Re: Debian package manager privilege escalation attack
On Wed, Aug 11, 2021 at 10:55:44PM -0500, Brian Thompson wrote: > Thank you for bringing this to everyone's attention. This are very real > vulnerabilities. How are they vulnerabilities? > NPM has similar issues with stopping malicious packages from being > published to the FTP server. That's not what is the article about. > Malicious packages can and do make it into the dependency sets of > popular packages. This is a problem. I don't think that any amount of > human effort and attention can prevent malicious packages from making it > to the FTP server. This, again, is not what is the article about. Malicious packages don't need these "vulnerabilities" as they can put files to your file system directly. > Perhaps a workaround for users right now would be to have a user with > package management sudo access, and not much else. Ah, so you haven't read the article. > Also, we should notify our upstream projects, and the Linux community as > a whole, of these vulnerabilities. I believe that to be a moral > obligation. ... -- WBR, wRAR signature.asc Description: PGP signature
Re: Debian package manager privilege escalation attack
On Wed, Aug 11, 2021 at 11:30:27PM -0400, Timothy M Butterworth wrote: > I just ran across this article > https://blog.ikuamike.io/posts/2021/package_managers_privesc/ I tested > the attacks on Debian 11 and they work successfully giving me a root > shell prompt. I don't think calling this "privilege escalation" or "attack" is correct. The premise of the post is "the user should not be a root/admin user but has been assigned sudo permissions to run the package manager" and one doesn't really need a long article to prove that it's not secure. -- WBR, wRAR signature.asc Description: PGP signature
Re: Debian package manager privilege escalation attack
Timothy M Butterworth: > All, > > I just ran across this article > https://blog.ikuamike.io/posts/2021/package_managers_privesc/ I tested > the attacks on Debian 11 and they work successfully giving me a root > shell prompt. > > Tim > Hi Tim, All of the attacks presented assumes that the local user has "sudo" permissions to run apt and use that as the basis for escalating privileges (not commenting on yum or snap). I think it is a good demonstration of how some sudo policies are too lenient and can be exploited. Though I am not sure this is a bug in apt, as I do not think apt ever promised to be "safe" to use from a constrained sudo policy. Note that the blog post itself also mentions this: """ [...] In certain cases the user should not be a root/admin user but has been assigned sudo permissions to run the package manager only for package management purposes. We’ll look at how this permission can be abused to gain root access to the machine via a root shell. """ (from the "Introduction") My reading is that "this permission" refers to the "assigned sudo permissions". Thanks, ~Niels
Re: Steam Deck: good news for Linux gaming, bad news for Debian :(
On Thu, Aug 12, 2021 at 3:22 AM Timothy M Butterworth wrote: > Debian is missing KDE's Amarok music manager. Amarok was removed as it required the obsolete Qt 4 library. Now that upstream has finally ported it to Qt5, it could be reintroduced to Debian. https://tracker.debian.org/pkg/amarok https://tracker.debian.org/news/1055955/removed-290-2-from-unstable/ https://bugs.debian.org/935022 https://amarok.kde.org/en/node/890 https://www.debian.org/doc/manuals/developers-reference/ch05.html#reintroducing-pkgs > VirtualBox is not available on Debian 11. VirtualBox is not suitable for Debian stable because of how upstream does security updates. https://tracker.debian.org/pkg/virtualbox https://bugs.debian.org/794466 Also, it isn't in main because it needs a non-free compiler to build the BIOS. > I got tired of the constant need to download all of the packages. > I am on a metered internet connection. There are a couple of Debian initiatives that could help here: https://debdelta.debian.net/ https://wiki.debian.org/Teams/Dpkg/Spec/DeltaDebs > where people can create Repo's of newer software versions to > use with stable Debian. We have backports for that, and there is the bikesheds idea. https://backports.debian.org/ -- bye, pabs https://wiki.debian.org/PaulWise
Accepted pywps 4.4.5-1~exp1 (source) into experimental
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 12 Aug 2021 06:01:53 +0200 Source: pywps Architecture: source Version: 4.4.5-1~exp1 Distribution: experimental Urgency: medium Maintainer: Debian GIS Project Changed-By: Bas Couwenberg Changes: pywps (4.4.5-1~exp1) experimental; urgency=medium . * Team upload. * New upstream release. * Add python3-markupsafe to (build) dependencies. * Refresh patches. Checksums-Sha1: 863478f528cf8c3aaec0ec50471578f74faf573a 2391 pywps_4.4.5-1~exp1.dsc 9057bb3dc8b1e5b01686c1ede22b5459d4a5fdc8 381147 pywps_4.4.5.orig.tar.gz 494ec63e83e5bbb140cf4a97ebdfd9947ab19d1d 11948 pywps_4.4.5-1~exp1.debian.tar.xz 9cf2a10b323b31cc9217b40d3ad22d81c08f622d 12358 pywps_4.4.5-1~exp1_amd64.buildinfo Checksums-Sha256: 46d8e62b43be21c3efefda54b501220c2a38ad711a714b6c2889814be5473dc2 2391 pywps_4.4.5-1~exp1.dsc dcf04f59e8762a369571d3e8d319bf514bea08d2cd80c9e5b1173e272688 381147 pywps_4.4.5.orig.tar.gz 89d199e27b34d97fd548a6433c94824034f65742ed5bbc793ef2efac16961b88 11948 pywps_4.4.5-1~exp1.debian.tar.xz 6854002c44ae28cf7e7f90c9ac38382776532bc7fea3ad14e3a4ab86a44a9c0b 12358 pywps_4.4.5-1~exp1_amd64.buildinfo Files: 05f2565e52a44e6334cca4ddf71c1b95 2391 python optional pywps_4.4.5-1~exp1.dsc 38cb0d22e3827aa720a543d0ebba1fd2 381147 python optional pywps_4.4.5.orig.tar.gz 0e55939a7c0117e4f6779bf43341c1d6 11948 python optional pywps_4.4.5-1~exp1.debian.tar.xz 3706a7b9ac962f01a40ece093f2f38ac 12358 python optional pywps_4.4.5-1~exp1_amd64.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEgYLeQXBWQI1hRlDRZ1DxCuiNSvEFAmEUoZEACgkQZ1DxCuiN SvEbGRAArLBQc+5Z464KgP7AVycQhg+P8Tdan0uOid6I9+yGgWj/lRbk9qZ0l9Rb lkkBMfvAhX3WOnUkT0BDso0XR82PYXzCL7+k2w/4nWVL3uXywk3SMeeoqnjmfJ6r iDQLGadEoO7hvxkG4t+ByXt5z4NDI4QIdd7vAPH7Nx2iqhd+5psD9wtffnFrCaAr XLj3YB4cmRCumUznxc/mpMZ5qeN0Ao1XAPhLE0vwYuuoZ2W0M3lctVbCJ8YjKz+X 4vfJL2kH1sq2aYaw5vicbwJcuNOB90lPglEFEbzfYqRU7ecaHsOsUvWrLA22QkAJ 1DPoDc033UJ/PeOMgzKfDn66mGdJbmfZA+43FKr3M2SgIWp5t2JNWHuU/DT2vmmd Bf97e/WqoAow3ajr8e6uB68XJxYLTvzK3XwK1+USqi/qyiKvDUqATpIcKmcVD30A BU4+BavapMradsChFeQK02KpUIYR22cxmWwsV38ORWxGlul/aCvwzgPEyKQHLcnm 3c2gnwqV1uNCqfBK0WVXFzvpc19RHtvTmE+7jkkqW9BxtBR3c9pnIZUQflzTzCS+ Ww8LCQlS4mckDxAYJLnaLYPC0RY72uBkRegkCRJ7OFZdAjiMFr8ZOtnd8KMnXjLK vbTwIdTnk7F4WUjL36QS9gOcWaO8Miz7wybVr6wLti7jXKe62dU= =zAy2 -END PGP SIGNATURE-
Re: Debian package manager privilege escalation attack
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On Wed, 2021-08-11 at 23:30 -0400, Timothy M Butterworth wrote: > All, > > I just ran across this article > https://blog.ikuamike.io/posts/2021/package_managers_privesc/ I tested > the attacks on Debian 11 and they work successfully giving me a root > shell prompt. > > Tim Thank you for bringing this to everyone's attention. This are very real vulnerabilities. NPM has similar issues with stopping malicious packages from being published to the FTP server. They have made some improvements after they were aware of the issue, but I haven't heard any new developments at NPM about how to stop malicious packages from making it to the server. Malicious packages can and do make it into the dependency sets of popular packages. This is a problem. I don't think that any amount of human effort and attention can prevent malicious packages from making it to the FTP server. I think that AI would be better-equipped to handle the critical checks necessary for FTP upload security to be top-of-the-line. The AI couldn't just be left unchecked, though, and humans are still needed to monitor, tweak, and make sure the AI is working and behaving in a responsible manner. As far as behaving responsibly is concerned, the main issue I foresee is having the AI flag false positives, and making sure the AI doesn't evolve into something insidious. I'm not sure if that last point can exist within limited AI, because I am not an AI expert. Perhaps a workaround for users right now would be to have a user with package management sudo access, and not much else. sudo access for package managers would have to be disallowed at the root and [other] user levels. I am not even sure that this would even work for all use cases, and having a manual ad-hoc hotfix is far from ideal. What does the Debian community think about this? Also, we should notify our upstream projects, and the Linux community as a whole, of these vulnerabilities. I believe that to be a moral obligation. - -- Best regards, Brian T. -BEGIN PGP SIGNATURE- iQJHBAEBCgAxFiEE9fpVo96/flopdKOfgw2Ncu3Nhn0FAmEUm8ATHGJyaWFuQGhh c2h2YXVsdC5pbwAKCRCDDY1y7c2GfYQuD/47aYb4u7hIZ0n8yAdfzPVHVjvYrOzc Ke7sSSHktgtsBPxWulXjwggm4/XlYlk06TEmDycr60/Ql1ncPZkZ9L2WaKUWabiy fZ3wSaN7Sd8fCM2ls4GGr6m66UiqjIYzmlJJrn3WdVQxXvuMULWPyD2yGEYbLydu QQynSkB18OzTxNtwZYEBV7y7Qe69vZBFa0jfd4kH+zLk6lbmyHLFKn8smnFVQdby uaFGynpX5faYTeY7ccBUkeveBJMUJcomDlzJZ6XbsmSvaDgX1aPJNkkOzirr8L/5 ilSzydrtifmrvkBcvcesPwEwqHp9xMExYazM7Nz1iLhqafYZHMOiwFnQDF9Tn0cW mTIEzqz5Jbk9LoBxNMxfcPAd6XHGK/zntUbNhxDGNqgnYHjeWhIKWNj6qAP8yKPp 8W1loXMoKyHeE1A4d7ILJNYczYoGz5V2QlfXgHnWgwzrATDmqs6RHmhHM4BNKYTl AQAMili65MdULWwkKjtDHube8UVxLyKxkLgfRChSrXq8mkhSb9zRyqthv5z87G84 pKeiy92TXxkV/KZfWyMX8naYnnckcA9x4FS7tLZGqPN6fqRpUNW8XM3snaW99Jbk GqlCpE1XkQXDhdb3TPd8Uo3FQAVbgce9tmec99HGhWpBrMtay4N7p1xLUQG/mbNM uyrGcXtiLlGefQ== =iA8K -END PGP SIGNATURE-
Debian package manager privilege escalation attack
All, I just ran across this article https://blog.ikuamike.io/posts/2021/package_managers_privesc/ I tested the attacks on Debian 11 and they work successfully giving me a root shell prompt. Tim
Re: Steam Deck: good news for Linux gaming, bad news for Debian :(
I am fine with Debian's release cycle but It would be nice to see more packages. For example Debian is missing KDE's Amarok music manager. I am happy to see Debian 11 gained KDE Elisa music manager. I am sad to see that VirtualBox is not available on Debian 11. I had to jerry-rig it using the Ubuntu Focal repo from Oracle. OpenSUSE Tumbleweed is a good rolling distro, I am surprised Steam did not use it. OpenSUSE was the repo Plasma Active shipped with. I tried Tumbleweed but I got tired of the constant need to download all of the packages. I am on a metered internet connection and a Rolling Distro is just not for me. Debian needs to have a mechanism like the openSUSE OBS Open Build Service, where people can create Repo's of newer software versions to use with stable Debian. On openSUSE I use the stable KDE Repo's to keep KDE up-to-date with the latest stable releases. Tim
Re: Code
On Wed, Aug 11, 2021 at 12:24 PM Xavier wrote: > Second: a lot of package have also their public source repo. See > https://tracker.debian.org and follow "VCS" links to access to > git/svn/... repo. Aside from the VCS links on packages that use a VCS, the package tracker also links to sources.debian.org, which lets you view Debian source packages in a browser, and codesearch.debian.net, which lets you search the Debian source packages. -- bye, pabs https://wiki.debian.org/PaulWise
Accepted hurd 1:0.9.git20210811-3 (source all) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 11 Aug 2021 23:49:35 + Source: hurd Binary: hurd hurd-dbgsym hurd-dev hurd-dev-dbgsym hurd-doc hurd-libs0.3 hurd-libs0.3-dbgsym hurd-libs0.3-udeb hurd-prof hurd-udeb Architecture: source all Version: 1:0.9.git20210811-3 Distribution: unstable Urgency: medium Maintainer: GNU Hurd Maintainers Changed-By: Samuel Thibault Description: hurd - GNU Hurd hurd-dev - GNU Hurd (development files) hurd-doc - GNU Hurd manual hurd-libs0.3 - GNU Hurd (libraries) hurd-libs0.3-udeb - GNU Hurd (libraries) - udeb (udeb) hurd-prof - GNU Hurd hurd-udeb - GNU Hurd - udeb (udeb) Changes: hurd (1:0.9.git20210811-3) unstable; urgency=medium . * debian/patches/optim: Add ext2fs optimisation. * debian/patches/optim2: Add general optimisation. Checksums-Sha1: b01eb44fa27102a2fa026c47c4a24c8cd1aca6c2 4547 hurd_0.9.git20210811-3.dsc 1addf34db0f29f9e7b33bf9fc06b99a6a47465c7 108260 hurd_0.9.git20210811-3.debian.tar.xz 5c0f53b1c7b36e506ae99608cc895b4585887150 177872 hurd-doc_0.9.git20210811-3_all.deb Checksums-Sha256: db655f779136eae14f25c431d9febf646c7aa424f5634efc87cf0b495fe89a85 4547 hurd_0.9.git20210811-3.dsc 2c9db71ac649dacb06e528119ec60c51581ecb3d9d45442f9436d9c9dce8e9d2 108260 hurd_0.9.git20210811-3.debian.tar.xz 41c192b28ad70ae2fa3a560749e861408d59bba532b0fde9e47f2ee852c0c36a 177872 hurd-doc_0.9.git20210811-3_all.deb Files: f79838c1e6ab0491ce982111a01ce25e 4547 admin required hurd_0.9.git20210811-3.dsc 0642822f7bdad8f09b9b0504adc93619 108260 admin required hurd_0.9.git20210811-3.debian.tar.xz 2bf57670ead4395d537c85daa4cd1dba 177872 doc optional hurd-doc_0.9.git20210811-3_all.deb -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEE59DSENomQIYa2nfqRdTszGSEm3kFAmEUaykACgkQRdTszGSE m3leVBAAuyoTATEFM47fXt5iU0uIYlA0gxNQYN9F4pthf35kU0SsnoW5OZUunhVc 8sWtUHH299834W/eJSp69ppzaMDrnmjvmQzDZ3TcBMvgt9LKo761/+BZec0HJpX0 2RiGWfT6Dc6rc8ENA21VSpRfeAtc5O3uw6/rOxh3gtgquhiQpp76nqNYpdEYI+CM eDbnXHeA4dMSSbI5onz/W7NvnwdDn+E9Y9xRFEAPUeA9moITp9lge8A7yQf+8Shv 7B+2Lr45kC0N2WnqBXNbDSRhDU6KQBHI9JoeaXJHd7bu2P2AZQogArH8LMDdNxOs UncT+2uN4hkYAHFhE8jxYIKiEg41NEzyxDjHMVUAmScfMBYedjU6x9/jEvaH88k+ B39rn9n0btxU5Yi5p0yR2ZVZIIEeAvZ6ITujqXttl1ajN5wyB+3THWHeW9VERNLv f6A0dmJGTYyTxAZxj7O+ZcoRUMybk3ehChvoaJQOmaLonqUWpTKbVkm2S7D5ZFfR bzhv9KM539qYot9a/zi3P+ndebTb5VnRgR9VgNaxpy1tDaUB9i4/++bGvYpd1o00 PCErIlvzfQdqd0DUQ+H0D0aLdGwXES2USn6gnRIdfR2giSXLA6mEJfKK8kwxgnXg FyRV+DZysgX0e3rGA92ZswG+eUxhT+OIlPj+ixULdXWxfDyZlZA= =5MI+ -END PGP SIGNATURE-
Accepted testssl.sh 3.0.5+dfsg1-1 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA384 Format: 1.8 Date: Wed, 11 Aug 2021 18:54:00 -0400 Source: testssl.sh Architecture: source Version: 3.0.5+dfsg1-1 Distribution: unstable Urgency: medium Maintainer: Debian Security Tools Changed-By: Unit 193 Changes: testssl.sh (3.0.5+dfsg1-1) unstable; urgency=medium . * New upstream version 3.0.5+dfsg1. - Refresh patch. * d/control: Bump DH compat to 13. Checksums-Sha1: 0ea4004454ef636db37a8e761ef714c34d2c2812 2009 testssl.sh_3.0.5+dfsg1-1.dsc 0132771ae1d902f191d29e095b9db5fdb8afaff2 726256 testssl.sh_3.0.5+dfsg1.orig.tar.xz 82651d1e6ffb4af591d176609a0fc457a26c 5008 testssl.sh_3.0.5+dfsg1-1.debian.tar.xz 9e489fbca35b6546635cfe7d1cb30cfffb39826a 5651 testssl.sh_3.0.5+dfsg1-1_amd64.buildinfo Checksums-Sha256: b28d165f3d1075b6d86ae54455262447575f03d035f7dfc65b485abae5832373 2009 testssl.sh_3.0.5+dfsg1-1.dsc ceac5f04272fd7478dc4b2401d66a02e90889361530dcbd96720c5a6209cb3ef 726256 testssl.sh_3.0.5+dfsg1.orig.tar.xz 3f5e44c5fe9df0a0450c763ec1c7e526a8e7127eee86429d95629d101f0d330e 5008 testssl.sh_3.0.5+dfsg1-1.debian.tar.xz ccdfea7940a3d67286a7b63b112c3d082d9c1595c05e2c705dd340e3d9fdc175 5651 testssl.sh_3.0.5+dfsg1-1_amd64.buildinfo Files: ae38167013810c8154de952ccfd1dcc1 2009 utils optional testssl.sh_3.0.5+dfsg1-1.dsc 633e9766ac58bade6cf85ed6fe3920ce 726256 utils optional testssl.sh_3.0.5+dfsg1.orig.tar.xz 31e4ad2ec84cb2c05790b0a9cee7431a 5008 utils optional testssl.sh_3.0.5+dfsg1-1.debian.tar.xz 162771cc397b2b9fd7c1ddae15082f9c 5651 utils optional testssl.sh_3.0.5+dfsg1-1_amd64.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCQAdFiEEjbPlhoZdK0orGFpcUAHhsJqjdEsFAmEUVg0ACgkQUAHhsJqj dEvvYhAAs1GdXFsBi1M/zV9M6pDxDclpdzgtFHVQvb8v7ENOd313teAdzyVA7j3H EngiOseeCBKDgxlkMisD7/xXsFBgJmSyJDGdpZGGLr7TvYNsJMQQEYOnzjtXmZB+ HyAL91w7OHnuHHN69zcXUPidTLXLkTlErnCXqJqckTdqwSVlLYDN0FKuCCy1yGeW DZeXaF46RftzDcYzjHIKoqEZWBWB/1lJmZl2HDfQ4KIdPjvgWDi8Njy/VYwuIpdG FskuGwNIe2JgSN94ZzUXqsmt4pYxq7I9vqMVwRm6GMDUiZJdfuQg8SNmIrbRQiau wIH/AwU1Pc4jtoktp+zwNxw0djAYLIEYiRy9+a2XCAKXGZZ7ttES1egaI+bxliz9 oKkYWxYR8bApa+YKtvO4OO8HPbWypE0XLGPlYAIYzFooYZ9ks8L2gUBfaXZ8Mj9T wPN8CwRxwslwAI7lWmboMNkQMDHIR7VZP/j14aX3BeMv+ne5wiQCw6e7mcmQzkzX 80K4/GUOSP82IXQJVzNCt32LswRqmUOXP9Dp2esUw9gGy53+SA2nbixuA8BmZfy8 LUB7CM7U2gZ8BEwbWt1DZ477Le3aLLw7FSeBuxs0J0qrCYjXGDQ83kLFBQEteEOE xZ2rHsFK4V0R5W1U2E0/HOWrV+qttXVz9Xr0p8qr42N6EEq+X3M= =58E9 -END PGP SIGNATURE-
Accepted arch-install-scripts 24-1 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA384 Format: 1.8 Date: Wed, 11 Aug 2021 18:43:17 -0400 Source: arch-install-scripts Architecture: source Version: 24-1 Distribution: unstable Urgency: medium Maintainer: Unit 193 Changed-By: Unit 193 Changes: arch-install-scripts (24-1) unstable; urgency=medium . * d/control, d/copyright, d/watch: Update project URLs. * New upstream version 24. * d/copyright: Update years. Checksums-Sha1: b8b3960be4d9e58c5b3ddb72171a43b2e85d288b 2009 arch-install-scripts_24-1.dsc 7789bb7bb8b73ede1b20577c1e850af990a95d0e 17917 arch-install-scripts_24.orig.tar.gz 113e0a9a8d73a97f582fe4f87ebedd2dc09003bf 3036 arch-install-scripts_24-1.debian.tar.xz d0ac56649102bdc660be711cd9f7509e759c7a31 6334 arch-install-scripts_24-1_amd64.buildinfo Checksums-Sha256: 7f7875eadeff34a3ea5c4f319d6a0d21d98237041cb43c0e02842a37dd0aa940 2009 arch-install-scripts_24-1.dsc a8412182a2d85928f5d3063434ced5df396d074458832f9fd9bca03073fbd3b6 17917 arch-install-scripts_24.orig.tar.gz 856013c72038c8e8bb50f5a9bd4fb9da3ddadb0177be755c4fdd83821d35bd85 3036 arch-install-scripts_24-1.debian.tar.xz d04f05981eaee845248261374d7822fe400b77bc47db860a292c2d9ec6959aed 6334 arch-install-scripts_24-1_amd64.buildinfo Files: 9d3ca02dbf999033f7c6f8adfa98644b 2009 admin optional arch-install-scripts_24-1.dsc 199d657f89220fc4feb2d1afdb203c89 17917 admin optional arch-install-scripts_24.orig.tar.gz 7da8188a23e269cbbb860261862e77fc 3036 admin optional arch-install-scripts_24-1.debian.tar.xz 9fd6e9d113c5c79fb2529f7b310e41b7 6334 admin optional arch-install-scripts_24-1_amd64.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCQAdFiEEjbPlhoZdK0orGFpcUAHhsJqjdEsFAmEUUyUACgkQUAHhsJqj dEvQWhAAtQS0WVWXMX97ltpEfycc7RWnsNAGT+Oh4MhDotvqK9OwOKVn2biTFwFI 3DYY0DeRo/4Ar4B87xCTgUHwLWw+eFqv00aeBPxF82eSot/tR/+qSNlaYsQ9fzxF 1qPZRMCSG79MkLQlkRtbzAXqJYRZy0yG7EjXC+Kvp+F0HylFnJCKVz1qZAhPAoTU waHBFzIwDrc/llTquBo5Pt0xxY0G+MQGquiib6QpvXTuXkq9B6Ugj59IQVrPtQiX LXV08eZxUPSroEibZL0Sgx0G481THUb3/4jTMDJZ8I0h16LoaR5aKt3oNGfyccEv Z0FI6KirB28Kv+12QYmxUOteCiB5uopo3qeUrN8Jf2Udg96/Du7EZ3LAVZny+Ogk jrZ2LalOSvgMMgxRViiwZM2c2RLvKYqG287tgjfZ/4M2DFzik5SvgPhaYAHleve/ nJaTdbdM0BA5qbSnvK1Az1gyCIlGP/NAV7KuldorqnlhHhUJHLEIKV4VNDLnx0r8 HvgaLU0aqzd+EOi8p7LSQMBvxm3p0Ddy6+K/qxVlHY0guROD+IvojxCKe7csm+Z1 zzzomdt70bmLMg8KRFLIk76jdo6cqYiSmakdSnTauB0UN3h+NbIW+5rrNoMMxCOz t16DSJ0aSAYimpw7ieBZykL8+0+QnbmZKbegV/BGbqWJtICW8Cc= =xYcT -END PGP SIGNATURE-
Accepted python-pretty-yaml 21.8.3-1 (source all) into experimental
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Wed, 11 Aug 2021 21:56:43 +0200 Source: python-pretty-yaml Binary: python3-pretty-yaml Architecture: source all Version: 21.8.3-1 Distribution: experimental Urgency: medium Maintainer: Sascha Steinbiss Changed-By: Sascha Steinbiss Description: python3-pretty-yaml - module to produce pretty and readable YAML-serialized data (Pytho Changes: python-pretty-yaml (21.8.3-1) experimental; urgency=medium . * New upstream release. * Bump Standards-Version. * Set Rules-Requires-Root. * Use debhelper 13. Checksums-Sha1: 5a45e0baa4ab10dfe5685346d75ef81399490092 2020 python-pretty-yaml_21.8.3-1.dsc 8ee42c7c3d563482225f354695221bff613075d2 20269 python-pretty-yaml_21.8.3.orig.tar.gz a3fd64c61150044c8a6b3da1991ead1cdb7f583c 2468 python-pretty-yaml_21.8.3-1.debian.tar.xz 6f24fafa1fde557a75ce964e6d49f72350246da5 6594 python-pretty-yaml_21.8.3-1_amd64.buildinfo 53a2142bcd7cdc8334c01cb9b16e2b9b69a96bcb 17296 python3-pretty-yaml_21.8.3-1_all.deb Checksums-Sha256: f1ec67386babf836b23693a8456c846dd74a4b7016daee7ee7be83bea0827734 2020 python-pretty-yaml_21.8.3-1.dsc a1636d63c476328a07213d0b7111bb63570f1ab8a3eddf60522630250c23d975 20269 python-pretty-yaml_21.8.3.orig.tar.gz cfe8926f3c65b34ca81bb9de82af54a21c1e63f32516ce9e733c20430f2655f2 2468 python-pretty-yaml_21.8.3-1.debian.tar.xz 6e1abac66cb71502fb1a9a5e76ff8536fb5296fa9e719a26e2c063bf685d9420 6594 python-pretty-yaml_21.8.3-1_amd64.buildinfo 172b99356adfd58f114057847be4c83ac5e2e60685d1b6c51a2063ea470566e4 17296 python3-pretty-yaml_21.8.3-1_all.deb Files: 3b6f9c597b355102ac3564b2ccd40a05 2020 python optional python-pretty-yaml_21.8.3-1.dsc ac11adf912795378f3c56feb62ccc34d 20269 python optional python-pretty-yaml_21.8.3.orig.tar.gz c0d8b74d276eb05fa396c47bc9eeca13 2468 python optional python-pretty-yaml_21.8.3-1.debian.tar.xz 95bd0eb0c91ada21c603a470bc0dc86a 6594 python optional python-pretty-yaml_21.8.3-1_amd64.buildinfo 6391d1b85a7ba491044da6839b08e526 17296 python optional python3-pretty-yaml_21.8.3-1_all.deb -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEWzS6WqtVB+kDQm6F6NN64vCfSHIFAmEUMWQACgkQ6NN64vCf SHJ4Ew//YcJPK4u5c2eeX9TqOssuv6Kpuh4PMD8ixEHE/7WEqivcGNOSjUSoxrSk 08qCOUVRvY9FMMyIA0KtxFL8SpZIf5Q9/Lb9WHauzoz/mdnHRWqW1ZS2Zptz9uoZ 1XRGB5i5YDWUZ8tlB9XAPNvbTBCZIl82Fo3ERSkwtAf9AX1uRqd2wGE/uTKukm76 9JFpmq+xOtt931HjcTCPSCu4Ji+51mPxsfq69r/kzC5f5TQxlrZTLG/49Bnk69YE HM6Xc02Q72K4Q2J8DaJykOoIz+EBjnR4Q61FKGRw1g3vAEBr3c+gqatVP7vlHYbt boXkhudgHHG3e4UxG7aMxITf8Hr6f8gnX5K/ZPYMPl2aQ8TU1i2BGtlYpz5Sdei1 +UX0nyKbgRo900DqtD2IKAE9V7ufvr5jpvWpRAWFJQOeK0zfxlqRoV/Zp8UJnOz9 9NLTw9ZX7tlzpU5viXQcuJc/tHJ/7jeCHz0KvBE6vsZGIcFJ+8tHfuFk6YGIH+08 1FV9OkfPdIfKA5BF4j4euEEr8B7XT+FLPqnZTUyvi1UvomUZnlitiQ2IG7JY1oUS Ysizf17zy74AG0NaumPNI0mSWxSbL702IgZUKxFvWMwuiw9Xt3krBPjP2m/CULIj jL3pCaINa7gSb1JZkaMTeYJ3toEL19o0gpRd69QKiZzVLKEmSV8= =iGZC -END PGP SIGNATURE-
Accepted nodejs 12.22.5~dfsg-2 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 11 Aug 2021 21:06:00 +0200 Source: nodejs Architecture: source Version: 12.22.5~dfsg-2 Distribution: unstable Urgency: medium Maintainer: Debian Javascript Maintainers Changed-By: Jérémy Lal Closes: 992112 Changes: nodejs (12.22.5~dfsg-2) unstable; urgency=medium . * ares_compat.patch let node compile against ares < 1.17.2 Closes: #992112 Checksums-Sha1: 82ce6da1e9223a4ed19f63eded4cb3d1ed5b70de 3455 nodejs_12.22.5~dfsg-2.dsc 682db76985d88a15db40fd5cd56b372be0692dd0 136556 nodejs_12.22.5~dfsg-2.debian.tar.xz 14b820fa97d669c5f2b6b62290b04b69384de7fb 9252 nodejs_12.22.5~dfsg-2_source.buildinfo Checksums-Sha256: 62fe39ea900cc4d20de8653f677b7e8de540139dae4fbd60c9bad6d722c0a96e 3455 nodejs_12.22.5~dfsg-2.dsc 82eb89e4e5ae1637bea7ee8bdb455aa8b4b401ea9092a19747a79becf480b628 136556 nodejs_12.22.5~dfsg-2.debian.tar.xz c94e0c2aa795b51a9ddb0e875ac48d0adfb627576b719a7b4df63cfced966f74 9252 nodejs_12.22.5~dfsg-2_source.buildinfo Files: 8605224fa7a2e06d2cf78604d80f5ffa 3455 javascript optional nodejs_12.22.5~dfsg-2.dsc 3ae559a05b8d9ab5e35929b557792e1e 136556 javascript optional nodejs_12.22.5~dfsg-2.debian.tar.xz 1adf6b55bb4b0529c6b42ea3e5df89d3 9252 javascript optional nodejs_12.22.5~dfsg-2_source.buildinfo -BEGIN PGP SIGNATURE- iQJGBAEBCgAwFiEEA8Tnq7iA9SQwbkgVZhHAXt0583QFAmEUH/gSHGthcG91ZXJA bWVsaXgub3JnAAoJEGYRwF7dOfN09W8QALbUZ8Va4NoRlqebe9Dfku3uzGJNH2ps gFzw9uxW+QVa7UNHPKyL7Aixs/yKYSWaSBRfof2wVYFFYsyt8B/O8hUgiWBc2P2S j0yNCajTOCTk9xdM+Y2UL5S7+65O57aAFa7Vk4NLQKaGtggNESbMt1SkmO7bHPzA JyUgwlYE6PKW/3T7OOsnvffeI+5vw4ZhBLIbFn4JoXpQvhVGXg63B2G90r4jc9PJ 88ZIp+DCrb0h6OaURZJHl/nPDlNEUhp0GTBH49uRX6be8DE7W7LqlJlgG48SutrY XXKHNQUgnJMPdSA139RoS5BufodrOnlE2gBLobGrnDNmyZ1f2HbYYFM5jKoKApZ/ BZ9fiINHe8xNTcbLTS5s3VuRJrHkVlFGGwDKeSVtNHAfwCL6gYHaY5i1XKSZnjI1 LdxIr1j5R0yxTWKq61Xc0bmpyg7tcNJxCFwkrxxd1j0QeDmYJzf/vlquS80XNCmB ozqjqZGNZM2H4Yv9wwS7JL1VLFy/U5vD/HbRtNcG7kCTBAX4C72WdRZqJgmmOafU CpKZzW0DTMaJWItb6+TraZbO916B0nisN4Erwc8VMfge0HdGR7Q9C46S6RnKiatU cr9CrkihpRx/lVxEy/iGUYO4qI1u3EqDdGQ7qhr5AlhqOEfJwe9VLvpP8XmzqHdz lMd9BOZy5tdi =r8nN -END PGP SIGNATURE-
Accepted ucx 1.11.1~rc1-1 (source amd64) into experimental
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Wed, 11 Aug 2021 18:36:11 +0100 Source: ucx Binary: libucx-dev libucx0 libucx0-dbgsym ucx-utils ucx-utils-dbgsym Architecture: source amd64 Version: 1.11.1~rc1-1 Distribution: experimental Urgency: medium Maintainer: Debian Science Maintainers Changed-By: Alastair McKinstry Description: libucx-dev - Header files for UCX library libucx0- Unified Communication X libraries ucx-utils - Utilities for the UCX messaging library Changes: ucx (1.11.1~rc1-1) experimental; urgency=medium . * New upstream release Checksums-Sha1: c4a0b09b749e028ad8f8164909495b10d9944f6c 2340 ucx_1.11.1~rc1-1.dsc 3a38d0f71fcbd3ffe188a9c3cab9082fd74521f3 1902844 ucx_1.11.1~rc1.orig.tar.xz a431813a9486dd2a233375dcac344c928e9abe43 5780 ucx_1.11.1~rc1-1.debian.tar.xz 974b8cae81464c292d1bf847b247850beb9fc524 969048 libucx-dev_1.11.1~rc1-1_amd64.deb 0f6f43fc199105bd8a39df329c46a859a6cacb5c 3402128 libucx0-dbgsym_1.11.1~rc1-1_amd64.deb af65009cd6e9ef87f3ac02e6d864fc8c7a56e40c 772592 libucx0_1.11.1~rc1-1_amd64.deb 10ae09dbe3425b3f6df5f7d1b289877bb0851598 1577548 ucx-utils-dbgsym_1.11.1~rc1-1_amd64.deb 854da68093f835f358d25421fadff5ccd98e3995 188416 ucx-utils_1.11.1~rc1-1_amd64.deb b3011fc4ba6b3d4f883ca221431eacae6a5a8898 12011 ucx_1.11.1~rc1-1_amd64.buildinfo Checksums-Sha256: 70848ac8d773a86b05eb101b71a7b49365af37cf02efdb4fe2ecb362e1844e6b 2340 ucx_1.11.1~rc1-1.dsc 23f35f256c838dff165c672158cda9a93743fc16b9cd8a9eb95035a502fbcbb5 1902844 ucx_1.11.1~rc1.orig.tar.xz cc290ffb4ce56641bc3e543e95b2a331532ce9621221bad41aef25701b523d97 5780 ucx_1.11.1~rc1-1.debian.tar.xz 0a1ba27a20dd2aa241f334d801794e8fc210113647a492e1f129d1167be28c3a 969048 libucx-dev_1.11.1~rc1-1_amd64.deb c561d9c1c48a9231c831a306967da23d27c61aac40326125343eb8ac853e5d7c 3402128 libucx0-dbgsym_1.11.1~rc1-1_amd64.deb 84f36cfd1c690f213b155b52f1e8ef3bc0e7c92e7e8aca184bfe24ff462576bc 772592 libucx0_1.11.1~rc1-1_amd64.deb 5283a9e835cf88aad6bb93cb37b60fcf5caf27b54907f534b26460fba6bcd193 1577548 ucx-utils-dbgsym_1.11.1~rc1-1_amd64.deb 66aca292842ac61aaae6562bc212c47e375452b86f3949449bf547c4f426893c 188416 ucx-utils_1.11.1~rc1-1_amd64.deb 50fe4d85f9e3884e2cb7fe43027530ce8c608fa464202ea5fd05d2fb9bc9359a 12011 ucx_1.11.1~rc1-1_amd64.buildinfo Files: 17676fc3916df8010411cb00add51049 2340 science optional ucx_1.11.1~rc1-1.dsc d1dd303c46053f16f7c7b99b829fe36a 1902844 science optional ucx_1.11.1~rc1.orig.tar.xz fe3a41f0de3f1b417f4d892e7a7db893 5780 science optional ucx_1.11.1~rc1-1.debian.tar.xz 89f979bba38f357211bcdac098055384 969048 libdevel optional libucx-dev_1.11.1~rc1-1_amd64.deb a579b580a5d8025bea3049853b99d0ac 3402128 debug optional libucx0-dbgsym_1.11.1~rc1-1_amd64.deb 219e431615dc79abf5ac4e100b19b091 772592 libs optional libucx0_1.11.1~rc1-1_amd64.deb a6ab597cbd2f14ab128e080ee023ba8d 1577548 debug optional ucx-utils-dbgsym_1.11.1~rc1-1_amd64.deb cd677ce6f1e3ce05beeaca9709df89b1 188416 science optional ucx-utils_1.11.1~rc1-1_amd64.deb 2ae2562d112783df823dad77b086f3e3 12011 science optional ucx_1.11.1~rc1-1_amd64.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEgjg86RZbNHx4cIGiy+a7Tl2a06UFAmEUJtAACgkQy+a7Tl2a 06WUNg//SbawVJ37GCpjk4w3ouMWXGQt8h9Whe/2n1Ytyp4R3UJFDy1HoM4F9q3m XR+9fKEy8v22UGwCB7lksQpRBdxq+9tMvppoCl1DZjVXQ406yKoPrGXL0M2xVd2G Tog233deiEYQBCyGKEycYmGjbUBSWdgorh3PTA4hinBdLxZWM5DSR+UxOQuREcpY 14ix6/+HzLORgOxZAZ5ihUjq7iOtVU9BeJmJySEltYC8y4SJWkYBB+7Vp4pqjNNc 8GKMuWjDGhQFtUGx/sAOTc0Xy9hSyvzusdnI3v9dneJvJKp5aqlrfAqqbrgTmibW Hei1cYRAGxuRWKi/qUVmkQGvoTVGvGeHBrz+JTQWuZ9bTFXI7QzzxIAEqonditlf qkOSDKi1IvCwKOn/Fshxrh1XxeM5fUPjVZTvzmgb8FK4WHvpGv1JVHwqAUDjpUjg ZQZVBlGxdPHMMT1l1upF761M8AqmZr/gqxYgsYr6w+X5+feSsEgipepCrsYyEmDz ZY75hKDxfmtpfK/n7ZNOrRCA2UK7+HXAy1ottZmqg/aAqCNvtd4AXUgtHjKBXWEp l8nxlrYq5LeYspCuQfetaQ4Bcj4uS4ZSIiWtM0nZT7Q8RGOaZOemBKKxedLuL2Us rGthw/mGm69/wnjdbNUkJAzBA1dOMD9uT89BdR64bPgrWNpWWGk= =d+Zc -END PGP SIGNATURE-
Accepted node-tar 6.1.7+~cs11.3.10-1 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 11 Aug 2021 21:30:03 +0200 Source: node-tar Architecture: source Version: 6.1.7+~cs11.3.10-1 Distribution: unstable Urgency: medium Maintainer: Debian Javascript Maintainers Changed-By: Yadd Closes: 992110 992111 Changes: node-tar (6.1.7+~cs11.3.10-1) unstable; urgency=medium . * Team upload * Back to unstable * New upstream version 6.1.7+~cs11.3.10 (Closes: #992110, #992111, CVE-2021-32803 CVE-2021-32804) * Update disabled tests (need an updated tap) * Update autopkgtest files Checksums-Sha1: 6fe5b2effc6d36830a428c9da4932721ae8fa6a8 3470 node-tar_6.1.7+~cs11.3.10-1.dsc 24db077a0a6c3c707c576aa218cc18adef0d34ac 35270 node-tar_6.1.7+~cs11.3.10.orig-fs-minipass.tar.gz 601a95c4cb1d2976072c1720338de85757fc7a74 50240 node-tar_6.1.7+~cs11.3.10.orig-minipass.tar.gz 516fc8a8b9661b375ecb00113f1c6165dd43b623 186712 node-tar_6.1.7+~cs11.3.10.orig-minizlib.tar.gz 5f953f183e36a15c6ce3f336568f6051b7b183f3 6515 node-tar_6.1.7+~cs11.3.10.orig-types-tar.tar.gz 9f70884320d1cec32477703b0c96b8c1b568acb1 54 node-tar_6.1.7+~cs11.3.10.orig.tar.gz 921a3c92043ffdf3e9ecc7709cc817c6a6ca4ff6 8616 node-tar_6.1.7+~cs11.3.10-1.debian.tar.xz Checksums-Sha256: 16c4fcd906f31cb8929c0170edf52bc4d17d6b8092af5d994a6d4892f7ae7b0d 3470 node-tar_6.1.7+~cs11.3.10-1.dsc 83cf7dc113dacdbe3a2d05753edde01c37256cc97167ea5a8086ab85a78f2efd 35270 node-tar_6.1.7+~cs11.3.10.orig-fs-minipass.tar.gz 496598d78b824ddb3116c4a4fe0123516b318eab820d0ee80cb892ef3ba0c4c9 50240 node-tar_6.1.7+~cs11.3.10.orig-minipass.tar.gz 296f5e559312e7a4dd871e1cdad27d50d9d0518a548ae870dffb678ff2ecae7e 186712 node-tar_6.1.7+~cs11.3.10.orig-minizlib.tar.gz 3e97385fb828dfc00ff02f9b30a31a20c737404096cdb006cf7083157c7e1a5d 6515 node-tar_6.1.7+~cs11.3.10.orig-types-tar.tar.gz 1089d8b31eeda14853bfb05c09f8f48f115617e61310aa30f24ccba593564ec3 54 node-tar_6.1.7+~cs11.3.10.orig.tar.gz be86f3c38eb2301e1a92638e9757d476fae68d0e2bdf5d5ff4e8da878cd298b2 8616 node-tar_6.1.7+~cs11.3.10-1.debian.tar.xz Files: f9a84cc00fa4d4f4822d7bd68871fba8 3470 javascript optional node-tar_6.1.7+~cs11.3.10-1.dsc 4885211b9cf2f530a54e6a725cc9556f 35270 javascript optional node-tar_6.1.7+~cs11.3.10.orig-fs-minipass.tar.gz b49657e3714f92ab73a7deb5aca36f53 50240 javascript optional node-tar_6.1.7+~cs11.3.10.orig-minipass.tar.gz 389dc4b3f49e5c28a485f2243aa021c6 186712 javascript optional node-tar_6.1.7+~cs11.3.10.orig-minizlib.tar.gz bbd2333b527227358e720aac52e97f93 6515 javascript optional node-tar_6.1.7+~cs11.3.10.orig-types-tar.tar.gz fe37b529decd3f78f80b0c34c2af3e79 54 javascript optional node-tar_6.1.7+~cs11.3.10.orig.tar.gz 684c06e5d11e986506824629fdbb452b 8616 javascript optional node-tar_6.1.7+~cs11.3.10-1.debian.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEAN/li4tVV3nRAF7J9tdMp8mZ7ukFAmEUJokACgkQ9tdMp8mZ 7um5Hg//ZDXt5CU+Ooqtk5koQ2mZeMxaLM1FdFV9hsc1gnAGNtyQPkq1ZtiGpWaq aSWvkT7Kh065n+t6kclF4N5V6SgoGzoersRC4462zRbC6Fbe21BW+98pTU+jMOPv RwRoSrTzwQMDW0630StcIG4u2nMhGOI610x+pSYHf5s3ipbHPb1PftVLVm368Mhn jXs4RfZ8Hva6FB6E1nCoIvptSxxOtDNpZQQuLgNArBUoK9ONQMhGZvg3NgrE34yx I8GG3kT69Vx5GR72M2lqBQ2jPtRIHe8Ez53oeY6t2BFAUbazqzUU/c5sVcgcPIG7 azskF2HKrN3WLBV2mwrg4U4vH9u69jEF6q+r58sNoDBSVn0MccGYQVSa95Avf1p2 UsztMzm0Jq0x2LFh/z2T+M4yZki63cH6vOgwa6kl9YaStugYJrX1cABRX17WCiet 6QxA6NGPyh+VCv76+UULelN6qM0SJWG+v8i0XLqBJvJpZv9R7RcyOI3fJeiJhxdP rPIk1lCO4XcKvMvz2COmYq7c6EfYENZ1nYzaZ9jHzTzgyRsbSBPfxRBk0H4k84uM huo/Wr76sAnCP/Bg/Ut0VfvUYJlr/jc8ecuiFPEe4HJfTquROrJG/lXbRm30bwOs jGvni5sEiEJ71LLHfA0D+AKU9jPuqjlfukgc7chC7b4chNEIUzI= =yp3G -END PGP SIGNATURE-
Accepted hurd 1:0.9.git20210811-2 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 11 Aug 2021 16:29:03 + Source: hurd Architecture: source Version: 1:0.9.git20210811-2 Distribution: unstable Urgency: medium Maintainer: GNU Hurd Maintainers Changed-By: Samuel Thibault Changes: hurd (1:0.9.git20210811-2) unstable; urgency=medium . * debian/patches/fix-symlink-translator: Fix block allocation when converting a symlink to a translator node. * debian/patches/fix_fsys_init_parent_proc: Fix setting bootstrap tasks arguments. * debian/patches/fix-install-pci-arbiter: Fix pci-arbiter showing up in /servers/bus/pci * debian/patches/fix_libmachdev_dosync: Fix libmachdev behavior at shutdown. * debian/patches/next_task: Rename options for bootstrap chain. * debian/patches/fix-symlink-frobbing: Fix frobbing symlinks. This should reduce spurious error correction from ext2fs. * debian/patches/fix-sync: Fix syncing nodes getting removed. Checksums-Sha1: 0f9a802a658443123e624fa19927df190fd80302 4547 hurd_0.9.git20210811-2.dsc 841fcce4e511e4c4b30eb32ca592b656d4f049d6 107568 hurd_0.9.git20210811-2.debian.tar.xz 77eeff725a2ce200ef770cec4126ba7002b5ad3d 7566 hurd_0.9.git20210811-2_source.buildinfo Checksums-Sha256: 86cf26b53bde9d2a6e30eedd119c51e918df720ddfd9656a159d05a139f52896 4547 hurd_0.9.git20210811-2.dsc 3ddccbb75a77f7c8bc3e93d1be5224a6055d6b18678943c93ce9da633fb5007d 107568 hurd_0.9.git20210811-2.debian.tar.xz 8bee14959ff619aeeaf5b2c1d5abda1edd27e34267576bc7648e6898a9694b2b 7566 hurd_0.9.git20210811-2_source.buildinfo Files: 5ffcf300bfebe2dbb9224ea46145a620 4547 admin required hurd_0.9.git20210811-2.dsc c1cfff07d7883f1113c58d44577ea29c 107568 admin required hurd_0.9.git20210811-2.debian.tar.xz 027f66250933e1ae9ba8bdc012a71ac2 7566 admin required hurd_0.9.git20210811-2_source.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEE59DSENomQIYa2nfqRdTszGSEm3kFAmEUIoEACgkQRdTszGSE m3kOLRAAp1KDZ4tDs5JSOwZjzj5JaNdPDSv66Dx1N/L8kh4AnfJiNXLQNaJiB4jx ZNdqoBd556fFok4B6CCTERfjE2sn0bktV2hdfWyRnZG7L96AsuCn+Vn9+5TXqD81 F+aDNDrmMGxvwy+UYYxubnvpHsxXVv+Fd+oBToqIms+zjg3+ILBqVu3ef9arS7DB 3Qh61XwE+wPobo6zYt/Mad0y4C4Wvg6WDX/JHMEob5xF4M5CV49QxNJcWF3UNId/ vA8MU7LHVqLfjSU1mNNiBkcBqrBBPUzVyStzHB25dHokV95cnFN8GjeqJDl8mmsS BOVuZHcsa460YRXFsABw99QEDApbHyp4mDOEMY6qee2i3xJ8lcNXqFBbkvbidX94 LwHhLKUEmL4cGohKxdIZV9jN8/2Gf7kPNou+i7elj5KnDOf+24Y+W77zLS1sBgdQ U1SzrSvGDlLrfY+tKUx9VcDDZxyyFcVaDwQI5D975OD+gjLuGWVteYuSyfey7Gpb MUem8azgR7tPgfwsfs4Kvgs/66xXm+qDkx9ZVFuCIYIg039vDB5qapuCf/i2jARt 2itzcTceSANwFvX4JTLhFvcZqz9kXYthbb5oRWhLbnCdactQK7ScQsntzYC2uGsd LdP3vRoO5JYhBUmWH32l2rU4KvivNI+uoqpfa0e3i6l9vuGCtf0= =a8Kv -END PGP SIGNATURE-
Accepted libsdl2 2.0.16+dfsg1-1 (source) into experimental
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Wed, 11 Aug 2021 19:29:44 +0100 Source: libsdl2 Architecture: source Version: 2.0.16+dfsg1-1 Distribution: experimental Urgency: medium Maintainer: Debian SDL packages maintainers Changed-By: Simon McVittie Changes: libsdl2 (2.0.16+dfsg1-1) experimental; urgency=medium . [ Simon McVittie ] * New upstream release * d/rules: Pass CPPFLAGS and LDFLAGS while linking test programs * d/copyright: Update * d/copyright: Exclude less of src/hidapi/ * d/rules: Improve handling of Linux-specific features * d/rules: Check for Hurd correctly * d/rules: Explicitly disable libdecor for now (ITP: #988116) * d/rules: Enable Pipewire audio driver. The required version is currently only in experimental, but will presumably go to unstable after Debian 11 is released. * Drop Wayland-related patches, applied upstream * d/p/no-libdir.patch: Refresh. The patch conflicted with upstream updates to sdl2-config.cmake.in, but we don't actually need to patch that file for multiarch co-installation anyway: the file generated from it gets installed into the ${libdir}, so it's OK for it to have architecture-dependent contents. * d/patches: Refresh * d/docs: Install README.md, not README.txt * d/libsdl2-2.0-0.symbols: Update * d/p/Revert-*: Revert display mode setting changes for now. These seem to trigger a regression in full-screen programs when running under Xwayland: Xrandr fails, leaving the Xwayland display in a bad state that causes subsequent SDL programs to fail, even after downgrading SDL again. (See upstream bug libsdl-org/SDL#4630) . [ Guido Günther ] * debian: Add salsa-ci integration Checksums-Sha1: 4da74036b7c9222fd543b63cadc6cbd846ee01cc 3069 libsdl2_2.0.16+dfsg1-1.dsc cb0bd3830d0988bc9f37a9159abd2826ee5e580f 3009068 libsdl2_2.0.16+dfsg1.orig.tar.xz 4e6cd8b885105718adbe1cba86ebb8bf9d29fb78 30116 libsdl2_2.0.16+dfsg1-1.debian.tar.xz 3dbe1dc5d886ca3edbd65579c8774b9d8506da26 10581 libsdl2_2.0.16+dfsg1-1_source.buildinfo Checksums-Sha256: ad31c44e3de2ecc4aaef8940b3d56f4818b9446f61856fee0bbacf4d3f701ded 3069 libsdl2_2.0.16+dfsg1-1.dsc c7e3710dbdb29bdf9c21fe901f0824b2532fcc9cc96895b67a36b25b18f6dcc3 3009068 libsdl2_2.0.16+dfsg1.orig.tar.xz fa23ba3729329f46a6fbdb220399c3af4b0f696a01a34ca35d5cc66cb2306970 30116 libsdl2_2.0.16+dfsg1-1.debian.tar.xz 05ca6db4a8d011d5202966c8de2942f71f1f64629abc43f725affd0a75c5db82 10581 libsdl2_2.0.16+dfsg1-1_source.buildinfo Files: b35becf169582fa605634431dfd97c4a 3069 libs optional libsdl2_2.0.16+dfsg1-1.dsc 5437b8f024f81fb1c1d8d7112c0315ba 3009068 libs optional libsdl2_2.0.16+dfsg1.orig.tar.xz c6a600577efdda34f2dabf26aa9ee979 30116 libs optional libsdl2_2.0.16+dfsg1-1.debian.tar.xz 224a8a33f3aea802763ff101e6ff9d82 10581 libs optional libsdl2_2.0.16+dfsg1-1_source.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEENuxaZEik9e95vv6Y4FrhR4+BTE8FAmEUIEEACgkQ4FrhR4+B TE/5QhAAqipTX+55WagY/tAR2LRN47a6IDdXs2l1DN+FxNthiaXJtIVdUpp3jHiK WGmaaa0Ig4LYGvuW0Isc/tRN+JFusACShJy0VhpDcrVtvqYAzqvAqMqUflSkwEz0 nV/d+ueqn3Mlto1MC3VGFYsgSq8My5mnJ4wvrNFjVmkH2nd2iGGjFx/CvUXKTCWs /u8dbHFZuxLKxEmhSgeb5gSY2uYZypx7EGbFrlDdQZG/K8r32MxV5x8ortJcjq7z p7jHIA0xKwoC6DjeWY7//vzd8uJ4a4aJFXSPmJmH+lCIwRiD7avAc/Bo5LqDgXJQ iIdHzPoGIGBTK+mBE3yN0L829fVk37EJGp+4MnvkLqiGaRZsKbgsqt2NZP3eRniF d0jl2+OtI10kN6bpCpPU00x+duICHbDlrLm+ipAxCIWXpEYlFuUXogL9GZFUXi19 WbO6SSiQw4s/e6Y4+dU0aOKT1Y9aI/9VGp+MFQ2QXBEzFmsVO8dzBmwZDVB4RUmS 6IIUCPqKmCtlt/iWyFE9TjSWQm7o8dV6IanpXk+P1ZAH5bmOltvl0PTHmAc++0an /PaZ6TN81I1MC2kJ5Ay5UF4K0wjKsyp7iBZhhLJG0/zjkxvSv1mP+S98wTMUQs/h wNUIhqnlhbij6wuTz0EBPCFnd9IE0NPN2QrAj2b/gOJvaXsUIEA= =Vj9A -END PGP SIGNATURE-
Accepted edk2 2021.08~rc0-2 (source) into experimental
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 11 Aug 2021 11:24:42 -0600 Source: edk2 Architecture: source Version: 2021.08~rc0-2 Distribution: experimental Urgency: medium Maintainer: Debian QEMU Team Changed-By: dann frazier Closes: 992100 Changes: edk2 (2021.08~rc0-2) experimental; urgency=medium . * d/p/ftbfs-gcc-11.patch: Use -march=armv7-a+fp instead of -march=armv7-a to fix FTBFS w/ the new gcc-11 defaults. (Closes: #992100) Checksums-Sha1: dbdddf62fdc745c92dce7200919fa06a3bb4ed20 2686 edk2_2021.08~rc0-2.dsc 4370cebd91e9d9f62e133b5c89390105f2d373d0 33372 edk2_2021.08~rc0-2.debian.tar.xz 3138a5bf258948271591fa15a0a0375a9ff07a73 10859 edk2_2021.08~rc0-2_source.buildinfo Checksums-Sha256: 91815e68c1218576620d65209918aaf979a708c4cf5f29c0138ed6044241a2ac 2686 edk2_2021.08~rc0-2.dsc afa1d683ccf01a510e04ee25ce7127c04e933412269fcf45df4fdd95d7414d8a 33372 edk2_2021.08~rc0-2.debian.tar.xz b898dca69b39c2b9e736be2f9683196de8722f1d9cecb4f606d60e069bddf6d7 10859 edk2_2021.08~rc0-2_source.buildinfo Files: c894ec61a88bc45509bff6ad1de0d273 2686 misc optional edk2_2021.08~rc0-2.dsc eebf80fed02889b35db019da84936a02 33372 misc optional edk2_2021.08~rc0-2.debian.tar.xz c062530db7858c5baff95c9cb9c8790d 10859 misc optional edk2_2021.08~rc0-2_source.buildinfo -BEGIN PGP SIGNATURE- iQJFBAEBCgAvFiEECfR9vy0y7twkQ+vuG/g8XlT8hkAFAmEUFssRHGRhbm5mQGRl Ymlhbi5vcmcACgkQG/g8XlT8hkDzrQ/8CW58cwQOLAzAiFOsaRzf6VXDYbtb94J7 H6VeyOx1aiZClKLokurKa5GvCOQi6VdNx7i1wTiNT0ndNfX6HU4Tu3malhXKrWPu 3tz4uzfV83JXk6YoLn6SvFGquI3GIjOfJbpeM5Asg4wTZ9YAzcB8mnZZHN4ilFO9 /xFc5evxAekpNriUav5i861gonkJdJfPCdgqLPmJ8iqTbFNAKjWE8TP5EDYfeN+k hZmSunhEsLLkuZ5A4p6h57c25ZQUFZzMIVNeh/REk/UFU6dgZgm7BhOXsKh4Qh3H Bfia2U85L9RbLyeji5+w5zxF2DlvIe0nMQYBk1RsK6IobmrFXDgKnRcXc4piQ5EN hZNiMlJHlhBvodQOhl6I8Z1KJQMvDubYHdU1kAfWL1lGg/poJGFYIo17pw+cN8Ly VbB5IHfNTllMamz4IWW9rM5HiqPjsnZMCDCEVBDe2O3TdbnjYIT6s2baJwmu6RYf CSU96J8xTNE8FXD0J7UhfSPz5K4ebp/nEw8mEqE5DO9s1953gHHhs6aq8mtIW4we o0RNnM8x76WqQ3iQLXDgi2ds593VkcIbhOnyQr5AG85Fxu6nbh2QwvejgXAPuikN Nb3ubGJ4WH+GpzCqcl2pELveXjzfrASolG4Aawm6tCZXBvgZ94M466irSQEhWD8b b24ruEzLMWM= =ef4G -END PGP SIGNATURE-
Accepted nodejs 12.22.5~dfsg-1 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 11 Aug 2021 19:36:57 +0200 Source: nodejs Architecture: source Version: 12.22.5~dfsg-1 Distribution: unstable Urgency: medium Maintainer: Debian Javascript Maintainers Changed-By: Jérémy Lal Changes: nodejs (12.22.5~dfsg-1) unstable; urgency=medium . * New upstream version 12.22.5~dfsg + Follow-up fix for CVE-2021-22930 as the issue was not completely resolved by the version 12.22.4 (High). + CVE-2021-22939: Incomplete validation of rejectUnauthorized parameter (Low). Checksums-Sha1: 447b49a3ab84731bfa81edaec1058363a99c5992 3455 nodejs_12.22.5~dfsg-1.dsc 56f77e2da99fdb7915f41f237781e567ee2142dc 86828 nodejs_12.22.5~dfsg.orig-types-node.tar.xz dc764717028716726fdbfd2ff140e00d837b328f 18570676 nodejs_12.22.5~dfsg.orig.tar.xz dea6beea1ca92224aba5697e1d512676106d30de 136344 nodejs_12.22.5~dfsg-1.debian.tar.xz bfad3a092b60948037e3157c9e9920b735b9b250 9252 nodejs_12.22.5~dfsg-1_source.buildinfo Checksums-Sha256: 2546139cc5cf967c76461fdba022692648c848cf559da313c127564a2185fc86 3455 nodejs_12.22.5~dfsg-1.dsc bdab39e82c40fac39343a912036797d827aec81bc34d4395d14f07e95ddb8e0a 86828 nodejs_12.22.5~dfsg.orig-types-node.tar.xz 63a16a838883b323c90c149dc7dc950761edf87c17781318ada6f843b1296e2d 18570676 nodejs_12.22.5~dfsg.orig.tar.xz e77640b700850587e8ac09d58b30a33465945e9125b7a4b75b137586db5fd56c 136344 nodejs_12.22.5~dfsg-1.debian.tar.xz c5e441fcc288b6e1ed1418cd75d12c486b0d1fe004ec432f2985769ddd254150 9252 nodejs_12.22.5~dfsg-1_source.buildinfo Files: 1b362cd36ff6f16923e923c44b63d37f 3455 javascript optional nodejs_12.22.5~dfsg-1.dsc eaaf8495a8bd6bfd90a7c39d91f23b91 86828 javascript optional nodejs_12.22.5~dfsg.orig-types-node.tar.xz 587a78fe6122176f72edb491c7e1e8ee 18570676 javascript optional nodejs_12.22.5~dfsg.orig.tar.xz 918fdeaed369d2fad8fde86ce6aaedcf 136344 javascript optional nodejs_12.22.5~dfsg-1.debian.tar.xz 39db32feb95bc5bff132be373ac54922 9252 javascript optional nodejs_12.22.5~dfsg-1_source.buildinfo -BEGIN PGP SIGNATURE- iQJGBAEBCgAwFiEEA8Tnq7iA9SQwbkgVZhHAXt0583QFAmEUCugSHGthcG91ZXJA bWVsaXgub3JnAAoJEGYRwF7dOfN0Tg0P/0hwezA+vr3Wp5GUg/y8JV6erkq6FfI2 k0T/q5/Qpp5cy3ggj1NyM7vza0PBglnPmTzvxApxMLHtEpWWNN2pg9Zet33DMg7X u/HS8Z9XOs154K/ygGKSbO1zjdSvA0zLSv0FnQLbs39A5RdxchJfG7fSMPJmn7z3 x0hUwts3G0w78/4NGRS86ijKieusTI1GGXBVL4nWvmxadT/MUHQo+dMuZ8BT0ybK xM/fSLnM9FLBZSgBhnKWAG4kndTsG64l867YWQ3eZ9V+lM3cO7TkW/IrKvzZfH5X Qs1FLgwYcn+G5TY5dTAfGQZSJULuykI98jVknjhfrwxPSjJp5Wolqch5Y/RsqkQv R+9nzk32GmCifzhjRhVITmFEB2D54P184GvK3DI8KiWbGMUf1F7S6IyHGRwrmUSV VjKGrd9Wpl8M5d+BjmVmeOFipqLaELDEK2R4qu5KaU40mge0TyCdvRbJnFsnh2it 12ycBLIUZj4STQm+4DFnlUZVua8eSLLJ0yl7LDaf8Pwth1X5J9/9L915nJX6fG21 M1uGjMd3iKa7VeVZEGOT/aFu1WDrDDenrfpY4P5AtOhpbMUcJ+oGW/Duff4He277 8aXgWi2Y+rap45QHQD88LWn9DZ5mwhqficSVPsBeEYFaxx6vlkhKmVdKtH8X9Xbj JgrwKdQWlmWs =3bCo -END PGP SIGNATURE-
Accepted egl-wayland 1:1.1.7-2 (source) into experimental
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 11 Aug 2021 20:13:07 +0300 Source: egl-wayland Built-For-Profiles: noudeb Architecture: source Version: 1:1.1.7-2 Distribution: experimental Urgency: medium Maintainer: Timo Aaltonen Changed-By: Timo Aaltonen Changes: egl-wayland (1:1.1.7-2) experimental; urgency=medium . * symbols: Added. Checksums-Sha1: b2798e77a6ffdee55c72affb992109423d173e87 2075 egl-wayland_1.1.7-2.dsc a1c034e5a1148363bb26ee972ea49a57b24ddfd3 2704 egl-wayland_1.1.7-2.debian.tar.xz 7ad8df76a3add18a14bdc764668da5f83db99ca7 8357 egl-wayland_1.1.7-2_source.buildinfo Checksums-Sha256: 4c4a517893baa3bf957870288102ab3b820fda2cbdc31197f6c132ba8f076e0a 2075 egl-wayland_1.1.7-2.dsc dc888a26f3b1539953e762f24d61439fce968d950653c117f523d7a44451e1a8 2704 egl-wayland_1.1.7-2.debian.tar.xz 9296f94509e8980591080e121fb4d59d0298ac6d37a2fe2c5f922e0ed9bdf2f7 8357 egl-wayland_1.1.7-2_source.buildinfo Files: ca4f4eb40f7553b7312452e8073565eb 2075 libs optional egl-wayland_1.1.7-2.dsc c705985f3785bb7c42296974a2ae9522 2704 libs optional egl-wayland_1.1.7-2.debian.tar.xz 2bc7947610cecbe08af4ac3d1b5c19c0 8357 libs optional egl-wayland_1.1.7-2_source.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEdS3ifE3rFwGbS2Yjy3AxZaiJhNwFAmEUBTYACgkQy3AxZaiJ hNxxuw//WaTz/kaK380OUI/xRoNGhZ9H5SoJaHfnSigtf9qVF6wdnf/I5BJydSBl CdQ0oXiMF3JdHUrtz1fjkdW64arijhHSLRqL9qeleTAQvJ+U+VYoQCdXnX3VV5EV pHYYT2N9A6nPJ0CEFYdC7xj1a+agnGK/dXuL71QjhJa6PdfP8PKMcJVMkbbPaPR9 XChJGz+mNRDUCGfZWVTbSI20f6hoDmfteXul2xdxMfTt1PMIjIA8w2ZyDutNaSyi jVmQpSi4lcmOxI2++RFTQAH4haYwuW8YnbyAup4uBEjeTgUjIHs7BS0W44jJ48wi czc58JB6K7EMV14miZlJpUo2d4Dogb9nin8iDpgBPrSh0OzP3KJywigQGTRfeDyI SzE60bvISIToeQJ/Kn4vdxSr0LqHe6rp6/M/0Dl6LH5UO4T7Y2vkNU+AM7QCeaI8 I+aaj9YksqMFbkHqQzzTLZRPWmaE5VPdTDGZtcraw6s2Ilx6fY3PxyST3xcF6SLc CXZkIGSjySok16ka8zphoeW6Ff87jmTpB/+kXIAK2Deh6PMnPpSkJJXVKJ8TVkdr wlniQq8+Yaw5/f5bjlg3j9V43iM7VWCeBneqVj4lckrcposN+pXJIexPOIYeynKV wK/EEZ/Ojcdfq7d4hax9no8u8i0AN1x/KWwZ7L+XO4Wh6co+LYQ= =YtUs -END PGP SIGNATURE-
Re: Gitlab support for Debian repositories (Was: Regarding the new "Debian User Repository")
Hi Wouter, sorry for the late reply but I think it's still relevant... (just thus rather leaving almost full quote as context.) On Thu, Jul 08, 2021 at 11:25:26AM +0200, Wouter Verhelst wrote: > On Mon, Jul 05, 2021 at 12:31:10PM +, Holger Levsen wrote: > > On Mon, Jul 05, 2021 at 02:09:36PM +0200, Mathieu Parent (Debian) wrote: > > > > Do you have plans to support publishing builds only if they've produced > > > > bit by bit identical results on several builders? IOW, do you plan to > > > > support reproducible builds? :) > > > There is no specific support for reproducible builds. Currently, [...] > > > But reproducibility can be tested in GItlab jobs, before the upload. > > that's nice, but rather theoretic (however common it is today) in practice > > :) > > It would be really interesting / a game changer, to have a publishing option > > which would only allow publishing of builds proven in practice to be > > identical. > It's actually fairly easy to do that: > > - Create two runners, with different tags (e.g., one tagged "build1", > and one tagged "build2"). One can be a docker runner, the other a > shell runner, just to keep things interesting. > - Create two jobs that build the same source in ways that might trigger > reproducability issues (I'm sure you're better at this than me). Make > sure that they don't store their artifacts in the same location (e.g., > one job runs "dcmd mv ../*.changes products/build1/", and the other > one does "dcmd mv ../*.changes products/build2/"). > - Have a third job that depends on both the above two jobs, and that > runs diffoscope over the artifacts of both jobs. If and only if the > diffoscope doesn't reveal any issues, run dput to upload the packages. > > I think the salsa-CI team can easily add support for this to their > generic pipeline... that would be really nice, thank you for explaining this idea so well! just one thing: here we do *not* want to trigger reproducibility issues, rather the opposite: if we manage to do two builds resulting in exactlty the same .deb(s), we are happy. because here, our focus would be to publish things :) elsewhere we do have a well known setup to find problems... (=tests.r-b.o/debian) -- cheers, Holger ⢀⣴⠾⠻⢶⣦⠀ ⣾⠁⢠⠒⠀⣿⡁ holger@(debian|reproducible-builds|layer-acht).org ⢿⡄⠘⠷⠚⠋⠀ OpenPGP: B8BF54137B09D35CF026FE9D 091AB856069AAA1C ⠈⠳⣄ When this virus is over, I still want some of y'all to stay away from me. signature.asc Description: PGP signature
Accepted oz 0.17.0-5 (source) into experimental
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 11 Aug 2021 18:06:44 +0200 Source: oz Architecture: source Version: 0.17.0-5 Distribution: experimental Urgency: medium Maintainer: Simon Josefsson Changed-By: Simon Josefsson Changes: oz (0.17.0-5) experimental; urgency=medium . * [f99cae8] Use Standards-Version: 4.5.1. * [b15f02c] Fix watch URL. Checksums-Sha1: f9166b7c74a132a007e719d09833cfc254cb788c 1546 oz_0.17.0-5.dsc 80b7c0f024ca3208d117f9ce606590bb43e6253b 4100 oz_0.17.0-5.debian.tar.xz e4cd181ec7b269427e91b0c7f29dd188fc89c5f2 5736 oz_0.17.0-5_amd64.buildinfo Checksums-Sha256: 74b69f3c58bcb8a178cb79c3133bf73b8eaaa3a649489a8cb055a9194726e6a9 1546 oz_0.17.0-5.dsc d7fa1152a7a29e58173af29e178da36e121e701c7a01886c0d80f5efbb083336 4100 oz_0.17.0-5.debian.tar.xz 52e909814c69dd37b45a4ac2d471e73399f864ccd4078a820c2573d26c96d9b7 5736 oz_0.17.0-5_amd64.buildinfo Files: 1870eb4bd302db0afba92e086b7980f0 1546 python optional oz_0.17.0-5.dsc bff7b60a8a1bfa9a936d3856a271c6f1 4100 python optional oz_0.17.0-5.debian.tar.xz 5deb7d39f0bef59feaca50fa732bf2c0 5736 python optional oz_0.17.0-5_amd64.buildinfo -BEGIN PGP SIGNATURE- iQFIBAEBCgAyFiEEmUFc4ZBdDlWp+IAmhgt/uzL4EZ0FAmET9ogUHHNpbW9uQGpv c2Vmc3Nvbi5vcmcACgkQhgt/uzL4EZ0rEgf9Fjrv0YKlgjoS1YqrYJISlr7hZbwL vL6VRrX2Mt9c/Ake9A6cMAXc+fxXKqQ/4mpB/5lryX/4xXbn5NYKdQ3DPWIq6GVv rAqZzXjGPKtSlrjeKyLcZlQNVNq1Z+g0VOosV0IHXDwcC4jxx2v55TUV14cT/bfx RH1eVDyzGYqjZbb3BtM874L1AEHu/O50QLARo8kxbpuifIkMeWUW4x7FGtqWU3T3 P9nMzjUM+ix+XVpoizrhuzxJscUH80Tk4kLWoAI8N1G15hQC68H73aB7kIG7Wfwb 8sF/CaDM0t40sIhiDe+VyYyrl/rzpIxLkhsNo3H2f2tEeVsbkGg6bwZTGA== =+ivH -END PGP SIGNATURE-
Accepted jabberd2 2.7.0-3 (source) into experimental
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 11 Aug 2021 18:17:30 +0200 Source: jabberd2 Architecture: source Version: 2.7.0-3 Distribution: experimental Urgency: medium Maintainer: Debian XMPP Maintainers Changed-By: Simon Josefsson Changes: jabberd2 (2.7.0-3) experimental; urgency=medium . * [113d65b] Use Standards-Version: 4.5.1. * [f20ea01] Use gbp dch id-length. * [c061b80] Use v4 watch file. * [95cabf7] Drop patches/mariadb10.3.diff since it was merged upstream. Checksums-Sha1: 243603ca33df91686c8343e007f186a0efe062ec 1780 jabberd2_2.7.0-3.dsc a5242efa2700b5fc763a019c8b9cf9d1fd187168 17768 jabberd2_2.7.0-3.debian.tar.xz e5fafc3216ce02721efb07debd2c521d73505e9c 6972 jabberd2_2.7.0-3_amd64.buildinfo Checksums-Sha256: 110b9b3d0d592e8e1e1198af913a45f67fd7af184804c85d3755928b40ea4e2d 1780 jabberd2_2.7.0-3.dsc 312006bdaa72259d12bdf96df604947d356a90a45f7eba4a4c989e061ef51f43 17768 jabberd2_2.7.0-3.debian.tar.xz 0e9437a2421c7d07f540fb5a11f928b813da1e4e21f195ff512133d917ad47bb 6972 jabberd2_2.7.0-3_amd64.buildinfo Files: e765e4822def23f269fd6f565bb419c1 1780 net optional jabberd2_2.7.0-3.dsc 7aa25d3c28128b286dd388e13bdb16c3 17768 net optional jabberd2_2.7.0-3.debian.tar.xz 5db27879d30328cc6cb4a9924e391e1b 6972 net optional jabberd2_2.7.0-3_amd64.buildinfo -BEGIN PGP SIGNATURE- iQFIBAEBCgAyFiEEmUFc4ZBdDlWp+IAmhgt/uzL4EZ0FAmET+LQUHHNpbW9uQGpv c2Vmc3Nvbi5vcmcACgkQhgt/uzL4EZ2R+Qf/QWtY6W4AA4dzZ8haHUXf2tyrx/Cm M2sZ3FfE+FbXIcbNp6ke6FoyChzAyA1MEhmzaVhcKwr5ES4pIE4AMWE/vplcKBeY cvDLHOcXphz9JWt9W9rWfDAGVOr7Lwu65WSlR7CKcRr1WPI0bRxqOwOv6cgWOTIj 99clCC8LjnPDqShSDXhOfb0S4ugCSNrGF1nNPkCU4qswDlviEFfCROsP2zhmfQzK WLclBYzNWCPbFseysznANDp8LlKqbwvZQZgQHylGwDnyEYJue9/WS27+LO2Ev/Jn Ugkho6YBPx+RDq1fFYl80+sjysCy0p4PxFKcxkUR4kY2sRbMyAvoQ3s9xQ== =/iuV -END PGP SIGNATURE-
Accepted hdf5 1.10.6+repack-5 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 11 Aug 2021 16:33:03 +0200 Source: hdf5 Architecture: source Version: 1.10.6+repack-5 Distribution: unstable Urgency: medium Maintainer: Gilles Filippini Changed-By: Gilles Filippini Closes: 992068 Changes: hdf5 (1.10.6+repack-5) unstable; urgency=medium . [ Andreas Beckmann ] * libhdf5-mpich-dev: bump libmpich-dev dependency to (>= 3.3-3~) (Closes: #992068) Checksums-Sha1: 2cd960bfcb4ba91920ed006cf6e2fbdbfcec084c 3838 hdf5_1.10.6+repack-5.dsc 5498f9c9bbe9d03f92657eb575eb301767762b84 145284 hdf5_1.10.6+repack-5.debian.tar.xz e4027d2ac856ee0ce7d429a0524468d53767dbf9 28033 hdf5_1.10.6+repack-5_amd64.buildinfo Checksums-Sha256: 6f65e156bc4125ccf6f74de1c96a5d99afde2fa54ba4a5af15bbeaf5c169a5ea 3838 hdf5_1.10.6+repack-5.dsc 4cd17f2761c375c37e2624dd064705ead433e4062488f47202b45746bfff2d6d 145284 hdf5_1.10.6+repack-5.debian.tar.xz 63665c3df9c5529234baf54a00daf720b51ee6924698b4ccf539eaf17e0d7342 28033 hdf5_1.10.6+repack-5_amd64.buildinfo Files: 1603485c71296690577fb5468310f822 3838 science optional hdf5_1.10.6+repack-5.dsc 812bfdfbb83724c9dee6fc25e52c7ffe 145284 science optional hdf5_1.10.6+repack-5.debian.tar.xz e866dbfe604285e8763c3beb0109a1c5 28033 science optional hdf5_1.10.6+repack-5_amd64.buildinfo -BEGIN PGP SIGNATURE- iQFEBAEBCgAuFiEEoJObzArDE05WtIyR7+hsbH/+z4MFAmET85kQHHBpbmlAZGVi aWFuLm9yZwAKCRDv6Gxsf/7Pg/BXCACptZWg0OvMffixhBx3IQGv9XeL+G/hrgwy 6of3NCXCIdLmeTMIlb1mkg8PWlHB7BC8Eu1UC4uupvZWFiOckB7fF+rnEfDxqW6d 7KWKpSz+UXCRnRx46Bidin36VmLnl6gPEiRcWQwb71YRzRPFY0PUwt3cnn+QDF08 eAg2ivmd4hQbeTjbxr+q/J0EfRyGu45lds+uveizgB1VSMn7ZLflRQATaefjoAdp At1s1LvEfW1jbQ9/hSlpRCz6WyoC6AAJPj1liXK6PT9xnNW5HacxKIOl+YEHmEUQ bIUBfcL89s6j8SpxfKpHckXws++J9X+LkceR3LENBzEW6XoEMFed =Q3Oe -END PGP SIGNATURE-
Re: Code
On 2021-08-11 14:08 +0200, Hans wrote: > And best: It is all GPL licensed, It's all free software, but many licences are used, not just the GPL. Wookey -- Principal hats: Linaro, Debian, Wookware, ARM http://wookware.org/ signature.asc Description: PGP signature
Accepted redis 5:6.2.5-2 (source) into experimental
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Wed, 11 Aug 2021 16:45:54 +0100 Source: redis Built-For-Profiles: nocheck Architecture: source Version: 5:6.2.5-2 Distribution: experimental Urgency: medium Maintainer: Chris Lamb Changed-By: Chris Lamb Changes: redis (5:6.2.5-2) experimental; urgency=medium . * Explicitly specify USE_JEMALLOC to override upstream's detection of ARM systems. This was affecting reproducibility as the aarch64 kernel flavour was using Jemalloc whilst armv7l was not. * Increase the verbosity of logging when testing. (Re: #991476) Checksums-Sha1: b418465c8d4fb528a4c3aff38c81941543b3a3d0 2266 redis_6.2.5-2.dsc df1aaf375f62aa0fa88802edfd009bcbc4980126 27464 redis_6.2.5-2.debian.tar.xz 8573234d0c72d19d73dd40668531cc9ded4e8aea 7285 redis_6.2.5-2_amd64.buildinfo Checksums-Sha256: 547a777b2b4cb6287e50319102ca68404ba3c6bf28e30ddda1da0e8f9bc16a9b 2266 redis_6.2.5-2.dsc 22ff41b09524066428e0051bdd40cf25d8d7ff470fcbc75b67c799d436a4d5a5 27464 redis_6.2.5-2.debian.tar.xz 6190f44d73e5b70857779f19ff78dc838700be6fb39ed9385d61e845d11012b3 7285 redis_6.2.5-2_amd64.buildinfo Files: 1c148b998fc8f57a2f150fc631df8233 2266 database optional redis_6.2.5-2.dsc 2bc6ca8ba1518bfb07da13da12bffa08 27464 database optional redis_6.2.5-2.debian.tar.xz 398f62d803dcae36b75abcccd13e5e98 7285 database optional redis_6.2.5-2_amd64.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAmET8RwACgkQHpU+J9Qx HlhbXRAAqgkngPmfENodvMKlcJpxiIzlcp8G//IV3kO9Ta1DCafUTOJ8zihc1kny FRWlrUa5INR1m0aNoWTC89SSk5LrJ7N8UwhdmOUp8909VqwG6Qz6elqrFAAbypGV Ff29AcqWU1OrCBTmnTdqn4BjBp5zn4i6kmSbQ90ySsdwSZzTaYVd5kw2CQ7UxxGa c70tXnrxNPnQmfKnpyDgA/ZAfkU/shD2tOKUX8T6nKVR8CLfruWxsLlVxxZeoJUc tbkoXJF0htk1z272ICYxbVm4izWKRCZB530XOp++dZwh0Roj/nhl2ZZyF9uc52wu rMC1+DNU6lRJisqO9WEV+WKBp1ix3Xmt1a6+37BUW4I/B1oIwhTB24qKsgwGxaDs 6qjpy+0zKN+s2eXAtvsMN0E3++DBOCJbY+DudRFYb5eW/VhzRqNfDafmRgKgGAIt Mt9/zaPfTnn4/qodugtzadjBaQcuRWwQe7K8QYK/94Wqljd529xQTvZK69dPPHzj eKjp90L0mlvi0zwtqCCSPUH3Ir1sMoTq+TEIn6UsioXWxaQeJkz7XEh35Qz08bPC seFvSO603RBrc1nWeYnYOJnH9b2ehwtB3mS9cKptRub/mirrG+fgDl2Iku3iGU62 in86cd83cPndvjmadFBqTBc5VtGwvBY4g4LEhqGcy3t2JVAQ27M= =qPAF -END PGP SIGNATURE-
Re: Steam Deck: good news for Linux gaming, bad news for Debian :(
On Wed, Aug 11, 2021 at 04:08:13PM +0200, Vincent Bernat wrote: > I think we have more systemic issues. I am quite impressed how Nix/NixOS > is able to pull so many packages and modules with so few people. But > they use only one workflow, one way to package, one init system, etc. > Looking at Arch, one workflow, one way to package, one init system, etc. > Looking at Fedora, one workflow, one way to package, one init system. I wouldn't call it "issues" per se. It's all about trade-offs. Having only one way to do things helps velocity, but it also impedes flexibility, which some users and developers value. Having a faster release cycle either requires a lot more engineering resources (volunteers or paid, depending on the distro) and/or it forces users to continually update to new major releases if they want to continue getting security updates. There still *are* enterprise customers who like the longer release cycles. Some of them even use Debian and have privately referred to it as "their secret advantage". Whether it is a large number or not, and whether they are contributing back to the Debian community (and whether that is important to us) are different questions. Requiring that all packages use the common distro-shipped shared libraries (or Perl or Python components) as opposed to shipping their own is another engineering tradeoff where there may be some advantages, but also disadvantages, in terms of effort, pain if the shared libraries or Perl/Python components laugh at the concept of "stable API's", and userspace package upstreams that want to work across a large number of distributions all supporting different versions of their dependencies, and/or upstream that want to move faster than Debian is willing to release. These are all tradeoffs, and there is no one right answer. That may be painful for those who believe that there is, and it is a hidden assumption in the blithe assertion that Debian should be "The Universal OS". Unfortunately, these tradeoffs mean that there can *be* no single "Universal OS". There will always be a need for different horses for different courses. Debian has taken a strong opinionated stance on many of these tradeoffs, and that's fine. It's not necessarily a problem, except insofar that some people want Debian to be applicable for a particular use case, such as for example Steam OS. It might be the answer is that Debian simply can't be as Universal as we might aspire to be. Cheers, - Ted
Accepted libspf2 1.2.10-7.1 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sun, 08 Aug 2021 13:46:49 +0200 Source: libspf2 Architecture: source Version: 1.2.10-7.1 Distribution: unstable Urgency: medium Maintainer: Magnus Holmgren Changed-By: Salvatore Bonaccorso Changes: libspf2 (1.2.10-7.1) unstable; urgency=medium . * Non-maintainer upload. * spf_compile.c: Correct size of ds_avail (CVE-2021-20314) * Sanity check for sprintf * Fixed 'reverse' macro modifier Checksums-Sha1: 04d2ac72c8f30ea72fd088691fd060c70072a8c6 2247 libspf2_1.2.10-7.1.dsc 2046ab4f05c5e62d362866bf53d3985e487a5b2d 15648 libspf2_1.2.10-7.1.debian.tar.xz Checksums-Sha256: 30ada740c70d3757025f284d2ba8743752c4fde21b74407d6f550ef894e37fb2 2247 libspf2_1.2.10-7.1.dsc 5846c9f56f072d1916b6138416aed0ed023537fbbda479e2204205fba63ddd71 15648 libspf2_1.2.10-7.1.debian.tar.xz Files: 8cb9896aae28f37726e29599a41f0916 2247 libs optional libspf2_1.2.10-7.1.dsc 984b2b1574e5f81e244211b9e302699f 15648 libs optional libspf2_1.2.10-7.1.debian.tar.xz -BEGIN PGP SIGNATURE- iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmET5d5fFIAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk ZWJpYW4ub3JnAAoJEAVMuPMTQ89ERIQP/jcLtsRWmc5BdT75jvisT9hvss/rfbJt TzdDbve7iN5S9bXCCwu0K2saHa0Ati7aMkSy8tp9ZRPYB57yZIfjCTCjX+o9l6eJ PoVv/TygKP5SkjAuxxtAjJlfvpjfCedu5j9qNKC7leld9YwDRyGmgtcU8n8sNZCF 5G8qbYHO2tDqfz4j4Y11qzs1fb29MR1qSfUwaEL8Ib05KpfMUP5CHUkJwTxm9+pU /7qHHkmr57M5ffwVkmJhMDTouaXhmr+9kczDitlY1TgHRBr/Hvop50y4PgQ5LnTt oAgNg+MQGX5H6dU228Uyw9qWvfSW9auL1cb9zIDVcb7Eli2dDcb9sWOkYquTPUI8 XjjFgAybpL1rES+4B/bEyDvijqcmFRmChUld01B3QHsNa0DybsgzxmnzlVoNlIb+ SD5UmqvWuCsb5cw1p3KZ7MlRhLEv1yDEbFxUITxOhQiCSCRSHng9A3WMnnAihJSR EznZxjYVd59Oab4NqNAlIDQOQfbnBceTMUWxe9h2lycV6XUbWLslgGGv1t33VT/n seTJk7f3pvFwzrDoHxzHSQ2RbVvVV2qzlSzQhvOpAek1EdDT54FkDmd+e3V/9nQT yYBtsThig4rmb9A4lLIrS+sZr09NFDEHbvu6lYm8fvgUQyQ/ghTxObEdOtu5S9G3 cvuiIfqM45N9 =+QtZ -END PGP SIGNATURE-
Accepted cccc 1:3.1.4+dfsg1-1 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 11 Aug 2021 15:59:46 +0100 Source: Architecture: source Version: 1:3.1.4+dfsg1-1 Distribution: unstable Urgency: medium Maintainer: Colin Watson Changed-By: Colin Watson Closes: 992093 Changes: (1:3.1.4+dfsg1-1) unstable; urgency=medium . [ Debian Janitor ] * Bump debhelper from old 9 to 12. * Rely on pre-initialized dpkg-architecture variables. . [ Colin Watson ] * Repack original source tarball without test/prn13.* and test/prn14.* due to non-DFSG-free licences (closes: #992093). Checksums-Sha1: 908741f02b3acc85d4a13bedb9d6d2cf912f1c48 1965 _3.1.4+dfsg1-1.dsc 79893c0655df8379382322b62911ff50af7224f7 432112 _3.1.4+dfsg1.orig.tar.xz 3a88cc9c91c44b4d5b120a6c39ccacb168d5f630 6156 _3.1.4+dfsg1-1.debian.tar.xz Checksums-Sha256: d3f1976d9e17637fa378992d059eef946b549531145a21ed3239fb6cdcb18f05 1965 _3.1.4+dfsg1-1.dsc 29e96eac8551e360d66c6c818c94f9196475a83f27d0f53f82a9d1ba2b75fdef 432112 _3.1.4+dfsg1.orig.tar.xz ead97539a7d37772c9110d57e15bba6b2cfceb831dee1f24df223fb5c24efc2e 6156 _3.1.4+dfsg1-1.debian.tar.xz Files: 39ea349e1bd98b42b4e83d7c5055fe13 1965 devel optional _3.1.4+dfsg1-1.dsc c914abcb0c457db5e61e65828dbbce41 432112 devel optional _3.1.4+dfsg1.orig.tar.xz f4a09756fde5e393cbefb683ceeb287a 6156 devel optional _3.1.4+dfsg1-1.debian.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEErApP8SYRtvzPAcEROTWH2X2GUAsFAmET5iAACgkQOTWH2X2G UAuNjw//Q52DQoxkgcKoR/eW3XhbFs1vdvlrCykSHkgTcbv1f5Pj2RDe8HRLwSSv nNF8IS8c7sXYucZYSmeI0wr16+aiP9RdpLb8WzbtzzoETGF/PD3BygF1gzZ48bGz g/SDPDlk9iRw77jE9+1J0uPQ6LmXXZ3LQ0NvMpts0qDkFFg1H5U50scDAEVXgLLa tZAFFqnHIGyAGQkgFwOnnN5HR/mzXK+uQ96vIYejx7wVze7SRlbfKjTfP5ulQQzD HNcgj6WF7sJFAhTDwD4QMYTuDQUVzgtJHsaCW6bl/5GqpkzVxxJc/fL6nwOqq679 q/jeejGRFXCAaoW+k9bRXGRwrWDgaxW1N9dF8C9Pb+q6TlVuoGGLdMQoBfI+R295 aaucjNQ8oOq+9V1B80PTUme4tJuBkbmGC4bto1fAhUQ5EOMVYwBdSAzXlrm7aRgF iA75qE6W9NyFvYcBjvLZnBwbAIXdAEIJ6A9Xl3eg3Xk9VgxCD+F5gGZb2Ieah93S p5s54NI3Vr3MnnFUqnKDzFaVeD0NTHPWA5sYQC3o0eTA4E7NSYxlhcpqAJJLaKlr TC1vfo+PdRVgaDTtUvfFWIslFtxtCMSN18j4v+YPghkpxHaGHJCjiXDe0ZCEodK6 j9c2rVNTGfOlYMajF2zSpSITBZgL6fNj2QGFpxthjCunIcxuA5k= =aZ6A -END PGP SIGNATURE-
Accepted linux-signed-arm64 5.13.9+1~exp2 (source) into experimental, experimental
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 10 Aug 2021 21:12:41 +0200 Source: linux-signed-arm64 Architecture: source Version: 5.13.9+1~exp2 Distribution: experimental Urgency: medium Maintainer: Debian Kernel Team Changed-By: Bastian Blank Changes: linux-signed-arm64 (5.13.9+1~exp2) experimental; urgency=medium . * Sign kernel from linux 5.13.9-1~exp2 . * Fix linux-cpupower installation. Checksums-Sha1: 332d50b4ed7c91104ab143f9c865b12d0c0c9c54 7315 linux-signed-arm64_5.13.9+1~exp2.dsc 12d44cff3da5e55341b7039c6f8993b7ac8d6b3c 1469328 linux-signed-arm64_5.13.9+1~exp2.tar.xz Checksums-Sha256: a640ae0a0434dd774c1de4ba2c0d6d9e0e8c3a78b0079b43d8399069f41b6c9b 7315 linux-signed-arm64_5.13.9+1~exp2.dsc 6f4f0df1350899940a9f9f54000a9d7528eb64bc7409260c84ea67f584f16087 1469328 linux-signed-arm64_5.13.9+1~exp2.tar.xz Files: 633b573b4bbcbecf07b479698c51bbec 7315 kernel optional linux-signed-arm64_5.13.9+1~exp2.dsc 3369743bdf1d78c96c156a82b5e74cc8 1469328 kernel optional linux-signed-arm64_5.13.9+1~exp2.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEfKFfvHEI+gkU+E+di0FRiLdONzYFAmETxBwACgkQi0FRiLdO NzYFeA/8DZ0UH4biOcRQFCG0OnO/xPKwicULVJWYs7tIsnDjrIrKz/Rv2t2wSf7p lP2c8s4G4iGcO04VZWL0BON/px0PmGeuPh823T5Q937Jw3c/TtbpoqVOT909PoVQ gLM7EQdz0LziT/26NUu6fdR8DI2KB04wz0nM6ioZ3tf8+qw/GbNBtw+xib94qpAJ 4zwWDyxX/0ieygeFImIPTSkipA9crNnmRQZECWe7z1yuNfxxx7wgvxscWHDmUzem bBJ/wZzrNfPtb9X2sxNkg91HBBTIWOlWfqoqnwt49LoZ6kPD61V54t5wccjhlbdv aWXvgRXaVxjPSAuKst8Fzte14+UkZhi4/02QnyZg9z8voQDAF0XDWqP4RXItbSZm wpx7GGJt5sxh8MjYRAXHvDD0Eq5tNmNB2hr/rZHFrFmr3djaTJEUMQajfBs+WZyv KGqe/MQhr9bNdgO7FvXGUE83s/yOxSXGSAi46Uk9P1uLKXHavpALie0pva9Bdn5E IXe1lJCBam0O3wBFhi64ghW+GmdAD/3C3nZar61aSOcZ78FAK5+XcivrcWmi8lrq SYZfze4rGY+reJXxlJ/VGNuUVAI2S4dcTvCoWkgHnZESStBfi4jUSzOX7hBmLkF0 taGkYiGC6HicScG3AjnoZIjbYdUqBs00Qs3wblRNHJ5xdEX1V6k= =bzle -END PGP SIGNATURE-
Accepted linux-signed-amd64 5.13.9+1~exp2 (source) into experimental, experimental
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 10 Aug 2021 21:12:41 +0200 Source: linux-signed-amd64 Architecture: source Version: 5.13.9+1~exp2 Distribution: experimental Urgency: medium Maintainer: Debian Kernel Team Changed-By: Bastian Blank Changes: linux-signed-amd64 (5.13.9+1~exp2) experimental; urgency=medium . * Sign kernel from linux 5.13.9-1~exp2 . * Fix linux-cpupower installation. Checksums-Sha1: 3d8b0653f093d0315e73f9bb41bfcfd9b1a550db 8650 linux-signed-amd64_5.13.9+1~exp2.dsc 0deea9f7908fae58d5452c1c27b21fd89cda08ac 1616004 linux-signed-amd64_5.13.9+1~exp2.tar.xz Checksums-Sha256: 4a81dbd2669851a8b8622f0952eec80281ab3f0fb1b3939ccffb4125b511f8a7 8650 linux-signed-amd64_5.13.9+1~exp2.dsc b1011b16856cf80e35b550fd71b52271192777e0f29947d873151dab66bfcc50 1616004 linux-signed-amd64_5.13.9+1~exp2.tar.xz Files: 201ec90bb0984dc19952d961ee1f2259 8650 kernel optional linux-signed-amd64_5.13.9+1~exp2.dsc 3881a0b59c54b9a25fb89cab9c24deae 1616004 kernel optional linux-signed-amd64_5.13.9+1~exp2.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEfKFfvHEI+gkU+E+di0FRiLdONzYFAmETtZQACgkQi0FRiLdO NzbLGRAAmZXrWb2I6jKC7/CnIIkn+gNw157mQVxDxGmF6GHsvB0RX/6f7owHmRoF raf4NkunZD4LwINzqo2LLNCKcoJsmio6DqsvZNf2sMC5SEhwNFMrs+3eQsV/EM2s s40nxjoqQgb4oJbIkmDlC24NCZvr6yv19dWBVrDRgy5UKce7ngeweQJrYtRIsFmP 916Rfi3KEDY/gWkJKYa7eXX7orgUumC1tC5pYKh/KLZaiVqKd3Ch7/jQW2vwv5NU +zrT1XUfIQzZQWc4faphBSoVVlRGKpPTY1TJS0JodBkcXgBkCvT45Qknvn/EPALi eaUJoCpibT+4B3MbCjljyJoD31J3S4LvWJ3FHQ1ZimRpR4F0HyxeKGVYuqru5/ta dJvGy+YCDM644tL14ccZD9znWqCfzlxnkldTvj33EONJiAgWQqYmH+tNVljEEMO2 Xz0O4fPc47rUU3Zq5uhX5U0Mlf+qvEe+t4d3VUuGy+qUJq34l89umQQpVV2wb3wh o5QzT0TCJG9bt+P7pnarfNi2IBdGfkAQwYC26lUY+f6/3tg+nn7Bb2xiqIKZZ7nF KplY4hjflfPObvlwmS4wNu6OtrLx3Q632m2TBhTE8ZQNIOK6mPU6bdlQsWiM6euF ss9EPH7nm9vT150yF0JMyxExwUz8Mz9D3LI5Mm4PtM9i+h5421Y= =GwAA -END PGP SIGNATURE-
Accepted linux-signed-i386 5.13.9+1~exp2 (source) into experimental, experimental
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 10 Aug 2021 21:12:41 +0200 Source: linux-signed-i386 Architecture: source Version: 5.13.9+1~exp2 Distribution: experimental Urgency: medium Maintainer: Debian Kernel Team Changed-By: Bastian Blank Changes: linux-signed-i386 (5.13.9+1~exp2) experimental; urgency=medium . * Sign kernel from linux 5.13.9-1~exp2 . * Fix linux-cpupower installation. Checksums-Sha1: badb2c713d9aad6e9d6277bf456a25fb3868763d 14609 linux-signed-i386_5.13.9+1~exp2.dsc 2f32ccec91476648fd474c76c813f64c8355ac36 2496684 linux-signed-i386_5.13.9+1~exp2.tar.xz Checksums-Sha256: a13ac3bf631bcfbedefd47f9e7655cf60838f1ed252ab143549b19422d670b9b 14609 linux-signed-i386_5.13.9+1~exp2.dsc 077834c210ec04a394b5d8fd2ca8114d3c6c6010901e1aba65421d8105ce0ce2 2496684 linux-signed-i386_5.13.9+1~exp2.tar.xz Files: 6dd2aac33d81a4241809ac2e75421d3a 14609 kernel optional linux-signed-i386_5.13.9+1~exp2.dsc 8b10dcc4a4369c72af3d6419d6ca8eba 2496684 kernel optional linux-signed-i386_5.13.9+1~exp2.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEfKFfvHEI+gkU+E+di0FRiLdONzYFAmET3tEACgkQi0FRiLdO Nzb7AQ//fNpTU83GWYddhSxoNZW4TqKKMdrKvFUOfuW9fKJG4FLmM3z3r1keItit az2IVzwTFFw6UyYaizUSrEd+gjH/29PlAfLM0+Tb4s28geqaur94bgHKvdUSVaK3 qZadbfUCT+d17VgmzlOoYkahB35uMjLVz27GHnIHRzuk3Yc2ZU8k6/Hw+lxIJc8u SzL1YgkiN487JAOJ7bYb1CAdRiePt0vGf3GLhKV2RUN4hmlS3evSKQxbJqClYh1G Rure9vRfUeYBKpOePCLhlNKVeCrJjeaxqblMENXrUI/nFOoW5waMq6N2lB4TvFBI kNcFFl0nLjqkVpEpXSOOqZm1rGPr5oeri5Mu6f3uq1k/uW4XpuslDWFJkvGqi2ll Dop6RfDbauelsTVTKdnEtQR9yDNt+rFGgwtdcjEPmxaVM9fiYK481wIxLibUG4cd cQZpTF1Qs9VGObH+FCwXDDI1O0gPAa4mhmUitvc2Y08muQPrldwh7gUAxFZszMKs MSBAoU2iN8J6G9vOyi3B0vt4/YLOizoyG6UEn9JFiQW34DKmfmNo/jI3A5wuDXcp yoUyPanlKeL1mKZ7ZZ6Z6K2LpsRQiD7rWPgogozVgjqOLeE832IzGfZcA6hoqbvm fSDn8qaJPqVksxsATgfusclx6q26ZQW2twa7rod0pyhki1JkBZQ= =RG9A -END PGP SIGNATURE-
Re: Steam Deck: good news for Linux gaming, bad news for Debian :(
❦ 11 August 2021 11:27 +02, Steffen Möller: > I have no exact idea what to change, though. A rolling Debian would be > cool, yes, but also a bit late when compared with environments that > Conda offers or the ease that comes with multiple installations of conda > to e.g. avoid name conflicts. If we had a chroot for which you do not > need to be root, then together with snapshot.d.o we would be darn close > to what Conda is offering. I have no idea how to get there, though. With > singularity maybe? We package only a very small subset of Conda, I don't see in what universe we could be competitive, rolling or not rolling. I think we have more systemic issues. I am quite impressed how Nix/NixOS is able to pull so many packages and modules with so few people. But they use only one workflow, one way to package, one init system, etc. Looking at Arch, one workflow, one way to package, one init system, etc. Looking at Fedora, one workflow, one way to package, one init system. Let me take again the example with Nix. Anyone can do a simple pull request and gets its change accepted. Each package has a maintainer, but the ownership is quite weak. The maintainer may say no, but if they are just busy, someone else may merge the change if it looks reasonable. In Debian, we have many workflow (BTS, MR to submit changes, Git, not Git, Git workflow 1, Git workflow 2, Git workflow 3), many ways to package (just one makefile, old debhelper, new dh), many init systems. And the ownership problem prevents people to help from time to time. There are so many packages I come accross that could just be updated to a more recent version and looks like semi-abandoned but I just don't try any more because there are so many ways to fail. I still trust Debian to be the most technically excellent distribution, but that's not all it makes to stay relevant. My point is that it would help to reduce the technical liberties we take in Debian. However, I don't think that's who we are. Today, it is very difficult to only use Debian own packages. We just tell people "just add random repositories". Nix and Arch are able to have almost everything packaged. Nix is able to include into a single workflow most other language ecosystems. -- The last thing one knows in constructing a work is what to put first. -- Blaise Pascal
Re: Arch triplet for uefi applications
On Tue, Aug 10, 2021 at 03:19:10PM -0700, Josh Triplett wrote: >Bastien Roucariès wrote: >> I am going to compile shell.efi from source. >> >> I whish to install to something stable, but I need an arch triplet in order >> to >> put in a multiarch (like) location. >> >> I suppose that it will be x86_64-efi-none (or maybe x86_64-windows-efi ) >> and >> i686-uefi-none ? As Simon says, *definitely* not *windows* here please! :-) >I don't think GRUB's x86_64-efi is an architecture triplet, just a >GRUB-specific target. > >UEFI is effectively an "operating system", insofar as it provides a >runtime environment with some baseline properties and a set of system >calls. uefi definitely isn't a "vendor", and the OS shouldn't be "none" >since there is an OS of sorts. > >For that reason, Rust uses the target names "aarch64-unknown-uefi", >"i686-unknown-uefi", and "x86_64-unknown-uefi". Those seem like the >right names for these targets in other toolchains, as well. Nod, agreed. I think that makes sense. -- Steve McIntyre, Cambridge, UK.st...@einval.com < sladen> I actually stayed in a hotel and arrived to find a post-it note stuck to the mini-bar saying "Paul: This fridge and fittings are the correct way around and do not need altering"
Accepted blender 2.93.2+dfsg-5 (source) into experimental
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 11 Aug 2021 14:25:48 +0200 Source: blender Architecture: source Version: 2.93.2+dfsg-5 Distribution: experimental Urgency: medium Maintainer: Debian Multimedia Maintainers Changed-By: Matteo F. Vescovi Changes: blender (2.93.2+dfsg-5) experimental; urgency=medium . * debian/patches/: patchset updated - #0006 updated and renamed Checksums-Sha1: cf776d3f3a5a27c1e648ea4116022cda70067074 3114 blender_2.93.2+dfsg-5.dsc b2949503909d415883baba30a28377e4df1e17a8 36328 blender_2.93.2+dfsg-5.debian.tar.xz 4f3091167a66b147ab1e3c23cf3ca61516769175 7461 blender_2.93.2+dfsg-5_source.buildinfo Checksums-Sha256: be57f3d3f59cefea392758d2e38b92f2e9df609ecdec699a27b6a347cbcd380b 3114 blender_2.93.2+dfsg-5.dsc 951d7345587a1c241ed2145ecdaa257a72c7f8933b070bd449e301c45b43b04f 36328 blender_2.93.2+dfsg-5.debian.tar.xz 2820b3fddce06c9af64df90821a157e644435266cc1524075e6851e6b41f2acf 7461 blender_2.93.2+dfsg-5_source.buildinfo Files: 0409880be7809e6deee425f454b053d0 3114 graphics optional blender_2.93.2+dfsg-5.dsc ae65ac849ee7239333d89a900c7297f9 36328 graphics optional blender_2.93.2+dfsg-5.debian.tar.xz 89e78cd7805cd669efe0cabba2ff425a 7461 graphics optional blender_2.93.2+dfsg-5_source.buildinfo -BEGIN PGP SIGNATURE- Comment: Debian powered! iQKTBAEBCgB9FiEE890J+NqH0d9QRsmbBhL0lE7NzVoFAmETwjBfFIAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEYz REQwOUY4REE4N0QxREY1MDQ2Qzk5QjA2MTJGNDk0NEVDRENENUEACgkQBhL0lE7N zVqn4A/9HXZXnP5V83GU2Fw0GMTAyFwjP7koJWleAkaT2S3k/sWOzSFPFj28mjlt gtnfh/s4YH4Hq+RAvvSB373dOapL3KZDs95OH3MWr/Sm9BHvmOz9Qwt8HnzBQ4r5 5FllIAEIo2A8HsMOWycpuVwbmiAF3j5pY85GPJkzIn4zTv78kTsX7auHxdU42k2y uYp6wNMneQ9wWgKqZjyOA9jcMjVDGKvP6g0BkjLUC1/k4XZOFcEMnrTJIIz6PW5s dD6MnC3FyXcGGmKnx85+oVkD4+9/eaaLvvVKZLcwsd0xboMurFEnaIfUMYCNktWL gF0lwKU1K8WfIMWLET/uvdjLmnJPTf7CTHcgBoBMBOE7UnVE7rT5TQHx4Mbf+629 XR54W9wpJqSeYI332I3UG/arEhgjjZ+lhYOxe4xwo6xfLQ/BTY7r2cmLQtZ3VpH9 doqg3mTDjJuhoBaHBJt+C6MOWATw6hvJZNrujNIOZ+vb7UkNp+YW7q2aWp3+36Qn KgKUCojOMkTJWeifs9RWxW276I33TdFK3sum/eCSDEUpt9p6PvxYZcbx2MApGIXo FjmGn/ClIJ0ODLj3RfFybImHrHoXQij/EBFtMTGvPzEGSuVckXKXrG/WYJ3zsPr4 RSw7JUky/r/Ew4XqBZYh6yDt4ABL5MQxAaDJSenwRMhNDuKS/CU= =i81o -END PGP SIGNATURE-
Re: Code
Am Mittwoch, 11. August 2021, 13:34:27 CEST schrieb Horler, Johannes: Hi Johannes, every code of every debian package in debian/main is downloadable from the repo. You also get all needed stuff for the most used compiler and interpereter languages, C, python, perl, lua, java, whatever you want. Every stuff you need is just for free and available. There is also a great community of developers, who will be happy to welcome you. Documentation is available in many languages, English of course, German, French whatever you need. Even Chinese and other special languages. So, do whatever you want with it. And best: It is all GPL licensed, so no hassle with patents or factories - freedom in every way! Isn't that great? So, have a lot of fun, you are welcome! Best regards Hans > Dear Debian Team, > > > hopefully I am writing this to the right email address. (In case I am not, I > would be happy about being refered.) Recently I got interested in operating > systems. Now I want to try to experiment with modifying one. > > Is the complete source code of any Debian Version available somewhere in > full (meaning everything ultimately written - in translated form - to the > bootable device)? Maybe I am a bit slow to understand but I have failed to > find something like it. Therefore I have decided to just ask you. > > > Sincerely > Johannes Horler > > Student der Humanmedizin > Universitätsmedizin Charité Berlin > Gemeinsame Fakultät von Freier Universität Berlin und Humboldt-Universität > zu Berlin signature.asc Description: This is a digitally signed message part.
Re: Code
On Wed, Aug 11, 2021 at 11:34:27AM +, Horler, Johannes wrote: > Dear Debian Team, > > > hopefully I am writing this to the right email address. (In case I am > not, I would be happy about being refered.) Recently I got interested in > operating systems. Now I want to try to experiment with modifying one. > > Is the complete source code of any Debian Version available somewhere in > full (meaning everything ultimately written - in translated form - to > the bootable device)? Maybe I am a bit slow to understand but I have > failed to find something like it. Therefore I have decided to just ask > you. Every file that is put on the new system by the Debian installer (any of the Debian installers, and also any of the so-called bootstrap tools) ultimately comes from one of the Debian packages. Unlike some other systems (e.g. FreeBSD), there is no monolithic "core" component containing the most important programs, no "base system"; this approach has both benefits and drawbacks, but it is the way Debian (and actually, most of the Linux distributions) works. There is also a major distinction between the so-called binary packages that are installed on the system, and the source packages that are used to build (compile, adapt, modify in other ways) them from the sources of the programs as distributed by the multitude of their respective authors. All of the binary packages and all of the source packages are freely available for download either on the Debian mirrors or, for older versions, in the Debian archive (http://archive.debian.org/) or via the snapshot.debian.org service. So the answer to your question is "look at what packages are installed, look at what versions those packages are, and then you can use either the `apt` tool or some other mechanism to download the source packages". The list of packages currently installed, as well as their versions, may be obtained by the `dpkg -l` or `dpkg-query -W` command (both have many options that make it easier for the result to be processed by automated tools or to provide more information). The way to obtain the source of a specific Debian package is `apt source pkgname` or (better suited for automated tools) `apt-get source pkgname`; both forms allow an explicit `pkgname=version` specification instead of the plain package name. You may find more information about the package system, obtaining packages, and the format of the packages themselves, in the various pieces of Debian documentation, e.g.: https://www.debian.org/doc/manuals/debian-handbook/ https://www.debian.org/doc/devel-manuals#maint-guide ...and other articles and books listed at https://www.debian.org/doc/ Hope that helps! If you have any further questions, feel free to ask! G'luck, Peter -- Peter Pentchev r...@ringlet.net r...@debian.org p...@storpool.com PGP key:http://people.FreeBSD.org/~roam/roam.key.asc Key fingerprint 2EE7 A7A5 17FC 124C F115 C354 651E EFB0 2527 DF13 signature.asc Description: PGP signature
Re: Code
On 8/11/21 7:34 AM, Horler, Johannes wrote: Dear Debian Team, hopefully I am writing this to the right email address. (In case I am not, I would be happy about being refered.) Recently I got interested in operating systems. Now I want to try to experiment with modifying one. Is the complete source code of any Debian Version available somewhere in full (meaning everything ultimately written - in translated form - to the bootable device)? Maybe I am a bit slow to understand but I have failed to find something like it. Therefore I have decided to just ask you. Yes, all of the source code for Debian is available, though it's divided into thousands of different packages by different authors. You can find links to the source code from packages.debian.org - just search a package name and you should be able to find the source from there. Which component(s) are you looking for specifically? The bootloader? The kernel? systemd? glibc? The core userspace utilities? Kyle
Re: Code
Le 11/08/2021 à 13:34, Horler, Johannes a écrit : > Dear Debian Team, > > > hopefully I am writing this to the right email address. (In case I am > not, I would be happy about being refered.) Recently I got interested in > operating systems. Now I want to try to experiment with modifying one. > > Is the complete source code of any Debian Version available somewhere in > full (meaning everything ultimately written - in translated form - to > the bootable device)? Maybe I am a bit slow to understand but I have > failed to find something like it. Therefore I have decided to just ask you. > > > Sincerely > Johannes Horler Hi, sure, each package is published with its source code. Example: * install a package: apt install foo * get its source : apt source foo You just have to modify your source lists (see /etc/apt/source*): each deb http://... main ... must have its deb-src http://... main ... Second: a lot of package have also their public source repo. See https://tracker.debian.org and follow "VCS" links to access to git/svn/... repo. Cheers, Yadd
Code
Dear Debian Team, hopefully I am writing this to the right email address. (In case I am not, I would be happy about being refered.) Recently I got interested in operating systems. Now I want to try to experiment with modifying one. Is the complete source code of any Debian Version available somewhere in full (meaning everything ultimately written - in translated form - to the bootable device)? Maybe I am a bit slow to understand but I have failed to find something like it. Therefore I have decided to just ask you. Sincerely Johannes Horler Student der Humanmedizin Universitätsmedizin Charité Berlin Gemeinsame Fakultät von Freier Universität Berlin und Humboldt-Universität zu Berlin
Accepted icingaweb2-module-pdfexport 0.9.1-1 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 10 Aug 2021 16:09:10 +0200 Source: icingaweb2-module-pdfexport Architecture: source Version: 0.9.1-1 Distribution: unstable Urgency: medium Maintainer: David Kunz Changed-By: David Kunz Changes: icingaweb2-module-pdfexport (0.9.1-1) unstable; urgency=medium . * Adding watch file. * Merging upstream version 0.9.1. * Changing copyright for David Kunz. * Removing .pc files from binary package. Checksums-Sha1: 4ecbd656969177ec96dc4432bc412d27b65d8cc1 2056 icingaweb2-module-pdfexport_0.9.1-1.dsc 5669f440d512713e2fc8c1360370e24aadf37db5 12328 icingaweb2-module-pdfexport_0.9.1.orig.tar.xz a23ed2c4bd734bcefaf75515c06ab09fe923bbb5 1792 icingaweb2-module-pdfexport_0.9.1-1.debian.tar.xz e6bd2f0f6146e80e7288174e25538a626f1287db 5766 icingaweb2-module-pdfexport_0.9.1-1_amd64.buildinfo Checksums-Sha256: e27d8e9a58d13f6f4c1b060ca9ac82af5c0cd930bae345cbad6eafe6e7f1ec15 2056 icingaweb2-module-pdfexport_0.9.1-1.dsc aa725f2441ee3dda09f61c949c13d51ceb4bbc65e2d145de1c6b80d2ac97dc43 12328 icingaweb2-module-pdfexport_0.9.1.orig.tar.xz 74df776c727c0223b2f8af608f9f6d2d39757d3363fab1c658eff27ee24509a8 1792 icingaweb2-module-pdfexport_0.9.1-1.debian.tar.xz 9f5950373a3f66c618cc7b5669d544790f3e4fa3a11d0dcf80bda75e170d1232 5766 icingaweb2-module-pdfexport_0.9.1-1_amd64.buildinfo Files: c6500c0b71cd398ef142a3c4a17c3f33 2056 admin optional icingaweb2-module-pdfexport_0.9.1-1.dsc 690c981aed67aa5292de801f5a861b73 12328 admin optional icingaweb2-module-pdfexport_0.9.1.orig.tar.xz 5eb913c9e30527e7331867e055481ed2 1792 admin optional icingaweb2-module-pdfexport_0.9.1-1.debian.tar.xz e238c9b68aebf7613858a49b50685b80 5766 admin optional icingaweb2-module-pdfexport_0.9.1-1_amd64.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEgTbtJcfWfpLHSkKSVc8b+YaruccFAmETry4ACgkQVc8b+Yar ucf7GBAAu5GI1h/+zHjKOa4hyFntAc3R7MX6q50eyWM9BG2vJasFWs759d9olEvi BX2RTkCHDVlvIp+cn3zd3upoh088xCeoDRrsL5gg6ddo9ehVXBXAWxdjWl14DAY/ oSVOPN0KBrzKiz+wbzkyVMXwFxvcylCEC4NdoQts55qs1RsRDqocp0bUi58YVCTj W//cGLfC4J+Zli/a54cREelwX6nYY1Z0J6Af6gmls1Sg9nsY/km2OqgbIh3TlndQ t53YmWQJMuQXHBLMBBqNTmbUubMW2Ool9ROQndXeQ8KjZvndxRXPbJvl0+owH7Wh IQvD6ID3m0//uuivzp9AAfG2TmJTQIss12z+cLmikGujhsJnXU5wcZnmYRPpntx8 oz9BSsCKgpSg+ko/tDMg7PkvpSSoeLrt8JvQ6oqI9aAmCZAjaAPzCtSz0Dm7NrgD wN1jzgHvza74lhA7lajnJ4tnI1CrndhIbmPE+8NxhRqutZoXXrN3e0UxTCMDy3O1 onRrkdyEZ6Gr0v+Ku+bVY0wsFonBCbLdirMtkzMCsPkV3ky8XrJ/mP31405I1OcE gjpq00e9KDj9pBw1nmJXBvCm7DsibyLZxchBGCn0QkCSVuzHNO+gGtI5TQOhhzx5 PB8Dh3ERVr+5ZZUIIiTCH8Yjl0dMBlSOT55ov90SwB5+ojqbdK4= =iSLQ -END PGP SIGNATURE-
Accepted icingaweb2-module-director 1.8.1-1 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 22 Jul 2021 23:31:21 +0200 Source: icingaweb2-module-director Architecture: source Version: 1.8.1-1 Distribution: unstable Urgency: medium Maintainer: David Kunz Changed-By: David Kunz Changes: icingaweb2-module-director (1.8.1-1) unstable; urgency=medium . * Adding watch file. * Updating copyright for David Kunz. * Updating vcs in control. * Merging upstream version 1.8.1. * Updating copyright for Icinga Development Team. * Changing depends in control. * Removing .pc files from binary package. Checksums-Sha1: eb104c4a1dd0d7a176d6f8a7981010a42bc435da 2048 icingaweb2-module-director_1.8.1-1.dsc cbc6a4a66e2d662b6cd0e2d91d604183bad5d0b5 2637432 icingaweb2-module-director_1.8.1.orig.tar.xz a05c0696d69c93d9bb08853c82db55737c7ca16a 3472 icingaweb2-module-director_1.8.1-1.debian.tar.xz 05c3b5627262ee5a74ceb128c507821940178b0c 5766 icingaweb2-module-director_1.8.1-1_amd64.buildinfo Checksums-Sha256: 14d32460f92c5892e9ad26f44c66235f738ebdf8c7948eeb980febd8f544661c 2048 icingaweb2-module-director_1.8.1-1.dsc 69bee4f2af35fc2ad486c9678e4f8cf9b32ef0675750b4296cd33e0a4c1ad28b 2637432 icingaweb2-module-director_1.8.1.orig.tar.xz 439bd038b8347026fc2dd6fca39e1c58496a5204e991390c570e523fea30ca0d 3472 icingaweb2-module-director_1.8.1-1.debian.tar.xz 91289209892a3375de87c1ff0b1c5196d67463e98ceab0900b33e0f93a9c8ea4 5766 icingaweb2-module-director_1.8.1-1_amd64.buildinfo Files: 64e314745c19249e7f382cfbf7b5f826 2048 admin optional icingaweb2-module-director_1.8.1-1.dsc 688dba94cea1a5a5f386cb8e5e9af8b3 2637432 admin optional icingaweb2-module-director_1.8.1.orig.tar.xz 6ce0ebd49f435397bb83f93d5a4aac65 3472 admin optional icingaweb2-module-director_1.8.1-1.debian.tar.xz d79ca2ceae918340f65a11ad49b36c0b 5766 admin optional icingaweb2-module-director_1.8.1-1_amd64.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEgTbtJcfWfpLHSkKSVc8b+YaruccFAmETrtgACgkQVc8b+Yar uccOfQ//bk6M1LP8NxnhqnbPTyFQk94olQf+DODPsFEooTQGsvDJtpLSC/ZLWug8 laaFxF8k9TS5N5+BUuplObaiQlnvuxCsAzkdLXNo2mc8TO7DQw7bpWC5goLj5diX /qJlFM2Fc+vnsd/+Twb63RpIcvcKqzXwPu1/hzK13Rh0uJg2Vkl1fyAu5Qzsoz51 fGeQ6Pm2jJHr6BZgce1x/nCdpHbji9IJ/IGzmL/kstKNDpM4+4m7THI+FxTJ5eab kTNg5nqxlSshA3o5BNosdIRWh6UjFozO/kl6DVG2+bsY4CiGznPQ3VS+UhGCU4+r 80I+8tz9TZim/Jam8XOTAJZl7AsJfegKb8iIAwhNvv8E0zxTYLlTLwjtcqY1shZN aA23vduVygJ54R1cdSsPMJj+AbSuzpNbD+4qJXG2AQ6Fp76NnhFTUOF91ZeXyORV J4+Vt+DVXLJ3EzvySaY4Zq6/TFLmSKaQK/DMYT4jptkmpXZ4y0CqqHQNS2k5pcCV b4ffh/Xi3AkqOTI4b8R84UvHrgVupH1IDlX35mpyfiyfO2qJIBqUjXmCYps0tQdn zKZagWhUe54tHxJ/0zZjlprIOvY/OZ6YZuECq+Qo9d//epAS97o4mf3L41HBzKc3 hsLXpY18P12g4ppItwZqsF8wTA0pb09kOEI8eSsgxciqk71jG+Q= =RJjV -END PGP SIGNATURE-
Accepted icingaweb2-module-businessprocess 2.3.1-1 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 11 Aug 2021 10:31:43 +0200 Source: icingaweb2-module-businessprocess Architecture: source Version: 2.3.1-1 Distribution: unstable Urgency: medium Maintainer: David Kunz Changed-By: David Kunz Changes: icingaweb2-module-businessprocess (2.3.1-1) unstable; urgency=medium . * Merging upstream version 2.3.1. * Updating copyright. * Adding watch file. * Changing depends. Checksums-Sha1: ac765e9d1accef522d60d9038c5c955a0ee20b73 2134 icingaweb2-module-businessprocess_2.3.1-1.dsc 59ee7fd251c6cddbd38a2d9c239cc2b430eaf669 1878164 icingaweb2-module-businessprocess_2.3.1.orig.tar.xz 4989af5bb0f1fa4e462418482801540dc042fbaa 2888 icingaweb2-module-businessprocess_2.3.1-1.debian.tar.xz a5fa25e7d713aa75262a9732fee1845a66d6a326 5829 icingaweb2-module-businessprocess_2.3.1-1_amd64.buildinfo Checksums-Sha256: e7c5cc7ae05ca98151984eb56b1cdb22044ef370c29e397d2c22813380f45d20 2134 icingaweb2-module-businessprocess_2.3.1-1.dsc 23b9bcf87ad43d2ab0168878729c30719ad73f7548430e1ee5bc593ea6db437a 1878164 icingaweb2-module-businessprocess_2.3.1.orig.tar.xz 95bd3ce80c9c0988244f446ff52204274a06347d908f73b0f672ebdd8ac45827 2888 icingaweb2-module-businessprocess_2.3.1-1.debian.tar.xz 5b917f925004ea40a544719aae6f36eb2175800a634c4b5b0af039e0381e8fe2 5829 icingaweb2-module-businessprocess_2.3.1-1_amd64.buildinfo Files: efa5fad0893a264ef5d346fcd8e98e6b 2134 admin optional icingaweb2-module-businessprocess_2.3.1-1.dsc 3176e5b9f8fa209cb5f6f7430b36d939 1878164 admin optional icingaweb2-module-businessprocess_2.3.1.orig.tar.xz fdc434f1ff16b180c03b0c3fb80e8267 2888 admin optional icingaweb2-module-businessprocess_2.3.1-1.debian.tar.xz f90ba7f9551e4e15dcbf91c203117629 5829 admin optional icingaweb2-module-businessprocess_2.3.1-1_amd64.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEgTbtJcfWfpLHSkKSVc8b+YaruccFAmETrc8ACgkQVc8b+Yar ucdDGBAAzXvHDOBlkizq0Ny/3YiwdAvHmZL0p2lmIz3HKghGsi+s12LGIcJNC6VP iFveZeqpizg4NapQ0GXUYAjHhr29rvkQnm4bFal+mJASJ3R+by5ol8nAdszUM9sd MKTv0Zn+qyOXvp5Ma2p+kg+SICKq/T7R4Ns7XTN7+umRN83O5c82wzY6Ul+cto2j T8ChIF5Z1jWvH8utxwuZ45WXyApSAILTAhwj/AzfIsNCBWPDid2Drqho+cm+kYwK 8UekvHtTe+EW09WjYbG9XBqj4w5BBYRmMpiVVFoH5hFyR6TSO5b17GT1q/JiYqt3 y9R7Vyti2qKDDZTn46iCrD7LQ+g4/Q/pytnvjQbL750EhioGrbdDzZaF9PeOtN1p XMFggEHzHaXO13AnVct3AzBlx2hpgwWMwEBViKJsChRa/G00fJcN0NhFfrE9EWvZ PVvsKHCGNkyHrHBsl5p7lz02SxLxw1Y/Vtv8x/asC0GETS+zBGSMCIbj880VbW49 7SIPJwCubkMy2CAKyCg7PiFGwA7y6g6cmFxgL6EyCfMR8rR12B0MKHfzO5poaFK7 hua0RHWdGIqhMMxL+ODOTRGInl3lp4WtCTZuzrNo17oEkoAHWjNHLabffM2COp7T iv+T2wnxTneY4oTE3Pu6kQ95ht+Kopc1os5X+iRWQg/aXBtt+Tg= =QubZ -END PGP SIGNATURE-
Accepted firefox-esr 91.0esr-1 (source) into experimental, experimental
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Wed, 11 Aug 2021 11:05:38 +0900 Source: firefox-esr Architecture: source Version: 91.0esr-1 Distribution: experimental Urgency: medium Maintainer: Maintainers of Mozilla-related packages Changed-By: Mike Hommey Changes: firefox-esr (91.0esr-1) experimental; urgency=medium . * New upstream release. Checksums-Sha1: 4c40eda7b717572e4ee54e78e0627ad3287c5b56 38444 firefox-esr_91.0esr-1.dsc 1b3520e654cfc4816f8d8310cf67a5200d879815 221103 firefox-esr_91.0esr.orig-l10n-ach.tar.bz2 c780da410ca8f1aa441efd8ec0920dc6f6b3b6cc 258287 firefox-esr_91.0esr.orig-l10n-af.tar.bz2 729da3fad67fcacc246bd3590b1f0f805ad38a76 629723 firefox-esr_91.0esr.orig-l10n-an.tar.bz2 7aab1ae440d7e87b9cafc148128a8d38f74dbaa9 460998 firefox-esr_91.0esr.orig-l10n-ar.tar.bz2 be2d3373abc6a7a58b3bd67269519cff92a3d69a 331246 firefox-esr_91.0esr.orig-l10n-ast.tar.bz2 86cf286535e9a2e0cd5f51d56bc032b728d00123 273701 firefox-esr_91.0esr.orig-l10n-az.tar.bz2 a8eb41e3a2d6573ada29caba3f24f502f317e1c7 831021 firefox-esr_91.0esr.orig-l10n-be.tar.bz2 7f4aa7223250e6bac7277bae818a70bac9b0ecd9 1707474 firefox-esr_91.0esr.orig-l10n-bg.tar.bz2 2c9d959c6d36062f04b917a280a00ff5d2e582eb 356587 firefox-esr_91.0esr.orig-l10n-bn.tar.bz2 ca62b80107b4edbf7608026d1c5dc55e91318c1a 1866540 firefox-esr_91.0esr.orig-l10n-br.tar.bz2 efbeefb367f7336b3d7a630efd3d43cb28d83827 519816 firefox-esr_91.0esr.orig-l10n-bs.tar.bz2 bc4572d33063a132ad1c64292f1405bbdca180fd 276053 firefox-esr_91.0esr.orig-l10n-ca-valencia.tar.bz2 33005b37a9b7d6acaa1e39b16da904882a8b4c44 1325927 firefox-esr_91.0esr.orig-l10n-ca.tar.bz2 63061618cc9469a9c22ae9b8f59d68d299a609d4 494656 firefox-esr_91.0esr.orig-l10n-cak.tar.bz2 d0ade4bbc3397195dfd1136134e27a9a42e65b80 1013135 firefox-esr_91.0esr.orig-l10n-cs.tar.bz2 c02e1e8304dee8ae883066bf355640e75e820add 544613 firefox-esr_91.0esr.orig-l10n-cy.tar.bz2 957f65e2adfa46016bffc6185f937a9c89fc3a8e 1161961 firefox-esr_91.0esr.orig-l10n-da.tar.bz2 793b6783a9fa1964adfe9ba636435e943b6b729c 989761 firefox-esr_91.0esr.orig-l10n-de.tar.bz2 7170dbdf9aa1bfe0b507a31fce930cf4e5b6216d 555634 firefox-esr_91.0esr.orig-l10n-dsb.tar.bz2 a068a1c40ad49b7ab21fed8c55c7f246aa11e22c 2510161 firefox-esr_91.0esr.orig-l10n-el.tar.bz2 7e9f30d0c5f15e36583b7b04cdb8ce4a3d411b2e 755348 firefox-esr_91.0esr.orig-l10n-en-CA.tar.bz2 405502833067618fe6a64d87becf12061bc01eab 939771 firefox-esr_91.0esr.orig-l10n-en-GB.tar.bz2 10cbf9801731afea24ed66544ccd1d9faa6d0aa2 480256 firefox-esr_91.0esr.orig-l10n-eo.tar.bz2 fa77ef2f3b0119082e8e0e00ef58d089d2c4d320 954599 firefox-esr_91.0esr.orig-l10n-es-AR.tar.bz2 591c6f4aff50e94905fe644e62d9b58b0913e82f 607101 firefox-esr_91.0esr.orig-l10n-es-CL.tar.bz2 16bf45425ef9c7ffd56e72bd3798fab56d83f82d 899082 firefox-esr_91.0esr.orig-l10n-es-ES.tar.bz2 5c424c2d5661a7340eb142b767c9d21538553157 806342 firefox-esr_91.0esr.orig-l10n-es-MX.tar.bz2 d19ca055e789d608674f0420ef63ea901de6b6ad 1333187 firefox-esr_91.0esr.orig-l10n-et.tar.bz2 c64f3c37b2c1822b827695c3fe4f84079bc51786 533083 firefox-esr_91.0esr.orig-l10n-eu.tar.bz2 444888d51ca0866555c237654802bf68c6d3d198 370469 firefox-esr_91.0esr.orig-l10n-fa.tar.bz2 19815f651619dfd4362384de58322e5a5d656ec7 251941 firefox-esr_91.0esr.orig-l10n-ff.tar.bz2 a6de0511c5a6e13ce1d780501e12f928977b5d52 957502 firefox-esr_91.0esr.orig-l10n-fi.tar.bz2 2b9505c4617791200c5a10af109cea4921ad6f5d 1383058 firefox-esr_91.0esr.orig-l10n-fr.tar.bz2 eb2abfce51572e951447619affdde39926bbb362 2594301 firefox-esr_91.0esr.orig-l10n-fy-NL.tar.bz2 86e457ad9096ef67ff12c097afced0444135e7b5 385389 firefox-esr_91.0esr.orig-l10n-ga-IE.tar.bz2 d064759ca450e8282e95f851f9e4ee7120af23ad 497281 firefox-esr_91.0esr.orig-l10n-gd.tar.bz2 32c203a96055394d626ccfc2db288f20ea182a4e 843099 firefox-esr_91.0esr.orig-l10n-gl.tar.bz2 5fc1648054172f7e0c2db8cb60e4ed42bf62679b 317311 firefox-esr_91.0esr.orig-l10n-gn.tar.bz2 b6b0f719ba0341b9d0a069bd5d7b42bfe3464aee 309769 firefox-esr_91.0esr.orig-l10n-gu-IN.tar.bz2 3b96508c10df37254a20ae1fffbe1af1b8d49bab 459337 firefox-esr_91.0esr.orig-l10n-he.tar.bz2 3f1aa930eb5bf547bc2cc470d6022519dc2e0082 351338 firefox-esr_91.0esr.orig-l10n-hi-IN.tar.bz2 b21f57a4712e3dfe5b7df9902fcc5f1098626c60 510304 firefox-esr_91.0esr.orig-l10n-hr.tar.bz2 c012bdae5e4480cdb36dc3e3530a0f89494cd299 553558 firefox-esr_91.0esr.orig-l10n-hsb.tar.bz2 24b236a0498ed499bf79a6d4e6a799d02a95a874 1621419 firefox-esr_91.0esr.orig-l10n-hu.tar.bz2 b851cbfdd2a35271822eee97924d26fc73849126 499492 firefox-esr_91.0esr.orig-l10n-hy-AM.tar.bz2 047432c368427baedbf764501710ed21830acee2 533620 firefox-esr_91.0esr.orig-l10n-ia.tar.bz2 d3169ed1b88c8158a35b42b0cc20727aded6ece2 650198 firefox-esr_91.0esr.orig-l10n-id.tar.bz2 171388b0345c71338482a0e782f70ca1cef850c8 408069 firefox-esr_91.0esr.orig-l10n-is.tar.bz2 466f3baed345092cdadff4138b6fc20017d65153 853175 firefox-esr_91.0esr.orig-l10n-it.tar.bz2
Accepted firefox 91.0-2 (source) into experimental, experimental
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Wed, 11 Aug 2021 07:35:23 +0900 Source: firefox Architecture: source Version: 91.0-2 Distribution: experimental Urgency: medium Maintainer: Maintainers of Mozilla-related packages Changed-By: Mike Hommey Changes: firefox (91.0-2) experimental; urgency=medium . * Upload to experimental for cbindgen 0.19 and rustc >= 1.51. Checksums-Sha1: 55a9adb175018335970462b1273121be2fb9517e 35569 firefox_91.0-2.dsc 873a92490664d700c98471d74cdddb743ff3514a 170432 firefox_91.0-2.debian.tar.xz 86f54ac349e781426d2e7fe1445ac65512b6bd8d 8038 firefox_91.0-2_source.buildinfo Checksums-Sha256: 3491d6323f2da8a178a697d01c452f7c65be1f15839a1c2b0d627a2ab6837688 35569 firefox_91.0-2.dsc 1796484b93511ee4532eb727f9123ec730a4a3b83d8f15c7d4a69f54888d31a2 170432 firefox_91.0-2.debian.tar.xz 0f5514f663c94878cdff4f7e49dd97adfc56460542800c83697d5352c55286eb 8038 firefox_91.0-2_source.buildinfo Files: a3e384fe4cc74d4697411a5edc01e312 35569 web optional firefox_91.0-2.dsc 0726e4764f795b8627003aba606de573 170432 web optional firefox_91.0-2.debian.tar.xz 268eb23139397427608907319d49d575 8038 web optional firefox_91.0-2_source.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEGC4WHREwufzNfbFn5CqgT6aqjHIFAmETFkUACgkQ5CqgT6aq jHKRHBAAtlhZiw2bqevBXOjNks6R3RmzYVAvN2gPxv+SsqE6ipRVDWWtBs73069e IKtBlVxsTO83PIfTvBRqncJmt12zFR1z233wvTik3GFs6jfcJLOHgKqNU759/rfK NuOJ2N1sQRnP83Ova+HxFsxgFXtoYeYmzBlEVq5WrdQLTS3maY22p7HdH5h9Bhf5 EC0ff3u+Mv+IVdh7wV6S+KO7wpig+PUpOxUX58DdQbsLRNsQZJ6EW5orkO9CxnMq oaIhVQ3DEmOyf1zNE/qEwgVmiqkct75d/0LBeE2tbihez2Oi7MRgI3dfO2Q9I57s XGJAK2PI2xgHfo/ogO+q6f65674lCflSsTEN1Q3hf7i1LzTwd9gDEHjUCSRGP8+a cG2mHOAlOHLe6Sa+/EIPWCzn3C1nIJE3sUPtYp+G0FMN+j+GPOsxqWV+9/rUxln1 wZbsHNI4+v7XCjWkdfzWgMb/vUQiDT1/l22S8JhihKE6/kWMwR3ZtRnPt7hhyxr6 Rz6MyA8+otv2hbwo5qN+ceQqkJJDThYuBrzF7lBAg7drrVjNl7tRUrV+zfrArNR2 CVNMZgCSyr3vCPSIMlPv8bM0PKn8Ae90R0ocv4oMZD0gZ3tCaRkt4WiSo8qr0RyR vRoD2ZWTQbuHpBdiYlUSW2T50mwXtg3xIamWWPCUK9kz1fkyxpw= =XZfq -END PGP SIGNATURE-
Accepted firefox 91.0-1 (source) into unstable, unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Wed, 11 Aug 2021 07:18:22 +0900 Source: firefox Architecture: source Version: 91.0-1 Distribution: unstable Urgency: medium Maintainer: Maintainers of Mozilla-related packages Changed-By: Mike Hommey Changes: firefox (91.0-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2021-33, also known as: CVE-2021-29986, CVE-2021-29981, CVE-2021-29988, CVE-2021-29984, CVE-2021-29980, CVE-2021-29987, CVE-2021-29985, CVE-2021-29982, CVE-2021-29989, CVE-2021-29990. . * debian/control*: Bump nspr, nss and rustc build dependencies. Checksums-Sha1: aba55f54123fd80fc323ab52892283413a46dea0 35569 firefox_91.0-1.dsc 1b3520e654cfc4816f8d8310cf67a5200d879815 221103 firefox_91.0.orig-l10n-ach.tar.bz2 c780da410ca8f1aa441efd8ec0920dc6f6b3b6cc 258287 firefox_91.0.orig-l10n-af.tar.bz2 729da3fad67fcacc246bd3590b1f0f805ad38a76 629723 firefox_91.0.orig-l10n-an.tar.bz2 7aab1ae440d7e87b9cafc148128a8d38f74dbaa9 460998 firefox_91.0.orig-l10n-ar.tar.bz2 be2d3373abc6a7a58b3bd67269519cff92a3d69a 331246 firefox_91.0.orig-l10n-ast.tar.bz2 86cf286535e9a2e0cd5f51d56bc032b728d00123 273701 firefox_91.0.orig-l10n-az.tar.bz2 a8eb41e3a2d6573ada29caba3f24f502f317e1c7 831021 firefox_91.0.orig-l10n-be.tar.bz2 7f4aa7223250e6bac7277bae818a70bac9b0ecd9 1707474 firefox_91.0.orig-l10n-bg.tar.bz2 2c9d959c6d36062f04b917a280a00ff5d2e582eb 356587 firefox_91.0.orig-l10n-bn.tar.bz2 ca62b80107b4edbf7608026d1c5dc55e91318c1a 1866540 firefox_91.0.orig-l10n-br.tar.bz2 efbeefb367f7336b3d7a630efd3d43cb28d83827 519816 firefox_91.0.orig-l10n-bs.tar.bz2 bc4572d33063a132ad1c64292f1405bbdca180fd 276053 firefox_91.0.orig-l10n-ca-valencia.tar.bz2 33005b37a9b7d6acaa1e39b16da904882a8b4c44 1325927 firefox_91.0.orig-l10n-ca.tar.bz2 63061618cc9469a9c22ae9b8f59d68d299a609d4 494656 firefox_91.0.orig-l10n-cak.tar.bz2 d0ade4bbc3397195dfd1136134e27a9a42e65b80 1013135 firefox_91.0.orig-l10n-cs.tar.bz2 c02e1e8304dee8ae883066bf355640e75e820add 544613 firefox_91.0.orig-l10n-cy.tar.bz2 957f65e2adfa46016bffc6185f937a9c89fc3a8e 1161961 firefox_91.0.orig-l10n-da.tar.bz2 793b6783a9fa1964adfe9ba636435e943b6b729c 989761 firefox_91.0.orig-l10n-de.tar.bz2 7170dbdf9aa1bfe0b507a31fce930cf4e5b6216d 555634 firefox_91.0.orig-l10n-dsb.tar.bz2 a068a1c40ad49b7ab21fed8c55c7f246aa11e22c 2510161 firefox_91.0.orig-l10n-el.tar.bz2 7e9f30d0c5f15e36583b7b04cdb8ce4a3d411b2e 755348 firefox_91.0.orig-l10n-en-CA.tar.bz2 405502833067618fe6a64d87becf12061bc01eab 939771 firefox_91.0.orig-l10n-en-GB.tar.bz2 10cbf9801731afea24ed66544ccd1d9faa6d0aa2 480256 firefox_91.0.orig-l10n-eo.tar.bz2 fa77ef2f3b0119082e8e0e00ef58d089d2c4d320 954599 firefox_91.0.orig-l10n-es-AR.tar.bz2 591c6f4aff50e94905fe644e62d9b58b0913e82f 607101 firefox_91.0.orig-l10n-es-CL.tar.bz2 16bf45425ef9c7ffd56e72bd3798fab56d83f82d 899082 firefox_91.0.orig-l10n-es-ES.tar.bz2 5c424c2d5661a7340eb142b767c9d21538553157 806342 firefox_91.0.orig-l10n-es-MX.tar.bz2 d19ca055e789d608674f0420ef63ea901de6b6ad 1333187 firefox_91.0.orig-l10n-et.tar.bz2 c64f3c37b2c1822b827695c3fe4f84079bc51786 533083 firefox_91.0.orig-l10n-eu.tar.bz2 444888d51ca0866555c237654802bf68c6d3d198 370469 firefox_91.0.orig-l10n-fa.tar.bz2 19815f651619dfd4362384de58322e5a5d656ec7 251941 firefox_91.0.orig-l10n-ff.tar.bz2 a6de0511c5a6e13ce1d780501e12f928977b5d52 957502 firefox_91.0.orig-l10n-fi.tar.bz2 2b9505c4617791200c5a10af109cea4921ad6f5d 1383058 firefox_91.0.orig-l10n-fr.tar.bz2 eb2abfce51572e951447619affdde39926bbb362 2594301 firefox_91.0.orig-l10n-fy-NL.tar.bz2 86e457ad9096ef67ff12c097afced0444135e7b5 385389 firefox_91.0.orig-l10n-ga-IE.tar.bz2 d064759ca450e8282e95f851f9e4ee7120af23ad 497281 firefox_91.0.orig-l10n-gd.tar.bz2 32c203a96055394d626ccfc2db288f20ea182a4e 843099 firefox_91.0.orig-l10n-gl.tar.bz2 5fc1648054172f7e0c2db8cb60e4ed42bf62679b 317311 firefox_91.0.orig-l10n-gn.tar.bz2 b6b0f719ba0341b9d0a069bd5d7b42bfe3464aee 309769 firefox_91.0.orig-l10n-gu-IN.tar.bz2 3b96508c10df37254a20ae1fffbe1af1b8d49bab 459337 firefox_91.0.orig-l10n-he.tar.bz2 3f1aa930eb5bf547bc2cc470d6022519dc2e0082 351338 firefox_91.0.orig-l10n-hi-IN.tar.bz2 b21f57a4712e3dfe5b7df9902fcc5f1098626c60 510304 firefox_91.0.orig-l10n-hr.tar.bz2 c012bdae5e4480cdb36dc3e3530a0f89494cd299 553558 firefox_91.0.orig-l10n-hsb.tar.bz2 24b236a0498ed499bf79a6d4e6a799d02a95a874 1621419 firefox_91.0.orig-l10n-hu.tar.bz2 b851cbfdd2a35271822eee97924d26fc73849126 499492 firefox_91.0.orig-l10n-hy-AM.tar.bz2 047432c368427baedbf764501710ed21830acee2 533620 firefox_91.0.orig-l10n-ia.tar.bz2 d3169ed1b88c8158a35b42b0cc20727aded6ece2 650198 firefox_91.0.orig-l10n-id.tar.bz2 171388b0345c71338482a0e782f70ca1cef850c8 408069 firefox_91.0.orig-l10n-is.tar.bz2 466f3baed345092cdadff4138b6fc20017d65153 853175 firefox_91.0.orig-l10n-it.tar.bz2 cad7af6592b48a941936d6bb0e0335f665545631 1218806 firefox_91.0.orig-l10n-ja.tar.bz2
Accepted hurd 1:0.9.git20210811-1 (source all) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 11 Aug 2021 02:29:43 + Source: hurd Binary: hurd hurd-dbgsym hurd-dev hurd-dev-dbgsym hurd-doc hurd-libs0.3 hurd-libs0.3-dbgsym hurd-libs0.3-udeb hurd-prof hurd-udeb Architecture: source all Version: 1:0.9.git20210811-1 Distribution: unstable Urgency: medium Maintainer: GNU Hurd Maintainers Changed-By: Samuel Thibault Description: hurd - GNU Hurd hurd-dev - GNU Hurd (development files) hurd-doc - GNU Hurd manual hurd-libs0.3 - GNU Hurd (libraries) hurd-libs0.3-udeb - GNU Hurd (libraries) - udeb (udeb) hurd-prof - GNU Hurd hurd-udeb - GNU Hurd - udeb (udeb) Changes: hurd (1:0.9.git20210811-1) unstable; urgency=medium . * New upstream snapshot. - Fixes disappearance of /dev/urandom. - debian/patches/fix-truncate: upstreamed. - debian/patches/git-invalid-right: upstreamed. - debian/patches/git-libmachdev-non-bootstrap-fix.patch: upstreamed. - debian/patches/git-pci-arbiter-non-bootstrap-fix.patch: upstreamed. - debian/patches/git-pci-arbiter-option.patch: upstreamed. - debian/patches/git-trivfs_server.patch: upstreamed. Checksums-Sha1: eed79b4494285ccd8be6cc7334aa3335612d642d 4547 hurd_0.9.git20210811-1.dsc 9c53f2c1f5e0cf09b92ed6c42c0f2b878b788469 18079 hurd_0.9.git20210811.orig-eth-filter.tar.bz2 884c59662a7fff9534c83469133f922b38bc74b7 3346703 hurd_0.9.git20210811.orig-libdde-linux26.tar.bz2 124a2dc5c673053af51e90d0f5d4674be3200bec 19428 hurd_0.9.git20210811.orig-libddekit.tar.bz2 41bd0fb7ef74f0a6384f2fae23abc0b8153bfb6c 16998 hurd_0.9.git20210811.orig-libmachdevdde.tar.bz2 c0fa19cbb0688157807bcf7a826385174a9a566d 2097041 hurd_0.9.git20210811.orig.tar.bz2 ba2ab8a34ea44d8462fbd5c9377b2342fbeac5ac 102632 hurd_0.9.git20210811-1.debian.tar.xz d1ae95f66229333c778bdb0988ed9b526d783035 177656 hurd-doc_0.9.git20210811-1_all.deb Checksums-Sha256: c72bd1f8c5bb9e9b80bce4e60432c9844edaf36c5045c0efc155bf221f18b8bb 4547 hurd_0.9.git20210811-1.dsc 8e063129a179683c04661c11a664a7334c7f5debc03cfbbcf8a4c1a7227c1ca5 18079 hurd_0.9.git20210811.orig-eth-filter.tar.bz2 1abe9a7c711816636495dd8947a43c281754d800a65cbed3e42b8fdaab8e78a8 3346703 hurd_0.9.git20210811.orig-libdde-linux26.tar.bz2 f1391c94ea2546f081a7ed1b425c6d6597d4c3bf6cbd993cda0432c4dc0fa73f 19428 hurd_0.9.git20210811.orig-libddekit.tar.bz2 2fbb79b16bd79f18e851a8fc3f194298724c92556b562e6917912005035727cb 16998 hurd_0.9.git20210811.orig-libmachdevdde.tar.bz2 7b947ed7b35a006f23d8a427a1016c72339cab0dd6ce66d1c0d464382af2f9f7 2097041 hurd_0.9.git20210811.orig.tar.bz2 4d03eb9b542bfa9cf615e501bfe635ac758d084bf47a655017500ed6c02f70b0 102632 hurd_0.9.git20210811-1.debian.tar.xz 6a9df207b4e1654c6b4ea174747091245c290b3f3440df383f3f199699c4f801 177656 hurd-doc_0.9.git20210811-1_all.deb Files: 1199ff72c8e5ea2b92010e21c568c0f0 4547 admin required hurd_0.9.git20210811-1.dsc 5e115934ec50e4b4f36b3b7d227f6365 18079 admin required hurd_0.9.git20210811.orig-eth-filter.tar.bz2 ae0cf5ec86aadb473faa54f366a5afc3 3346703 admin required hurd_0.9.git20210811.orig-libdde-linux26.tar.bz2 98b03710c799b0751cd73b730b011ef3 19428 admin required hurd_0.9.git20210811.orig-libddekit.tar.bz2 a3e3f5028251e399cfd799588d033346 16998 admin required hurd_0.9.git20210811.orig-libmachdevdde.tar.bz2 4f1a7ff9cd84c75982a499c6afb471b5 2097041 admin required hurd_0.9.git20210811.orig.tar.bz2 0a9ac61690f88fb30e9ddb84d7205d9b 102632 admin required hurd_0.9.git20210811-1.debian.tar.xz ababcafe25b76b48f2d7cd99f9b23a03 177656 doc optional hurd-doc_0.9.git20210811-1_all.deb -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEE59DSENomQIYa2nfqRdTszGSEm3kFAmETlvwACgkQRdTszGSE m3mZ0g//RcoJrV8ovKKcMPpFnFBJkHw684pbT/ulLZYNlj0vo4DlVV9OMRqcrZkE his5s2jFgiBbB6Opqa8BjMIqcdoyyf7eAWHjNvvPAFqNfUSOnJNxHK1Nd5S7cmNP NsvoodPq60e/wn8kbVL/7U0GSV6Fz1Z95eudyUl+91ohMeJw5PFfFtqBu1quzJUh CFwjBzVn17qnS6+7KnSnglofnXq+s2mjmxVgsh6Djxnoln+ui+4bxcNCcjf2Ziei 3FYQH1pyhPeTWIBJyqJTPlpCk9383lyqJM6/K/PnFo8/izeuDOyIy2A4nEgPKUV9 uAv20ays+kd8LYyFlwrVW5DowdbCSGsgifmTL2c7VwI4YuO34dMs3+sAg6mxhpTq jqwAHSTWlnHtt8DkRgEH9DeUslV8Z+3Hf0Zj3GYzfn/X7QtSUy9da3U+RmORdtwi +PJkJ7A9WrwJlW23udxXDCrS2CEwXR3MMxbIYIQqqLPNgPBvHPVzqnSh5RmRfGIt ugiNal4MHxtc3BjnSvwLXoPtsx1yAA7LMdlCOm1R+jfDrolHddWq6DAC4eyOmcEZ n8XIKgkY+w/kwraQWPS6ZY+bWr/5CjfV/Xlvsm22qA09ic3QV7wHoUjmnHQDJbTc gfBy0KrEkgb1BI3DFOQH6QQGJo32R4sLfioMoDxebUxaElsVqV4= =S1TF -END PGP SIGNATURE-
Re: Steam Deck: good news for Linux gaming, bad news for Debian :(
On 11.08.21 08:46, Marc Haber wrote: On Wed, 11 Aug 2021 01:09:29 -0400, Calum McConnell wrote: On Wed, 2021-08-11 at 00:51 +, Paul Wise wrote: On Tue, Aug 10, 2021 at 5:38 PM Andrey Rahmatullin wrote: "So, Arch Linux, one of the main reasons, there's a couple, but the main reason is the rolling updates of Arch allows us to have more rapid development for SteamOS 3.0," says Yang. "We were making a bunch of updates and changes to specifically make sure that things work well for Steam deck, and Arch just ended up being a better choice for them." Sounds like Debian testing would have worked for them too. Except testing lacks direct security support, and spends about a quarter of the time in a feature freeze. It isn't a true rolling release: the wheels are squares instead of circles. I think that the experience that Debian has made with Stream is our classic problem: We try to cater for all, and annoy the people who want quicker releases. After we have driven away the users who want quicker releases in the early 2000s (they have moved to Ubuntu or to the rolling release distributions), we have taken a quicker pace, driving away the users that want more stability (they have probably moved to the Red Hat / CentOS world despite them having actually less stability by defining stability and support time differently than we do), and still we're too slow for downstream users like Steam. This is either going to continue, or we finally commit to having more than one release train, which of course comes with its own set of issues, the biggest of them being volunteers and personpower. There is no glory in supporting long support cycles. For steam, our competitor may be arch. For science projects, it is conda (ok, hello, yes, you brew and guix people, you are also competitors) - which rolling and (bonus feature) cross-platform - with CI and often it is upstream preparing and using these packages themselves. I have no exact idea what to change, though. A rolling Debian would be cool, yes, but also a bit late when compared with environments that Conda offers or the ease that comes with multiple installations of conda to e.g. avoid name conflicts. If we had a chroot for which you do not need to be root, then together with snapshot.d.o we would be darn close to what Conda is offering. I have no idea how to get there, though. With singularity maybe? Best, Steffen
Re: Arch triplet for uefi applications
On Tue, 10 Aug 2021 at 15:19:10 -0700, Josh Triplett wrote: > Bastien Roucariès wrote: > > I suppose that [EFI] will be x86_64-efi-none (or maybe x86_64-windows-efi > > ) and > > i686-uefi-none ? It's certainly not x86_64-windows-efi. The EFI environment isn't Windows (even though it borrows some conventions like FAT, backslashes in paths and the PE executable format from Windows). > UEFI is effectively an "operating system", insofar as it provides a > runtime environment with some baseline properties and a set of system > calls. uefi definitely isn't a "vendor", and the OS shouldn't be "none" > since there is an OS of sorts. > > For that reason, Rust uses the target names "aarch64-unknown-uefi", > "i686-unknown-uefi", and "x86_64-unknown-uefi". Those seem like the > right names for these targets in other toolchains, as well. These names used in Rust seem correct to me. The UEFI environment behaves like a miniature operating system, which runs instead of GNU/Linux during the first stage of boot, so replacing the linux-gnu part of the tuple with uefi makes sense. Note that there are two forms for writing a GNU tuple: with or without the vendor. The full tuple consists of CPU-VENDOR-OS, where OS sometimes consists of KERNEL-USERSPACE, or KERNEL-ABI, or KERNEL-USERSPACEABI where both disambiguators are needed. Developers who are used to (GNU/)Linux are likely to think the KERNEL-USERSPACE form is most common, but actually that one is the exception, and the more usual form has traditionally just had a single token for OSs where the kernel and user-space are tightly coupled, such as solaris2, netbsd or freebsd: |CPU|vendor |kernel |userspace|ABI | | | | (libc) | -|---|---|---|-| i386-pc-solaris2 |i386 |PC |Solaris 2| x86_64-pc-freebsd|x86_64 |PC |FreeBSD | arm-unknown-netbsd-eabi |arm|unknown|NetBSD |EABI x86_64-unknown-uefi |x86_64 |unknown| UEFI| x86_64-pc-linux-gnu |x86_64 |PC |Linux |GNU | x86_64-pc-linux-musl |x86_64 |PC |Linux |musl libc| x86_64-pc-linux-gnux32 |x86_64 |PC |Linux |GNU |x32 aarch64-unknown-linux-gnu|aarch64|unknown|Linux |GNU | arm-unknown-linux-gnu|arm|unknown|Linux |GNU |OABI arm-unknown-linux-gnueabi|arm|unknown|Linux |GNU |EABI x86_64-pc-kfreebsd-gnu |x86_64 |PC |FreeBSD|GNU | In Debian multiarch tuples and GNU-style cross-compilation tool prefixes, the tuple is written in a shorter form without the vendor as CPU-OS (where, again, the OS might be KERNEL-USERSPACE or KERNEL-ABI or KERNEL-USERSPACEABI), because the vendor is not usually significant when determining whether two binaries share an ABI and can interoperate: i386-solaris2 x86_64-freebsd arm-netbsd-eabi x86_64-uefi x86_64-linux-gnu x86_64-linux-musl x86_64-linux-gnux32 aarch64-linux-gnu arm-linux-gnu arm-linux-gnueabi x86_64-kfreebsd-gnu (For instance we have x86_64-linux-gnu-gcc and /usr/lib/x86_64-linux-gnu.) I prefer to call these strings tuples rather than triplets, because calling them triplets can be misleading. The "target triplet" in Autoconf specifically refers to the CPU-VENDOR-OS arrangment - remember that GNU started by building Free Software tools to run on top of other (often proprietary) operating systems, where the ABI was externally imposed by the OS vendor, so initially it wouldn't have made sense to talk about the kernel and user-space separately. The Linux, kFreeBSD and Hurd kernels and the possibility of running a complete GNU operating system only came later. So "triplet" refers to the three parts of a full tuple with the vendor, broken up like this: <--1--><--2--> <--3--> i386- pc- solaris2 x86_64-pc- linux-gnu "Triplet" does not refer to the three parts of an abbreviated GNU/Linux-style tuple written without the vendor, even though this decade that's the one we see most often: # NOT THIS x86_64-linux- gnu because not all operating systems' short-form tuples break down into three parts like that (as you can see from the Solaris, FreeBSD, NetBSD examples above). Traditional cross-compilation (cross-libraries in subdirectories of /usr, such as /usr/i386-solaris2 or /usr/arm-unknown-netbsd-eabi) might write the tuple with or without the vendor. In Debian, we use the tuple without the vendor included for multilib (e.g. /usr/i686-linux-gnu in libc6-i386-cross), but we use the tuple *with* the vendor included for mingw-w64 (/usr/i686-w64-mingw32, /usr/x86_64-w64-mingw32). smcv
Re: Steam Deck: good news for Linux gaming, bad news for Debian :(
On Wed, 11 Aug 2021 01:09:29 -0400, Calum McConnell wrote: >On Wed, 2021-08-11 at 00:51 +, Paul Wise wrote: >> On Tue, Aug 10, 2021 at 5:38 PM Andrey Rahmatullin wrote: >> >> > "So, Arch Linux, one of the main reasons, there's a couple, but the >> > main >> > reason is the rolling updates of Arch allows us to have more rapid >> > development for SteamOS 3.0," says Yang. "We were making a bunch of >> > updates and changes to specifically make sure that things work well >> > for >> > Steam deck, and Arch just ended up being a better choice for them." >> >> Sounds like Debian testing would have worked for them too. > >Except testing lacks direct security support, and spends about a quarter >of the time in a feature freeze. It isn't a true rolling release: the >wheels are squares instead of circles. I think that the experience that Debian has made with Stream is our classic problem: We try to cater for all, and annoy the people who want quicker releases. After we have driven away the users who want quicker releases in the early 2000s (they have moved to Ubuntu or to the rolling release distributions), we have taken a quicker pace, driving away the users that want more stability (they have probably moved to the Red Hat / CentOS world despite them having actually less stability by defining stability and support time differently than we do), and still we're too slow for downstream users like Steam. This is either going to continue, or we finally commit to having more than one release train, which of course comes with its own set of issues, the biggest of them being volunteers and personpower. There is no glory in supporting long support cycles. Greetings Marc -- -- !! No courtesy copies, please !! - Marc Haber | " Questions are the | Mailadresse im Header Mannheim, Germany | Beginning of Wisdom " | Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 621 72739834