from:"Anton Gladky"

Bug#1064982: gnuplot-qt: gnuplot displays a window with nothing in it

2024-02-29 Thread Anton Gladky

Hi Vincent,

thanks a lot for this deep dive into the problem!
Really appreciate it!

Best regards

Anton

Bug#1061200: transition: vtk9

2024-01-20 Thread Anton Gladky

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition
X-Debbugs-Cc: v...@packages.debian.org
Control: affects -1 + src:vtk9

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512


Dear release team,

please schedule vtk9.3 transition.

Ben file:

title = "vtk9";
is_affected = .depends ~ "libvtk9\.1|libvtk9\.1\-qt" | .depends ~ 
"libvtk9\.3|libvtk9\.3\-qt";
is_good = .depends ~ "libvtk9\.3|libvtk9\.3\-qt";
is_bad = .depends ~ "libvtk9\.1|libvtk9\.1\-qt";

I have done a full rebuild and some failures are detected. Bugs (most of them 
with patches) will
be filed in the next time.

Thank you

Anton

-BEGIN PGP SIGNATURE-
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=56QT
-END PGP SIGNATURE-

Bug#1060806: RM: yade [ppc64el i386 s390x] -- ROM; Reducing available archs

2024-01-14 Thread Anton Gladky

Package: ftp.debian.org
Severity: normal
User: ftp.debian@packages.debian.org
Usertags: remove

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Dear FTP team,

please remove yade on [ppc64el  i386  s390x].

Thanks

Anton


-BEGIN PGP SIGNATURE-
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=7uCp
-END PGP SIGNATURE-

Bug#1060454: RM: boost1.81 -- ROM; Superseded by boost1.83

2024-01-11 Thread Anton Gladky

Package: ftp.debian.org
Severity: normal
User: ftp.debian@packages.debian.org
Usertags: remove
X-Debbugs-Cc: boost1...@packages.debian.org
Control: affects -1 + src:boost1.81

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Dear FTP team,

please remove boost1.81 because it is superseded
by boost1.83

Thanks

Anton


-BEGIN PGP SIGNATURE-

iQJFBAEBCgAvFiEEu71F6oGKuG/2fnKF0+Fzg8+n/wYFAmWgNFgRHGdsYWRrQGRl
Ymlhbi5vcmcACgkQ0+Fzg8+n/waexg//QXnbojEQNJNFKaCsfCM1q7Ncgzu7sE+Q
YJCpWjZj+ic2yFUd+AJ7Sbf+3dfeNvWpOnRxxv7vD1C9nCX9euJ6M+fcxUbH8mOn
lvvGKE4UYLJt3EQA2U0lyp63oy4NJJgK2ehAYcwxQM+3Psirr3iGzOnIeiUBNgnv
KZRoqrpDIMkbmyc+TDJRdzRK4v4i0b8DH10fAv2LLlymTNBFaNe3K1S2r3wLMxPg
zshnlHyCQXL5fAjsfRrwX4CwHo5O4rE/bwxSXbh06jTVXN8HK88/TNJdfFI7hfW6
5SKysVCAaW46vSNO3PAEvC20KVOiYRzmHkUHyiCkJqPxEqbWo731uNrrSG2kBbmv
iFB0Bz5EyQEpNmMg2HNEdPVobCUI4UUj4Ps6DqhV1MFkhE20IYadPmNykegRD83I
9FLwfI+MmeNSvKVYMr+zqr1uo4rFeeYu2UgYJqN05enYpLUdw3tTslxzxBj+jvrN
xDHJKgG2iuxD7Uo7tRKjP1jx6zuDZ+VukyL2/Xp5AKBV6MgvbkcJnMC216C9MRPs
oEjYReHyS8rv/OAe255z8DJ63oDHW2QbZIdpbTwessJWemosPfZEiwE0OxRaWini
0015G0FtZ++pdzMFnjGtJ48dRo+RtIUIy3Z+hhOZraYjbwdKVRdaRPAT2nS+gmlc
y0CTVP+Od9c=
=83EV
-END PGP SIGNATURE-

Bug#1060453: RM: boost1.74 -- ROM; superseded by boost1.83

2024-01-11 Thread Anton Gladky

Package: ftp.debian.org
Severity: normal
User: ftp.debian@packages.debian.org
Usertags: remove
X-Debbugs-Cc: boost1...@packages.debian.org
Control: affects -1 + src:boost1.74

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Dear FTP team,

please remove boost1.74 because it is superseeded by boost1.83

Thanks

Anton


-BEGIN PGP SIGNATURE-
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=vLPR
-END PGP SIGNATURE-

Bug#1060299: libboost1.83-dev: After installing libboost-all-dev I can't perform an upgrade anymore

2024-01-08 Thread Anton Gladky

Hi,

thanks for the bugreport. You have a nice mix of many third-party repos
in the /etc/apt/sources.list, which can break the installation.

Regards

Anton


Am Di., 9. Jan. 2024 um 03:00 Uhr schrieb Harald 
:

> ~# apt-get update && apt-get upgrade
> Get:1
> http://download.opensuse.org/repositories/home:/hawkeye116477:/waterfox/Debian_Unstable
> InRelease [1,594 B]
> Hit:2 http://security.debian.org testing-security InRelease
> Get:3
> http://download.opensuse.org/repositories/home:/stevenpusser/Debian_10
> InRelease [1,547 B]
> Hit:4 https://noone.org/conkeror-nightly-debs sid InRelease
> Hit:5 https://deb.opera.com/opera-stable stable InRelease
> Hit:6 http://packages.microsoft.com/repos/code stable InRelease
> Hit:8 https://dl.winehq.org/wine-builds/debian trixie InRelease
> Hit:9 https://updates.signal.org/desktop/apt xenial InRelease
> Hit:10 http://ftp.de.debian.org/debian sid InRelease
> Hit:7 https://debian.qgis.org/debian-nightly sid InRelease
>
:

Bug#1059961: transition: benchmark

2024-01-03 Thread Anton Gladky

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition
X-Debbugs-Cc: benchm...@packages.debian.org
Control: affects -1 + src:benchmark

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Dear release team,

please schedule a tiny benchmark transition.

Thanks!

Ben file:

title = "benchmark";
is_affected = .depends ~ "libbenchmark1debian" | .depends ~ "libbenchmark1.8.3";
is_good = .depends ~ "libbenchmark1.8.3";
is_bad = .depends ~ "libbenchmark1debian";




-BEGIN PGP SIGNATURE-
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=EugD
-END PGP SIGNATURE-

Bug#1028489: boost1.83 as default

2023-12-17 Thread Anton Gladky

Hi Sebastian,

uploded.

Anton

Am So., 17. Dez. 2023 um 18:13 Uhr schrieb Sebastian Ramacher
:
...
> Please go ahead.
>
> Cheers
> --
> Sebastian Ramacher

Bug#1028489: boost1.83 as default

2023-11-16 Thread Anton Gladky

Hi Sebastian,

bugs are filed:

https://udd.debian.org/bugs/?release=na=ign=7=7=only=ftbfs-boost183-transition=gl...@debian.org=1=1=1=1#results

Regards

Anton

Bug#1056089: Link update

2023-11-16 Thread Anton Gladky

Please use this link for logs

qa-logs.debian.net/2023/10/26/autodock-vina_1.2.5-1_unstable_boost181.log

thanks

Anton

Bug#1056090: Link update

2023-11-16 Thread Anton Gladky

Please use this link for logs

http://qa-logs.debian.net/2023/10/26/aegisub_3.2.2+dfsg-7_unstable_boost181.log

Thanks

Anton

Bug#1056074: libreoffice: FTBFS: boost1.83 transition

2023-11-16 Thread Anton Gladky

Hi Rene,

thanks for the deep analysis. We did a full rebuild of related
packages and it looks like libreoffice was false negative.

Let's keep the bug open for now, till we switch to a newer
version and if all is OK, the bug will be closed.

Best regards

Anton

Bug#1055973: UDD link update

2023-11-14 Thread Anton Gladky

https://udd.debian.org/bugs/?release=na=ign=7=7=only=ftbfs-boost183-transition=gl...@debian.org=1=1=1=1#results

Bug#1055972: UDD link update

2023-11-14 Thread Anton Gladky

https://udd.debian.org/bugs/?release=na=ign=7=7=only=ftbfs-boost183-transition=gl...@debian.org=1=1=1=1#results

Bug#1028489: boost1.83 as default

2023-10-22 Thread Anton Gladky

retitle 1028489 transition: boost1.83
thanks

Dear release team, please consider an updated ben-file. Thanks!

Ben file:

title = "boost1.83";
is_affected = .depends ~ /libboost[a-z-.]*1\.[74]/
is_good = .depends ~ /libboost[a-z-.]*1\.83/
is_bad = .depends ~ /libboost[a-z-.]*1\.74/

Bug#1053912: transition: alglib

2023-10-17 Thread Anton Gladky

Hi Sebastian,

uploaded, thanks!

Anton


Am Di., 17. Okt. 2023 um 17:37 Uhr schrieb Sebastian Ramacher <
sramac...@debian.org>:

> Control: tags -1 confirmed
> Control: forwarded -1
> https://release.debian.org/transitions/html/auto-alglib.html
>
> Hi Anton
>
> On 2023-10-14 09:59:15 +0200, Anton Gladky wrote:
> > Please schedule the transition of alglib. All reverse dependencies are
> built and fine.
>
> Please go ahead.
>
> Cheers
> --
> Sebastian Ramacher
>

Bug#1053912: transition: alglib

2023-10-14 Thread Anton Gladky

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition
X-Debbugs-Cc: alg...@packages.debian.org
Control: affects -1 + src:alglib

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512


Please schedule the transition of alglib. All reverse dependencies are built 
and fine.

Thanks


Ben file:

title = "alglib";
is_affected = .depends ~ "libalglib3.19" | .depends ~ "libalglib4.0";
is_good = .depends ~ "libalglib4.0";
is_bad = .depends ~ "libalglib3.19";


-BEGIN PGP SIGNATURE-
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=rzva
-END PGP SIGNATURE-

Bug#1028489: transition: boost1.81

2023-10-05 Thread Anton Gladky

Hi James,

thanks for the offer. At the moment I am preparing 1.83 and will ask for
transition soon.

Best regards

David James  schrieb am Mi., 4. Okt. 2023, 20:23:

> Hi Anton,
>
> Is there anything I can do to help this transition along? I wish to
> package software that does not build on 1.74, but does on 1.81 and 1.82.
> If there's anyway I can assist with bumping boost-defaults to 1.81 or 1.82
> I would be happy to help.
>
> Regards,
>
> David James
>
>

Bug#1050019: Reporting an issue

2023-09-17 Thread Anton Gladky

forwarded 1050019 https://github.com/google/cctz/issues/274
thanks

Hi, I have reported the issue here [1]

[1] https://github.com/google/cctz/issues/274

Best regards

Anton

Bug#1040731: wslay: autopkgtest failure due to new CMake deprecation warning

2023-08-03 Thread Anton Gladky

Hi Timo,

thanks a lot for this upload! I have just prepared a
"normal" update, including your changes and some
others. If you want, you can cancel NMU or it will be
automatically rejected by the system.

Best regards


Anton


Am Di., 1. Aug. 2023 um 11:21 Uhr schrieb Timo Röhling :

> Hi Anton,
>
> On Fri, 21 Jul 2023 21:13:56 +0200 Anton Gladky  wrote:
> > Thanks a lot for the MR and update.
> > I will prepare an update and upload it in one week. If it's ok for you.
> > Otherwise, please NMU.
> I have just uploaded an NMU to DELAYED/5 and pushed the corresponding
> commits to the branch nmu-bug-1040731. Chris' solution is probably
> cleaner (I just hot-patched the CMakeLists.txt in autopkgtest), so
> if you have time this week, feel free to upload your own release,
> and I will cancel my upload.
>
>
> Cheers
> Timo
>
> --
> ⢀⣴⠾⠻⢶⣦⠀   ╭╮
> ⣾⠁⢠⠒⠀⣿⡁   │ Timo Röhling   │
> ⢿⡄⠘⠷⠚⠋⠀   │ 9B03 EBB9 8300 DF97 C2B1  23BF CC8C 6BDD 1403 F4CA │
> ⠈⠳⣄   ╰╯
>

Bug#1028489: transition: boost1.81

2023-06-22 Thread Anton Gladky

Hi Sebastian,

unfortunately no. I am cosidering though the packaging of 1.82. Let's see.

Regards

Anton

Am Di., 20. Juni 2023 um 00:35 Uhr schrieb Sebastian Ramacher
:
>
> Hi Anton
>
> On 2023-01-30 19:28:37 +0100, Anton Gladky wrote:
> > Hi Sebastian,
> >
> > thanks for the information. Let's do it just after release.
> >
> > Just for the record. The full test rebuild has been done (thanks to Lucas!).
> > Results and logs are here:
> >
> > http://qa-logs.debian.net/2023/01/15/
>
> Have bugs been filed for the failing builds?
>
> Cheers
> --
> Sebastian Ramacher

Bug#987283: Fixed

2023-05-29 Thread Anton Gladky

MR is merged

https://salsa.debian.org/security-tracker-team/security-tracker/-/merge_requests/114

Anton

Bug#1035687: ITP: stravalib -- Tool for accessing and downloading Strava data through Strava API

2023-05-07 Thread Anton Gladky

Package: wnpp
Severity: wishlist
Owner: Anton Gladky 
X-Debbugs-Cc: debian-de...@lists.debian.org

* Package name : stravalib
Version : 1.3.0
* URL : https://github.com/stravalib/stravalib
* License : Apache-2.0
Programming Lang: Python
Description : Tool for accessing and downloading Strava data through Strava API

A tool for accessing and downloading Strava data from the Strava
V3 web service. Stravalib provides a Client class that supports:
* Authenticating with stravalib
* Accessing and downloading strava activity, club and profile data
* Making changes to account activities

The package will be maintained under the roof of Debian Python Team.

Bug#1028104: libboost-dev: Boost with C++20 uses unavailable std functions

2023-04-18 Thread Anton Gladky

Hi,

boost-defaults_1.81.0 is in experimental. But boost1.81
is also available in the Debian Bookworm [1].

[1] https://packages.debian.org/source/testing/boost1.81

Regards

Anton

Am Di., 18. Apr. 2023 um 09:27 Uhr schrieb Olaf van der Spek
:
> ...
> 1.81 is in experimental, not in bookworm, right?
> It's unfortunate it's not in bookworm.

Bug#1028104: libboost-dev: Boost with C++20 uses unavailable std functions

2023-04-08 Thread Anton Gladky

Hi,

I think there is a risk that something needs to be fixed, as there are
no RC bugs against libboost-dev.

It seems like boost1.81 is not affected by this problem. So, if
somebody needs a newer library, they can
take libboost1.81-dev, which is available for bookworm. I would not
fix anything in boost shortly before release.

Paul, if you have some use cases where a small fix is really
necessary, we can discuss it. Otherwise, I would leave it as it is.

Best regards,

Anton

Anton

Am Di., 21. März 2023 um 22:03 Uhr schrieb Paul Gevers :
>
> Hi,
>
> On Sun, 08 Jan 2023 00:26:39 +0100 Andreas Beckmann  wrote:
> > This happens with g++-12 but not with g++-11.
> > It is fixed in the boost version in experimental.
>
> Any chance for a *targeted* fix in bookworm?
>
> Paul

Bug#1028104: libboost-dev: Boost with C++20 uses unavailable std functions

2023-04-06 Thread Anton Gladky

Hi Paul,

Yes i will do it.


Paul Gevers  schrieb am Do., 6. Apr. 2023, 14:36:

> Hi,
>
> On Tue, 21 Mar 2023 21:58:11 +0100 Paul Gevers  wrote:
> > On Sun, 08 Jan 2023 00:26:39 +0100 Andreas Beckmann 
> wrote:
> > > This happens with g++-12 but not with g++-11.
> > > It is fixed in the boost version in experimental.
> >
> > Any chance for a *targeted* fix in bookworm?
>
> Ping. (No is also an answer).
>
> Paul
>

Bug#1032554: h2o: FTBFS in testing: [h2o_mruby] in request:/:mruby raised: /tmp/UpqKGDqVnc:19: yeah! (RuntimeError)

2023-03-21 Thread Anton Gladky

Hi Chris,

thanks for your work! Please go ahead and upload without
a delay. Please push your changes to git and tag it.

Thanks and regards

Anton


Am Di., 21. März 2023 um 19:57 Uhr schrieb Chris Hofstaedtler <
z...@debian.org>:

> Hi,
>
> I will upload a change disabling the failing test to DELAYED/7.
> Please let me know if I should cancel it. Debdiff attached.
>
> The failing mruby test might or might not point to a real problem,
> it seems like its not 100% reproducible (in my builds at least).
> I want src:h2o / libh2o to stay in bookworm so it can be used by
> dnsdist; after bookworm I expect dnsdist upstream to switch away
> from h2o, which itself seems upstream-dead.
>
> Thanks,
> Chris
>
>

Bug#1014599: svgpp: CVE-2021-44960

2023-03-16 Thread Anton Gladky

Hello Moritz,

yes, it will be done within the next two days.

Best regards

Anton


Am Do., 16. März 2023 um 22:36 Uhr schrieb Moritz Mühlenhoff :

> Am Fri, Jul 08, 2022 at 04:31:10PM +0200 schrieb Moritz Mühlenhoff:
> > Source: svgpp
> > X-Debbugs-CC: t...@security.debian.org
> > Severity: normal
> > Tags: security
> >
> > Hi,
> >
> > The following vulnerability was published for svgpp.
> >
> > CVE-2021-44960[0]:
> > | In SVGPP SVG++ library 1.3.0, the XMLDocument::getRoot function in the
> > | renderDocument function handled the XMLDocument object improperly,
> > | returning a null pointer in advance at the second if, resulting in a
> > | null pointer reference behind the renderDocument function.
> >
> > https://github.com/svgpp/svgpp/issues/101
>
> This was fixed in
> https://github.com/svgpp/svgpp/commit/0bc57f2cc6d9d86a0fa1ce73e508c2b5994b4b91
> Could we get that fixed for Bookworm?
>
> Cheers,
> Moritz
>

Bug#1027965: Fix for the RC bug in vtk

2023-02-25 Thread Anton Gladky

Adding ciruclar dependencies is what we do want to avoid.
It looks like gdcm has already explicit dep on vtk9-qt-dev, thus
closing the ticket.

Regards

Anton

Bug#1027965: Fix for the RC bug in vtk

2023-02-05 Thread Anton Gladky

Hi Steven.

thanks for the notice! vtk9 upload is in my todo list
for the next few days.

Regards

Anton

Am So., 5. Feb. 2023 um 17:30 Uhr schrieb Steven Robbins :
>
> Hello,
>
> Was looking yesterday for an RC bug to fix and noticed #1027965 against VTK --
> a build failure in gdcm caused by missing dependency.  The fix proposed by
> Mathieu seems reasonable to me.
>
> Anton: I'm writing to ask your opinion about the commits in salsa since the
> last upload (June 2022); specifically, do you feel they are suitable for
> inclusion now?
>
> Should I:
>
> 1. apply the patch to the lastest in salsa?
> 2. apply the patch to the last upload sources ignoring salsa?
> 3. leave it alone and let you deal with it?
> 4. something else?
>
> Appreciate your insight.
> -Steve

Bug#1028867: Rassign and close

2023-02-04 Thread Anton Gladky

reassign 1028867 php8.2 8.2.1-1
fixed 1028867 8.2.2-1
thanks


The problem not in php-sabre-vobject but in php itself [1].
Upstream fix [2] and is fixed in Debian already [3].


Thus - reassign and close.

[1] https://github.com/Shardj/zf1-future/issues/304
[2] 
https://github.com/php/php-src/commit/d12ba111e03fa4e6d76a66a029f5dbe6265b1ea9
[3] 
https://sources.debian.org/src/php8.2/8.2.2-1/ext/date/lib/parse_date.c/#L790


Best regards

Bug#1029511: change package

2023-02-03 Thread Anton Gladky

reassign 1029511 php-horde-imap-client
thanks

Thanks, Ivan, for this bugreport.
I have to reassign it to php-horde-imap-client package
because /usr/share/php/Horde/Imap/Client/Fetch/Results.php
belongs to it, not to imp.

Regards

Anton

Bug#1028489: transition: boost1.81

2023-01-30 Thread Anton Gladky

Hi Sebastian,

thanks for the information. Let's do it just after release.

Just for the record. The full test rebuild has been done (thanks to Lucas!).
Results and logs are here:

http://qa-logs.debian.net/2023/01/15/

Regards

Anton

Bug#1028951: Close

2023-01-21 Thread Anton Gladky

Thank you for your bug report!

It looks like the issue is no more here. CI and
new upload did not show any regression. Thus
I am closing the ticket.

Thanks

Anton

Bug#1028489: transition: boost1.81

2023-01-11 Thread Anton Gladky

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition
X-Debbugs-Cc: boost1...@packages.debian.org
Control: affects -1 + src:boost1.81


Dear release team,

this is the placeholder for the possible upcoming boost1.81 transition.
We are working hard to prepare the transition as smooth as possible.

Large test rebuild of all dependent packages is planned.

Thanks

Ben file:

title = "boost1.81";
is_affected = .depends ~ /libboost[a-z-.]*1\.[74]/
is_good = .depends ~ /libboost[a-z-.]*1\.81/
is_bad = .depends ~ /libboost[a-z-.]*1\.74/

Bug#1027855: RM: boost1.80/experimental -- ROM; Package is replaced by a newer 1.80 version

2023-01-03 Thread Anton Gladky

Package: ftp.debian.org
Severity: normal
User: ftp.debian@packages.debian.org
Usertags: remove

Please remove 1.80 in experimental.

Thanks

Anton

Bug#1025056: transition: numerical library transition: hypre / petsc / slepc / sundials

2022-12-31 Thread Anton Gladky

Hi Sebastian,

thanks for noting it! #1027402 is fixed now in unstable (that was wrong version
in Breaks+Replaces).

Regards

Anton

Am Sa., 31. Dez. 2022 um 14:20 Uhr schrieb Sebastian Ramacher
:
>
> Hi Anton
>
> On 2022-12-28 09:30:00 +0100, Anton Gladky wrote:
> > Hi Sebastian,
> >
> > sundials is already in NEW, fixing two RC bugs.
> > Dyssol will be uploaded shortly.
>
> It's now in unstable. Please also fix #1027402.
>
> Cheers
>
> >
> > Regards
> >
> > Anton
> >
> > Am Di., 27. Dez. 2022 um 12:23 Uhr schrieb Sebastian Ramacher
> > :
> > >
> > > Hi Drew, hi Anton
> > >
> > > On 2022-12-19 21:52:10 +0100, Sebastian Ramacher wrote:
> > > > Hi Drew
> > > >
> > > > On 2022-12-19 18:14:53 +0100, Drew Parsons wrote:
> > > > > The hypre/petsc part of this transition is complete.
> > > > >
> > > > > The sundials part is waiting for dyssol to be patched.  Anton is 
> > > > > preparing
> > > > > this.
> > > >
> > > > sundials will also need fixes for #1026330 and #1026352.
> > >
> > > Any news regarding sundials?
> > >
> > > Cheers
> > >
> > > >
> > > > Cheers
> > > >
> > > > >
> > > > > Drew
> > > > >
> > > > >
> > > > > On 2022-11-29 23:34, Sebastian Ramacher wrote:
> > > > > > Control: tags -1 confirmed
> > > > > >
> > > > > > Hi Drew
> > > > > >
> > > > > > On 2022-11-29 12:16:55 +0100, Drew Parsons wrote:
> > > > > > > Package: release.debian.org
> > > > > > > Severity: normal
> > > > > > > User: release.debian@packages.debian.org
> > > > > > > Usertags: transition
> > > > > > > X-Debbugs-Cc: Anton Gladky 
> > > > > > >
> > > > > > > We'd like to update the numerical library stack in time for the 
> > > > > > > new
> > > > > > > stable release.
> > > > > > >
> > > > > > > Affected libraries are
> > > > > > >
> > > > > > > hypre2.25.0 -> 2.26.0
> > > > > > > petsc/slepc3.17 -> 3.18
> > > > > > > sundials  5.8.0 -> 6.4.1
> > > > > > >
> > > > > > > Autotransitions are already generated:
> > > > > > > https://release.debian.org/transitions/html/auto-hypre.html
> > > > > > > https://release.debian.org/transitions/html/auto-petsc.html
> > > > > > > https://release.debian.org/transitions/html/auto-slepc.html
> > > > > > > https://release.debian.org/transitions/html/auto-sundials.html
> > > > > > >
> > > > > > > Most of the dependent packages are under our control
> > > > > > > (Debian Science Team), octave is the main one outside our team.
> > > > > > >
> > > > > > > Updates have built fine in experimental and dependent
> > > > > > > packages are building successfully against them.
> > > > > > >
> > > > > > > Anton Gladky will upload the sundials update.
> > > > > >
> > > > > > Please go ahead
> > > > > >
> > > > > > Cheers
> > > > >
> > > >
> > > > --
> > > > Sebastian Ramacher
> > > >
> > >
> > > --
> > > Sebastian Ramacher
> >
>
> --
> Sebastian Ramacher

Bug#1025056: transition: numerical library transition: hypre / petsc / slepc / sundials

2022-12-28 Thread Anton Gladky

Hi Sebastian,

sundials is already in NEW, fixing two RC bugs.
Dyssol will be uploaded shortly.

Regards

Anton

Am Di., 27. Dez. 2022 um 12:23 Uhr schrieb Sebastian Ramacher
:
>
> Hi Drew, hi Anton
>
> On 2022-12-19 21:52:10 +0100, Sebastian Ramacher wrote:
> > Hi Drew
> >
> > On 2022-12-19 18:14:53 +0100, Drew Parsons wrote:
> > > The hypre/petsc part of this transition is complete.
> > >
> > > The sundials part is waiting for dyssol to be patched.  Anton is preparing
> > > this.
> >
> > sundials will also need fixes for #1026330 and #1026352.
>
> Any news regarding sundials?
>
> Cheers
>
> >
> > Cheers
> >
> > >
> > > Drew
> > >
> > >
> > > On 2022-11-29 23:34, Sebastian Ramacher wrote:
> > > > Control: tags -1 confirmed
> > > >
> > > > Hi Drew
> > > >
> > > > On 2022-11-29 12:16:55 +0100, Drew Parsons wrote:
> > > > > Package: release.debian.org
> > > > > Severity: normal
> > > > > User: release.debian@packages.debian.org
> > > > > Usertags: transition
> > > > > X-Debbugs-Cc: Anton Gladky 
> > > > >
> > > > > We'd like to update the numerical library stack in time for the new
> > > > > stable release.
> > > > >
> > > > > Affected libraries are
> > > > >
> > > > > hypre2.25.0 -> 2.26.0
> > > > > petsc/slepc3.17 -> 3.18
> > > > > sundials  5.8.0 -> 6.4.1
> > > > >
> > > > > Autotransitions are already generated:
> > > > > https://release.debian.org/transitions/html/auto-hypre.html
> > > > > https://release.debian.org/transitions/html/auto-petsc.html
> > > > > https://release.debian.org/transitions/html/auto-slepc.html
> > > > > https://release.debian.org/transitions/html/auto-sundials.html
> > > > >
> > > > > Most of the dependent packages are under our control
> > > > > (Debian Science Team), octave is the main one outside our team.
> > > > >
> > > > > Updates have built fine in experimental and dependent
> > > > > packages are building successfully against them.
> > > > >
> > > > > Anton Gladky will upload the sundials update.
> > > >
> > > > Please go ahead
> > > >
> > > > Cheers
> > >
> >
> > --
> > Sebastian Ramacher
> >
>
> --
> Sebastian Ramacher

Bug#973875: Closing the bug

2022-12-21 Thread Anton Gladky

As far as I understand the issue, it is already
resolved in the current versions of the package.

Thus, I am closing it.

Please feel free to reopen, if you think the issue is still here.

Thanks

Anton

Bug#1025056: transition: numerical library transition: hypre / petsc / slepc / sundials

2022-12-19 Thread Anton Gladky

Dyssol has just been (today!) released. I will upload it ASAP.

Regards

Anton

Am Mo., 19. Dez. 2022 um 18:14 Uhr schrieb Drew Parsons :
>
> The hypre/petsc part of this transition is complete.
>
> The sundials part is waiting for dyssol to be patched.  Anton is
> preparing this.
>
> Drew
>
>
> On 2022-11-29 23:34, Sebastian Ramacher wrote:
> > Control: tags -1 confirmed
> >
> > Hi Drew
> >
> > On 2022-11-29 12:16:55 +0100, Drew Parsons wrote:
> >> Package: release.debian.org
> >> Severity: normal
> >> User: release.debian@packages.debian.org
> >> Usertags: transition
> >> X-Debbugs-Cc: Anton Gladky 
> >>
> >> We'd like to update the numerical library stack in time for the new
> >> stable release.
> >>
> >> Affected libraries are
> >>
> >> hypre2.25.0 -> 2.26.0
> >> petsc/slepc3.17 -> 3.18
> >> sundials  5.8.0 -> 6.4.1
> >>
> >> Autotransitions are already generated:
> >> https://release.debian.org/transitions/html/auto-hypre.html
> >> https://release.debian.org/transitions/html/auto-petsc.html
> >> https://release.debian.org/transitions/html/auto-slepc.html
> >> https://release.debian.org/transitions/html/auto-sundials.html
> >>
> >> Most of the dependent packages are under our control
> >> (Debian Science Team), octave is the main one outside our team.
> >>
> >> Updates have built fine in experimental and dependent
> >> packages are building successfully against them.
> >>
> >> Anton Gladky will upload the sundials update.
> >
> > Please go ahead
> >
> > Cheers

Bug#1003648: Reassign

2022-12-15 Thread Anton Gladky

reassign 1003648 php-horde-prefs/2.9.0-8
thanks

The warning is in Prefs.php, which is in package php-horde-prefs.
Some other packages can be affected

Anton

Bug#1025658: libboost-python1.74-dev: Python 3.11 changes break loading of boost-python using extensions

2022-12-11 Thread Anton Gladky

Hi Niels,

thanks for the note. Yes, I will take care of it.

Regards

Anton

Bug#1023273: Old version is not working

2022-11-13 Thread Anton Gladky

The newer 14 version of ocrmypdf is needed to suppor the
ghostscript 10.

I have checked and can confirm, that 14.0.1 is working well.

Regards

Anton

Bug#1023419: transition: freeglut

2022-11-05 Thread Anton Gladky

Uploaded, thanks!

Anton

Bug#1023419: transition: freeglut

2022-11-04 Thread Anton Gladky

Hi Sebastian, you are right.

I have uploaded a new package into experimental, which introduces
fereglut3-dev as a transitional package. I will rebuild and report
about results.

Regards

Anton

Am Do., 3. Nov. 2022 um 22:51 Uhr schrieb Sebastian Ramacher
:
>
> Control: tags -1 moreinfo
> Control: forwarded -1 
> https://release.debian.org/transitions/html/auto-freeglut.html
>
> On 2022-11-03 20:12:03 +0100, Anton Gladky wrote:
> > Package: release.debian.org
> > Severity: normal
> > User: release.debian@packages.debian.org
> > Usertags: transition
> >
> >
> > New version of freeglut library and binary renaming.
> > Reverse depends were rebuilt against new lib.
> >
> >
> > Ben file:
> >
> > title = "freeglut";
> > is_affected = .depends ~ "freeglut3|freeglut3-dev" | .depends ~ 
> > "libglut-dev|libglut3.12";
> > is_good = .depends ~ "libglut-dev|libglut3.12";
> > is_bad = .depends ~ "freeglut3|freeglut3-dev";
>
> What's the deal with the renamed -dev package? Do we need sourceful
> uploads for all the reverse dependencies? What's the upgrade path for
> users?  Or in other words: why is there no transitional freeglut3-dev
> package?
>
> Cheers
> --
> Sebastian Ramacher

Bug#1023419: transition: freeglut

2022-11-03 Thread Anton Gladky

Hi Sebastian,

rename was done to match the real shared object name to the
package name:
/usr/lib/x86_64-linux-gnu/libglut.so.3.11.0 will go to libglut3.11.

At the moment source uploads are not necessary as libglut-dev provides
freeglut3-dev. But after the transition yes, the batch of NMUs is planned.

> why is there no transitional freeglut3-dev

I thought it was enough that libglut-dev "provides" the freeglu3-dev.
If not - I will
add it.

Thanks

Regards

Anton

Am Do., 3. Nov. 2022 um 22:51 Uhr schrieb Sebastian Ramacher
:
>
> Control: tags -1 moreinfo
> Control: forwarded -1 
> https://release.debian.org/transitions/html/auto-freeglut.html
>
> On 2022-11-03 20:12:03 +0100, Anton Gladky wrote:
> > Package: release.debian.org
> > Severity: normal
> > User: release.debian@packages.debian.org
> > Usertags: transition
> >
> >
> > New version of freeglut library and binary renaming.
> > Reverse depends were rebuilt against new lib.
> >
> >
> > Ben file:
> >
> > title = "freeglut";
> > is_affected = .depends ~ "freeglut3|freeglut3-dev" | .depends ~ 
> > "libglut-dev|libglut3.12";
> > is_good = .depends ~ "libglut-dev|libglut3.12";
> > is_bad = .depends ~ "freeglut3|freeglut3-dev";
>
> What's the deal with the renamed -dev package? Do we need sourceful
> uploads for all the reverse dependencies? What's the upgrade path for
> users?  Or in other words: why is there no transitional freeglut3-dev
> package?
>
> Cheers
> --
> Sebastian Ramacher

Bug#1023419: transition: freeglut

2022-11-03 Thread Anton Gladky

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition


New version of freeglut library and binary renaming.
Reverse depends were rebuilt against new lib.


Ben file:

title = "freeglut";
is_affected = .depends ~ "freeglut3|freeglut3-dev" | .depends ~ 
"libglut-dev|libglut3.12";
is_good = .depends ~ "libglut-dev|libglut3.12";
is_bad = .depends ~ "freeglut3|freeglut3-dev";


Thanks

Anton

Bug#1023273: Bugs severity

2022-11-03 Thread Anton Gladky

severity 1023273 grave
thanks

Hi,

this error makes at least ocrmypdf unusable.
Increasing the severity.

Anton

Bug#1013158: facet-analyser: vtk[6,7] removal

2022-11-01 Thread Anton Gladky

Hi Picca,

I have just successfully cloned the git-repo. I have only got a warning
"[attr]our-c-style   whitespace=tab-in-indent  format.clang-format=9 n"
but I thinking it is not critical.

Please try to checkout it again. Maybe it was salsa issue?

Regards

Anton


Am Di., 1. Nov. 2022 um 10:18 Uhr schrieb PICCA Frederic-Emmanuel <
frederic-emmanuel.pi...@synchrotron-soleil.fr>:

> Hello Anton, I try to checkout paraview in order to add the -dev
> dependencies
>
> but I have this message
>
> $ git clone https://salsa.debian.org/science-team/paraview
> Clonage dans 'paraview'...
> remote: Enumerating objects: 175624, done.
> remote: Counting objects: 100% (78929/78929), done.
> remote: Compressing objects: 100% (38687/38687), done.
> remote: Total 175624 (delta 47039), reused 65625 (delta 39190),
> pack-reused 96695
> Réception d'objets: 100% (175624/175624), 246.21 Mio | 12.11 Mio/s, fait.
> Résolution des deltas: 100% (109096/109096), fait.
> [attr]our-c-style  whitespace=tab-in-indent,-blank-at-eol
> format.clang-format non permis :
> ThirdParty/QtTesting/vtkqttesting/.gitattributes : 8
> [attr]our-c-style  whitespace=tab-in-indent,-blank-at-eol
> format.clang-format=9 non permis :
> ThirdParty/catalyst/vtkcatalyst/catalyst/.gitattributes : 4
> [attr]our-c-style  whitespace=tab-in-indent,-blank-at-eol
> format.clang-format=8 non permis : VTK/.gitattributes : 10
> [attr]our-c-style   whitespace=tab-in-indent  format.clang-format=9 non
> permis : VTK/ThirdParty/vtkm/vtkvtkm/vtk-m/.gitattributes : 2
> Mise à jour des fichiers: 100% (30828/30828), fait.
> [attr]our-c-style  whitespace=tab-in-indent,-blank-at-eol
> format.clang-format=8 non permis : VTK/.gitattributes : 10
> [attr]our-c-style   whitespace=tab-in-indent  format.clang-format=9 non
> permis : VTK/ThirdParty/vtkm/vtkvtkm/vtk-m/.gitattributes : 2
> Downloading VTK/ThirdParty/vtkm/vtkvtkm/vtk-m/data/README.md (643 B)
> Error downloading object: VTK/ThirdParty/vtkm/vtkvtkm/vtk-m/data/README.md
> (b30a14a): Smudge error: Error downloading
> VTK/ThirdParty/vtkm/vtkvtkm/vtk-m/data/README.md
> (b30a14a308f64c6fc2969e2b959d79dacdc5affda1d1c0e24f8e176304147146):
> [b30a14a308f64c6fc2969e2b959d79dacdc5affda1d1c0e24f8e176304147146] Object
> does not exist on the server or you don't have permissions to access it:
> [404] Object does not exist on the server or you don't have permissions to
> access it
>
> Errors logged to
> /home/experiences/instrumentation/picca/debian/science-team/paraview/.git/lfs/logs/20221101T101535.441130442.log
> Use `git lfs logs last` to view the log.
> error: le filtre externe 'git-lfs filter-process' a échoué
> fatal: VTK/ThirdParty/vtkm/vtkvtkm/vtk-m/data/README.md : le filtre smudge
> 'lfs' a échoué
> warning: Le clone a réussi, mais l'extraction a échoué.
> Vous pouvez inspecter ce qui a été extrait avec 'git status'
> et réessayer avec 'git restore --source=HEAD :/'
>

Bug#1013616: Thanks

2022-09-23 Thread Anton Gladky

Thanks, Jonathan, for the patch!


Anton

Bug#978748: libboost-dev: Boost 1.75

2022-09-22 Thread Anton Gladky

Hi Andrea,

it is "in work". We will definitely need people
for testing, filing and fixing bugs during transition.

Thanks for the proposal!

Best regards

Anton


Am Do., 22. Sept. 2022 um 19:47 Uhr schrieb Andrea Pappacoda <
and...@pappacoda.it>:

> On Fri, 22 Apr 2022 17:39:35 +0200 Anton Gladky
>  wrote:
>  > I did some work a couple of months ago, packaging 1.78.
>  > It worked, but I did not have time to finish it. I would probably
>  > continue this work soon to prepare 1.79 or even 1.80 for the
>  > next stable Debian version.
>
> Hi Anton, what's the status of your boost 1.80 packaging? I'm currently
> having issues with a couple of packages depending on Boost because 1.74
> contains a few bugs, and I'd be happy to help you with preparing the
> next version if needed.
>
>
>

Bug#1019061: Done

2022-09-20 Thread Anton Gladky

gnuplot-data is built. Thus closing.

Cheers

Anton

Bug#1019061: Root cause is #1019061

2022-09-05 Thread Anton Gladky

Hi,

thanks for bug report.

The main problem is #1017698. Gnuplot cannot be built
due to missing build-dep on emacs-nox.

Regards

Anton

Bug#963901: ITA: glm -- C++ library for OpenGL GLSL type-based mathematics

2022-09-03 Thread Anton Gladky

Hi Andrea,

thanks for taking care of this package! Really appreciate it.

Please, follow an advices given by Pierre and we will upload
the package, giving you permissions to upload it in the future.

It could also be good if you add salsa-CI to be sure that the package
is building aod passing all tests. It is also an additional tests for you,

Best regards

Anton


Am Fr., 2. Sept. 2022 um 22:13 Uhr schrieb Andrea Pappacoda <
and...@pappacoda.it>:

> Hi everyone!
>
> I've been wanting to adopt the glm package, maintained by the Science
> Team, since last September.
>
> I'm a DM, so I can't directly take ownership of the package nor push to
> Salsa. Could somebody please look at my changes, give me write access
> to the repo and possibly sponsor the first upload? You can find my
> changes here:
> 
>
> I've already asked this on IRC, and joostvb, while approving my changes
> in general, said that it would've been better to ask this on the
> mailing list.
>
> Thanks in advance :)
>
> --
> OpenPGP key: 66DE F152 8299 0C21 99EF  A801 A8A1 28A8 AB1C EE49
>
>
>

Bug#1013158: facet-analyser: vtk[6,7] removal

2022-06-18 Thread Anton Gladky

Hi Picca,

thanks for your work! Yes, it is known issue that the paraview uses an
embedded version of VTK. As far as I remember there were several tries
to fix it, though without visible success.

Please file the bug against paraview or just add those dependencies into
the git of paraview, so it will be fixed with the next upload.

Thanks again for the quick reaction!

Anton

Am Sa., 18. Juni 2022 um 11:23 Uhr schrieb PICCA Frederic-Emmanuel
:

>
> Hello, I removed the vtk7 dependency but I needed a bunch of -dev packages.
>
> + libavcodec-dev,
> + libavformat-dev,
>   libdouble-conversion-dev,
>   libfftw3-dev,
> + libfreetype-dev,
> + libgdal-dev,
>   libgdcm-tools,
> + libgl2ps-dev,
> + libglew-dev,
>   libinsighttoolkit4-dev,
>   liblz4-dev,
> + libogg-dev,
>   libopengl-dev,
> + libopenmpi-dev,
>   libqt5opengl5-dev,
>   libqt5svg5-dev,
> + libswscale-dev,
> + libtheora-dev,
>   libutfcpp-dev,
> - libvtk7-dev,
>   libvtkgdcm-cil,
>   libvtkgdcm-dev,
>   libvtkgdcm-java,
> @@ -26,10 +37,9 @@ Build-Depends:
>   qtbase5-dev,
>   qttools5-dev,
>   qtxmlpatterns5-dev-tools,
> - vtk7,
>
>
> paraview seems to use an internal version of vtk. So when I build an 
> extension with paraview-dev, I expect to have all the -dev pulled via this 
> package.
>
> Package: paraview-dev
> Version: 5.10.1-1
> Priority: optional
> Section: libdevel
> Source: paraview
> Maintainer: Debian Science Team 
> 
> Installed-Size: 117 MB
> Depends: qttools5-dev-tools, libc6 (>= 2.14), paraview (= 5.10.1-1), 
> python3:any | python3-minimal:any, libeigen3-dev
>
>
> I am wondering if the right solution is not to  add all these vtk dependency 
> in the paraview -dev package ?
>
> cheers
>
> Fred

Bug#1009739: fixed in yade 2022.01a-8

2022-05-31 Thread Anton Gladky

Hi Bernhard,

I think one can ask the corresponding arm-mailing list. Anyway,
if you have a solution for that I could test it first on the real hardware.

Thanks

Anton

Am Mi., 1. Juni 2022 um 00:12 Uhr schrieb Bernhard Übelacker
:

>
> Hello Anton,
> I am happy if my work helps.
> And I am sorry, but I fear my test shows now a failure
> for armhf and armel too.
>
>  From 'echo | gcc -dM -E - | grep -i arm' I see gcc has
> on both platforms predefined the macro __ARMEL__.
> But I am not sure what is the best way to just detect those
> platforms, or maybe just check for sizeof(void*)==4 or similar.
>
> Kind regards,
> Bernhard
>

Bug#1009739: fixed in yade 2022.01a-8

2022-05-30 Thread Anton Gladky

Hi Bernhard,

Thank you very much for this information and for fixing it!

I have just uploaded boost1.74_1.74.0-15 with this fix and
will revert the workaround in yade!

Best regards

Anton

Bug#1001528: Eigen3 affected?

2022-05-26 Thread Anton Gladky

affects 1001528 -eigen3
thanks

Well, I do not see how eigen3 can help to fix this bug.
The problem exists definitely in the upstream of the purify,
So the upstream of this package should be active to resolve
the issue against the mathematical library used by them.

Regards

Anton

Bug#986590: Severity

2022-05-11 Thread Anton Gladky

severity 986590 important
thanks

I have temporarily disabled the unreliable test. Thus I am reducing
the bug's severity.
Yes, I know, it is wrong to disable a failing test. But I am
continuing to work on it, trying
to build it with threadsanitizer and check, what is going on there.

Any help is appreciated/

Thanks

Anton

Bug#986590: Patch

2022-05-05 Thread Anton Gladky

As I mentioned before the patch does not solve the problem.
Increasing the "Session time" sometimes causes very long
test-times. So we have here definitely the deadlock.

If somebody has more experience in glib, it would be really
helpful to investigate an issue.

Best regards

Anton

Bug#955832: Help needed

2022-05-05 Thread Anton Gladky

tags 955832 +moreinfo
thanks

Hi Simon,

Unfortunately, I failed to drop the dependency on libdbus-glib-1-dev.
Simple removal and updating configure.ac causes tons of other
errors.

Would it be possible for you to have a short look and provide
a patch for that? I would then gladly apply it.

Thanks and regards.

Anton

Bug#986590: Still reproducible

2022-05-04 Thread Anton Gladky

The bug is still reproducible. This time on armhf [1] and in CI [2].

[1] 
https://buildd.debian.org/status/fetch.php?pkg=dbus-test-runner=armhf=19.04.0-1%7Eexp1=1651644822=0
[2] https://salsa.debian.org/debian/dbus-test-runner/-/jobs/2731578

Regards

Anton

Bug#955832: Simple removal of deps does not work

2022-05-04 Thread Anton Gladky

Unfortunately simple removal of dependency causes
build failures [1]. The patch is here [2].

[1] https://salsa.debian.org/debian/dbus-test-runner/-/jobs/2733096
[2] 
https://salsa.debian.org/debian/dbus-test-runner/-/commit/78d2155fdb2bc904471b910a37b5c9a4bc69c63a

Thanks

Anton

Bug#986590: Patch #76, still fails

2022-05-03 Thread Anton Gladky

Unfortunately the patch in #76 still fails. Needs some more
investigation:

==

FAIL: test-libdbustest-mock-test

** (gtester:7666): WARNING **: 21:18:27.890: Deprecated: Since GLib
2.62, gtester and gtester-report are deprecated. Port to TAP.
TEST: ./test-libdbustest-mock... (pid=7667)
/libdbustest/mock/basic:
(/builds/debian/dbus-test-runner/debian/output/source_dir/tests/.libs/test-libdbustest-mock:7667):
libdbustest-WARNING **: 21:18:27.910: Unable to start watchdog
DBus daemon: 
unix:abstract=/tmp/dbus-QtSQwrxNGw,guid=5439845aad7f1bb8e63d4297626c5623
DBusMock: Started with PID: 7687
DBusMock: Shutting down
DBus daemon: Shutdown
**
ERROR:test-libdbustest-mock.c:45:wait_for_connection_close: assertion
failed: (wait_count != SESSION_MAX_WAIT)
FAIL
GTester: last random seed: R02S0c733c834df4b87e3a0bb6bff1c44e77
(pid=7728)
/libdbustest/mock/properties:
(/builds/debian/dbus-test-runner/debian/output/source_dir/tests/.libs/test-libdbustest-mock:7728):
libdbustest-CRITICAL **: 21:21:48.365:
dbus_test_dbus_mock_object_add_property: assertion
'g_variant_is_of_type(value, type)' failed
(/builds/debian/dbus-test-runner/debian/output/source_dir/tests/.libs/test-libdbustest-mock:7728):
libdbustest-WARNING **: 21:21:48.367: Unable to start watchdog
DBus daemon: 
unix:abstract=/tmp/dbus-FB8W7MsRSE,guid=4425b2c97b1ed05ae561ebd2626c56ec
DBusMock: Started with PID: 7747
(/builds/debian/dbus-test-runner/debian/output/source_dir/tests/.libs/test-libdbustest-mock:7728):
libdbustest-CRITICAL **: 21:21:48.462: Property 'prop1' is not of same
value in dbus_test_dbus_mock_object_update_property()
DBusMock: Shutting down
DBus daemon: Shutdown
OK
/libdbustest/mock/methods:
(/builds/debian/dbus-test-runner/debian/output/source_dir/tests/.libs/test-libdbustest-mock:7728):
libdbustest-WARNING **: 21:21:48.472: Unable to start watchdog
DBus daemon: 
unix:abstract=/tmp/dbus-7xF4SrW7pk,guid=9514c44ce88f66e83ee408cc626c56ec
DBusMock-1: Started with PID: 7755
DBusMock-1: Shutting down
DBus daemon: Shutdown
OK
/libdbustest/mock/signals:
(/builds/debian/dbus-test-runner/debian/output/source_dir/tests/.libs/test-libdbustest-mock:7728):
libdbustest-WARNING **: 21:21:48.771: Unable to start watchdog
DBus daemon: 
unix:abstract=/tmp/dbus-4AGx7A42El,guid=46c8120e5b0e1fa2f9082734626c56ec
DBusMock-2: Started with PID: 7763
DBusMock-2: 1651267308.866 emit /test foo.test.interface.testsig
DBusMock-2: 1651267308.968 emit /test foo.test.interface.testsig_abc "a" "b" "c"
DBusMock-2: Shutting down
DBus daemon: Shutdown
OK
/libdbustest/mock/running:
(/builds/debian/dbus-test-runner/debian/output/source_dir/tests/.libs/test-libdbustest-mock:7728):
libdbustest-WARNING **: 21:21:49.076: Unable to start watchdog
DBus daemon: 
unix:abstract=/tmp/dbus-MJiLNJREgr,guid=71b2068fe312fd7ba7dd5e06626c56ed
DBusMock-3: Started with PID: 7771
DBusMock-3: Shutting down
DBus daemon: Shutdown
OK
/libdbustest/mock/running-system:
(/builds/debian/dbus-test-runner/debian/output/source_dir/tests/.libs/test-libdbustest-mock:7728):
libdbustest-WARNING **: 21:21:49.371: Unable to start watchdog
DBus daemon: 
unix:abstract=/tmp/dbus-KMNGhYfACr,guid=a04514c03ab8369dfed6f3f9626c56ed
DBusMock-4: Started with PID: 7779
DBusMock-4: Shutting down
DBus daemon: Shutdown
OK
/libdbustest/mock/interfaces:
(/builds/debian/dbus-test-runner/debian/output/source_dir/tests/.libs/test-libdbustest-mock:7728):
libdbustest-WARNING **: 21:21:49.668: Unable to start watchdog
DBus daemon: 
unix:abstract=/tmp/dbus-yeC3JJFI37,guid=e1b247ec47e3e0d499b9f17c626c56ed
DBusMock-5: Started with PID: 7787
DBusMock-5: Shutting down
DBus daemon: Shutdown
OK
FAIL: ./test-libdbustest-mock
FAIL test-libdbustest-mock-test (exit status: 1)
==


Anton

Bug#978748: libboost-dev: Boost 1.75

2022-04-22 Thread Anton Gladky

Hi,

I did some work a couple of months ago, packaging 1.78.
It worked, but I did not have time to finish it. I would probably
continue this work soon to prepare 1.79 or even 1.80 for the
next stable Debian version.

Cheers

Anton


Am Fr., 22. Apr. 2022 um 10:03 Uhr schrieb Giovanni Mascellani <
g...@debian.org>:

> Hi,
>
> Il 14/04/22 04:24, strager ha scritto:
> > Is there anything I can do to help get a newer version of Boost into
> > the Debian repository?
>
> Unfortunately I am not having a lot of time to care about Boost right
> now, even if I'll get to it as soon as possible. I don't know what is
> your experience with Debian packaging, but Boost if you're a beginner I
> don't feel it's the right package to start with.
>
> As you say, vendoring code is usually not considered a good idea in
> Debian, but in can be a reasonable interim solution, I'd say, as long as
> you're happy to switch back to the packaged dependency once it is
> available. I would suggest you to investigate this road for
> quick-lint-js. I won't be able to provide much help, though.
>
> Thanks, Giovanni.
> --
> Giovanni Mascellani 
>
>

Bug#1008426: h2o: diff for NMU version 2.2.5+dfsg2-6.2

2022-04-14 Thread Anton Gladky

I do not have this tag as I did not repack a tarball.

Anton

Am Mi., 13. Apr. 2022 um 22:47 Uhr schrieb Chris Hofstaedtler :
>
> Hi Anton,
>
> * Anton Gladky  [220412 19:18]:
> > thanks a lot for NMU! Feel free to upload immediately,
> > but please commit your changes into the git. Thanks!
>
> okay, can/will do. Could you push the tag tags/upstream/2.2.5+dfsg2 into
> git?
>
> I have cancelled the NMU in the meantime.
>
> Thanks,
> Chris
>

Bug#1008426: h2o: diff for NMU version 2.2.5+dfsg2-6.2

2022-04-12 Thread Anton Gladky

Hi Chris,

thanks a lot for NMU! Feel free to upload immediately,
but please commit your changes into the git. Thanks!

Regards

Anton

Am Di., 12. Apr. 2022 um 17:33 Uhr schrieb Chris Hofstaedtler :
>
> Control: tags 1008426 + patch
> Control: tags 1008426 + pending
>
>
> Dear maintainer,
>
> I've prepared an NMU for h2o (versioned as 2.2.5+dfsg2-6.2) and
> uploaded it to DELAYED/7. Please feel free to tell me if I
> should delay it longer.
>
> Regards.
>
> diff -Nru h2o-2.2.5+dfsg2/debian/changelog h2o-2.2.5+dfsg2/debian/changelog
> --- h2o-2.2.5+dfsg2/debian/changelog2021-10-17 11:38:52.0 +
> +++ h2o-2.2.5+dfsg2/debian/changelog2022-04-12 14:57:18.0 +
> @@ -1,3 +1,11 @@
> +h2o (2.2.5+dfsg2-6.2) unstable; urgency=medium
> +
> +  * Non-maintainer upload.
> +  * Remove now unsupported hash parameters to FileUtils methods,
> +fixing FTBFS. (Closes: #1008426)
> +
> + -- Chris Hofstaedtler   Tue, 12 Apr 2022 14:57:18 +
> +
>  h2o (2.2.5+dfsg2-6.1) unstable; urgency=medium
>
>* Non-maintainer upload.
> diff -Nru h2o-2.2.5+dfsg2/debian/patches/mruby_fileutils_no_verbose 
> h2o-2.2.5+dfsg2/debian/patches/mruby_fileutils_no_verbose
> --- h2o-2.2.5+dfsg2/debian/patches/mruby_fileutils_no_verbose   1970-01-01 
> 00:00:00.0 +
> +++ h2o-2.2.5+dfsg2/debian/patches/mruby_fileutils_no_verbose   2022-04-12 
> 14:56:46.0 +
> @@ -0,0 +1,70 @@
> +Remove hash with verbose from calls to FileUtils. This apparently
> +has stopped being supported in ruby.
> +
> +Debian bug: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1008426
> +
> +Index: h2o-2.2.5+dfsg2/deps/mruby/Rakefile
> +===
> +--- h2o-2.2.5+dfsg2.orig/deps/mruby/Rakefile
>  h2o-2.2.5+dfsg2/deps/mruby/Rakefile
> +@@ -37,15 +37,15 @@ load "#{MRUBY_ROOT}/tasks/gitlab.rake"
> + task :default => :all
> +
> + bin_path = ENV['INSTALL_DIR'] || "#{MRUBY_ROOT}/bin"
> +-FileUtils.mkdir_p bin_path, { :verbose => $verbose }
> ++FileUtils.mkdir_p bin_path
> +
> + depfiles = MRuby.targets['host'].bins.map do |bin|
> +   install_path = MRuby.targets['host'].exefile("#{bin_path}/#{bin}")
> +   source_path = 
> MRuby.targets['host'].exefile("#{MRuby.targets['host'].build_dir}/bin/#{bin}")
> +
> +   file install_path => source_path do |t|
> +-FileUtils.rm_f t.name, { :verbose => $verbose }
> +-FileUtils.cp t.prerequisites.first, t.name, { :verbose => $verbose }
> ++FileUtils.rm_f t.name
> ++FileUtils.cp t.prerequisites.first, t.name
> +   end
> +
> +   install_path
> +@@ -78,8 +78,8 @@ MRuby.each_target do |target|
> + install_path = MRuby.targets['host'].exefile("#{bin_path}/#{bin}")
> +
> + file install_path => exec do |t|
> +-  FileUtils.rm_f t.name, { :verbose => $verbose }
> +-  FileUtils.cp t.prerequisites.first, t.name, { :verbose => 
> $verbose }
> ++  FileUtils.rm_f t.name
> ++  FileUtils.cp t.prerequisites.first, t.name
> + end
> + depfiles += [ install_path ]
> +   elsif target == MRuby.targets['host-debug']
> +@@ -87,8 +87,8 @@ MRuby.each_target do |target|
> +   install_path = 
> MRuby.targets['host-debug'].exefile("#{bin_path}/#{bin}")
> +
> +   file install_path => exec do |t|
> +-FileUtils.rm_f t.name, { :verbose => $verbose }
> +-FileUtils.cp t.prerequisites.first, t.name, { :verbose => 
> $verbose }
> ++FileUtils.rm_f t.name
> ++FileUtils.cp t.prerequisites.first, t.name
> +   end
> +   depfiles += [ install_path ]
> + end
> +@@ -127,16 +127,16 @@ end
> + desc "clean all built and in-repo installed artifacts"
> + task :clean do
> +   MRuby.each_target do |t|
> +-FileUtils.rm_rf t.build_dir, { :verbose => $verbose }
> ++FileUtils.rm_rf t.build_dir
> +   end
> +-  FileUtils.rm_f depfiles, { :verbose => $verbose }
> ++  FileUtils.rm_f depfiles
> +   puts "Cleaned up target build folder"
> + end
> +
> + desc "clean everything!"
> + task :deep_clean => ["clean"] do
> +   MRuby.each_target do |t|
> +-FileUtils.rm_rf t.gem_clone_dir, { :verbose => $verbose }
> ++FileUtils.rm_rf t.gem_clone_dir
> +   end
> +   puts "Cleaned up mrbgems build folder"
> + end
> diff -Nru h2o-2.2.5+dfsg2/debian/patches/series 
> h2o-2.2.5+dfsg2/debian/patches/series
> --- h2o-2.2.5+dfsg2/debian/patches/series   2020-05-03 20:12:52.0 
> +
> +++ h2o-2.2.5+dfsg2/debian/patches/series   2022-04-12 14:54:56.0 
> +
> @@ -4,3 +4,4 @@
>  tests-force-TLSv1.2-on-s_client-invocations.patch
>  link-libh2o-with-wslay.patch
>  fix_CVE-2019_1.patch
> +mruby_fileutils_no_verbose
>

Bug#1001484: sfepy: (autopkgtest) needs update for python3.10: Sequence' from 'collections' is removed

2022-03-24 Thread Anton Gladky

I will do it ASAP

Anton

Am Do., 24. März 2022 um 18:54 Uhr schrieb Stefano Rivera :
>
> Control: tag -1 + pending
>
> I see a commit fixing this in git, just waiting to be uploaded.
> https://salsa.debian.org/science-team/sfepy/-/commit/f6a4f8d2435e8406a629a75ee89891a24631233a
>
> SR
>
> --
> Stefano Rivera
>   http://tumbleweed.org.za/
>   +1 415 683 3272

Bug#1002844: ITP: luma.emulator -- library provides a series of pseudo-display devices for luma.core

2021-12-29 Thread Anton Gladky

Package: wnpp
Severity: wishlist
Owner: Anton Gladky 
X-Debbugs-Cc: debian-de...@lists.debian.org

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

* Package name: luma.emulator
  Version : 1.4.0
  Upstream Author : Richard Hull and contributors
* URL : https://github.com/rm-hull/luma.emulator
* License : MIT/X
  Programming Lang: Python
  Description : library provides a series of pseudo-display devices for 
luma.core

Library provides a series of pseudo-display devices which allow the luma.core
components to be used without running a physical device. These include:
  Real-time (pixel) emulator, based on pygame
  LED matrix and 7-segment renderers
  PNG screen capture
  Animated GIF animator
  Real-time ASCII-art & block emulators

The package will be maintained under the umbrella of Debian Electronics Team.

Regards

Anton

-BEGIN PGP SIGNATURE-

iQJFBAEBCgAvFiEEu71F6oGKuG/2fnKF0+Fzg8+n/wYFAmHMt9cRHGdsYWRrQGRl
Ymlhbi5vcmcACgkQ0+Fzg8+n/waVMg//TAca1FBtYrMTxfbSWdLE440GWhR4hkyu
5CUWcXUVXG6drK7czesZUtKupQFmE0FYkoJ9Beft+MntGDEQnCUJI3cFDApoBtuJ
kHTRN7vGY0iSYVFk+DHwksi/ITuEKUYHvgO6NxT4JFPYik0+pWwUPJrx5Tjem9FS
Z1OMBv826Yg3GFfRX5W2XMrPCoRFtyTHpHs/ltXThMXe0LNuuZXIGKn+qWD7EVYI
LHAdRQ7VAv0JpoeN660ap0NB5kLuLKNuwkPhs8awSpxmMG1IlGc42DxrQJpjiMNt
xA97/uaVc6UGtrikhx/SBeHnlHjlZWvK9sXoxWsAyx7BaPvDFfBtU5MGOqerYc0w
73qeVmeu3KBVMPU+wyiVdoADqZJrPEOJx3RJP9XJ3abvFdmoJUBUWsOmGgSz1ZDW
HhZr+2rKYbiwnWCEXXTyYYOHLZoZImdUfPxmT1JnzhokGJSQdmjukbkgZNiUWrSP
RbRK2o5jtSNQmiCy4wbZlG7c5bN0mwTliylUur6y90FJpjdHVAkWaEdLko6TqvFX
p7XhtLac7ZPDxGRC3TTcrRpcuIVp1y1/xLbKaF0dp3BUgYwXo4D0U6YR5WL/jy5k
sRx9jzdKbf9tQsqY93gEewdvnRe1OKyxWuq/UGquwHLvaGO47F5mZacPdRH1Kow4
plRPWlhlTpI=
=15fo
-END PGP SIGNATURE-

Bug#1002792: ITP: luma.lcd -- library interfacing small LCD displays

2021-12-28 Thread Anton Gladky

Package: wnpp
Severity: wishlist
Owner: Anton Gladky 
X-Debbugs-Cc: debian-de...@lists.debian.org

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

* Package name: luma.lcd
  Version : 2.9.0
  Upstream Author : Richard Hull and contributors
* URL : https://github.com/rm-hull/luma.lcd
* License : MIT
  Programming Lang: Python
  Description : library interfacing small LCD displays


Library provides a Python 3 interface to small LCD displays connected to
Raspberry Pi and other Linux-based single-board computers (SBC).
It currently supports devices using the HD44780, PCD8544, ST7735, HT1621, and
UC1701X controllers. It provides a Pillow-compatible drawing canvas, and other
functionality to support:
  scrolling/panning capability,
  terminal-style printing,
  state management,
  color/greyscale (where supported),
  dithering to monochrome

The package will be maintained under the umbrella of Debian Electronics Team.

Regards

Anton

-BEGIN PGP SIGNATURE-
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=S0Im
-END PGP SIGNATURE-

Bug#1002791: ITP: luma.oled -- Library interfacing OLED matrix displays

2021-12-28 Thread Anton Gladky

Package: wnpp
Severity: wishlist
Owner: Anton Gladky 
X-Debbugs-Cc: debian-de...@lists.debian.org

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

* Package name: luma.oled
  Version : 3.8.1
  Upstream Author : Richard Hull and contributors
* URL : https://github.com/rm-hull/luma.oled
* License : MIT
  Programming Lang: Python
  Description : Library interfacing OLED matrix displays

 Library interfacing OLED matrix displays with the
 SSD1306, SSD1309, SSD1322, SSD1325, SSD1327, SSD1331, SSD1351, SH1106 or WS0010
 driver using I2C/SPI/Parallel on the Raspberry Pi and other linux-based
 single-board computers - it provides a Pillow-compatible drawing canvas,
 and other functionality to support:
  scrolling/panning capability,
  terminal-style printing,
  state management,
  color/greyscale,
  dithering to monochrome

The package will be maintained under the umbrella of Debian Electronics Team.

Regards

Anton

-BEGIN PGP SIGNATURE-

iQJFBAEBCgAvFiEEu71F6oGKuG/2fnKF0+Fzg8+n/wYFAmHLeqMRHGdsYWRrQGRl
Ymlhbi5vcmcACgkQ0+Fzg8+n/wYhfBAAlb8R6iK+1U9yla3iTxff66EiXe6cSGys
aT4fWl23XtueT/Qa2wQrUNhVVQc909tqXPdvy6oU9Vf1FyD1WpRFHFSFWccw8+rA
p22Z8l5BuXT+Sxn3I/23mrzZ7D//udP3fa4xJUJE8v5iwAMQenIEcu6d7rVl3d76
qj+dmvkzLePp7wXy6JzXNnBUTGrYV+aKG5nGTFn1eJTwJpdq66y+28DtAkeZzDhc
UPllPc5TVnVoD20KBJGPPsesua1dHHpwdF3Sa6pVNJGKOj0BLBNlpLsHN7u+2RQA
19QAitNWq/GSP5iZSrDUdW/h2zKBo3+izWz6PwXL06TyCTYVzoKWwQgVaMKokMFY
dhevbWjw8xFvfOSaLS/sRnLtdfP5mTZEG/v6zV9qp8Pt9UOpitGT6ouJVnnsVx9H
GnD8ANLXa/1Hc9Hd3vs943N6CBmvYYCv9kAWhydJbkzbqbZ6Qvi5VPU4hakLfNBN
RJVR/g0bcUi0i4Lfq/0JNPa8s5zoCnLFeOB+Ic8/TR12ziR8OOZaQwwvi4+vZJPk
PqWBF3J2YeQsaGyyJh8zCcVg0fx8wdK/XYPusjAWgxcCUrvdwNx1mUs9v2zSScDJ
3N1IZUymB9SaOWakbpExG1xby0ddvqrCr5zpo9MeXuRwTewrSuOnMqsQNi/AqbMX
5u6La8/KqNE=
=YOPE
-END PGP SIGNATURE-

Bug#1002665: ITP: spidev -- Python bindings for Linux SPI access

2021-12-26 Thread Anton Gladky

Package: wnpp
Severity: wishlist
Owner: Anton Gladky 
X-Debbugs-Cc: debian-de...@lists.debian.org

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

* Package name: spidev
  Version : 3.5
  Upstream Author : Volker Thoms 
* URL : https://github.com/doceme/py-spidev/
* License : MIT
  Programming Lang: Python
  Description : Python bindings for Linux SPI access


This project contains a python module for interfacing with SPI devices
from user space via the spidev linux kernel driver.

The package will be maintained under Debian-electronics-team.


Regards,

Anton

-BEGIN PGP SIGNATURE-
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=l1pT
-END PGP SIGNATURE-

Bug#1002627: transition: alglib

2021-12-25 Thread Anton Gladky

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512


Dear release team,

please provide a slot for the transition of alglib.
All reverse-dependencies are checked and not FTBFS are detected.
So the tranition should be short and easy.

Thanks,

Anton


Ben file:

title = "alglib";
is_affected = .depends ~ "libalglib3.17" | .depends ~ "libalglib3.18";
is_good = .depends ~ "libalglib3.18";
is_bad = .depends ~ "libalglib3.17";

-BEGIN PGP SIGNATURE-

iQJFBAEBCgAvFiEEu71F6oGKuG/2fnKF0+Fzg8+n/wYFAmHHknARHGdsYWRrQGRl
Ymlhbi5vcmcACgkQ0+Fzg8+n/wb+Eg//VXgqo+MEfluKITlUQyu3bjJ0WP8rbRDb
Bf/0/cHAxjvhowRUI4h9KlyVfhkfDrXQ1+a7p4+M37XFj6uMxpvKrRBUJbfpjwge
D3ydsaS636bjcxhPL6Bf2UXLtAidQ4jWJgNjzgGevxyoTUeKvQX8CqrbYBi7HcxS
zr8JmfaJwwClRXgzhO34mWt5MxdhxlthjNMI17jrrkVxN8SbKYv7eablO3Nre4Mi
SDv16/Gd0T8ldOn41EfNz9F0Sm66XxNlNj7kCRP7c0EDtR/IBJ28NoaBh6jaoU/1
vGvhfsqXaO2XFXcgB4OW/wu3+ioL/Xv6rz88Ec44nEm5Tlbfv2gGfaKD7P2QBa0K
K5WdJOPrZTRfgimr02SS+tXdCZb/d+ucH44tvTgWxWiRFFIrKy+WRQsidYHZpfdP
F0CpRmDcydtr7fxxxz/yQFoUmDaB4wNF/wGOc1nhyH0PupaLEgDekbNuwzqlMu7K
TA/fj+6D5ws4FBxwauVEpWV2Qb8gwJByFXTaDt7vzEhlsDIwgjHP+TVdERyPhYE2
nhs/Hs+RUsYACEjqOk7HXGE+uIrsG05iD8yxFsgGsRdCssESWov5TBJwwm2Vlqq2
JOa/0Vv8iagsarO+neTiKhtRWW1LHqkmVye5uo9wTevj1Ws80aHETAWJqODOSfzU
BBTMi+957/A=
=yKYi
-END PGP SIGNATURE-

Bug#1002619: bullseye-pu: package gnuplot/gnuplot_5.4.1+dfsg1-1+deb11u1

2021-12-25 Thread Anton Gladky

Package: release.debian.org
Severity: normal
Tags: bullseye
User: release.debian@packages.debian.org
Usertags: pu

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Dear release team,

[ Reason ]
gnuplot_5.4.1+dfsg1-1+deb11u1 is fixing security issue CVE-2021-44917.
Please include it into the bullseye.

[ Impact ]
Security issue

[ Tests ]
Done on CI and locally.

[ Risks ]
No risks awaited

[ Checklist ]
  [x] *all* changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in (old)stable
  [x] the issue is verified as fixed in unstable

[ Changes ]
Patch imported from upstream.

Thanks

Anton

-BEGIN PGP SIGNATURE-
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=tBfC
-END PGP SIGNATURE-
diff -Nru gnuplot-5.4.1+dfsg1/debian/changelog 
gnuplot-5.4.1+dfsg1/debian/changelog
--- gnuplot-5.4.1+dfsg1/debian/changelog2020-12-03 22:27:21.0 
+0100
+++ gnuplot-5.4.1+dfsg1/debian/changelog2021-12-25 19:15:06.0 
+0100
@@ -1,3 +1,9 @@
+gnuplot (5.4.1+dfsg1-1+deb11u1) bullseye; urgency=medium
+
+  * Fix divide by zero vulnerability. CVE-2021-44917.  (Closes: #1002539)
+
+ -- Anton Gladky   Sat, 25 Dec 2021 19:15:06 +0100
+
 gnuplot (5.4.1+dfsg1-1) unstable; urgency=medium
 
   * [945257b] New upstream version 5.4.1+dfsg1
diff -Nru gnuplot-5.4.1+dfsg1/debian/.gitlab-ci.yml 
gnuplot-5.4.1+dfsg1/debian/.gitlab-ci.yml
--- gnuplot-5.4.1+dfsg1/debian/.gitlab-ci.yml   2020-09-24 23:46:23.0 
+0200
+++ gnuplot-5.4.1+dfsg1/debian/.gitlab-ci.yml   2021-12-25 19:15:06.0 
+0100
@@ -1,3 +1,4 @@
 include:
- - https://salsa.debian.org/salsa-ci-team/pipeline/raw/master/salsa-ci.yml
- - https://salsa.debian.org/salsa-ci-team/pipeline/raw/master/pipeline-jobs.yml
+ - 
https://salsa.debian.org/salsa-ci-team/pipeline/raw/master/recipes/debian.yml
+variables:
+  RELEASE: 'bullseye'
diff -Nru gnuplot-5.4.1+dfsg1/debian/patches/CVE-2021-44917.patch 
gnuplot-5.4.1+dfsg1/debian/patches/CVE-2021-44917.patch
--- gnuplot-5.4.1+dfsg1/debian/patches/CVE-2021-44917.patch 1970-01-01 
01:00:00.0 +0100
+++ gnuplot-5.4.1+dfsg1/debian/patches/CVE-2021-44917.patch 2021-12-25 
19:15:06.0 +0100
@@ -0,0 +1,114 @@
+Description: 
+ TODO: Put a short summary on the line above and replace this paragraph
+ with a longer explanation of this change. Complete the meta-information
+ with other relevant fields (see below for details). To make it easier, the
+ information below has been extracted from the changelog. Adjust it or drop
+ it.
+ .
+ gnuplot (5.4.2+dfsg2-1) unstable; urgency=medium
+ .
+   * [4370a18] Update d/watch
+   * [7d7c5c0] New upstream version 5.4.2+dfsg1.orig
+   * [97d5d83] Refresh patches
+   * [9d8bbae] Update gitlab.ci
+   * [e168129] Use secure URI in debian/watch.
+   * [08324bf] Bump debhelper from old 12 to 13.
+   * [3a47530] Update standards version to 4.5.1, no changes needed.
+   * [ba4a50d] Avoid explicitly specifying -Wl,--as-needed linker flag.
+   * [9ce752b] Set Standards-Version: 4.6.0
+   * [917e564] Use execute-syntax for some commands in d/rules
+Author: Anton Gladky 
+
+---
+The information above should follow the Patch Tagging Guidelines, please
+checkout http://dep.debian.net/deps/dep3/ to learn about the format. Here
+are templates for supplementary fields that you might want to add:
+
+Origin: , 
+Bug: 
+Bug-Debian: https://bugs.debian.org/
+Bug-Ubuntu: https://launchpad.net/bugs/
+Forwarded: 
+Reviewed-By: 
+Last-Update: 2021-12-25
+
+Index: gnuplot-5.4.1+dfsg1/src/set.c
+===
+--- gnuplot-5.4.1+dfsg1.orig/src/set.c
 gnuplot-5.4.1+dfsg1/src/set.c
+@@ -5058,18 +5058,6 @@ set_terminal()
+   fprintf(stderr,"Options are '%s'\n",term_options);
+ if ((term->flags & TERM_MONOCHROME))
+   init_monochrome();
+-
+-/* Sanity check:
+- * The most common failure mode found by fuzzing is a divide-by-zero
+- * caused by initializing the basic unit of the current terminal character
+- * size to zero.  I keep patching the individual terminals, but a generic
+- * sanity check may at least prevent a crash due to mistyping.
+-

Bug#1002046: ITP: bme280 -- Python interface for a Bosch BME280 digital sensor module

2021-12-20 Thread Anton Gladky

Package: wnpp
Severity: wishlist
Owner: Anton Gladky 
X-Debbugs-Cc: debian-de...@lists.debian.org

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

* Package name: bme280
  Version : 0.2.4~git720dcbe6+ds1
* URL : https://github.com/rm-hull/bme280/
* License : MIT
  Programming Lang: Python
  Description : Python interface for a Bosch BME280 digital sensor module

The package provides a python interface for BME280 sensor, measuring
temperature, humidity and pressure.

The package will be maintained under the roof of pkg-electronics team.

Anton

-BEGIN PGP SIGNATURE-
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=XrR8
-END PGP SIGNATURE-

Bug#984232: status

2021-12-17 Thread Anton Gladky

This bug is fixed. I followed the advice from Adrian and now the package
builds fine.

Regards

Anton

Am Sa., 18. Dez. 2021 um 01:39 Uhr schrieb Ryan Pavlik :
>
> The updated package just needs the copyright file updated and reviewed. If 
> you'd like a fix uploaded before I get a chance to do that (which is somewhat 
> intimidating, they swapped some bundled dependencies since the last packaged 
> version), please feel free to nmu. Alternately I'd happily accept an mr to 
> make the copyright file complete again.
>
> Ryan
>
> On Wed, Dec 15, 2021, 5:24 AM Adrian Bunk  wrote:
>>
>> On Mon, Nov 15, 2021 at 02:53:40PM -0600, Ryan Pavlik wrote:
>> > Upstream has fixed this, and I have a package with the latest upstream
>> > sources in progress, happy to accept help to put it over the edge.
>>
>> Any progress on this?
>>
>> If necessary, I could NMU with the minimal fix of adding
>>   export DEB_CXXFLAGS_MAINT_APPEND += -std=gnu++14
>> to debian/rules.
>>
>> > Ryan
>>
>> cu
>> Adrian
>>
> --
> debian-science-maintainers mailing list
> debian-science-maintain...@alioth-lists.debian.net
> https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-science-maintainers

Bug#1000611: libvtk9{,-qt}: soname change without library transition

2021-11-25 Thread Anton Gladky

Hi Adrian,

thanks for the bug report. It was really an accidental upload into
unstable instead of experimental. Yes, I will rename the package
and upload it ASAP.

Regards

Anton

Am Do., 25. Nov. 2021 um 22:03 Uhr schrieb Adrian Bunk :
>
> Package: libvtk9
> Version: 9.1.0+dfsg2-2
> Severity: serious
> Control: affects -1 libvtk9-qt src:vtk9
>
> https://ci.debian.net/data/autopkgtest/testing/amd64/f/freecad/16980590/log.gz
>
> ...
> ERROR: TestFemApp (unittest.loader._FailedTest)
> --
> ImportError: Failed to import test module: TestFemApp
> Traceback (most recent call last):
>   File "/usr/lib/python3.9/unittest/loader.py", line 154, in loadTestsFromName
> module = __import__(module_name)
>   File "/usr/share/freecad/Mod/Fem/TestFemApp.py", line 33, in 
> from femtest.app.test_mesh import TestMeshCommon as FemTest07
>   File "/usr/share/freecad/Mod/Fem/femtest/app/test_mesh.py", line 33, in 
> 
> import Fem
> ImportError: libvtkFiltersExtraction-9.0.so.1: cannot open shared object 
> file: No such file or directory
> ...
>
>
> The soname of the vtk9 libraries is not 9, it is 9.0 for VTK 9.0
> and 9.1 for VTK 9.1:
>
> $  objdump -p /usr/lib/x86_64-linux-gnu/libvtkChartsCore-9.1.so.1 | grep 
> SONAME
>   SONAME   libvtkChartsCore-9.1.so.1
> $
>
> In bullseye libvtk9 and libvtk9-qt should have been named
> libvtk9.0 and libvtk9.0-qt, but this alone is harmless.
>
> Not harmless is that the libraries must transition to the new
> soname in 9.1, renaming the packages to libvtk9.1 and libvtk9.1-qt.
>
> --
> debian-science-maintainers mailing list
> debian-science-maintain...@alioth-lists.debian.net
> https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-science-maintainers

Bug#1000539: RM: boost1.71 -- ROM; Outdated version

2021-11-24 Thread Anton Gladky

Package: ftp.debian.org
Severity: normal

Dear FTP masters,

please remove the boost1.71, which is replaced by a newer version.


Thanks

Anton

Bug#1000477: bullseye-pu: package gmp/2:6.2.1+dfsg-1+deb11u1

2021-11-23 Thread Anton Gladky

Package: release.debian.org
Severity: normal
Tags: bullseye
User: release.debian@packages.debian.org
Usertags: pu


Dear release team,

I have prepared a fix for bullseye, fixing CVE-2021-43618.
The fix was also successfully fixed in unstable and testing.
Gitlab-CI is employed for the package testing. Diff is aattached.

[ Checklist ]
 [x] *all* changes are documented in the d/changelog
 [x] I reviewed all changes and I approve them
 [x] attach debdiff against the package in (old)stable
 [x] the issue is verified as fixed in unstable

Thanks

Anton
diff -Nru gmp-6.2.1+dfsg/debian/changelog gmp-6.2.1+dfsg/debian/changelog
--- gmp-6.2.1+dfsg/debian/changelog 2020-11-15 19:04:37.0 +0100
+++ gmp-6.2.1+dfsg/debian/changelog 2021-11-23 21:37:19.0 +0100
@@ -1,3 +1,10 @@
+gmp (2:6.2.1+dfsg-1+deb11u1) bullseye; urgency=medium
+
+  * [ba91bc2] Add .gitlab-ci.yml
+  * [a848ad6] Avoid bit size overflows. CVE-2021-43618
+
+ -- Anton Gladky   Tue, 23 Nov 2021 21:37:19 +0100
+
 gmp (2:6.2.1+dfsg-1) unstable; urgency=medium
 
   [ Steve Robbins ]
diff -Nru gmp-6.2.1+dfsg/debian/.gitlab-ci.yml 
gmp-6.2.1+dfsg/debian/.gitlab-ci.yml
--- gmp-6.2.1+dfsg/debian/.gitlab-ci.yml1970-01-01 01:00:00.0 
+0100
+++ gmp-6.2.1+dfsg/debian/.gitlab-ci.yml2021-11-23 21:31:26.0 
+0100
@@ -0,0 +1,6 @@
+include:
+  - 
https://salsa.debian.org/salsa-ci-team/pipeline/raw/master/recipes/debian.yml
+variables:
+  RELEASE: 'bullseye'
+  SALSA_CI_DISABLE_REPROTEST: 1
+  SALSA_CI_DISABLE_BLHC: 1
diff -Nru gmp-6.2.1+dfsg/debian/patches/CVE-2021-43618.patch 
gmp-6.2.1+dfsg/debian/patches/CVE-2021-43618.patch
--- gmp-6.2.1+dfsg/debian/patches/CVE-2021-43618.patch  1970-01-01 
01:00:00.0 +0100
+++ gmp-6.2.1+dfsg/debian/patches/CVE-2021-43618.patch  2021-11-23 
21:36:27.0 +0100
@@ -0,0 +1,25 @@
+# Origin: https://gmplib.org/repo/gmp-6.2/rev/561a9c25298e
+# HG changeset patch
+# User Marco Bodrato 
+# Date 1634836009 -7200
+# Node ID 561a9c25298e17bb01896801ff353546c6923dbd
+# Parent  e1fd9db13b475209a864577237ea4b9105b3e96e
+mpz/inp_raw.c: Avoid bit size overflows
+
+Index: gmp/mpz/inp_raw.c
+===
+--- gmp.orig/mpz/inp_raw.c
 gmp/mpz/inp_raw.c
+@@ -88,8 +88,11 @@ mpz_inp_raw (mpz_ptr x, FILE *fp)
+ 
+   abs_csize = ABS (csize);
+ 
++  if (UNLIKELY (abs_csize > ~(mp_bitcnt_t) 0 / 8))
++return 0; /* Bit size overflows */
++
+   /* round up to a multiple of limbs */
+-  abs_xsize = BITS_TO_LIMBS (abs_csize*8);
++  abs_xsize = BITS_TO_LIMBS ((mp_bitcnt_t) abs_csize * 8);
+ 
+   if (abs_xsize != 0)
+ {
diff -Nru gmp-6.2.1+dfsg/debian/patches/series 
gmp-6.2.1+dfsg/debian/patches/series
--- gmp-6.2.1+dfsg/debian/patches/series1970-01-01 01:00:00.0 
+0100
+++ gmp-6.2.1+dfsg/debian/patches/series2021-11-15 22:20:32.0 
+0100
@@ -0,0 +1 @@
+CVE-2021-43618.patch

Bug#1000473: buster-pu: package gmp/gmp_6.1.2+dfsg-4+deb10u1

2021-11-23 Thread Anton Gladky

Package: release.debian.org
Severity: normal
Tags: buster
User: release.debian@packages.debian.org
Usertags: pu


Dear release team,

I have prepared a fix for buster, fixing CVE-2021-43618.
The fix was also successfully fixed in unstable and testing.
Gitlab-CI is employed for the package testing. Diff is applied.
Thanks

[ Checklist ]
  [x] *all* changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in (old)stable
  [x] the issue is verified as fixed in unstable

Thanks

Anton
diff -Nru gmp-6.1.2+dfsg/debian/changelog gmp-6.1.2+dfsg/debian/changelog
--- gmp-6.1.2+dfsg/debian/changelog 2018-12-02 07:39:34.0 +0100
+++ gmp-6.1.2+dfsg/debian/changelog 2021-11-23 21:09:08.0 +0100
@@ -1,3 +1,10 @@
+gmp (2:6.1.2+dfsg-4+deb10u1) buster; urgency=medium
+
+  * [1f4ce6d] Add .gitlab-ci.yml
+  * [df6d314] Avoid bit size overflows. CVE-2021-43618
+
+ -- Anton Gladky   Tue, 23 Nov 2021 21:09:08 +0100
+
 gmp (2:6.1.2+dfsg-4) unstable; urgency=medium
 
   * Team Upload.
diff -Nru gmp-6.1.2+dfsg/debian/.gitlab-ci.yml 
gmp-6.1.2+dfsg/debian/.gitlab-ci.yml
--- gmp-6.1.2+dfsg/debian/.gitlab-ci.yml1970-01-01 01:00:00.0 
+0100
+++ gmp-6.1.2+dfsg/debian/.gitlab-ci.yml2021-11-23 21:04:00.0 
+0100
@@ -0,0 +1,6 @@
+include:
+  - 
https://salsa.debian.org/salsa-ci-team/pipeline/raw/master/recipes/debian.yml
+variables:
+  RELEASE: 'buster'
+  SALSA_CI_DISABLE_REPROTEST: 1
+  SALSA_CI_DISABLE_BLHC: 1
diff -Nru gmp-6.1.2+dfsg/debian/patches/CVE-2021-43618.patch 
gmp-6.1.2+dfsg/debian/patches/CVE-2021-43618.patch
--- gmp-6.1.2+dfsg/debian/patches/CVE-2021-43618.patch  1970-01-01 
01:00:00.0 +0100
+++ gmp-6.1.2+dfsg/debian/patches/CVE-2021-43618.patch  2021-11-23 
21:06:22.0 +0100
@@ -0,0 +1,25 @@
+# Origin: https://gmplib.org/repo/gmp-6.2/rev/561a9c25298e
+# HG changeset patch
+# User Marco Bodrato 
+# Date 1634836009 -7200
+# Node ID 561a9c25298e17bb01896801ff353546c6923dbd
+# Parent  e1fd9db13b475209a864577237ea4b9105b3e96e
+mpz/inp_raw.c: Avoid bit size overflows
+
+Index: gmp/mpz/inp_raw.c
+===
+--- gmp.orig/mpz/inp_raw.c
 gmp/mpz/inp_raw.c
+@@ -89,8 +89,11 @@ mpz_inp_raw (mpz_ptr x, FILE *fp)
+ 
+   abs_csize = ABS (csize);
+ 
++  if (UNLIKELY (abs_csize > ~(mp_bitcnt_t) 0 / 8))
++return 0; /* Bit size overflows */
++
+   /* round up to a multiple of limbs */
+-  abs_xsize = BITS_TO_LIMBS (abs_csize*8);
++  abs_xsize = BITS_TO_LIMBS ((mp_bitcnt_t) abs_csize * 8);
+ 
+   if (abs_xsize != 0)
+ {
diff -Nru gmp-6.1.2+dfsg/debian/patches/series 
gmp-6.1.2+dfsg/debian/patches/series
--- gmp-6.1.2+dfsg/debian/patches/series2018-12-02 07:39:27.0 
+0100
+++ gmp-6.1.2+dfsg/debian/patches/series2021-11-23 21:06:09.0 
+0100
@@ -1 +1,2 @@
 gmp-exception-sigfpe.patch
+CVE-2021-43618.patch

Bug#1000409: ITP: dyssol -- tool for dynamic flowsheet simulation

2021-11-22 Thread Anton Gladky

Package: wnpp
Severity: wishlist
Owner: Anton Gladky 
X-Debbugs-Cc: debian-de...@lists.debian.org

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

* Package name: dyssol
  Version : 1.0
  Upstream Author : Dyssol Development Team
* URL : https://github.com/FlowsheetSimulation/Dyssol-open
* License : MIT
  Programming Lang: C++
  Description : tool for dynamic flowsheet simulation


Dyssol, the dynamic simulation of solids processes, is a novel dynamic
flowsheet modelling system designed to simulate the time-dependent behaviour
of complex production processes in solids processing technology. Key features 
including:

1. Dynamic simulation of flowsheets to reflect the time-dependent behaviour of 
processes
   and to take into account the accumulation of mass and energy;
2. Proper calculation of multidimensional distributed parameters of the solid 
phase,
   considering their possible interdependence;
3. Flexibility and extensibility of the system for adding new models of 
apparatuses and solvers.

And distinctive features including:
  * Dynamic simulation of complex process structures;
  * Advanced calculation algorithm for dynamic simulations;
  * Consideration of solid, liquid, gas phases and their mixtures;
  * Proper handling of multidimensional interdependent distributed parameters 
of solids;
  * Providing standardized interfaces and templates for implementation of new 
units;
  * High modularity and extensibility.

The package will be maintained under the roof of Debian Science Team.


Anton
  

-BEGIN PGP SIGNATURE-
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=Sxnh
-END PGP SIGNATURE-

Bug#994405: libgmp10:i386: buffer overflow due to integer overflow in mpz/inp_raw.c on 32-bit machines

2021-11-14 Thread Anton Gladky

CVE-2021-43618 is assigned to this issue.

Adrian Bunk  schrieb am Sa., 13. Nov. 2021, 21:09:

> On Fri, Sep 17, 2021 at 07:02:48AM +0200, Anton Gladky wrote:
> > Thanks, Vincent, for the information. I would still wait for CVE,
> > so we can apply a patch and track vulnerability for other
> > Debian versions (stable/oldstable/o-o-stable etc.).
>
> Hi Anton,
>
> did you manage to get a CVE assigned for this issue, or has there been
> any problem with tnat?
>
> > Regards
> >
> > Anton
>
> Thanks
> Adrian
>

Bug#994405: libgmp10:i386: buffer overflow due to integer overflow in mpz/inp_raw.c on 32-bit machines

2021-11-14 Thread Anton Gladky

Thanks, Vincent,

now I am able to reproduce the issue!

I will request CVE.

Regards

Anton

Am So., 14. Nov. 2021 um 15:44 Uhr schrieb Vincent Lefevre :
>
> On 2021-11-14 14:15:25 +0100, Anton Gladky wrote:
> > well, I was thinking that upstream should request a CVE. Neverheless
> > I could not reproduce the issue with the modern GCC-versions.
> > Even on 32bit-systems.
>
> I can still reproduce the segmentation fault under Debian/unstable.
> Simplified testcase:
>
> #include 
> #include 
>
> int main (void)
> {
>   mpz_t s;
>   mpz_init (s);
>   mpz_inp_raw (s, stdin);
>   return 0;
> }
>
> Compile with gcc -m32 and execute:
>
>   printf 12345 | ./testcase
>
> Note that even if you don't get a segmentation fault, there may be
> other erratic behaviors, such as silent memory corruption (which may
> be even worse).
>
> --
> Vincent Lefèvre  - Web: <https://www.vinc17.net/>
> 100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/>
> Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)
>

Bug#994405: libgmp10:i386: buffer overflow due to integer overflow in mpz/inp_raw.c on 32-bit machines

2021-11-14 Thread Anton Gladky

Hi Adrian,

well, I was thinking that upstream should request a CVE. Neverheless
I could not reproduce the issue with the modern GCC-versions.
Even on 32bit-systems.

Regards

Anton

Am Sa., 13. Nov. 2021 um 21:09 Uhr schrieb Adrian Bunk :
>
> On Fri, Sep 17, 2021 at 07:02:48AM +0200, Anton Gladky wrote:
> > Thanks, Vincent, for the information. I would still wait for CVE,
> > so we can apply a patch and track vulnerability for other
> > Debian versions (stable/oldstable/o-o-stable etc.).
>
> Hi Anton,
>
> did you manage to get a CVE assigned for this issue, or has there been
> any problem with tnat?
>
> > Regards
> >
> > Anton
>
> Thanks
> Adrian

Bug#996204: Bug#998411: Bug#996204: transition: numerical library stack: hypre SONAME (Policy 8.1)

2021-11-04 Thread Anton Gladky

I have fixed gmsh. It will appear in NEW soon.

Regards

Anton

Bug#996204: transition: numerical library stack

2021-10-31 Thread Anton Gladky

sundials_5.8.0 is in unstable already.

Cheers


Anton

Bug#996204: transition: numerical library stack

2021-10-26 Thread Anton Gladky

OK, I will upload it into unstable very soon. What abou #997664?
The package should go to NEW actually. Or leave it as it is for the moment?

Anton

Am Mo., 25. Okt. 2021 um 21:15 Uhr schrieb Drew Parsons :
>
> The sundials 5.8.0 test build in experimental looks successful.
> Probably not worth waiting for the mipsel build, it's been slow to
> build, especially for experimental.
>
> Drew
>
>
>
> On 2021-10-22 17:40, Anton Gladky wrote:
> > Great, thanks! Will do it very shortly.
> >
> > Anton
> >
> > Sebastian Ramacher  schrieb am Fr., 22. Okt.
> > 2021, 14:35:
> ...
> >>
> >> I think we are ready for the sundials upload.
> >>

Bug#997664: sundials: apparent ABI bumps in sundials5 library packages

2021-10-23 Thread Anton Gladky

Hi Drew,

Thanks for the catch!

yes,  library splitting is somehow strange in this package. We should
probably split it in much more sublibs to escape such situations in the
future.

Regards

Anton

Drew Parsons  schrieb am So., 24. Okt. 2021, 02:18:

> Source: sundials
> Version: 5.7.0+dfsg-1
> Severity: normal
>
> Unless I misunderstood the package naming system for sundials, looks
> like there was an ABI bump in sublibraries when sundials upgraded from
> v4 to v5.
>
> It can be seen in 5.7.0+dfsg-1, so it's not a side-effect of the the new
> 5.8.0 build (hence no need to block 5.8.0 with severity Serious).
>
> The apparently upgraded libraries are
>
> arkode3  ->  arkode4  (libsundials_arkode.so.4)
> cvode[s]4  ->  cvodes5  (libsundials_cvode[s].so.5 )
> ida[s]4  ->  ida5  (libsundials_ida[s].so.5)
> kinsol4  ->  kinsol5  (libsundials_kinsol.so.5)
> nvecserial4 ->  nvecserial5  (libsundials_nvecserial.so.5)
> sunmatrix2  ->  sunmatrix3   (libsundials_sunmatrixband.so.3 etc)
> sunlinsol2  ->  sunlinsol3   (libsundials_fsunlinsolband.so.3 etc, and
> other anomalies)
>
> nvecparallel-XX4  ->  nvecparallel-XX5 (libsundials_nvecXX.so.5)
> (XX = pthread, petsc, openmp, mpi, hypre)
>
> --
> debian-science-maintainers mailing list
> debian-science-maintain...@alioth-lists.debian.net
>
> https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-science-maintainers
>

Bug#996204: transition: numerical library stack

2021-10-22 Thread Anton Gladky

Great, thanks! Will do it very shortly.

Anton

Sebastian Ramacher  schrieb am Fr., 22. Okt. 2021,
14:35:

> Hi Anton
>
> On 2021-10-12 13:09:02, Drew Parsons wrote:
> > Package: release.debian.org
> > Severity: normal
> > User: release.debian@packages.debian.org
> > Usertags: transition
> > X-Debbugs-Cc: debian-scie...@lists.debian.org, Anton Gladky <
> gl...@debian.org>
> >
> > I'd like to proceed with a transition of the numerical library stack.
> > This involves
> >
> > superlu   5.2.2+dfsg1 -> 5.3.0+dfsg1  (both libsuperlu5 so not
> really a transition)
> > superlu-dist  libsuperlu-dist6 -> libsuperlu-dist7
> > hypre 2.18.2 -> 2.22.1 (internal within libhypre-dev)
> > mumps libmumps-5.3 -> libmumps-5.4
> > scotch6.1.0 -> 6.1.1 (both libscotch-6.1 so not a transition)
> > petsc libpetsc-.*3.14 -> libpetsc-.*3.15
> > slepc libslepc-.*3.14 -> libslepc-.*3.15
> > (together with petsc4py, slepc4py)
> >
> > Header packages libxtensor-dev, libxtensor-blas-dev will also be
> > upgraded (xtl-dev 0.7.2 already got uploaded to unstable).
> >
> > fenics-dolfinx will upgrade
> >   libdolfinx-.*2019.2 -> libdolfinx-.*0.3
> > (along with other fenics components). There is currently some problem
> > with fenics-dolfinx 1:0.3.0-4 on 32-bit arches i386, armel, armhf.
> > I'll skip the demo_poisson_mpi tests for them if necessary.
> >
> > sundials 5.7.0 is incompatible with hypre 2.22, Anton Gladky (cc:d) will
> > upgrade to sundials 5.8.0.
>
> I think we are ready for the sundials upload.
>
> Cheers
>
> >
> > openmpi/mpi4py/h5py have recently migrated to testing so shouldn't give
> > any particular trouble (apart from the known 32-bit dolfinx problem)
> >
> > auto transitions are already in place:
> >
> > https://release.debian.org/transitions/html/auto-superlu-dist.html
> > https://release.debian.org/transitions/html/auto-mumps.html
> > https://release.debian.org/transitions/html/auto-petsc.html
> > https://release.debian.org/transitions/html/auto-slepc.html
> >
> >
> > Ben file:
> >
> > title = "numerical library stack";
> > is_affected = .depends ~ "libpetsc-.*3.14" | .depends ~
> "libpetsc-.*3.15";
> > is_good = .depends ~ "libpetsc-.*3.15";
> > is_bad = .depends ~ "libpetsc-.*3.14";
> >
>
> --
> Sebastian Ramacher
>

Bug#996976: vtk6: Remove vtk6 from the Debian 12

2021-10-21 Thread Anton Gladky

Source: vtk6
Severity: serious


vtk has now 3 versions in archive: vtk6, vtk7 and vtk9.
Intention is to remove older unsupported versions in favour of cyrrent vtk9.

Bug#996695: buster-pu: package plib/plib_1.8.5-8+deb10u1

2021-10-17 Thread Anton Gladky

Package: release.debian.org
Severity: normal
Tags: buster
User: release.debian@packages.debian.org
Usertags: pu

Anton Gladky 
  
Anhänge15:17 (vor 1 Minute)
  
an Debian; Bcc: gladk
Package: release.debian.org
Severity: normal
Tags: bullseye
User: release.debian@packages.debian.org
Usertags: pu

Dear release team,

the plib versioned 1.8.5-8+deb10u1 is prepared for the bullseye next
stable release.

[ Reason ]
This upload fixes a security issue CVE-2021-38714.

[ Impact ]
It should not have any impact on end users.

[ Tests ]
Salsa-ci is employed to check main package characteristics
https://salsa.debian.org/debian/plib/-/pipelines/303704

[ Risks ]
No risks are known.

[ Checklist ]
  [x] *all* changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in (old)stable
  [x] the issue is verified as fixed in unstable

[ Changes ]
See attached diff. Sanitized values check is implemented.

Best regards

Anton
diff -Nru plib-1.8.5/debian/changelog plib-1.8.5/debian/changelog
--- plib-1.8.5/debian/changelog 2017-07-24 21:24:48.0 +0200
+++ plib-1.8.5/debian/changelog 2021-10-17 14:56:13.0 +0200
@@ -1,3 +1,10 @@
+plib (1.8.5-8+deb10u1) buster; urgency=medium
+
+  * Prevent integer overflow in ssgLoadTGA() function. CVE-2021-38714
+(Closes: #992973)
+
+ -- Anton Gladky   Sun, 17 Oct 2021 14:56:13 +0200
+
 plib (1.8.5-8) unstable; urgency=medium
 
   * QA upload.
diff -Nru plib-1.8.5/debian/.gitlab-ci.yml plib-1.8.5/debian/.gitlab-ci.yml
--- plib-1.8.5/debian/.gitlab-ci.yml1970-01-01 01:00:00.0 +0100
+++ plib-1.8.5/debian/.gitlab-ci.yml2021-10-17 14:56:13.0 +0200
@@ -0,0 +1,7 @@
+include:
+  - 
https://salsa.debian.org/salsa-ci-team/pipeline/raw/master/recipes/debian.yml
+
+variables:
+  RELEASE: 'buster'
+  SALSA_CI_COMPONENTS: 'main contrib non-free'
+  SALSA_CI_DISABLE_REPROTEST: 1
diff -Nru plib-1.8.5/debian/patches/08_CVE-2021-38714.patch 
plib-1.8.5/debian/patches/08_CVE-2021-38714.patch
--- plib-1.8.5/debian/patches/08_CVE-2021-38714.patch   1970-01-01 
01:00:00.0 +0100
+++ plib-1.8.5/debian/patches/08_CVE-2021-38714.patch   2021-10-10 
15:14:22.0 +0200
@@ -0,0 +1,64 @@
+Description: Prevent integer overflow in ssgLoadTGA() function. CVE-2021-38714
+Author: Anton Gladky 
+Bug-Debian: https://bugs.debian.org/992973
+Last-Update: 2021-10-02
+
+Index: plib/src/ssg/ssgLoadTGA.cxx
+===
+--- plib.orig/src/ssg/ssgLoadTGA.cxx
 plib/src/ssg/ssgLoadTGA.cxx
+@@ -23,6 +23,7 @@
+ 
+ 
+ #include "ssgLocal.h"
++#include 
+ 
+ #ifdef SSG_LOAD_TGA_SUPPORTED
+ 
+@@ -103,9 +104,9 @@ bool ssgLoadTGA ( const char *fname, ssg
+ 
+ // image info
+ int type = header[2];
+-int xsize = get16u(header + 12);
+-int ysize = get16u(header + 14);
+-int bits  = header[16];
++unsigned int xsize = get16u(header + 12);
++unsigned int ysize = get16u(header + 14);
++unsigned int bits  = header[16];
+ 
+ /* image types:
+  *
+@@ -169,9 +170,32 @@ bool ssgLoadTGA ( const char *fname, ssg
+ }
+ 
+ 
++const auto bytes_to_allocate = (bits / 8) * xsize * ysize;
++
++ulSetError( UL_DEBUG, "bytes_to_allocate=%ld xsize = %ld, ysize = %ld, 
%ld == %ld ", bytes_to_allocate, xsize, ysize, bytes_to_allocate / xsize, 
(ysize * (bits / 8)));
++
++if (xsize != 0 && ((ysize * (bits / 8)) != bytes_to_allocate / xsize))
++{
++  ulSetError( UL_WARNING, "Integer overflow in image size: xsize = %d, 
ysize = %d", xsize, ysize);
++  return false;
++}
++else
++{
++ulSetError( UL_DEBUG, "ssgLoadTGA: Allocating %ld bytes for the size 
%d x %d", bytes_to_allocate, xsize, ysize );
++}
++
+ // read image data
+ 
+-GLubyte *image = new GLubyte [ (bits / 8) * xsize * ysize ];
++GLubyte *image;
++try
++{
++image = new GLubyte [ bytes_to_allocate ];
++}
++catch (const std::bad_alloc&)
++{
++ulSetError( UL_WARNING, "ssgLoadTGA:  Allocation of %d bytes 
failed!", bytes_to_allocate);
++  return false;
++}
+ 
+ if ((type & 8) != 0) 
+ {
diff -Nru plib-1.8.5/debian/patches/series plib-1.8.5/debian/patches/series
--- plib-1.8.5/debian/patches/series2017-07-24 20:11:17.0 +0200
+++ plib-1.8.5/debian/patches/series2021-10-02 13:24:19.0 +0200
@@ -6,3 +6,4 @@
 06_spelling_errors.diff
 05_CVE-2012-4552.diff
 07_dont_break_joystick_system_calibration.diff
+08_CVE-2021-38714.patch

Bug#996694: bullseye-pu: package plib/1.8.5-8+deb11u1

2021-10-17 Thread Anton Gladky

Package: release.debian.org
Severity: normal
Tags: bullseye
User: release.debian@packages.debian.org
Usertags: pu

Dear release team,

the plib versioned 1.8.5-8+deb10u1 is prepared for the bullseye next
stable release.

[ Reason ]
This upload fixes a security issue CVE-2021-38714.

[ Impact ]
It should not have any impact on end users.

[ Tests ]
Salsa-ci is employed to check main package characteristics
https://salsa.debian.org/debian/plib/-/pipelines/303701

[ Risks ]
No risks are known.

[ Checklist ]
  [x] *all* changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in (old)stable
  [x] the issue is verified as fixed in unstable

[ Changes ]
See attached diff. Sanitized values check is implemented.

Best regards

Anton
diff -Nru plib-1.8.5/debian/changelog plib-1.8.5/debian/changelog
--- plib-1.8.5/debian/changelog 2017-07-24 21:24:48.0 +0200
+++ plib-1.8.5/debian/changelog 2021-10-17 14:56:13.0 +0200
@@ -1,3 +1,10 @@
+plib (1.8.5-8+deb11u1) bullseye; urgency=medium
+
+  * Prevent integer overflow in ssgLoadTGA() function. CVE-2021-38714
+(Closes: #992973)
+
+ -- Anton Gladky   Sun, 17 Oct 2021 14:56:13 +0200
+
 plib (1.8.5-8) unstable; urgency=medium
 
   * QA upload.
diff -Nru plib-1.8.5/debian/.gitlab-ci.yml plib-1.8.5/debian/.gitlab-ci.yml
--- plib-1.8.5/debian/.gitlab-ci.yml1970-01-01 01:00:00.0 +0100
+++ plib-1.8.5/debian/.gitlab-ci.yml2021-10-17 14:56:13.0 +0200
@@ -0,0 +1,7 @@
+include:
+  - 
https://salsa.debian.org/salsa-ci-team/pipeline/raw/master/recipes/debian.yml
+
+variables:
+  RELEASE: 'bullseye'
+  SALSA_CI_COMPONENTS: 'main contrib non-free'
+  SALSA_CI_DISABLE_REPROTEST: 1
diff -Nru plib-1.8.5/debian/patches/08_CVE-2021-38714.patch 
plib-1.8.5/debian/patches/08_CVE-2021-38714.patch
--- plib-1.8.5/debian/patches/08_CVE-2021-38714.patch   1970-01-01 
01:00:00.0 +0100
+++ plib-1.8.5/debian/patches/08_CVE-2021-38714.patch   2021-10-10 
15:14:22.0 +0200
@@ -0,0 +1,64 @@
+Description: Prevent integer overflow in ssgLoadTGA() function. CVE-2021-38714
+Author: Anton Gladky 
+Bug-Debian: https://bugs.debian.org/992973
+Last-Update: 2021-10-02
+
+Index: plib/src/ssg/ssgLoadTGA.cxx
+===
+--- plib.orig/src/ssg/ssgLoadTGA.cxx
 plib/src/ssg/ssgLoadTGA.cxx
+@@ -23,6 +23,7 @@
+ 
+ 
+ #include "ssgLocal.h"
++#include 
+ 
+ #ifdef SSG_LOAD_TGA_SUPPORTED
+ 
+@@ -103,9 +104,9 @@ bool ssgLoadTGA ( const char *fname, ssg
+ 
+ // image info
+ int type = header[2];
+-int xsize = get16u(header + 12);
+-int ysize = get16u(header + 14);
+-int bits  = header[16];
++unsigned int xsize = get16u(header + 12);
++unsigned int ysize = get16u(header + 14);
++unsigned int bits  = header[16];
+ 
+ /* image types:
+  *
+@@ -169,9 +170,32 @@ bool ssgLoadTGA ( const char *fname, ssg
+ }
+ 
+ 
++const auto bytes_to_allocate = (bits / 8) * xsize * ysize;
++
++ulSetError( UL_DEBUG, "bytes_to_allocate=%ld xsize = %ld, ysize = %ld, 
%ld == %ld ", bytes_to_allocate, xsize, ysize, bytes_to_allocate / xsize, 
(ysize * (bits / 8)));
++
++if (xsize != 0 && ((ysize * (bits / 8)) != bytes_to_allocate / xsize))
++{
++  ulSetError( UL_WARNING, "Integer overflow in image size: xsize = %d, 
ysize = %d", xsize, ysize);
++  return false;
++}
++else
++{
++ulSetError( UL_DEBUG, "ssgLoadTGA: Allocating %ld bytes for the size 
%d x %d", bytes_to_allocate, xsize, ysize );
++}
++
+ // read image data
+ 
+-GLubyte *image = new GLubyte [ (bits / 8) * xsize * ysize ];
++GLubyte *image;
++try
++{
++image = new GLubyte [ bytes_to_allocate ];
++}
++catch (const std::bad_alloc&)
++{
++ulSetError( UL_WARNING, "ssgLoadTGA:  Allocation of %d bytes 
failed!", bytes_to_allocate);
++  return false;
++}
+ 
+ if ((type & 8) != 0) 
+ {
diff -Nru plib-1.8.5/debian/patches/series plib-1.8.5/debian/patches/series
--- plib-1.8.5/debian/patches/series2017-07-24 20:11:17.0 +0200
+++ plib-1.8.5/debian/patches/series2021-10-02 13:24:19.0 +0200
@@ -6,3 +6,4 @@
 06_spelling_errors.diff
 05_CVE-2012-4552.diff
 07_dont_break_joystick_system_calibration.diff
+08_CVE-2021-38714.patch

Bug#994882: ITS: vitables

2021-09-22 Thread Anton Gladky

Hi Benda!

Thanks for your contribution. I have approved and merged your MR. Also I
have added you
to the Debian Science group on salsa.

@PICCA Frederic-Emmanuel ,
would you want also to check those changes?

Best regards

Anton


Am Mi., 22. Sept. 2021 um 16:18 Uhr schrieb Benda Xu :

> Package: vitables
> Version: 3.0.2-1
> Severity: normal
> X-Debbugs-Cc: Debian Science Maintainers <
> debian-science-maintain...@lists.alioth.debian.org>, Dmitrijs Ledkovs <
> dmitrij.led...@gmail.com>, Picca Frédéric-Emmanuel 
>
> Dear Maintainer,
>
> I am interested in co-maintaining vitables by joining the science team
> and appending myself as an uploader.
>
> The newest version (3.0.0-1.1) was NMU-ed and has not been included in
> the package Vcs for more than a year. Bug 966056 (a year old) prevents
> the version in bullseye to function if python3-sip is not installed. I
> think the current uploads need help.
>
> I have contributed to the present 3.0.0-1 release in 2019 and I would
> like to support packaging vitables in the long run, as I am an active
> user of it and giving my lectures with it.
>
> The diff is in the merge request:
>
>   https://salsa.debian.org/science-team/vitables/-/merge_requests/4
>
> Thanks for your consideration!
> Benda
>
> -- System Information:
> Debian Release: bullseye/sid
>   APT prefers stable
>   APT policy: (990, 'stable')
> Architecture: amd64 (x86_64)
>
> Kernel: Linux 5.10.0-5-amd64 (SMP w/8 CPU threads)
> Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
> set to en_US.UTF-8), LANGUAGE not set
> Shell: /bin/sh linked to /bin/dash
> Init: OpenRC (via /run/openrc), PID 1: init
>
> Versions of packages vitables depends on:
> ii  python3  3.9.2-2
> ii  python3-numexpr  2.7.2-2
> ii  python3-numpy1:1.19.5-1
> ii  python3-qtpy 1.9.0-3
> ii  python3-tables   3.6.1-3
>
> vitables recommends no packages.
>
> vitables suggests no packages.
>
> -- no debconf information
> --
> debian-science-maintainers mailing list
> debian-science-maintain...@alioth-lists.debian.net
>
> https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-science-maintainers
>

Bug#994405: libgmp10:i386: buffer overflow due to integer overflow in mpz/inp_raw.c on 32-bit machines

2021-09-16 Thread Anton Gladky

Thanks, Vincent, for the information. I would still wait for CVE,
so we can apply a patch and track vulnerability for other
Debian versions (stable/oldstable/o-o-stable etc.).

Regards

Anton


Am Fr., 17. Sept. 2021 um 01:17 Uhr schrieb Vincent Lefevre <
vinc...@vinc17.net>:

> On 2021-09-16 21:23:34 +0200, Anton Gladky wrote:
> > Thanks for the bug report. We will fix it when CVE (if any) will be
> > assigned and upstream patch will be available.
>
> FYI, an upstream patch is now available here:
>
>   https://gmplib.org/list-archives/gmp-bugs/2021-September/005087.html
>
> > Though, the integer overflows are not making the package unusable in
> > most cases.
>
> Yes, but they may introduce security issues, in particular here
> because the behavior depends on data from a file, which may be
> untrusted. That said, here it is probably wise to check that the
> size is not too large in order to prevent the address space from
> being exhausted.
>

Bug#994405: libgmp10:i386: buffer overflow due to integer overflow in mpz/inp_raw.c on 32-bit machines

2021-09-16 Thread Anton Gladky

Control: severity -1 important
Control: notfound -1 2:6.2.1+dfsg-2
Control: found -1 2:6.2.1+dfsg-1

Thanks for the bug report. We will fix it when CVE (if any) will be
assigned and upstream patch will be available.

Though, the integer overflows are not making the package unusable in most
cases.
Thus the severity is reduced.

Regards

Anton

Bug#994488: alglib: autopkgtest regression with CMake 3.19+

2021-09-16 Thread Anton Gladky

Hi Timo,

thanks for the patch! Yes, feel free to upload it. Please update git and
tag a new upload.

Regards

Anton


Am Do., 16. Sept. 2021 um 18:15 Uhr schrieb Timo Röhling <
roehl...@debian.org>:

> Package: src:alglib
> Version: 3.17.0-2
> Tag: patch
>
> Dear maintainer,
>
> the alglib autopkgtest suite fails due to a deprecation warning with
> CMake 3.19+ if cmake_minimum_required() requests a version earlier
> than 2.8.12. The attached patch bumps the minimum version in
> debian/tests to 3.7, which I picked because it is the CMake version
> in oldoldstable.
>
> As I am a member of the Science Team, I can also fix and upload this
> for you if you are starved for developer time; just give me the
> green light.
>
> Cheers
> Timo
>
> --
> ⢀⣴⠾⠻⢶⣦⠀   ╭╮
> ⣾⠁⢠⠒⠀⣿⡁   │ Timo Röhling   │
> ⢿⡄⠘⠷⠚⠋⠀   │ 9B03 EBB9 8300 DF97 C2B1  23BF CC8C 6BDD 1403 F4CA │
> ⠈⠳⣄   ╰╯
> --
> debian-science-maintainers mailing list
> debian-science-maintain...@alioth-lists.debian.net
>
> https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-science-maintainers
>

Bug#788411: Please update the patch

2021-09-06 Thread Anton Gladky

Hi Helmut,

thanks a lot for updated patch!

Please cancel NMU upload, because I am preparing the next gmp version,
where some
more bug sare fixed.

Also this debdiff introduces lintian-error [1] which should be fixed.

[1] https://salsa.debian.org/science-team/gmp/-/jobs/1917314
Thanks again

Anton


Am Mo., 6. Sept. 2021 um 08:11 Uhr schrieb Helmut Grohne :

> Control: tags -1 -moreinfo +pending
>
> Hi Anton,
>
> On Mon, Aug 30, 2021 at 10:44:34PM +0200, Anton Gladky wrote:
> > It looks like the symbol-file cannot be applied any more.
>
> Yes, it (the shell form) can still be applied.
>
> > Could you please update it, if this bug is still relevant?
>
> Yes, it still is relevant. There is no need to update it.
>
> > If not - please close it. Thanks.
>
> Closing it with my 2:6.2.1+dfsg-1.1 upload. Thanks.
>
> NMU diff attached for conformance with dev-ref.
>
> Helmut
>

Bug#788411: Please update the patch

2021-08-30 Thread Anton Gladky

control: tags -1 +moreinfo

Thanks for the patch!

It looks like the symbol-file cannot be applied any more.
Could you please update it, if this bug is still relevant?

If not - please close it. Thanks.

Anton

Bug#962728: F3D

2021-08-22 Thread Anton Gladky

Hello Francois,

I will take a look in the next few days.

Regards

Anton


Am So., 22. Aug. 2021 um 01:57 Uhr schrieb François Mazen :

> Hello Sylwester,
>
> Thanks for your interest in F3D, I'm working on the packaging of this
> software [1].
>
> The package is already on mentors [2], so let's hope that it will bring
> some DD's attention! [3]
>
> Best,
> François
>
> [1]: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985993
> [2]: https://mentors.debian.net/package/f3d/
> [3]: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986108
>
>
> --
> debian-science-maintainers mailing list
> debian-science-maintain...@alioth-lists.debian.net
>
> https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-science-maintainers
>

Bug#990898: unblock: httraqt/1.4.9-5

2021-07-10 Thread Anton Gladky

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Dear release team,

please unblock package httraqt.

Upload 1.4.9-5 fixes release critical bug #990895, which was
recently detected. Diff is attached.


unblock httraqt/1.4.9-5

Thanks

Anton

-BEGIN PGP SIGNATURE-
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=RzFI
-END PGP SIGNATURE-
diff --git a/debian/changelog b/debian/changelog
index c7da9ab..bf983b0 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+httraqt (1.4.9-5) unstable; urgency=medium
+
+  * Install doc-files in /usr/share/httraqt. (Closes: #990895)
+
+ -- Anton Gladky   Sat, 10 Jul 2021 22:16:58 +0200
+
 httraqt (1.4.9-4) unstable; urgency=medium
 
   * [936829d] Fix section in manpage. (Closes: #963343)
diff --git a/debian/httraqt.doc-base b/debian/httraqt.doc-base
index d97da4c..4fef6b5 100644
--- a/debian/httraqt.doc-base
+++ b/debian/httraqt.doc-base
@@ -4,5 +4,5 @@ Author: Xavier Roche & other contributors
 Section: Network/Web Browsing
 
 Format: HTML
-Index: /usr/share/doc/httraqt/help/index.html
-Files: /usr/share/doc/httraqt/help/*.*
+Index: /usr/share/httraqt/help/index.html
+Files: /usr/share/httraqt/help/*.*
diff --git a/debian/rules b/debian/rules
index c132f1a..ba78c0d 100755
--- a/debian/rules
+++ b/debian/rules
@@ -11,8 +11,3 @@ override_dh_installchangelogs:
 
 override_dh_auto_configure:
dh_auto_configure -- -DBUILD_DATE="$(BUILD_DATE)"
-
-override_dh_auto_install:
-   dh_auto_install
-   mkdir -p $(CURDIR)/debian/httraqt/usr/share/doc
-   mv $(CURDIR)/debian/httraqt/usr/share/httraqt 
$(CURDIR)/debian/httraqt/usr/share/doc/httraqt

1 2 3 4 5 6 7 8 9 10 >

1 - 100 of 1369 matches

Mail list logo