj9qNiNZIchNX+TwB
1y5XcLmfIhBMlXWMEhHfszeBTWbU52wXmk5h6s29A4HygnlC80+mHHsgS3FoTUZ+
hwzQxenGwq6s+FnWnHnyyy5bgTleqPHwpbo8MwR8qPi7wCFcje4AaZPwpJcmdIMU
CygCAk8yyyOohFR20C4AizQpiKBJedFW1zWemwiiOiu+hCTF+n+OABZn6mqbwJs8
2igybMAZFw==
=cR7a
-END PGP SIGNATURE-


- End forwarded message -

Bug#1009071: closed by matthias.geiger1...@tutanota.de ()

[Jonas Smedegaard]

Please do not close a bug before it is actually solved.

Code sitting in Salsa is not it.  Code actually in Debian itself is it.


 - Jonas

-- 
 * Jonas Smedegaard - idealist & Internet-arkitekt
 * Tlf.: +45 40843136  Website: http://dr.jones.dk/
 * Sponsorship: https://ko-fi.com/drjones

 [x] quote me freely  [ ] ask before reusing  [ ] keep private

signature.asc
Description: signature

Bug#1037156: nheko: improve audio/video experience: error message or Recommends: gstreamer1.0-plugins-bad

[Hubert Chathi]

On Tue, 6 Jun 2023 16:17:26 +0200, Helmut Grohne  said:

> trying to place a video or voice call with nheko failed here with an
> error message around missing "webrtcbin". I eventually figured what it
> means: Please install gstreamer1.0-plugins-bad and then it works.

> Would it be possible to improve the error message to ask the user for
> installing that package?

> and/or

> Can you add gstreamer1.0-plugins-bad to nheko's Recommends?

Thanks for the report.  Yes, I think it makes sense to add
gstreamer1.0-plugins-bad as a Recommends.  I'll do that in the next upload.

-- 
Hubert Chathi  -- https://www.uhoreg.ca/
Jabber: hub...@uhoreg.ca -- Matrix: @uhoreg:matrix.org
PGP/GnuPG key: 4096R/F24C F749 6C73 DDB8 DCB8  72DE B2DE 88D3 113A 1368

Bug#1037266: tzdata: [INTL:tr] turkish translation of debconf messages

[Atila KOÇ]

Package: tzdata
Version: N/A
Severity: wishlist
Tags: l10n patch

Hello,

Find attached the updated Turkish translation of the tzdata debconf 
messages.

It has been submitted for review to the debian-l10n-turkish mailing list.

Regards,
Atila KOÇ

--- YASAL UYARI ---

# Turkish debconf translation of tzdata
# This file is distributed under the same license as the tzdata package.
# Mert Dirik , 2008.
# Hace Ibrahim OZBAL , 2021.
# Atila KOÇ , 2023.
#
msgid ""
msgstr ""
"Project-Id-Version: tzdata\n"
"Report-Msgid-Bugs-To: tzd...@packages.debian.org\n"
"POT-Creation-Date: 2023-02-06 11:44+0100\n"
"PO-Revision-Date: 2023-05-28 17:47+0300\n"
"Last-Translator: Atila KOÇ \n"
"Language-Team: Debian L10n Turkish \n"
"Language: tr\n"
"MIME-Version: 1.0\n"
"Content-Type: text/plain; charset=UTF-8\n"
"Content-Transfer-Encoding: 8bit\n"
"Plural-Forms: nplurals=2; plural=(n > 1);\n"
"X-Generator: Poedit 2.4.2\n"

#. Type: select
#. Choices
#. Note to translators:
#. - "Etc" will present users with a list
#. of "GMT+xx" or "GMT-xx" timezones
#: ../tzdata.templates:1001
msgid "Africa"
msgstr "Afrika"

#. Type: select
#. Choices
#. Note to translators:
#. - "Etc" will present users with a list
#. of "GMT+xx" or "GMT-xx" timezones
#: ../tzdata.templates:1001
msgid "America"
msgstr "Amerika"

#. Type: select
#. Choices
#. Note to translators:
#. - "Etc" will present users with a list
#. of "GMT+xx" or "GMT-xx" timezones
#: ../tzdata.templates:1001
msgid "Antarctica"
msgstr "Antarktika"

#. Type: select
#. Choices
#. Note to translators:
#. - "Etc" will present users with a list
#. of "GMT+xx" or "GMT-xx" timezones
#: ../tzdata.templates:1001
msgid "Arctic"
msgstr "Kuzey Kutbu"

#. Type: select
#. Choices
#. Note to translators:
#. - "Etc" will present users with a list
#. of "GMT+xx" or "GMT-xx" timezones
#: ../tzdata.templates:1001
msgid "Asia"
msgstr "Asya"

#. Type: select
#. Choices
#. Note to translators:
#. - "Etc" will present users with a list
#. of "GMT+xx" or "GMT-xx" timezones
#: ../tzdata.templates:1001
msgid "Atlantic"
msgstr "Atlantik"

#. Type: select
#. Choices
#. Note to translators:
#. - "Etc" will present users with a list
#. of "GMT+xx" or "GMT-xx" timezones
#: ../tzdata.templates:1001
msgid "Australia"
msgstr "Avustralya"

#. Type: select
#. Choices
#. Note to translators:
#. - "Etc" will present users with a list
#. of "GMT+xx" or "GMT-xx" timezones
#: ../tzdata.templates:1001
msgid "Europe"
msgstr "Avrupa"

#. Type: select
#. Choices
#. Note to translators:
#. - "Etc" will present users with a list
#. of "GMT+xx" or "GMT-xx" timezones
#: ../tzdata.templates:1001
msgid "Indian"
msgstr "Hindistan"

#. Type: select
#. Choices
#. Note to translators:
#. - "Etc" will present users with a list
#. of "GMT+xx" or "GMT-xx" timezones
#. Type: select
#. Choices
#. Translators: do not translate underscores. You can use spaces instead.
#: ../tzdata.templates:1001 ../tzdata.templates:12001
msgid "Pacific"
msgstr "Pasifik"

#. Type: select
#. Choices
#. Note to translators:
#. - "Etc" will present users with a list
#. of "GMT+xx" or "GMT-xx" timezones
#: ../tzdata.templates:1001
msgid "US"
msgstr "ABD"

#. Type: select
#. Choices
#. Note to translators:
#. - "Etc" will present users with a list
#. of "GMT+xx" or "GMT-xx" timezones
#: ../tzdata.templates:1001
msgid "Etc"
msgstr "Diğer"

#. Type: select
#. Description
#: ../tzdata.templates:1002
msgid "Geographic area:"
msgstr "Coğrafi bölge:"

#. Type: select
#. Description
#: ../tzdata.templates:1002
msgid ""
"Please select the geographic area in which you live. Subsequent "
"configuration questions will narrow this down by presenting a list of "
"cities, representing the time zones in which they are located."
msgstr ""
"Lütfen yaşadığınız coğrafi bölgeyi seçin. Sonraki yapılandırma soruları, "
"bulundukları saat dilimlerini de içeren bir şehir listesi sunarak bu "
"seçiminizi daraltacak."

#. Type: select
#. Choices
#. Translators: do not translate underscores. You can use spaces instead.
#: ../tzdata.templates:2001
msgid "Abidjan"
msgstr "Abidjan"

#. Type: select
#. Choices
#. Translators: do not translate underscores. You can use spaces instead.
#: ../tzdata.templates:2001
msgid "Accra"
msgstr "Akra"

#. Type: select
#. Choices
#. Translators: do not translate underscores. You can use spaces instead.
#: ../tzdata.templates:2001
msgid "Addis_Ababa"
msgstr "Addis Ababa"

#. Type: select
#. Choices
#. Translators: do not translate underscores. You can use spaces instead.
#: ../tzdata.templates:2001
msgid "Algiers"
msgstr "Cezayir"

#. Type: select
#. Choices
#. Translators: do not translate underscores. You can use spaces instead.
#: ../tzdata.templates:2001
msgid "Asmara"
msgstr "Asmara"

#. Type: select
#. Choices
#. Translators: do not translate underscores. You can use spaces instead.
#: ../tzdata.templates:2001
msgid "Bamako"
msgstr "Bamako"

#. Type: select
#. Choices
#. Translators: do not translate underscores. You can use spaces instead.
#: 

Bug#1037258: curl -I (HEAD request) fails with HTTP/2 against a Debian Apache instance

[Ian Jackson]

For the record: this bug caused `dgit clone dgit` to fail.  That
aspect of the problem has been worked around by forcing that host to
use HTTP/1 only.  ([rt.debian.org #9218]).

This also means that the repro in this bug report won't work any more,
I'm afraid.

-- 
Ian JacksonThese opinions are my own.  

Pronouns: they/he.  If I emailed you from @fyvzl.net or @evade.org.uk,
that is a private address which bypasses my fierce spamfilter.

Bug#969482: ITP: glab -- An open-source GitLab command line tool

[Antoine Beaupré]

On 2023-06-09 10:11:05, Nicolas Schier wrote:
> On Tue, Jan 24, 2023 at 12:23:19PM -0500 Antoine Beaupré wrote:
>> On 2020-09-03 16:21:32, TODO wrote:
>> > Package: wnpp
>> > Severity: wishlist
>> > Owner: TODO 
>> >
>> > * Package name: glab
>> >   Version : 1.10.0-1
>> >   Upstream Author : Clement Sam
>> > * URL : https://github.com/profclems/glab
>> 
>> Hi Clement Sam!
>> 
>> You filed this ITP (Intent To Package) back in 2020, do you still intend
>> on publishing your work in Debian?
>> 
>> I see there was a packaging discussion here:
>> 
>> https://gitlab.com/gitlab-org/cli/-/issues/205
>> 
>> ... but it was closed in favor of using makedeb.org, which we typically
>> do not favor in debian.org itself. :)
>> 
>> As things stand now, you are the owner of this bug and others might be
>> respectfully waiting for you to complete the work instead of jumping in
>> and bringing glab in Debian per se. If you do not intend to continue
>> this work, let us know and someone else might step up. :)
>> 
> [...]
>> 
>> so we don't actually know if we need to package more deps here...
>>
>> Anyways, let us know where things are so we can move forward
>> here. Thanks!
>
> While trying to prepackage glab (v1.30) at work (dh-make-golang + [1]), I had
> to update golang-github-xanzy-go-gitlab-dev from its current version in
> testing/unstable (0.73.1-2) to 0.84.0.
>
> Other dependency package updates were not necessary.
>
> Antoine, does it makes sense that I step in and prepare a non-maintainer 
> upload
> (sponsoring would be needed), or does the golang-team take care of that?
>
> Iff Clement Sam is no more responding: is there a gentle, official way that
> someone may take over the ITP?

ITPs are non-feudal. Especially without a response after months, it's
perfectly fine to take over.

I would suggest pushing your stuff to salsa or somewhere in any case, so
that if you get tired or not there yet, people can pick up from where
you were. :)

Re the team, people are busy, don't expect things to magically fix
themselves. If you see something to fix and have cycles to fix it, do
it.

a.

-- 
People arbitrarily, or as a matter of taste, assigning numerical values
to non-numerical things. And then they pretend that they haven't just
made the numbers up, which they have. Economics is like astrology in
that sense, except that economics serves to justify the current power
structure, and so it has a lot of fervent believers among the powerful.
- Kim Stanley Robinson, Red Mars

Bug#1037265: ITP: cppgir -- C++ binding wrapper generator for GObject introspection

[Nicholas Guriev]

Package: wnpp
Severity: wishlist
Owner: Nicholas Guriev 

* Package name: cppgir
  Upstream Author : Mark Nauwelaerts 
* URL : https://gitlab.com/mnauw/cppgir
* License : MIT (know as Expat)
  Programming Lang: C++
  Description : C++ binding wrapper generator for GObject introspection

cppgir processes .gir files derived from GObject-Introspection annotations into
a set of C++ files defining suitable namespaces, classes and other types that
together from a C++ binding. In this way, the plain C libraries and objects
become available as native objects along with (RAII) managed resource handling.

This tool is a build dependency for the latest version of Telegram Desktop.


signature.asc
Description: This is a digitally signed message part.

Bug#1037263: unblock: php8.2/8.2.7-1

[Ondřej Surý]

> On 9. 6. 2023, at 20:03, Paul Gevers  wrote:
> 
> Hi Ondřej,
> 
>> On 09-06-2023 18:58, Ondřej Surý wrote:
>> php8.2 8.2.7-1 is a security release, so it would be pretty
>> wrong to release bookworm with the old PHP.  I am sorry for
>> the timing, but that's just coincidence.
> 
> Sorry, but this is really about 1 week too late (we are in the quite periode 
> to prepare for tomorrow). From last weekend on security issues are handled by 
> the security team. Otherwise you can prepare a point release update, but 
> that's handled with different usertags and meta data.

I’ve already reached to the security team, so I guess we’ll handle it there. I 
didn’t know that bookworm-security has been open now.

Thanks,
Ondřej
--
Ondřej Surý  (He/Him)

> Paul

Bug#1037263: unblock: php8.2/8.2.7-1

[Paul Gevers]

Hi Ondřej,

On 09-06-2023 18:58, Ondřej Surý wrote:

php8.2 8.2.7-1 is a security release, so it would be pretty
wrong to release bookworm with the old PHP.  I am sorry for
the timing, but that's just coincidence.


Sorry, but this is really about 1 week too late (we are in the quite 
periode to prepare for tomorrow). From last weekend on security issues 
are handled by the security team. Otherwise you can prepare a point 
release update, but that's handled with different usertags and meta data.


Paul


OpenPGP_signature
Description: OpenPGP digital signature

Bug#1037264: cksum crashes intermittently with "Illegal instruction" on some Xen DomU

[Axel Beckert]

Package: coreutils
Version: 9.1-1
Severity: important
X-Debbugs-Cc: a...@debian.org
Control: affects -1 aptitude-robot

On a Xen DomU running Debian 12, cksum intermittently crashes as
follows:

# while :; do dd if=/dev/urandom count=1 2> /dev/null | cksum ; done
1758277878 512
2101634611 512
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
2704754638 512
Illegal instruction
4028135672 512
2625667858 512
Illegal instruction
Illegal instruction
Illegal instruction
3923394050 512
3125973555 512
Illegal instruction
Illegal instruction
Illegal instruction
4259853375 512
Illegal instruction
Illegal instruction
81698826 512
Illegal instruction
3571110616 512
Illegal instruction
1587881588 512
Illegal instruction
Illegal instruction
Illegal instruction
2814380057 512
Illegal instruction
Illegal instruction
2944809052 512
Illegal instruction
2902358677 512
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
935279575 512
Illegal instruction
456315694 512
Illegal instruction
469377998 512
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
2550807941 512
Illegal instruction
3392916458 512
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
2092884162 512
Illegal instruction
3196356363 512
Illegal instruction
1701279083 512
Illegal instruction
1118990197 512
Illegal instruction
1455432166 512
Illegal instruction
Illegal instruction
3772213637 512
Illegal instruction
3359021443 512
Illegal instruction
1472208906 512
Illegal instruction
Illegal instruction
Illegal instruction
530110239 512
1124879907 512
Illegal instruction
2364080335 512
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
1306677535 512
Illegal instruction
2367703624 512
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
3730416712 512
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
Illegal instruction
265751591 512
3833668362 512
Illegal instruction
Illegal instruction
1086945333 512
Illegal instruction
Illegal instruction
3420907443 512
Illegal instruction
Illegal instruction
Illegal instruction
[…]

I was only able to reproduce this on a single host so far, hence no RC
severity. (But feel free to bump to RC. :-)

I tried and could NOT reproduce it on:

* Debian 11 amd64 on real hardware (Intel(R) Core(TM) i7-6700 CPU; AMD
  EPYC 7313P 16-Core Processor; many more)

* Debian 12 amd64 on real hardware (Intel(R) Core(TM) i7-6700T CPU;
  AMD EPYC 7742 

Bug#680619: nullmailer: dpkg-reconfigure corrupts IPv6 zone index in "remotes"

[Jörg Mechnich]

Pretty sure the following contraption in the postinst script is responsible:


36  echo "$RET" | sed -r -e ':a s/(\[[^]:]*):/\1=/; ta' \
37   -e 
's/[[:space:]]*:[[:space:]]*/\n/g' \
38   -e ':b s/(\[[^]=]*)=/\1:/; tb' \
39   -e 's/[][]//g' > 
/etc/nullmailer/remotes


Unfortunately I am not completely sure what happens here (and what could 
possibly removed or fixed).


Jörg


OpenPGP_signature
Description: OpenPGP digital signature

Bug#1037263: unblock: php8.2/8.2.7-1

[Ondřej Surý]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Please unblock package php8.2

Hi,

php8.2 8.2.7-1 is a security release, so it would be pretty
wrong to release bookworm with the old PHP.  I am sorry for
the timing, but that's just coincidence.

[ Reason ]
This is in line with previous request as discussed in #1033492
and sanctioned by security team.

[ Impact ]
Releasing Debian bookworm with known security vulnerability.

[ Tests ]
There's autopkg tests and people are also using this already since yesterday
from my PPAs that usually has hundred thousands of users.

[ Risks ]
(Discussion of the risks involved. E.g. code is trivial or
complex, key package vs leaf package, alternatives available.)

[ Checklist ]
  [x] all changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in testing

[ Other info ]
The package itself is building right now and will be uploaded in hour or so.

unblock php8.2/8.2.7-1


-BEGIN PGP SIGNATURE-
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=Yf9P
-END PGP SIGNATURE-

Bug#1037007: libopenmpt: failing autopkgtests with 0.7.0

[Danilo Egea Gondolfo]

Package: libopenmpt
Version: 0.7.0-1
Followup-For: Bug #1037007
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu mantic ubuntu-patch
Control: tags -1 patch

Dear Maintainer,

Please, find attached a small patch to address this issue.


* debian/tests/build: do not emit deprecation warnings.
It's causing autopkgtest failures due to the stderr output


Thanks for considering the patch.

*** /tmp/tmp_eonmzfe/libopenmpt_0.7.0-1ubuntu1.debdiff
diff -Nru libopenmpt-0.7.0/debian/tests/build 
libopenmpt-0.7.0/debian/tests/build

--- libopenmpt-0.7.0/debian/tests/build 2023-05-07 14:01:57.0 +0100
+++ libopenmpt-0.7.0/debian/tests/build 2023-06-09 16:50:17.0 +0100
@@ -28,9 +28,9 @@
}

# Build programs
-${CROSS_COMPILE}gcc -Wall -o "$AUTOPKGTEST_TMP/pattern-dump-c1" 
pattern-dump-c.c -lopenmpt
+${CROSS_COMPILE}gcc -Wall -o "$AUTOPKGTEST_TMP/pattern-dump-c1" 
pattern-dump-c.c -lopenmpt -Wno-deprecated-declarations

echo "build1: OK"
-${CROSS_COMPILE}gcc -Wall -o "$AUTOPKGTEST_TMP/pattern-dump-c2" 
pattern-dump-c.c $(${CROSS_COMPILE}pkg-config --cflags --libs libopenmpt)
+${CROSS_COMPILE}gcc -Wall -o "$AUTOPKGTEST_TMP/pattern-dump-c2" 
pattern-dump-c.c $(${CROSS_COMPILE}pkg-config --cflags --libs 
libopenmpt) -Wno-deprecated-declarations

echo "build2: OK"

${CROSS_COMPILE}g++ -Wall -o "$AUTOPKGTEST_TMP/pattern-dump-cpp1" 
pattern-dump-cpp.cpp -lopenmpt



-- System Information:
Debian Release: bookworm/sid
APT prefers mantic
APT policy: (500, 'mantic'), (100, 'mantic-proposed')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 6.2.0-21-generic (SMP w/16 CPU threads; PREEMPT)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, 
TAINT_UNSIGNED_MODULE
Locale: LANG=en_IE.UTF-8, LC_CTYPE=en_IE.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_IE:en

Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Bug#1035949: mariadb: upgrade issue: mariadb-server-10.5 fails to stop after all other -10.5 packages were removed

[Frédéric Loyer]

Yes, systemd was installed. It was a Debian installed from scratch in 
version 11 from the available Linux templates of my cloud provider.


I have installed Apache, MariaDB, PHP which is required for vBulletin 
(installed manually, no package). And some other tools which should not 
have an impact on MariaDB. I guess the system is quite standard.


Le 09/06/2023 à 17:37, Otto Kekäläinen a écrit :

Is your system running systemd? What can you tell about the environment?

Bug#1037258: curl -I (HEAD request) fails with HTTP/2 against a Debian Apache instance

[Sergio Durigan Junior]

On Friday, June 09 2023, Ian Jackson wrote:

> Steps to reproduce:
>
>   curl -I https://git.dgit.debian.org/dgit/info/refs
>
> Expected output (obtained on, eg, buster):
>
>   HTTP/2 200 
>   expires: Fri, 01 Jan 1980 00:00:00 GMT
>   pragma: no-cache
>   cache-control: no-cache, max-age=0, must-revalidate
>   x-content-type-options: nosniff
>   x-frame-options: sameorigin
>   referrer-policy: no-referrer
>   x-xss-protection: 1
>   permissions-policy: interest-cohort=()
>   strict-transport-security: max-age=15552000
>   content-length: 40562
>   vary: Accept-Encoding
>   x-clacks-overhead: GNU Terry Pratchett
>   content-type: text/plain
>   date: Fri, 09 Jun 2023 14:11:55 GMT
>   server: Apache
>
> Actual output:
>
>   curl: (92) HTTP/2 stream 1 was not closed cleanly: PROTOCOL_ERROR (err 1)
>
> This seems to have stopped working very recently.

I was able to reproduce the bug building from the upstream repo, ran a
bisect and found that the following commit seems to have fixed the
issue:

744dcf22fac6cf12a9112df106b61864982afef9 is the first fixed commit
commit 744dcf22fac6cf12a9112df106b61864982afef9
Author: Stefan Eissing 
Date:   Thu Mar 30 12:13:49 2023 +0200

http2: flow control and buffer improvements

- use bufq for send/receive of network data
- usd bufq for send/receive of stream data
- use HTTP/2 flow control with no-auto updates to control the
  amount of data we are buffering for a stream
  HTTP/2 stream window set to 128K after local tests, defined
  code constant for now
- elminiating PAUSEing nghttp2 processing when receiving data
  since a stream can now take in all DATA nghttp2 forwards

Improved scorecard and adjuste http2 stream window sizes
- scorecard improved output formatting and options default
- scorecard now also benchmarks small requests / second

Closes #10771

There are a few problems, though:

- The commit is long and seems to introduce unrelated changes.  In fact,
  it's just an "overhaul" commit, so the fix apparently happened "by
  chance".

- According to
  https://github.com/curl/curl/pull/10771#issuecomment-1491200728, the
  commit might have introduce other problems.

-- 
Sergio
GPG key ID: 237A 54B1 0287 28BF 00EF  31F4 D0EB 7628 65FC 5E36
Please send encrypted e-mail if possible
https://sergiodj.net/

Bug#1037221: [Emc-developers] Bug#1037221: linuxcnc: Prepared to support Bullseye version for 3-4 years?

[andy pugh]

On Fri, 9 Jun 2023 at 15:18, Petter Reinholdtsen  wrote:

> Is the linuxcnc community prepared to support the linuxcnc edition
> currently in Debian Bullseye for 3-4 years?

I don't fully understand the question.
But we still support LinuxCNC 2.8 on Ubuntu 12.04 so I don't think
that there is any question that we are in it for the long haul.

-- 
atp
"A motorcycle is a bicycle with a pandemonium attachment and is
designed for the especial use of mechanical geniuses, daredevils and
lunatics."
— George Fitch, Atlanta Constitution Newspaper, 1912

Bug#1037262: ITP: syndication-domination -- Python 3 library for parsing RSS and ATOM feeds

[Jeremy Bícha]

Package: wnpp
Severity: wishlist
X-Debbugs-CC: debian-de...@lists.debian.org, debian-pyt...@lists.debian.org
Owner: jeremy.bi...@canonical.com
Control: blocks 1019356 by -1

Package Name: python3-syndom
Version: 1.0
Upstream Author: GabMus
License: AGPL-3
Programming Lang: C++ (but bindings are for Python 3

Description: Python 3 library for parsing RSS and ATOM feeds
 syndication-domination is a Python 3 library for parsing RSS and ATOM feeds.

Other Info
--
This package will be maintained by the Debian Python team. Packaging is at
https://salsa.debian.org/python-team/packages/syndication-domination

It is a required dependency for newer versions of the GNOME Feeds app.

There are C++ header files but the upstream installer does not install
them. Since nothing in Debian is using them, I am only packaging the
Python3 library at this time.

Thanks,
Jeremy Bicha

Bug#1037221: [Emc-developers] Bug#1037221: linuxcnc: Prepared to support Bullseye version for 3-4 years?

[Sebastian Kuzminsky]

On 6/8/23 02:01, Petter Reinholdtsen wrote:


Package: linuxcnc
Version: 2.9.0~pre1+git20230208.f1270d6ed7-1

Is the linuxcnc community prepared to support the linuxcnc edition
currently in Debian Bullseye for 3-4 years?  In other words, willing and
able to fix any security issues or other fatal problems with the package
in a timely maner?


I willing to put some effort into this.

The current version of LinuxCNC in Debian is a pre-release 
("2.9.0~pre1...").  Many new fixes have gone in to our 2.9 branch since 
that upstream tarball was made, and undoubtedly more patches will come 
over the 3-4 years that Bookworm will be active.


What is Debian's policy for how we are to fix problems with our package 
in the Debian stable release, specifically: when is it ok to update the 
upstream tarball to a newer 2.9 snapshot vs when must we backport 
specific bugfix commits and place them in debian/patches?



--
Sebastian Kuzminsky

Bug#1035949: mariadb: upgrade issue: mariadb-server-10.5 fails to stop after all other -10.5 packages were removed

[Otto Kekäläinen]

Can you attach the full log as an attachment?

The current short log does not show what apt told you in the beginning
about what it plans to do, nor can I see if mariadb-client-10.5 was
uninstalled or what happened.

But it did at least hit a bug where the uninstall fails on
`invoke-rd.c stop mariadb` failing.

Is your system running systemd? What can you tell about the environment?

Bug#1037260: ITP: plume-hashmap-util-java -- Plume-lib utility libraries for Java HashMaps

[Olek Wojnar]

Package: wnpp
Severity: wishlist
Owner: Olek Wojnar 
X-Debbugs-Cc: debian-de...@lists.debian.org

* Package name: plume-hashmap-util-java
  Version : 0.0.1
  Upstream Author : Michael Ernst 
* URL : https://github.com/plume-lib/hashmap-util
* License : GPL 2 with Classpath Exception
  Programming Lang: Java
  Description : Plume-lib utility libraries for Java HashMaps

 Hashmap Java utility libraries from the plume-lib project. These libraries are:
 Hasher, WeakHashMap, and WeakIdentityHashMap.

This package is needed to build the full Checker Framework package which is
in turn needed for Bazel version 5.

Bug#1036882: RFS: jimtcl/0.82-1 -- small-footprint implementation of Tcl - shared library

[Andrej Shadura]

Hi,

On Fri, 9 Jun 2023, at 05:25, Bo YU wrote:
> Got it. I disabled/ignored the test with the $(testreport) it at this
> time. But I am wonder why it will not
> be reproduced on my local build with sbuild. Need I to change some
> modifies in ~/.sbuildrc?

No idea, I couldn’t fine any local configuration that would enable this on my 
machine. Anyway, that didn’t work, I had to patch out the tests.

> Another serious issue is it fails to build on i386:
> https://salsa.debian.org/debian/jimtcl/-/pipelines/535907
>
> I hope it can be uploaded to experimental this time and to see the
> issue if existed in others arch, this is to help upstream
> to debug the issue also I think.
>
> Could you help me to upload it in this situation?
>
> [0]: https://mentors.debian.net/package/jimtcl/
> [1]: https://salsa.debian.org/debian/jimtcl

Sure, I’d be happy to — but for now I uploaded it as it is. Let’s see how it 
goes.

-- 
Cheers,
  Andrej

Bug#1035949: Fwd: Bug#1035949: mariadb: upgrade issue: mariadb-server-10.5 fails to stop after all other -10.5 packages were removed

[Frédéric Loyer]

Le 09/06/2023 à 16:17, Otto Kekäläinen a écrit :


Thanks Frederick for the report!

Do you still have the output of apt? Can you copy-paste here or attach 
log to show exactly what happened?


It is likely that you hit this bug, but exact details would help 
confirm, and also help build CI test/scenario to ensure we have 
realistic upgrade testing.


Note that verifying the log, I had only typed "apt --fix-broken install" 
not "apt --fix-broken install mysql-client"



Here an extract of the log:

With "apt full-upgrade"

[...]
dpkg: mariadb-server-10.5 : problèmes de dépendance, mais suppression 
comme demandé :

 mariadb-server dépend de mariadb-server-10.5 (>= 1:10.5.19-0+deb11u2).
Suppression de mariadb-server-10.5 (1:10.5.19-0+deb11u2) ...
Paramétrage de mysql-common (5.8+1.1.0) ...
Paramétrage de mariadb-common (1:10.11.3-1) ...
Préparation du dépaquetage de .../mariadb-server_1%3a10.11.3-1_amd64.deb ...
/var/lib/mysql: found previous version 10.5
Failed to stop mysql.service: Unit mysql.service not loaded.
invoke-rc.d: initscript mysql, action "stop" failed.
Attempt to stop MariaDB/MySQL server returned exitcode 5
There is a MariaDB/MySQL server running, but we failed in our attempts 
to stop it.

Stop it yourself and try again!
dpkg: erreur de traitement de l'archive 
/var/cache/apt/archives/mariadb-server_1%3a10.11.3-1_amd64.deb (--unpack) :
 le sous-processus nouveau mariadb-server paquet pre-installation 
script a renvoyé un état de sortie d'erreur 1

Des erreurs ont été rencontrées pendant l'exécution :
 /var/cache/apt/archives/mariadb-server_1%3a10.11.3-1_amd64.deb
Log ended: 2023-06-09  11:49:32


Then with apt --fix-broken install

Log started: 2023-06-09  11:50:47
Suppression de mariadb-client-10.5 (1:10.5.19-0+deb11u2) ...
Suppression de mariadb-server-core-10.5 (1:10.5.19-0+deb11u2) ...
Préparation du dépaquetage de .../mariadb-backup_1%3a10.11.3-1_amd64.deb ...
Dépaquetage de mariadb-backup (1:10.11.3-1) sur (1:10.5.19-0+deb11u2) ...
Suppression de mariadb-client-core-10.5 (1:10.5.19-0+deb11u2) ...
Sélection du paquet mariadb-client-core précédemment désélectionné.
Préparation du dépaquetage de 
.../0-mariadb-client-core_1%3a10.11.3-1_amd64.deb ...

Dépaquetage de mariadb-client-core (1:10.11.3-1) ...

[... multiple packages without link to Mariadb ...]

Préparation du dépaquetage de 
.../0-mariadb-server_1%3a10.11.3-1_amd64.deb ...

/var/lib/mysql: found previous version 10.5
Failed to stop mysql.service: Unit mysql.service not loaded.
invoke-rc.d: initscript mysql, action "stop" failed.
Attempt to stop MariaDB/MySQL server returned exitcode 5
There is a MariaDB/MySQL server running, but we failed in our attempts 
to stop it.

Stop it yourself and try again!
dpkg: erreur de traitement de l'archive 
/tmp/apt-dpkg-install-ycPrRR/0-mariadb-server_1%3a10.11.3-1_amd64.deb 
(--unpack) :
 le sous-processus nouveau mariadb-server paquet pre-installation 
script a renvoyé un état de sortie d'erreur 1

Sélection du paquet mariadb-client précédemment désélectionné.
dpkg: tentative de déconfiguration de mariadb-server, qui serait cassé 
par l'installation de mariadb-client ...

dpkg: oui, déconfiguration de mariadb-server (cassé par mariadb-client).
Préparation du dépaquetage de 
.../1-mariadb-client_1%3a10.11.3-1_amd64.deb ...
Déconfiguration de mariadb-server (1:10.5.19-0+deb11u2), pour permettre 
l'installation de mariadb-client (1:10.11.3-1) ...

Dépaquetage de mariadb-client (1:10.11.3-1) ...
Sélection du paquet mariadb-server-core précédemment désélectionné.
Préparation du dépaquetage de 
.../2-mariadb-server-core_1%3a10.11.3-1_amd64.deb ...

Dépaquetage de mariadb-server-core (1:10.11.3-1) ...
Préparation du dépaquetage de .../3-libsnappy1v5_1.1.9-3_amd64.deb ...
Dépaquetage de libsnappy1v5:amd64 (1.1.9-3) sur (1.1.8-1) ...
Sélection du paquet mariadb-plugin-provider-bzip2 précédemment 
désélectionné.
Préparation du dépaquetage de 
.../4-mariadb-plugin-provider-bzip2_1%3a10.11.3-1_amd64.deb ...

Dépaquetage de mariadb-plugin-provider-bzip2 (1:10.11.3-1) ...
Sélection du paquet mariadb-plugin-provider-lz4 précédemment désélectionné.
Préparation du dépaquetage de 
.../5-mariadb-plugin-provider-lz4_1%3a10.11.3-1_amd64.deb ...

Dépaquetage de mariadb-plugin-provider-lz4 (1:10.11.3-1) ...
Sélection du paquet mariadb-plugin-provider-lzma précédemment désélectionné.
Préparation du dépaquetage de 
.../6-mariadb-plugin-provider-lzma_1%3a10.11.3-1_amd64.deb ...

Dépaquetage de mariadb-plugin-provider-lzma (1:10.11.3-1) ...
Sélection du paquet mariadb-plugin-provider-lzo précédemment désélectionné.
Préparation du dépaquetage de 
.../7-mariadb-plugin-provider-lzo_1%3a10.11.3-1_amd64.deb ...

Dépaquetage de mariadb-plugin-provider-lzo (1:10.11.3-1) ...
Sélection du paquet mariadb-plugin-provider-snappy précédemment 
désélectionné.
Préparation du dépaquetage de 
.../8-mariadb-plugin-provider-snappy_1%3a10.11.3-1_amd64.deb ...

Dépaquetage de mariadb-plugin-provider-snappy (1:10.11.3-1) ...
Des erreurs 

Bug#1035111: RFP: ticker -- Terminal stock ticker with live updates and position tracking

[Leandro Cunha]

Hi,

Bug is wrong, this ticker is different from the ticker that already
exists in the repository and has a different purpose. Bug for wnpp
pseudo package.
But I'll see if I can fix this here.

-- 
Cheers,
Leandro Cunha

Bug#1037259: gvfsd: error message for mounting Onyx Boox Leaf 2

[Tobias Koeck]

Package: gvfs
Version: 1.50.3-1
Severity: normal
File: gvfsd

Dear Maintainer,

the Onyx Boox Leaf 2 Android Tablet cannot be mounted. It has some
obsucre errors in the syslog.

Greetings
Tobias
-- System Information:
Debian Release: 12.0
  APT prefers testing-security
  APT policy: (500, 'testing-security'), (500, 'testing-proposed-updates'), 
(500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 6.1.0-9-amd64 (SMP w/16 CPU threads; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages gvfs:amd64 depends on:
ii  gvfs-common   1.50.3-1
ii  gvfs-daemons  1.50.3-1
ii  gvfs-libs 1.50.3-1
ii  libc6 2.36-9
ii  libglib2.0-0  2.74.6-2

gvfs:amd64 recommends no packages.

Versions of packages gvfs:amd64 suggests:
ii  gvfs-backends  1.50.3-1

-- no debconf information

Bug#1009071:

[matthias . geiger1024]

Added in 81914839c41a7ab99a910c1f90316e0a1c59d2af. Version 4.x of asphd will 
land in unstable once I upload gtk 0.6 which needs a newer rustc.

regards,
---
Matthias Geiger (werdahias)
-BEGIN PGP PUBLIC KEY BLOCK-

mQINBGJGNsQBEADCVylaCtYtBQW4NmDrZOIizSrVlv5ZJ5WJ128MAblWk3fRFPya
Cs/klkTT58ehBSr61sXVP+NpkF7MWOBu2CNg66U40a/Eb+v4poxNaIjXKvQtf51S
y5yGwmTc7IJg8HuohT7K3/pcsEt0jvYSwvvDFUIz5WdOR5RmB7WkDRGh8Zaior3z
tzx6AKhx/aXmAc/i4BDavDxZeFC0d79H3S1+TvFsvhyIZXIFTB0sTzWreZZxSOjk
Mz6xxgWGdc27lsbZbKU7N+c+GnWrRlTjimU1AfPLJQgehIejR9pSyZ2Y5BAqB7Qr
f8Tvc8jc1kDx473sUUla6ELEuJMIISK1qam/B7buxZ1r/ngWRiQsqAHznm7OYk69
ttXBeHxS1b+HrcJMWfROkzsTuG6G//axMCb6x0MuyOgLXk87aDnDx1fPn62R+tq7
T4JvW51TSnlNNh75zA+8w3UzDHy2By0H6NSfiLerNnF7LGCXk7AiwQsaplrEjo/1
/4NraAqy1eO69SyozSiRuuA5KemlyPwJokpp2HMJX3cry2J7lV0+wnaaorQzz5Fi
7gRRlqXrOGwEcEG6i62VbIv2VW3Zy+qjaD3HRWXfKXXjpXske41Trv2qPI2/kGtJ
TRWSWdTQ42oYOaEg/KUh0GnEoZerj50JC1qGmwElKYgd+2XQ8qR7uIB5qQARAQAB
tDFNYXR0aGlhcyBHZWlnZXIgPG1hdHRoaWFzLmdlaWdlcjEwMjRAdHV0YW5vdGEu
ZGU+iQJUBBMBCgA+FiEEwuGmy/3s5RGopBdtGL0QaztsVHUFAmJGNsQCGwMFCQPC
ZwAFCwkIBwIGFQoJCAsCBBYCAwECHgECF4AACgkQGL0QaztsVHVMxQ/+M5JEQ5wk
DDblHGUlK8IBnPM5peuDrMdQAsOQ5nSv90gl4z4HkRgomS70xMpvoS+g/8hPym4G
PXpSFJsZWjFevACWMzZO84pqJhPaFnmjh3utkkiblNf8Wi350K+luAlRvT1FVD6i
HM6kOxU0P9t9+PU38FH299oRw2qEqDw5Wx+Hrnp4gaGv1mssvAMiXeaaPGx4KSz8
sNXADHJDo78U6RGJM/rSng/8M7zd3c6E8MIH958mlWjUb8T10AZ/otH3nFSRIfds
5MdnnrsKAK3DMW4RanRWHPvTsICDDkuRvigd32waQRdZeA3dNbPxM6tKDL9GEH8Q
AnkShJ7VmTXP9CV20vj15mleoeDMgqhX5KEOsc3DMnKcVqdb9CzHj6jNSFUverk1
bBNaJpIiWwtwjueR4Hgdof80AAgRin4YnWaOaPTSusrKyN8dCRVcRIbauVooWLil
q2OrWftDVmmNciwoHr5/WDPNgkv9DAgY+DX8Y8LMWAkXgpB0KniiQaLzrW34zjnP
ALTLTIvNid6YX8KOY6KhAVWfVdMC5j6GEGfbfyMLz63YPxA9Q1Af6oXS8MbdHyBw
JV8ns2xm5fD2vZVw6JI1e8AMMDjH2fAqmH23MG0fN0zd2NUToHmvhX9APSzJIbET
doFPn/mI/az4Oh24WHf3Ozr+XEDyWcyy1y+5Ag0EYkY2xAEQANL26Ixtq1QMUM+5
MHl2FK4foRODoKHe4ZzdOAumUBPJE/pxGVlVxCqzC+LUeFvA8LTYCt1B60yRveYR
4mmPTA7nAerG2m4aQPeIfzz6HXWkiu9mzgxqjhPxitiMR5f1du1rAWGPZxSkhdW6
fDWT4PkHoY78jbQXWYEnV85rwtZIZIduHGKWzyxln3qjrefmB04QkPJ2BDOsRTtD
YeNddHAvcgZtyepqZka9lpowQTY6TXwM8uYArEa7Hll/4r9rcvkVQUxf8jqYpZ3v
PLSzvvaDouH7WAg5nUaTeWAQdSq108rNRSTgScLZWjwmhFBA46RneRpij2OJ0lW4
QqFTlldjWXzgGj6u4nbXrSERGaPwyLGIkHoKbnTAm7791d/Y5UQImuPb1tIg5Pf7
OhtyWw3bstVDa5MvIUuGpi5yKPirhrtAfdZ3H2/HR814JuL2BYdjyCuR/Sj/lZTx
+gJ0bm+Llr0KZDhjKMeWaqVqsD4bybgEe4d3zE4sj9GZ0tNUvXfPaRGY6tgh9sgT
Iy28vnyYpFX+oSIZXRreDpfzyjDhvNbB+AFsPN5OXqaBpmu/378T5nRpUj/qbqEZ
EsloCbAmgHfvIysQWYdJ+63S3ZqpbEQRa4Y7DeybaLi8xTMfdWa19T7vQY3mVWn5
ZooycK4fkbedu19+5l8zfhR7oWyBABEBAAGJAjwEGAEKACYWIQTC4abL/ezlEaik
F20YvRBrO2xUdQUCYkY2xAIbDAUJA8JnAAAKCRAYvRBrO2xUdRuPD/4tdAf8nxsA
upo5O99E4AS59OTXPQuVgt1U2Z7ssDvZ3O6qbZvIBWQ0NqnCsprCt71M6cWC2dkq
WUs3oRRu4IzuB4LErcTr597k+iltJ60rhDL/hxSumToH6FSX1w8EWJVg3xgP4U39
HSx6QOlZ3bTgd9dS5S46jOptIYzX5wYkNzyMj1hbmTg0lVyMtWjqfCLNmF3EzGGC
BLR3tMOxZURrxx8tL48iJlFyxJG3XahoyxDSNepo5HZ+AUnNq2TJPoPJQfb1/GB/
/LycKSXWgblyWuGRlgoCE1JcdwuRM5hI2xugZQrhgZaPUBch1MSoiIqwgR1A8NPL
iypUPnwG4vEaVbMtem7OUghsx+fYwuGq0T7/ezjyVRv86U2gU1bmbxojct1AXSCT
FCCR3Y8QAHV9o8U/eZ1XzcEZsXFd6siO5nEBl9HaTHh5gWDrk/molP85S7Y9JIBP
wZygBjWOPCCkFlIuiPQlXsJezVu93ydz7uCNIJfHv30oVedcYHN1Wr7B/1j8wXMy
wqW4Nw54yZ8zaJIo01Khym6cFFVXoAUZa+5QRvSmjnm1Go+ZwZA9i7zo/6LLSpeR
04+4a1Daysk0fTf+DscrxQbUBZX17e1n/EtLS8/pp+Xb/k1JK1iiNcdpfLJ7RNik
GX00szhWs5riRMzIibFDsE/FyYVNX2VHQg==
=onWA
-END PGP PUBLIC KEY BLOCK-

Bug#1035949: mariadb: upgrade issue: mariadb-server-10.5 fails to stop after all other -10.5 packages were removed

[Otto Kekäläinen]

Thanks Frederick for the report!

Do you still have the output of apt? Can you copy-paste here or attach log
to show exactly what happened?

It is likely that you hit this bug, but exact details would help confirm,
and also help build CI test/scenario to ensure we have realistic upgrade
testing.

Bug#1037257: is 5 years out of date, has warnings

[Marco d'Itri]

Package: python3-junos-eznc
Version: 2.1.7-5
Severity: normal

2.1.7 was released in 2017.

Running a playbook which depends on this package makes Ansible emit
these warning:

/usr/lib/python3/dist-packages/jnpr/junos/device.py:838: SyntaxWarning: "is 
not" with a literal. Did you mean "!="?
  if rpc_rsp_e.text is not None and rpc_rsp_e.text.strip() is not '':
/usr/lib/python3/dist-packages/jnpr/junos/device.py:1222: SyntaxWarning: "is 
not" with a literal. Did you mean "!="?
  if auto_probe is not 0:
/usr/lib/python3/dist-packages/jnpr/junos/rpcmeta.py:145: SyntaxWarning: "is 
not" with a literal. Did you mean "!="?
  if model and filter_xml is None and options.get('format') \
/usr/lib/python3/dist-packages/jnpr/junos/utils/start_shell.py:147: 
SyntaxWarning: "is not" with a literal. Did you mean "!="?
  self.last_ok = got is not ''

-- 
ciao,
Marco


signature.asc
Description: PGP signature

Bug#1037255: lsd: should recommend fonts-font-awesome

[Holger Levsen]

Package: lsd
Version: 0.23.1-3
Severity: normal

Dear Maintainer,

thank you for packaging lsd. Unfortunatly on some systems I tested it it doesn't
render icons correctly, which is due to missing fonts. So please make lsd
recommend fonts-font-awesome, which at least makes sure that these common
directory names show correct icons:

$ lsd
 Desktop   Documents   Downloads   Music   Pictures   Public   Templates 
  Videos

With fonts-font-awesome installed, I can see icons for all of these, except the
Downloads folder, where only F498 is shown to me. So this needs another 
fonts package recommended...

Please excuse filing this bug without attaching a screenshot...


-- 
cheers,
Holger

 ⢀⣴⠾⠻⢶⣦⠀
 ⣾⠁⢠⠒⠀⣿⡁  holger@(debian|reproducible-builds|layer-acht).org
 ⢿⡄⠘⠷⠚⠋⠀  OpenPGP: B8BF54137B09D35CF026FE9D 091AB856069AAA1C
 ⠈⠳⣄

Humans despise their genitals so much they often use them as metaphors for
humans they dislike.


signature.asc
Description: PGP signature

Bug#1035949: mariadb: upgrade issue: mariadb-server-10.5 fails to stop after all other -10.5 packages were removed,Date: Thu, 11 May 2023 16:46:43 +0200

[Frédéric Loyer]

Hi,

I have just upgraded Debian from 11 to 12, and its mariadb-server. The 
command was simply "apt full-upgrade".


I have get the #1035949 bug even if I havn't the zoph package, nor 
default-mysql-server.


I didn't manage to make it works with:

# apt --fix-broken install mariadb-client


However, I could continue the installation by killing the mariadb-server 
process, then the "apt install mariadb-server" didn't have to stop the 
server and can install successfully the mariadb-server.

Bug#1037254: extrepo apt-transport-tor and onion support

[Patrick Schleizer]

Package: extrepo
Severity: wishlist

Dear maintainer,

- most clearnet repositories are reachable over Tor. This is simple to 
accomplish by using the apt-transport-tor package (in 
packages.debian.org for a long time already) by using the tor+https 
syntax in sources.list.


- More and more repositories offer alter alternative onions domains. 
Even Debian's official deb.debian.org as an alternative onion domain. 
https://onion.debian.org/


feature request:

Could you please add a feature to use either tor+https or tor+...onion?

The following options are already supported:

sudo extrepo enable whonix
sudo extrepo enable whonix_proposed
sudo extrepo enable whonix_testers
sudo extrepo enable whonix_developers

I am not sure how alternative onions option could be selected. In 
/etc/extrepo/config.yaml to set this globally would be handy. However, 
some repositories might have (temporarily) broken onions. Therefore a 
--onion command line option would be handy. This should fail if the 
repositories doesn't have an onion in its corresponding data file.


Kind regards,
Patrick

Bug#1036661: hamster-time-tracker: missing dependency on python3-gi-cairo

[Raphael Hertzog]

Control: tag -1 + pending

On Wed, 24 May 2023, Gerald Jansen wrote:
> see https://github.com/projecthamster/hamster/issues/722

Thanks for the report. I committed a fix in the repository. Now waiting
for the next upstream release that shouldn't be too far in the future
from what I saw in recent activities :-)

Cheers,
-- 
  ⢀⣴⠾⠻⢶⣦⠀   Raphaël Hertzog 
  ⣾⠁⢠⠒⠀⣿⡁
  ⢿⡄⠘⠷⠚⠋The Debian Handbook: https://debian-handbook.info/get/
  ⠈⠳⣄   Debian Long Term Support: https://deb.li/LTS

Bug#1037253: ITP: python-inject -- Python dependency injection framework

[Edward Betts]

Package: wnpp
Severity: wishlist
Owner: Edward Betts 
X-Debbugs-Cc: debian-de...@lists.debian.org, debian-pyt...@lists.debian.org

* Package name: python-inject
  Version : 4.3.1
  Upstream Author : Ivan Korobkov 
* URL : https://github.com/ivankorobkov/python-inject
* License : Apache-2.0
  Programming Lang: Python
  Description : Python dependency injection framework

  The inject package is a Python library that provides a lightweight dependency
  injection framework. It simplifies the management of dependencies in your
  Python projects, allowing for decoupled and modular code design.
  .
  Features:
  .
   - Facilitates the injection of dependencies into Python classes and
 functions.
   - Supports various dependency injection patterns, including constructor
 injection and attribute injection.
   - Allows for the configuration of dependency bindings and scopes.
   - Promotes code reusability, testability, and maintainability through loose
 coupling.
   - Supports both runtime and compile-time dependency injection.
   - Provides integration with popular frameworks and tools.
  .
  Dependency injection is a powerful design pattern that helps manage complex
  dependencies between components. The inject library offers an elegant and
  straightforward way to implement dependency injection in Python, promoting
  better separation of concerns and easier unit testing.

I plan to maintain this package as part of the Python team.

Bug#1037252: golang-github-smallstep-cli: provide a binary package containing the step-cli executable

[Drew Parsons]

Source: golang-github-smallstep-cli
Version: 0.15.16+ds-3
Severity: important
X-Debbugs-Cc: debian...@lists.debian.org

Currently golang-github-smallstep-cli only provides the source code
(golang-github-smallstep-cli-dev package) for use when building other
packages.

But the upstream smallstep-cli code builds a binary executable (either
bin/step or bin/step-cli). Perhaps this is new in more recent upstream
releases, the toplevel Makefile is now quite different.

This executable has started to be required for two-factor
authentication enabling access of some HPC computational facilities,
so it's important for archive integrity to have it build for Debian
rather than grabbing prebuilt executables such as those provided at
https://github.com/smallstep/cli/releases/tag/v0.24.4

Can src:golang-github-smallstep-cli please now start providing the cli
binary executable?

I think the binary package should be called smallstep-cli (or maybe
step-cli) but you might have your own preferred naming policy.

Bug#1037238: debian-installer: separate /usr ruins opening a shell in rescue

[Pascal Hambourg]

On 09/06/2023 at 01:27, tomas k wrote:


I'm on a different system than the problem one. For years I have had to boot 
knoppix
and run a chroot to change a password I've forgotten, because I use a separate 
usr partition,
and rescue thinks it's the root directory. Butr without etc it's not going to 
work.


Rescue mode does not "think" anything about any partition. It is up to 
the user to select the proper root partition, although I admit this 
might be improved by providing more information about available 
partitions to the user.


With /usr-merged layout (default since buster IIRC), a separate /usr 
must be mounted before running any program. The initramfs mounts a 
separate /usr before running init, but the installer rescue mode did not 
before running a shell. This feature has been added to bookworm 
installer (rescue 1.86) but not backported to bullseye installer AFAIK.



My suggestion is, if a user wants a separate usr, to place a hidden flag file 
in root, the presence of which
informs the system to mount THAT partition AND look in /etc/fstab, and mount 
usr.


/etc/fstab already exists in the root filesystem, so no need to create a 
flag file.

Bug#1037251: assert ""win && m_cr"" failed in Init(): invalid dc for wxOverla

[Giuseppe Sacco]

Package: passwordsafe
Version: 1.16.0+dfsg-4
Severity: normal

Dear Maintainer,
since a few weeks, while using pwsafe, I get this message:

An assertion failed!
./src/gtk/overlay.cpp(98): assert ""win && m_cr"" failed in Init(): invalid dc 
for wxOverlay

then I have to press the "stop" button and restart pwsafe.

Thank you,
Giuseppe

-- System Information:
Debian Release: 12.0
  APT prefers testing-security
  APT policy: (500, 'testing-security'), (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 6.1.0-9-amd64 (SMP w/4 CPU threads; PREEMPT)
Locale: LANG=it_IT.utf8, LC_CTYPE=it_IT.utf8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages passwordsafe depends on:
ii  libc6    2.36-9
ii  libgcc-s1    12.2.0-14
ii  libmagic1    1:5.44-3
ii  libqrencode4 4.1.1-1
ii  libstdc++6   12.2.0-14
ii  libuuid1 2.38.1-5+b1
ii  libwxbase3.2-1   3.2.2+dfsg-2
ii  libwxgtk3.2-1    3.2.2+dfsg-2
ii  libx11-6 2:1.8.4-2
ii  libxerces-c3.2   3.2.4+debian-1
ii  libxtst6 2:1.2.3-1.1
ii  libykpers-1-1    1.20.0-3
ii  passwordsafe-common  1.16.0+dfsg-4

Versions of packages passwordsafe recommends:
pn  xvkbd  

passwordsafe suggests no packages.

-- no debconf information

Bug#1037250: ITP: fangfrisch -- Update and verify unofficial Clam Anti-Virus signatures

[Gürkan Myczko]

Package: wnpp
Severity: wishlist
Owner: Gürkan Myczko 
X-Debbugs-Cc: debian-de...@lists.debian.org, maeg...@ee.ethz.ch, 
car...@debian.org


* Package name: fangfrisch
  Version : 1.6.1
  Upstream Authors: Ralph Seichter
  URL : https://github.com/rseichter/fangfrisch
* License : GPL-3-or-later
  Description : Update and verify unofficial Clam Anti-Virus 
signatures

 This is a sibling of the Clam Anti-Virus freshclam utility. It allows
 downloading virus definition files that are not official ClamAV canon,
 e.g. from Sanesecurity, URLhaus and others. Fangfrisch was designed 
with

 security in mind, to be run by an unprivileged user only.

Bug#1037249: adb: android-debug-bridge daemon hangs at start (no daemon start)

[Will B.]

Package: adb
Version: 1:29.0.6-28
Severity: important
X-Debbugs-Cc: ksu...@gmail.com

Dear Maintainer,

Ever since a few weeks ago, plugging an android device and starting the adb
daemon hangs for some time before being usable i.e. the daemon does not seem to
fire up straight away once a device is plugged in and will take some time
before starting.

I do not know what may have caused this issue and I believe it did not come
from an upgrade on the android device (as the device is pinned to a specific
version) and, beyond app updates, does not receive "mods" that could have
tampered with adb or its daemon.

The issue is found in testing as well as stable.

Once the daemon has started, it remains functioning for the remainder of its
use, even if device is plugged-off and plugged back in a few minutes later.

I have not tried the "experimental" version of adb which seems to be the latest
version available for this package nor did I see the issue mentioned when
reporting this bug. Please disregard if already fixed.

Regards


-- System Information:
Debian Release: 12.0
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'testing-security'), (500, 
'testing-proposed-updates'), (50, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 6.1.0-9-amd64 (SMP w/12 CPU threads; PREEMPT)
Kernel taint flags: TAINT_WARN
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages adb depends on:
ii  android-libbase   1:29.0.6-28
ii  android-libboringssl  13.0.0+r24-2
ii  android-libcutils 1:29.0.6-28
ii  android-liblog1:29.0.6-28
ii  libc6 2.36-9
ii  libgcc-s1 12.2.0-14
ii  libstdc++612.2.0-14
ii  libusb-1.0-0  2:1.0.26-1

Versions of packages adb recommends:
pn  android-sdk-platform-tools-common  

adb suggests no packages.

-- no debconf information

Bug#820423: 64-bit time_t transition for 32-bit archs: a proposal

[Ansgar]

On Fri, 2023-06-09 at 09:22 +, Holger Levsen wrote:
> On Fri, Jun 09, 2023 at 11:49:21AM +0800, Paul Wise wrote:
> > > You mean by somehow refreshing the signatures there?
> > Some ideas for that are here:
> > https://bugs.debian.org/763419
> > https://bugs.debian.org/820423
> 
> interesting. thanks for those pointers!

I did write a prototype once, but haven't touched it for some time. For
example:

https://defi.43-1.org/debian-defi-archive/debian/dists/stretch-backports/InRelease

(It should also work for other things.)

The test key is available from
https://defi.43-1.org/defibrillator-test-key.asc

Ansgar

Bug#1004746: lintian: provide a check for Python package version numbers validity

[Julian Gilbey]

On Thu, Jul 14, 2022 at 09:02:40AM +0100, Julian Gilbey wrote:
> On Tue, Feb 01, 2022 at 07:57:58PM +0500, Andrey Rahmatullin wrote:
> > On Tue, Feb 01, 2022 at 02:45:21PM +, Julian Gilbey wrote:
> > > I just hit two packages which gave me the following warning when
> > > pkg_resources tried to load them:
> > > 
> > > /usr/lib/python3/dist-packages/pkg_resources/__init__.py:116: 
> > > PkgResourcesDeprecationWarning: 1.12.1-git20200711.33e2d80-dfsg1-0.6 is 
> > > an invalid version and will not be supported in a future release
> > >   warnings.warn(
> > This looks strange to me. I wouldn't expect the package version
> > (especially with the Debian part) to be there.
> > I see flatbuffers runs `VERSION=$(DEB_VERSION) python$$pv setup.py build`,
> > I don't know why, or whether this is a good idea.
> 
> Some updates on this:
> 
> * The version information can also appear in
>   /usr/lib/python3/dist-packages/*.dist-info/METADATA
> * The upstream standard is defined in PEP 440:
>   https://peps.python.org/pep-0440/
> 
> I agree, flatbuffers is doing weird stuff.
> 
> Best wishes,
> 
>Julian

A further update: a package with this type of bug recently caused an
RC error, as it prevented other packages from loading:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036947

So if this check is implemented, it should probably raise an lintian
Error if a package fails this check.  (The related feature request
#1005043 should probably only raise a warning.)

Best wishes,

   Julian

Bug#969482: ITP: glab -- An open-source GitLab command line tool

[Nicolas Schier]

On Tue, Jan 24, 2023 at 12:23:19PM -0500 Antoine Beaupré wrote:
> On 2020-09-03 16:21:32, TODO wrote:
> > Package: wnpp
> > Severity: wishlist
> > Owner: TODO 
> >
> > * Package name: glab
> >   Version : 1.10.0-1
> >   Upstream Author : Clement Sam
> > * URL : https://github.com/profclems/glab
> 
> Hi Clement Sam!
> 
> You filed this ITP (Intent To Package) back in 2020, do you still intend
> on publishing your work in Debian?
> 
> I see there was a packaging discussion here:
> 
> https://gitlab.com/gitlab-org/cli/-/issues/205
> 
> ... but it was closed in favor of using makedeb.org, which we typically
> do not favor in debian.org itself. :)
> 
> As things stand now, you are the owner of this bug and others might be
> respectfully waiting for you to complete the work instead of jumping in
> and bringing glab in Debian per se. If you do not intend to continue
> this work, let us know and someone else might step up. :)
> 
[...]
> 
> so we don't actually know if we need to package more deps here...
>
> Anyways, let us know where things are so we can move forward
> here. Thanks!

While trying to prepackage glab (v1.30) at work (dh-make-golang + [1]), I had
to update golang-github-xanzy-go-gitlab-dev from its current version in
testing/unstable (0.73.1-2) to 0.84.0.

Other dependency package updates were not necessary.

Antoine, does it makes sense that I step in and prepare a non-maintainer upload
(sponsoring would be needed), or does the golang-team take care of that?

Iff Clement Sam is no more responding: is there a gentle, official way that
someone may take over the ITP?

Kind regards,
Nicolas

Bug#1037248: ITP: libcss-inliner-perl -- Convert CSS

[Andrew Ruthven]

Package: wnpp
Owner: Andrew Ruthven 
Severity: wishlist
X-Debbugs-CC: debian-de...@lists.debian.org, debian-p...@lists.debian.org

* Package name: libcss-inliner-perl
  Version : 4018
  Upstream Author : Kevin Kamel 
* URL : https://metacpan.org/release/CSS-Inliner
* License : Artistic or GPL-1+
  Programming Lang: Perl
  Description : Convert CSS 

Bug#1037247: Upgrade to 2.5.5-3+deb10u5 breaks puppet-agent

[IB Development Team]

Package: ruby2.5
Version: 2.5.5-3+deb10u5

After upgrading...

Unpacking libruby2.5:amd64 (2.5.5-3+deb10u5) over (2.5.5-3+deb10u4) ...
Unpacking ruby2.5 (2.5.5-3+deb10u5) over (2.5.5-3+deb10u4) ...

...in Debian 10 (same for i386 and amd64) puppet-agent stopped working 
and throws errors like


Error: /File[/var/lib/puppet/locales]: Failed to generate additional 
resources using 'eval_generate': Failed to open TCP connection to 
: (Connection refused - connect(2) for 
"" port )


Puppet server name is set correctly in /etc/puppet/puppet.conf but empty 
in above error message.


Downgrading both packages to 2.5.5-3+deb10u4 resolves this issue.

--

Regards,
Paweł Bogusławski

IB Development Team
E:d...@ib.pl

Bug#1036644: linux-image-6.1.0-9-amd64: System crashes. Netconsole reports CPUs not responding to MCE broadcast

[Olivier Berger]

Hi.

As a followup, I've been able to get another crash, this time when netconsole 
was on, and got a bunch of traces, in the attached logs.

Hope this helps identify the culprit... probably i915/drm ?

The title of the bug report should be changed, but I'm not sure how best to 
retitle.

Best regards,

Le Wed, May 24, 2023 at 01:35:31PM +0200, Olivier Berger a écrit :
> The i915 hint is interesting.
> 
> Salvatore Bonaccorso  writes:
> 
> >
> > Would you be able to bisect the changes between 6.1.20 and 6.1.27 to
> > identify the culprit, though not instantntly triggerable? Maybe
> > focusing around the i915 changes, I stumpled over a2b6e99d8a62
> > ("drm/i915: Disable DC states for all commits") which was backported
> > to 6.1.23.
> >

-- 
Olivier BERGER
https://www-public.imtbs-tsp.eu/~berger_o/ - OpenPGP 2048R/0xF9EAE3A65819D7E8
Ingenieur Recherche - Dept INF
Institut Mines-Telecom, Telecom SudParis, Evry (France)
[  118.158855] netpoll: netconsole: local port 
[  118.158865] netpoll: netconsole: local IPv4 address 192.168.0.35
[  118.158870] netpoll: netconsole: interface 'wlp0s20f3'
[  118.158872] netpoll: netconsole: remote port 
[  118.158874] netpoll: netconsole: remote IPv4 address 192.168.0.47
[  118.158877] netpoll: netconsole: remote ethernet address 38:2c:4a:b1:63:94
[  118.159010] [ cut here ]
[  118.159012] WARNING: CPU: 3 PID: 3290 at net/mac80211/tx.c:3723 
ieee80211_tx_dequeue+0xcb3/0xd30 [mac80211]
[  118.159102] Modules linked in: netconsole(+) xt_conntrack nft_chain_nat 
xt_MASQUERADE nf_nat nf_conntrack_netlink nf_conntrack nf_defrag_ipv6 
nf_defrag_ipv4 xfrm_user xfrm_algo xt_addrtype nft_compat nf_tables nfnetlink 
br_netfilter bridge stp llc vboxnetadp(OE) vboxnetflt(OE) vboxdrv(OE) ctr ccm 
rfcomm snd_seq_dummy snd_hrtimer snd_seq cmac algif_hash algif_skcipher af_alg 
squashfs cpufreq_ondemand qrtr cpufreq_conservative cpufreq_powersave overlay 
bnep cpufreq_userspace hid_logitech_hidpp binfmt_misc nls_ascii nls_cp437 vfat 
fat snd_ctl_led snd_soc_skl_hda_dsp snd_soc_intel_hda_dsp_common 
snd_soc_hdac_hdmi snd_sof_probes snd_hda_codec_hdmi hid_logitech_dj 
snd_hda_codec_realtek snd_hda_codec_generic ledtrig_audio snd_soc_dmic 
snd_sof_pci_intel_tgl iwlmvm snd_sof_intel_hda_common btusb btrtl btbcm btintel 
soundwire_intel btmtk soundwire_generic_allocation mac80211 soundwire_cadence 
snd_sof_intel_hda snd_sof_pci bluetooth snd_sof_xtensa_dsp snd_sof 
snd_usb_audio snd_sof_utils
[  118.159163]  snd_soc_hdac_hda libarc4 snd_hda_ext_core 
snd_soc_acpi_intel_match snd_usbmidi_lib snd_soc_acpi snd_rawmidi 
x86_pkg_temp_thermal intel_powerclamp usbhid snd_seq_device snd_soc_core 
iwlwifi coretemp snd_compress jitterentropy_rng soundwire_bus joydev drbg 
snd_hda_intel mei_hdcp kvm_intel snd_intel_dspcfg snd_intel_sdw_acpi 
pmt_telemetry snd_hda_codec intel_rapl_msr pmt_class ansi_cprng uvcvideo 
cfg80211 kvm snd_hda_core hp_wmi videobuf2_vmalloc snd_hwdep platform_profile 
irqbypass ecdh_generic videobuf2_memops videobuf2_v4l2 snd_pcm 
processor_thermal_device_pci_legacy processor_thermal_device rapl 
processor_thermal_rfim videobuf2_common processor_thermal_mbox snd_timer 
iTCO_wdt intel_cstate processor_thermal_rapl ucsi_acpi intel_uncore videodev 
typec_ucsi intel_pmc_bxt snd iTCO_vendor_support roles mei_me intel_rapl_common 
mc pcspkr ecc wmi_bmof ee1004 watchdog soundcore mei rfkill intel_vsec 
igen6_edac typec intel_soc_dts_iosf int3403_thermal int340x_thermal_zone
[  118.159218]  int3400_thermal acpi_thermal_rel intel_hid sparse_keymap 
intel_pmc_core acpi_pad ac hid_multitouch serio_raw evdev nfsd msr parport_pc 
auth_rpcgss ppdev nfs_acl lockd lp grace parport fuse loop dm_mod efi_pstore 
configfs sunrpc ip_tables x_tables autofs4 ext4 crc16 mbcache jbd2 btrfs 
blake2b_generic zstd_compress efivarfs raid10 raid456 async_raid6_recov 
async_memcpy async_pq async_xor async_tx xor raid6_pq libcrc32c crc32c_generic 
raid1 raid0 multipath linear md_mod i915 drm_buddy i2c_algo_bit crc32_pclmul 
drm_display_helper nvme crc32c_intel nvme_core cec hid_generic rc_core 
rtsx_pci_sdmmc t10_pi ghash_clmulni_intel mmc_core ttm i2c_hid_acpi 
crc64_rocksoft_generic crc64_rocksoft drm_kms_helper r8169 crc_t10dif realtek 
xhci_pci mdio_devres crct10dif_generic i2c_hid aesni_intel xhci_hcd 
intel_lpss_pci crct10dif_pclmul crypto_simd i2c_i801 intel_lpss crc64 cryptd 
drm usbcore i2c_smbus libphy rtsx_pci crct10dif_common idma64 usb_common vmd 
hid battery video wmi button
[  118.159289]  sha512_ssse3 sha512_generic
[  118.159292] CPU: 3 PID: 3290 Comm: modprobe Tainted: G   OE  
6.1.0-9-amd64 #1  Debian 6.1.27-1
[  118.159298] Hardware name: HP HP ProBook 450 G8 Notebook PC/87E1, BIOS T70 
Ver. 01.13.01 03/30/2023
[  118.159300] RIP: 0010:ieee80211_tx_dequeue+0xcb3/0xd30 [mac80211]
[  118.159374] Code: ff ff 01 ce 48 89 ef 29 d6 e8 09 ab 35 d5 48 85 c0 0f 84 
23 f8 ff ff 0f b7 85 b8 00 00 00 48 03 85 c8 00 00 00 e9 f5 f7 ff ff <0f> 0b e9 
ab f3 ff ff 

Bug#1037246: ITP: libhtml-query-perl -- perform jQuery-like queries on HTML::Element trees

[Andrew Ruthven]

Package: wnpp
Owner: Andrew Ruthven 
Severity: wishlist
X-Debbugs-CC: debian-de...@lists.debian.org, debian-p...@lists.debian.org

* Package name: libhtml-query-perl
  Version : 0.09
  Upstream Author : Kevin Kamel 
* URL : https://metacpan.org/release/HTML-Query
* License : Artistic or GPL-1+
  Programming Lang: Perl
  Description : perform jQuery-like queries on HTML::Element trees

The HTML::Query module is an add-on for the HTML::Tree module set. It provides
a simple way to select one or more elements from a tree using a query syntax
inspired by jQuery. This selector syntax will be reassuringly familiar to
anyone who has ever written a CSS selector.

HTML::Query is not an attempt to provide a complete (or even near-complete)
implementation of jQuery in Perl (see Ingy's pQuery module for a more
ambitious attempt at that). Rather, it borrows some of the tried and tested
selector syntax from jQuery (and CSS) that can easily be mapped onto the
look_down() method provided by the HTML::Element module.

The package will be maintained under the umbrella of the Debian Perl Group.

This package is being added to Debian as it is dependency for CSS::Inliner which
will be used by v5.0.4 of Request Tracker.

--
Generated with the help of dpt-gen-itp(1) from pkg-perl-tools.
-- 
Andrew Ruthven, Wellington, New Zealand
and...@etc.gen.nz |
Catalyst Cloud:   | This space intentionally left blank
 https://catalystcloud.nz |

Bug#1037178: puppet does not sync files anymore after recent ruby2.5 security upload

[Schmidt, Bernhard]

Am Mittwoch, dem 07.06.2023 um 15:28 +0200 schrieb Bernhard Schmidt:

Hi Utkarsh,


> > > Yep, I'm taking a look to prep something for 2.5.
> > 
> > I've prepared a fix for the regression and uploaded the binaries
> > at:
> > https://people.debian.org/~utkarsh/lts/ruby2.5/
> > 
> > Can you please give these a try and see if that fixes the
> > regression you're seeing?
> 
> Looking good!

Any news here?

Bernhard